last executing test programs:

4m18.945168562s ago: executing program 0 (id=915):
r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x80400, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000e1, 0xeb1, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a000500000000000000000008000200", @ANYRES32, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="e00013"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x3, 0x100) (async)
socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) (async, rerun: 32)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async)
poll$auto(&(0x7f0000000080)={<r1=>r0, 0x9, 0x9816}, 0x7f, 0x3)
ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0)
ioctl$auto(0x3, 0x5420, 0x38)

4m18.745068219s ago: executing program 0 (id=916):
r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r0, &(0x7f0000000040)='nbd\x00', 0x4)
lseek$auto(r0, 0x100, 0x1)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0)
sendfile$auto(r1, r1, 0x0, 0x3)
r2 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs1\x00', 0x2, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r2, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
mbind$auto(0xffffffffffffffff, 0x2, 0x2, 0x0, 0x7, 0x0)
io_uring_setup$auto(0x0, &(0x7f0000000100)={0x3b7, 0x1b4, 0x1, 0x6, 0x9, 0x4, r2, [0xb, 0x1, 0xb], {0xff, 0x6, 0x4, 0x8, 0x6, 0x0, 0x0, 0x4, 0x6d}, {0x80, 0x6, 0x0, 0x6, 0x0, 0xeed, 0xffff8000, 0x1fd90fa5, 0xfffffffffffffff7}})
poll$auto(&(0x7f0000000040)={0xffffffffffffffff, 0x7, 0x8}, 0x80, 0x400400)

4m18.19741104s ago: executing program 0 (id=918):
mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
set_mempolicy$auto(0x7, &(0x7f0000000040)=0x7e, 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r1 = socket(0x15, 0x1, 0x80)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r1, 0x28000)
io_uring_setup$auto(0x6, 0x0)

4m18.033229s ago: executing program 0 (id=920):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xc18, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r2, 0x0, 0x42, 0x0, &(0x7f00000000c0)=0x1e)
sendmsg$auto_ETHTOOL_MSG_FEC_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)={0x14, r1, 0x311, 0x70bd2c, 0x25dfdc01}, 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x800)

4m17.916732689s ago: executing program 0 (id=922):
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0xfffe)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9)
rename$auto(&(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000040)='./file0/file0\x00')
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0xf, 0x9, 0x63, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x400000000010, 0x8, 0x40000402, 0x7ffffffb, 0x9, 0xffffffff80000000, 0x9, 0x7, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
inotify_init1$auto(0x3000000000000)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
ioperm$auto(0x7, 0x71, 0x863)
iopl$auto(0x3)
ioperm$auto(0x5, 0x3432, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x1a9382, 0x0)
write$auto(r1, 0x0, 0x5)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/vivid/parameters/vid_cap_nr\x00', 0x48040, 0x0)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x12, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x8)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
tkill$auto(0x80000000000001, 0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

4m17.384915346s ago: executing program 0 (id=927):
r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r0, &(0x7f0000000040)='nbd\x00', 0x4)
lseek$auto(r0, 0x100, 0x1)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0)
sendfile$auto(r1, r1, 0x0, 0x3)
r2 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs1\x00', 0x2, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r2, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
io_uring_setup$auto(0x0, &(0x7f0000000100)={0x3b7, 0x1b4, 0x1, 0x6, 0x9, 0x4, r2, [0xb, 0x1, 0xb], {0xff, 0x6, 0x4, 0x8, 0x6, 0x0, 0x0, 0x4, 0x6d}, {0x80, 0x6, 0x0, 0x6, 0x0, 0xeed, 0xffff8000, 0x1fd90fa5, 0xfffffffffffffff7}})
poll$auto(&(0x7f0000000040)={0xffffffffffffffff, 0x7, 0x8}, 0x80, 0x400400)

4m17.132425476s ago: executing program 32 (id=927):
r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r0, &(0x7f0000000040)='nbd\x00', 0x4)
lseek$auto(r0, 0x100, 0x1)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0)
sendfile$auto(r1, r1, 0x0, 0x3)
r2 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs1\x00', 0x2, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r2, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
io_uring_setup$auto(0x0, &(0x7f0000000100)={0x3b7, 0x1b4, 0x1, 0x6, 0x9, 0x4, r2, [0xb, 0x1, 0xb], {0xff, 0x6, 0x4, 0x8, 0x6, 0x0, 0x0, 0x4, 0x6d}, {0x80, 0x6, 0x0, 0x6, 0x0, 0xeed, 0xffff8000, 0x1fd90fa5, 0xfffffffffffffff7}})
poll$auto(&(0x7f0000000040)={0xffffffffffffffff, 0x7, 0x8}, 0x80, 0x400400)

3m21.34202413s ago: executing program 2 (id=1266):
mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
set_mempolicy$auto(0x7, 0x0, 0x4)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r2 = socket(0x15, 0x1, 0x80)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r2, 0x28000)
io_uring_setup$auto(0x6, 0x0) (fail_nth: 1)

3m21.08535746s ago: executing program 2 (id=1268):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)

3m20.947804823s ago: executing program 2 (id=1272):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x15, 0x5, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/loop9/queue/rotational\x00', 0x0, 0x0)
r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x161802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(r3, 0xc00c620f, 0x9)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000002800)={'dummy0\x00'})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000004640), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r4, &(0x7f0000004740)={0x0, 0x0, &(0x7f0000004700)={&(0x7f0000004680)={0x18, r5, 0x33195ba66fc949a5, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40404}, 0x8800)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'dvmrp0\x00', <r6=>0x0})
r7 = socket(0x11, 0xa, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'vxcan1\x00', <r8=>0x0})
bpf$auto(0x0, &(0x7f0000000100)=@query={@target_ifindex=r8, 0x0, 0x8, 0x9, 0x0, @prog_cnt, 0x0, 0x3, 0x5a3522aa, 0xffffffff, 0x9}, 0x6f4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'macsec0\x00', <r9=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'veth0_to_batadv\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'veth1_to_batadv\x00', <r11=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'bond_slave_1\x00', <r12=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r12], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4004804)
sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f0000000340)={0x118, r5, 0x100, 0x70bd2b, 0x25dfdbff, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}]}, @ETHTOOL_A_COALESCE_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10}]}, @ETHTOOL_A_COALESCE_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_COALESCE_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}, @ETHTOOL_A_COALESCE_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x4004801}, 0x804)
recvfrom$auto(r2, 0x0, 0x8, 0x200, 0x0, 0x0)
io_uring_setup$auto(0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
r13 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0x59, &(0x7f0000005340)={&(0x7f0000000000)={0x14, r13, 0x1, 0x70bd2b, 0x25df9bfc}, 0x14}, 0x1, 0xfff5, 0x0, 0x2004c010}, 0x20000000)

3m19.997335628s ago: executing program 2 (id=1277):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
bind$auto(0xffffffffffffffff, 0x0, 0x6a)
socket(0xa, 0x2, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000002c80)='/proc/thread-self/net/rpc/nfsd.fh/channel\x00', 0x80, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6b, 0x0, 0x7d, 0xfffffffffffffffd, 0xd4, 0x4, 0x4, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0x0, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
socket(0x2, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0)

3m18.974275312s ago: executing program 2 (id=1283):
socket(0x2b, 0x1, 0x1) (async)
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(0x3, 0x6, 0x9, 0x0, 0xfb3) (async)
setsockopt$auto(0x3, 0x6, 0x9, 0x0, 0xfb3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0xa, 0x806, 0x0)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
tkill$auto(0x80000000000001, 0x7)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r0)
syz_clone(0x800200, &(0x7f00000000c0)="4a201fedaec628f8aaecb1d9902de96747c30199701e88eb9352761e65b99e130ca8689077f97796330e695c8663274be2258a596c39c4b5ad6d43db099d750c395b5afed45eb84454fd5b4cc02f2f670f0fc5de05673c2c52e827d18ce9499b6afc8ef1acec66a021c1b7", 0x6b, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="be952e3f68a3f045ee279b3cf55b5cf55419de7e041750cb441fcf46208762e70338e304cd62f4bfd3b4d5c2ffcf6bb31c6b3088b11e6366924ef7") (async)
r2 = syz_clone(0x800200, &(0x7f00000000c0)="4a201fedaec628f8aaecb1d9902de96747c30199701e88eb9352761e65b99e130ca8689077f97796330e695c8663274be2258a596c39c4b5ad6d43db099d750c395b5afed45eb84454fd5b4cc02f2f670f0fc5de05673c2c52e827d18ce9499b6afc8ef1acec66a021c1b7", 0x6b, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="be952e3f68a3f045ee279b3cf55b5cf55419de7e041750cb441fcf46208762e70338e304cd62f4bfd3b4d5c2ffcf6bb31c6b3088b11e6366924ef7")
sendmsg$auto_MACSEC_CMD_ADD_RXSA(r0, &(0x7f00000006c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000680)={&(0x7f0000000200)={0x454, r1, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x29c, 0x2, 0x0, 0x1, [@generic="fade440f08a6bab82a84cd44dfa384c3bae904c96c36e651a649f609b3c6ed298b7c19077b42c2a8f803fb298f5bd0ec529459f3900ad2288521d60de48d4e04ecb70b23d1e7f8a3034a24e84efa68bead483ff1afb7ba227c997e3f821d7ac3acee66303589d901fee5e0d6a766e8608b5060945b06ebd61e8791f5ed489c8c877cb7c555bb070f84fd221bd226dd2e47f80a6abb096ec3bcce6d2666950b681571da51f573af7add3b340da1504ecc11541baae3dcfdedaa0e3e94f7c5342609a8e536b2a1291c59", @generic="cafff4a60c57b0e483ce2e269743efaf845df24b035996e4f7f6ba7543db8caf6bad07b748b213b680fe37fbb014d742179112be0d2fa8f68bc34baf731ff8d3e71bbc2fb5222e0a513bfa0af0dae29e0bb2677438eb41da2fbeb7ac75d747cfba45f6eea7b37f25dbaa31ba6e93ed0b119f75cca08bbdab7d5e05a10d72c8ea94d6d5eaa4413c221db9391f7157abc6df4344a5f0ed90128abfa06957d21d5d75079ef6a142b8003a850f541b1952510e8923a0c3c10d762b023278a969bce31e082aeb7b8530cf7d544f7e3947e810191a", @generic="4b61f65ef48a1b96e3957dd45392460519ea9513acc84217d4454bf02fa19807b368fbad99ff00599e642e82d932215c4753ac8867757a74173b437f571b2f40786981eaa97cf6478606adcfa1870432e865e74e5a807c10465b0bfef41dda4c642ce8e018bc2dedbdf1619d66dfa1b53449ecc78f928cae4ef6b75c95b13e7e5be5d5c21f57e3ab8d71fe6aaa51bf47990c20955501434297b5d95a30ba85d04d4d63bcc3229ffd7fe73d58f40f3b8791255b18b71f2eff7793a1bd56a0cfc8e85145c9d87264a33f9b8b696406fe8ef5b7fc48701046b34ddbd02463302972bb493443fd2e07571742e2addf7575341c", @typed={0x4, 0x11f}, @typed={0x8, 0x5b, 0x0, 0x0, @pid=r2}]}, @MACSEC_ATTR_OFFLOAD={0x1a4, 0x9, 0x0, 0x1, [@nested={0x8, 0x87, 0x0, 0x1, [@nested={0x4, 0x11a}]}, @generic="25df74b89c9b4522548122ab1600f1c831fc869e372a616a0a774757b158dfa9c6bbf09669aa74240f7a4f27ca95d543c7cf4d826ed8d372981f3946b981ee6c84a62e42cae07b4ab975d57a53eef7de73c53311198744ceb15aa00ae03fcee38afcb70eb14060a74c29645977af8941411a1475031c5a3282c0d5210eb760a24d082341ec32fd90452cfde5c7e29762bca9c4df5f05a15ad5c259f3e8309c48f364036b2003a1e3a019d37f7c36ffaf2a1220e68d752d480b96e261273d7fc5cd5f98cddb8b7ada4514a53c336764cce4e51f22ad91a5365f65af0d6851b51d4f", @typed={0x8, 0xdd, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="8448518f9120d9f6f1663dbc435f1dd3d478c6d0a0222529559ee80114b51c83827b49915e33a7264ce0e81bb59dafbe03276017162099aa25729f2d5439a945ff8e73814eb6c04cd18b37e09435bcb4a497fb5062b874cb22af82d43699e1235df798ea4aae6fa2966071efebaa99fde5401e68b7ad67e8d09901f40ad6107097b2cf020b9ea9ec99ef59311b2b183f72cdd1d813577a0181c23bb7ea69e5dde9421ebc2acf2f2a5b645519e2674a"]}]}, 0x454}, 0x1, 0x0, 0x0, 0x8080}, 0x0)
read$auto(0x3, 0x0, 0x7)
pipe2$auto(0x0, 0x80) (async)
pipe2$auto(0x0, 0x80)
setsockopt$auto(0x3, 0x1, 0xd, 0x0, 0x8) (async)
setsockopt$auto(0x3, 0x1, 0xd, 0x0, 0x8)
close_range$auto(0x2, 0x8000, 0x0)

3m18.569099358s ago: executing program 2 (id=1287):
r0 = socket(0x29, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000002e40), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000002f00)={0x0, 0x0, &(0x7f0000002ec0)={&(0x7f0000002e80)={0x14, r2, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4048c40}, 0x4)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='V'], 0x1ac}}, 0x40000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/class/firmware/timeout\x00', 0x100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000540)=""/150, 0x96)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r4 = socket(0x2, 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xa)
getsockopt$auto(r4, 0x1, 0x3f, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)

3m18.341140555s ago: executing program 33 (id=1287):
r0 = socket(0x29, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000002e40), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000002f00)={0x0, 0x0, &(0x7f0000002ec0)={&(0x7f0000002e80)={0x14, r2, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4048c40}, 0x4)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='V'], 0x1ac}}, 0x40000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/class/firmware/timeout\x00', 0x100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000540)=""/150, 0x96)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r4 = socket(0x2, 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xa)
getsockopt$auto(r4, 0x1, 0x3f, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)

34.074401408s ago: executing program 1 (id=2703):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rfcomm_dlc_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x2682, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x5, 0x8, 0x0)
r1 = socket(0xa, 0x801, 0x84)
r2 = getsockopt$auto(r1, 0x84, 0x75, 0x0, &(0x7f0000000000)=0x9000c)
r3 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000040), 0xa0900, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0xc0086202, 0x0)
r4 = openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x181000, 0x0)
pread64$auto(r4, &(0x7f0000000040)='\x00', 0x7ff, 0x800)
write$auto_nsim_dev_health_break_fops_health(r2, &(0x7f0000000080)="098041facc89e8e9b7af742059dbedaa34b85a817a98512d52470bf1592bb58e83b09bd0195182909e85179dfb71fe83d21b30e4e6ad2c1c890e1a780bfd969850e592e51186865c88c04bec7c785740266f557e40daeaba5c2bdd9b6e5910365a60ea9ceb702a837d4c73c2397a45c42b5c006327f11eb6ed9821b14a85de4b4cc001c5c03ee9e1c0df8c42a5e401ec10bf8cc4b001a8f38b960ff3d65ffccb39308073e84c94892a94f9fc47d4ccbb07c93910b043db4f71c1d97f3605cff430", 0xc1)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7fffffffffffffff, 0x4)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=r5, 0x4007, @old_prog_fd=0x13b}, 0xa3)

33.233943679s ago: executing program 1 (id=2708):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, r0, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(r0, &(0x7f0000000080)=@nl=@kern={0x10, 0x0, 0x0, 0x80000}, 0x54)
listen$auto(0x3, 0x83)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
io_uring_setup$auto(0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x3c, r3, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x18, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x50}, 0xc800)
bpf$auto(0xa, 0x0, 0x455)
syslog$auto(0x4, &(0x7f0000000040)='..\x00', 0x7)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
mmap$auto(0x0, 0x80003, 0xffd, 0x8000000008012, 0x3, 0x0)
socket(0x15, 0x5, 0x0)
r4 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000180)={0x0, 0x12, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYRESHEX=r0, @ANYRESHEX=r4], 0x18}, 0x1, 0x0, 0x0, 0x80040}, 0x80)

33.057576204s ago: executing program 1 (id=2710):
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x6)
adjtimex$auto(0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x11, 0xffffffffffffffff, 0x62)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x4d0041, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r0 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r0, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x3b)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)={0x4c, 0x0, 0xd0d58b333228212f, 0x78bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_BSSID={0x36, 0xf5, "af08860a5c815018c6e944bca310a9d3ecae4c9e39ed486101557f7751a2db5abf993d6ce49244259f4098b7805b616c75a7"}]}, 0x4c}}, 0x4000000)
mmap$auto(0x8000000, 0x5, 0x72, 0x8b72, 0x2, 0x8000)
pipe2$auto(0x0, 0xffffffff)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/dummy0/carrier\x00', 0x8182, 0x0)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
write$auto_fops_init_pkru_pkeys(r2, &(0x7f0000000440)="0bad", 0x2)

32.629041078s ago: executing program 1 (id=2711):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/seccomp/actions_logged\x00', 0x8202, 0x0)
read$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0)
write$auto(0x3, 0x0, 0x9)
r2 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000001180)='/proc/mtd\x00', 0x80000, 0x0)
read$auto_proc_single_file_operations_base(r2, &(0x7f0000001280)=""/143, 0x8f)
mmap$auto(0x0, 0xffe, 0xffb, 0x8000000008011, 0x3, 0x0)
ioctl$auto_SNDCTL_DSP_GETFMTS(r0, 0x8004500b, 0x0)

32.492480984s ago: executing program 1 (id=2723):
msync$auto(0xffffffff80000000, 0x1000000000000001, 0x400000004)
kcmp$auto(0x1, 0x100000001, 0x1, 0x4, 0x24000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000040), r0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x3c, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x17, 0x0, 0x1, [@nested={0x4}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x4, 0x8000)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0xcb}, 0x3, 0x0, 0x0, 0x6}, 0x209}, 0x7, 0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd14/queue/atomic_write_unit_max_bytes\x00', 0x103400, 0x0)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
socket(0x10, 0x2, 0xc)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x1}, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0x0)
ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0xc00, 0x2c, 0x2c, 0x0, 0x2})
r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x1, 0x0)
ioctl$auto(r3, 0xc0306201, 0x9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x181040, 0x0)

31.973915665s ago: executing program 1 (id=2719):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async, rerun: 64)
r0 = socket(0x2, 0x1, 0x0) (rerun: 64)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x6, 0x0) (async)
r1 = socket(0x2, 0x5, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
socket(0x2, 0x80002, 0x73) (rerun: 32)
socket(0x2, 0x1, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async, rerun: 64)
shutdown$auto(0x200000003, 0x2) (async, rerun: 64)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
close_range$auto(0x2, 0x8000, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00<\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t+\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x39)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) (async)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async)
mlock$auto(0xfbe8, 0x1000000000000004) (async, rerun: 32)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0) (async, rerun: 32)
mmap$auto(0xfffffffffffffffd, 0x20009, 0x4000000000df, 0x13, 0x401, 0x8002) (async, rerun: 64)
mlockall$auto(0x7) (rerun: 64)
write$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, &(0x7f0000000240)="7411ccab1a7ff020e30075a4e1588dad458958dfbab4f74110002c101841f9404e4ceb622972dafb2c030e2bd189ac67b89aeda38814eabfd90557a353515f7faa59d373a1050a9581a48a31f49c06bb950d34bf5c5b8aaddea6ab00094147e969d76cf704e051cd0b3a5304bcbc3a98ce66747c4b8f9a281e50c23b69fa844099176da62d6b0685447ad04ea51f1e09b7517557fc9c1c4b20b28ffac3bec39d72b56367eb494a52d7ff6d3158040bf8c5e037add1f69d4069fed67755346a9e78aec57e9da492c5f1a0585efb9c1b4768b0386b79a9488ee231e6f57ccade0f99687df518a755d14171d4d900926f50bae35258ec65ae889c8443c73613efac0d7985f4215c6792a9846e4d20b7c753b17ca49c168833eece80b6275642b30d1d6a91ec66ad6ec44e61b5a8c9be1ba068cb72762c9ac941669240dba67d43bba1ddb3121bd3e8dfe385a7311a3274f60a538d36c67e3ef04a07f09525b8926daf0c0ee1f86d3a6c10fbbc45ab2a5c4b75e5b2c0a33be051e7215c158b33f9d6f338313262d4cdeb09be6a88407dfedc9b9467636f40f506dc0b8de65cf35dd177c7ba447cf7c32c22afc6adac9aa4cdbdfef7d9546973376633b52ebd084b848e45c5fcf9c2e403769ccdc4bbca4242fc0032f2a1c18c702c1836175854d170f572e3bda32195d496dce28801de13d266bf5cb8080dedf5eb21ad358d45bd067437e3d8bab8b667f1b95a7d9d20713a07f07971343a48156f38c037d850f06d0a88f8b4292378182c492b010c039d1b4c48e1bd590b8bb3015699a66078967f2344a3a2a4facbb2b33c5a77102105cd0c553c9ebb52bcf7ef034426cc2d5be908d7fea7b5b69e21f0bfacd2edb366d7f607ebc895f0ae4b6d3d0cd586a46aab986048dc337d370d54f64d2d9f389bb270e0dcb9474c94a6f06161bdd9a0fda9356f0809697ad577ab663c818362aef3dfab8717a007a4a2d2cdb0d0eef3840ea529f5fcbaa5377e72ba3771eaf7a11aea03c1108b94eb035438d836be3f0bdb596aa65f5ea846d0ebfc66db37765e88c16bc9e059bf6db58725d6a647c57b8687c92647015360c4f55953053a993d82e6abe5b4cf57f82065c731b0b108beeae8cc6e1615c7ff39b5c796bcd3f497591d43f4725e71b15b4a133ea8cbeb123783c93efa65aedccc25d5309a39d0c95063769c900753836837f704908bffcd134691495efa23e4667c5d5064de94800c66ac73152fe9a46ca1a7e70214a1c1834288f3527604b4fcad22e5d594a144d3760ad77476fdbe9e9f94d2f3aae2f33c8f24f2f88c302c772b98927cf04e9607fcc3a5ce87a76a207e9cfc623a15d05dffed8d8084da73b59d8f125bfa4b3ff9f458ea98379af61ea0cecfc3a4e4cd94531b3524e5597ff5c1bec019b4bc1ca770c1ce16a053af22db78e3c3ce9447d5507cb045d71dec8f654ed38241ec9238847fa37bb1748bc7f8aa87100d861dcbc7aca7de77b35b6fbd328bec7bf44abbea1abe10d7a2382b52ebdfee10a4658dcb00009794f44647372d9c3f87debd79f7e082460752a4c8eed20bbddff6d63d88464f5649beba74229274a2b1fc3ad503bf037e984238539f3c9429b5cf018b955e619d38a802d1b6cda8f406b2bc0ecc24464d5d01b7b55347c9464e2a2168171aad7b6f42b072dbfa0ce314b0af0091ccc2ad4a49271c7a70bf5fa94b389fdffa6a5b8425c85be02a6ee915a0edc765eab622703325e0f2aa6599ff65f6d7593c341d166fa84a15edfb6ffb40963e742fd57d7179007056237c9ab9b166521678ca379076cb5a8917fa67257d872680d793504c7cbfbf5d161ec276c5fa3862797b5d20e8f3fd81301b7208afa007ce89bd337362b6afa795694a2c87d0a425907a1cb81e722328b8c716656e2d27f894e05a5701aacd6d0dd3e304036444431d27839a6817992142d745561c79bde86dfb1eae41df203c534226aa6fe722a172d61946977ced1b36f9681e4c281ece89d0c00fea044ce4f47574df19e940d80a1eabfb3acedc8b84e10216177b84dfb3aab5cef2abe869df8b97e2e2c3f591db2abdd02fb0a379cad49df32a589e4c53109a4429916a03c82d828ad6232f4f593d2c262430d303d780f93b44386ce230b0aa1bd40d48dfe7e1a651ef7c2562662862ad9df12b08e99f6ce950b96215bb4651defb9649f6867a347cf6da86140d58182ac0315d4e7071190db5beef904c12b3f8170793cb51f3c056d643f32304ada28df358786e68ae1d07492e4065f4a61b7067414e9c0c7c96aaad447da3a8dab8774390101b409015d0973ce9c3e699d8f8252f0f44a952e5cb74e74169904c72d109b09c53c840be1af52bd13d6082aebb7ec3ced9fa24090d83daf31fce2165b455323b798034fd539c92e1215a5125fda003bdae9741c0f9ec5403cb2e0af3738967cd7add813c941db7c7b5955ac30008824fe00ef4896df4b5edfdaef0484347fa4838abbc333547e5ef5395a69b2ededa841acc1ece235cad50868fac1feccb47e842ebcaf55700ef0ef2251473abd5b96b9bc74849b822ef985d8017cb77a7577774646f8fd56abd3f71ca30c94c50a12308b309717e048d182bc46a2822a1621c80c7c0ee00ec14b723f8821f1c8d63ae9bea0367cf6d9b44b8302b37913bc1cb669773a21332d4c55537f827343702ee263a0206dacbcf9e623f44bac0eb22b13f601b5b956c7cb6ca26c4bfd588b95831bc136c45ea995162b87d3bcc2da2ec87a1108a783aaad388002878665f239f494d643900b8e1d5ff48deeb8d153a25ff86dd98dd72a93d71c74cb93552a9a321bd032cac7b3f59398baea05b7cf69e85d97712d696138477ce6eff334794df3cae209c4c1f88bdfa7141a1d5fcbb6608fbcf34e69ee18d0331447b1297b3b0c8cd83add71af681ea1ce2e5a25c79333670653c7410c13ceb6d1b5cf409125a3fa1e7fa66f8990d98aff657ee7d23a4fb88ad45b6b7707048dc6f85fd2fe94203616e11dd7d12771e4c5a2fbc0db86c973b57edb788d0b100ff8109332885b851e0ccef98eeb9e8d3ae5023e86595515f985410bc98ba60eb75f23dd1c77eee0233207131d8609fba78c851b32e0027c1e0da1ab5732bff4509d3eea20e7c3ef80337bb37bcb84e7b63b8a0bcf76f3fe0d96234d13ca1a5bc9821d710bd247ece526ca90cc5b313cebd391ec2e6effc6c617b1e21d74d7db9bc3a691f1e4bd098aae38495b18a32529833235565820e6071ab7339df00a9174b973f42d9b969fe4abcc8213ba2acbc0e24b80479652e8e490918ca8fe2ab1644dfe3ed25ab59422afad3302afdbeeadbb65ea3ef514a05fcd41c424be8eda33e4a2435c9013e711957d0a16407f700f5fc5c5044182c2dce57c512cc8b049c32bf060576785434e0840f10a7212d3217caf8b08a9ff91dc16fa15a552d2bb203779c7489899d056909d3144ab1e524559d15df34e4ffb6c321215e469083983c97e5de16dc9b12c547aa8851b8e42f7041642964dae2d56ba54aed0b810e86748becd7bfe5967ae3e03c00a0da03e40152e1c2336e64dee9ad0115887b7e39927d0fa67b3f21b97fcec009ba29af3637f70697c10bd271a9345cbe408412327b119a837805cb5bc5aaab2b1ab4fff2f63625547cfeb9f0dbe2993bcb79137309c75a0bae1d86eb9275b6930ae81c37c5e43a60e4c33133b93dd16943ae758d59dbe9a538ce8df82599213ccb08e25fe4e02021f02f0a39404e3d6f82f10b2945700ef304f5e0fab17b2fe0084e75217f1761627ea9afc5991cf920d1e30c9b4d73bf01c3e4df9b04bcd69af363c6daa95a651a972d8425b2aebf8a85baf9c293db9b45c876e76125d5ff9f70beaed0f36c54f2978274d669b3ff325803b8e3b07a748daf1d2bc2a25b3d38a7f354bcd69873526c10452ecef39cd5ba00c679d73f23a941227097fe5bdfda752836f702e3303da7a300019499843434ba6eb909259a15140003d5a9646b19778f0076eb1bce91f2b8e5a5befa7be8ccbf719713cd47e279facc0b5d84ef5eefde47d1ad278a40faab89e766b0968de088a2d8712e0359abb45bdb173dd382f376000ec17c304e27462fffa399d2003c75202df62323f9db5a2d54f6097079112fad1a4dfd75875932832a03c945bec2b364ba006305860ed8ebdabf6c4d231e90cde851ac17ae520deadc7021fe2282e1060525ce902e1bd69f9e7c835024927cbaefbeef2cdf5df5a4b5b8eae7cc2b745ae18ff972ca6bebb6555b79c3a6548635cfada92bfe2da83aed3243b59366d2a65833730cfcdb0a15ae37a107e6869f251b17ed1e588d41d834b920b9266af9c0738fe7c1471a43b5c6483e21d5ec18e9dffa6e4fffeff6d56f7bf451779b85157401d7f38d778932c985fbfa1cc2d0a373eaf58f7b50ddd8b6b95f9977da6e18d94ebdce067f1b6408b527b951b790bed9d078c6c5647e26041073fc130606a97c1f5bffa854f3a1f4aa4fc4ecb53b6716641c789ff7944b08368f443bf224a3b6e2a80924a4df1d159fba5d50a6dfea299e3bc3ea493f0ca51790d691d1931e26c43b514f7de0050f75915dca2a6540eae645ef805d2510dfedbaf2d2159da5ff60cce330d43eef5531e8cbef1aa195daf9f05cf1741ab0507254999589602183436dabeee20c443fa909dda9f62dad4fb3988da42a602fc85cf72c8da18062b9f6b232e7ce75a2fd09b8bf2ae418c9b3e0e3da58ca8f1a1e7947707ad9a4fc9a596ffbfe1c1bb978cab82df96aef41eb0d7429609dbcb700bc21d0b41d88497bb30e9ed19dc175d71299390fa010651abd7ffb75a9801df8a2395bee0b254ac7ff6b8ddac56853d0697c8c73a2067c9498eeecf2603a985fee253790ab26d37be3acfef199c4a0a88d25ee331a39f551de6ce903cf2ec784c536483ed849b85b58a2956f9ea51b23e2ea13c907d2a1dfa3f48a7995ace0a9a947919a3f4b93370e093fcadb8b7a06e85d340302c3b8f3fdd6543d625768f31f77a68ea37f5b963eff766aca60f470bdbf78b825574973305b1bfefbcce8b460a82b608bfd33d21d43c6a97ac9feac4bac1bbe0a5c7020a922928fdd722b5be8f084ea9e3ffa58ad52ae464480e575983ceec4000f74aa44856d28a75708ecbb804c94cb1048745f1971056ab36befa2c408575443a46068d1662c1276f52ef7ccbfa3096083f5027fc615b95e466536c40f4706f50545354e6a7dd19bd7cfc4bbf327f9b77b7e6b8c7b637b93031e5ae842fa604f9abd7073284fcf727a5907279dc8a13213440eac72691f34377dac7f88ffcf962288d41f68faedc5aa2b97defd1ad0b04ec13aa39dde6d37a08af86d3346d6a761f75386a8375f2694b0962d982628a67a9a9c06faf91c806d07ad7cc74d6d8ea9fad201e9c0a9d6050c019351494b447d0dae81ab98df01dc5d45be7255c5cbe719180dc424ce8aa9eb673e7f315cb05bd0ed8d5367ceccc85c43b3e09f8b341af34909432361f5d157ca32d177252292b817ef735035eb96b2f5992a43c17960fb0decbd9b659a7cc8e6ce52aad8b6fc9b129ab934a2b574fee6b7f6a3bcd31463d8ddd790a5d37dc0ada73fe8eb028f5eb4314d87998a13a288f2b45e173aa388f395ec19203393c03f2b9c6083aaca4dcb0f45c51044498df340363dd9074dd0c309221ce93c2ddab6076d9425195e21f461fa2d62419513a72452a0204c45e7af2795fe1806978eb030fddf6da92245a4527842fbffce22d68561b3601ef7", 0x1000) (async, rerun: 64)
sysfs$auto(0x2, 0x4, 0x0) (async, rerun: 64)
getsockopt$auto(r0, 0x0, 0x42, 0x0, &(0x7f00000000c0)=0x1e)

16.918779702s ago: executing program 34 (id=2719):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async, rerun: 64)
r0 = socket(0x2, 0x1, 0x0) (rerun: 64)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x6, 0x0) (async)
r1 = socket(0x2, 0x5, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
socket(0x2, 0x80002, 0x73) (rerun: 32)
socket(0x2, 0x1, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async, rerun: 64)
shutdown$auto(0x200000003, 0x2) (async, rerun: 64)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
close_range$auto(0x2, 0x8000, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00<\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t+\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x39)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) (async)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async)
mlock$auto(0xfbe8, 0x1000000000000004) (async, rerun: 32)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0) (async, rerun: 32)
mmap$auto(0xfffffffffffffffd, 0x20009, 0x4000000000df, 0x13, 0x401, 0x8002) (async, rerun: 64)
mlockall$auto(0x7) (rerun: 64)
write$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, &(0x7f0000000240)="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", 0x1000) (async, rerun: 64)
sysfs$auto(0x2, 0x4, 0x0) (async, rerun: 64)
getsockopt$auto(r0, 0x0, 0x42, 0x0, &(0x7f00000000c0)=0x1e)

2.721206892s ago: executing program 5 (id=2908):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
listen$auto(0x3, 0x83)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
ioperm$auto(0x7, 0x6, 0x1)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x3, 0x6)
mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x56a, 0xb275, 0x0)
mq_timedreceive$auto(0x8, 0x0, 0xfffffffd, 0x0, 0x0)
mq_timedsend$auto(0x8, 0x0, 0x100, 0x9, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk\x00', 0x100, 0x0)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r1 = socket(0x28, 0x1, 0x82)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon8\x00', 0x248003, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r3=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYRES16=r2, @ANYRES16=r2, @ANYBLOB="02002bbd7000fedbdf25370000001000b000ea42e41cec4d4fef79cdc3a33c00fe006f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe30003280050001000500000008000400", @ANYRES32=r3, @ANYBLOB="04000500050003008f000b0000000500030008000000b20084800800ff00", @ANYRES32=r3, @ANYBLOB="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f911704005e0004008b000400de806d286447401de28ba2e585a678127cb0584a15a954721d3bcada6b3bbf192ca7ea2d71f6dbf5e346e6ecde4e428db5eeca40b80702dc0f2b116ff059fbb2e8d3a7e70ae8615bc3b535b672e085ddf459111ca27bca1b493377b5fb80203198e49486add6cde877000008009a000900000014001b80040002000400030004000200040002000800620006000000"], 0x168}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)

2.517951671s ago: executing program 4 (id=2910):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x4ffa6)

2.200149385s ago: executing program 4 (id=2911):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
write$auto(0x3, 0x0, 0x9)
mmap$auto(0x0, 0xffe, 0xffb, 0x8000000008011, 0x3, 0x0)
socket(0x2b, 0x1, 0x1)
connect$auto(0x3, 0xfffffffffffffffe, 0x0)
syz_clone(0x800000, 0x0, 0x0, &(0x7f0000000180), 0x0, 0x0)

2.10420397s ago: executing program 3 (id=2912):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000009c0)={0x14, r1, 0x301, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x8800)

2.024926153s ago: executing program 5 (id=2914):
socket(0x1e, 0x2, 0x6)
r0 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x222000a, 0x4, 0x14, r0, 0x400000007fff)
r1 = prctl$auto(0x1000000003b, 0xa3f, 0x4, 0x6, 0x4)
mmap$auto(0x0, 0x82000b, 0x4000000002dd, 0xffffffffffffffff, 0x401, 0x8000)
r2 = fsmount$auto(r1, 0x0, 0x6)
r3 = epoll_create1$auto(0x3)
syz_genetlink_get_family_id$auto_seg6(0x0, r3)
close_range$auto(r1, r3, 0x4)
socket(0x1, 0x1, 0x0)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
ioctl$auto_SNDCTL_DSP_SYNC(r4, 0x5001, 0x7)
ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sg0\x00', 0x82002, 0x0)
ioctl$auto(r5, 0x1274, r5)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x8d00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
bind$auto(0x3, &(0x7f0000000180)=@tipc=@nameseq={0x1e, 0x1, 0x1, {0x41, 0x4, 0x2}}, 0x6a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r6 = open$auto(&(0x7f0000000040)='./file0\x00', 0x81, 0x7)
ioctl$auto_SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f00000000c0))
shutdown$auto(r0, 0x7)
inotify_init1$auto(0x3000000000000)

1.990507137s ago: executing program 3 (id=2915):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/loop9/queue/rotational\x00', 0x0, 0x0)
r2 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x161802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(r2, 0xc00c620f, 0x9)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000002800)={'dummy0\x00'})
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000004640), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(0xffffffffffffffff, &(0x7f0000004740)={0x0, 0x0, &(0x7f0000004700)={&(0x7f0000004680)={0x18, r3, 0x33195ba66fc949a5, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40404}, 0x8800)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'dvmrp0\x00', <r4=>0x0})
socket(0x11, 0xa, 0x300)
bpf$auto(0x0, 0x0, 0x6f4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'macsec0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'veth0_to_batadv\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'veth1_to_batadv\x00', <r7=>0x0})
r8 = socket(0x2, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000180)={'bond_slave_1\x00', <r9=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r9], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4004804)
sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f0000000340)={0x118, r3, 0x100, 0x70bd2b, 0x25dfdbff, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}]}, @ETHTOOL_A_COALESCE_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10}]}, @ETHTOOL_A_COALESCE_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_COALESCE_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_COALESCE_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x4004801}, 0x804)
recvfrom$auto(0xffffffffffffffff, 0x0, 0x8, 0x200, 0x0, 0x0)
io_uring_setup$auto(0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
r10 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0x59, &(0x7f0000005340)={&(0x7f0000000000)={0x14, r10, 0x1, 0x70bd2b, 0x25df9bfc}, 0x14}, 0x1, 0xfff5, 0x0, 0x2004c010}, 0x20000000)

1.910186118s ago: executing program 4 (id=2916):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x61, 0x100001000000003, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = socket(0x10, 0x2, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'dummy0\x00'})
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r0, &(0x7f0000000000)='\x13\x00', 0x2fe)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20082, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_CREATE_VM(r2, 0x8040ae9f, 0x0)
mprotect$auto(0x0, 0x4, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x61, 0x100001000000003, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async)
socket(0x10, 0x2, 0x4) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async)
write$auto(r0, &(0x7f0000000000)='\x13\x00', 0x2fe) (async)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20082, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae41, r3) (async)
ioctl$auto_KVM_CREATE_VM(r2, 0x8040ae9f, 0x0) (async)
mprotect$auto(0x0, 0x4, 0x7) (async)

1.531861508s ago: executing program 6 (id=2918):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyq4\x00', 0x2380, 0x0)
ioctl$auto_TCFLSH2(r0, 0x541b, 0x1000000000000)
mmap$auto(0x0, 0x80, 0xdf, 0x10, 0x0, 0x108000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x80011, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x553ac2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x1ff, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_generic(0xffffffffffffff9c, &(0x7f00000032c0)='/proc/kmsg\x00', 0x2, 0x0)
r1 = epoll_create$auto(0x3e)
epoll_ctl$auto(r1, 0x5, 0x8000000000000000, 0x0)
unshare$auto(0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101e81, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x40009, 0xdc, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x9, 0x0)
socket(0xa, 0x3, 0x7)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
recvfrom$auto(0x3, 0x0, 0x800000000c, 0xff, 0x0, 0xfffffffffffffffd)
recvmmsg$auto(0x3, 0x0, 0x687bcbb, 0x8, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0)
r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYRESHEX=r2], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0x1ac}}, 0x801)

1.51726754s ago: executing program 5 (id=2919):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x1, 0x84) (async)
open(&(0x7f0000000000)='./file0\x00', 0x100, 0x10) (async)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)
personality$auto(0xfffffffc) (async)
mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000)

1.292399724s ago: executing program 6 (id=2920):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x73)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
connect$auto(0x3, &(0x7f0000000140), 0x55)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_SOCK_GET(r0, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002280)={&(0x7f0000000300)={0x14, r1, 0xe77c815741d6438d, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x42010}, 0x8cc)

1.121096028s ago: executing program 4 (id=2921):
socket$nl_generic(0x10, 0x3, 0x10) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x848000000015, 0x5, 0x0) (async)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x5, 0x0)
openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x3, 0x6) (async)
getsockopt$auto(0x6, 0x29, 0x4, 0x0, 0x0) (async)
socket(0x28, 0x1, 0x84) (async)
socket(0x10, 0x2, 0x0) (async)
socket(0x2, 0x1, 0x84) (async)
socket(0x2, 0x1, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x1, 0xeb2, 0x401, 0xad24) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
r0 = open(0x0, 0x163340, 0x6a) (async)
r1 = socket(0x29, 0x800, 0x5)
pwritev2$auto(r0, &(0x7f0000000040)={&(0x7f0000000080)="02bb19632cf9a5609d1709f9", 0xdee}, 0x8000000000000001, 0x8001, 0x4, 0x2) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(r1, &(0x7f0000000300)=@in={0x2, 0x4, @remote}, 0x55) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) (async)
write$auto(0x3, 0x0, 0xffd8) (async)
open(0x0, 0x2240, 0x15c) (async)
socket(0xa, 0x801, 0x106)
socket(0x10, 0x800, 0xf)

1.096934801s ago: executing program 4 (id=2922):
mmap$auto(0x4, 0x20009, 0x8, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x4, 0x4)
getpgid$auto(0x0)
mincore$auto(0x1000, 0x8001, 0x0)
r0 = io_uring_setup$auto(0x877, 0x0)
io_uring_enter$auto(r0, 0xcd00, 0xcd00, 0x7, 0x0, 0xffffffffffffffff)
recvmmsg$auto(0x4, &(0x7f0000000200)={{0x0, 0x4, &(0x7f0000000140)={0x0, 0x4da}, 0x4, 0x0, 0x8, 0x800}, 0x1000}, 0xffffffff, 0x0, 0x0)
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0)
ioctl$auto(r1, 0x4008556c, 0x81)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mknod$auto(0x0, 0x20e9, 0x103)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x7)
socket(0x2, 0x1, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0)
sysfs$auto(0x5, 0x5, 0x6)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
statx$auto(r2, 0x0, 0x1fffc00, 0x5b6, 0x0)
socket(0x1e, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

1.070707547s ago: executing program 6 (id=2923):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000009c0)={0x14, r1, 0x301, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x8800)

1.016118154s ago: executing program 5 (id=2924):
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
r0 = socket(0x2, 0x6, 0x0)
r1 = epoll_create$auto(0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
epoll_ctl$auto(r1, 0x1, r0, 0x0)
socket(0x2c, 0x3, 0x0)

1.01460709s ago: executing program 3 (id=2925):
r0 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
mmap$auto(0xd, 0xb97, 0x8, 0x16, r0, 0x101)
write$auto(r0, &(0x7f0000000040)='\x00', 0x4)
r1 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_ADD_LINK_STA(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, r3, 0x10, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_TIMED_OUT={0x4}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x7f}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x4004010)
ioctl$auto_TIOCGDEV2(0xffffffffffffffff, 0x80045432, &(0x7f00000001c0)=0x5)
poll$auto(&(0x7f0000000200)={<r4=>r1, 0x481d, 0x850}, 0x3, 0x8)
lseek$auto(r1, 0x81, 0x1)
mprotect$auto(0x7, 0x200000000000000, 0x5)
r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/snd/controlC1\x00', 0x100, 0x0)
r6 = openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000000280), 0x400001, 0x0)
pkey_mprotect$auto(0x79, 0xfffffffffffffff1, 0x1, 0x1)
sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(r4, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, r3, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x400000}, @NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_TDLS_EXTERNAL_SETUP={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x404c000}, 0x2000000)
accept$auto(r5, &(0x7f00000003c0)=@ethernet={0x306, @random="b456cee4110f"}, &(0x7f0000000400)=0x3)
mmap$auto(0x9, 0xc00000000000000, 0x9, 0x11, r6, 0x7)
shmctl$auto(0x0, 0x9, &(0x7f0000000500)={{0x8, <r7=>0x0, 0xee00, 0x7, 0x1, 0x2, 0x3ff}, 0xfffffffd, 0x80, 0x9, 0x5, @raw=0x523, @inferred, 0x4, 0x0, &(0x7f0000000440)="724e39076fc92d25c75cfcb7dc59390532aedf902d6bdb43525e5c9580028222d857c5145e624881f29a93b999fc51e8", &(0x7f0000000480)="115a27dcb17dff898746182a22480ce77225dc84e62ff9dd319cb13e3792ec28a0a7bf9bda10b8b385e97f14433c9962835e627f26ea724dbe0d916482d67d8c36c0e117f835af92f54caebb51963435d0f7aa250f768724419bd319f194b966f295d979bb184acbd5d0ab703bf9f01335"})
fstat$auto(r1, &(0x7f0000000580)={0x764, 0x3, 0x0, 0x1, 0xee01, <r8=>0xffffffffffffffff, 0x0, 0x2, 0xff, 0x3, 0x4, 0x8, 0xa, 0x6, 0x5, 0x1, 0x2})
keyctl$auto(0xffff, r7, 0x0, r8, 0x3)
rename$auto(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)='./file0\x00')
ioctl$auto_USB_RAW_IOCTL_RUN(r4, 0x5501, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40, 0x0)
syz_clone(0x20000800, &(0x7f0000000700)="0d90c79cd9ad5b54445b2f699c32639a6c410fb9af02c55abe5bd89d7979bd2fd310d9c19d51ba1ff3baeeaeb0c8b24db2af8adf8dbd9912be323885120f4b6a657e11a5e9e58e9b81bb95a5944a94b1950fd5540f8c58f711dde58853303f19f68755d45bdf6a471b6cb1049deea921571152658aafc4a7a90e3ebfa0f92e61bc2d6f664c326fcf92040f8718ebb190a7a2105092b8d0441b3b9dbdd203d9256985d774fc8b599d54e01502547d4580a9e4bf1830f5f078cd8500352818f9e81b01574b3edc7f826cb98ce294bf988514a159", 0xd3, &(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880)="bb411ee424fcb273604370a7c62d6fa43b143219d683e3e874d3334cd4e2cf50ce0a32b27c9e8e177e1920237c8f5c84981d6bd22469fdcf0c14ff90c9fe75b850fc3789a3a2651179fd6e7a95f25524b753dcda209c5214f5e76e3b0a1f4454b3ad54eb009814245f0dd667900abc229a054a62a75b1b32dd8b5a968c19df6ccc1d6dd4dd2736bc523dcf702f20440b7cfa5df9cc90c9a19c55e9d5fa4652b80528fd1586736c355717f2695ebf5e579cf6bcf910372d6432b3d89476c3b9")
fallocate$auto(r2, 0x8, 0x5, 0x1)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000980)={'pim6reg\x00', <r9=>0x0})
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x1c, 0x0, 0x308, 0x70bd2d, 0x25dfdbfe, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x20040040)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NFC_CMD_SE_IO(r10, &(0x7f0000000c40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000ac0)={0x134, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {}, [@NFC_ATTR_SE_APDU={0xf7, 0x19, "32ab860367c945f4300dbb2860a8882c62866a82ed282e29c2a4273443e86d23c8fc86090640c1a3fe61f77f73f47a03675598d67389bf9db275178726b4664672f4d7aedd39c11ee5e2f68026f7d21c89d47bcf095ba293e34459c17a045e3a4fa7d46c730c5e3b2758918c1564a11478ff743b3e38e5ea75b0885d7e1918402006e72b29e0c48b799449e4684bb063fce533b5d01803c15ec77116f8fb2f8fc47f602e5dc4c000460311a4d7877fb914c447f79b48fe2de8d579a0491bbc681aa1d15c460bf205045c49f6c086dffd12e0cadeaa5b17b935da08219451e17b3e4700ec0132718e770c9c3ece20c7d7bcb91d"}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0x8}, @NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0x8}, @NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0x44d81f31}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x6}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0x1}]}, 0x134}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000)
io_setup$auto(0x0, &(0x7f0000000c80)=0xa)

952.13069ms ago: executing program 6 (id=2926):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = open(&(0x7f0000000200)='./cgroup\x00', 0x400, 0x23)
mmap$auto(0x0, 0x20007, 0xe6, 0xeb1, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sysfs$auto(0x2, 0xf, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8000, 0x0)
openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/mounts\x00', 0x80a00, 0x0)
r2 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/uid_map\x00', 0x40400, 0x0)
close_range$auto(r2, r1, 0x10003)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/mouse0\x00', 0x1a1380, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
r3 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_options\x00', 0x8000, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
write$auto_tracing_iter_fops_trace(r3, &(0x7f00000000c0)="6b687127fedc0d4a", 0x8)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20008054}, 0x0)
fchdir$auto(r0)
utimes$auto(&(0x7f00000001c0)='MAC80211_HWSIM\x00', &(0x7f0000000240)={0x4, 0x8001})
mkdir$auto(&(0x7f0000000140)='MAC80211_HWSIM\x00', 0x1)
rmdir$auto(&(0x7f0000000340)='MAC80211_HWSIM\x00')

931.893695ms ago: executing program 4 (id=2927):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysinfo$auto(0x0)
r0 = socket(0x2, 0x6, 0x0)
r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
ioctl$auto_TUNGETIFF(r1, 0x800454d2, 0x0)
getsockopt$auto(r0, 0x10d, 0x0, 0x0, 0x0)
ioperm$auto(0x7, 0x6, 0x1)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r2, r3, 0x2)
socket(0x11, 0x3, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000280)={0x2, 0x6, 0x412}, 0x8, 0x0)
read$auto(0x4, 0x0, 0x80)
unshare$auto(0x40000080)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x20200, 0x0)
select$auto(0x804, 0x0, &(0x7f0000000100)={[0x9, 0x0, 0x0, 0x80000300, 0x1, 0x0, 0x2, 0x3, 0x81, 0x10000005e58296b, 0x1e, 0x9, 0x7ff, 0x200, 0x20000000008, 0x4000000000006]}, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x101142, 0x0)
write$auto(r4, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4)
getcpu$auto(&(0x7f0000004100)=0xffff, &(0x7f0000004140)=0xfffffff2, 0x0)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
read$auto_def_blk_fops_fs(r5, &(0x7f0000000140)=""/194, 0xc2)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000480)='/dev/radio13\x00', 0x802, 0x0)
mmap$auto(0x0, 0x20a0009, 0x3, 0x12, r6, 0x8000)
sendfile$auto(0x1, 0x3, 0x0, 0x100000)
msgsnd$auto(0x0, &(0x7f00000026c0)={0x6, 0x4}, 0x7ff, 0xfb89)

828.215286ms ago: executing program 3 (id=2928):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x10, 0x2, 0x6)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
r0 = socket(0x2, 0x3, 0xa)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x4, 0x0, 0x3, &(0x7f0000000000)='!u\x04:&/\xbd\x9b', 0x800000e)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
pwrite64$auto(0xc8, &(0x7f0000000340)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdds\x1cJ\x99\x00:/\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\xadCl\x9e\xeb\xcd\vp\x99\x00\xc8eX\xdc3\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0A\x94\xa3\xaef\x87\xd8\x95I\xfd\xa8\t\xac\x87\xb7\x1d\xd5\x83\xdcyu]\xde\xbe\xbf$<.}\x8b`\x04\xfc\xa2\xab\xb5]\x80\x00\xb9D\xc5\xbc\xf2a\xd66\xa5\xd3\xc1r\x96\x1e\x8db\x05=`\x01\x11\x04Tz\x87A$\x115\x95PUf\xa7\xfe\x19\x00\x82go}@W\xd5\xaej\x01\xbf>5n\x17S\xc0\x8a\xaf%O\xd1W\xa3ua+sUJ\xea\xf9\xb7p-\x128\x9d\xbaM_\xff\x1c\xc3sG\x04\xf2\xd3\xf3{;\xd4\xd7\x1c\x1dZ\xe9\xe9\xc9\x9cu5\xe9\xa2\xb3N\xd2\xc1\xc8\xa5\xadt\xd5BKD\x86\xeb%\a*<P\xb0\x8a\"\x176\xe1p*0\xac\xb9\xd5\xab\xcc$\x9ai\xca\v(\xcd?\x8d\xd2\x1d\xe1\x99N\x028\xe2\x12\t6x\xca{\n\xe86;\x81\xc4\x00\x8b\xed\xfa\xc0\x18\xe7\xd0\x97\xd8\x00\xd5\x85\x03\xf1\f\xcc\xf7\xb16L\xd4\xb0AV.\xe3\x9e\x8csh\x8a\x84\xe30\xde\x8d\xe3\xa4\xf1e\xcf\xb2Rx\x8f\x98G\xc3\xc8UP\xb4-\aW\xb5h\x8b\x98T\xe0n\x8d~\xf2\x8b\x1c>\x06\xbb\x1e\xfb\x11U\f&\xcbP\xf1\xcf\xccb\xe8Wb\xc5ae\xe3\xf9l\xa9vK\xed\x8cL\xfb%g\x83;\xe1\xe2w\xd6\xaa6\x16\x8fx\x1a\xd7\xc8\xf4[\xbc\b\xe1Z\x92\x14Q\xde<o\xb6[o\b\x00', 0x46, 0x3)
write$auto(0x3, 0x0, 0x800)
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x82002, 0x0)
r2 = clone$auto(0x7c, 0x9, &(0x7f0000000100)=0xa, &(0x7f0000000140)=0x3, 0x200)
getpgid$auto(r2)
ioctl$auto(r1, 0x2283, r1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vkms/drm/card1/card1-Virtual-1/modes\x00', 0x40000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/44, 0x2c)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000001900)=""/4096, 0x1000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x47, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)

673.532597ms ago: executing program 6 (id=2929):
r0 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x101, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mincore$auto(0x1000, 0x8001, 0x0)
io_uring_setup$auto(0x1, 0x0)
open(0x0, 0x2a4c0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000300)={0x830, 0x0, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x4}, @NL80211_ATTR_BEACON_TAIL={0x33d, 0xf, "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"}, @NL80211_ATTR_MAC_ADDRS={0x4bb, 0xa6, 0x0, 0x1, [@generic="9259616e144e49072f70b737cfca7a9ca78fb9d84c26ac7111f599ced6cecfe4222ac1175f47ed2a7de8af969bb00582ebf7941e7b21f6e1098cc9104864d76957e6908a9a76af6fc498a9c274b5d61328bc053f76718d2d155bef5be9105d41fb74c1b4fb062c6a40580fb76ff4f4db12524aaddc2eda0e784904c6379e2247a9df978e7f5fb28e3f3d6689a4eb1d9e21ef0da198ef28992edfda21ac0392c9b604ac17ace4b4b268bf8de07b435e60c8c852c5fbaa90f04516bf7dbcc7d70a1a1547f4b700", @typed={0x14, 0xb3, 0x0, 0x0, @ipv6=@local}, @nested={0x1c, 0x94, 0x0, 0x1, [@nested={0x4, 0xac}, @generic, @nested={0x4, 0x68}, @nested={0x4, 0x10b}, @typed={0x4, 0x69}, @typed={0x8, 0x80, 0x0, 0x0, @fd=r0}]}, @nested={0x147, 0x10f, 0x0, 0x1, [@generic="f357f939e7a7379b0bd036dccc782cbc073cdda68e85cfaf50a0445215dda5f5cbc71c276f33024f459b01266398980f5146cca6d47ebc57cac9af02966d35163e236982b11c0b998133d003cfb8c9fc46900a90eafb8575890ba26181c5a7f84b5de3bd9d63983127f363b5904aa20562fc1d2c1b7f1c3e8133f0c6c81e7982d10342be02c3178eba28975bfa28d3064b41e8af081bf7afd081814ea1ed9045ed7f64a1bccbb7fbb350151a681dd417ff3f14469b3dce3ccebb1cd404d04223e68ed8a06d7fcb34f13a974595", @nested={0x4, 0x13a}, @typed={0xb, 0x12e, 0x0, 0x0, @str=',:\xc0!/\x81\x00'}, @nested={0x4, 0x100}, @nested={0x4, 0x12f}, @generic="a0b93dd8249bd2a4765310b6b877d2c45cb1208a853caf8b18ada4374f2d353076b83b31c0fcd2d0f1de353f9e0b1e19cd80efcd4d649785d066515841ff3ac8c99f47888230c96cb4d53ab4f3daae86b2e1dc8e01521beac6592fffdfdc"]}, @typed={0x61, 0x148, 0x0, 0x0, @binary="cac2683b939ea9ad319a708ed9d7255f75f693b73dc52e2e58e6c9df0750ef04e55996efc5dde32a70f9d447b9edc4353924850ee3016e59f6381adab90586bbf5070ce0ac35c3d6fd1ba8ddc9d8969af92792a58584213234f47f1b13"}, @generic="8bda687dd8499c0fccb038f74b0026676e5c13bfebc05c6fe34819994914ff2928ca5194491344a696a29af294be3f5710000422e109cf73e55c1e2c8f9e5aa7fec563895947e3993605e812a17d3ad3704ca8d76310850f6d4a3727be5ee5e044ff1b08353ac2d73af6adc4d3770aad0c0d0ee0e5343a8130f806593345b03a39226f013a5259b80d96e5e19242f0d1813d0b81902d2e46a431c86b4ffac7fb0457b2369c18f7cbf719700376af108f0f10115a0077fa497225460c3c", @nested={0xe1, 0x12, 0x0, 0x1, [@nested={0x4, 0x12f}, @generic="c06259b37b9b36c97e95bc80970842ac469aa081ea9cd06b04a78b1ef12439fc2b510258300c6fa5e852196cfc6951a8489cb0ec5c8cda153c5bfa4a018c6c93f6602da8ca1d5d6e9dc93d39808a092a28cbbb9f1171894b66edb14853146fc3071fd117ce607b9a73dd157a4c18f77e7fd057d24366b87bfa1507fa643965ecac670ea996d60a5746ce23c1f7dfe6a9e4f49ce52a46b9867b827c88e23e618b012bb33b1e213fd68cc1406db5a78748b1088ebd1e81b92cd0a74b8f79a799d9dbadda5eed2c5c83eaf5974ab9c395ddee2c0b1669ded1bdde"]}, @nested={0x74, 0x86, 0x0, 0x1, [@nested={0x4, 0x5c}, @generic="4ddb92cf438b98657d9dd328e008a1594ae055248184facddf2424ead9bb9df05a069786fc23ae94", @typed={0x3f, 0x8c, 0x0, 0x0, @str='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00'}, @nested={0x4, 0x2a}]}]}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0xd9b}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x8f}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x3}]}, 0x830}}, 0x1)
r3 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r1, @ANYRES32], 0x18}}, 0x80)
write$auto(r0, 0x0, 0x40)

483.427203ms ago: executing program 6 (id=2930):
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
setsockopt$auto(0x3, 0x0, 0x2, 0x0, 0x0) (async, rerun: 32)
r0 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x8082, 0x0) (rerun: 32)
r1 = openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
close_range$auto(r0, r1, 0x6)
socket(0x28, 0x1, 0x0) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r2, 0x29, 0x31, 0x0, 0x110) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)={0x30, r4, 0x1b, 0x70bd26, 0x25dfdbfe, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xe, 0x3, 0x0, 0x1, [@typed={0x8, 0x18, 0x0, 0x0, @pid}, @generic="fb47"]}, @OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x48c0}, 0x4800)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x3, 0xa)
r5 = openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x2, 0x0)
write$auto(r5, 0x0, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
io_uring_setup$auto(0x6, 0x0) (async, rerun: 64)
r6 = socket(0xa, 0x2, 0x88) (rerun: 64)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r6, @new_prog_fd=r6, 0x4, @old_prog_fd=r6}, 0xa3) (async)
socket(0x2, 0x3, 0xa)
socketpair$auto(0x8, 0x5, 0x3, 0x0) (async, rerun: 64)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async, rerun: 64)
bind$auto(0x3, &(0x7f0000000080), 0x6b) (async, rerun: 64)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (rerun: 64)
select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x24a8, 0x1, 0x948b, 0x4, 0x15f4da0a, 0xfffffffffffffffa, 0x2, 0x300000000000000, 0x80000004, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)

264.43711ms ago: executing program 3 (id=2931):
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x6)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6b, 0x0, 0x7d, 0xfffffffffffffffd, 0xd4, 0x4, 0x4, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x8, 0x81, 0xffffffffffff628e, 0xa747, 0x0, 0x804})
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x11, 0xffffffffffffffff, 0x62)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x4d0041, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r0 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r0, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x3b)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)={0x18, 0x0, 0xd0d58b333228212f, 0x78bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_BSSID={0x4}]}, 0x18}}, 0x4000000)
mmap$auto(0x8000000, 0x5, 0x72, 0x8b72, 0x2, 0x8000)
pipe2$auto(0x0, 0xffffffff)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/dummy0/carrier\x00', 0x8182, 0x0)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
write$auto_fops_init_pkru_pkeys(r2, &(0x7f0000000440)="0bad", 0x2)

131.043845ms ago: executing program 5 (id=2932):
r0 = openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000003540)='/proc/thread-self/setgroups\x00', 0x2, 0x0)
writev$auto(r0, &(0x7f0000003600)={0x0, 0x2}, 0x8)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mincore$auto(0x1000, 0x8001, 0x0)
io_uring_setup$auto(0x1, 0x0)
open(0x0, 0x2a4c0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r1, @ANYRES32], 0x18}}, 0x80)

44.311967ms ago: executing program 5 (id=2933):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/loop9/queue/rotational\x00', 0x0, 0x0)
r2 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x161802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(r2, 0xc00c620f, 0x9)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000002800)={'dummy0\x00'})
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000004640), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(0xffffffffffffffff, &(0x7f0000004740)={0x0, 0x0, &(0x7f0000004700)={&(0x7f0000004680)={0x18, r3, 0x33195ba66fc949a5, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40404}, 0x8800)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'dvmrp0\x00', <r4=>0x0})
socket(0x11, 0xa, 0x300)
bpf$auto(0x0, 0x0, 0x6f4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'macsec0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'veth0_to_batadv\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'veth1_to_batadv\x00', <r7=>0x0})
r8 = socket(0x2, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000180)={'bond_slave_1\x00', <r9=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r9], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4004804)
sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f0000000340)={0x118, r3, 0x100, 0x70bd2b, 0x25dfdbff, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}]}, @ETHTOOL_A_COALESCE_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10}]}, @ETHTOOL_A_COALESCE_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_COALESCE_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_COALESCE_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x4004801}, 0x804)
recvfrom$auto(0xffffffffffffffff, 0x0, 0x8, 0x200, 0x0, 0x0)
io_uring_setup$auto(0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
r10 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0x59, &(0x7f0000005340)={&(0x7f0000000000)={0x14, r10, 0x1, 0x70bd2b, 0x25df9bfc}, 0x14}, 0x1, 0xfff5, 0x0, 0x2004c010}, 0x20000000)

0s ago: executing program 3 (id=2934):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
sendmsg$auto_CTRL_CMD_GETFAMILY2(0xffffffffffffffff, 0x0, 0x880) (async)
read$auto(r0, 0x0, 0x20) (async)
rt_sigtimedwait$auto(&(0x7f00000001c0)={0xff}, &(0x7f0000000600)={@_si_pad}, &(0x7f0000000680)={0x0, 0xdb3}, 0x8) (async, rerun: 32)
sendmsg$auto_IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, 0x0, 0x8, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20008010}, 0x40001) (rerun: 32)
r1 = socket(0x2c, 0x3, 0x2fd) (async)
socket(0xa, 0x801, 0x100) (async, rerun: 32)
sendmsg$auto_OVS_VPORT_CMD_NEW(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="d8000000", @ANYRES16=0x0, @ANYBLOB="00015e8f459fec8029644def3702c5ef400d", @ANYRES32=0x0, @ANYBLOB='\b\x00\b\x00', @ANYRES32=0x0, @ANYBLOB="0a0003002e25405e2c00000008000200faffffff080001000200000098000a8091000a80d628895125bdea509539bebcdbb3bb62f6c095edb6eacd2c363b5ef40736fbee93dd2919891b38f6c41196c718203d4f7db040e6b4d214009100fc00000000000000000000000000000187be19367d810cbe5bc78f45f9d69dac4b9faecb61bebebcdc7c6f166406efc3e2ed60d9b81325dc1bb922bb2873b504000c80040029800b00a200f98b631bb8ecdb00000000"], 0xd8}, 0x1, 0x0, 0x0, 0x40000}, 0x0) (async, rerun: 32)
r2 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001400c7d2a2e1917949643de42b"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async)
socket(0x2b, 0x1, 0x1) (async)
recvmmsg$auto(r2, &(0x7f0000000580)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x5, 0x80000001}, 0x1}, 0x3, 0x6, 0x0)
sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (rerun: 64)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x40000080)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x401bf, 0x7352, 0x40, 0x65f, 0x1ffde, 0x7, 0x3, 0x4, 0x9, 0x3, 0x5, 0x8, 0x0, 0x9, 0x6, 0x10002, 0x80, 0x4, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, [0x0, 0x0, 0x0, 0x100, 0x0, 0x6, 0xfffffffffffffffd, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0x0, 0x3, 0x800001, 0x4, 0x7, 0xfffffffffffffffd, 0x8, 0x200000000000, 0x0, 0xffffffffefffffff, 0x3, 0x0, 0x0, 0x2, 0xfffffffffffffffd, 0x400000000005b8, 0xc, 0x4000000000, 0x8, 0x4, 0x6, 0x6, 0x890, 0x800000000000a, 0xfffffffffffffffc, 0x1000, 0xa38, 0x0, 0x4, 0xfffffffffffffffc, 0x2, 0x4000000000, 0x8, 0x0, 0x100000]}, 0x1fe, 0xd) (async, rerun: 32)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) (async, rerun: 32)
socket(0x2, 0x1, 0x0) (async)
mmap$auto(0x0, 0x8, 0x1000000004, 0x13, 0x3, 0x180000000)
r5 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0xfe, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async)
r6 = syz_genetlink_get_family_id$auto_seg6(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SETHMAC(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000c40)={0x2c, r6, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@SEG6_ATTR_SECRETLEN={0x5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x6}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x40000)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000001340)=ANY=[@ANYBLOB="88060000", @ANYRES16=r6, @ANYBLOB="00082bbd7000fbdbdf25030000003a0004004c2cf36d437dbf3dde5a93bd38735c1dbfb62949b2b6f2ac27bc03ef9b6cf724c36444f290212c77258e29517ed2acd64c0cd56c929d0000930004004d13b8dcdab67a1de0afb4735161b42b9c1ca03cbd5472ffff42700835d1f2da748529fba7a7ff9273263c164c9e79f46dfea3ccc96fceb3a638e276fb39e4a8c736bb215f1c7e44e152bee34dc85131bf2203aa8eb59452c145ba73266ab71af90e66f49d9366592b09fc4a04264e1d1a01c97707fc05bbffe879e4212c0f339e56d072f01d77e8f1e8597fdc1c2f000500050008000000750107800800500002000000c5468e511b2f541d8b4a97fd9c7813fd30cdff9ba236dc107b8744152483b7b3596f466e60a549485d34ea2c4ed727b77369c6ba9507f0dff331a4d7cfae2eaa2747a3dba77a98ff704ee188433cdd05e9e0096373e6fd679d239919997c8eb57291c068621f3ed7d6c6074c648793e2ea6581f1b634e745c102087812ebdb9d778f519bd58871dc876f6aa9d172d1e828ae3db545ab39d4694a3b789160b78b192409cd8c1105afb36b21cc96ab2c65862f5b4c32087ef01504830844063af512a0effaa78537f408a741a94dc215ca9c1f498cf053d2c44ac8813f56c0fe78aea1432fe93d96a2d57a8e1a7cd056b707f0b499f20800ff00", @ANYRES32, @ANYBLOB="290016000000000000000000000200000000000057003580143b739310f2eb003400fc01000000000000000000000000000004006b80040025d1865fe0ebfffa376a3ea501ad66bf1bc760a09b202e19bda9c35fb5240adc41db5fd6df4d43e1e8556ca00166bae105157e7ab76ee57757ea3fe61a5b8fc9e85c0c8d121c948fbec93794b297abf7f9ff21443f33dd35e3eb38a2e4c1c1febcbfb709d0dc6a03080d786bc9af8156d7d5d88daef7c004f37420cd284f6c", @ANYRES32=0x0, @ANYBLOB="04007a00040001809898c70c94568c81559503e6a7f745cb55478340a8df7e99fbb4af303415da760a6fb315001a7b0000000054000400bad58589c21b18cb71787032d808ef059fd100e383072fe55f67de722e4ad7c981266c19a1a4087e32850cb9da36e1ae7b3b9c97a1a617ab1a45be8d47c7b782c840eb12fcbe0779fc2c3e7c783b69c6aa030780f5945ddbe3cd0115da71fa4b711dfb28050b0a9a434e87fc88dd6262a13463cb036dea4f6898fd30d82044a47556270709ea8f1163400406bc23d5dda7e60036ae6e15916064ca911478ced1a67d3386a9f99914b0967d8f6225bd02ed80cd693292958cb1c037c7b385c234c7029e99f00f7f97c8c1900b1da68149a15c712c7a1e5e197496df0628b2de9ee9b640c151becfaeb9351b01184898be71cba08c7ede63bf02bdae4b5b8f9819eb50e03d2acc1500ad30c438f970ec020580ea01ca80080081000f61fd48818ded08e26b1963c5ebc9eddea74ee0c2cb170bfdf3be96abf300beea8c755fa57efd44b35caceb9e8451299180638d24f0b09aee4ea5ce7c44c8329bfdd4cf09d7da5ef740d984f208f2dd21169ee8e5876f8f8e7d43371caaa3006af4bf4f1ee94be1a101a01aac9a61475c2dfe67a3b40a1f2d75c03428e79172f28f17d1ad2d551d8effcc0bb60595658fe64763cf78469bed54545e3259973cc6696d15a11107c0bb0937cf11f1cdeb2eedf91d5fdb4a45bec074deb845c9ed9c3866dad4809da31bab1056a69569056d5f7f12de3df15866a38b3865a96abec3d120cb3b99725dc8a1061eb360832dfea73bfca099f559b3c270c8ce850daf36617a537b34203e2137040033803dc3ecab2bf2bf8b019814f8acad3bdf6780cd7235783f2c67be2aedd51b0a95aa68788589fce9a0f196b9d1703df1a97204e82b9df8892c218d9bd1f564cbdcc13b3ff4c488e4c5f0f5bb917dc935df28accb4dd181d8f8738dbbe72da9266d998f4ef4d26192995fdd282c51bfe68ded3381f67a87492319e10a28e57d38d1ee15c4eb147d0f6c6cac1815d29d267fcbf930e8cf6a3f8573d70954f290e1e17a1bd3b3916cc26211c424feb91298a94ee9f322ea6593275e33ae9d5fe26b42b12880b7e2dfedefd760d652f05a98ec828ecf1e000008008e00030000005f0042808e23a778ad49cb59b6d13cfc4b5c7a93b6822509591d873e4b93a37c9c6951ec6820d740922f482d8504401519410efa230e672e068b01a60400698004000b8004009280c890c88b281d9c1269a6900801b8840400b48004008580009400f1800e0026005be521252a3a2c5e7b000000db632fe190d366171ce351747a46c090e05be5b101364054b3513c9c2bee2148478d109d2a42bc681efcc4a644b9ca461aca9588ba7242523ad7587a2b12f649e0fe5107d582ee73ac3de66678f55640bb4a7d571043b013249fda547457a85cb3212820889368d82f667c3ceb0a1f27a2b796d2df9a11b3fb83c6f804000f80000014000100ff010000000000000000000000000001050006000800000008000200ffffffff"], 0x688}}, 0xc041)

kernel console output (not intermixed with test programs):






	

	
	


	





	
	
	

	


	

		

		
		
		
	

	

	
	
	
		






	




	






		







	

	

	
		

	


	
	

		
	
		
	





			








	

	
	


	













	
	
	


	

	
	
	


	

	
	

	
	
	


		



		

		




	
	
	




	
	


	


	








	
	



	
	
	
	






	




	





		







	

	
		





	

	









		









	

	









		





				

		
		

	
		

	


	
	

		
	
		
	





			








	

	
	


	





	
	
	

	


	

		

		
		
		
	
	
	
	
		






	




	





		









	
	

	


	
		

	


	
	

		
	
		
	





			








	

	
	


	




		

		

		

			



	


	

		

		
		
		
	

	

	
	
	
		






	




	






		








	
		
			
			


	

	

	
						
	
						
	
						
	
						
	

	
	
					



	




	




	


	
	


	
	


	
	
		


	
	
	
	
	

	

	
	
		
		


	

	

	
	
		
		


			

	
	
	

			



	

		
	




[  393.772920][T11999] hsr_slave_0: left promiscuous mode
[  393.785812][T11999] hsr_slave_1: left promiscuous mode

syzkaller
syzkaller login: [  393.815671][T11999] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  393.837734][T11999] batman_adv: batadv0: Removing interface: batadv_slave_0
[  393.868358][T11999] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  393.870399][T13915] cifs: Unknown parameter 'à'
[  393.887707][T11999] batman_adv: batadv0: Removing interface: batadv_slave_1
[  393.985150][T11999] veth1_macvtap: left promiscuous mode
[  394.027717][T11999] veth0_macvtap: left promiscuous mode
[  394.053270][T11999] veth1_vlan: left promiscuous mode
[  394.070660][T11999] veth0_vlan: left promiscuous mode
[  394.326301][T11999] team0 (unregistering): Port device team_slave_1 removed
[  394.358210][T11999] team0 (unregistering): Port device team_slave_0 removed
[  394.419928][T13886] bridge0: port 1(bridge_slave_0) entered blocking state
[  394.434613][T13886] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.443728][T13886] bridge_slave_0: entered allmulticast mode
[  394.452621][T13886] bridge_slave_0: entered promiscuous mode
[  394.480040][T13886] bridge0: port 2(bridge_slave_1) entered blocking state
[  394.490740][T13886] bridge0: port 2(bridge_slave_1) entered disabled state
[  394.500055][T13886] bridge_slave_1: entered allmulticast mode
[  394.509742][T13886] bridge_slave_1: entered promiscuous mode
[  394.618090][T13886] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  394.642918][T13886] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  394.693517][T13886] team0: Port device team_slave_0 added
[  394.712249][T13886] team0: Port device team_slave_1 added
[  394.773829][T13886] batman_adv: batadv0: Adding interface: batadv_slave_0
[  394.793858][T13886] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  394.824926][    C0] vkms_vblank_simulate: vblank timer overrun
[  394.833405][T13886] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  394.863817][T13886] batman_adv: batadv0: Adding interface: batadv_slave_1
[  394.883890][T13886] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  394.914984][    C0] vkms_vblank_simulate: vblank timer overrun
[  394.982955][T13886] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  395.188857][T13886] hsr_slave_0: entered promiscuous mode
[  395.250088][T13886] hsr_slave_1: entered promiscuous mode
[  395.259126][ T5834] Bluetooth: hci1: command tx timeout
[  395.266701][T13966] FAULT_INJECTION: forcing a failure.
[  395.266701][T13966] name failslab, interval 1, probability 0, space 0, times 0
[  395.282523][T13966] CPU: 0 UID: 0 PID: 13966 Comm: syz.5.2042 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  395.295036][T13966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  395.307108][T13966] Call Trace:
[  395.311043][T13966]  <TASK>
[  395.314560][T13966]  dump_stack_lvl+0x16c/0x1f0
[  395.320191][T13966]  should_fail_ex+0x497/0x5b0
[  395.325829][T13966]  ? fs_reclaim_acquire+0xae/0x150
[  395.331978][T13966]  should_failslab+0xc2/0x120
[  395.337643][T13966]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  395.344527][T13966]  ? __d_alloc+0x35/0x8c0
[  395.349742][T13966]  __d_alloc+0x35/0x8c0
[  395.354743][T13966]  d_alloc_pseudo+0x1c/0xc0
[  395.360197][T13966]  alloc_file_pseudo+0xd2/0x200
[  395.366044][T13966]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  395.372620][T13966]  __anon_inode_getfile+0x136/0x3c0
[  395.378853][T13966]  ? __pfx___anon_inode_getfile+0x10/0x10
[  395.385705][T13966]  io_uring_setup+0x1952/0x3370
[  395.391520][T13966]  ? __pfx_io_uring_setup+0x10/0x10
[  395.397825][T13966]  ? __fget_files+0x206/0x3a0
[  395.403446][T13966]  ? ksys_write+0x1ba/0x250
[  395.408861][T13966]  ? __pfx_ksys_write+0x10/0x10
[  395.414702][T13966]  ? rcu_is_watching+0x12/0xc0
[  395.420414][T13966]  __x64_sys_io_uring_setup+0x98/0x140
[  395.426958][T13966]  do_syscall_64+0xcd/0x250
[  395.432355][T13966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  395.439417][T13966] RIP: 0033:0x7f8e44985d29
[  395.444705][T13966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  395.468227][T13966] RSP: 002b:00007f8e45813038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  395.478308][T13966] RAX: ffffffffffffffda RBX: 00007f8e44b75fa0 RCX: 00007f8e44985d29
[  395.487858][T13966] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  395.497409][T13966] RBP: 00007f8e45813090 R08: 0000000000000000 R09: 0000000000000000
[  395.506952][T13966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  395.516498][T13966] R13: 0000000000000000 R14: 00007f8e44b75fa0 R15: 00007ffc6153a948
[  395.526050][T13966]  </TASK>
[  395.529749][    C0] vkms_vblank_simulate: vblank timer overrun
[  395.545451][T13886] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  395.573742][T13886] Cannot create hsr debugfs directory
[  396.639667][T13886] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  396.680140][T13886] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  396.701409][T13886] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  396.742726][T13886] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  396.990285][T13886] 8021q: adding VLAN 0 to HW filter on device bond0
[  397.046652][T13886] 8021q: adding VLAN 0 to HW filter on device team0
[  397.069468][T11999] bridge0: port 1(bridge_slave_0) entered blocking state
[  397.078001][T11999] bridge0: port 1(bridge_slave_0) entered forwarding state
[  397.102771][T11999] bridge0: port 2(bridge_slave_1) entered blocking state
[  397.111312][T11999] bridge0: port 2(bridge_slave_1) entered forwarding state
[  397.276764][T14052] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2063'.
[  397.341910][ T5834] Bluetooth: hci1: command tx timeout
[  397.443853][T13886] 8021q: adding VLAN 0 to HW filter on device batadv0
[  397.510543][T13886] veth0_vlan: entered promiscuous mode
[  397.612283][T13886] veth1_vlan: entered promiscuous mode
[  397.756116][T13886] veth0_macvtap: entered promiscuous mode
[  397.812116][T13886] veth1_macvtap: entered promiscuous mode
[  397.842148][T13886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.855619][T14086] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2070'.
[  397.880457][T13886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.909709][T13886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.958033][T13886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.983395][T13886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.021226][T13886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.091864][T13886] batman_adv: batadv0: Interface activated: batadv_slave_0
[  398.151549][T13886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.175230][T13886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.212185][T13886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.242653][T13886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.261333][T13886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.277248][T13886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.293803][T13886] batman_adv: batadv0: Interface activated: batadv_slave_1
[  398.343847][T13886] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  398.366714][T13886] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  398.385908][T13886] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  398.406805][T13886] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  398.566421][T11999] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  398.598462][T11999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  398.676464][T11999] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  398.703481][T11999] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  399.038926][T14135] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2074'.
[  399.422311][ T5834] Bluetooth: hci1: command tx timeout
[  400.266461][T14140] FAULT_INJECTION: forcing a failure.
[  400.266461][T14140] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  400.288403][T14143] netlink: 338 bytes leftover after parsing attributes in process `syz.5.2076'.
[  400.301233][T14140] CPU: 1 UID: 0 PID: 14140 Comm: syz.4.2083 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  400.313769][T14140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  400.323025][T14143] FAULT_INJECTION: forcing a failure.
[  400.323025][T14143] name failslab, interval 1, probability 0, space 0, times 0
[  400.325819][T14140] Call Trace:
[  400.325828][T14140]  <TASK>
[  400.348313][T14140]  dump_stack_lvl+0x16c/0x1f0
[  400.353940][T14140]  should_fail_ex+0x497/0x5b0
[  400.359560][T14140]  _copy_from_user+0x2e/0xd0
[  400.365071][T14140]  memdup_user_nul+0x72/0x110
[  400.370688][T14140]  event_inject_write+0xbe/0x1ed0
[  400.376723][T14140]  ? __pfx_lock_release+0x10/0x10
[  400.382756][T14140]  ? trace_lock_acquire+0x14e/0x1f0
[  400.388997][T14140]  ? get_pid_task+0x35/0x250
[  400.394517][T14140]  ? __pfx_event_inject_write+0x10/0x10
[  400.401177][T14140]  ? __mutex_trylock_common+0xea/0x250
[  400.407731][T14140]  ? rcu_is_watching+0x12/0xc0
[  400.413449][T14140]  ? trace_lock_acquire+0x14e/0x1f0
[  400.419695][T14140]  ? apparmor_file_permission+0x251/0x400
[  400.426572][T14140]  ? ksys_write+0x12b/0x250
[  400.431980][T14140]  ? lock_acquire+0x2f/0xb0
[  400.437377][T14140]  ? ksys_write+0x12b/0x250
[  400.442785][T14140]  ? __pfx_event_inject_write+0x10/0x10
[  400.449441][T14140]  vfs_write+0x24c/0x1150
[  400.454641][T14140]  ? __fget_files+0x1fc/0x3a0
[  400.460271][T14140]  ? __pfx___mutex_lock+0x10/0x10
[  400.466312][T14140]  ? __pfx_vfs_write+0x10/0x10
[  400.472033][T14140]  ? __fget_files+0x206/0x3a0
[  400.477655][T14140]  ksys_write+0x12b/0x250
[  400.482863][T14140]  ? __pfx_ksys_write+0x10/0x10
[  400.488688][T14140]  ? rcu_is_watching+0x12/0xc0
[  400.494405][T14140]  ? rcu_is_watching+0x12/0xc0
[  400.500135][T14140]  do_syscall_64+0xcd/0x250
[  400.505554][T14140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  400.512636][T14140] RIP: 0033:0x7fa065185d29
[  400.517935][T14140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  400.541479][T14140] RSP: 002b:00007fa066007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  400.551579][T14140] RAX: ffffffffffffffda RBX: 00007fa065375fa0 RCX: 00007fa065185d29
[  400.561147][T14140] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  400.570718][T14140] RBP: 00007fa066007090 R08: 0000000000000000 R09: 0000000000000000
[  400.580290][T14140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  400.589867][T14140] R13: 0000000000000000 R14: 00007fa065375fa0 R15: 00007ffd06cfe3f8
[  400.599447][T14140]  </TASK>
[  400.603112][T14143] CPU: 0 UID: 0 PID: 14143 Comm: syz.5.2076 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  400.615623][T14143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  400.627700][T14143] Call Trace:
[  400.631633][T14143]  <TASK>
[  400.635147][T14143]  dump_stack_lvl+0x16c/0x1f0
[  400.640775][T14143]  should_fail_ex+0x497/0x5b0
[  400.646405][T14143]  should_failslab+0xc2/0x120
[  400.652040][T14143]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  400.658502][T14143]  ? skb_clone+0x190/0x3f0
[  400.663811][T14143]  skb_clone+0x190/0x3f0
[  400.668915][T14143]  netlink_deliver_tap+0xafd/0xca0
[  400.675099][T14143]  ? __pfx_rtnl_fdb_dump+0x10/0x10
[  400.681250][T14143]  netlink_dump+0x639/0xd00
[  400.686694][T14143]  ? __pfx_netlink_dump+0x10/0x10
[  400.692756][T14143]  ? lock_acquire+0x2f/0xb0
[  400.698160][T14143]  ? netlink_lookup+0x3d/0x270
[  400.703869][T14143]  __netlink_dump_start+0x6d9/0x980
[  400.710117][T14143]  ? __pfx_rtnl_fdb_dump+0x10/0x10
[  400.716244][T14143]  rtnetlink_rcv_msg+0xb44/0xea0
[  400.722163][T14143]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  400.728722][T14143]  ? __pfx_rtnl_dumpit+0x10/0x10
[  400.734650][T14143]  ? __pfx_rtnl_fdb_dump+0x10/0x10
[  400.740787][T14143]  netlink_rcv_skb+0x165/0x410
[  400.746493][T14143]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  400.753037][T14143]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  400.759366][T14143]  ? lock_release+0x4e2/0x6f0
[  400.764967][T14143]  ? netlink_deliver_tap+0x1ae/0xca0
[  400.771297][T14143]  netlink_unicast+0x53c/0x7f0
[  400.777000][T14143]  ? __pfx_netlink_unicast+0x10/0x10
[  400.783341][T14143]  ? __phys_addr_symbol+0x30/0x80
[  400.789364][T14143]  ? __check_object_size+0x488/0x710
[  400.795703][T14143]  netlink_sendmsg+0x8b8/0xd70
[  400.801414][T14143]  ? __pfx_netlink_sendmsg+0x10/0x10
[  400.807747][T14143]  ____sys_sendmsg+0x9ae/0xb40
[  400.813451][T14143]  ? copy_msghdr_from_user+0x10b/0x160
[  400.819990][T14143]  ? __pfx_____sys_sendmsg+0x10/0x10
[  400.826318][T14143]  ? rcu_is_watching+0x12/0xc0
[  400.832021][T14143]  ? lock_release+0x4e2/0x6f0
[  400.837613][T14143]  ? get_pid_task+0xfc/0x250
[  400.843111][T14143]  ___sys_sendmsg+0x135/0x1e0
[  400.848727][T14143]  ? get_pid_task+0x35/0x250
[  400.854240][T14143]  ? __pfx____sys_sendmsg+0x10/0x10
[  400.860493][T14143]  ? lock_release+0x4e2/0x6f0
[  400.866098][T14143]  ? __pfx_lock_release+0x10/0x10
[  400.872112][T14143]  ? trace_lock_acquire+0x14e/0x1f0
[  400.878370][T14143]  ? __fget_files+0x206/0x3a0
[  400.883981][T14143]  __sys_sendmsg+0x16e/0x220
[  400.889475][T14143]  ? __pfx___sys_sendmsg+0x10/0x10
[  400.895594][T14143]  ? rcu_is_watching+0x12/0xc0
[  400.901311][T14143]  ? rcu_is_watching+0x12/0xc0
[  400.907024][T14143]  do_syscall_64+0xcd/0x250
[  400.912427][T14143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  400.919497][T14143] RIP: 0033:0x7f8e44985d29
[  400.924783][T14143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  400.948311][T14143] RSP: 002b:00007f8e45813038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  400.958392][T14143] RAX: ffffffffffffffda RBX: 00007f8e44b75fa0 RCX: 00007f8e44985d29
[  400.967942][T14143] RDX: 0000000000040000 RSI: 0000000020000240 RDI: 0000000000000003
[  400.977485][T14143] RBP: 00007f8e45813090 R08: 0000000000000000 R09: 0000000000000000
[  400.987032][T14143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  400.996581][T14143] R13: 0000000000000000 R14: 00007f8e44b75fa0 R15: 00007ffc6153a948
[  401.006135][T14143]  </TASK>
[  401.009803][    C0] vkms_vblank_simulate: vblank timer overrun
[  401.491036][ T5834] Bluetooth: hci1: command tx timeout
[  401.734026][T14170] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2085'.
[  402.850302][T14201] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2096'.
[  402.874643][T14197] binder: 14196:14197 ioctl c00c620f 9 returned -22
[  402.875742][T14201] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2096'.
[  403.135958][T14216] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2100'.
[  403.153034][T14216] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2100'.
[  403.183514][T14216] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2100'.
[  403.195143][T14216] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2100'.
[  403.207160][T14208] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2097'.
[  403.218923][T14216] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2100'.
[  403.222704][T14222] FAULT_INJECTION: forcing a failure.
[  403.222704][T14222] name failslab, interval 1, probability 0, space 0, times 0
[  403.250048][T14222] CPU: 0 UID: 0 PID: 14222 Comm: syz.5.2102 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  403.262570][T14222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  403.274675][T14222] Call Trace:
[  403.278612][T14222]  <TASK>
[  403.282134][T14222]  dump_stack_lvl+0x16c/0x1f0
[  403.287760][T14222]  should_fail_ex+0x497/0x5b0
[  403.293385][T14222]  ? fs_reclaim_acquire+0xae/0x150
[  403.299530][T14222]  should_failslab+0xc2/0x120
[  403.305159][T14222]  __kmalloc_noprof+0xce/0x4f0
[  403.310886][T14222]  ? event_inject_write+0x34a/0x1ed0
[  403.314609][T14225] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2103'.
[  403.317223][T14222]  event_inject_write+0x34a/0x1ed0
[  403.334137][T14222]  ? __pfx_lock_release+0x10/0x10
[  403.340153][T14222]  ? trace_lock_acquire+0x14e/0x1f0
[  403.346379][T14222]  ? get_pid_task+0x35/0x250
[  403.351879][T14222]  ? __pfx_event_inject_write+0x10/0x10
[  403.358532][T14222]  ? __mutex_trylock_common+0xea/0x250
[  403.365090][T14222]  ? rcu_is_watching+0x12/0xc0
[  403.370792][T14222]  ? trace_lock_acquire+0x14e/0x1f0
[  403.377018][T14222]  ? apparmor_file_permission+0x251/0x400
[  403.383876][T14222]  ? ksys_write+0x12b/0x250
[  403.389266][T14222]  ? lock_acquire+0x2f/0xb0
[  403.394650][T14222]  ? ksys_write+0x12b/0x250
[  403.400073][T14222]  ? __pfx_event_inject_write+0x10/0x10
[  403.406714][T14222]  vfs_write+0x24c/0x1150
[  403.411896][T14222]  ? __fget_files+0x1fc/0x3a0
[  403.417493][T14222]  ? __pfx___mutex_lock+0x10/0x10
[  403.423513][T14222]  ? __pfx_vfs_write+0x10/0x10
[  403.429221][T14222]  ? __fget_files+0x206/0x3a0
[  403.434821][T14222]  ksys_write+0x12b/0x250
[  403.439999][T14222]  ? __pfx_ksys_write+0x10/0x10
[  403.445805][T14222]  ? rcu_is_watching+0x12/0xc0
[  403.451509][T14222]  ? rcu_is_watching+0x12/0xc0
[  403.457210][T14222]  do_syscall_64+0xcd/0x250
[  403.462618][T14222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.469680][T14222] RIP: 0033:0x7f8e44985d29
[  403.474957][T14222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  403.498498][T14222] RSP: 002b:00007f8e45813038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  403.508575][T14222] RAX: ffffffffffffffda RBX: 00007f8e44b75fa0 RCX: 00007f8e44985d29
[  403.518123][T14222] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  403.527668][T14222] RBP: 00007f8e45813090 R08: 0000000000000000 R09: 0000000000000000
[  403.537213][T14222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  403.546773][T14222] R13: 0000000000000000 R14: 00007f8e44b75fa0 R15: 00007ffc6153a948
[  403.556344][T14222]  </TASK>
[  403.560048][    C0] vkms_vblank_simulate: vblank timer overrun
[  403.716240][T14238] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2107'.
[  404.003616][T14247] binder: 14246:14247 unknown command 0
[  404.013482][T14247] binder: 14246:14247 ioctl c0306201 9 returned -22
[  404.050693][T14249] binder: 14248:14249 unknown command 0
[  404.092590][T14249] binder: 14248:14249 ioctl c0306201 9 returned -22
[  404.255557][T14265] FAULT_INJECTION: forcing a failure.
[  404.255557][T14265] name failslab, interval 1, probability 0, space 0, times 0
[  404.289379][T14265] CPU: 1 UID: 0 PID: 14265 Comm: syz.4.2117 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  404.301917][T14265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  404.313989][T14265] Call Trace:
[  404.317928][T14265]  <TASK>
[  404.321448][T14265]  dump_stack_lvl+0x16c/0x1f0
[  404.327080][T14265]  should_fail_ex+0x497/0x5b0
[  404.332709][T14265]  ? fs_reclaim_acquire+0xae/0x150
[  404.338867][T14265]  should_failslab+0xc2/0x120
[  404.344501][T14265]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  404.350969][T14265]  ? security_file_alloc+0x34/0x2b0
[  404.357217][T14265]  security_file_alloc+0x34/0x2b0
[  404.363264][T14265]  init_file+0x93/0x480
[  404.368276][T14265]  alloc_empty_file+0x91/0x1e0
[  404.374013][T14265]  alloc_file_pseudo+0x13d/0x200
[  404.379974][T14265]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  404.386546][T14265]  __anon_inode_getfile+0x136/0x3c0
[  404.392796][T14265]  ? __pfx___anon_inode_getfile+0x10/0x10
[  404.399668][T14265]  io_uring_setup+0x1952/0x3370
[  404.405487][T14265]  ? __pfx_io_uring_setup+0x10/0x10
[  404.411737][T14265]  ? __fget_files+0x206/0x3a0
[  404.417662][T14265]  ? ksys_write+0x1ba/0x250
[  404.423050][T14265]  ? __pfx_ksys_write+0x10/0x10
[  404.428880][T14265]  ? rcu_is_watching+0x12/0xc0
[  404.434584][T14265]  __x64_sys_io_uring_setup+0x98/0x140
[  404.441133][T14265]  do_syscall_64+0xcd/0x250
[  404.446528][T14265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.453591][T14265] RIP: 0033:0x7fa065185d29
[  404.458870][T14265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  404.482490][T14265] RSP: 002b:00007fa066007038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  404.492573][T14265] RAX: ffffffffffffffda RBX: 00007fa065375fa0 RCX: 00007fa065185d29
[  404.502120][T14265] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  404.511665][T14265] RBP: 00007fa066007090 R08: 0000000000000000 R09: 0000000000000000
[  404.521210][T14265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  404.530756][T14265] R13: 0000000000000000 R14: 00007fa065375fa0 R15: 00007ffd06cfe3f8
[  404.540305][T14265]  </TASK>
[  404.768751][T14261] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  405.639076][T14299] cgroup: fork rejected by pids controller in /syz4
[  405.960458][T14299] KVM: debugfs: duplicate directory 14299-4
[  406.062993][T14299] KVM: debugfs: duplicate directory 14299-4
[  406.492470][T14367] FAULT_INJECTION: forcing a failure.
[  406.492470][T14367] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  406.508765][T14367] CPU: 0 UID: 0 PID: 14367 Comm: syz.1.2136 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  406.521278][T14367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  406.533366][T14367] Call Trace:
[  406.537286][T14367]  <TASK>
[  406.540788][T14367]  dump_stack_lvl+0x16c/0x1f0
[  406.546393][T14367]  should_fail_ex+0x497/0x5b0
[  406.552005][T14367]  _copy_to_iter+0x29b/0x1400
[  406.557644][T14367]  ? trace_lock_acquire+0x14e/0x1f0
[  406.563911][T14367]  ? __pfx_lock_release+0x10/0x10
[  406.569935][T14367]  ? __virt_addr_valid+0x1a4/0x590
[  406.576066][T14367]  ? __pfx__copy_to_iter+0x10/0x10
[  406.582219][T14367]  ? __virt_addr_valid+0x1a4/0x590
[  406.588343][T14367]  ? __virt_addr_valid+0x5e/0x590
[  406.594375][T14367]  ? __phys_addr_symbol+0x30/0x80
[  406.600409][T14367]  ? __check_object_size+0x488/0x710
[  406.606754][T14367]  seq_read_iter+0xd00/0x12b0
[  406.612385][T14367]  kernfs_fop_read_iter+0x414/0x580
[  406.618621][T14367]  ? rw_verify_area+0xd0/0x700
[  406.624332][T14367]  vfs_read+0x87f/0xbe0
[  406.629326][T14367]  ? __pfx_vfs_read+0x10/0x10
[  406.634941][T14367]  ksys_read+0x12b/0x250
[  406.640030][T14367]  ? __pfx_ksys_read+0x10/0x10
[  406.645844][T14367]  ? rcu_is_watching+0x12/0xc0
[  406.651555][T14367]  ? rcu_is_watching+0x12/0xc0
[  406.657272][T14367]  do_syscall_64+0xcd/0x250
[  406.662689][T14367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  406.669752][T14367] RIP: 0033:0x7f8485785d29
[  406.675029][T14367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  406.698546][T14367] RSP: 002b:00007f8486568038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  406.708631][T14367] RAX: ffffffffffffffda RBX: 00007f8485975fa0 RCX: 00007f8485785d29
[  406.718181][T14367] RDX: 00000000fffffebf RSI: 0000000020000100 RDI: 0000000000000003
[  406.727739][T14367] RBP: 00007f8486568090 R08: 0000000000000000 R09: 0000000000000000
[  406.737294][T14367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  406.747059][T14367] R13: 0000000000000000 R14: 00007f8485975fa0 R15: 00007fffab597d98
[  406.756623][T14367]  </TASK>
[  406.760326][    C0] vkms_vblank_simulate: vblank timer overrun
[  406.966852][T14378] FAULT_INJECTION: forcing a failure.
[  406.966852][T14378] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  406.982886][T14378] CPU: 1 UID: 0 PID: 14378 Comm: syz.3.2140 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  406.995389][T14378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  407.007436][T14378] Call Trace:
[  407.011352][T14378]  <TASK>
[  407.014857][T14378]  dump_stack_lvl+0x16c/0x1f0
[  407.020460][T14378]  should_fail_ex+0x497/0x5b0
[  407.026062][T14378]  _copy_to_user+0x32/0xd0
[  407.031354][T14378]  simple_read_from_buffer+0xd0/0x160
[  407.037780][T14378]  proc_fail_nth_read+0x198/0x270
[  407.043809][T14378]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  407.050460][T14378]  ? bpf_lsm_file_permission+0x9/0x10
[  407.056888][T14378]  ? security_file_permission+0x71/0x210
[  407.063634][T14378]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  407.070280][T14378]  vfs_read+0x1df/0xbe0
[  407.075253][T14378]  ? __fget_files+0x1fc/0x3a0
[  407.080851][T14378]  ? __pfx___mutex_lock+0x10/0x10
[  407.086865][T14378]  ? __pfx_vfs_read+0x10/0x10
[  407.092460][T14378]  ? __fget_files+0x206/0x3a0
[  407.098059][T14378]  ksys_read+0x12b/0x250
[  407.103133][T14378]  ? __pfx_ksys_read+0x10/0x10
[  407.108838][T14378]  ? rcu_is_watching+0x12/0xc0
[  407.114548][T14378]  ? rcu_is_watching+0x12/0xc0
[  407.120248][T14378]  do_syscall_64+0xcd/0x250
[  407.125640][T14378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.132702][T14378] RIP: 0033:0x7f40f3f8473c
[  407.137980][T14378] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  407.161497][T14378] RSP: 002b:00007f40f4d3c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  407.171576][T14378] RAX: ffffffffffffffda RBX: 00007f40f4175fa0 RCX: 00007f40f3f8473c
[  407.181127][T14378] RDX: 000000000000000f RSI: 00007f40f4d3c0a0 RDI: 0000000000000004
[  407.190673][T14378] RBP: 00007f40f4d3c090 R08: 0000000000000000 R09: 0000000000000000
[  407.200218][T14378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  407.209764][T14378] R13: 0000000000000000 R14: 00007f40f4175fa0 R15: 00007fff5e9c7c98
[  407.219317][T14378]  </TASK>
[  407.501359][T14375] mac80211_hwsim hwsim22 wlan1: entered promiscuous mode
[  407.738564][T14394] Invalid ELF header magic: != ELF
[  408.007999][T14407] FAULT_INJECTION: forcing a failure.
[  408.007999][T14407] name failslab, interval 1, probability 0, space 0, times 0
[  408.047384][T14407] CPU: 1 UID: 0 PID: 14407 Comm: syz.1.2150 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  408.059912][T14407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  408.071981][T14407] Call Trace:
[  408.075917][T14407]  <TASK>
[  408.079472][T14407]  dump_stack_lvl+0x16c/0x1f0
[  408.085101][T14407]  should_fail_ex+0x497/0x5b0
[  408.090728][T14407]  ? fs_reclaim_acquire+0xae/0x150
[  408.096871][T14407]  should_failslab+0xc2/0x120
[  408.102498][T14407]  __kmalloc_cache_noprof+0x68/0x420
[  408.108856][T14407]  ? errseq_sample+0x53/0x70
[  408.114376][T14407]  ? file_init_path+0x501/0x770
[  408.120208][T14407]  io_uring_alloc_task_context+0x9e/0x690
[  408.127077][T14407]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  408.133678][T14407]  ? __pfx_io_uring_alloc_task_context+0x10/0x10
[  408.141286][T14407]  __io_uring_add_tctx_node+0x2e0/0x500
[  408.147952][T14407]  ? __pfx___io_uring_add_tctx_node+0x10/0x10
[  408.155256][T14407]  io_uring_setup+0x197e/0x3370
[  408.161097][T14407]  ? __pfx_io_uring_setup+0x10/0x10
[  408.167353][T14407]  ? __fget_files+0x206/0x3a0
[  408.172974][T14407]  ? ksys_write+0x1ba/0x250
[  408.178384][T14407]  ? __pfx_ksys_write+0x10/0x10
[  408.184211][T14407]  ? rcu_is_watching+0x12/0xc0
[  408.189969][T14407]  __x64_sys_io_uring_setup+0x98/0x140
[  408.196533][T14407]  do_syscall_64+0xcd/0x250
[  408.201958][T14407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.209050][T14407] RIP: 0033:0x7f8485785d29
[  408.214350][T14407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  408.237888][T14407] RSP: 002b:00007f8486568038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  408.247992][T14407] RAX: ffffffffffffffda RBX: 00007f8485975fa0 RCX: 00007f8485785d29
[  408.257570][T14407] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  408.267143][T14407] RBP: 00007f8486568090 R08: 0000000000000000 R09: 0000000000000000
[  408.276713][T14407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  408.286283][T14407] R13: 0000000000000000 R14: 00007f8485975fa0 R15: 00007fffab597d98
[  408.295864][T14407]  </TASK>
[  408.743785][T14424] __nla_validate_parse: 4 callbacks suppressed
[  408.743806][T14424] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2153'.
[  409.342805][T14435] netlink: 452 bytes leftover after parsing attributes in process `syz.3.2158'.
[  409.354767][T14435] netlink: 452 bytes leftover after parsing attributes in process `syz.3.2158'.
[  409.473238][T14446] binder: 14445:14446 ioctl c00c6211 9 returned -14
[  409.996874][T14471] Invalid input. Must be >= 4608
[  410.112990][T14477] FAULT_INJECTION: forcing a failure.
[  410.112990][T14477] name failslab, interval 1, probability 0, space 0, times 0
[  410.128403][T14477] CPU: 1 UID: 0 PID: 14477 Comm: syz.3.2171 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  410.140914][T14477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  410.152988][T14477] Call Trace:
[  410.156928][T14477]  <TASK>
[  410.160448][T14477]  dump_stack_lvl+0x16c/0x1f0
[  410.166076][T14477]  should_fail_ex+0x497/0x5b0
[  410.171704][T14477]  ? fs_reclaim_acquire+0xae/0x150
[  410.177849][T14477]  should_failslab+0xc2/0x120
[  410.183481][T14477]  __kmalloc_noprof+0xce/0x4f0
[  410.189211][T14477]  ? d_absolute_path+0x137/0x1b0
[  410.195148][T14477]  ? tomoyo_encode2+0x100/0x3e0
[  410.200997][T14477]  tomoyo_encode2+0x100/0x3e0
[  410.206626][T14477]  tomoyo_realpath_from_path+0x1a7/0x710
[  410.213409][T14477]  tomoyo_path_number_perm+0x248/0x5b0
[  410.219972][T14477]  ? tomoyo_path_number_perm+0x235/0x5b0
[  410.226746][T14477]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  410.233936][T14477]  ? rcu_is_watching+0x12/0xc0
[  410.239670][T14477]  ? preempt_count_add+0x76/0x150
[  410.245704][T14477]  ? __pfx_lock_release+0x10/0x10
[  410.251718][T14477]  ? trace_lock_acquire+0x14e/0x1f0
[  410.257962][T14477]  ? __fget_files+0x40/0x3a0
[  410.263472][T14477]  ? lock_acquire+0x2f/0xb0
[  410.268869][T14477]  ? __fget_files+0x40/0x3a0
[  410.274371][T14477]  ? __fget_files+0x206/0x3a0
[  410.279973][T14477]  security_file_ioctl+0x9b/0x240
[  410.285993][T14477]  __x64_sys_ioctl+0xb7/0x200
[  410.291600][T14477]  do_syscall_64+0xcd/0x250
[  410.296995][T14477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.304061][T14477] RIP: 0033:0x7f40f3f85d29
[  410.309343][T14477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  410.332858][T14477] RSP: 002b:00007f40f4d3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  410.342936][T14477] RAX: ffffffffffffffda RBX: 00007f40f4175fa0 RCX: 00007f40f3f85d29
[  410.352483][T14477] RDX: 0000000000000009 RSI: 00000000c0306201 RDI: 0000000000000004
[  410.362026][T14477] RBP: 00007f40f4d3c090 R08: 0000000000000000 R09: 0000000000000000
[  410.371572][T14477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  410.381125][T14477] R13: 0000000000000000 R14: 00007f40f4175fa0 R15: 00007fff5e9c7c98
[  410.390691][T14477]  </TASK>
[  410.398932][T14477] ERROR: Out of memory at tomoyo_realpath_from_path.
[  410.409284][T14477] binder: 14476:14477 unknown command 0
[  410.418870][T14477] binder: 14476:14477 ioctl c0306201 9 returned -22
[  411.020298][T14497] can0: slcan on ttyS2.
[  411.111553][T14496] can0 (unregistered): slcan off ttyS2.
[  411.209292][T14519] FAULT_INJECTION: forcing a failure.
[  411.209292][T14519] name failslab, interval 1, probability 0, space 0, times 0
[  411.256149][T14519] CPU: 1 UID: 0 PID: 14519 Comm: syz.5.2186 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  411.268694][T14519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  411.280766][T14519] Call Trace:
[  411.284703][T14519]  <TASK>
[  411.288220][T14519]  dump_stack_lvl+0x16c/0x1f0
[  411.293846][T14519]  should_fail_ex+0x497/0x5b0
[  411.299468][T14519]  ? fs_reclaim_acquire+0xae/0x150
[  411.305613][T14519]  should_failslab+0xc2/0x120
[  411.311236][T14519]  __kmalloc_cache_noprof+0x68/0x420
[  411.317591][T14519]  ? __percpu_counter_init_many+0x2c6/0x3b0
[  411.324675][T14519]  io_uring_alloc_task_context+0x4a9/0x690
[  411.327026][T14523] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2183'.
[  411.331640][T14519]  ? __pfx_io_uring_alloc_task_context+0x10/0x10
[  411.331676][T14519]  __io_uring_add_tctx_node+0x2e0/0x500
[  411.331701][T14519]  ? __pfx___io_uring_add_tctx_node+0x10/0x10
[  411.363971][T14519]  io_uring_setup+0x197e/0x3370
[  411.369814][T14519]  ? __pfx_io_uring_setup+0x10/0x10
[  411.376078][T14519]  ? __fget_files+0x206/0x3a0
[  411.381711][T14519]  ? ksys_write+0x1ba/0x250
[  411.387131][T14519]  ? __pfx_ksys_write+0x10/0x10
[  411.392970][T14519]  ? rcu_is_watching+0x12/0xc0
[  411.398705][T14519]  __x64_sys_io_uring_setup+0x98/0x140
[  411.405276][T14519]  do_syscall_64+0xcd/0x250
[  411.410695][T14519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  411.417767][T14519] RIP: 0033:0x7f8e44985d29
[  411.423053][T14519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  411.446581][T14519] RSP: 002b:00007f8e45813038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  411.456673][T14519] RAX: ffffffffffffffda RBX: 00007f8e44b75fa0 RCX: 00007f8e44985d29
[  411.466228][T14519] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  411.475772][T14519] RBP: 00007f8e45813090 R08: 0000000000000000 R09: 0000000000000000
[  411.485319][T14519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  411.494866][T14519] R13: 0000000000000000 R14: 00007f8e44b75fa0 R15: 00007ffc6153a948
[  411.504421][T14519]  </TASK>
[  411.820305][T14552] binder: 14551:14552 ioctl c00c6211 9 returned -14
[  412.007813][T14565] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2199'.
[  412.010276][T14561] binder: 14559:14561 ioctl c0046211 3 returned -22
[  412.029176][T14565] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2199'.
[  412.162900][T14563] binder: 14562:14563 ioctl c0306201 9 returned -14
[  412.609902][T14602] FAULT_INJECTION: forcing a failure.
[  412.609902][T14602] name failslab, interval 1, probability 0, space 0, times 0
[  412.650999][T14602] CPU: 0 UID: 0 PID: 14602 Comm: syz.3.2211 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  412.663530][T14602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  412.675606][T14602] Call Trace:
[  412.679558][T14602]  <TASK>
[  412.683082][T14602]  dump_stack_lvl+0x16c/0x1f0
[  412.688716][T14602]  should_fail_ex+0x497/0x5b0
[  412.694368][T14602]  ? fs_reclaim_acquire+0xae/0x150
[  412.700525][T14602]  should_failslab+0xc2/0x120
[  412.706169][T14602]  __kmalloc_noprof+0xce/0x4f0
[  412.712016][T14602]  ? d_absolute_path+0x137/0x1b0
[  412.717971][T14602]  ? tomoyo_encode2+0x100/0x3e0
[  412.723809][T14602]  tomoyo_encode2+0x100/0x3e0
[  412.729545][T14602]  tomoyo_realpath_from_path+0x1a7/0x710
[  412.736343][T14602]  tomoyo_path_number_perm+0x248/0x5b0
[  412.742917][T14602]  ? tomoyo_path_number_perm+0x235/0x5b0
[  412.749695][T14602]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  412.756889][T14602]  ? rcu_is_watching+0x12/0xc0
[  412.762627][T14602]  ? preempt_count_add+0x76/0x150
[  412.768681][T14602]  ? __pfx_lock_release+0x10/0x10
[  412.771672][T14594] binder: 14592:14594 unknown command 0
[  412.774699][T14602]  ? trace_lock_acquire+0x14e/0x1f0
[  412.787566][T14602]  ? __fget_files+0x40/0x3a0
[  412.793089][T14602]  ? lock_acquire+0x2f/0xb0
[  412.798499][T14602]  ? __fget_files+0x40/0x3a0
[  412.804023][T14602]  ? __fget_files+0x206/0x3a0
[  412.809644][T14602]  security_file_ioctl+0x9b/0x240
[  412.815690][T14602]  __x64_sys_ioctl+0xb7/0x200
[  412.821319][T14602]  do_syscall_64+0xcd/0x250
[  412.826752][T14602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.828272][T14594] binder: 14592:14594 ioctl c0306201 9 returned -22
[  412.833830][T14602] RIP: 0033:0x7f40f3f85d29
[  412.833852][T14602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  412.833871][T14602] RSP: 002b:00007f40f4d3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  412.833890][T14602] RAX: ffffffffffffffda RBX: 00007f40f4175fa0 RCX: 00007f40f3f85d29
[  412.833905][T14602] RDX: 0000000000000009 RSI: 00000000c00c6211 RDI: 0000000000000003
[  412.833917][T14602] RBP: 00007f40f4d3c090 R08: 0000000000000000 R09: 0000000000000000
[  412.833931][T14602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  412.919031][T14602] R13: 0000000000000000 R14: 00007f40f4175fa0 R15: 00007fff5e9c7c98
[  412.928619][T14602]  </TASK>
[  412.939152][T14602] ERROR: Out of memory at tomoyo_realpath_from_path.
[  412.947706][T14602] binder: 14601:14602 ioctl c00c6211 9 returned -14
[  413.009387][T14608] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2214'.
[  413.427383][T14624] binder: 14622:14624 ioctl c00c620f 9 returned -22
[  413.500029][T14638] binder: 14637:14638 ioctl c00c6211 9 returned -14
[  413.976041][T14655] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  414.232973][T14653] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2231'.
[  414.245373][T14653] mac80211_hwsim hwsim12 wlan1: entered promiscuous mode
[  414.540475][T14679] FAULT_INJECTION: forcing a failure.
[  414.540475][T14679] name failslab, interval 1, probability 0, space 0, times 0
[  414.607948][T14679] CPU: 1 UID: 0 PID: 14679 Comm: syz.5.2237 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  414.620483][T14679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  414.632559][T14679] Call Trace:
[  414.636496][T14679]  <TASK>
[  414.640017][T14679]  dump_stack_lvl+0x16c/0x1f0
[  414.645654][T14679]  should_fail_ex+0x497/0x5b0
[  414.651284][T14679]  ? fs_reclaim_acquire+0xae/0x150
[  414.657432][T14679]  should_failslab+0xc2/0x120
[  414.663068][T14679]  __kmalloc_cache_noprof+0x68/0x420
[  414.669427][T14679]  ? lock_acquire+0x2f/0xb0
[  414.674850][T14679]  binder_get_thread+0x223/0x8c0
[  414.680803][T14679]  binder_ioctl+0x1f4/0x7080
[  414.686451][T14679]  ? __pfx_lock_release+0x10/0x10
[  414.692493][T14679]  ? kfree+0x14f/0x4b0
[  414.697403][T14679]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  414.704188][T14679]  ? tomoyo_path_number_perm+0x190/0x5b0
[  414.710959][T14679]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  414.718139][T14679]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  414.725203][T14679]  ? __pfx_binder_ioctl+0x10/0x10
[  414.731226][T14679]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  414.737237][T14679]  ? preempt_count_add+0x76/0x150
[  414.743279][T14679]  ? __pfx_lock_release+0x10/0x10
[  414.749315][T14679]  ? trace_lock_acquire+0x14e/0x1f0
[  414.755553][T14679]  ? __fget_files+0x40/0x3a0
[  414.761057][T14679]  ? __fget_files+0x206/0x3a0
[  414.766658][T14679]  ? __pfx_binder_ioctl+0x10/0x10
[  414.772680][T14679]  __x64_sys_ioctl+0x190/0x200
[  414.778378][T14679]  do_syscall_64+0xcd/0x250
[  414.783774][T14679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.790837][T14679] RIP: 0033:0x7f8e44985d29
[  414.796111][T14679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.819659][T14679] RSP: 002b:00007f8e45813038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  414.829739][T14679] RAX: ffffffffffffffda RBX: 00007f8e44b75fa0 RCX: 00007f8e44985d29
[  414.839287][T14679] RDX: 0000000000000009 RSI: 00000000c00c6211 RDI: 0000000000000003
[  414.848862][T14679] RBP: 00007f8e45813090 R08: 0000000000000000 R09: 0000000000000000
[  414.858412][T14679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  414.867956][T14679] R13: 0000000000000000 R14: 00007f8e44b75fa0 R15: 00007ffc6153a948
[  414.877509][T14679]  </TASK>
[  414.967226][T14679] binder: 14677:14679 ioctl c00c6211 9 returned -12
[  415.576309][T14710] mkiss: ax0: crc mode is auto.
[  415.693369][T14710] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2246'.
[  417.247856][   T29] audit: type=1800 audit(4294967580.499:7): pid=14772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2264" name="dbroot" dev="configfs" ino=57466 res=0 errno=0
[  417.685478][T14792] FAULT_INJECTION: forcing a failure.
[  417.685478][T14792] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  417.721096][T14792] CPU: 1 UID: 0 PID: 14792 Comm: syz.4.2269 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  417.733629][T14792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  417.745702][T14792] Call Trace:
[  417.749635][T14792]  <TASK>
[  417.753154][T14792]  dump_stack_lvl+0x16c/0x1f0
[  417.758792][T14792]  should_fail_ex+0x497/0x5b0
[  417.764419][T14792]  _copy_from_user+0x2e/0xd0
[  417.769936][T14792]  binder_ioctl+0x502/0x7080
[  417.775462][T14792]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  417.782230][T14792]  ? tomoyo_path_number_perm+0x190/0x5b0
[  417.788995][T14792]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  417.796182][T14792]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  417.803268][T14792]  ? __pfx_binder_ioctl+0x10/0x10
[  417.809319][T14792]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  417.815355][T14792]  ? preempt_count_add+0x76/0x150
[  417.821431][T14792]  ? __pfx_lock_release+0x10/0x10
[  417.827473][T14792]  ? __fget_files+0x206/0x3a0
[  417.833102][T14792]  ? __pfx_binder_ioctl+0x10/0x10
[  417.839145][T14792]  __x64_sys_ioctl+0x190/0x200
[  417.844869][T14792]  do_syscall_64+0xcd/0x250
[  417.850335][T14792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.857423][T14792] RIP: 0033:0x7fa065185d29
[  417.862726][T14792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.886266][T14792] RSP: 002b:00007fa066007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  417.896369][T14792] RAX: ffffffffffffffda RBX: 00007fa065375fa0 RCX: 00007fa065185d29
[  417.905944][T14792] RDX: 0000000000000009 RSI: 00000000c0306201 RDI: 0000000000000004
[  417.915518][T14792] RBP: 00007fa066007090 R08: 0000000000000000 R09: 0000000000000000
[  417.925080][T14792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  417.934640][T14792] R13: 0000000000000000 R14: 00007fa065375fa0 R15: 00007ffd06cfe3f8
[  417.944198][T14792]  </TASK>
[  417.961746][T14792] binder: 14789:14792 ioctl c0306201 9 returned -14
[  418.115960][T14808] FAULT_INJECTION: forcing a failure.
[  418.115960][T14808] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  418.189458][T14808] CPU: 1 UID: 0 PID: 14808 Comm: syz.3.2282 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  418.201989][T14808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  418.214062][T14808] Call Trace:
[  418.218004][T14808]  <TASK>
[  418.221522][T14808]  dump_stack_lvl+0x16c/0x1f0
[  418.227151][T14808]  should_fail_ex+0x497/0x5b0
[  418.232782][T14808]  _copy_to_user+0x32/0xd0
[  418.238099][T14808]  binder_ioctl+0x1633/0x7080
[  418.243729][T14808]  ? kfree+0x14f/0x4b0
[  418.248629][T14808]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  418.255397][T14808]  ? tomoyo_path_number_perm+0x190/0x5b0
[  418.262173][T14808]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  418.269355][T14808]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  418.276434][T14808]  ? __pfx_binder_ioctl+0x10/0x10
[  418.282475][T14808]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  418.288514][T14808]  ? __pfx_lock_release+0x10/0x10
[  418.294553][T14808]  ? trace_lock_acquire+0x14e/0x1f0
[  418.300815][T14808]  ? __fget_files+0x40/0x3a0
[  418.306337][T14808]  ? __fget_files+0x206/0x3a0
[  418.311965][T14808]  ? __pfx_binder_ioctl+0x10/0x10
[  418.318009][T14808]  __x64_sys_ioctl+0x190/0x200
[  418.323731][T14808]  do_syscall_64+0xcd/0x250
[  418.329163][T14808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.336252][T14808] RIP: 0033:0x7f40f3f85d29
[  418.341557][T14808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  418.365095][T14808] RSP: 002b:00007f40f4d3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  418.375202][T14808] RAX: ffffffffffffffda RBX: 00007f40f4175fa0 RCX: 00007f40f3f85d29
[  418.384775][T14808] RDX: 0000000000000009 RSI: 00000000c00c6211 RDI: 0000000000000003
[  418.394349][T14808] RBP: 00007f40f4d3c090 R08: 0000000000000000 R09: 0000000000000000
[  418.403922][T14808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  418.413488][T14808] R13: 0000000000000000 R14: 00007f40f4175fa0 R15: 00007fff5e9c7c98
[  418.423048][T14808]  </TASK>
[  418.438960][T14808] binder: 14807:14808 ioctl c00c6211 9 returned -14
[  419.442453][T14847] ptrace attach of "./syz-executor exec"[9577] was attempted by ""[14847]
[  419.467770][T14848] ptrace attach of "./syz-executor exec"[9577] was attempted by ""[14848]
[  419.978887][T14854] binder: 14853:14854 ioctl c00c620f 9 returned -22
[  420.044627][T14856] binder: 14855:14856 ioctl c00c620f 9 returned -22
[  420.765442][T14886] binder: 14885:14886 ioctl c00c620f 9 returned -22
[  421.026894][T14902] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2302'.
[  422.227861][T14908] Process accounting resumed
[  423.103079][T14937] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2315'.
[  425.097439][T14992] binder: 14991:14992 ioctl c00c6211 9 returned -14
[  425.105593][T14992] FAULT_INJECTION: forcing a failure.
[  425.105593][T14992] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  425.123278][T14992] CPU: 0 UID: 0 PID: 14992 Comm: syz.4.2325 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  425.135790][T14992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  425.147863][T14992] Call Trace:
[  425.151796][T14992]  <TASK>
[  425.155315][T14992]  dump_stack_lvl+0x16c/0x1f0
[  425.160942][T14992]  should_fail_ex+0x497/0x5b0
[  425.166566][T14992]  _copy_to_user+0x32/0xd0
[  425.171878][T14992]  simple_read_from_buffer+0xd0/0x160
[  425.178332][T14992]  proc_fail_nth_read+0x198/0x270
[  425.184375][T14992]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  425.191030][T14992]  ? bpf_lsm_file_permission+0x9/0x10
[  425.197462][T14992]  ? security_file_permission+0x71/0x210
[  425.204207][T14992]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  425.210853][T14992]  vfs_read+0x1df/0xbe0
[  425.215826][T14992]  ? __fget_files+0x1fc/0x3a0
[  425.221422][T14992]  ? __pfx___mutex_lock+0x10/0x10
[  425.227443][T14992]  ? __pfx_vfs_read+0x10/0x10
[  425.233038][T14992]  ? __fget_files+0x206/0x3a0
[  425.238634][T14992]  ksys_read+0x12b/0x250
[  425.243708][T14992]  ? __pfx_ksys_read+0x10/0x10
[  425.249407][T14992]  ? rcu_is_watching+0x12/0xc0
[  425.255116][T14992]  ? rcu_is_watching+0x12/0xc0
[  425.260830][T14992]  do_syscall_64+0xcd/0x250
[  425.266226][T14992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.273290][T14992] RIP: 0033:0x7fa06518473c
[  425.278569][T14992] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  425.302084][T14992] RSP: 002b:00007fa066007030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  425.312179][T14992] RAX: ffffffffffffffda RBX: 00007fa065375fa0 RCX: 00007fa06518473c
[  425.321722][T14992] RDX: 000000000000000f RSI: 00007fa0660070a0 RDI: 0000000000000004
[  425.331265][T14992] RBP: 00007fa066007090 R08: 0000000000000000 R09: 0000000000000000
[  425.340810][T14992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  425.350354][T14992] R13: 0000000000000000 R14: 00007fa065375fa0 R15: 00007ffd06cfe3f8
[  425.359906][T14992]  </TASK>
[  425.363579][    C0] vkms_vblank_simulate: vblank timer overrun
[  425.412532][T14995] netlink: 338 bytes leftover after parsing attributes in process `syz.5.2326'.
[  425.781463][T15004] mkiss: ax0: crc mode is auto.
[  425.862792][T15006] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2328'.
[  426.254802][T15010] binder: 15008:15010 ioctl c00c620f 9 returned -22
[  426.798047][T15016] binder: 15015:15016 ioctl c00c620f 9 returned -22
[  427.176087][T15029] binder: 15027:15029 ioctl c00c620f 9 returned -22
[  427.792886][T15046] FAULT_INJECTION: forcing a failure.
[  427.792886][T15046] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  427.831265][T15046] CPU: 0 UID: 0 PID: 15046 Comm: syz.4.2344 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  427.843803][T15046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  427.855884][T15046] Call Trace:
[  427.859824][T15046]  <TASK>
[  427.863459][T15046]  dump_stack_lvl+0x16c/0x1f0
[  427.869093][T15046]  should_fail_ex+0x497/0x5b0
[  427.874731][T15046]  ? fs_reclaim_acquire+0xae/0x150
[  427.880883][T15046]  should_fail_alloc_page+0xe7/0x130
[  427.887250][T15046]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  427.894666][T15046]  __alloc_pages_noprof+0x18e/0x2470
[  427.901031][T15046]  ? cgroup_rstat_updated+0x2a/0xb20
[  427.907393][T15046]  ? kasan_save_track+0x14/0x30
[  427.913231][T15046]  ? __kasan_slab_alloc+0x89/0x90
[  427.919283][T15046]  ? __anon_vma_prepare+0x344/0x5e0
[  427.925550][T15046]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  427.932443][T15046]  ? __mod_memcg_lruvec_state+0x53c/0x750
[  427.939320][T15046]  ? __mod_zone_page_state+0xcc/0x1a0
[  427.945987][T15046]  ? rcu_is_watching+0x12/0xc0
[  427.951716][T15046]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  427.958793][T15046]  ? policy_nodemask+0xea/0x4e0
[  427.964634][T15046]  alloc_pages_mpol_noprof+0x2c8/0x620
[  427.971192][T15046]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  427.978381][T15046]  folio_alloc_mpol_noprof+0x36/0xd0
[  427.984733][T15046]  vma_alloc_folio_noprof+0xee/0x1b0
[  427.991088][T15046]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  427.998168][T15046]  ? trace_lock_acquire+0x14e/0x1f0
[  428.004423][T15046]  ? rcu_is_watching+0x12/0xc0
[  428.010153][T15046]  do_pte_missing+0x2017/0x3e00
[  428.015999][T15046]  __handle_mm_fault+0x103c/0x2a40
[  428.022153][T15046]  ? __pfx___handle_mm_fault+0x10/0x10
[  428.028731][T15046]  ? lock_release+0x4e2/0x6f0
[  428.034350][T15046]  ? follow_page_pte+0x3c3/0x1b20
[  428.040389][T15046]  ? __pfx_lock_release+0x10/0x10
[  428.046441][T15046]  ? __pfx___pte_offset_map_lock+0x10/0x10
[  428.053412][T15046]  ? lock_release+0x4e2/0x6f0
[  428.059025][T15046]  ? follow_page_pte+0x3f7/0x1b20
[  428.065064][T15046]  handle_mm_fault+0x3fa/0xaa0
[  428.070795][T15046]  __get_user_pages+0x8d9/0x3b50
[  428.076734][T15046]  ? __pfx_mt_find+0x10/0x10
[  428.082241][T15046]  ? validate_mm+0x3da/0x530
[  428.087861][T15046]  ? __pfx___get_user_pages+0x10/0x10
[  428.094323][T15046]  ? __mm_populate+0x21d/0x380
[  428.100049][T15046]  ? lock_acquire+0x2f/0xb0
[  428.105460][T15046]  populate_vma_page_range+0x27f/0x3a0
[  428.112133][T15046]  ? __pfx_populate_vma_page_range+0x10/0x10
[  428.119322][T15046]  ? __pfx_find_vma_intersection+0x10/0x10
[  428.126296][T15046]  ? vm_mmap_pgoff+0x25b/0x360
[  428.132027][T15046]  __mm_populate+0x1d6/0x380
[  428.137549][T15046]  ? __pfx___mm_populate+0x10/0x10
[  428.143702][T15046]  ? up_write+0x1b2/0x520
[  428.148904][T15046]  vm_mmap_pgoff+0x293/0x360
[  428.154422][T15046]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  428.160574][T15046]  ? __x64_sys_futex+0x1e1/0x4c0
[  428.166523][T15046]  ? __x64_sys_futex+0x1ea/0x4c0
[  428.172462][T15046]  ksys_mmap_pgoff+0x7d/0x5c0
[  428.178063][T15046]  __x64_sys_mmap+0x125/0x190
[  428.183667][T15046]  do_syscall_64+0xcd/0x250
[  428.189057][T15046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.196143][T15046] RIP: 0033:0x7fa065185d29
[  428.201418][T15046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  428.224928][T15046] RSP: 002b:00007fa066007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  428.235005][T15046] RAX: ffffffffffffffda RBX: 00007fa065375fa0 RCX: 00007fa065185d29
[  428.244550][T15046] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000
[  428.254095][T15046] RBP: 00007fa065201b08 R08: ffffffffffffffff R09: 0000000000028000
[  428.263640][T15046] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  428.273183][T15046] R13: 0000000000000000 R14: 00007fa065375fa0 R15: 00007ffd06cfe3f8
[  428.282736][T15046]  </TASK>
[  429.331423][T15073] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2353'.
[  429.342470][T15073] ip_vti0: entered promiscuous mode
[  429.382384][T15090] FAULT_INJECTION: forcing a failure.
[  429.382384][T15090] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  429.406447][T15090] CPU: 1 UID: 0 PID: 15090 Comm: syz.4.2357 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  429.418975][T15090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  429.431046][T15090] Call Trace:
[  429.434984][T15090]  <TASK>
[  429.438506][T15090]  dump_stack_lvl+0x16c/0x1f0
[  429.444131][T15090]  should_fail_ex+0x497/0x5b0
[  429.449759][T15090]  ? fs_reclaim_acquire+0xae/0x150
[  429.455708][T15094] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2358'.
[  429.455880][T15090]  should_fail_alloc_page+0xe7/0x130
[  429.473027][T15090]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  429.480420][T15090]  ? ima_match_policy+0x855/0x2290
[  429.486572][T15090]  __alloc_pages_noprof+0x18e/0x2470
[  429.492925][T15090]  ? lock_acquire+0x2f/0xb0
[  429.498340][T15090]  ? ima_match_policy+0x134/0x2290
[  429.504486][T15090]  ? ima_match_policy+0x85f/0x2290
[  429.510636][T15090]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  429.517519][T15090]  ? rcu_is_watching+0x12/0xc0
[  429.523228][T15090]  ? __pfx_lock_release+0x10/0x10
[  429.529234][T15090]  ? lock_acquire+0x2f/0xb0
[  429.534613][T15090]  ? process_measurement+0x39c/0x2370
[  429.541040][T15090]  ? down_write+0x14e/0x200
[  429.546430][T15090]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  429.553485][T15090]  ? policy_nodemask+0xea/0x4e0
[  429.559296][T15090]  alloc_pages_mpol_noprof+0x2c8/0x620
[  429.565832][T15090]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  429.572989][T15090]  ? is_bpf_text_address+0x30/0x1a0
[  429.579216][T15090]  ? lock_acquire+0x2f/0xb0
[  429.584598][T15090]  ? is_bpf_text_address+0x30/0x1a0
[  429.590841][T15090]  ? bpf_ksym_find+0x124/0x1c0
[  429.596570][T15090]  pte_alloc_one+0x20/0x390
[  429.601965][T15090]  do_pte_missing+0x1ae7/0x3e00
[  429.607780][T15090]  __handle_mm_fault+0x103c/0x2a40
[  429.613905][T15090]  ? __pfx___handle_mm_fault+0x10/0x10
[  429.620466][T15090]  ? find_vma+0xc0/0x140
[  429.625549][T15090]  ? __pfx_find_vma+0x10/0x10
[  429.631151][T15090]  handle_mm_fault+0x3fa/0xaa0
[  429.636861][T15090]  do_user_addr_fault+0x7a3/0x13f0
[  429.642979][T15090]  exc_page_fault+0x5c/0xc0
[  429.648371][T15090]  asm_exc_page_fault+0x26/0x30
[  429.654202][T15090] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  429.661160][T15090] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  429.684685][T15090] RSP: 0018:ffffc9000d007c00 EFLAGS: 00050246
[  429.691947][T15090] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000040
[  429.701491][T15090] RDX: ffffed10051d8ae8 RSI: 0000000000000000 RDI: ffff888028ec5700
[  429.711044][T15090] RBP: 0000000000000040 R08: 0000000000000001 R09: ffffed10051d8ae7
[  429.720611][T15090] R10: ffff888028ec573f R11: 00000000000a4001 R12: 0000000000000000
[  429.730173][T15090] R13: ffff888028ec5700 R14: ffff888060c60430 R15: 0000000000000000
[  429.739736][T15090]  _copy_from_user+0x98/0xd0
[  429.745242][T15090]  memdup_user_nul+0x72/0x110
[  429.750845][T15090]  nsim_dev_health_break_write+0xbe/0x210
[  429.757701][T15090]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  429.765288][T15090]  ? rcu_is_watching+0x12/0xc0
[  429.771024][T15090]  ? trace_lock_acquire+0x14e/0x1f0
[  429.777257][T15090]  ? apparmor_file_permission+0x251/0x400
[  429.784111][T15090]  full_proxy_write+0xfd/0x1b0
[  429.789807][T15090]  ? __pfx_full_proxy_write+0x10/0x10
[  429.796232][T15090]  vfs_write+0x24c/0x1150
[  429.801425][T15090]  ? __fget_files+0x1fc/0x3a0
[  429.807038][T15090]  ? __pfx___mutex_lock+0x10/0x10
[  429.813072][T15090]  ? __pfx_vfs_write+0x10/0x10
[  429.818790][T15090]  ? __fget_files+0x206/0x3a0
[  429.824407][T15090]  ksys_write+0x12b/0x250
[  429.829600][T15090]  ? __pfx_ksys_write+0x10/0x10
[  429.835412][T15090]  ? rcu_is_watching+0x12/0xc0
[  429.841122][T15090]  ? rcu_is_watching+0x12/0xc0
[  429.846843][T15090]  do_syscall_64+0xcd/0x250
[  429.852259][T15090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.859331][T15090] RIP: 0033:0x7fa065185d29
[  429.864628][T15090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  429.888146][T15090] RSP: 002b:00007fa066007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  429.898224][T15090] RAX: ffffffffffffffda RBX: 00007fa065375fa0 RCX: 00007fa065185d29
[  429.907770][T15090] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[  429.917318][T15090] RBP: 00007fa066007090 R08: 0000000000000000 R09: 0000000000000000
[  429.926859][T15090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  429.936405][T15090] R13: 0000000000000000 R14: 00007fa065375fa0 R15: 00007ffd06cfe3f8
[  429.945954][T15090]  </TASK>
[  430.294132][T15098] binder: 15097:15098 unknown command 0
[  430.301068][T15098] binder: 15097:15098 ioctl c0306201 9 returned -22
[  430.310080][T15098] FAULT_INJECTION: forcing a failure.
[  430.310080][T15098] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  430.326687][T15098] CPU: 0 UID: 0 PID: 15098 Comm: syz.4.2360 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  430.339192][T15098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  430.351240][T15098] Call Trace:
[  430.355152][T15098]  <TASK>
[  430.358647][T15098]  dump_stack_lvl+0x16c/0x1f0
[  430.364254][T15098]  should_fail_ex+0x497/0x5b0
[  430.369853][T15098]  _copy_to_user+0x32/0xd0
[  430.375148][T15098]  simple_read_from_buffer+0xd0/0x160
[  430.381579][T15098]  proc_fail_nth_read+0x198/0x270
[  430.387598][T15098]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  430.394242][T15098]  ? bpf_lsm_file_permission+0x9/0x10
[  430.400668][T15098]  ? security_file_permission+0x71/0x210
[  430.407412][T15098]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  430.414066][T15098]  vfs_read+0x1df/0xbe0
[  430.419037][T15098]  ? __fget_files+0x1fc/0x3a0
[  430.424633][T15098]  ? __pfx___mutex_lock+0x10/0x10
[  430.430651][T15098]  ? __pfx_vfs_read+0x10/0x10
[  430.436246][T15098]  ? __fget_files+0x206/0x3a0
[  430.441842][T15098]  ksys_read+0x12b/0x250
[  430.446914][T15098]  ? __pfx_ksys_read+0x10/0x10
[  430.452611][T15098]  ? rcu_is_watching+0x12/0xc0
[  430.458313][T15098]  ? rcu_is_watching+0x12/0xc0
[  430.464013][T15098]  do_syscall_64+0xcd/0x250
[  430.469409][T15098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  430.476482][T15098] RIP: 0033:0x7fa06518473c
[  430.481761][T15098] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  430.505272][T15098] RSP: 002b:00007fa066007030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  430.515348][T15098] RAX: ffffffffffffffda RBX: 00007fa065375fa0 RCX: 00007fa06518473c
[  430.524893][T15098] RDX: 000000000000000f RSI: 00007fa0660070a0 RDI: 0000000000000005
[  430.534442][T15098] RBP: 00007fa066007090 R08: 0000000000000000 R09: 0000000000000000
[  430.543986][T15098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  430.553528][T15098] R13: 0000000000000000 R14: 00007fa065375fa0 R15: 00007ffd06cfe3f8
[  430.563081][T15098]  </TASK>
[  430.639271][T15073] sd 0:0:1:0: PR command failed: 1026
[  430.651676][T15073] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  430.665204][T15073] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  430.890086][T15110] binder: 15109:15110 ioctl c00c620f 9 returned -22
[  431.079773][T15119] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2366'.
[  431.086319][T15113] binder: 15112:15113 ioctl c00c620f 9 returned -22
[  431.771088][T15136] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2370'.
[  431.947927][T15141] FAULT_INJECTION: forcing a failure.
[  431.947927][T15141] name failslab, interval 1, probability 0, space 0, times 0
[  431.972638][T15141] CPU: 1 UID: 0 PID: 15141 Comm: syz.4.2372 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  431.985166][T15141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  431.997238][T15141] Call Trace:
[  432.001170][T15141]  <TASK>
[  432.004685][T15141]  dump_stack_lvl+0x16c/0x1f0
[  432.010311][T15141]  should_fail_ex+0x497/0x5b0
[  432.015933][T15141]  ? fs_reclaim_acquire+0xae/0x150
[  432.022074][T15141]  should_failslab+0xc2/0x120
[  432.027700][T15141]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  432.034159][T15141]  ? ptlock_alloc+0x1f/0x70
[  432.039570][T15141]  ptlock_alloc+0x1f/0x70
[  432.044779][T15141]  pte_alloc_one+0x74/0x390
[  432.050190][T15141]  do_pte_missing+0x1ae7/0x3e00
[  432.056030][T15141]  __handle_mm_fault+0x103c/0x2a40
[  432.062181][T15141]  ? __pfx___handle_mm_fault+0x10/0x10
[  432.068751][T15141]  ? find_vma+0xc0/0x140
[  432.073851][T15141]  ? __pfx_find_vma+0x10/0x10
[  432.079467][T15141]  handle_mm_fault+0x3fa/0xaa0
[  432.085196][T15141]  do_user_addr_fault+0x7a3/0x13f0
[  432.091338][T15141]  exc_page_fault+0x5c/0xc0
[  432.096749][T15141]  asm_exc_page_fault+0x26/0x30
[  432.102585][T15141] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  432.109564][T15141] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  432.133113][T15141] RSP: 0018:ffffc9000d27fc00 EFLAGS: 00050246
[  432.140402][T15141] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000040
[  432.149980][T15141] RDX: ffffed1004e83898 RSI: 0000000000000000 RDI: ffff88802741c480
[  432.159552][T15141] RBP: 0000000000000040 R08: 0000000000000001 R09: ffffed1004e83897
[  432.169157][T15141] R10: ffff88802741c4bf R11: 00000000000a4001 R12: 0000000000000000
[  432.178729][T15141] R13: ffff88802741c480 R14: ffff888060c60430 R15: 0000000000000000
[  432.188311][T15141]  _copy_from_user+0x98/0xd0
[  432.193835][T15141]  memdup_user_nul+0x72/0x110
[  432.199456][T15141]  nsim_dev_health_break_write+0xbe/0x210
[  432.206337][T15141]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  432.213954][T15141]  ? rcu_is_watching+0x12/0xc0
[  432.219677][T15141]  ? trace_lock_acquire+0x14e/0x1f0
[  432.225926][T15141]  ? apparmor_file_permission+0x251/0x400
[  432.232805][T15141]  full_proxy_write+0xfd/0x1b0
[  432.238525][T15141]  ? __pfx_full_proxy_write+0x10/0x10
[  432.244975][T15141]  vfs_write+0x24c/0x1150
[  432.250181][T15141]  ? __fget_files+0x1fc/0x3a0
[  432.255801][T15141]  ? __pfx___mutex_lock+0x10/0x10
[  432.261844][T15141]  ? __pfx_vfs_write+0x10/0x10
[  432.267574][T15141]  ? __fget_files+0x206/0x3a0
[  432.273201][T15141]  ksys_write+0x12b/0x250
[  432.278410][T15141]  ? __pfx_ksys_write+0x10/0x10
[  432.284240][T15141]  ? rcu_is_watching+0x12/0xc0
[  432.289965][T15141]  ? rcu_is_watching+0x12/0xc0
[  432.295705][T15141]  do_syscall_64+0xcd/0x250
[  432.301126][T15141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.308209][T15141] RIP: 0033:0x7fa065185d29
[  432.313507][T15141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  432.337048][T15141] RSP: 002b:00007fa066007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  432.347152][T15141] RAX: ffffffffffffffda RBX: 00007fa065375fa0 RCX: 00007fa065185d29
[  432.356722][T15141] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[  432.366292][T15141] RBP: 00007fa066007090 R08: 0000000000000000 R09: 0000000000000000
[  432.375862][T15141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  432.385433][T15141] R13: 0000000000000000 R14: 00007fa065375fa0 R15: 00007ffd06cfe3f8
[  432.395009][T15141]  </TASK>
[  432.963482][T15166] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2381'.
[  433.087668][T15166] netlink: 338 bytes leftover after parsing attributes in process `syz.5.2381'.
[  433.359877][T15177] binder: 15176:15177 ioctl 7 3 returned -22
[  433.902712][T15203] netlink: 206 bytes leftover after parsing attributes in process `syz.5.2393'.
[  433.969831][T15208] validate_nla: 12 callbacks suppressed
[  433.969856][T15208] netlink: 'syz.4.2394': attribute type 4 has an invalid length.
[  434.004733][T15208] netlink: 110 bytes leftover after parsing attributes in process `syz.4.2394'.
[  434.091413][T15215] FAULT_INJECTION: forcing a failure.
[  434.091413][T15215] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  434.140135][T15215] CPU: 1 UID: 0 PID: 15215 Comm: syz.5.2396 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  434.152671][T15215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  434.164744][T15215] Call Trace:
[  434.168678][T15215]  <TASK>
[  434.172194][T15215]  dump_stack_lvl+0x16c/0x1f0
[  434.177817][T15215]  should_fail_ex+0x497/0x5b0
[  434.183440][T15215]  ? fs_reclaim_acquire+0xae/0x150
[  434.189583][T15215]  should_fail_alloc_page+0xe7/0x130
[  434.195949][T15215]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  434.203352][T15215]  __alloc_pages_noprof+0x18e/0x2470
[  434.209708][T15215]  ? rcu_is_watching+0x12/0xc0
[  434.215434][T15215]  ? lock_release+0x4e2/0x6f0
[  434.221054][T15215]  ? rcu_is_watching+0x12/0xc0
[  434.226779][T15215]  ? page_ext_put+0x3e/0xd0
[  434.232195][T15215]  ? __pfx_lock_release+0x10/0x10
[  434.238228][T15215]  ? do_user_addr_fault+0x7a3/0x13f0
[  434.244574][T15215]  ? exc_page_fault+0x5c/0xc0
[  434.250193][T15215]  ? page_ext_get+0x34/0x310
[  434.255710][T15215]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  434.262569][T15215]  ? lock_release+0x4e2/0x6f0
[  434.268170][T15215]  ? rcu_is_watching+0x12/0xc0
[  434.273881][T15215]  ? page_ext_put+0x3e/0xd0
[  434.279274][T15215]  ? __pfx_lock_release+0x10/0x10
[  434.285284][T15215]  ? rcu_is_watching+0x12/0xc0
[  434.290987][T15215]  ? lock_release+0x4e2/0x6f0
[  434.296586][T15215]  ? is_bpf_text_address+0x8a/0x1a0
[  434.302815][T15215]  ? __pfx_lock_release+0x10/0x10
[  434.308824][T15215]  ? trace_lock_acquire+0x14e/0x1f0
[  434.315054][T15215]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  434.322109][T15215]  ? policy_nodemask+0xea/0x4e0
[  434.327922][T15215]  alloc_pages_mpol_noprof+0x2c8/0x620
[  434.334458][T15215]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  434.341612][T15215]  ? __kernel_text_address+0xd/0x40
[  434.347832][T15215]  ? unwind_get_return_address+0x59/0xa0
[  434.354573][T15215]  ? rcu_is_watching+0x12/0xc0
[  434.360275][T15215]  folio_alloc_mpol_noprof+0x36/0xd0
[  434.366599][T15215]  shmem_alloc_folio+0x135/0x160
[  434.372505][T15215]  shmem_alloc_and_add_folio+0x48b/0xc00
[  434.379250][T15215]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  434.386621][T15215]  ? shmem_allowable_huge_orders+0xd0/0x410
[  434.393684][T15215]  shmem_get_folio_gfp+0x689/0x1530
[  434.399936][T15215]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  434.406701][T15215]  ? filemap_map_pages+0xf92/0x16b0
[  434.412957][T15215]  shmem_fault+0x200/0xae0
[  434.418242][T15215]  ? __pfx_shmem_fault+0x10/0x10
[  434.424176][T15215]  ? rcu_is_watching+0x12/0xc0
[  434.429880][T15215]  ? lock_release+0x4e2/0x6f0
[  434.435469][T15215]  ? __pfx_filemap_map_pages+0x10/0x10
[  434.442010][T15215]  ? do_pte_missing+0xdd7/0x3e00
[  434.447927][T15215]  ? __pfx_lock_release+0x10/0x10
[  434.453958][T15215]  __do_fault+0x10a/0x490
[  434.459146][T15215]  do_pte_missing+0xebd/0x3e00
[  434.464862][T15215]  __handle_mm_fault+0x103c/0x2a40
[  434.471006][T15215]  ? __pfx___handle_mm_fault+0x10/0x10
[  434.477573][T15215]  ? find_vma+0xc0/0x140
[  434.482653][T15215]  ? __pfx_find_vma+0x10/0x10
[  434.488254][T15215]  handle_mm_fault+0x3fa/0xaa0
[  434.493974][T15215]  do_user_addr_fault+0x7a3/0x13f0
[  434.500097][T15215]  exc_page_fault+0x5c/0xc0
[  434.505488][T15215]  asm_exc_page_fault+0x26/0x30
[  434.511296][T15215] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  434.518266][T15215] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  434.541797][T15215] RSP: 0018:ffffc9000d27fc00 EFLAGS: 00050246
[  434.549064][T15215] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000040
[  434.558619][T15215] RDX: ffffed100f158f28 RSI: 0000000000000000 RDI: ffff888078ac7900
[  434.568170][T15215] RBP: 0000000000000040 R08: 0000000000000001 R09: ffffed100f158f27
[  434.577726][T15215] R10: ffff888078ac793f R11: 00000000000a4001 R12: 0000000000000000
[  434.587290][T15215] R13: ffff888078ac7900 R14: ffff888060c60430 R15: 0000000000000000
[  434.596850][T15215]  _copy_from_user+0x98/0xd0
[  434.602356][T15215]  memdup_user_nul+0x72/0x110
[  434.607963][T15215]  nsim_dev_health_break_write+0xbe/0x210
[  434.614820][T15215]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  434.622403][T15215]  ? rcu_is_watching+0x12/0xc0
[  434.628111][T15215]  ? trace_lock_acquire+0x14e/0x1f0
[  434.634337][T15215]  ? apparmor_file_permission+0x251/0x400
[  434.641194][T15215]  full_proxy_write+0xfd/0x1b0
[  434.646895][T15215]  ? __pfx_full_proxy_write+0x10/0x10
[  434.653323][T15215]  vfs_write+0x24c/0x1150
[  434.658505][T15215]  ? __fget_files+0x1fc/0x3a0
[  434.664120][T15215]  ? __pfx___mutex_lock+0x10/0x10
[  434.670158][T15215]  ? __pfx_vfs_write+0x10/0x10
[  434.675957][T15215]  ? __fget_files+0x206/0x3a0
[  434.681593][T15215]  ksys_write+0x12b/0x250
[  434.686777][T15215]  ? __pfx_ksys_write+0x10/0x10
[  434.692586][T15215]  ? rcu_is_watching+0x12/0xc0
[  434.698307][T15215]  ? rcu_is_watching+0x12/0xc0
[  434.704021][T15215]  do_syscall_64+0xcd/0x250
[  434.709435][T15215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  434.716517][T15215] RIP: 0033:0x7f8e44985d29
[  434.721806][T15215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  434.745326][T15215] RSP: 002b:00007f8e45813038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  434.755409][T15215] RAX: ffffffffffffffda RBX: 00007f8e44b75fa0 RCX: 00007f8e44985d29
[  434.764952][T15215] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[  434.774498][T15215] RBP: 00007f8e45813090 R08: 0000000000000000 R09: 0000000000000000
[  434.784045][T15215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  434.793591][T15215] R13: 0000000000000000 R14: 00007f8e44b75fa0 R15: 00007ffc6153a948
[  434.803141][T15215]  </TASK>
[  435.364242][T15254] binder: 15253:15254 ioctl 400c4d00 4 returned -22
[  435.431832][ T5830] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  435.451978][ T5830] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  435.461391][ T5830] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  435.481214][ T5830] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  435.494403][ T5830] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  435.503380][ T5830] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  435.757240][T15268] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2409'.
[  435.924757][T15268] ip_vti0: entered promiscuous mode
[  436.023734][T15258] chnl_net:caif_netlink_parms(): no params data found
[  436.310094][T15258] bridge0: port 1(bridge_slave_0) entered blocking state
[  436.354594][T15258] bridge0: port 1(bridge_slave_0) entered disabled state
[  436.381009][T15265] sd 0:0:1:0: PR command failed: 1026
[  436.387508][T15265] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  436.398289][T15258] bridge_slave_0: entered allmulticast mode
[  436.418785][T15258] bridge_slave_0: entered promiscuous mode
[  436.460222][T15265] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  436.762691][T15279] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  436.793064][T15258] bridge0: port 2(bridge_slave_1) entered blocking state
[  436.811050][T15258] bridge0: port 2(bridge_slave_1) entered disabled state
[  436.819708][T15258] bridge_slave_1: entered allmulticast mode
[  436.838504][T15258] bridge_slave_1: entered promiscuous mode
[  436.945116][T15279] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  436.956005][T15258] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  437.018427][T15258] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  437.035738][T15279] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  437.051078][T15279] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  437.129669][T15279] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  437.152456][T15258] team0: Port device team_slave_0 added
[  437.177211][T15258] team0: Port device team_slave_1 added
[  437.235282][T15279] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  437.252682][T15258] batman_adv: batadv0: Adding interface: batadv_slave_0
[  437.270992][T15258] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  437.316881][T15258] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  437.316914][T15279] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  437.330865][T15258] batman_adv: batadv0: Adding interface: batadv_slave_1
[  437.346226][T15258] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  437.432358][T15279] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  437.439828][T15258] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  437.601862][T15258] hsr_slave_0: entered promiscuous mode
[  437.603883][T15306] FAULT_INJECTION: forcing a failure.
[  437.603883][T15306] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  437.651331][T15258] hsr_slave_1: entered promiscuous mode
[  437.661028][T15306] CPU: 1 UID: 0 PID: 15306 Comm: syz.5.2417 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  437.673544][T15306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  437.685617][T15306] Call Trace:
[  437.689557][T15306]  <TASK>
[  437.693077][T15306]  dump_stack_lvl+0x16c/0x1f0
[  437.698709][T15306]  should_fail_ex+0x497/0x5b0
[  437.704338][T15306]  _copy_to_user+0x32/0xd0
[  437.709681][T15306]  simple_read_from_buffer+0xd0/0x160
[  437.716137][T15306]  proc_fail_nth_read+0x198/0x270
[  437.722183][T15306]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  437.728838][T15306]  ? bpf_lsm_file_permission+0x9/0x10
[  437.735281][T15306]  ? security_file_permission+0x71/0x210
[  437.742058][T15306]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  437.748712][T15306]  vfs_read+0x1df/0xbe0
[  437.753690][T15306]  ? __fget_files+0x1fc/0x3a0
[  437.759289][T15306]  ? __pfx___mutex_lock+0x10/0x10
[  437.765312][T15306]  ? __pfx_vfs_read+0x10/0x10
[  437.770932][T15306]  ? __fget_files+0x206/0x3a0
[  437.776556][T15306]  ksys_read+0x12b/0x250
[  437.781658][T15306]  ? __pfx_ksys_read+0x10/0x10
[  437.787415][T15306]  ? rcu_is_watching+0x12/0xc0
[  437.793125][T15306]  ? rcu_is_watching+0x12/0xc0
[  437.799387][T15306]  do_syscall_64+0xcd/0x250
[  437.804783][T15306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.811845][T15306] RIP: 0033:0x7f8e4498473c
[  437.817119][T15306] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  437.840630][T15306] RSP: 002b:00007f8e45813030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  437.850721][T15306] RAX: ffffffffffffffda RBX: 00007f8e44b75fa0 RCX: 00007f8e4498473c
[  437.860270][T15306] RDX: 000000000000000f RSI: 00007f8e458130a0 RDI: 0000000000000004
[  437.869825][T15306] RBP: 00007f8e45813090 R08: 0000000000000000 R09: 0000000000000000
[  437.879374][T15306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  437.888923][T15306] R13: 0000000000000000 R14: 00007f8e44b75fa0 R15: 00007ffc6153a948
[  437.898478][T15306]  </TASK>
[  437.935234][T15258] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  437.990987][T15258] Cannot create hsr debugfs directory
[  438.220992][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[  438.269794][T15258] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.943974][T15258] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.974819][T15329] netlink: 338 bytes leftover after parsing attributes in process `syz.5.2424'.
[  438.998681][T15331] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  439.026310][ T5834] Bluetooth: hci0: command 0x0419 tx timeout
[  439.077474][T15258] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  439.091059][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[  439.262955][ T5834] Bluetooth: hci4: command 0x041b tx timeout
[  439.360843][T15258] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  439.662829][T15258] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  439.733435][T15258] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  439.851010][T15258] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  439.898462][T15258] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  440.177765][T15258] 8021q: adding VLAN 0 to HW filter on device bond0
[  440.199011][T15258] 8021q: adding VLAN 0 to HW filter on device team0
[  440.434448][ T8036] bridge0: port 1(bridge_slave_0) entered blocking state
[  440.442996][ T8036] bridge0: port 1(bridge_slave_0) entered forwarding state
[  440.454009][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  440.464650][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  440.606058][T11989] bridge0: port 2(bridge_slave_1) entered blocking state
[  440.614586][T11989] bridge0: port 2(bridge_slave_1) entered forwarding state
[  440.911837][T15258] 8021q: adding VLAN 0 to HW filter on device batadv0
[  440.964560][T15367] binder: 15365:15367 ioctl c00c620f 9 returned -22
[  440.978245][T15258] veth0_vlan: entered promiscuous mode
[  440.992757][T15258] veth1_vlan: entered promiscuous mode
[  441.027819][T15258] veth0_macvtap: entered promiscuous mode
[  441.046481][T15258] veth1_macvtap: entered promiscuous mode
[  441.100556][T15377] netlink: 338 bytes leftover after parsing attributes in process `syz.5.2435'.
[  441.119927][T15258] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.171346][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[  441.184074][T15258] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.212477][T15258] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.225979][T15258] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.238465][T15258] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.251453][T15258] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.264139][T15258] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  441.277382][T15258] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.292182][T15258] batman_adv: batadv0: Interface activated: batadv_slave_0
[  441.312017][T15258] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.333284][ T5834] Bluetooth: hci4: command 0x041b tx timeout
[  441.342801][T15258] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.369577][T15258] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.383107][T15258] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.395033][T15258] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.407741][T15258] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.420020][T15258] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  441.435415][T15258] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  441.458554][T15258] batman_adv: batadv0: Interface activated: batadv_slave_1
[  441.471709][T15258] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  441.493611][T15258] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  441.504862][T15258] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  441.525370][T15258] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  441.671747][ T8036] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  441.686502][ T8036] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  441.709408][ T8036] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  441.746066][ T8036] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  441.764118][T15394] netlink: 338 bytes leftover after parsing attributes in process `syz.5.2439'.
[  441.924873][T15410] netlink: 'syz.5.2445': attribute type 4 has an invalid length.
[  441.951804][T15410] netlink: 110 bytes leftover after parsing attributes in process `syz.5.2445'.
[  442.428803][T15431] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2451'.
[  443.251059][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[  443.423444][ T5834] Bluetooth: hci4: command 0x041b tx timeout
[  443.643176][T15468] Invalid ELF header magic: != ELF
[  444.107435][T15480] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2464'.
[  444.144174][T15483] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2465'.
[  444.166983][T15468] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2460'.
[  444.381629][T15486] binder: 15482:15486 ioctl c0306201 9 returned -14
[  444.565624][T15468] bond0: entered allmulticast mode
[  444.571964][T15468] bond_slave_0: entered allmulticast mode
[  444.578986][T15468] bond_slave_1: entered allmulticast mode
[  444.831768][T15495] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2468'.
[  445.237108][T15506] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2472'.
[  445.311709][T15506] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2472'.
[  445.491605][ T5834] Bluetooth: hci4: command 0x041b tx timeout
[  446.563421][T15551] __nla_validate_parse: 1 callbacks suppressed
[  446.563441][T15551] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2484'.
[  446.697410][T15551] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2484'.
[  447.007696][T15567] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2486'.
[  447.067663][T15568] binder: 15566:15568 ioctl c00c620f 9 returned -22
[  447.504751][T15595] <
[  447.571070][ T5834] Bluetooth: hci4: command 0x041b tx timeout
[  448.356897][T15626] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2506'.
[  448.928349][T15657] FAULT_INJECTION: forcing a failure.
[  448.928349][T15657] name failslab, interval 1, probability 0, space 0, times 0
[  448.957866][T15657] CPU: 0 UID: 0 PID: 15657 Comm: syz.4.2514 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  448.970390][T15657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  448.982499][T15657] Call Trace:
[  448.986543][T15657]  <TASK>
[  448.990072][T15657]  dump_stack_lvl+0x16c/0x1f0
[  448.995704][T15657]  should_fail_ex+0x497/0x5b0
[  449.001331][T15657]  ? fs_reclaim_acquire+0xae/0x150
[  449.007477][T15657]  should_failslab+0xc2/0x120
[  449.013116][T15657]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  449.019591][T15657]  ? fput+0x67/0x440
[  449.024280][T15657]  ? getname_flags.part.0+0x4c/0x550
[  449.030641][T15657]  getname_flags.part.0+0x4c/0x550
[  449.036793][T15657]  __x64_sys_rmdir+0xb0/0x110
[  449.042422][T15657]  do_syscall_64+0xcd/0x250
[  449.047844][T15657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  449.054962][T15657] RIP: 0033:0x7fa065185d29
[  449.060259][T15657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  449.083802][T15657] RSP: 002b:00007fa065fe6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  449.093930][T15657] RAX: ffffffffffffffda RBX: 00007fa065376080 RCX: 00007fa065185d29
[  449.103499][T15657] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000340
[  449.113049][T15657] RBP: 00007fa065fe6090 R08: 0000000000000000 R09: 0000000000000000
[  449.122601][T15657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  449.132147][T15657] R13: 0000000000000000 R14: 00007fa065376080 R15: 00007ffd06cfe3f8
[  449.141701][T15657]  </TASK>
[  449.287480][T15665] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2517'.
[  449.650981][ T5834] Bluetooth: hci4: command 0x041b tx timeout
[  450.246809][T15694] FAULT_INJECTION: forcing a failure.
[  450.246809][T15694] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  450.290962][T15694] CPU: 0 UID: 0 PID: 15694 Comm: syz.1.2529 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  450.303492][T15694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  450.315569][T15694] Call Trace:
[  450.319509][T15694]  <TASK>
[  450.323032][T15694]  dump_stack_lvl+0x16c/0x1f0
[  450.328658][T15694]  should_fail_ex+0x497/0x5b0
[  450.334285][T15694]  _copy_from_iter+0x29b/0x1400
[  450.340120][T15694]  ? trace_lock_acquire+0x14e/0x1f0
[  450.346368][T15694]  ? __alloc_skb+0x200/0x380
[  450.351888][T15694]  ? __virt_addr_valid+0x1a4/0x590
[  450.358033][T15694]  ? __pfx__copy_from_iter+0x10/0x10
[  450.364390][T15694]  ? __virt_addr_valid+0x1a4/0x590
[  450.370535][T15694]  ? __virt_addr_valid+0x5e/0x590
[  450.376579][T15694]  ? __phys_addr_symbol+0x30/0x80
[  450.382622][T15694]  ? __check_object_size+0x488/0x710
[  450.388980][T15694]  netlink_sendmsg+0x813/0xd70
[  450.394709][T15694]  ? __pfx_netlink_sendmsg+0x10/0x10
[  450.401067][T15694]  ____sys_sendmsg+0x9ae/0xb40
[  450.406788][T15694]  ? copy_msghdr_from_user+0x10b/0x160
[  450.413352][T15694]  ? __pfx_____sys_sendmsg+0x10/0x10
[  450.419708][T15694]  ? rcu_is_watching+0x12/0xc0
[  450.425438][T15694]  ? lock_release+0x4e2/0x6f0
[  450.431054][T15694]  ? get_pid_task+0xfc/0x250
[  450.436575][T15694]  ___sys_sendmsg+0x135/0x1e0
[  450.442203][T15694]  ? get_pid_task+0x35/0x250
[  450.447729][T15694]  ? __pfx____sys_sendmsg+0x10/0x10
[  450.453985][T15694]  ? lock_release+0x4e2/0x6f0
[  450.459614][T15694]  ? __pfx_vfs_write+0x10/0x10
[  450.465343][T15694]  ? do_sys_openat2+0xb1/0x1e0
[  450.471079][T15694]  __sys_sendmsg+0x16e/0x220
[  450.476593][T15694]  ? __pfx___sys_sendmsg+0x10/0x10
[  450.482743][T15694]  ? rcu_is_watching+0x12/0xc0
[  450.488468][T15694]  ? rcu_is_watching+0x12/0xc0
[  450.494198][T15694]  do_syscall_64+0xcd/0x250
[  450.499619][T15694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.506710][T15694] RIP: 0033:0x7f9834585d29
[  450.512011][T15694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  450.535555][T15694] RSP: 002b:00007f983531a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  450.545659][T15694] RAX: ffffffffffffffda RBX: 00007f9834775fa0 RCX: 00007f9834585d29
[  450.555232][T15694] RDX: 0000000000000080 RSI: 0000000020000180 RDI: 0000000000000001
[  450.558962][T15702] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2530'.
[  450.564785][T15694] RBP: 00007f983531a090 R08: 0000000000000000 R09: 0000000000000000
[  450.564804][T15694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  450.564816][T15694] R13: 0000000000000000 R14: 00007f9834775fa0 R15: 00007fff3386b968
[  450.564836][T15694]  </TASK>
[  450.767642][T15707] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2530'.
[  451.858986][T15736] binder: 15731:15736 ioctl c00c620f 9 returned -22
[  452.038567][T15735] netlink: 338 bytes leftover after parsing attributes in process `syz.5.2541'.
[  452.068186][T15735] netlink: 338 bytes leftover after parsing attributes in process `syz.5.2541'.
[  452.357653][T15749] vhci_hcd: default hub control req: 0007 v0000 i0000 l0
[  452.394646][T15753] FAULT_INJECTION: forcing a failure.
[  452.394646][T15753] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  452.525690][T15753] CPU: 1 UID: 0 PID: 15753 Comm: syz.3.2546 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  452.538221][T15753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  452.550296][T15753] Call Trace:
[  452.554228][T15753]  <TASK>
[  452.557744][T15753]  dump_stack_lvl+0x16c/0x1f0
[  452.563372][T15753]  should_fail_ex+0x497/0x5b0
[  452.569001][T15753]  strncpy_from_user+0x3b/0x2d0
[  452.574835][T15753]  getname_flags.part.0+0x8f/0x550
[  452.580989][T15753]  __x64_sys_rmdir+0xb0/0x110
[  452.586615][T15753]  do_syscall_64+0xcd/0x250
[  452.592034][T15753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.599123][T15753] RIP: 0033:0x7f40f3f85d29
[  452.604426][T15753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.628009][T15753] RSP: 002b:00007f40f4d1b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  452.638135][T15753] RAX: ffffffffffffffda RBX: 00007f40f4176080 RCX: 00007f40f3f85d29
[  452.647716][T15753] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000340
[  452.657285][T15753] RBP: 00007f40f4d1b090 R08: 0000000000000000 R09: 0000000000000000
[  452.666853][T15753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  452.676452][T15753] R13: 0000000000000000 R14: 00007f40f4176080 R15: 00007fff5e9c7c98
[  452.686033][T15753]  </TASK>
[  452.925080][T15762] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2548'.
[  452.970988][T15762] macsec0: entered allmulticast mode
[  452.977370][T15762] veth1_macvtap: entered allmulticast mode
[  454.828449][T15800] Invalid ELF header magic: != ELF
[  454.846178][T15803] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2560'.
[  454.957141][T15803] geneve1: entered allmulticast mode
[  455.183847][T15816] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  456.213568][T15835] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2565'.
[  456.749779][T15850] netlink: 504 bytes leftover after parsing attributes in process `syz.3.2569'.
[  456.778254][T15850] netlink: 504 bytes leftover after parsing attributes in process `syz.3.2569'.
[  456.955614][T15853] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2570'.
[  458.026535][T15898] Invalid ELF header magic: != ELF
[  458.435488][T15920] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2589'.
[  458.545303][T15918] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2583'.
[  458.568988][T15918] bond0: entered allmulticast mode
[  458.584201][T15918] bond_slave_0: entered allmulticast mode
[  458.599091][T15918] bond_slave_1: entered allmulticast mode
[  459.045717][T15934] binder: 15932:15934 ioctl c00c620f 9 returned -22
[  459.134548][T15946] netlink: 146 bytes leftover after parsing attributes in process `syz.4.2599'.
[  459.822055][T15963] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2604'.
[  459.982325][T15967] binder: 15966:15967 ioctl c0306201 9 returned -14
[  460.084064][T15977] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2608'.
[  460.354136][T15993] binder: 15992:15993 ioctl c00c6211 9 returned -14
[  460.699559][T16001] svc: failed to register nfsdv3 RPC service (errno 111).
[  460.734064][T16001] svc: failed to register nfsaclv3 RPC service (errno 111).
[  460.821817][T16009] binder: 16008:16009 unknown command 0
[  460.828665][T16009] binder: 16008:16009 ioctl c0306201 9 returned -22
[  461.296076][T16023] netlink: 17 bytes leftover after parsing attributes in process `syz.4.2623'.
[  461.683132][T16055] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2632'.
[  461.806113][T16057] binder: 16056:16057 ioctl c00c620f 9 returned -22
[  461.966532][T16066] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2636'.
[  462.235593][T16084] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2642'.
[  462.293634][T16086] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2643'.
[  462.503918][T16097] binder: 16096:16097 ioctl c00c620f 9 returned -22
[  463.282194][T16129] binder: 16127:16129 ioctl c00c620f 9 returned -22
[  463.589318][T16161] binder: 16156:16161 ioctl c00c6211 9 returned -14
[  463.839893][T16169] binder: 16168:16169 unknown command 0
[  463.870984][T16169] binder: 16168:16169 ioctl c0306201 9 returned -22
[  464.123234][T16184] __nla_validate_parse: 2 callbacks suppressed
[  464.123256][T16184] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2667'.
[  464.171018][T16188] netlink: 488 bytes leftover after parsing attributes in process `syz.1.2668'.
[  464.336181][T16196] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2672'.
[  464.668731][T16212] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2679'.
[  465.115922][T16245] netlink: 338 bytes leftover after parsing attributes in process `syz.5.2689'.
[  465.954118][T16281] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2701'.
[  467.809068][T16324] openvswitch: netlink: Duplicate or invalid key (type 0).
[  468.115756][T16324] binder: 16323:16324 ioctl c0306201 9 returned -14
[  469.407411][T16385] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2729'.
[  469.442677][T16385] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2729'.
[  469.584197][T16387] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2730'.
[  469.596225][T16387] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2730'.
[  469.852899][T16396] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  469.860280][T16396] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  469.878027][T16396] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  469.885535][T16396] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  470.117422][T16406] binder: 16405:16406 ioctl c00c620f 9 returned -22
[  470.371633][T16419] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2740'.
[  470.403689][T16419] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2740'.
[  471.650714][T16464] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2752'.
[  471.733846][T16464] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2752'.
[  471.891089][ T5834] Bluetooth: hci4: command 0x041b tx timeout
[  471.891101][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  471.891132][ T5830] Bluetooth: hci0: command 0x0419 tx timeout
[  471.898304][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout
[  472.367910][T16480] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2757'.
[  472.371839][T16478] binder: 16477:16478 ioctl c00c620f 9 returned -22
[  472.380150][T16480] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2757'.
[  472.771696][T16497] netlink: 'syz.5.2761': attribute type 1 has an invalid length.
[  472.790960][T16497] netlink: 'syz.5.2761': attribute type 1 has an invalid length.
[  472.937441][T16494] netlink: 'syz.5.2761': attribute type 1 has an invalid length.
[  473.082062][T16494] netlink: 'syz.5.2761': attribute type 1 has an invalid length.
[  473.810478][T16528] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  473.965047][T16528] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  474.044743][T16528] bond0 (unregistering): Released all slaves
[  474.427254][T16539] __nla_validate_parse: 4 callbacks suppressed
[  474.427276][T16539] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2781'.
[  475.054718][T16559] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2778'.
[  479.193459][T16659] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2799'.
[  479.262334][T16659] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2799'.
[  479.967606][T16670] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2802'.
[  479.980648][T16668] netlink: 'syz.3.2801': attribute type 1 has an invalid length.
[  479.990244][T16668] netlink: 'syz.3.2801': attribute type 1 has an invalid length.
[  480.019886][T16674] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2804'.
[  480.046342][T16674] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2804'.
[  480.345587][T16681] netlink: 'syz.3.2807': attribute type 1 has an invalid length.
[  480.401239][T16681] netlink: 'syz.3.2807': attribute type 1 has an invalid length.
[  480.497002][T16681] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2807'.
[  481.311200][T16699] openvswitch: netlink: Message has 4 unknown bytes.
[  482.930560][T16728] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2819'.
[  483.017634][T16728] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  483.040469][T16728] bond_slave_0: left allmulticast mode
[  483.052876][T16728] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  483.074247][T16728] bond_slave_1: left allmulticast mode
[  483.104752][T16728] bond0 (unregistering): Released all slaves
[  483.272675][T16735] netlink: 338 bytes leftover after parsing attributes in process `syz.5.2820'.
[  483.549896][ T5145] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  483.558615][ T5145] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  483.595057][ T5145] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  483.623810][ T5145] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  483.635519][ T5145] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  483.651129][ T5145] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  483.773864][T16729] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2818'.
[  483.828085][T16729] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2818'.
[  484.105783][T16752] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2825'.
[  484.117990][T16752] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2825'.
[  484.454463][T16740] chnl_net:caif_netlink_parms(): no params data found
[  485.081022][T16740] bridge0: port 1(bridge_slave_0) entered blocking state
[  485.132318][T16740] bridge0: port 1(bridge_slave_0) entered disabled state
[  485.161804][T16740] bridge_slave_0: entered allmulticast mode
[  485.185493][T16740] bridge_slave_0: entered promiscuous mode
[  485.222907][T16740] bridge0: port 2(bridge_slave_1) entered blocking state
[  485.261188][T16740] bridge0: port 2(bridge_slave_1) entered disabled state
[  485.305012][T16740] bridge_slave_1: entered allmulticast mode
[  485.331864][T16740] bridge_slave_1: entered promiscuous mode
[  485.443182][T16740] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  485.493059][T16740] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  485.629845][T16740] team0: Port device team_slave_0 added
[  485.734894][T16473] Bluetooth: hci2: command tx timeout
[  485.885387][T16740] team0: Port device team_slave_1 added
[  485.981088][T16791] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2833'.
[  486.508412][T16791] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  486.550238][T16791] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  486.594170][T16791] bond0 (unregistering): Released all slaves
[  486.640170][T16740] batman_adv: batadv0: Adding interface: batadv_slave_0
[  486.649428][T16740] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  486.753205][T16740] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  486.803895][T16740] batman_adv: batadv0: Adding interface: batadv_slave_1
[  486.825431][T16803] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2835'.
[  486.840513][T16740] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  486.843353][T16803] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2835'.
[  486.931212][T16740] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  487.166490][T16810] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2837'.
[  487.196805][T16808] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2836'.
[  487.212921][T16810] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2837'.
[  487.253035][T16740] hsr_slave_0: entered promiscuous mode
[  487.300995][T16740] hsr_slave_1: entered promiscuous mode
[  487.331344][T16740] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  487.350575][T16740] Cannot create hsr debugfs directory
[  487.559506][T16823] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2843'.
[  487.688794][T16830] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2844'.
[  487.796184][T16740] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  487.813555][T16473] Bluetooth: hci2: command tx timeout
[  487.855980][T16740] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  487.894369][T16740] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  487.923437][T16740] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  488.016712][T16837] Invalid ELF header magic: != ELF
[  488.026878][T16841] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2848'.
[  488.127648][T16740] 8021q: adding VLAN 0 to HW filter on device bond0
[  488.185530][T16740] 8021q: adding VLAN 0 to HW filter on device team0
[  488.214111][ T1337] bridge0: port 1(bridge_slave_0) entered blocking state
[  488.222670][ T1337] bridge0: port 1(bridge_slave_0) entered forwarding state
[  488.292893][ T8046] bridge0: port 2(bridge_slave_1) entered blocking state
[  488.301429][ T8046] bridge0: port 2(bridge_slave_1) entered forwarding state
[  488.832745][T16740] 8021q: adding VLAN 0 to HW filter on device batadv0
[  489.366268][T16740] veth0_vlan: entered promiscuous mode
[  489.422599][T16740] veth1_vlan: entered promiscuous mode
[  489.478568][T16740] veth0_macvtap: entered promiscuous mode
[  489.531762][ T8046] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  489.602729][T16740] veth1_macvtap: entered promiscuous mode
[  489.673244][ T8046] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  489.761260][T16740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  489.830948][T16740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.901710][T16473] Bluetooth: hci2: command tx timeout
[  490.021894][T16740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  490.069393][T16740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.097553][T16740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  490.135177][T16740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.157508][T16740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  490.183541][T16740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.198512][T16740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  490.215946][T16740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.237678][T16740] batman_adv: batadv0: Interface activated: batadv_slave_0
[  490.283809][ T8046] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  490.354494][ T8046] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  490.415248][T16740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.447409][T16740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.476228][T16740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.496295][T16740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.508721][T16740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.521656][T16740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.535274][T16740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.548558][T16740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.562831][T16740] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.576826][T16740] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.600802][T16740] batman_adv: batadv0: Interface activated: batadv_slave_1
[  490.653581][ T8046] bridge_slave_1: left allmulticast mode
[  490.662216][ T8046] bridge_slave_1: left promiscuous mode
[  490.669031][ T8046] bridge0: port 2(bridge_slave_1) entered disabled state
[  490.684410][ T8046] bridge_slave_0: left allmulticast mode
[  490.699958][ T8046] bridge_slave_0: left promiscuous mode
[  490.713143][ T8046] bridge0: port 1(bridge_slave_0) entered disabled state
[  490.868342][ T8046] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  490.879914][ T8046] bond_slave_0: left allmulticast mode
[  490.890446][ T8046] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  490.901910][ T8046] bond_slave_1: left allmulticast mode
[  490.909391][ T8046] bond0 (unregistering): Released all slaves
[  490.929049][T16740] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  490.944059][T16740] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  490.954945][T16740] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  490.977343][T16740] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  491.117514][T11999] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  491.153802][T11999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  491.171321][T16909] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2861'.
[  491.196370][T16909] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2861'.
[  491.264055][ T1337] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  491.281042][ T1337] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  491.344378][ T8046] hsr_slave_0: left promiscuous mode
[  491.392377][ T8046] hsr_slave_1: left promiscuous mode
[  491.445864][ T8046] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  491.465402][ T8046] batman_adv: batadv0: Removing interface: batadv_slave_0
[  491.525839][ T8046] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  491.560339][ T8046] batman_adv: batadv0: Removing interface: batadv_slave_1
[  491.599682][ T8046] veth1_macvtap: left promiscuous mode
[  491.609623][ T8046] veth0_macvtap: left promiscuous mode
[  491.631072][ T8046] veth1_vlan: left promiscuous mode
[  491.637612][ T8046] veth0_vlan: left promiscuous mode
[  491.971303][T16473] Bluetooth: hci2: command tx timeout
[  491.991158][ T8046] team0 (unregistering): Port device team_slave_1 removed
[  492.000019][T16939] ptrace attach of "./syz-executor exec"[9577] was attempted by "./syz-executor exec"[16939]
[  492.064230][ T8046] team0 (unregistering): Port device team_slave_0 removed
[  493.387686][T16961] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  493.421648][T16961] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  493.430094][T16961] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  493.455728][T16961] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  493.484700][T16961] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  493.526192][T16961] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  494.473503][T17042] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2883'.
[  494.773013][T17051] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2885'.
[  495.251054][T16473] Bluetooth: hci3: command 0x0c1a tx timeout
[  495.449170][T17099] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2895'.
[  495.491829][T16473] Bluetooth: hci2: command 0x0c1a tx timeout
[  495.491847][ T5145] Bluetooth: hci1: command 0x0c1a tx timeout
[  495.499454][T16473] Bluetooth: hci0: command 0x0419 tx timeout
[  495.639781][T17113] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2898'.
[  497.571063][T16473] Bluetooth: hci2: command 0x0c1a tx timeout
[  497.844240][T17197] ptrace attach of "./syz-executor exec"[13886] was attempted by "./syz-executor exec"[17197]
[  497.865780][T17195] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2910'.
[  497.987936][T17200] binder: 17199:17200 ioctl c00c620f 9 returned -22
[  498.250361][T17212] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2913'.
[  498.288008][T17212] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2913'.
[  499.651100][T16473] Bluetooth: hci2: command 0x0c1a tx timeout
[  500.183225][T17329] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2932'.
[  500.377888][T17340] Oops: general protection fault, probably for non-canonical address 0xdffffc00000a2403: 0000 [#1] PREEMPT SMP KASAN PTI
[  500.393017][T17340] KASAN: probably user-memory-access in range [0x0000000000512018-0x000000000051201f]
[  500.404467][T17340] CPU: 0 UID: 0 PID: 17340 Comm: syz.3.2934 Not tainted 6.13.0-syzkaller-00918-g95ec54a420b8 #0
[  500.416966][T17340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  500.429034][T17340] RIP: 0010:__smc_diag_dump.constprop.0+0x3e2/0x2500
[  500.437070][T17340] Code: 4c 8b b3 58 05 00 00 4d 85 f6 0f 84 f6 02 00 00 e8 23 24 ca f6 49 8d 7e 18 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 86 1c 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b
[  500.460602][T17340] RSP: 0018:ffffc9000ca97170 EFLAGS: 00010206
[  500.467864][T17340] RAX: dffffc0000000000 RBX: ffff888057f6b000 RCX: ffffffff891148d4
[  500.477408][T17340] RDX: 00000000000a2403 RSI: ffffffff8acf4b5d RDI: 0000000000512018
[  500.486949][T17340] RBP: ffff88807a7d25e0 R08: 0000000000000005 R09: 0000000000000000
[  500.496499][T17340] R10: 0000000080000001 R11: 0000000000084033 R12: 0000000000000000
[  500.506041][T17340] R13: ffff88807b460000 R14: 0000000000512000 R15: 000000000000000a
[  500.515591][T17340] FS:  00007f40f4d1b6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  500.526293][T17340] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  500.534175][T17340] CR2: 00007f40f4cd8f98 CR3: 000000003d564000 CR4: 00000000003526f0
[  500.543726][T17340] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  500.553266][T17340] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  500.562817][T17340] Call Trace:
[  500.566731][T17340]  <TASK>
[  500.570227][T17340]  ? die_addr+0x3b/0xa0
[  500.575196][T17340]  ? exc_general_protection+0x155/0x230
[  500.581836][T17340]  ? asm_exc_general_protection+0x26/0x30
[  500.588689][T17340]  ? sock_diag_save_cookie+0x44/0xd0
[  500.595019][T17340]  ? __smc_diag_dump.constprop.0+0x3cd/0x2500
[  500.602291][T17340]  ? __smc_diag_dump.constprop.0+0x3e2/0x2500
[  500.609560][T17340]  ? netlink_sendmsg+0x8b8/0xd70
[  500.615471][T17340]  ? __pfx___smc_diag_dump.constprop.0+0x10/0x10
[  500.623058][T17340]  ? lock_release+0x4e2/0x6f0
[  500.628653][T17340]  ? rcu_read_unlock+0x17/0x60
[  500.634359][T17340]  ? __pfx_lock_release+0x10/0x10
[  500.640366][T17340]  ? trace_lock_acquire+0x14e/0x1f0
[  500.646588][T17340]  ? __lruvec_stat_mod_folio+0xa0/0x360
[  500.653224][T17340]  ? lock_acquire+0x2f/0xb0
[  500.658606][T17340]  ? __lruvec_stat_mod_folio+0xa0/0x360
[  500.665250][T17340]  ? rcu_is_watching+0x12/0xc0
[  500.670980][T17340]  ? trace_irq_enable.constprop.0+0xea/0x140
[  500.678137][T17340]  ? rcu_is_watching+0x12/0xc0
[  500.683839][T17340]  ? rcu_is_watching+0x12/0xc0
[  500.689550][T17340]  ? lock_release+0x4e2/0x6f0
[  500.695154][T17340]  ? rcu_is_watching+0x12/0xc0
[  500.700866][T17340]  ? trace_lock_acquire+0x14e/0x1f0
[  500.707098][T17340]  ? smc_diag_dump_proto+0x103/0x420
[  500.713551][T17340]  ? lock_acquire+0x2f/0xb0
[  500.718935][T17340]  ? smc_diag_dump_proto+0x103/0x420
[  500.725271][T17340]  smc_diag_dump_proto+0x26d/0x420
[  500.731402][T17340]  smc_diag_dump+0x84/0x90
[  500.736689][T17340]  netlink_dump+0x53c/0xd00
[  500.742078][T17340]  ? __pfx_netlink_dump+0x10/0x10
[  500.748092][T17340]  ? lock_acquire+0x2f/0xb0
[  500.753481][T17340]  ? netlink_lookup+0x3d/0x270
[  500.759215][T17340]  __netlink_dump_start+0x6d9/0x980
[  500.765451][T17340]  smc_diag_handler_dump+0x1fb/0x240
[  500.771793][T17340]  ? __pfx_smc_diag_handler_dump+0x10/0x10
[  500.778758][T17340]  ? __pfx_smc_diag_dump+0x10/0x10
[  500.784886][T17340]  ? lock_acquire+0x2f/0xb0
[  500.790277][T17340]  ? sock_diag_lock_handler+0x2c/0x2e0
[  500.796821][T17340]  sock_diag_rcv_msg+0x437/0x790
[  500.802735][T17340]  netlink_rcv_skb+0x165/0x410
[  500.808457][T17340]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  500.815004][T17340]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  500.821346][T17340]  ? rcu_is_watching+0x12/0xc0
[  500.827054][T17340]  netlink_unicast+0x53c/0x7f0
[  500.832761][T17340]  ? __pfx_netlink_unicast+0x10/0x10
[  500.839091][T17340]  ? __phys_addr_symbol+0x30/0x80
[  500.845110][T17340]  ? __check_object_size+0x488/0x710
[  500.851444][T17340]  netlink_sendmsg+0x8b8/0xd70
[  500.857152][T17340]  ? __pfx_netlink_sendmsg+0x10/0x10
[  500.863497][T17340]  ____sys_sendmsg+0x9ae/0xb40
[  500.869204][T17340]  ? copy_msghdr_from_user+0x10b/0x160
[  500.875751][T17340]  ? __pfx_____sys_sendmsg+0x10/0x10
[  500.882086][T17340]  ___sys_sendmsg+0x135/0x1e0
[  500.887693][T17340]  ? __pfx____sys_sendmsg+0x10/0x10
[  500.893933][T17340]  ? __pfx_lock_release+0x10/0x10
[  500.899943][T17340]  ? trace_lock_acquire+0x14e/0x1f0
[  500.906168][T17340]  ? __fget_files+0x206/0x3a0
[  500.911769][T17340]  __sys_sendmsg+0x16e/0x220
[  500.917255][T17340]  ? __pfx___sys_sendmsg+0x10/0x10
[  500.923368][T17340]  ? __x64_sys_futex+0x1e1/0x4c0
[  500.929285][T17340]  ? rcu_is_watching+0x12/0xc0
[  500.934989][T17340]  ? rcu_is_watching+0x12/0xc0
[  500.940697][T17340]  do_syscall_64+0xcd/0x250
[  500.946089][T17340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  500.953149][T17340] RIP: 0033:0x7f40f3f85d29
[  500.958427][T17340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  500.981937][T17340] RSP: 002b:00007f40f4d1b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  500.992013][T17340] RAX: ffffffffffffffda RBX: 00007f40f4176080 RCX: 00007f40f3f85d29
[  501.001560][T17340] RDX: 000000000400c000 RSI: 0000000020000140 RDI: 0000000000000005
[  501.011415][T17340] RBP: 00007f40f4001b08 R08: 0000000000000000 R09: 0000000000000000
[  501.020957][T17340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  501.030498][T17340] R13: 0000000000000000 R14: 00007f40f4176080 R15: 00007fff5e9c7c98
[  501.040049][T17340]  </TASK>
[  501.043650][T17340] Modules linked in:
[  501.049854][T17340] ---[ end trace 0000000000000000 ]---
[  501.057424][T17340] RIP: 0010:__smc_diag_dump.constprop.0+0x3e2/0x2500
[  501.065542][T17340] Code: 4c 8b b3 58 05 00 00 4d 85 f6 0f 84 f6 02 00 00 e8 23 24 ca f6 49 8d 7e 18 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 86 1c 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b
[  501.089278][T17340] RSP: 0018:ffffc9000ca97170 EFLAGS: 00010206
[  501.096819][T17340] RAX: dffffc0000000000 RBX: ffff888057f6b000 RCX: ffffffff891148d4
[  501.106402][T17340] RDX: 00000000000a2403 RSI: ffffffff8acf4b5d RDI: 0000000000512018
[  501.115961][T17340] RBP: ffff88807a7d25e0 R08: 0000000000000005 R09: 0000000000000000
[  501.125529][T17340] R10: 0000000080000001 R11: 0000000000084033 R12: 0000000000000000
[  501.135317][T17340] R13: ffff88807b460000 R14: 0000000000512000 R15: 000000000000000a
[  501.145216][T17340] FS:  00007f40f4d1b6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  501.156054][T17340] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  501.164036][T17340] CR2: 00007f40f4cd8f98 CR3: 000000003d564000 CR4: 00000000003526f0
[  501.173689][T17340] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  501.183397][T17340] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  501.193090][T17340] Kernel panic - not syncing: Fatal exception
[  501.200469][T17340] Kernel Offset: disabled
[  501.205629][T17340] Rebooting in 86400 seconds..