last executing test programs:

22m2.568455722s ago: executing program 32 (id=34):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_DEL_TX_TS(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8040}, 0x40008c0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/ram14/queue/logical_block_size\x00', 0x300, 0x0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
r1 = socket(0x2, 0x5, 0x0)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000200), r1)
sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f0000000580)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x20004081)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
connect$auto(0x3, 0x0, 0x55)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
connect$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x0, @rand_addr=0xe0}, 0x55)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x311)
read$auto(0x3, 0x0, 0x80)
writev$auto(0x5, 0x0, 0x201)
vmsplice$auto(0x4, 0x0, 0x3, 0x4)
close_range$auto(0x2, 0x8, 0x0)
epoll_create$auto(0x4)
arch_prctl$auto(0x1024, 0x0)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

21m48.673007579s ago: executing program 33 (id=65):
bpf$auto(0x6, 0x0, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
fanotify_init$auto(0x5, 0x2)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
io_uring_setup$auto(0x4a84, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x80002, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000040), 0x101a00, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket(0x2, 0x2, 0x1)
bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x1b, r0, 0x4}, 0x10)
ioctl$auto(0xffffffffffffffff, 0x400c4d04, 0x7)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ef, 0x7, 0xd, 0x1, 0x20948b, 0xe4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)

21m27.338637837s ago: executing program 34 (id=115):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
ioctl$auto(r0, 0x4b63, 0xffffffffffffffff)

21m24.391635273s ago: executing program 35 (id=130):
read$auto(0x3, 0x0, 0x80)

21m9.311506222s ago: executing program 6 (id=165):
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
capset$auto(0x0, 0x0)
capget$auto(0x0, &(0x7f0000000180)={0xea69, 0xb, 0x1})
mmap$auto(0x0, 0xe986, 0x100df, 0xeb1, 0x401, 0x8000)
unlinkat$auto(0xffffffffffffffff, &(0x7f0000000200)='.\x00', 0x0)
ioctl$auto(0xffffffffffffffff, 0x800454cf, 0x3)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0x8012, 0x0, 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/block/nbd12/queue/discard_zeroes_data\x00', 0x102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(r0, 0x5, 0x21, 0x0, 0x9)
pwrite64$auto(0xc8, &(0x7f0000000340)='\vp\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x06\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xcfL\x0e\v\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/236, 0xfdef, 0x3)
mincore$auto(0x1000, 0x8001, 0x0)
io_uring_setup$auto(0x877, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0x6, 0x11, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
shutdown$auto(0x200000003, 0x2)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x2e, 0x0, 0x9)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
socket(0x15, 0x5, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x107000, 0x0)
r1 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
getdents64$auto(r1, &(0x7f0000000440)={0x0, 0x3, 0x4a1, 0x0, "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"}, 0x7f)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D1\x00', 0xb8a01, 0x0)
madvise$auto(0x4, 0xffffffffffffffe7, 0x3)

21m8.868000577s ago: executing program 6 (id=167):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x4, 0x8000)
lstat$auto(0x0, &(0x7f00000000c0)={0xa, 0x90000, 0x100000001, 0xffff, 0x0, 0xee00, 0x0, 0x1, 0x6, 0x6, 0x0, 0x2, 0xd0, 0x10001, 0x100, 0x8, 0xffffffff93ef807e})
r0 = socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
ioctl$auto(0x3, 0x80045515, 0x1)
sysfs$auto(0x2, 0x4, 0x4)
mincore$auto(0x1000, 0x8001, 0x0)
io_uring_setup$auto(0x2, 0x0)
sendmsg$auto(r0, &(0x7f0000000000)={&(0x7f00000000c0), 0x7fc, 0x0, 0x3, 0x0, 0x200, 0x4}, 0x0)

21m6.883841126s ago: executing program 6 (id=177):
mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/misc/hw_random/rng_current\x00', 0x100, 0x0)
openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000280)='/dev/etherd/discover\x00', 0x541, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket(0x10, 0x2, 0xf)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
setresuid$auto(0xd, 0x0, 0x221)
mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
write$auto(0x3, 0x0, 0xfdef)

21m5.927000315s ago: executing program 6 (id=180):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
read$auto(0x3, 0x0, 0x80)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r2)
sendmsg$auto_TIPC_NL_NET_SET(r2, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f00000000c0)=ANY=[@ANYBLOB="206ce4d772c4951b43406496bc775d", @ANYRES16=r3, @ANYBLOB="01002cbd7000fcdbdf250f0000000c00078008000200ffffffff"], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2)
sendmsg$auto_TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000040)={&(0x7f0000000500)={0x1cc, r3, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x1b6, 0x6, 0x0, 0x1, [@nested={0x141, 0x65, 0x0, 0x1, [@typed={0x14, 0x33, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @multicast1}}, @typed={0x8, 0xe0, 0x0, 0x0, @pid=r1}, @generic="e05a1270fe496527b431e6549c842c0e1be8abe3998cef25e02d14c70ae2fc28d4ae06909ee478066bcd5f5aba59b0c1e87cb62b211c1553db808dadba3378717a9a0107c4cb5f414e41d9310cab7310dd2b4e5cfa539c52ac0385f8728977d5bfb1244abe07510ac5", @nested={0xffffffffffffff44, 0x12d}, @typed={0xb1, 0x67, 0x0, 0x0, @binary="475046dc9108a298da8b4e3feb015d3b12a3ba48cab0a354b07cd10d2364913bef82b1cd9879a99316cabb210f336408099e8dec3bc3a44dfe97eb784b1537b2e502fea05c91ded757e7bb66dca084a44bf4bac09e68f70e7375c84341076f6d32841310a0a64e28a2a91dce661b587784609a4430951954643e6d04256b56177fcd8275456cf3e482198d021a0f92d26f60ff98ea1bd410257237dbf4b8fa907be2ef70e7a7c6c77b4f502ffb"}]}, @generic="c837bc0ed0f23dbf6af8d7dfa0dfda272151b05bc6c908d90235fa98ec2594bf1cdfa1e7ba577514c9fe4dc86fd9f5bb8569a41a4348e27a618335d7ca1fad73db98008aa38ba4f0fcb7fa7a5eb72928ed7f3d7b1f18dc1b757e518dc18aa98402edf81a76aa772e2e73d68c1125"]}]}, 0x1cc}}, 0x4)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x7)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x2, 0x1, 0x0)
r5 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000000), r5)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0x5c8)
io_uring_setup$auto(0x2, &(0x7f0000000140)={0x1, 0x9, 0x3, 0x0, 0x6, 0x101, 0xffffffffffffffff, [0xd5, 0x9], {0xffffff80, 0x9, 0x10, 0xb835, 0x0, 0xdbb, 0x3, 0xee9, 0x83}, {0x8001, 0x4, 0x8, 0x1, 0x4, 0x40, 0x4, 0x6, 0x3}})
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001100)=""/192, 0xc0)
socket(0x3, 0x2, 0xfd)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

21m4.45682923s ago: executing program 6 (id=183):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0xa4e00, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/binder/parameters/stop_on_user_error\x00', 0x2, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)='8', 0x1)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/pid_for_children\x00')
fstat$auto(r1, 0x0)
readv$auto(0x3, 0x0, 0x1)
r2 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
writev$auto(r2, &(0x7f0000000140)={&(0x7f0000000040), 0x5}, 0x5)
mmap$auto(0x2, 0x8, 0xe1, 0x13, r2, 0x608c)
socket(0xa, 0x801, 0x84)
symlinkat$auto(0x0, 0xffffffffffffff9c, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2c, 0x3, 0x3a)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001100)='/proc/sys/net/ipv6/conf/default/mtu\x00', 0x0, 0x0)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
memfd_secret$auto(0x0)
ftruncate$auto(0x3, 0x700)
read$auto(0x3, 0x0, 0x80)
r3 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim3/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r3, 0x0, 0xc70)

21m3.424017505s ago: executing program 6 (id=187):
bpf$auto(0x6, 0x0, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = fanotify_init$auto(0x5, 0x2)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
io_uring_setup$auto(0x4a84, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x80002, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000040), 0x101a00, 0x0)
sendto$auto(r0, &(0x7f0000000080)="d0399f0326b051c72384d6945ef10d7ee0c876e88386d00291fc26e7a5ce9e95cf24953c63020fd16d65aca02a7423b6e0d0abaa429af149ed1fd85bbcfd07edd61f46dd8a68cb7c808ca91605c3df7105067f444a0192e492fdeadf8d46e74d", 0x9, 0x8, &(0x7f0000000100)=@nl=@unspec, 0x3ff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x400c4d04, 0x7)
r1 = gettid()
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
process_vm_writev$auto(r1, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0)
prctl$auto(0x29, 0x0, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ef, 0x7, 0xd, 0x1, 0x20948b, 0xe4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)

21m3.262061041s ago: executing program 36 (id=187):
bpf$auto(0x6, 0x0, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = fanotify_init$auto(0x5, 0x2)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
io_uring_setup$auto(0x4a84, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x80002, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000040), 0x101a00, 0x0)
sendto$auto(r0, &(0x7f0000000080)="d0399f0326b051c72384d6945ef10d7ee0c876e88386d00291fc26e7a5ce9e95cf24953c63020fd16d65aca02a7423b6e0d0abaa429af149ed1fd85bbcfd07edd61f46dd8a68cb7c808ca91605c3df7105067f444a0192e492fdeadf8d46e74d", 0x9, 0x8, &(0x7f0000000100)=@nl=@unspec, 0x3ff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x400c4d04, 0x7)
r1 = gettid()
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
process_vm_writev$auto(r1, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0)
prctl$auto(0x29, 0x0, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x1ef, 0x7, 0xd, 0x1, 0x20948b, 0xe4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)

20m52.914581141s ago: executing program 7 (id=216):
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
ioctl$auto(0x3, 0x541b, 0x7f)
mmap$auto(0x100000000000019, 0x20009, 0x200008, 0xebe, 0x401, 0x5f)
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/domainname\x00', 0x88042, 0x0)
poll$auto(&(0x7f0000000080)={<r2=>r1, 0x0, 0x5}, 0x5, 0x49)
write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x20100, 0x0)
ioctl$auto(r3, 0x64d0, 0x40)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = io_uring_setup$auto(0x6, 0x0)
r5 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r5, 0x0, 0x53, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x4610, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'nicvf0\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wg1\x00', <r7=>0x0})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'virt_wifi0\x00', <r8=>0x0})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000200)={'veth1_to_team\x00', <r9=>0x0})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000240)={'veth0_to_bond\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'bond_slave_0\x00', <r11=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'vcan0\x00', <r12=>0x0})
sendmsg$auto_NET_SHAPER_CMD_CAP_GET2(r5, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x4c, 0x0, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r6}, @NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r7}, @NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r8}, @NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r9}, @NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r10}, @NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r11}, @NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r12}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4010}, 0x20000800)

20m52.346854757s ago: executing program 7 (id=218):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
read$auto(0x3, 0x0, 0x80)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r2)
sendmsg$auto_TIPC_NL_NET_SET(r2, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f00000000c0)=ANY=[@ANYBLOB="206ce4d772c4951b43406496bc775d", @ANYRES16=r3, @ANYBLOB="01002cbd7000fcdbdf250f0000000c00078008000200ffffffff"], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2)
sendmsg$auto_TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000040)={&(0x7f0000000380)={0x164, r3, 0x8, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x150, 0x6, 0x0, 0x1, [@nested={0x141, 0x65, 0x0, 0x1, [@typed={0x14, 0x33, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @multicast1}}, @typed={0x8, 0xe0, 0x0, 0x0, @pid=r1}, @generic="e05a1270fe496527b431e6549c842c0e1be8abe3998cef25e02d14c70ae2fc28d4ae06909ee478066bcd5f5aba59b0c1e87cb62b211c1553db808dadba3378717a9a0107c4cb5f414e41d9310cab7310dd2b4e5cfa539c52ac0385f8728977d5bfb1244abe07510ac5", @nested={0x4, 0x12d}, @typed={0xb1, 0x67, 0x0, 0x0, @binary="475046dc9108a298da8b4e3feb015d3b12a3ba48cab0a354b07cd10d2364913bef82b1cd9879a99316cabb210f336408099e8dec3bc3a44dfe97eb784b1537b2e502fea05c91ded757e7bb66dca084a44bf4bac09e68f70e7375c84341076f6d32841310a0a64e28a2a91dce661b587784609a4430951954643e6d04256b56177fcd8275456cf3e482198d021a0f92d26f60ff98ea1bd410257237dbf4b8fa907be2ef70e7a7c6c77b4f502ffb"}]}, @typed={0x8, 0x7a, 0x0, 0x0, @uid}]}]}, 0x164}}, 0x4)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x7)
socket(0x3, 0x2, 0xfd)
mmap$auto(0x0, 0xbca2, 0x4000000000df, 0xeb1, 0x401, 0x8004)
socket(0x29, 0x3, 0x3c)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000100), 0x900, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
iopl$auto(0x3)
mknod$auto(0x0, 0xcb, 0xfffffffa)
r5 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000001a00), 0xffffffffffffffff)
open(&(0x7f0000000080)='./file0\x00', 0x22ac2, 0x5d745cb200ae4d7b)
mount$auto(&(0x7f0000000140)='nicvf0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='afs\x00', 0x5, 0x0)
sendmsg$auto_SEG6_CMD_GET_TUNSRC(r4, &(0x7f0000001b00)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000001a40)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4094}, 0x800)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0xf7}, 0x7)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)

20m51.748073563s ago: executing program 7 (id=220):
timer_create$auto(0x9, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x2000053, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x84, 0x82, 0x0, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x8002, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x101080, 0x0)
read$auto_snd_rawmidi_f_ops_rawmidi(r0, &(0x7f0000000080)=""/45, 0x2d)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x80180, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x500, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, r1)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40c0}, 0x24048995)
fsopen$auto(&(0x7f0000000340)='\x00\x1fX\xe7\x0f:\x99\xaa7\xa8e\r\xd0~$\v}\xf9:\x008j\x97s\xeeV\xcf\xe0\x9dX\xc7\x95\xf8(0\xe6M\xac+Ksj\x97d\b\x00\x00\x00\xca\xd1\xf5\xceB8\xd7\x1e\x89\xbb3\xf0\xb5\b\x9a\xa9=\xd7\xca\xd1dN\xd5*\x95\x03 p\x1a\xec\xad{w\xa4\x9brP\xdf}\xde\x90\x18z\x8b\xa3\xbbs\x9a\xd8G\xeaa\x94\x00\x81E:\x1d\x93B\xdf\x8f\x8c\xd7\x05\xf8\x7f\x8d\x0f/L0\xea\xb9$\x96\x90k\x97K\x90=\xff2\x19\xac\x8e\x80`\xe2\xf2\xb1\xa9\xff\x87\x97lZB\x040\x12\x80j\xe7\xd2\x90\x16C[E\r\x16\xe8\xa6\x17\xf3\xef\xe2\xbc\xd9Uxr\xe2%\x06czn>\x83E\x1a\xdb\x0eY\xbez\x8d\x8b\"\a\xe2s\x87\xde\x92\x91\x00\x00\x9ck\x0e9-B\xb3\xe9\x03\x0f\xaf\'{\xef\xe4\x17\x1c\x8b\xee\x9f\xd3\xf2>g\xfa\xa0\xf6\x10\b\x81\xf2\xc6\x95b\x06\xb3,#P}X\x7f\xca\x96\x05\xf3=\xa9\xf9\x9d)\x02\x9d\xd4\x97\xfa_\xcc\xcf/\x92\xd9\xa5P\x00'/281, 0xfffffff7)
unshare$auto(0x8001)
mmap$auto(0x0, 0x0, 0xb42b, 0x9b72, 0x2, 0x8000)
madvise$auto(0xfffffffffffffffc, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
removexattr$auto(0x0, 0x0)
mmap$auto(0x4, 0x2020009, 0x8, 0xeb1, 0xffffffffffeffffa, 0x7ffd)
getrandom$auto(0x0, 0x6000000, 0x3)
socketpair$auto(0x1d, 0x2, 0x2, 0x0)
open(0x0, 0x252802, 0x100)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)

20m50.619390288s ago: executing program 7 (id=224):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xf5ff)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0x400081, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804)
lstat$auto(0x0, &(0x7f0000000180)={0x12, 0xabad, 0x3, 0x2, 0x0, 0x0, 0x0, 0x1000000006, 0x8, 0x5, 0x1, 0xffefffff, 0x7, 0x7, 0x9, 0x2, 0x40000104})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
r1 = socketpair$auto(0x1e, 0x5, 0x8, 0x0)
r2 = socket(0xa, 0x801, 0x84)
getsockopt$auto(0xffffffffffffffff, 0x2, 0x75, 0x0, &(0x7f0000000000)=0x9000c)
r3 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
madvise$auto(0x0, 0x54, 0x6)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, 0x0)
mmap$auto(0x0, 0x9, 0xfffffffffffffffb, 0x8000000008012, 0x1000000004, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
unshare$auto(0x800007)
sendmsg$auto_CGROUPSTATS_CMD_GET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x24040801)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x45, 0x4909b6f8, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x2100, 0x200, 0x0, 0x84, [0x0, 0x0, 0x0, 0x50100000000000, 0x0, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffbffd, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x2000000000000000, 0x0, 0x0, 0x400000000005b8, 0xc, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffa, 0x8, 0x4000000000, 0x7]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)

20m50.15819955s ago: executing program 7 (id=226):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x801, 0x84)
symlinkat$auto(0x0, 0xffffffffffffff9c, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2c, 0x3, 0x3a)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'geneve0\x00', <r1=>0x0})
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="7d472dbd7000ecdbdf250900000008000300", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x4000044)
r2 = socket(0xa, 0x5, 0x84)
sendto$auto(r2, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
setrlimit$auto(0x9, 0x0)
io_setup$auto(0x401, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001100)='/proc/sys/net/ipv6/conf/default/mtu\x00', 0x0, 0x0)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
memfd_secret$auto(0x0)
ftruncate$auto(0x3, 0x700)
read$auto(0x3, 0x0, 0x80)
r3 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim3/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r3, 0x0, 0xc70)

20m49.539319024s ago: executing program 7 (id=228):
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_regulator_summary_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
read$auto_regulator_summary_fops_(r0, &(0x7f00000000c0)=""/86, 0x56)
r1 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd=0x3ff}, 0xa3)
close_range$auto(0x2, 0x8000, 0x0)
setsockopt$auto(0x3, 0x0, 0x20, 0x0, 0x9)
socket(0x1d, 0x2, 0x6)
mmap$auto(0xa2, 0x6, 0x2, 0x10001000000eb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x3, 0x73)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram5/queue/logical_block_size\x00', 0x101400, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x14, r5, 0x1f5, 0x70bd28, 0x25dfdbfb, {0xa, 0x0, 0xa00}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f00000000c0)=0x8001)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000180)=""/223, 0xdf)

20m48.999523379s ago: executing program 37 (id=228):
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_regulator_summary_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
read$auto_regulator_summary_fops_(r0, &(0x7f00000000c0)=""/86, 0x56)
r1 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd=0x3ff}, 0xa3)
close_range$auto(0x2, 0x8000, 0x0)
setsockopt$auto(0x3, 0x0, 0x20, 0x0, 0x9)
socket(0x1d, 0x2, 0x6)
mmap$auto(0xa2, 0x6, 0x2, 0x10001000000eb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x3, 0x73)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram5/queue/logical_block_size\x00', 0x101400, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x14, r5, 0x1f5, 0x70bd28, 0x25dfdbfb, {0xa, 0x0, 0xa00}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f00000000c0)=0x8001)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000180)=""/223, 0xdf)

20m38.12766507s ago: executing program 8 (id=259):
r0 = openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/mounts\x00', 0xe0400, 0x0)
pread64$auto(r0, &(0x7f0000000080)='\')!\'\x00', 0x2, 0x5)
mmap$auto(0x6, 0x0, 0xe1, 0xb7, r0, 0x8000)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(r1, 0x40104d00, 0x2)

20m37.658602615s ago: executing program 8 (id=260):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000000b14af"], 0x14}, 0x1, 0x0, 0x0, 0x48f49753371a5812}, 0x404c950)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x18, 0x4, 0x1)
getpeername$auto(0x3, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r1 = socketpair$auto(0x1e, 0x4, 0x5, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xf5ff)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r2 = socketpair$auto(0x1e, 0x5, 0x8, 0x0)
r3 = socket(0xa, 0x801, 0x84)
getsockopt$auto(0xffffffffffffffff, 0x2, 0x75, 0x0, &(0x7f0000000000)=0x9000c)
r4 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
madvise$auto(0x0, 0x54, 0x6)
ioctl$auto_DMA_HEAP_IOCTL_ALLOC(r4, 0xc0184800, 0x0)
mmap$auto(0x3ff, 0xb, 0xfffffffffffffffb, 0x13, r1, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
unshare$auto(0x40000080)
sendmsg$auto_CGROUPSTATS_CMD_GET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x24040801)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x43, 0x40, 0x1ffdf, 0x7, 0x200003, 0x2, 0xa121, 0x3, 0x6, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x0, 0x7, 0x0, 0x200, 0x0, 0x84, [0x0, 0x0, 0x2, 0x50100000000000, 0x0, 0x2000, 0x0, 0xa, 0x70624ce7, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffbffd, 0xfffffffffffffffd, 0x1, 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x2000000000000000, 0x0, 0x80000, 0x400000000005b8, 0xc, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffffffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffa, 0x8, 0x5, 0x7]}, 0x1fe, 0xd)

20m35.763287302s ago: executing program 8 (id=263):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r1 = socket(0x29, 0xa, 0x8)
rseq$auto(0x0, 0x7ffe, 0x0, 0x6)
readv$auto(0x4, 0x0, 0x8)
r2 = socket$nl_generic(0x11, 0x3, 0x10)
bind$auto(r2, &(0x7f0000000200)=@generic={0x11, "00030f00"}, 0x80)
write$auto(0x3, 0x0, 0xfdef)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x3, 0x800, 0x7, 0x80000010, 0xd12, 0xfffffffffffffe08)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlockall$auto(0x7)
mmap$auto(0x0, 0x40009, 0xdc, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
ioctl$auto_posix_clock_file_operations_posix_clock(r0, 0xb, &(0x7f0000000000)="53a40d36f2c1b39974d3fc6ac44da0c54447668c070daf0aa2aed438d44e1453eafefb4adb00c2be30b4c50ba027282ce7beb10ee3800542676629920154ce76e0d6155aaf")
ioperm$auto(0xfb, 0x5, 0xe)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setreuid$auto(0x4, 0x8)
sched_setaffinity$auto(0x1, 0x1, 0x0)
socket(0x15, 0x5, 0x0)
r3 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000080), 0xffffffffffffffff)
epoll_ctl$auto(r1, 0x6, r0, &(0x7f0000000240)={0x9, 0x2})
sendmsg$auto_IEEE802154_LLSEC_ADD_KEY(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="20002dbd7000ffdbdf25270000000500280003000000140030002343c6cc737e12488e9c864129f4ccf2060006000800000006001000fdff000005002a000e000000"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_0\x00', <r4=>0x0})
sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x50, r3, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, 0x401}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}, @IEEE802154_ATTR_DEST_SHORT_ADDR={0x6, 0xe, 0x2}, @IEEE802154_ATTR_REASON={0x5, 0x12, 0x85}, @IEEE802154_ATTR_SRC_PAN_ID={0x6, 0xd, 0xfff8}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x7d85}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x4}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x8010)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)

20m34.585785934s ago: executing program 8 (id=266):
r0 = eventfd2$auto(0x1, 0x200002)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/sched_schedstats\x00', 0x80001, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0)
sysfs$auto(0x2, 0x44, 0x0)
fsopen$auto(0x0, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000001c0), r0)
write$auto(0x3, 0x0, 0x100082)

20m34.338203837s ago: executing program 8 (id=267):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x801, 0x84)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x0, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x5c, r1, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x2}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0xc}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x9}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x9}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket(0x6, 0x5, 0x0)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x204000, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r2, &(0x7f00000002c0)="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", 0x1000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r3, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)={0x18, r4, 0xb81, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_SPLIT_WIPHY_DUMP={0x4, 0x117}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
socket(0x1e, 0x3, 0x401)
connect$auto(0x3, &(0x7f0000000280), 0x55)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x8)
r5 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
recvfrom$auto(r0, &(0x7f0000000080)="2eaedb9c2c637999727a48fec7a5caa22fcb0449e0aae4df7907b6dccb06cffe", 0x3, 0x5, &(0x7f00000000c0)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, &(0x7f0000000140))
ioctl$auto_dvb_demux_fops_dmxdev(r5, 0x40026f33, 0x0)
r6 = memfd_create$auto(&(0x7f0000000000)='*\x00', 0xa4)
symlinkat$auto(0x0, r6, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2c, 0x3, 0x3a)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001100)='/proc/sys/net/ipv6/conf/default/mtu\x00', 0x0, 0x0)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
memfd_secret$auto(0x0)

20m33.311283834s ago: executing program 8 (id=270):
keyctl$auto(0x7, 0xfffffffffffffffb, 0x0, 0x8, 0x74)
r0 = openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim0/ports/2/udp_ports_table0\x00', 0x2c2481, 0x0)
fadvise64$auto(r0, 0x7f, 0x8000000000000001, 0x2)
bind$auto(r0, &(0x7f00000001c0)=@hci={0x1f, 0xffffffffffffffff, 0x1}, 0x280)
r1 = clone$auto(0x3, 0x10, &(0x7f0000000040)=0x3, &(0x7f0000000080)=0x5, 0x6)
rt_sigtimedwait$auto(&(0x7f0000000000)={0x7}, &(0x7f00000000c0)={@siginfo_0_0={0x80000000, 0x5e5, 0x101, @_timer={r1, 0x7, @sival_int=0xa43, 0xfffffff5}}}, &(0x7f0000000140)={0x0, 0x5}, 0x8)

20m32.880155849s ago: executing program 38 (id=270):
keyctl$auto(0x7, 0xfffffffffffffffb, 0x0, 0x8, 0x74)
r0 = openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim0/ports/2/udp_ports_table0\x00', 0x2c2481, 0x0)
fadvise64$auto(r0, 0x7f, 0x8000000000000001, 0x2)
bind$auto(r0, &(0x7f00000001c0)=@hci={0x1f, 0xffffffffffffffff, 0x1}, 0x280)
r1 = clone$auto(0x3, 0x10, &(0x7f0000000040)=0x3, &(0x7f0000000080)=0x5, 0x6)
rt_sigtimedwait$auto(&(0x7f0000000000)={0x7}, &(0x7f00000000c0)={@siginfo_0_0={0x80000000, 0x5e5, 0x101, @_timer={r1, 0x7, @sival_int=0xa43, 0xfffffff5}}}, &(0x7f0000000140)={0x0, 0x5}, 0x8)

20m4.168826669s ago: executing program 3 (id=364):
mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/misc/hw_random/rng_current\x00', 0x100, 0x0)
openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000280)='/dev/etherd/discover\x00', 0x541, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket(0x10, 0x2, 0xf)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
setresuid$auto(0xd, 0x0, 0x221)
socket(0x2, 0x801, 0x84)
socketpair$auto(0xfffffffe, 0x3, 0x8, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
write$auto(0x3, 0x0, 0xfdef)

20m2.194576549s ago: executing program 3 (id=370):
sendmsg$auto_MAC802154_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0xe2, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[], 0x174c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
setsockopt$auto(0x3, 0x6, 0x19, 0x0, 0xfb3)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto_def_blk_fops_fs(r1, 0x401070c9, 0x0)
io_uring_register$auto(r1, 0x7ff, &(0x7f0000000300)="e46061034b2cb3eeb3f6b0562587f2e3a93e7cb85050b45ca957773d3629e2deae3efddcba311f25ebae7e4c265811eebda4ff4955c85ba0e49958c6398f2f9fed75c1becdd262f09951a7274d675f536de216a5cfe861244f57c8075c7154c0ad6800d171209a666f3b77", 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x7)
r2 = socket(0x2, 0x80000, 0xffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3}, 0x6a)
r4 = openat$auto_fake_panic_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x418080, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000042c0)='/sys/bus/usb-serial/drivers/symbol/new_id\x00', 0x80, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000004300)=""/129, 0x81)
write$auto_fake_panic_fops_(r4, &(0x7f00000001c0)="6df106ea3bb19aa5349d16ecc9fa9a127812a6d1a7faea632b401c6896ebf352026bdf8c68c46e407470ee6d62e6b2bab619531be06a260e3ee81e6cbe0052a6ac8f09bf70e771141aa3c259b66aa37df4661f05cf2692bebd34c9cdb48a03c78db0c73322487138644a591b68a2ce4ce71014fddf856b1d84dfe2bc075b14e152c1576179fa812fff651f8c3f7bc8287712065eb7f1ac9e007ceb07a99f01fc236a8f2ae24558d40af1c27c198c2a5f5dcc019ad13f1b3645021023dc2d32b9011a1e7a427623534b6779e5a3dff4b5d5daba08314a1e7be9c3b0328b89412de54a62", 0xe3)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket(0xa, 0x2, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r8=>0x0})
sendmsg$auto_NL80211_CMD_NEW_KEY(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000480)=ANY=[@ANYRES16, @ANYRES16=r0, @ANYBLOB="13042bbd7000fb69dc205200000008000300", @ANYRES32=r8], 0x1c}, 0x1, 0x0, 0x0, 0x4804}, 0x90)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
fcntl$auto(r9, 0x5, 0x3)

20m0.939508141s ago: executing program 3 (id=376):
open(&(0x7f0000000100)='.\x00', 0x2e394d5601b7b01d, 0x408)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8001, 0x0)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000140)='/dev/media11\x00', 0x40, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
socket(0x2, 0x801, 0x100)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x23, 0x80805, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/net/bpq0/mtu\x00', 0x1a1842, 0x0)
socket(0x10, 0x2, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x401, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)

19m59.985680452s ago: executing program 3 (id=380):
openat$auto_proc_auxv_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/auxv\x00', 0x4da0c0, 0x0)
r0 = open(&(0x7f0000000000)='./file1\x00', 0x10677d, 0x37e5c9853cd1b999)
mbind$auto(0x1ff, 0x2, 0x8, &(0x7f0000000100)=0x2000000000000e, 0x0, 0xffffffff)
fanotify_mark$auto(0x400000000000, 0x101, 0x8040, r0, 0x0)
r1 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x48041, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/netdevsim/netdevsim3/ports/3/udp_ports_table0\x00', 0x121643, 0x0)
socket(0xa, 0x5, 0x1)
socket(0xa, 0x801, 0x84)
r3 = getsockopt$auto(r2, 0x10000a4, 0x71, 0x0, &(0x7f0000000280)=0x227)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000140), r1)
sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x7f8578b4bada0535}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[], 0x44}, 0x1, 0x0, 0x0, 0x85}, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/ip6_mr_vif\x00', 0x101000, 0x0)
pread64$auto(r4, 0x0, 0x10, 0x7ffe)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r5 = open(&(0x7f0000000240)='./file0\x00', 0x101800, 0x195)
mlock$auto(0xfbe8, 0x4)
sendmsg$auto_OVS_METER_CMD_SET(r3, 0x0, 0x0)
mlockall$auto(0x7)
ppoll$auto(&(0x7f0000000180)={r5, 0x4, 0x8}, 0x6, 0x0, 0x0, 0x8)
close_range$auto(r5, 0x8, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
ioctl$auto_TIOCVHANGUP2(r6, 0x5437, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x183242, 0x154)

19m58.931604943s ago: executing program 3 (id=384):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x801, 0x84)
symlinkat$auto(0x0, 0xffffffffffffff9c, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2c, 0x3, 0x3a)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0xd8, 0xfd, 0x80000004, &(0x7f0000000000)=0x1c9c)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001100)='/proc/sys/net/ipv6/conf/default/mtu\x00', 0x0, 0x0)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0)
syz_genetlink_get_family_id$auto_netdev(&(0x7f00000000c0), r0)
memfd_secret$auto(0x0)
ftruncate$auto(0x3, 0x700)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0x4010ae42, 0x38)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x222140, 0x0)
ioctl$auto_KVM_CHECK_EXTENSION(r2, 0xae03, 0x0)
read$auto(0x3, 0x0, 0x80)
r3 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim3/ports/0/pp_hold\x00', 0x1250c3, 0x0)
r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rt_cache\x00', 0xa182, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r4, &(0x7f0000000240)=""/4096, 0x1000)
write$auto(r3, 0x0, 0xc70)

19m58.165638446s ago: executing program 3 (id=388):
madvise$auto(0xa9d3, 0x7fffffff, 0x4)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x48041, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000080), 0x0)
r1 = openat$auto_comedi_fops_comedi_fops(0xffffffffffffff9c, &(0x7f0000000000), 0x8042, 0x0)
ioctl$auto_COMEDI_POLL(r1, 0x640f, 0x0)
mmap$auto(0x0, 0x552, 0x7, 0x6b7, r0, 0x9)

19m57.598690614s ago: executing program 39 (id=388):
madvise$auto(0xa9d3, 0x7fffffff, 0x4)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x48041, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000080), 0x0)
r1 = openat$auto_comedi_fops_comedi_fops(0xffffffffffffff9c, &(0x7f0000000000), 0x8042, 0x0)
ioctl$auto_COMEDI_POLL(r1, 0x640f, 0x0)
mmap$auto(0x0, 0x552, 0x7, 0x6b7, r0, 0x9)

19m22.923034869s ago: executing program 9 (id=490):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x401, 0x0)
ioctl$auto(r0, 0x40046208, 0x9)

19m21.841928054s ago: executing program 9 (id=493):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000002c0)={{@inferred, 0x3, 0x9, 0x401, "4941aa35ba9c2b2d43eeb0dc59c8dddae986ce81916caa0d3053000000000000006c00", @raw=0x5}, 0x4, 0x1, 0x5, @inferred, @integer={0xfffffffffffffffd, 0x6, 0x1}, "6cc1888af8cc142ef6df1259b05ba1183bedbd31b642b4051bc7955610c61c329794e5311321c760cb8211c78e6947a99807bcc100"})

19m21.342903721s ago: executing program 9 (id=494):
socket(0x10, 0x2, 0x0)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv6/conf/default/ignore_routes_with_linkdown\x00', 0x42a81, 0x0)
pwrite64$auto(r0, &(0x7f0000000000)='/proc/sys/net/ipv6/coX\t/all/forwarding\x00', 0x3fffff, 0x2)

19m21.038451889s ago: executing program 9 (id=495):
open(&(0x7f0000000100)='.\x00', 0x2e394d5601b7b01d, 0x408)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000140)='/dev/media11\x00', 0x40, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
socket(0x2, 0x801, 0x100)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x23, 0x80805, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/net/bpq0/mtu\x00', 0x1a1842, 0x0)
socket(0x10, 0x2, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x401, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)

19m20.724980692s ago: executing program 9 (id=496):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
acct$auto(&(0x7f0000000200)='/proc/sys/kernel/sched_deadline_period_max_us\x00')
acct$auto(0x0)
socket(0xa, 0x801, 0x84)
symlinkat$auto(0x0, 0xffffffffffffff9c, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2c, 0x3, 0x3a)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001100)='/proc/sys/net/ipv6/conf/default/mtu\x00', 0x0, 0x0)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
memfd_secret$auto(0x0)
ftruncate$auto(0x3, 0x700)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim3/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r0, 0x0, 0xc70)

19m19.515639062s ago: executing program 9 (id=499):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_NEW_KEY(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYRES8=r2, @ANYRES16=r2, @ANYRES32=r0, @ANYRESDEC=r3], 0x20}, 0x1, 0x0, 0x0, 0x4894}, 0x80)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x2000c0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x8000000000000000, 0x15)
r4 = gettid()
kill$auto(r4, 0x11)
socket(0x2, 0x80002, 0x73)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getpeername$auto(0x3, 0x0, 0x0)
capget$auto(&(0x7f0000000000)={0x3, r4}, &(0x7f00000000c0)={0x7, 0x3, 0x14b})
madvise$auto(0x0, 0x1010001, 0x100000003)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mlock2$auto(0x1, 0x8001, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, r6, 0x1, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0xd0)
ioperm$auto(0x800, 0x5, 0xd)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0x21, 0x8000000000000009, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
futex_wait$auto(0x0, 0x0, 0x7f, 0x2, 0x0, 0x1)

19m18.754738489s ago: executing program 40 (id=499):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_NEW_KEY(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYRES8=r2, @ANYRES16=r2, @ANYRES32=r0, @ANYRESDEC=r3], 0x20}, 0x1, 0x0, 0x0, 0x4894}, 0x80)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x2000c0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x8000000000000000, 0x15)
r4 = gettid()
kill$auto(r4, 0x11)
socket(0x2, 0x80002, 0x73)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getpeername$auto(0x3, 0x0, 0x0)
capget$auto(&(0x7f0000000000)={0x3, r4}, &(0x7f00000000c0)={0x7, 0x3, 0x14b})
madvise$auto(0x0, 0x1010001, 0x100000003)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mlock2$auto(0x1, 0x8001, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, r6, 0x1, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0xd0)
ioperm$auto(0x800, 0x5, 0xd)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0x21, 0x8000000000000009, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
futex_wait$auto(0x0, 0x0, 0x7f, 0x2, 0x0, 0x1)

13m52.354152007s ago: executing program 0 (id=1706):
mmap$auto(0x0, 0x2000, 0xdb, 0x9b72, 0x5, 0x7)
mprotect$auto(0x110c238000, 0x1, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x22240, 0x0)
fcntl$auto(0x3, 0x400, 0x1)
fcntl$auto(r0, 0xa, 0x36)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getcwd$auto(0x0, 0xffffffffffffffff)
mprotect$auto(0x0, 0x4, 0x4)
socket(0x1d, 0x2, 0x7)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
io_uring_setup$auto(0x6, 0x0)
r1 = socket(0x2, 0x5, 0x0)
socketpair$auto(0x1e, 0x1, 0x0, 0x0)
sendmsg$auto_SMC_NETLINK_FLUSH_UEID(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x70, 0x0, 0x20, 0x70bd27, 0x25dfdbfb, {}, "5989c109557c010fcfb9af76656f82ee2e70796fa34628fdce7fd18919b85f0fd6dff888b01cd7584a42e14a7b36ca2c7b45de53fd95e4c0c6fa8187ac7c9e057e2101d7b9f67212d1709470c8d34d16e4458cefb053492a39fa"}, 0x70}, 0x1, 0x0, 0x0, 0x4001810}, 0x20004000)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x5411, 0x0)
munmap$auto(0x1000000, 0x2000000c)
setuid$auto(0x800000000008)
madvise$auto(0x0, 0xffffffffffff0001, 0x9)
mlockall$auto(0x3)

13m51.610955512s ago: executing program 0 (id=1713):
mmap$auto(0x0, 0x4, 0x3, 0x40ebe, 0x402, 0x2ffffffffffd)
setresuid$auto(0x2, 0x7, 0x8080)
r0 = socket(0x2b, 0x5, 0x1)
pidfd_open$auto(0x1, 0x0)
fstat$auto(0x3, &(0x7f0000000140)={0xf, 0x1, 0x2, 0x6, 0xffff, 0x7, 0x0, 0x3, 0xf7, 0xb, 0x3, 0x5, 0xd800000000000000, 0xa, 0x3ff, 0x6, 0x81})
r1 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x20d00, 0x0)
lseek$auto(0x3, 0x2, 0x4)
pread64$auto(r1, &(0x7f0000000080)='+!\x00', 0x1, 0x2)
semctl$auto(0xc, 0x2, 0x13, 0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyv1\x00', 0x40080, 0x0)
getpeername$auto(0xffffffffffffffff, &(0x7f00000000c0)=@l2tp={0x2, 0x0, @multicast2}, &(0x7f0000000100)=0x9)
setsockopt$auto(r0, 0x29, 0x0, 0x0, 0x20)

13m51.150526362s ago: executing program 0 (id=1717):
mmap$auto(0xfffffffffffffffc, 0x2020009, 0x7f, 0x200000000eb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0x18, 0x17)
futex_requeue$auto(0x0, 0x80, 0x2, 0x101)
fsmount$auto(0xffffffffffffffff, 0x81, 0xc185)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket(0x1d, 0x2, 0x6)
r1 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2, 0xfd}, 0x6a)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="080027bd7000fbdbdf25290000d7387900"], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
connect$auto(0x3, 0x0, 0x55)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/smps\x00', 0x40601, 0x0)
write$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r3, 0x0, 0x0)
madvise$auto(0x0, 0x600007, 0x19)

13m49.227367883s ago: executing program 0 (id=1730):
mmap$auto(0x0, 0x2000, 0xdb, 0x9b72, 0x5, 0x7)
mprotect$auto(0x110c238000, 0x1, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x22240, 0x0)
fcntl$auto(0x3, 0x400, 0x1)
fcntl$auto(r0, 0xa, 0x36)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getcwd$auto(0x0, 0xffffffffffffffff)
mprotect$auto(0x0, 0x4, 0x4)
getsockopt$auto(0xffffffffffffffff, 0x6b, 0x3, 0xfffffffffffffffe, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
io_uring_setup$auto(0x6, 0x0)
r1 = socket(0x2, 0x5, 0x0)
socketpair$auto(0x1e, 0x1, 0x0, 0x0)
sendmsg$auto_SMC_NETLINK_FLUSH_UEID(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x70, 0x0, 0x20, 0x70bd27, 0x25dfdbfb, {}, "5989c109557c010fcfb9af76656f82ee2e70796fa34628fdce7fd18919b85f0fd6dff888b01cd7584a42e14a7b36ca2c7b45de53fd95e4c0c6fa8187ac7c9e057e2101d7b9f67212d1709470c8d34d16e4458cefb053492a39fa"}, 0x70}, 0x1, 0x0, 0x0, 0x4001810}, 0x20004000)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x5411, 0x0)
munmap$auto(0x1000000, 0x2000000c)
setuid$auto(0x800000000008)
madvise$auto(0x0, 0xffffffffffff0001, 0x9)
mlockall$auto(0x3)

13m48.633092816s ago: executing program 0 (id=1734):
ioctl$auto_IOCTL_VMCI_SET_NOTIFY(0xffffffffffffffff, 0x7cb, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x801, 0x84)
symlinkat$auto(0x0, 0xffffffffffffff9c, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2c, 0x3, 0x3a)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_ZERO(r0, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f0000000b40)={0x14, r1, 0x1, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0xc088}, 0x4000004)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001100)='/proc/sys/net/ipv6/conf/default/mtu\x00', 0x0, 0x0)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
memfd_secret$auto(0x0)
ftruncate$auto(0x3, 0x700)
read$auto(0x3, 0x0, 0x80)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000840)={0x20, r3, 0x1, 0x70bd2a, 0x25dfdbfa, {}, [@HWSIM_ATTR_RX_RATE={0x8, 0x5, 0x4}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x40090}, 0x40014)
r4 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim3/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r4, 0x0, 0xc70)
socketpair$auto(0x1, 0xffffffff, 0x975, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x4020009, 0xe1, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, 0x0, 0x55)

13m45.423162929s ago: executing program 0 (id=1748):
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x3, &(0x7f0000000140), 0x55) (async)
connect$auto(0x3, &(0x7f0000000140), 0x55)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x0, 0x0)
ioctl$auto(r0, 0x900064b6, r0)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7fffffffffffffff, 0x4) (async)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7fffffffffffffff, 0x4)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
get_mempolicy$auto(0x0, 0x0, 0x400, 0x0, 0x1)
lsm_get_self_attr$auto(0x64, &(0x7f0000001400)={0x10, 0x3, 0x7fffffffffffffff}, &(0x7f0000002440)=0x1ff, 0x0) (async)
lsm_get_self_attr$auto(0x64, &(0x7f0000001400)={0x10, 0x3, 0x7fffffffffffffff}, &(0x7f0000002440)=0x1ff, 0x0)
socket(0xa, 0x2, 0x88)
r1 = open(0x0, 0xeee00, 0x31)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lseek$auto(r1, 0xc, 0x4)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
shmctl$auto(0x2, 0x2, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8) (async)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8)
r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x4008af22, 0x38)
stat$auto(&(0x7f00000000c0)='./file0\x00', 0x0) (async)
stat$auto(&(0x7f00000000c0)='./file0\x00', 0x0)
statx$auto(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x680, 0x5, 0x0) (async)
statx$auto(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x680, 0x5, 0x0)

13m45.08382858s ago: executing program 41 (id=1748):
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x3, &(0x7f0000000140), 0x55) (async)
connect$auto(0x3, &(0x7f0000000140), 0x55)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x0, 0x0)
ioctl$auto(r0, 0x900064b6, r0)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7fffffffffffffff, 0x4) (async)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7fffffffffffffff, 0x4)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
get_mempolicy$auto(0x0, 0x0, 0x400, 0x0, 0x1)
lsm_get_self_attr$auto(0x64, &(0x7f0000001400)={0x10, 0x3, 0x7fffffffffffffff}, &(0x7f0000002440)=0x1ff, 0x0) (async)
lsm_get_self_attr$auto(0x64, &(0x7f0000001400)={0x10, 0x3, 0x7fffffffffffffff}, &(0x7f0000002440)=0x1ff, 0x0)
socket(0xa, 0x2, 0x88)
r1 = open(0x0, 0xeee00, 0x31)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lseek$auto(r1, 0xc, 0x4)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
shmctl$auto(0x2, 0x2, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8) (async)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8)
r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x4008af22, 0x38)
stat$auto(&(0x7f00000000c0)='./file0\x00', 0x0) (async)
stat$auto(&(0x7f00000000c0)='./file0\x00', 0x0)
statx$auto(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x680, 0x5, 0x0) (async)
statx$auto(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x680, 0x5, 0x0)

6.105665061s ago: executing program 2 (id=4510):
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
r0 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31)
utime$auto(0x0, 0x0)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
r1 = prctl$auto(0x10000000024, 0x2, 0x2008, 0x4000000c, 0x80001)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setns(0xffffffffffffffff, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), r0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r1, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000480)={&(0x7f00000002c0)={0x1a0, r3, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [@HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}, @HWSIM_ATTR_ADDR_TRANSMITTER={0xfc, 0x2, "30f439897e6073e42e51f49150ab2fc32074375b08a34540f11a36a61d71b1102a3ad2d7ba72edadcc535789d62b74777bad884f2241d56a5990b83625f84a093637d3627cc56d0d4f663ab0591aab28f6152db152b96bca8a94f0b06bbe3606d9d0f32538ca090acd4a5611f9da9f6208c3e799f5f72179a8b14f6f4c4e7e9260bacffb5b7f8e9d9b62dcc2923dd3fd9cd95944704bdd6eb6bc473d714158236e28173ea9b2ab507e99c4c2a241e17600036acbd282b811df93939a8c1924703670ad4d829b45290a41f0b6d2ff7849100ee83cce492e08bd4b6ccb3e2c0ac30fb151990a18a93142a98a3e0e9add03f803d69820e56090"}, @HWSIM_ATTR_MLO_SUPPORT={0x4}, @HWSIM_ATTR_MLO_SUPPORT={0x4}, @HWSIM_ATTR_CIPHER_SUPPORT={0x7a, 0x18, "4a7c5b8e982f6daa1f46c5d72cc430307bf7477d3bcfd9ed29f54e6914ce8b795942495ac17f0f3e9270086ca20564a7897d3beffe4d8731c2fbf2e31f1cc9fbfd9b1871c4ef208f91cb9fa72369f749cf658a3f61e66a8d74a3445fa53f154020c3fb058e0f8c55aa6ba21d5afbc43c77a13aab04e7"}, @HWSIM_ATTR_USE_CHANCTX={0x4}]}, 0x1a0}, 0x1, 0x0, 0x0, 0x10}, 0x20048000)
r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000034c0), 0xffffffffffffffff)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, 0x0, 0x800, 0x70bd2d, 0x25dfdbfe, {}, [@HSR_A_IF2_AGE={0x8, 0x4, 0xab7}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @HSR_A_NODE_ADDR={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
sendmsg$auto_NFSD_CMD_LISTENER_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
unshare$auto(0x40000080)
r5 = clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/can/reset_stats\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r6, &(0x7f0000000140)=""/136, 0x88)
socket(0x2, 0x5, 0x0)
fcntl$auto(0x0, 0x407, r5)

5.211668175s ago: executing program 2 (id=4515):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000040)={0x0, 0x0, 0x38, 0xffffff01, 0x9, 0x9, 0x80000009, 0x7, 0x8, 0x5, 0x5, 0x9, 0x2, 0x8, 0x5, 0xf, 0xffffffffffffffff, 0x9, 0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x800, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000dddbdf25020001"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket(0x2000000000000021, 0x2, 0x10000000000002)

4.796654135s ago: executing program 4 (id=4516):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sysfs$auto(0x2, 0x10000000000048, 0x0)
r0 = fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto(0x3, 0x4040ae77, r0)

4.752119259s ago: executing program 2 (id=4517):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
r1 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r1, 0x0, 0x483, 0x0, 0x0)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xfffff004, 0x2)
r2 = socket(0xa, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = clone$auto(0xff, 0x0, 0x0, 0x0, 0x4)
unshare$auto(0x40000080)
mmap$auto(0x1, 0x7ff, 0x100000000, 0x11, 0xfffffffffffffff1, 0x8000)
ioctl$auto(r3, 0xda, r3)
mmap$auto(0x0, 0x400008, 0xdc, 0x97, r2, 0x8000)
ptrace$auto(0x410, r4, 0x1, 0x868f)
write$auto_vcs_fops_vc_screen(0xffffffffffffffff, 0x0, 0x0)
socket(0xa, 0x4, 0x100400)
setsockopt$auto(0x3, 0x0, 0x81, 0x0, 0x338)
mmap$auto(0x0, 0x428, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffeffe, 0x5)
io_uring_setup$auto(0x59, 0x0)
open(0x0, 0x64842, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_register$auto(0x2, 0x14, 0x0, 0x3)
io_uring_register$auto(0x2, 0x15, 0x0, 0x6)
r5 = socket(0x18, 0x5, 0x1)
connect$auto(r5, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)

4.397428894s ago: executing program 1 (id=4519):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/fs/suid_dumpable\x00', 0x1a9442, 0x0)
write$auto(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, r1)
r2 = open(0x0, 0x4242, 0xe1d2b27bdc14aa2c)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xf, 0x5, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00\'', @ANYRESDEC], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
openat$auto_fops_u8_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/nfcsim/nfc1/dropframe\x00', 0x881, 0x0)
r3 = socket(0x28, 0x5, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)
fcntl$auto(r2, 0x400, 0x1)

4.352172868s ago: executing program 5 (id=4520):
r0 = openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/drop_caches\x00', 0x141241, 0x0)
pwrite64$auto(r2, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x20000000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xa)
read$auto(0x3, 0x0, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x1, 0x0)
write$auto(r0, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace_marker\x00', 0x3)

4.148822541s ago: executing program 4 (id=4521):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
ustat$auto(0x801, 0x0)
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x801e, 0x401, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = open(0x0, 0x22240, 0x155)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
mq_notify$auto(0x4, &(0x7f0000000040)={@sival_ptr=0x0, @inferred, 0x1, @_tid})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/mtd-0/min_bytes\x00', 0xc0002, 0x0)
read$auto(0x3, 0x0, 0x80)
write$auto(0x3, 0x0, 0xfdef)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, 0x0, 0x80)
sendmmsg$auto(r1, &(0x7f00000000c0)={{0x0, 0x83f, 0x0, 0xa7, &(0x7f0000000140)="346afcc2ec1717dd5f9e30307c80920a3f58e736e759105f87a4225f71d0d03d00"/58, 0x8000, 0x8000}, 0x8}, 0x7, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x1, 0x3}, 0xed7138c}, 0xb, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x4, 0x200008, 0x8)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
get_robust_list$auto(0x0, 0x0, 0x0)
r2 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x80202, 0x0)
write$auto(r2, 0x0, 0x1)
statmount$auto(0x0, &(0x7f0000000380)={0x8, 0x1, 0x9, 0x3, 0xb, 0x5, 0x1ffde, 0x3, 0x6, 0x7, 0x9, 0x5, 0x3, 0x4, 0xb0, 0x6, 0x2, 0x3, 0x5, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0x0, 0x4, 0x6, 0x0, 0x0, 0x0, 0x0, 0x5, 0xff, 0x5, 0x200000200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcb2, 0xfffffffffffffffc, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0xa37, 0xfffffffffffffffa, 0x0, 0x2], "86886471b1cafc4ce39cd02461286700387bcdfd9b250f2854c428b25fa241dc11ea05faa14f4321d7fc00d9afa3b28cf60ecaafb014352d3d3a9c3ffb2c10fad4fc774ddc414f1ec799188c700688b75d98f38fe31d867caf145c608561f4aa7197a6e7613941b2b022a448db504f6334ea222a65b7ffda8a4f69498cbe9240354c6df8cb7af242d1dc591fdb157d587d29bb823c483d28fb50b1675f953cabf97b8b8407f90947d3e86826b27fa035bdbf"}, 0x1fe, 0x81)

4.001533728s ago: executing program 5 (id=4522):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r2=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000080)={0x40, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_RX_MAX_FRAMES_LOW={0x8, 0xf, 0x5}, @ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_COALESCE_TX_USECS_IRQ={0x8, 0x8, 0x9}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8, 0xa, 0xb}, @ETHTOOL_A_COALESCE_RX_USECS={0x8, 0x2, 0x3}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x100000000, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYRES8=r3, @ANYBLOB="1e00df45"], 0x1ac}}, 0x24040011)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1100000012"], 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0x400c000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r3, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0)
read$auto(0x3, 0x0, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mlockall$auto(0x80000001)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r4, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)={0x28, 0x0, 0x1, 0x74bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_COALESCE_TX_AGGR_MAX_FRAMES={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x48c1}, 0x0)

3.993018853s ago: executing program 1 (id=4523):
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
r0 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31)
utime$auto(0x0, 0x0)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
r1 = prctl$auto(0x10000000024, 0x2, 0x2008, 0x4000000c, 0x80001)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setns(0xffffffffffffffff, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), r0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r1, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000480)={&(0x7f00000002c0)={0x1a0, r3, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [@HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}, @HWSIM_ATTR_ADDR_TRANSMITTER={0xfc, 0x2, "30f439897e6073e42e51f49150ab2fc32074375b08a34540f11a36a61d71b1102a3ad2d7ba72edadcc535789d62b74777bad884f2241d56a5990b83625f84a093637d3627cc56d0d4f663ab0591aab28f6152db152b96bca8a94f0b06bbe3606d9d0f32538ca090acd4a5611f9da9f6208c3e799f5f72179a8b14f6f4c4e7e9260bacffb5b7f8e9d9b62dcc2923dd3fd9cd95944704bdd6eb6bc473d714158236e28173ea9b2ab507e99c4c2a241e17600036acbd282b811df93939a8c1924703670ad4d829b45290a41f0b6d2ff7849100ee83cce492e08bd4b6ccb3e2c0ac30fb151990a18a93142a98a3e0e9add03f803d69820e56090"}, @HWSIM_ATTR_MLO_SUPPORT={0x4}, @HWSIM_ATTR_MLO_SUPPORT={0x4}, @HWSIM_ATTR_CIPHER_SUPPORT={0x7a, 0x18, "4a7c5b8e982f6daa1f46c5d72cc430307bf7477d3bcfd9ed29f54e6914ce8b795942495ac17f0f3e9270086ca20564a7897d3beffe4d8731c2fbf2e31f1cc9fbfd9b1871c4ef208f91cb9fa72369f749cf658a3f61e66a8d74a3445fa53f154020c3fb058e0f8c55aa6ba21d5afbc43c77a13aab04e7"}, @HWSIM_ATTR_USE_CHANCTX={0x4}]}, 0x1a0}, 0x1, 0x0, 0x0, 0x10}, 0x20048000)
r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000034c0), 0xffffffffffffffff)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, 0x0, 0x800, 0x70bd2d, 0x25dfdbfe, {}, [@HSR_A_IF2_AGE={0x8, 0x4, 0xab7}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @HSR_A_NODE_ADDR={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
sendmsg$auto_NFSD_CMD_LISTENER_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
unshare$auto(0x40000080)
r5 = clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/can/reset_stats\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r6, &(0x7f0000000140)=""/136, 0x88)
socket(0x2, 0x5, 0x0)
fcntl$auto(0x0, 0x407, r5)

3.520717337s ago: executing program 2 (id=4524):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
r0 = signalfd4$auto(0xffffffff, &(0x7f0000000080)={0x8000}, 0x8, 0x0)
readv$auto(r0, &(0x7f0000000a80)={0x0, 0xd13}, 0x1)
unshare$auto(0x40000080)
socket(0x29, 0x4, 0x4)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
munmap$auto(0x1ffff000, 0x2000000c)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x23, 0x2, 0x0)
io_uring_register$auto(0x2, 0x17, &(0x7f0000000000), 0x1)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x1)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
msgget$auto(0xa, 0x77d9)
msgrcv$auto(0x0, 0x0, 0xffc, 0x1, 0xb1)
msgctl$auto(0x0, 0x0, 0x0)

3.431524596s ago: executing program 4 (id=4525):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000040)={0x0, 0x0, 0x38, 0xffffff01, 0x9, 0x9, 0x80000009, 0x7, 0x8, 0x5, 0x5, 0x9, 0x2, 0x8, 0x5, 0xf, 0xffffffffffffffff, 0x9, 0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x800, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000dddbdf25020001"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket(0x2000000000000021, 0x2, 0x10000000000002)

2.874775925s ago: executing program 5 (id=4526):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/loop5/queue/discard_max_hw_bytes\x00', 0x40000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
pipe$auto(&(0x7f0000001480)) (async)
pipe$auto(&(0x7f0000001480))
r1 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) (async)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
socket(0x1e, 0x5, 0x0)
socket(0x10, 0x2, 0x0) (async)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000080)='802_15_4_MAC\x00', 0xe61c2, 0x84) (async)
open(&(0x7f0000000080)='802_15_4_MAC\x00', 0xe61c2, 0x84)
r3 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r2, @ANYRES32], 0x18}}, 0x80)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10048884)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001600)=""/160, 0xa0)

2.874095157s ago: executing program 4 (id=4527):
bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x101)
r0 = openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker\x00', 0x801, 0x0)
write$auto_tracing_mark_fops_trace(r0, 0x0, 0x1f00)

2.682102736s ago: executing program 5 (id=4528):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sysfs$auto(0x2, 0x10000000000048, 0x0)
r0 = fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto(0x3, 0x4030ae7b, r0)

2.580625948s ago: executing program 1 (id=4529):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC0\x00', 0x220a00, 0x0)
memfd_secret$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptywa\x00', 0x400, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
ioctl$auto_TCFLSH2(r0, 0x80047437, 0x0)

2.476575198s ago: executing program 4 (id=4530):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sysfs$auto(0x2, 0x10000000000048, 0x0)
r0 = fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto(0x3, 0x4040ae77, r0)

2.428190859s ago: executing program 5 (id=4531):
r0 = openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/drop_caches\x00', 0x141241, 0x0)
pwrite64$auto(r2, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x20000000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xa)
read$auto(0x3, 0x0, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r0, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace_marker\x00', 0x3)

2.215734695s ago: executing program 4 (id=4532):
symlink$auto(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00')
r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0)
read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000d40)=""/16, 0x10)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x3a)
socket(0x2b, 0x1, 0x1)
sysfs$auto(0x2, 0x4, 0x0)
getsockopt$auto(0x6, 0x1e010000, 0x50, 0xfffffffffffffffe, 0x0)
madvise$auto(0x0, 0xfffffffffdff0003, 0x19)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r1 = gettid()
process_vm_writev$auto(r1, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, r0, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r2 = openat$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/ports/3/udp_ports_reset\x00', 0x2, 0x0)
write$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(r2, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xffb8, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r3 = openat$auto_clk_summary_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/clk/clk_orphan_summary\x00', 0x200, 0x0)
pread64$auto(r3, 0x0, 0x9a, 0x80000001)

2.210951044s ago: executing program 5 (id=4533):
symlink$auto(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00')
r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0)
read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000d40)=""/16, 0x10)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x3a)
socket(0x2b, 0x1, 0x1)
sysfs$auto(0x2, 0x4, 0x0)
getsockopt$auto(0x6, 0x0, 0x30, 0xfffffffffffffffe, 0x0)
madvise$auto(0x0, 0xfffffffffdff0003, 0x19)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r1 = gettid()
process_vm_writev$auto(r1, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, r0, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r2 = openat$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/ports/3/udp_ports_reset\x00', 0x2, 0x0)
write$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(r2, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xffb8, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r3 = openat$auto_clk_summary_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/clk/clk_orphan_summary\x00', 0x200, 0x0)
pread64$auto(r3, 0x0, 0x9a, 0x80000001)

2.003537025s ago: executing program 1 (id=4534):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
listmount$auto(0x0, 0xffffffffffffffff, 0x9, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC0\x00', 0x220a00, 0x0)
memfd_secret$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptywa\x00', 0x400, 0x0)
socket(0xa, 0x1, 0x0)
socketpair$auto(0x1e, 0x1, 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount$auto(0x0, 0x0, 0x0, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0xfffffffe, 0x3, 0x0, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)

1.322210287s ago: executing program 1 (id=4535):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r2=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000080)={0x40, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_RX_MAX_FRAMES_LOW={0x8, 0xf, 0x5}, @ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_COALESCE_TX_USECS_IRQ={0x8, 0x8, 0x9}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8, 0xa, 0xb}, @ETHTOOL_A_COALESCE_RX_USECS={0x8, 0x2, 0x3}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x100000000, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYRES8=r3, @ANYBLOB="1e00df45"], 0x1ac}}, 0x24040011)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1100000012"], 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0x400c000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r3, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0)
read$auto(0x3, 0x0, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r4, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)={0x28, 0x0, 0x1, 0x74bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_COALESCE_TX_AGGR_MAX_FRAMES={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x48c1}, 0x0)

1.098602853s ago: executing program 2 (id=4536):
sendfile$auto(0x6, 0x3, 0x0, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x80011, 0x0)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
listen$auto(0x3, 0x83)
mmap$auto(0x3, 0x20009, 0xfffffffffffffffd, 0x8000800000000ebf, r0, 0x8001)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x10be81, 0x0)
r1 = socketpair$auto(0x4, 0x1, 0x20000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x109142, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="000229bd4ee1fedbdf2541000000"], 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x0)
sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_START(0xffffffffffffffff, &(0x7f0000001480)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001440)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x8800)
r3 = getsid$auto(0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000001180)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001100)={&(0x7f00000014c0)=ANY=[@ANYBLOB="d8000000", @ANYRES16=r2, @ANYBLOB="200026bd7000fcdbdf251f0000000600ed00000000000500e40000000000080014008d4ab522040044000400340008005205415c521c9cfa61562648bce35a7a027713ea6941921d69187ddc2c9f18df7abd82a010d48c30be38b9db52d364784f7481376948847e95cb0c3f2b940646c6a5e07de225ef6aaf3ff21d2c46cdd85e5a18dc123fc5cf14b876478fe4f84adbb2aceeabb1cf58300e3c103222602ed78fdf7298bdafc054afc8c778e1e74c0e3aab72faf80a3e4a9538dd7d294eee1ca20005e1b6b260460d77d435", @ANYRES32=r3, @ANYBLOB="0800c4000400000094003a0135e1b6d830e8a60789982b148810aa1c3f57433f87f161db70fa8a095c363421cced7d6d2a8e48d8e0edc7313b1b038a383d9575da42d23283ba44db3fbfc6b7d65939a436c93ed859490eca5019d099f316780fbe5db121e739cebe99bda85831d5aca726f252b36f47e5059a1effb1de1ef39311b00d4175114ffc42fccefabc6a8eea34f78a093f2fb23e905b0b80"], 0xd8}, 0x1, 0x0, 0x0, 0x62444d6402866c2d}, 0x0)
r4 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000001140), 0xa0100, 0x0)
mmap$auto(0x0, 0x20006, 0x3, 0xe72, 0x401, 0x8000)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto_def_blk_fops_fs(r5, 0x80081280, 0x0)
read$auto_rng_chrdev_ops_core(r4, &(0x7f0000000000)=""/4151, 0x1037)
accept$auto(0x3, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0xa)
lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0)
ioctl$auto(0x1, 0x89a0, 0x8)

70.97666ms ago: executing program 2 (id=4537):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
listen$auto(0x3, 0x83)
select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x0, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xd4, 0x0, 0x4)

0s ago: executing program 1 (id=4538):
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
r0 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31)
utime$auto(0x0, 0x0)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
r1 = prctl$auto(0x10000000024, 0x2, 0x2008, 0x4000000c, 0x80001)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setns(0xffffffffffffffff, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), r0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r1, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000480)={&(0x7f00000002c0)={0x1a0, r3, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [@HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}, @HWSIM_ATTR_ADDR_TRANSMITTER={0xfc, 0x2, "30f439897e6073e42e51f49150ab2fc32074375b08a34540f11a36a61d71b1102a3ad2d7ba72edadcc535789d62b74777bad884f2241d56a5990b83625f84a093637d3627cc56d0d4f663ab0591aab28f6152db152b96bca8a94f0b06bbe3606d9d0f32538ca090acd4a5611f9da9f6208c3e799f5f72179a8b14f6f4c4e7e9260bacffb5b7f8e9d9b62dcc2923dd3fd9cd95944704bdd6eb6bc473d714158236e28173ea9b2ab507e99c4c2a241e17600036acbd282b811df93939a8c1924703670ad4d829b45290a41f0b6d2ff7849100ee83cce492e08bd4b6ccb3e2c0ac30fb151990a18a93142a98a3e0e9add03f803d69820e56090"}, @HWSIM_ATTR_MLO_SUPPORT={0x4}, @HWSIM_ATTR_MLO_SUPPORT={0x4}, @HWSIM_ATTR_CIPHER_SUPPORT={0x7a, 0x18, "4a7c5b8e982f6daa1f46c5d72cc430307bf7477d3bcfd9ed29f54e6914ce8b795942495ac17f0f3e9270086ca20564a7897d3beffe4d8731c2fbf2e31f1cc9fbfd9b1871c4ef208f91cb9fa72369f749cf658a3f61e66a8d74a3445fa53f154020c3fb058e0f8c55aa6ba21d5afbc43c77a13aab04e7"}, @HWSIM_ATTR_USE_CHANCTX={0x4}]}, 0x1a0}, 0x1, 0x0, 0x0, 0x10}, 0x20048000)
r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000034c0), 0xffffffffffffffff)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, 0x0, 0x800, 0x70bd2d, 0x25dfdbfe, {}, [@HSR_A_IF2_AGE={0x8, 0x4, 0xab7}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @HSR_A_NODE_ADDR={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
sendmsg$auto_NFSD_CMD_LISTENER_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
unshare$auto(0x40000080)
r5 = clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/can/reset_stats\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r6, &(0x7f0000000140)=""/136, 0x88)
socket(0x2, 0x5, 0x0)
fcntl$auto(0x0, 0x407, r5)

kernel console output (not intermixed with test programs):

15] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1034.238434][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1035.302699][T23077] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3061'.
[ 1035.339005][T23077] tc_dump_action: action bad kind
[ 1037.868968][ T5851] Bluetooth: hci2: ISO packet for unknown connection handle 0
[ 1038.281914][T23139] net_ratelimit: 10 callbacks suppressed
[ 1038.281940][T23139] openvswitch: netlink: Missing valid actions attribute.
[ 1038.776604][T23148] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3082'.
[ 1038.803449][T23150] mkiss: ax0: crc mode is auto.
[ 1039.923050][ T5851] Bluetooth: hci4: ISO packet for unknown connection handle 0
[ 1040.492834][T23175] Process accounting paused
[ 1040.740090][T23184] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3091'.
[ 1042.510709][T23208] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3097'.
[ 1044.312216][T23232] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1044.657167][T23226] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3101'.
[ 1044.728503][ T5851] Bluetooth: hci1: ISO packet for unknown connection handle 0
[ 1046.829569][T23253] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3111'.
[ 1047.693691][T23273] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1048.565856][T23280] netlink: 146 bytes leftover after parsing attributes in process `syz.5.3117'.
[ 1051.525743][T23303] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1051.700204][   T54] Bluetooth: hci1: command 0x0406 tx timeout
[ 1052.759329][   T29] audit: type=1800 audit(8277292265.060:7): pid=23327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3131" name="features" dev="configfs" ino=73517 res=0 errno=0
[ 1055.243870][T23338] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1055.892622][T23345] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1056.210300][T23371] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1056.706376][ T5851] Bluetooth: hci1: ISO packet for unknown connection handle 0
[ 1059.550566][T23438] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3158'.
[ 1059.848540][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.855818][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1064.149955][ T5851] Bluetooth: hci4: ISO packet for unknown connection handle 0
[ 1066.798593][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1071.025461][T23571] Process accounting resumed
[ 1071.526267][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1072.427916][T23579] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3190'.
[ 1074.103271][T23576] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1074.479755][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1080.105852][ T5851] Bluetooth: hci4: ISO packet for unknown connection handle 0
[ 1080.577740][   T29] audit: type=1800 audit(8277292292.880:8): pid=23681 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3214" name="dbroot" dev="configfs" ino=75274 res=0 errno=0
[ 1081.913774][   T29] audit: type=1800 audit(8277292294.210:9): pid=23709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3216" name="features" dev="configfs" ino=75312 res=0 errno=0
[ 1082.292870][T23705] tipc: can't start tipc receive workqueue
[ 1087.798237][T23743] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1098.028972][T23852] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3259'.
[ 1099.840990][T23860] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1101.616498][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1101.834324][T23861] Process accounting paused
[ 1105.646021][T23948] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1112.319544][T24018] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1112.345662][T24007] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1113.249569][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1114.419801][   T54] Bluetooth: hci0: ISO packet for unknown connection handle 0
[ 1115.516456][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1116.951191][ T5851] Bluetooth: hci4: SCO packet for unknown connection handle 0
[ 1119.640791][T24061] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1120.223528][T24076] netlink: 14 bytes leftover after parsing attributes in process `syz.5.3306'.
[ 1121.283037][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.283276][T24080] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1121.290363][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1121.845810][T24078] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1122.124761][   T54] Bluetooth: hci2: SCO packet for unknown connection handle 0
[ 1122.397518][T24101] FAULT_INJECTION: forcing a failure.
[ 1122.397518][T24101] name failslab, interval 1, probability 0, space 0, times 0
[ 1122.436363][T24101] CPU: 0 UID: 0 PID: 24101 Comm: syz.2.3312 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1122.448271][T24101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1122.459355][T24101] Call Trace:
[ 1122.463015][T24101]  <TASK>
[ 1122.466260][T24101]  dump_stack_lvl+0x16c/0x1f0
[ 1122.471450][T24101]  should_fail_ex+0x497/0x5b0
[ 1122.476631][T24101]  ? fs_reclaim_acquire+0xae/0x150
[ 1122.482285][T24101]  should_failslab+0xc2/0x120
[ 1122.487467][T24101]  __kmalloc_noprof+0xce/0x4f0
[ 1122.492746][T24101]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1122.498965][T24101]  ? tomoyo_realpath_from_path+0xbf/0x710
[ 1122.505292][T24101]  tomoyo_realpath_from_path+0xbf/0x710
[ 1122.511444][T24101]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1122.517702][T24101]  tomoyo_path_number_perm+0x248/0x5b0
[ 1122.523798][T24101]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1122.530052][T24101]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1122.536708][T24101]  ? __pfx_lock_release+0x10/0x10
[ 1122.542261][T24101]  ? trace_lock_acquire+0x14e/0x1f0
[ 1122.548018][T24101]  ? lock_acquire+0x2f/0xb0
[ 1122.552992][T24101]  ? __fget_files+0x40/0x3a0
[ 1122.558077][T24101]  ? __fget_files+0x206/0x3a0
[ 1122.563254][T24101]  security_file_ioctl+0x9b/0x240
[ 1122.568827][T24101]  __x64_sys_ioctl+0xb7/0x200
[ 1122.574033][T24101]  do_syscall_64+0xcd/0x250
[ 1122.579027][T24101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1122.585556][T24101] RIP: 0033:0x7fbfdab85d29
[ 1122.590452][T24101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1122.612066][T24101] RSP: 002b:00007fbfdb942038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1122.621350][T24101] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab85d29
[ 1122.630141][T24101] RDX: 0000000000000009 RSI: 0000000000004b4b RDI: 0000000000000003
[ 1122.638948][T24101] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1122.647749][T24101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1122.656536][T24101] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1122.665343][T24101]  </TASK>
[ 1122.857425][T24101] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1123.441463][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1123.706707][T24112] netlink: 'syz.1.3317': attribute type 4 has an invalid length.
[ 1123.719820][T24112] netlink: 314 bytes leftover after parsing attributes in process `syz.1.3317'.
[ 1123.785283][T24112] IPv6: NLM_F_CREATE should be specified when creating new route

syzkaller
syzkaller login: [ 1127.620073][T24154] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1129.756306][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1131.961727][T24213] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0

syzkaller
syzkaller login: [ 1133.044626][T24226] Process accounting resumed
[ 1133.883781][T24258] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1134.152508][T24263] FAULT_INJECTION: forcing a failure.
[ 1134.152508][T24263] name failslab, interval 1, probability 0, space 0, times 0
[ 1134.317479][T24263] CPU: 1 UID: 0 PID: 24263 Comm: syz.2.3352 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1134.329415][T24263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1134.340530][T24263] Call Trace:
[ 1134.344181][T24263]  <TASK>
[ 1134.347455][T24263]  dump_stack_lvl+0x16c/0x1f0
[ 1134.352678][T24263]  should_fail_ex+0x497/0x5b0
[ 1134.357896][T24263]  ? fs_reclaim_acquire+0xae/0x150
[ 1134.363591][T24263]  should_failslab+0xc2/0x120
[ 1134.368810][T24263]  __kmalloc_noprof+0xce/0x4f0
[ 1134.374099][T24263]  ? d_absolute_path+0x137/0x1b0
[ 1134.379593][T24263]  ? tomoyo_encode2+0x100/0x3e0
[ 1134.384970][T24263]  tomoyo_encode2+0x100/0x3e0
[ 1134.390154][T24263]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1134.396411][T24263]  tomoyo_path_number_perm+0x248/0x5b0
[ 1134.402473][T24263]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1134.408740][T24263]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1134.415409][T24263]  ? __pfx_lock_release+0x10/0x10
[ 1134.420970][T24263]  ? trace_lock_acquire+0x14e/0x1f0
[ 1134.426831][T24263]  ? lock_acquire+0x2f/0xb0
[ 1134.431804][T24263]  ? __fget_files+0x40/0x3a0
[ 1134.436887][T24263]  ? __fget_files+0x206/0x3a0
[ 1134.442079][T24263]  security_file_ioctl+0x9b/0x240
[ 1134.447646][T24263]  __x64_sys_ioctl+0xb7/0x200
[ 1134.452830][T24263]  do_syscall_64+0xcd/0x250
[ 1134.457823][T24263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1134.464350][T24263] RIP: 0033:0x7fbfdab85d29
[ 1134.469243][T24263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1134.490904][T24263] RSP: 002b:00007fbfdb942038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1134.500198][T24263] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab85d29
[ 1134.508999][T24263] RDX: 0000000000000009 RSI: 0000000000004b4b RDI: 0000000000000003
[ 1134.517790][T24263] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1134.526584][T24263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1134.535379][T24263] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1134.544211][T24263]  </TASK>
[ 1134.670616][T24263] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1135.730231][T24276] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3356'.
[ 1135.813195][T24276] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3356'.
[ 1136.085844][T16847] Bluetooth: hci2: ISO packet for unknown connection handle 0
[ 1136.097200][T24265] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1137.437810][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1137.926237][   T54] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1142.405789][T24355] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3376'.
[ 1142.896805][T24342] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1143.291223][T24362] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1143.836260][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1144.029884][T24374] FAULT_INJECTION: forcing a failure.
[ 1144.029884][T24374] name failslab, interval 1, probability 0, space 0, times 0
[ 1144.056258][T24374] CPU: 1 UID: 0 PID: 24374 Comm: syz.2.3384 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1144.068302][T24374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1144.079425][T24374] Call Trace:
[ 1144.083174][T24374]  <TASK>
[ 1144.086442][T24374]  dump_stack_lvl+0x16c/0x1f0
[ 1144.091662][T24374]  should_fail_ex+0x497/0x5b0
[ 1144.096902][T24374]  ? fs_reclaim_acquire+0xae/0x150
[ 1144.102618][T24374]  should_failslab+0xc2/0x120
[ 1144.107842][T24374]  __kmalloc_noprof+0xce/0x4f0
[ 1144.113201][T24374]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1144.119745][T24374]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 1144.127844][T24374]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 1144.135754][T24374]  genl_family_rcv_msg_doit+0xbf/0x2f0
[ 1144.141840][T24374]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1144.148597][T24374]  ? genl_get_cmd+0x195/0x580
[ 1144.153822][T24374]  ? __radix_tree_lookup+0x21f/0x2c0
[ 1144.159720][T24374]  genl_rcv_msg+0x565/0x800
[ 1144.164749][T24374]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1144.170351][T24374]  ? __pfx_mptcp_pm_nl_get_addr_doit+0x10/0x10
[ 1144.177215][T24374]  netlink_rcv_skb+0x165/0x410
[ 1144.182805][T24374]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1144.188415][T24374]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1144.194424][T24374]  ? down_read+0xc9/0x330
[ 1144.199257][T24374]  ? __pfx_down_read+0x10/0x10
[ 1144.206692][T24374]  ? netlink_deliver_tap+0x1ae/0xca0
[ 1144.206759][T24374]  genl_rcv+0x28/0x40
[ 1144.206799][T24374]  netlink_unicast+0x53c/0x7f0
[ 1144.206844][T24374]  ? __pfx_netlink_unicast+0x10/0x10
[ 1144.206885][T24374]  ? __phys_addr_symbol+0x30/0x80
[ 1144.233759][T24374]  ? __check_object_size+0x488/0x710
[ 1144.233825][T24374]  netlink_sendmsg+0x8b8/0xd70
[ 1144.233875][T24374]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1144.233931][T24374]  sock_write_iter+0x4fe/0x5b0
[ 1144.233974][T24374]  ? __pfx_sock_write_iter+0x10/0x10
[ 1144.234031][T24374]  ? bpf_lsm_file_permission+0x9/0x10
[ 1144.234084][T24374]  ? security_file_permission+0x71/0x210
[ 1144.234134][T24374]  vfs_write+0x5ae/0x1150
[ 1144.234176][T24374]  ? __pfx_sock_write_iter+0x10/0x10
[ 1144.234222][T24374]  ? __pfx_vfs_write+0x10/0x10
[ 1144.234266][T24374]  ? __fget_files+0x40/0x3a0
[ 1144.234329][T24374]  ksys_write+0x207/0x250
[ 1144.234370][T24374]  ? __pfx_ksys_write+0x10/0x10
[ 1144.234419][T24374]  do_syscall_64+0xcd/0x250
[ 1144.234462][T24374]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1144.234507][T24374] RIP: 0033:0x7fbfdab85d29
[ 1144.234536][T24374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1144.234569][T24374] RSP: 002b:00007fbfdb942038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1144.234606][T24374] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab85d29
[ 1144.234631][T24374] RDX: 00000000000000fd RSI: 0000000020000000 RDI: 0000000000000003
[ 1144.234663][T24374] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1144.234687][T24374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1144.388290][T24374] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1144.388340][T24374]  </TASK>
[ 1144.568718][T24389] FAULT_INJECTION: forcing a failure.
[ 1144.568718][T24389] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1144.637279][T24389] CPU: 1 UID: 0 PID: 24389 Comm: syz.2.3386 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1144.651441][T24389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1144.651467][T24389] Call Trace:
[ 1144.651478][T24389]  <TASK>
[ 1144.651493][T24389]  dump_stack_lvl+0x16c/0x1f0
[ 1144.651543][T24389]  should_fail_ex+0x497/0x5b0
[ 1144.651603][T24389]  _copy_from_user+0x2e/0xd0
[ 1144.651654][T24389]  memdup_user+0x71/0xd0
[ 1144.651696][T24389]  vt_do_diacrit+0xee/0x9d0
[ 1144.651747][T24389]  ? security_capable+0x7e/0x260
[ 1144.651801][T24389]  vt_ioctl+0x53f/0x2fd0
[ 1144.651844][T24389]  ? __pfx_vt_ioctl+0x10/0x10
[ 1144.651882][T24389]  ? tomoyo_path_number_perm+0x46d/0x5b0
[ 1144.651948][T24389]  ? tomoyo_path_number_perm+0x190/0x5b0
[ 1144.652010][T24389]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1144.652067][T24389]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1144.652110][T24389]  ? do_vfs_ioctl+0x513/0x1950
[ 1144.652143][T24389]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1144.652193][T24389]  ? tty_jobctrl_ioctl+0x152/0xe00
[ 1144.652232][T24389]  ? __pfx_vt_ioctl+0x10/0x10
[ 1144.652271][T24389]  tty_ioctl+0x651/0x1640
[ 1144.652319][T24389]  ? __pfx_tty_ioctl+0x10/0x10
[ 1144.652375][T24389]  ? __pfx_lock_release+0x10/0x10
[ 1144.652408][T24389]  ? trace_lock_acquire+0x14e/0x1f0
[ 1144.652469][T24389]  ? __fget_files+0x206/0x3a0
[ 1144.652516][T24389]  ? __pfx_tty_ioctl+0x10/0x10
[ 1144.652565][T24389]  __x64_sys_ioctl+0x190/0x200
[ 1144.652611][T24389]  do_syscall_64+0xcd/0x250
[ 1144.652662][T24389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1144.652717][T24389] RIP: 0033:0x7fbfdab85d29
[ 1144.652746][T24389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1144.652781][T24389] RSP: 002b:00007fbfdb942038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1144.652817][T24389] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab85d29
[ 1144.652842][T24389] RDX: 0000000000000009 RSI: 0000000000004b4b RDI: 0000000000000003
[ 1144.652867][T24389] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1144.652891][T24389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1144.652913][T24389] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1144.652955][T24389]  </TASK>
[ 1145.368517][T24399] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1146.941390][T24423] netlink: 350 bytes leftover after parsing attributes in process `syz.5.3396'.
[ 1147.189496][T24413] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1147.470063][T24429] netlink: 14 bytes leftover after parsing attributes in process `syz.4.3398'.
[ 1147.502696][T24429] FAULT_INJECTION: forcing a failure.
[ 1147.502696][T24429] name failslab, interval 1, probability 0, space 0, times 0
[ 1147.520602][T24429] CPU: 0 UID: 0 PID: 24429 Comm: syz.4.3398 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1147.532524][T24429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1147.543737][T24429] Call Trace:
[ 1147.547491][T24429]  <TASK>
[ 1147.550750][T24429]  dump_stack_lvl+0x16c/0x1f0
[ 1147.555961][T24429]  should_fail_ex+0x497/0x5b0
[ 1147.561170][T24429]  ? fs_reclaim_acquire+0xae/0x150
[ 1147.566864][T24429]  should_failslab+0xc2/0x120
[ 1147.572079][T24429]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[ 1147.578538][T24429]  ? __alloc_skb+0x2b3/0x380
[ 1147.583661][T24429]  __alloc_skb+0x2b3/0x380
[ 1147.588578][T24429]  ? __pfx___alloc_skb+0x10/0x10
[ 1147.594169][T24429]  ? genl_rcv_msg+0x4bd/0x800
[ 1147.599393][T24429]  netlink_ack+0x164/0xb20
[ 1147.604324][T24429]  netlink_rcv_skb+0x327/0x410
[ 1147.609637][T24429]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1147.615234][T24429]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1147.621132][T24429]  ? down_read+0xc9/0x330
[ 1147.625972][T24429]  ? __pfx_down_read+0x10/0x10
[ 1147.631383][T24429]  ? netlink_deliver_tap+0x1ae/0xca0
[ 1147.637285][T24429]  genl_rcv+0x28/0x40
[ 1147.641823][T24429]  netlink_unicast+0x53c/0x7f0
[ 1147.647125][T24429]  ? __pfx_netlink_unicast+0x10/0x10
[ 1147.652985][T24429]  ? __phys_addr_symbol+0x30/0x80
[ 1147.658549][T24429]  ? __check_object_size+0x488/0x710
[ 1147.664409][T24429]  netlink_sendmsg+0x8b8/0xd70
[ 1147.669697][T24429]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1147.675558][T24429]  sock_write_iter+0x4fe/0x5b0
[ 1147.680844][T24429]  ? __pfx_sock_write_iter+0x10/0x10
[ 1147.686705][T24429]  ? bpf_lsm_file_permission+0x9/0x10
[ 1147.692851][T24429]  ? security_file_permission+0x71/0x210
[ 1147.699083][T24429]  vfs_write+0x5ae/0x1150
[ 1147.703877][T24429]  ? __pfx_sock_write_iter+0x10/0x10
[ 1147.709750][T24429]  ? __pfx_vfs_write+0x10/0x10
[ 1147.715024][T24429]  ? __fget_files+0x40/0x3a0
[ 1147.720126][T24429]  ksys_write+0x207/0x250
[ 1147.724928][T24429]  ? __pfx_ksys_write+0x10/0x10
[ 1147.730310][T24429]  do_syscall_64+0xcd/0x250
[ 1147.735303][T24429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1147.741917][T24429] RIP: 0033:0x7f9483f85d29
[ 1147.746797][T24429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1147.768991][T24429] RSP: 002b:00007f9484d6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1147.778273][T24429] RAX: ffffffffffffffda RBX: 00007f9484175fa0 RCX: 00007f9483f85d29
[ 1147.787064][T24429] RDX: 00000000000000fd RSI: 0000000020000000 RDI: 0000000000000003
[ 1147.795853][T24429] RBP: 00007f9484d6a090 R08: 0000000000000000 R09: 0000000000000000
[ 1147.804641][T24429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1147.813530][T24429] R13: 0000000000000000 R14: 00007f9484175fa0 R15: 00007ffe660fd0f8
[ 1147.822340][T24429]  </TASK>
[ 1148.400604][   T54] Bluetooth: hci0: ISO packet for unknown connection handle 0
[ 1148.714555][T24397] [U] 
[ 1148.717627][T24397] [U] 
[ 1148.720655][T24397] [U] 
[ 1148.723681][T24397] [U] 
[ 1148.776152][T24397] [U] 
[ 1148.779235][T24397] [U] 
[ 1148.782262][T24397] [U] 
[ 1148.785386][T24397] [U] 
[ 1148.795569][T24445] FAULT_INJECTION: forcing a failure.
[ 1148.795569][T24445] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1148.820217][T24405] [U] 
[ 1148.831369][T24445] CPU: 1 UID: 0 PID: 24445 Comm: syz.4.3403 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1148.843293][T24445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1148.854412][T24445] Call Trace:
[ 1148.858067][T24445]  <TASK>
[ 1148.861369][T24445]  dump_stack_lvl+0x16c/0x1f0
[ 1148.866587][T24445]  should_fail_ex+0x497/0x5b0
[ 1148.871808][T24445]  _copy_to_user+0x32/0xd0
[ 1148.876743][T24445]  simple_read_from_buffer+0xd0/0x160
[ 1148.882742][T24445]  proc_fail_nth_read+0x198/0x270
[ 1148.888349][T24445]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1148.894537][T24445]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1148.900718][T24445]  vfs_read+0x1df/0xbe0
[ 1148.905357][T24445]  ? __fget_files+0x1fc/0x3a0
[ 1148.910578][T24445]  ? __pfx___mutex_lock+0x10/0x10
[ 1148.916186][T24445]  ? __pfx_vfs_read+0x10/0x10
[ 1148.921404][T24445]  ? __fget_files+0x206/0x3a0
[ 1148.926631][T24445]  ksys_read+0x12b/0x250
[ 1148.931360][T24445]  ? __pfx_ksys_read+0x10/0x10
[ 1148.936675][T24445]  do_syscall_64+0xcd/0x250
[ 1148.941708][T24445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1148.948255][T24445] RIP: 0033:0x7f9483f8473c
[ 1148.953197][T24445] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1148.974822][T24445] RSP: 002b:00007f9484d6a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1148.984426][T24445] RAX: ffffffffffffffda RBX: 00007f9484175fa0 RCX: 00007f9483f8473c
[ 1148.993343][T24445] RDX: 000000000000000f RSI: 00007f9484d6a0a0 RDI: 0000000000000004
[ 1149.002168][T24445] RBP: 00007f9484d6a090 R08: 0000000000000000 R09: 0000000000000000
[ 1149.011006][T24445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1149.019827][T24445] R13: 0000000000000000 R14: 00007f9484175fa0 R15: 00007ffe660fd0f8
[ 1149.028668][T24445]  </TASK>
[ 1149.228929][T24450] sctp: [Deprecated]: syz.4.3404 (pid 24450) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1149.228929][T24450] Use struct sctp_sack_info instead
[ 1149.276349][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1149.308668][T24455] sctp: [Deprecated]: syz.4.3404 (pid 24455) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1149.308668][T24455] Use struct sctp_sack_info instead
[ 1150.385801][T24477] vivid-003: =================  START STATUS  =================
[ 1150.426492][T24477] vivid-003: Radio HW Seek Mode: Bounded
[ 1150.460102][T24477] vivid-003: Radio Programmable HW Seek: false
[ 1150.506207][T24477] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1150.532844][T24477] vivid-003: Generate RBDS Instead of RDS: false
[ 1150.576377][T24477] vivid-003: RDS Reception: true
[ 1150.581924][T24477] vivid-003: RDS Program Type: 0 inactive
[ 1150.676311][T24477] vivid-003: RDS PS Name:  inactive
[ 1150.682594][T24477] vivid-003: RDS Radio Text:  inactive
[ 1150.766237][T24477] vivid-003: RDS Traffic Announcement: false inactive
[ 1150.823058][T24477] vivid-003: RDS Traffic Program: false inactive
[ 1150.867468][T24477] vivid-003: RDS Music: false inactive
[ 1150.873894][T24477] vivid-003: ==================  END STATUS  ==================
[ 1151.452323][T24489] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1151.537777][T24491] netlink: 14 bytes leftover after parsing attributes in process `syz.4.3422'.
[ 1153.057971][T24471] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1153.278157][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1153.886780][T24500] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1155.116561][   T54] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1155.481924][T24525] netlink: 14 bytes leftover after parsing attributes in process `syz.4.3421'.
[ 1156.500113][   T54] Bluetooth: hci4: ACL packet for unknown connection handle 0
[ 1157.086514][T24509] [U] 
[ 1157.089604][T24509] [U] 
[ 1157.092644][T24509] [U] 
[ 1157.095679][T24509] [U] 
[ 1157.170301][T24514] [U] 
[ 1159.653859][T24573] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3437'.
[ 1163.044802][   T54] Bluetooth: hci2: ISO packet for unknown connection handle 0
[ 1165.277436][T24634] netlink: 14 bytes leftover after parsing attributes in process `syz.4.3454'.
[ 1165.307586][T24634] FAULT_INJECTION: forcing a failure.
[ 1165.307586][T24634] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1165.418746][T24634] CPU: 0 UID: 0 PID: 24634 Comm: syz.4.3454 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1165.430673][T24634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1165.441799][T24634] Call Trace:
[ 1165.445444][T24634]  <TASK>
[ 1165.448701][T24634]  dump_stack_lvl+0x16c/0x1f0
[ 1165.453926][T24634]  should_fail_ex+0x497/0x5b0
[ 1165.459140][T24634]  _copy_to_user+0x32/0xd0
[ 1165.464081][T24634]  simple_read_from_buffer+0xd0/0x160
[ 1165.470049][T24634]  proc_fail_nth_read+0x198/0x270
[ 1165.475649][T24634]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1165.481830][T24634]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1165.488005][T24634]  vfs_read+0x1df/0xbe0
[ 1165.492641][T24634]  ? __fget_files+0x1fc/0x3a0
[ 1165.497858][T24634]  ? __pfx___mutex_lock+0x10/0x10
[ 1165.503442][T24634]  ? __pfx_vfs_read+0x10/0x10
[ 1165.508653][T24634]  ? __fget_files+0x206/0x3a0
[ 1165.513874][T24634]  ksys_read+0x12b/0x250
[ 1165.518605][T24634]  ? __pfx_ksys_read+0x10/0x10
[ 1165.523913][T24634]  do_syscall_64+0xcd/0x250
[ 1165.528932][T24634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1165.535472][T24634] RIP: 0033:0x7f9483f8473c
[ 1165.540365][T24634] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1165.562447][T24634] RSP: 002b:00007f9484d6a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1165.571729][T24634] RAX: ffffffffffffffda RBX: 00007f9484175fa0 RCX: 00007f9483f8473c
[ 1165.580528][T24634] RDX: 000000000000000f RSI: 00007f9484d6a0a0 RDI: 0000000000000004
[ 1165.589324][T24634] RBP: 00007f9484d6a090 R08: 0000000000000000 R09: 0000000000000000
[ 1165.598219][T24634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1165.607041][T24634] R13: 0000000000000000 R14: 00007f9484175fa0 R15: 00007ffe660fd0f8
[ 1165.615855][T24634]  </TASK>
[ 1166.159820][T24640] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1167.579237][T24602] Process accounting paused
[ 1168.534944][T24666] netlink: 146 bytes leftover after parsing attributes in process `syz.4.3465'.
[ 1172.874646][T24739] netlink: 'syz.4.3487': attribute type 21 has an invalid length.
[ 1172.912715][T24739] netlink: 326 bytes leftover after parsing attributes in process `syz.4.3487'.
[ 1176.523776][T24779] vivid-013: =================  START STATUS  =================
[ 1176.671677][T24779] vivid-013: Generate PTS: true
[ 1176.742411][T24779] vivid-013: Generate SCR: true
[ 1176.769969][T24779] tpg source WxH: 640x360 (Y'CbCr)
[ 1176.796235][T24779] tpg field: 1
[ 1176.813833][T24779] tpg crop: 640x360@0x0
[ 1176.836151][T24779] tpg compose: 640x360@0x0
[ 1176.926248][T24779] tpg colorspace: 8
[ 1176.940307][T24779] tpg transfer function: 0/0
[ 1177.020298][T24779] tpg Y'CbCr encoding: 0/0
[ 1177.025238][T24779] tpg quantization: 0/0
[ 1177.086640][T24779] tpg RGB range: 0/2
[ 1177.132436][T24779] vivid-013: ==================  END STATUS  ==================
[ 1178.104831][T24801] mkiss: ax0: crc mode is auto.
[ 1178.236458][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1182.711707][T24864] FAULT_INJECTION: forcing a failure.
[ 1182.711707][T24864] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1182.728394][T24864] CPU: 0 UID: 0 PID: 24864 Comm: syz.1.3517 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1182.740303][T24864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1182.751516][T24864] Call Trace:
[ 1182.755160][T24864]  <TASK>
[ 1182.758426][T24864]  dump_stack_lvl+0x16c/0x1f0
[ 1182.763636][T24864]  should_fail_ex+0x497/0x5b0
[ 1182.768874][T24864]  _copy_to_user+0x32/0xd0
[ 1182.773921][T24864]  simple_read_from_buffer+0xd0/0x160
[ 1182.779893][T24864]  proc_fail_nth_read+0x198/0x270
[ 1182.785534][T24864]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1182.792001][T24864]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1182.798155][T24864]  vfs_read+0x1df/0xbe0
[ 1182.802764][T24864]  ? __fget_files+0x1fc/0x3a0
[ 1182.808051][T24864]  ? __pfx___mutex_lock+0x10/0x10
[ 1182.813644][T24864]  ? __pfx_vfs_read+0x10/0x10
[ 1182.818828][T24864]  ? __fget_files+0x206/0x3a0
[ 1182.824027][T24864]  ksys_read+0x12b/0x250
[ 1182.828748][T24864]  ? __pfx_ksys_read+0x10/0x10
[ 1182.834033][T24864]  do_syscall_64+0xcd/0x250
[ 1182.839030][T24864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1182.845553][T24864] RIP: 0033:0x7f12f1b8473c
[ 1182.850441][T24864] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1182.872031][T24864] RSP: 002b:00007f12f29ec030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1182.881320][T24864] RAX: ffffffffffffffda RBX: 00007f12f1d75fa0 RCX: 00007f12f1b8473c
[ 1182.890117][T24864] RDX: 000000000000000f RSI: 00007f12f29ec0a0 RDI: 0000000000000003
[ 1182.898922][T24864] RBP: 00007f12f29ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1182.907715][T24864] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[ 1182.916504][T24864] R13: 0000000000000000 R14: 00007f12f1d75fa0 R15: 00007ffc6acea5b8
[ 1182.925318][T24864]  </TASK>
[ 1182.943054][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.953864][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1183.516535][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1184.319849][T24893] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1184.386177][T24880] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1184.557934][ T5851] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1184.629254][T24898] netlink: 'syz.1.3525': attribute type 21 has an invalid length.
[ 1184.686274][T24898] netlink: 326 bytes leftover after parsing attributes in process `syz.1.3525'.
[ 1187.066280][T24928] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1187.688005][T24940] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3535'.
[ 1188.157346][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1189.036383][   T54] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1189.126355][T24968] FAULT_INJECTION: forcing a failure.
[ 1189.126355][T24968] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1189.141631][T24968] CPU: 0 UID: 0 PID: 24968 Comm: syz.1.3544 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1189.153531][T24968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1189.164643][T24968] Call Trace:
[ 1189.168289][T24968]  <TASK>
[ 1189.171552][T24968]  dump_stack_lvl+0x16c/0x1f0
[ 1189.176764][T24968]  should_fail_ex+0x497/0x5b0
[ 1189.181996][T24968]  _copy_to_user+0x32/0xd0
[ 1189.186942][T24968]  simple_read_from_buffer+0xd0/0x160
[ 1189.192916][T24968]  proc_fail_nth_read+0x198/0x270
[ 1189.198547][T24968]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1189.204722][T24968]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1189.210889][T24968]  vfs_read+0x1df/0xbe0
[ 1189.215496][T24968]  ? __fget_files+0x1fc/0x3a0
[ 1189.220681][T24968]  ? __pfx___mutex_lock+0x10/0x10
[ 1189.226252][T24968]  ? __pfx_vfs_read+0x10/0x10
[ 1189.231435][T24968]  ? __fget_files+0x206/0x3a0
[ 1189.236620][T24968]  ksys_read+0x12b/0x250
[ 1189.241320][T24968]  ? __pfx_ksys_read+0x10/0x10
[ 1189.246605][T24968]  do_syscall_64+0xcd/0x250
[ 1189.251596][T24968]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1189.258117][T24968] RIP: 0033:0x7f12f1b8473c
[ 1189.263003][T24968] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1189.284607][T24968] RSP: 002b:00007f12f29cb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1189.293903][T24968] RAX: ffffffffffffffda RBX: 00007f12f1d76080 RCX: 00007f12f1b8473c
[ 1189.302764][T24968] RDX: 000000000000000f RSI: 00007f12f29cb0a0 RDI: 0000000000000004
[ 1189.311564][T24968] RBP: 00007f12f29cb090 R08: 0000000000000000 R09: 0000000000000000
[ 1189.320352][T24968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1189.329163][T24968] R13: 0000000000000000 R14: 00007f12f1d76080 R15: 00007ffc6acea5b8
[ 1189.337972][T24968]  </TASK>
[ 1189.341413][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1191.613753][T25004] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1193.036696][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1193.954952][T25047] capability: warning: `syz.1.3565' uses deprecated v2 capabilities in a way that may be insecure
[ 1195.967426][T25076] FAULT_INJECTION: forcing a failure.
[ 1195.967426][T25076] name failslab, interval 1, probability 0, space 0, times 0
[ 1196.026262][T25076] CPU: 0 UID: 0 PID: 25076 Comm: syz.4.3573 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1196.038196][T25076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1196.049403][T25076] Call Trace:
[ 1196.053040][T25076]  <TASK>
[ 1196.056299][T25076]  dump_stack_lvl+0x16c/0x1f0
[ 1196.061504][T25076]  should_fail_ex+0x497/0x5b0
[ 1196.066710][T25076]  ? fs_reclaim_acquire+0xae/0x150
[ 1196.072387][T25076]  should_failslab+0xc2/0x120
[ 1196.077599][T25076]  __kmalloc_noprof+0xce/0x4f0
[ 1196.082910][T25076]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1196.089157][T25076]  ? tomoyo_realpath_from_path+0xbf/0x710
[ 1196.095539][T25076]  tomoyo_realpath_from_path+0xbf/0x710
[ 1196.101709][T25076]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1196.107952][T25076]  tomoyo_path_number_perm+0x248/0x5b0
[ 1196.114002][T25076]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1196.120253][T25076]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1196.126905][T25076]  ? __pfx_lock_release+0x10/0x10
[ 1196.132557][T25076]  ? trace_lock_acquire+0x14e/0x1f0
[ 1196.138320][T25076]  ? lock_acquire+0x2f/0xb0
[ 1196.143310][T25076]  ? __fget_files+0x40/0x3a0
[ 1196.148404][T25076]  ? __fget_files+0x206/0x3a0
[ 1196.153585][T25076]  security_file_ioctl+0x9b/0x240
[ 1196.159141][T25076]  __x64_sys_ioctl+0xb7/0x200
[ 1196.164311][T25076]  do_syscall_64+0xcd/0x250
[ 1196.169324][T25076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1196.175856][T25076] RIP: 0033:0x7f9483f85d29
[ 1196.180738][T25076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1196.202347][T25076] RSP: 002b:00007f9484d49038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1196.211630][T25076] RAX: ffffffffffffffda RBX: 00007f9484176080 RCX: 00007f9483f85d29
[ 1196.220428][T25076] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000005
[ 1196.229221][T25076] RBP: 00007f9484d49090 R08: 0000000000000000 R09: 0000000000000000
[ 1196.238018][T25076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1196.246835][T25076] R13: 0000000000000000 R14: 00007f9484176080 R15: 00007ffe660fd0f8
[ 1196.255643][T25076]  </TASK>
[ 1196.419684][T25076] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1197.790918][T25097] FAULT_INJECTION: forcing a failure.
[ 1197.790918][T25097] name failslab, interval 1, probability 0, space 0, times 0
[ 1197.795788][T25094] Process accounting resumed
[ 1197.826155][T25097] CPU: 0 UID: 0 PID: 25097 Comm: syz.4.3581 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1197.838080][T25097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1197.849198][T25097] Call Trace:
[ 1197.852868][T25097]  <TASK>
[ 1197.856149][T25097]  dump_stack_lvl+0x16c/0x1f0
[ 1197.861374][T25097]  should_fail_ex+0x497/0x5b0
[ 1197.866592][T25097]  ? fs_reclaim_acquire+0xae/0x150
[ 1197.872275][T25097]  should_failslab+0xc2/0x120
[ 1197.877487][T25097]  kmem_cache_alloc_noprof+0x6e/0x3b0
[ 1197.883467][T25097]  ? security_inode_alloc+0x3b/0x2b0
[ 1197.889355][T25097]  security_inode_alloc+0x3b/0x2b0
[ 1197.895056][T25097]  inode_init_always_gfp+0xce4/0x1030
[ 1197.901037][T25097]  alloc_inode+0x82/0x230
[ 1197.905863][T25097]  new_inode+0x22/0x210
[ 1197.910502][T25097]  hugetlbfs_get_inode+0x358/0x740
[ 1197.916187][T25097]  ? __fget_files+0x206/0x3a0
[ 1197.921398][T25097]  hugetlb_file_setup+0x15b/0x620
[ 1197.926997][T25097]  ksys_mmap_pgoff+0x189/0x5c0
[ 1197.932300][T25097]  __x64_sys_mmap+0x125/0x190
[ 1197.937510][T25097]  do_syscall_64+0xcd/0x250
[ 1197.942529][T25097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1197.949075][T25097] RIP: 0033:0x7f9483f85d29
[ 1197.953987][T25097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1197.975707][T25097] RSP: 002b:00007f9484d6a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1197.985027][T25097] RAX: ffffffffffffffda RBX: 00007f9484175fa0 RCX: 00007f9483f85d29
[ 1197.993849][T25097] RDX: 000000000000000a RSI: 0000000004200006 RDI: 0000000000200000
[ 1198.002672][T25097] RBP: 00007f9484d6a090 R08: 0000000000000602 R09: 0000b00000000000
[ 1198.011496][T25097] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000001
[ 1198.020512][T25097] R13: 0000000000000001 R14: 00007f9484175fa0 R15: 00007ffe660fd0f8
[ 1198.029546][T25097]  </TASK>
[ 1198.080346][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1198.949204][T25107] Invalid ELF header magic: != ELF
[ 1199.293499][T25117] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3585'.
[ 1199.379072][T25117] lo: entered promiscuous mode
[ 1199.400227][T25117] lo: entered allmulticast mode
[ 1201.458162][T25124] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1201.479326][T25136] FAULT_INJECTION: forcing a failure.
[ 1201.479326][T25136] name failslab, interval 1, probability 0, space 0, times 0
[ 1201.596497][T25136] CPU: 0 UID: 0 PID: 25136 Comm: syz.1.3591 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1201.608429][T25136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1201.619544][T25136] Call Trace:
[ 1201.623298][T25136]  <TASK>
[ 1201.626563][T25136]  dump_stack_lvl+0x16c/0x1f0
[ 1201.631774][T25136]  should_fail_ex+0x497/0x5b0
[ 1201.636989][T25136]  ? fs_reclaim_acquire+0xae/0x150
[ 1201.642677][T25136]  should_failslab+0xc2/0x120
[ 1201.647898][T25136]  __kmalloc_noprof+0xce/0x4f0
[ 1201.653207][T25136]  ? d_absolute_path+0x137/0x1b0
[ 1201.658708][T25136]  ? tomoyo_encode2+0x100/0x3e0
[ 1201.664116][T25136]  tomoyo_encode2+0x100/0x3e0
[ 1201.669337][T25136]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1201.675641][T25136]  tomoyo_path_number_perm+0x248/0x5b0
[ 1201.681728][T25136]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1201.689664][T25136]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1201.689764][T25136]  ? __pfx_lock_release+0x10/0x10
[ 1201.689799][T25136]  ? trace_lock_acquire+0x14e/0x1f0
[ 1201.689849][T25136]  ? lock_acquire+0x2f/0xb0
[ 1201.689880][T25136]  ? __fget_files+0x40/0x3a0
[ 1201.689926][T25136]  ? __fget_files+0x206/0x3a0
[ 1201.689972][T25136]  security_file_ioctl+0x9b/0x240
[ 1201.690011][T25136]  __x64_sys_ioctl+0xb7/0x200
[ 1201.690049][T25136]  do_syscall_64+0xcd/0x250
[ 1201.690103][T25136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1201.690164][T25136] RIP: 0033:0x7f12f1b85d29
[ 1201.690193][T25136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1201.690229][T25136] RSP: 002b:00007f12f29cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1201.690269][T25136] RAX: ffffffffffffffda RBX: 00007f12f1d76080 RCX: 00007f12f1b85d29
[ 1201.690294][T25136] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000005
[ 1201.690322][T25136] RBP: 00007f12f29cb090 R08: 0000000000000000 R09: 0000000000000000
[ 1201.690345][T25136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1201.690368][T25136] R13: 0000000000000000 R14: 00007f12f1d76080 R15: 00007ffc6acea5b8
[ 1201.690417][T25136]  </TASK>
[ 1201.788667][T25136] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1202.514968][T25145] mkiss: ax0: crc mode is auto.
[ 1203.198731][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1203.407135][   T54] Bluetooth: hci1: ISO packet for unknown connection handle 0
[ 1204.941373][T25188] FAULT_INJECTION: forcing a failure.
[ 1204.941373][T25188] name failslab, interval 1, probability 0, space 0, times 0
[ 1205.069558][T25188] CPU: 0 UID: 0 PID: 25188 Comm: syz.1.3604 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1205.081488][T25188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1205.092605][T25188] Call Trace:
[ 1205.096266][T25188]  <TASK>
[ 1205.099541][T25188]  dump_stack_lvl+0x16c/0x1f0
[ 1205.104762][T25188]  should_fail_ex+0x497/0x5b0
[ 1205.109987][T25188]  ? fs_reclaim_acquire+0xae/0x150
[ 1205.115680][T25188]  should_failslab+0xc2/0x120
[ 1205.120903][T25188]  __kmalloc_noprof+0xce/0x4f0
[ 1205.126223][T25188]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1205.132498][T25188]  ? tomoyo_realpath_from_path+0xbf/0x710
[ 1205.138869][T25188]  tomoyo_realpath_from_path+0xbf/0x710
[ 1205.145043][T25188]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1205.151331][T25188]  tomoyo_path_number_perm+0x248/0x5b0
[ 1205.157418][T25188]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1205.163708][T25188]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1205.170402][T25188]  ? __pfx_lock_release+0x10/0x10
[ 1205.175998][T25188]  ? trace_lock_acquire+0x14e/0x1f0
[ 1205.181795][T25188]  ? lock_acquire+0x2f/0xb0
[ 1205.186842][T25188]  ? __fget_files+0x40/0x3a0
[ 1205.192160][T25188]  ? __fget_files+0x206/0x3a0
[ 1205.197378][T25188]  security_file_ioctl+0x9b/0x240
[ 1205.202974][T25188]  __x64_sys_ioctl+0xb7/0x200
[ 1205.208187][T25188]  do_syscall_64+0xcd/0x250
[ 1205.213218][T25188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1205.219770][T25188] RIP: 0033:0x7f12f1b85d29
[ 1205.224695][T25188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1205.246329][T25188] RSP: 002b:00007f12f29cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1205.255937][T25188] RAX: ffffffffffffffda RBX: 00007f12f1d76080 RCX: 00007f12f1b85d29
[ 1205.264766][T25188] RDX: 0000000000000000 RSI: 0000000080044584 RDI: 0000000000000003
[ 1205.273592][T25188] RBP: 00007f12f29cb090 R08: 0000000000000000 R09: 0000000000000000
[ 1205.282417][T25188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1205.291243][T25188] R13: 0000000000000000 R14: 00007f12f1d76080 R15: 00007ffc6acea5b8
[ 1205.300087][T25188]  </TASK>
[ 1205.506828][T25188] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1205.797777][T25201] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1207.947987][T25229] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(6)
[ 1208.867471][T25233] QAT: Device 0 not found
[ 1210.347195][T25252] mkiss: ax0: crc mode is auto.
[ 1212.084992][T25269] mkiss: ax0: crc mode is auto.
[ 1214.368901][   T54] Bluetooth: hci0: ISO packet for unknown connection handle 0
[ 1215.109715][T25311] mkiss: ax0: crc mode is auto.
[ 1215.880846][T25321] misc userio: The device must be registered before sending interrupts
[ 1216.856696][T25335] mkiss: ax0: crc mode is auto.
[ 1217.135191][T25349] FAULT_INJECTION: forcing a failure.
[ 1217.135191][T25349] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1217.196440][T25349] CPU: 0 UID: 0 PID: 25349 Comm: syz.5.3643 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1217.208361][T25349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1217.219450][T25349] Call Trace:
[ 1217.223075][T25349]  <TASK>
[ 1217.226319][T25349]  dump_stack_lvl+0x16c/0x1f0
[ 1217.231500][T25349]  should_fail_ex+0x497/0x5b0
[ 1217.236681][T25349]  _copy_to_user+0x32/0xd0
[ 1217.241579][T25349]  simple_read_from_buffer+0xd0/0x160
[ 1217.247520][T25349]  proc_fail_nth_read+0x198/0x270
[ 1217.253088][T25349]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1217.259235][T25349]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1217.265376][T25349]  vfs_read+0x1df/0xbe0
[ 1217.269982][T25349]  ? __fget_files+0x1fc/0x3a0
[ 1217.275170][T25349]  ? __pfx___mutex_lock+0x10/0x10
[ 1217.280731][T25349]  ? __pfx_vfs_read+0x10/0x10
[ 1217.285910][T25349]  ? __fget_files+0x206/0x3a0
[ 1217.291094][T25349]  ksys_read+0x12b/0x250
[ 1217.295786][T25349]  ? __pfx_ksys_read+0x10/0x10
[ 1217.301065][T25349]  do_syscall_64+0xcd/0x250
[ 1217.306058][T25349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1217.312587][T25349] RIP: 0033:0x7ff61078473c
[ 1217.317468][T25349] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1217.339356][T25349] RSP: 002b:00007ff6105f9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1217.348641][T25349] RAX: ffffffffffffffda RBX: 00007ff610975fa0 RCX: 00007ff61078473c
[ 1217.357444][T25349] RDX: 000000000000000f RSI: 00007ff6105f90a0 RDI: 0000000000000004
[ 1217.366239][T25349] RBP: 00007ff6105f9090 R08: 0000000000000000 R09: 0000000000000000
[ 1217.375079][T25349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1217.383876][T25349] R13: 0000000000000000 R14: 00007ff610975fa0 R15: 00007ffc1324cfe8
[ 1217.392688][T25349]  </TASK>
[ 1217.396041][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1218.989714][T25374] FAULT_INJECTION: forcing a failure.
[ 1218.989714][T25374] name failslab, interval 1, probability 0, space 0, times 0
[ 1219.029401][T25374] CPU: 0 UID: 0 PID: 25374 Comm: syz.2.3651 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1219.041340][T25374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1219.052553][T25374] Call Trace:
[ 1219.056193][T25374]  <TASK>
[ 1219.059456][T25374]  dump_stack_lvl+0x16c/0x1f0
[ 1219.064669][T25374]  should_fail_ex+0x497/0x5b0
[ 1219.069874][T25374]  ? fs_reclaim_acquire+0xae/0x150
[ 1219.075564][T25374]  should_failslab+0xc2/0x120
[ 1219.080783][T25374]  __kmalloc_cache_noprof+0x68/0x420
[ 1219.086674][T25374]  allocate_file_region_entries+0x1a3/0x620
[ 1219.093240][T25374]  ? __pfx_allocate_file_region_entries+0x10/0x10
[ 1219.100384][T25374]  region_chg+0x85/0x140
[ 1219.105128][T25374]  __vma_reservation_common+0x43d/0x740
[ 1219.111312][T25374]  ? __pfx___vma_reservation_common+0x10/0x10
[ 1219.118107][T25374]  alloc_hugetlb_folio+0x23c/0x15f0
[ 1219.123905][T25374]  ? __pfx_alloc_hugetlb_folio+0x10/0x10
[ 1219.130167][T25374]  ? __pfx_down_read+0x10/0x10
[ 1219.135485][T25374]  ? __filemap_get_folio+0x2a5/0xaf0
[ 1219.141380][T25374]  ? huge_pte_alloc+0x22e/0x3a0
[ 1219.146784][T25374]  hugetlb_fault+0x1f65/0x2fb0
[ 1219.152097][T25374]  ? __pfx_hugetlb_fault+0x10/0x10
[ 1219.157803][T25374]  ? find_vma+0xc0/0x140
[ 1219.162533][T25374]  ? __pfx_find_vma+0x10/0x10
[ 1219.167740][T25374]  handle_mm_fault+0x930/0xaa0
[ 1219.173053][T25374]  do_user_addr_fault+0x7a3/0x13f0
[ 1219.178745][T25374]  exc_page_fault+0x5c/0xc0
[ 1219.183761][T25374]  asm_exc_page_fault+0x26/0x30
[ 1219.189170][T25374] RIP: 0010:__put_user_4+0x11/0x20
[ 1219.194951][T25374] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 1219.216779][T25374] RSP: 0018:ffffc9000bec7d40 EFLAGS: 00050246
[ 1219.223516][T25374] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 1219.232333][T25374] RDX: ffff888025ab3c00 RSI: ffffffff8762d1c7 RDI: ffffffff8bb172c0
[ 1219.241155][T25374] RBP: 1ffff920017d8faf R08: 0000000000000000 R09: fffffbfff2039eda
[ 1219.249980][T25374] R10: ffffffff901cf6d7 R11: 0000000000000001 R12: 0000000000000000
[ 1219.258800][T25374] R13: ffff888146f08000 R14: 0000000080044584 R15: ffff888147ae9000
[ 1219.267640][T25374]  ? evdev_do_ioctl+0x9c7/0x1ae0
[ 1219.273144][T25374]  evdev_do_ioctl+0x9d4/0x1ae0
[ 1219.278459][T25374]  ? __pfx_evdev_do_ioctl+0x10/0x10
[ 1219.284257][T25374]  ? trace_lock_acquire+0x14e/0x1f0
[ 1219.290058][T25374]  ? __pfx_evdev_ioctl+0x10/0x10
[ 1219.295557][T25374]  evdev_ioctl+0x16a/0x1a0
[ 1219.300451][T25374]  ? __pfx_evdev_ioctl+0x10/0x10
[ 1219.305958][T25374]  __x64_sys_ioctl+0x190/0x200
[ 1219.311228][T25374]  do_syscall_64+0xcd/0x250
[ 1219.316235][T25374]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1219.322751][T25374] RIP: 0033:0x7fbfdab85d29
[ 1219.327627][T25374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1219.349235][T25374] RSP: 002b:00007fbfdb942038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1219.358527][T25374] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab85d29
[ 1219.367323][T25374] RDX: 0000000000000000 RSI: 0000000080044584 RDI: 0000000000000003
[ 1219.376117][T25374] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1219.384962][T25374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1219.393755][T25374] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1219.402574][T25374]  </TASK>
[ 1219.405942][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1219.681663][T25381] device-mapper: ioctl: ioctl interface mismatch: kernel(4.48.0), user(0.0.0), cmd(6)
[ 1220.587093][T25400] netlink: 14 bytes leftover after parsing attributes in process `syz.4.3657'.
[ 1221.088386][T25406] mkiss: ax0: crc mode is auto.
[ 1221.170921][T25415] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1224.648025][T25465] FAULT_INJECTION: forcing a failure.
[ 1224.648025][T25465] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1224.716542][T25465] CPU: 0 UID: 0 PID: 25465 Comm: syz.2.3676 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1224.728516][T25465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1224.739660][T25465] Call Trace:
[ 1224.743310][T25465]  <TASK>
[ 1224.746569][T25465]  dump_stack_lvl+0x16c/0x1f0
[ 1224.751816][T25465]  should_fail_ex+0x497/0x5b0
[ 1224.757037][T25465]  _copy_to_user+0x32/0xd0
[ 1224.761964][T25465]  simple_read_from_buffer+0xd0/0x160
[ 1224.768024][T25465]  proc_fail_nth_read+0x198/0x270
[ 1224.773624][T25465]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1224.779802][T25465]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1224.785979][T25465]  vfs_read+0x1df/0xbe0
[ 1224.790604][T25465]  ? __fget_files+0x1fc/0x3a0
[ 1224.795800][T25465]  ? __pfx___mutex_lock+0x10/0x10
[ 1224.801394][T25465]  ? __pfx_vfs_read+0x10/0x10
[ 1224.806608][T25465]  ? __fget_files+0x206/0x3a0
[ 1224.811823][T25465]  ksys_read+0x12b/0x250
[ 1224.816555][T25465]  ? __pfx_ksys_read+0x10/0x10
[ 1224.821867][T25465]  do_syscall_64+0xcd/0x250
[ 1224.826884][T25465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1224.833426][T25465] RIP: 0033:0x7fbfdab8473c
[ 1224.838358][T25465] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1224.859979][T25465] RSP: 002b:00007fbfdb942030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1224.869288][T25465] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab8473c
[ 1224.878102][T25465] RDX: 000000000000000f RSI: 00007fbfdb9420a0 RDI: 0000000000000004
[ 1224.886916][T25465] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1224.895748][T25465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1224.904567][T25465] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1224.913402][T25465]  </TASK>
[ 1224.916897][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1228.202854][T25506] Process accounting paused
[ 1228.508947][T25522] program syz.2.3690 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1229.170994][T25518] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1231.436459][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1233.337937][T25588] mkiss: ax0: crc mode is auto.
[ 1235.658980][T25617] FAULT_INJECTION: forcing a failure.
[ 1235.658980][T25617] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1235.706245][T25617] CPU: 1 UID: 0 PID: 25617 Comm: syz.1.3717 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1235.718179][T25617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1235.729296][T25617] Call Trace:
[ 1235.732948][T25617]  <TASK>
[ 1235.736261][T25617]  dump_stack_lvl+0x16c/0x1f0
[ 1235.741570][T25617]  should_fail_ex+0x497/0x5b0
[ 1235.746793][T25617]  _copy_to_user+0x32/0xd0
[ 1235.751741][T25617]  simple_read_from_buffer+0xd0/0x160
[ 1235.757716][T25617]  proc_fail_nth_read+0x198/0x270
[ 1235.763323][T25617]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1235.769616][T25617]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1235.775791][T25617]  vfs_read+0x1df/0xbe0
[ 1235.780441][T25617]  ? __fget_files+0x1fc/0x3a0
[ 1235.785651][T25617]  ? __pfx___mutex_lock+0x10/0x10
[ 1235.791256][T25617]  ? __pfx_vfs_read+0x10/0x10
[ 1235.796480][T25617]  ? __fget_files+0x206/0x3a0
[ 1235.801689][T25617]  ksys_read+0x12b/0x250
[ 1235.806395][T25617]  ? __pfx_ksys_read+0x10/0x10
[ 1235.811682][T25617]  do_syscall_64+0xcd/0x250
[ 1235.816680][T25617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1235.823208][T25617] RIP: 0033:0x7f12f1b8473c
[ 1235.828091][T25617] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1235.849805][T25617] RSP: 002b:00007f12f29ec030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1235.859099][T25617] RAX: ffffffffffffffda RBX: 00007f12f1d75fa0 RCX: 00007f12f1b8473c
[ 1235.867910][T25617] RDX: 000000000000000f RSI: 00007f12f29ec0a0 RDI: 0000000000000004
[ 1235.876702][T25617] RBP: 00007f12f29ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1235.885585][T25617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1235.894375][T25617] R13: 0000000000000000 R14: 00007f12f1d75fa0 R15: 00007ffc6acea5b8
[ 1235.903185][T25617]  </TASK>
[ 1236.513593][T25625] mkiss: ax0: crc mode is auto.
[ 1238.957631][T25673] mkiss: ax0: crc mode is auto.
[ 1242.125818][T25731] FAULT_INJECTION: forcing a failure.
[ 1242.125818][T25731] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1242.152126][T25731] CPU: 0 UID: 0 PID: 25731 Comm: syz.5.3750 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1242.164065][T25731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1242.175177][T25731] Call Trace:
[ 1242.178932][T25731]  <TASK>
[ 1242.182192][T25731]  dump_stack_lvl+0x16c/0x1f0
[ 1242.187420][T25731]  should_fail_ex+0x497/0x5b0
[ 1242.192641][T25731]  _copy_from_user+0x2e/0xd0
[ 1242.197778][T25731]  do_sock_getsockopt+0x319/0x870
[ 1242.203362][T25731]  ? trace_lock_acquire+0x120/0x1f0
[ 1242.209154][T25731]  ? __pfx_do_sock_getsockopt+0x10/0x10
[ 1242.215416][T25731]  ? lock_acquire+0x2f/0xb0
[ 1242.220431][T25731]  ? __fget_files+0x40/0x3a0
[ 1242.225610][T25731]  ? __fget_files+0x206/0x3a0
[ 1242.230833][T25731]  __sys_getsockopt+0x12f/0x260
[ 1242.236252][T25731]  __x64_sys_getsockopt+0xbd/0x160
[ 1242.241947][T25731]  ? do_syscall_64+0x91/0x250
[ 1242.247181][T25731]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1242.252985][T25731]  do_syscall_64+0xcd/0x250
[ 1242.258016][T25731]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1242.264589][T25731] RIP: 0033:0x7ff610785d29
[ 1242.269500][T25731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1242.291338][T25731] RSP: 002b:00007ff6105d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[ 1242.300666][T25731] RAX: ffffffffffffffda RBX: 00007ff610976080 RCX: 00007ff610785d29
[ 1242.309521][T25731] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000006
[ 1242.318347][T25731] RBP: 00007ff6105d8090 R08: 0000000000000000 R09: 0000000000000000
[ 1242.327275][T25731] R10: 9999999999999999 R11: 0000000000000246 R12: 0000000000000001
[ 1242.336100][T25731] R13: 0000000000000000 R14: 00007ff610976080 R15: 00007ffc1324cfe8
[ 1242.345038][T25731]  </TASK>
[ 1242.348548][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1242.361322][T25720] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1242.901270][T25732] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1243.084852][T25739] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3752'.
[ 1244.164483][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1244.171830][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1244.316278][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1245.036301][ T5851] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1246.362558][T25800] netlink: 'syz.2.3773': attribute type 21 has an invalid length.
[ 1246.402418][T25800] netlink: 326 bytes leftover after parsing attributes in process `syz.2.3773'.
[ 1246.923257][T25810] mkiss: ax0: crc mode is auto.
[ 1248.515849][T25837] mkiss: ax0: crc mode is auto.
[ 1250.046553][T25862] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1250.683664][T25877] mkiss: ax0: crc mode is auto.
[ 1251.226963][T25886] mkiss: ax0: crc mode is auto.
[ 1252.278522][T25868] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1253.476549][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1254.166393][T25935] netlink: 22 bytes leftover after parsing attributes in process `syz.5.3814'.
[ 1256.435163][T25956] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1256.719650][T25928] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1256.956391][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1257.003209][T25972] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3825'.
[ 1257.020855][T25972] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3825'.
[ 1257.037905][T25972] netlink: 98 bytes leftover after parsing attributes in process `syz.1.3825'.
[ 1257.048167][T25972] veth0_macvtap: left promiscuous mode
[ 1257.562776][T25982] netlink: 'syz.2.3830': attribute type 21 has an invalid length.
[ 1257.578056][T25982] netlink: 326 bytes leftover after parsing attributes in process `syz.2.3830'.
[ 1257.993575][T25989] netlink: 22 bytes leftover after parsing attributes in process `syz.1.3832'.
[ 1258.556349][   T54] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1259.287657][T26003] Process accounting resumed
[ 1259.356827][T25995] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1261.165801][T26036] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3841'.
[ 1261.196389][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1261.264383][T26036] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3841'.
[ 1261.427948][T26036] netlink: 98 bytes leftover after parsing attributes in process `syz.5.3841'.
[ 1261.475241][T26036] veth0_macvtap: left promiscuous mode
[ 1261.827013][T26046] mkiss: ax0: crc mode is auto.
[ 1263.867109][T26086] netlink: 22 bytes leftover after parsing attributes in process `syz.1.3854'.
[ 1264.694027][T26096] mkiss: ax0: crc mode is auto.
[ 1265.670521][T26118] FAULT_INJECTION: forcing a failure.
[ 1265.670521][T26118] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1265.752989][T26118] CPU: 0 UID: 0 PID: 26118 Comm: syz.4.3862 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1265.764929][T26118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1265.776043][T26118] Call Trace:
[ 1265.779696][T26118]  <TASK>
[ 1265.782970][T26118]  dump_stack_lvl+0x16c/0x1f0
[ 1265.788184][T26118]  should_fail_ex+0x497/0x5b0
[ 1265.793393][T26118]  _copy_to_user+0x32/0xd0
[ 1265.798322][T26118]  simple_read_from_buffer+0xd0/0x160
[ 1265.804293][T26118]  proc_fail_nth_read+0x198/0x270
[ 1265.809898][T26118]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1265.816069][T26118]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1265.822236][T26118]  vfs_read+0x1df/0xbe0
[ 1265.826866][T26118]  ? __fget_files+0x1fc/0x3a0
[ 1265.832116][T26118]  ? __pfx___mutex_lock+0x10/0x10
[ 1265.837704][T26118]  ? __pfx_vfs_read+0x10/0x10
[ 1265.842915][T26118]  ? __fget_files+0x206/0x3a0
[ 1265.848130][T26118]  ksys_read+0x12b/0x250
[ 1265.852854][T26118]  ? __pfx_ksys_read+0x10/0x10
[ 1265.858158][T26118]  do_syscall_64+0xcd/0x250
[ 1265.863159][T26118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1265.869682][T26118] RIP: 0033:0x7f9483f8473c
[ 1265.874555][T26118] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1265.896149][T26118] RSP: 002b:00007f9484d49030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1265.905529][T26118] RAX: ffffffffffffffda RBX: 00007f9484176080 RCX: 00007f9483f8473c
[ 1265.914319][T26118] RDX: 000000000000000f RSI: 00007f9484d490a0 RDI: 0000000000000003
[ 1265.923102][T26118] RBP: 00007f9484d49090 R08: 0000000000000000 R09: 0000000000000000
[ 1265.931894][T26118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1265.940683][T26118] R13: 0000000000000001 R14: 00007f9484176080 R15: 00007ffe660fd0f8
[ 1265.949485][T26118]  </TASK>
[ 1266.227672][T26115] sctp: [Deprecated]: syz.5.3863 (pid 26115) Use of int in maxseg socket option.
[ 1266.227672][T26115] Use struct sctp_assoc_value instead
[ 1266.473308][T26128] FAULT_INJECTION: forcing a failure.
[ 1266.473308][T26128] name failslab, interval 1, probability 0, space 0, times 0
[ 1266.521370][T26128] CPU: 1 UID: 0 PID: 26128 Comm: syz.2.3867 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1266.533297][T26128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1266.544414][T26128] Call Trace:
[ 1266.548072][T26128]  <TASK>
[ 1266.551336][T26128]  dump_stack_lvl+0x16c/0x1f0
[ 1266.556541][T26128]  should_fail_ex+0x497/0x5b0
[ 1266.561722][T26128]  ? fs_reclaim_acquire+0xae/0x150
[ 1266.567377][T26128]  should_failslab+0xc2/0x120
[ 1266.572559][T26128]  __kmalloc_noprof+0xce/0x4f0
[ 1266.577834][T26128]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1266.584051][T26128]  ? tomoyo_realpath_from_path+0xbf/0x710
[ 1266.590388][T26128]  tomoyo_realpath_from_path+0xbf/0x710
[ 1266.596524][T26128]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1266.602766][T26128]  tomoyo_path_number_perm+0x248/0x5b0
[ 1266.608808][T26128]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1266.615050][T26128]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1266.621705][T26128]  ? chmod_common+0x161/0x460
[ 1266.626886][T26128]  ? lock_acquire+0x2f/0xb0
[ 1266.631862][T26128]  ? chmod_common+0x161/0x460
[ 1266.637146][T26128]  ? down_write+0x14e/0x200
[ 1266.642144][T26128]  ? __pfx_down_write+0x10/0x10
[ 1266.647516][T26128]  ? mnt_get_write_access+0x20c/0x300
[ 1266.653472][T26128]  security_path_chmod+0x121/0x2c0
[ 1266.659137][T26128]  chmod_common+0x16d/0x460
[ 1266.664129][T26128]  ? __pfx_chmod_common+0x10/0x10
[ 1266.669689][T26128]  ? __fget_files+0x206/0x3a0
[ 1266.674864][T26128]  ? lock_acquire+0x2f/0xb0
[ 1266.679855][T26128]  __x64_sys_fchmod+0x110/0x1a0
[ 1266.685229][T26128]  do_syscall_64+0xcd/0x250
[ 1266.690218][T26128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1266.696738][T26128] RIP: 0033:0x7fbfdab85d29
[ 1266.701616][T26128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1266.723212][T26128] RSP: 002b:00007fbfdb942038 EFLAGS: 00000246 ORIG_RAX: 000000000000005b
[ 1266.732495][T26128] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab85d29
[ 1266.741283][T26128] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1266.750096][T26128] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1266.758895][T26128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1266.767684][T26128] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1266.776491][T26128]  </TASK>
[ 1266.831807][T26129] mkiss: ax0: crc mode is auto.
[ 1267.020436][T26128] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1267.516727][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1267.739519][T26092] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1268.938841][T26147] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1268.963647][T26157] FAULT_INJECTION: forcing a failure.
[ 1268.963647][T26157] name failslab, interval 1, probability 0, space 0, times 0
[ 1269.022939][T26157] CPU: 0 UID: 0 PID: 26157 Comm: syz.5.3876 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1269.035172][T26157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1269.046322][T26157] Call Trace:
[ 1269.050016][T26157]  <TASK>
[ 1269.053390][T26157]  dump_stack_lvl+0x16c/0x1f0
[ 1269.058738][T26157]  should_fail_ex+0x497/0x5b0
[ 1269.064016][T26157]  ? fs_reclaim_acquire+0xae/0x150
[ 1269.070101][T26157]  should_failslab+0xc2/0x120
[ 1269.075321][T26157]  __kmalloc_noprof+0xce/0x4f0
[ 1269.080637][T26157]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1269.087091][T26157]  ? tomoyo_realpath_from_path+0xbf/0x710
[ 1269.093476][T26157]  tomoyo_realpath_from_path+0xbf/0x710
[ 1269.099653][T26157]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1269.105936][T26157]  tomoyo_path_number_perm+0x248/0x5b0
[ 1269.112115][T26157]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1269.118403][T26157]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1269.125112][T26157]  ? chmod_common+0x161/0x460
[ 1269.130337][T26157]  ? lock_acquire+0x2f/0xb0
[ 1269.135439][T26157]  ? chmod_common+0x161/0x460
[ 1269.140639][T26157]  ? down_write+0x14e/0x200
[ 1269.145879][T26157]  ? __pfx_down_write+0x10/0x10
[ 1269.151353][T26157]  ? mnt_get_write_access+0x20c/0x300
[ 1269.157322][T26157]  security_path_chmod+0x121/0x2c0
[ 1269.162996][T26157]  chmod_common+0x16d/0x460
[ 1269.168405][T26157]  ? __pfx_chmod_common+0x10/0x10
[ 1269.173974][T26157]  ? __fget_files+0x206/0x3a0
[ 1269.179541][T26157]  ? lock_acquire+0x2f/0xb0
[ 1269.184544][T26157]  __x64_sys_fchmod+0x110/0x1a0
[ 1269.189944][T26157]  do_syscall_64+0xcd/0x250
[ 1269.195062][T26157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1269.201599][T26157] RIP: 0033:0x7ff610785d29
[ 1269.206877][T26157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1269.228680][T26157] RSP: 002b:00007ff6105f9038 EFLAGS: 00000246 ORIG_RAX: 000000000000005b
[ 1269.238001][T26157] RAX: ffffffffffffffda RBX: 00007ff610975fa0 RCX: 00007ff610785d29
[ 1269.246821][T26157] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1269.255627][T26157] RBP: 00007ff6105f9090 R08: 0000000000000000 R09: 0000000000000000
[ 1269.264432][T26157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1269.273241][T26157] R13: 0000000000000000 R14: 00007ff610975fa0 R15: 00007ffc1324cfe8
[ 1269.282066][T26157]  </TASK>
[ 1269.410053][T26157] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1270.776005][T26181] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1270.876870][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1271.309653][T26188] netlink: 22 bytes leftover after parsing attributes in process `syz.2.3887'.
[ 1271.682093][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807dafac00: rx timeout, send abort
[ 1271.694333][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807dafac00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[ 1272.762557][T26212] FAULT_INJECTION: forcing a failure.
[ 1272.762557][T26212] name failslab, interval 1, probability 0, space 0, times 0
[ 1272.878514][T26212] CPU: 1 UID: 0 PID: 26212 Comm: syz.1.3896 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1272.890547][T26212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1272.901663][T26212] Call Trace:
[ 1272.905319][T26212]  <TASK>
[ 1272.908587][T26212]  dump_stack_lvl+0x16c/0x1f0
[ 1272.913809][T26212]  should_fail_ex+0x497/0x5b0
[ 1272.919035][T26212]  ? fs_reclaim_acquire+0xae/0x150
[ 1272.924772][T26212]  should_failslab+0xc2/0x120
[ 1272.930005][T26212]  __kmalloc_noprof+0xce/0x4f0
[ 1272.935326][T26212]  ? tomoyo_encode2+0x100/0x3e0
[ 1272.940737][T26212]  tomoyo_encode2+0x100/0x3e0
[ 1272.945957][T26212]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1272.952232][T26212]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1272.958514][T26212]  tomoyo_path_number_perm+0x248/0x5b0
[ 1272.964667][T26212]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1272.970914][T26212]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1272.977572][T26212]  ? chmod_common+0x161/0x460
[ 1272.982754][T26212]  ? lock_acquire+0x2f/0xb0
[ 1272.987735][T26212]  ? chmod_common+0x161/0x460
[ 1272.992923][T26212]  ? down_write+0x14e/0x200
[ 1272.997918][T26212]  ? __pfx_down_write+0x10/0x10
[ 1273.003291][T26212]  ? mnt_get_write_access+0x20c/0x300
[ 1273.009242][T26212]  security_path_chmod+0x121/0x2c0
[ 1273.014907][T26212]  chmod_common+0x16d/0x460
[ 1273.019903][T26212]  ? __pfx_chmod_common+0x10/0x10
[ 1273.025465][T26212]  ? __fget_files+0x206/0x3a0
[ 1273.030645][T26212]  ? lock_acquire+0x2f/0xb0
[ 1273.035638][T26212]  __x64_sys_fchmod+0x110/0x1a0
[ 1273.041015][T26212]  do_syscall_64+0xcd/0x250
[ 1273.046008][T26212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1273.052539][T26212] RIP: 0033:0x7f12f1b85d29
[ 1273.057418][T26212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1273.079031][T26212] RSP: 002b:00007f12f29ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000005b
[ 1273.088318][T26212] RAX: ffffffffffffffda RBX: 00007f12f1d75fa0 RCX: 00007f12f1b85d29
[ 1273.097113][T26212] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1273.106015][T26212] RBP: 00007f12f29ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1273.114813][T26212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1273.123616][T26212] R13: 0000000000000000 R14: 00007f12f1d75fa0 R15: 00007ffc6acea5b8
[ 1273.132424][T26212]  </TASK>
[ 1273.239725][T26212] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1274.344336][T26232] FAULT_INJECTION: forcing a failure.
[ 1274.344336][T26232] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1274.543750][T26232] CPU: 0 UID: 0 PID: 26232 Comm: syz.4.3902 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1274.555787][T26232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1274.566921][T26232] Call Trace:
[ 1274.570664][T26232]  <TASK>
[ 1274.573918][T26232]  dump_stack_lvl+0x16c/0x1f0
[ 1274.579128][T26232]  should_fail_ex+0x497/0x5b0
[ 1274.584341][T26232]  _copy_to_user+0x32/0xd0
[ 1274.589277][T26232]  simple_read_from_buffer+0xd0/0x160
[ 1274.595255][T26232]  proc_fail_nth_read+0x198/0x270
[ 1274.600849][T26232]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1274.606998][T26232]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1274.613180][T26232]  vfs_read+0x1df/0xbe0
[ 1274.617797][T26232]  ? __fget_files+0x1fc/0x3a0
[ 1274.622977][T26232]  ? __pfx___mutex_lock+0x10/0x10
[ 1274.628536][T26232]  ? __pfx_vfs_read+0x10/0x10
[ 1274.633733][T26232]  ? __fget_files+0x206/0x3a0
[ 1274.639027][T26232]  ksys_read+0x12b/0x250
[ 1274.643723][T26232]  ? __pfx_ksys_read+0x10/0x10
[ 1274.649000][T26232]  do_syscall_64+0xcd/0x250
[ 1274.653996][T26232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1274.660559][T26232] RIP: 0033:0x7f9483f8473c
[ 1274.665438][T26232] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1274.687147][T26232] RSP: 002b:00007f9484d6a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1274.696432][T26232] RAX: ffffffffffffffda RBX: 00007f9484175fa0 RCX: 00007f9483f8473c
[ 1274.705223][T26232] RDX: 000000000000000f RSI: 00007f9484d6a0a0 RDI: 0000000000000003
[ 1274.714017][T26232] RBP: 00007f9484d6a090 R08: 0000000000000000 R09: 0000b00000000000
[ 1274.722902][T26232] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000002
[ 1274.731687][T26232] R13: 0000000000000001 R14: 00007f9484175fa0 R15: 00007ffe660fd0f8
[ 1274.740527][T26232]  </TASK>
[ 1276.596918][T26257] netlink: 'syz.5.3908': attribute type 21 has an invalid length.
[ 1276.620964][T26257] netlink: 326 bytes leftover after parsing attributes in process `syz.5.3908'.
[ 1276.857086][T26268] FAULT_INJECTION: forcing a failure.
[ 1276.857086][T26268] name failslab, interval 1, probability 0, space 0, times 0
[ 1276.908447][T26268] CPU: 1 UID: 0 PID: 26268 Comm: syz.1.3911 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1276.920370][T26268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1276.931500][T26268] Call Trace:
[ 1276.935140][T26268]  <TASK>
[ 1276.938396][T26268]  dump_stack_lvl+0x16c/0x1f0
[ 1276.943604][T26268]  should_fail_ex+0x497/0x5b0
[ 1276.948861][T26268]  ? fs_reclaim_acquire+0xae/0x150
[ 1276.954561][T26268]  should_failslab+0xc2/0x120
[ 1276.959774][T26268]  __kmalloc_noprof+0xce/0x4f0
[ 1276.965079][T26268]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1276.971324][T26268]  ? tomoyo_realpath_from_path+0xbf/0x710
[ 1276.977687][T26268]  tomoyo_realpath_from_path+0xbf/0x710
[ 1276.983953][T26268]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1276.990230][T26268]  tomoyo_path_number_perm+0x248/0x5b0
[ 1276.996306][T26268]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1277.002554][T26268]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1277.009228][T26268]  ? __pfx_lock_release+0x10/0x10
[ 1277.014916][T26268]  ? trace_lock_acquire+0x14e/0x1f0
[ 1277.021065][T26268]  ? lock_acquire+0x2f/0xb0
[ 1277.026060][T26268]  ? __fget_files+0x40/0x3a0
[ 1277.031174][T26268]  ? __fget_files+0x206/0x3a0
[ 1277.036370][T26268]  security_file_ioctl+0x9b/0x240
[ 1277.042163][T26268]  __x64_sys_ioctl+0xb7/0x200
[ 1277.047384][T26268]  do_syscall_64+0xcd/0x250
[ 1277.052399][T26268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1277.059054][T26268] RIP: 0033:0x7f12f1b85d29
[ 1277.063944][T26268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1277.085546][T26268] RSP: 002b:00007f12f29ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1277.094842][T26268] RAX: ffffffffffffffda RBX: 00007f12f1d75fa0 RCX: 00007f12f1b85d29
[ 1277.103650][T26268] RDX: ffffffffffffffff RSI: 000000000000ae03 RDI: 0000000000000003
[ 1277.112461][T26268] RBP: 00007f12f29ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1277.121387][T26268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1277.130674][T26268] R13: 0000000000000000 R14: 00007f12f1d75fa0 R15: 00007ffc6acea5b8
[ 1277.139709][T26268]  </TASK>
[ 1277.266534][T26268] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1277.446437][T26278] netlink: 334 bytes leftover after parsing attributes in process `syz.2.3913'.
[ 1277.886562][T26290] FAULT_INJECTION: forcing a failure.
[ 1277.886562][T26290] name failslab, interval 1, probability 0, space 0, times 0
[ 1277.913152][T26290] CPU: 1 UID: 0 PID: 26290 Comm: syz.5.3918 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1277.925098][T26290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1277.936208][T26290] Call Trace:
[ 1277.939857][T26290]  <TASK>
[ 1277.943124][T26290]  dump_stack_lvl+0x16c/0x1f0
[ 1277.948340][T26290]  should_fail_ex+0x497/0x5b0
[ 1277.953556][T26290]  ? fs_reclaim_acquire+0xae/0x150
[ 1277.959253][T26290]  should_failslab+0xc2/0x120
[ 1277.964465][T26290]  __kmalloc_noprof+0xce/0x4f0
[ 1277.969777][T26290]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1277.976362][T26290]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 1277.984545][T26290]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 1277.992449][T26290]  genl_family_rcv_msg_doit+0xbf/0x2f0
[ 1277.998539][T26290]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1278.005478][T26290]  ? genl_get_cmd+0x195/0x580
[ 1278.010795][T26290]  ? __radix_tree_lookup+0x21f/0x2c0
[ 1278.016674][T26290]  genl_rcv_msg+0x565/0x800
[ 1278.021718][T26290]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1278.027313][T26290]  ? __pfx_mptcp_pm_nl_get_addr_doit+0x10/0x10
[ 1278.034173][T26290]  netlink_rcv_skb+0x165/0x410
[ 1278.039483][T26290]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1278.045102][T26290]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1278.051089][T26290]  ? down_read+0xc9/0x330
[ 1278.055926][T26290]  ? __pfx_down_read+0x10/0x10
[ 1278.061248][T26290]  ? netlink_deliver_tap+0x1ae/0xca0
[ 1278.067132][T26290]  genl_rcv+0x28/0x40
[ 1278.071588][T26290]  netlink_unicast+0x53c/0x7f0
[ 1278.076895][T26290]  ? __pfx_netlink_unicast+0x10/0x10
[ 1278.082775][T26290]  ? __phys_addr_symbol+0x30/0x80
[ 1278.088372][T26290]  ? __check_object_size+0x488/0x710
[ 1278.094259][T26290]  netlink_sendmsg+0x8b8/0xd70
[ 1278.099583][T26290]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1278.105475][T26290]  sock_write_iter+0x4fe/0x5b0
[ 1278.110800][T26290]  ? __pfx_sock_write_iter+0x10/0x10
[ 1278.116783][T26290]  ? bpf_lsm_file_permission+0x9/0x10
[ 1278.122814][T26290]  ? security_file_permission+0x71/0x210
[ 1278.129174][T26290]  vfs_write+0x5ae/0x1150
[ 1278.134015][T26290]  ? __pfx_sock_write_iter+0x10/0x10
[ 1278.140091][T26290]  ? __pfx_vfs_write+0x10/0x10
[ 1278.145402][T26290]  ? __fget_files+0x40/0x3a0
[ 1278.150576][T26290]  ksys_write+0x207/0x250
[ 1278.155447][T26290]  ? __pfx_ksys_write+0x10/0x10
[ 1278.160869][T26290]  do_syscall_64+0xcd/0x250
[ 1278.165940][T26290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1278.172596][T26290] RIP: 0033:0x7ff610785d29
[ 1278.177510][T26290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1278.199149][T26290] RSP: 002b:00007ff6105f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1278.208472][T26290] RAX: ffffffffffffffda RBX: 00007ff610975fa0 RCX: 00007ff610785d29
[ 1278.217299][T26290] RDX: 00000000000000fd RSI: 0000000020000000 RDI: 0000000000000003
[ 1278.226120][T26290] RBP: 00007ff6105f9090 R08: 0000000000000000 R09: 0000000000000000
[ 1278.234961][T26290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1278.244218][T26290] R13: 0000000000000000 R14: 00007ff610975fa0 R15: 00007ffc1324cfe8
[ 1278.253070][T26290]  </TASK>
[ 1278.933659][T26310] mkiss: ax0: crc mode is auto.
[ 1279.164585][T26315] netlink: 146 bytes leftover after parsing attributes in process `syz.5.3924'.
[ 1279.226773][T26316] netlink: 'syz.4.3923': attribute type 21 has an invalid length.
[ 1279.303073][T26316] netlink: 326 bytes leftover after parsing attributes in process `syz.4.3923'.
[ 1279.460384][T26291] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1279.726362][T26327] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1280.421677][T26323] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1280.956873][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1282.556337][ T5851] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1287.231663][T26446] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3967'.
[ 1287.252243][T26446] team_slave_0: entered allmulticast mode
[ 1287.994443][T26471] FAULT_INJECTION: forcing a failure.
[ 1287.994443][T26471] name failslab, interval 1, probability 0, space 0, times 0
[ 1288.014573][T26471] CPU: 0 UID: 0 PID: 26471 Comm: syz.5.3966 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1288.026533][T26471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1288.037646][T26471] Call Trace:
[ 1288.041301][T26471]  <TASK>
[ 1288.044769][T26471]  dump_stack_lvl+0x16c/0x1f0
[ 1288.050088][T26471]  should_fail_ex+0x497/0x5b0
[ 1288.055309][T26471]  ? fs_reclaim_acquire+0xae/0x150
[ 1288.061005][T26471]  should_failslab+0xc2/0x120
[ 1288.066235][T26471]  __kmalloc_noprof+0xce/0x4f0
[ 1288.071558][T26471]  ? tomoyo_encode2+0x100/0x3e0
[ 1288.077175][T26471]  tomoyo_encode2+0x100/0x3e0
[ 1288.082398][T26471]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1288.088777][T26471]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1288.095071][T26471]  tomoyo_path_number_perm+0x248/0x5b0
[ 1288.101165][T26471]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1288.107545][T26471]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1288.114249][T26471]  ? __pfx_lock_release+0x10/0x10
[ 1288.119840][T26471]  ? trace_lock_acquire+0x14e/0x1f0
[ 1288.125645][T26471]  ? lock_acquire+0x2f/0xb0
[ 1288.130664][T26471]  ? __fget_files+0x40/0x3a0
[ 1288.135798][T26471]  ? __fget_files+0x206/0x3a0
[ 1288.141072][T26471]  security_file_ioctl+0x9b/0x240
[ 1288.146668][T26471]  __x64_sys_ioctl+0xb7/0x200
[ 1288.151890][T26471]  do_syscall_64+0xcd/0x250
[ 1288.156927][T26471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1288.163491][T26471] RIP: 0033:0x7ff610785d29
[ 1288.168791][T26471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1288.190428][T26471] RSP: 002b:00007ff6105f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1288.199758][T26471] RAX: ffffffffffffffda RBX: 00007ff610975fa0 RCX: 00007ff610785d29
[ 1288.208683][T26471] RDX: ffffffffffffffff RSI: 000000000000ae03 RDI: 0000000000000003
[ 1288.217623][T26471] RBP: 00007ff6105f9090 R08: 0000000000000000 R09: 0000000000000000
[ 1288.226450][T26471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1288.235272][T26471] R13: 0000000000000000 R14: 00007ff610975fa0 R15: 00007ffc1324cfe8
[ 1288.244114][T26471]  </TASK>
[ 1288.259314][T26471] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1288.281776][T26447] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1288.902803][T26478] netlink: 22 bytes leftover after parsing attributes in process `syz.1.3969'.
[ 1288.932788][T26478] FAULT_INJECTION: forcing a failure.
[ 1288.932788][T26478] name failslab, interval 1, probability 0, space 0, times 0
[ 1288.958574][T26478] CPU: 1 UID: 0 PID: 26478 Comm: syz.1.3969 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1288.970507][T26478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1288.981833][T26478] Call Trace:
[ 1288.985491][T26478]  <TASK>
[ 1288.988860][T26478]  dump_stack_lvl+0x16c/0x1f0
[ 1288.994065][T26478]  should_fail_ex+0x497/0x5b0
[ 1288.999264][T26478]  ? fs_reclaim_acquire+0xae/0x150
[ 1289.004955][T26478]  should_failslab+0xc2/0x120
[ 1289.010178][T26478]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[ 1289.016638][T26478]  ? __alloc_skb+0x2b3/0x380
[ 1289.021775][T26478]  __alloc_skb+0x2b3/0x380
[ 1289.026722][T26478]  ? __pfx___alloc_skb+0x10/0x10
[ 1289.032240][T26478]  ? genl_rcv_msg+0x4bd/0x800
[ 1289.037465][T26478]  netlink_ack+0x164/0xb20
[ 1289.042398][T26478]  netlink_rcv_skb+0x327/0x410
[ 1289.047799][T26478]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1289.053405][T26478]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1289.059391][T26478]  ? down_read+0xc9/0x330
[ 1289.064296][T26478]  ? __pfx_down_read+0x10/0x10
[ 1289.069617][T26478]  ? netlink_deliver_tap+0x1ae/0xca0
[ 1289.075471][T26478]  genl_rcv+0x28/0x40
[ 1289.079911][T26478]  netlink_unicast+0x53c/0x7f0
[ 1289.085190][T26478]  ? __pfx_netlink_unicast+0x10/0x10
[ 1289.091031][T26478]  ? __phys_addr_symbol+0x30/0x80
[ 1289.096593][T26478]  ? __check_object_size+0x488/0x710
[ 1289.102451][T26478]  netlink_sendmsg+0x8b8/0xd70
[ 1289.107735][T26478]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1289.113594][T26478]  sock_write_iter+0x4fe/0x5b0
[ 1289.118870][T26478]  ? __pfx_sock_write_iter+0x10/0x10
[ 1289.124738][T26478]  ? bpf_lsm_file_permission+0x9/0x10
[ 1289.130784][T26478]  ? security_file_permission+0x71/0x210
[ 1289.137117][T26478]  vfs_write+0x5ae/0x1150
[ 1289.141909][T26478]  ? __pfx_sock_write_iter+0x10/0x10
[ 1289.147766][T26478]  ? __pfx_vfs_write+0x10/0x10
[ 1289.153039][T26478]  ? __fget_files+0x40/0x3a0
[ 1289.158139][T26478]  ksys_write+0x207/0x250
[ 1289.162941][T26478]  ? __pfx_ksys_write+0x10/0x10
[ 1289.168318][T26478]  do_syscall_64+0xcd/0x250
[ 1289.173309][T26478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1289.179827][T26478] RIP: 0033:0x7f12f1b85d29
[ 1289.184734][T26478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1289.206425][T26478] RSP: 002b:00007f12f29ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1289.215722][T26478] RAX: ffffffffffffffda RBX: 00007f12f1d75fa0 RCX: 00007f12f1b85d29
[ 1289.224539][T26478] RDX: 00000000000000fd RSI: 0000000020000000 RDI: 0000000000000003
[ 1289.233365][T26478] RBP: 00007f12f29ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1289.242268][T26478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1289.251158][T26478] R13: 0000000000000000 R14: 00007f12f1d75fa0 R15: 00007ffc6acea5b8
[ 1289.259980][T26478]  </TASK>
[ 1289.450388][T26474] Process accounting paused
[ 1289.836308][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1290.130180][T26493] mkiss: ax0: crc mode is auto.
[ 1290.346189][T26510] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3979'.
[ 1291.646867][T26545] FAULT_INJECTION: forcing a failure.
[ 1291.646867][T26545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1291.720287][T26545] CPU: 0 UID: 0 PID: 26545 Comm: syz.5.3991 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1291.732223][T26545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1291.743338][T26545] Call Trace:
[ 1291.747002][T26545]  <TASK>
[ 1291.750276][T26545]  dump_stack_lvl+0x16c/0x1f0
[ 1291.755687][T26545]  should_fail_ex+0x497/0x5b0
[ 1291.760916][T26545]  _copy_from_user+0x2e/0xd0
[ 1291.766040][T26545]  move_addr_to_kernel+0x68/0x160
[ 1291.771648][T26545]  __sys_sendto+0x1ba/0x4f0
[ 1291.776778][T26545]  ? __pfx___sys_sendto+0x10/0x10
[ 1291.782417][T26545]  ? ksys_write+0x1ba/0x250
[ 1291.787432][T26545]  ? __pfx_ksys_write+0x10/0x10
[ 1291.792937][T26545]  __x64_sys_sendto+0xe0/0x1c0
[ 1291.798246][T26545]  ? do_syscall_64+0x91/0x250
[ 1291.803460][T26545]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1291.809250][T26545]  do_syscall_64+0xcd/0x250
[ 1291.814283][T26545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1291.820854][T26545] RIP: 0033:0x7ff610785d29
[ 1291.825790][T26545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1291.847638][T26545] RSP: 002b:00007ff6105d8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1291.857058][T26545] RAX: ffffffffffffffda RBX: 00007ff610976080 RCX: 00007ff610785d29
[ 1291.865992][T26545] RDX: 000000000000000c RSI: 0000000000000000 RDI: 0000000000000003
[ 1291.874833][T26545] RBP: 00007ff6105d8090 R08: 0000000020000440 R09: 0000000000000036
[ 1291.883657][T26545] R10: 00000000fffffff8 R11: 0000000000000246 R12: 0000000000000001
[ 1291.892486][T26545] R13: 0000000000000000 R14: 00007ff610976080 R15: 00007ffc1324cfe8
[ 1291.901331][T26545]  </TASK>
[ 1292.670276][T26568] mkiss: ax0: crc mode is auto.
[ 1292.798352][T26572] netlink: 326 bytes leftover after parsing attributes in process `syz.5.3998'.
[ 1292.880462][T26572] lo: left promiscuous mode
[ 1292.917047][T26572] lo: left allmulticast mode
[ 1294.016322][T26586] ptrace attach of "./syz-executor exec"[19372] was attempted by "./syz-executor exec"[26586]
[ 1294.493294][T26603] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4008'.
[ 1294.823112][T26608] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4010'.
[ 1295.129227][T26615] netlink: 'syz.2.4012': attribute type 21 has an invalid length.
[ 1295.155135][T26615] netlink: 326 bytes leftover after parsing attributes in process `syz.2.4012'.
[ 1295.326006][T26620] netlink: 'syz.5.4013': attribute type 1 has an invalid length.
[ 1297.492000][T26658] FAULT_INJECTION: forcing a failure.
[ 1297.492000][T26658] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1297.536268][T26658] CPU: 1 UID: 0 PID: 26658 Comm: syz.2.4023 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1297.548576][T26658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1297.559684][T26658] Call Trace:
[ 1297.563314][T26658]  <TASK>
[ 1297.566669][T26658]  dump_stack_lvl+0x16c/0x1f0
[ 1297.571958][T26658]  should_fail_ex+0x497/0x5b0
[ 1297.577291][T26658]  _copy_to_user+0x32/0xd0
[ 1297.582290][T26658]  simple_read_from_buffer+0xd0/0x160
[ 1297.588451][T26658]  proc_fail_nth_read+0x198/0x270
[ 1297.594064][T26658]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1297.600608][T26658]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1297.606753][T26658]  vfs_read+0x1df/0xbe0
[ 1297.611371][T26658]  ? __fget_files+0x1fc/0x3a0
[ 1297.616562][T26658]  ? __pfx___mutex_lock+0x10/0x10
[ 1297.622322][T26658]  ? __pfx_vfs_read+0x10/0x10
[ 1297.627797][T26658]  ? __fget_files+0x206/0x3a0
[ 1297.633114][T26658]  ksys_read+0x12b/0x250
[ 1297.637817][T26658]  ? __pfx_ksys_read+0x10/0x10
[ 1297.643129][T26658]  do_syscall_64+0xcd/0x250
[ 1297.648314][T26658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1297.655064][T26658] RIP: 0033:0x7fbfdab8473c
[ 1297.659972][T26658] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1297.682458][T26658] RSP: 002b:00007fbfdb942030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1297.691851][T26658] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab8473c
[ 1297.701119][T26658] RDX: 000000000000000f RSI: 00007fbfdb9420a0 RDI: 0000000000000004
[ 1297.709906][T26658] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1297.718791][T26658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1297.727592][T26658] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1297.736605][T26658]  </TASK>
[ 1297.785916][T26661] netlink: 'syz.5.4024': attribute type 21 has an invalid length.
[ 1297.833340][T26661] netlink: 326 bytes leftover after parsing attributes in process `syz.5.4024'.
[ 1298.410065][T26672] netlink: 22 bytes leftover after parsing attributes in process `syz.2.4027'.
[ 1300.035514][T26690] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1305.617630][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1305.633847][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1306.406015][T26736] netlink: 'syz.4.4048': attribute type 21 has an invalid length.
[ 1306.415427][T26736] netlink: 326 bytes leftover after parsing attributes in process `syz.4.4048'.
[ 1306.593666][T26744] mkiss: ax0: crc mode is auto.
[ 1306.957638][T26751] FAULT_INJECTION: forcing a failure.
[ 1306.957638][T26751] name failslab, interval 1, probability 0, space 0, times 0
[ 1306.996129][T26751] CPU: 1 UID: 0 PID: 26751 Comm: syz.1.4051 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1307.008152][T26751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1307.019259][T26751] Call Trace:
[ 1307.022918][T26751]  <TASK>
[ 1307.026192][T26751]  dump_stack_lvl+0x16c/0x1f0
[ 1307.031377][T26751]  should_fail_ex+0x497/0x5b0
[ 1307.036588][T26751]  ? fs_reclaim_acquire+0xae/0x150
[ 1307.042289][T26751]  should_failslab+0xc2/0x120
[ 1307.047477][T26751]  __kmalloc_noprof+0xce/0x4f0
[ 1307.052759][T26751]  ? tomoyo_encode2+0x100/0x3e0
[ 1307.058145][T26751]  tomoyo_encode2+0x100/0x3e0
[ 1307.063322][T26751]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1307.069552][T26751]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1307.075794][T26751]  tomoyo_path_number_perm+0x248/0x5b0
[ 1307.081855][T26751]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1307.088108][T26751]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1307.094768][T26751]  ? __pfx_lock_release+0x10/0x10
[ 1307.100340][T26751]  ? trace_lock_acquire+0x14e/0x1f0
[ 1307.106114][T26751]  ? lock_acquire+0x2f/0xb0
[ 1307.111219][T26751]  ? __fget_files+0x40/0x3a0
[ 1307.116305][T26751]  ? __fget_files+0x206/0x3a0
[ 1307.121505][T26751]  security_file_ioctl+0x9b/0x240
[ 1307.127063][T26751]  __x64_sys_ioctl+0xb7/0x200
[ 1307.132240][T26751]  do_syscall_64+0xcd/0x250
[ 1307.137337][T26751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1307.143884][T26751] RIP: 0033:0x7f12f1b85d29
[ 1307.148791][T26751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1307.170406][T26751] RSP: 002b:00007f12f29ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1307.179715][T26751] RAX: ffffffffffffffda RBX: 00007f12f1d75fa0 RCX: 00007f12f1b85d29
[ 1307.188637][T26751] RDX: 0000000000000000 RSI: 000000000000541b RDI: 0000000000000010
[ 1307.197586][T26751] RBP: 00007f12f29ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1307.206581][T26751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1307.215479][T26751] R13: 0000000000000000 R14: 00007f12f1d75fa0 R15: 00007ffc6acea5b8
[ 1307.224311][T26751]  </TASK>
[ 1307.298658][T26751] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1307.324201][T26746] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4049'.
[ 1307.596299][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1307.690221][T26729] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1308.792561][T26774] netlink: 'syz.2.4058': attribute type 21 has an invalid length.
[ 1308.886542][T26774] netlink: 326 bytes leftover after parsing attributes in process `syz.2.4058'.
[ 1309.019909][T26786] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[ 1309.050177][T26786] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[ 1311.284211][T26816] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4069'.
[ 1318.214662][T26885] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1318.346399][T26885] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1318.372672][T26885] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1318.396518][T26885] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1318.466310][T26885] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1319.079559][T26912] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1319.091779][T26912] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1319.101918][T26912] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1319.131415][T26912] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1319.147679][T26912] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1319.165875][T26912] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1319.227502][T26884] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1319.756236][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1320.292205][T26910] chnl_net:caif_netlink_parms(): no params data found
[ 1320.396309][ T5851] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1320.396358][   T54] Bluetooth: hci2: command 0x0406 tx timeout
[ 1320.536525][   T54] Bluetooth: hci1: command 0x0406 tx timeout
[ 1321.201564][   T54] Bluetooth: hci0: command tx timeout
[ 1321.766418][T26910] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1321.774283][T26910] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1321.809133][T26910] bridge_slave_0: entered allmulticast mode
[ 1321.825294][T26910] bridge_slave_0: entered promiscuous mode
[ 1321.845047][T26910] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1321.865404][T26910] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1321.874806][T26910] bridge_slave_1: entered allmulticast mode
[ 1321.883284][T26910] bridge_slave_1: entered promiscuous mode
[ 1322.134279][T26910] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1322.169803][T26910] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1322.341759][T26953] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1322.397877][T26910] team0: Port device team_slave_0 added
[ 1322.423464][T26910] team0: Port device team_slave_1 added
[ 1322.556252][   T54] Bluetooth: hci1: command 0x0406 tx timeout
[ 1322.600739][T26910] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1322.616328][T26910] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1322.669419][T26910] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1322.703085][T26910] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1322.721464][T26910] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1322.780806][T26910] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1323.047900][T26910] hsr_slave_0: entered promiscuous mode
[ 1323.117845][T26910] hsr_slave_1: entered promiscuous mode
[ 1323.140158][T26910] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1323.148728][T26910] Cannot create hsr debugfs directory
[ 1323.276379][   T54] Bluetooth: hci0: command tx timeout
[ 1323.973964][T26980] queue_state_write: unsupported operation ''
[ 1323.986503][T26980] queue_state_write: use 'run', 'start' or 'kick'
[ 1324.372471][T26910] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1324.757296][T26910] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1324.914994][T26910] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1325.081876][T26910] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1325.358925][   T54] Bluetooth: hci0: command tx timeout
[ 1326.261700][T26910] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1326.681809][T26910] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1326.732168][T26910] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1326.787049][T26910] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1327.199656][T27020] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4119'.
[ 1327.436422][   T54] Bluetooth: hci0: command tx timeout
[ 1327.455059][T27020] macsec0: entered allmulticast mode
[ 1327.468466][T27020] veth1_macvtap: entered allmulticast mode
[ 1327.575223][T26910] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1327.774179][T26910] 8021q: adding VLAN 0 to HW filter on device team0
[ 1327.831508][ T9990] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1327.839481][ T9990] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1327.901736][ T9990] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1327.909798][ T9990] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1327.931738][T27030] Invalid ELF header magic: != ELF
[ 1328.470868][T26910] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1329.084670][T26910] veth0_vlan: entered promiscuous mode
[ 1329.114340][T26910] veth1_vlan: entered promiscuous mode
[ 1329.164765][T26910] veth0_macvtap: entered promiscuous mode
[ 1329.221663][T26910] veth1_macvtap: entered promiscuous mode
[ 1329.307970][T26910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1329.356272][T26910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.382326][T26910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1329.399506][T26910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.414881][T26910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1329.427174][T26910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.444721][T26910] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1329.470955][T26910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1329.483757][T26910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.504481][T26910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1329.575503][T26910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.631904][T26910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1329.685191][T26910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1329.720081][T26910] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1329.732323][T26910] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1329.742184][T26910] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1329.751914][T26910] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1329.761936][T26910] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1330.138369][T25484] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1330.175719][T25484] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1330.292416][ T9992] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1330.312204][ T9992] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1331.390084][T27090] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1331.629259][T27075] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1332.367728][T27109] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4139'.
[ 1332.659681][T27119] FAULT_INJECTION: forcing a failure.
[ 1332.659681][T27119] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1332.675897][T27119] CPU: 0 UID: 0 PID: 27119 Comm: syz.1.4143 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1332.687814][T27119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1332.698919][T27119] Call Trace:
[ 1332.702547][T27119]  <TASK>
[ 1332.705796][T27119]  dump_stack_lvl+0x16c/0x1f0
[ 1332.710984][T27119]  should_fail_ex+0x497/0x5b0
[ 1332.716192][T27119]  _copy_to_iter+0x4a5/0x1400
[ 1332.721423][T27119]  ? __pfx__copy_to_iter+0x10/0x10
[ 1332.727097][T27119]  ? __virt_addr_valid+0x1a4/0x590
[ 1332.732785][T27119]  ? __virt_addr_valid+0x5e/0x590
[ 1332.738356][T27119]  ? __phys_addr_symbol+0x30/0x80
[ 1332.744014][T27119]  ? __check_object_size+0x488/0x710
[ 1332.749904][T27119]  seq_read_iter+0xd00/0x12b0
[ 1332.755114][T27119]  seq_read+0x39f/0x4e0
[ 1332.759725][T27119]  ? __pfx_seq_read+0x10/0x10
[ 1332.764946][T27119]  ? __pfx_seq_read+0x10/0x10
[ 1332.770219][T27119]  proc_reg_read+0x23d/0x330
[ 1332.775349][T27119]  ? __pfx_proc_reg_read+0x10/0x10
[ 1332.781038][T27119]  vfs_read+0x1df/0xbe0
[ 1332.785741][T27119]  ? __fget_files+0x1fc/0x3a0
[ 1332.790975][T27119]  ? __pfx___mutex_lock+0x10/0x10
[ 1332.796543][T27119]  ? __pfx_vfs_read+0x10/0x10
[ 1332.801732][T27119]  ? __fget_files+0x206/0x3a0
[ 1332.806932][T27119]  ksys_read+0x12b/0x250
[ 1332.811632][T27119]  ? __pfx_ksys_read+0x10/0x10
[ 1332.816919][T27119]  do_syscall_64+0xcd/0x250
[ 1332.822030][T27119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1332.829281][T27119] RIP: 0033:0x7f12f1b85d29
[ 1332.834271][T27119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1332.856453][T27119] RSP: 002b:00007f12f29ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1332.865967][T27119] RAX: ffffffffffffffda RBX: 00007f12f1d75fa0 RCX: 00007f12f1b85d29
[ 1332.875050][T27119] RDX: 0000000000000066 RSI: 00000000200002c0 RDI: 0000000000000003
[ 1332.883842][T27119] RBP: 00007f12f29ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1332.892647][T27119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1332.901445][T27119] R13: 0000000000000000 R14: 00007f12f1d75fa0 R15: 00007ffc6acea5b8
[ 1332.910258][T27119]  </TASK>
[ 1333.357669][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1333.925758][T27142] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4151'.
[ 1334.720636][T27164] Process accounting resumed
[ 1335.015604][T27168] mkiss: ax0: crc mode is auto.
[ 1335.915142][T27191] FAULT_INJECTION: forcing a failure.
[ 1335.915142][T27191] name failslab, interval 1, probability 0, space 0, times 0
[ 1335.988834][T27191] CPU: 1 UID: 0 PID: 27191 Comm: syz.1.4166 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1336.000774][T27191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1336.012373][T27191] Call Trace:
[ 1336.016029][T27191]  <TASK>
[ 1336.019328][T27191]  dump_stack_lvl+0x16c/0x1f0
[ 1336.024581][T27191]  should_fail_ex+0x497/0x5b0
[ 1336.029803][T27191]  ? fs_reclaim_acquire+0xae/0x150
[ 1336.035505][T27191]  should_failslab+0xc2/0x120
[ 1336.040826][T27191]  __kmalloc_noprof+0xce/0x4f0
[ 1336.046380][T27191]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1336.052641][T27191]  ? tomoyo_realpath_from_path+0xbf/0x710
[ 1336.059004][T27191]  tomoyo_realpath_from_path+0xbf/0x710
[ 1336.065275][T27191]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1336.071656][T27191]  tomoyo_path_number_perm+0x248/0x5b0
[ 1336.077763][T27191]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1336.078281][T27186] netlink: 146 bytes leftover after parsing attributes in process `syz.4.4164'.
[ 1336.084022][T27191]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1336.084121][T27191]  ? __pfx_lock_release+0x10/0x10
[ 1336.106496][T27191]  ? trace_lock_acquire+0x14e/0x1f0
[ 1336.112295][T27191]  ? lock_acquire+0x2f/0xb0
[ 1336.117315][T27191]  ? __fget_files+0x40/0x3a0
[ 1336.122430][T27191]  ? __fget_files+0x206/0x3a0
[ 1336.127644][T27191]  security_file_ioctl+0x9b/0x240
[ 1336.133239][T27191]  __x64_sys_ioctl+0xb7/0x200
[ 1336.138445][T27191]  do_syscall_64+0xcd/0x250
[ 1336.143478][T27191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1336.150034][T27191] RIP: 0033:0x7f12f1b85d29
[ 1336.154944][T27191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1336.176669][T27191] RSP: 002b:00007f12f29ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1336.185995][T27191] RAX: ffffffffffffffda RBX: 00007f12f1d75fa0 RCX: 00007f12f1b85d29
[ 1336.195141][T27191] RDX: 0000000000000000 RSI: 000000000000541b RDI: 000000000000000f
[ 1336.204082][T27191] RBP: 00007f12f29ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1336.212909][T27191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1336.221848][T27191] R13: 0000000000000000 R14: 00007f12f1d75fa0 R15: 00007ffc6acea5b8
[ 1336.231359][T27191]  </TASK>
[ 1336.267889][T27191] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1337.246213][T27215] mkiss: ax0: crc mode is auto.
[ 1339.306991][T27258] mkiss: ax0: crc mode is auto.
[ 1340.421614][T27274] netlink: 'syz.2.4189': attribute type 21 has an invalid length.
[ 1340.440693][T27274] netlink: 334 bytes leftover after parsing attributes in process `syz.2.4189'.
[ 1340.735038][T27280] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[ 1340.960459][T27282] pty pty67: ldisc open failed (-12), clearing slot 67
[ 1341.120408][T27291] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1341.661178][T27298] FAULT_INJECTION: forcing a failure.
[ 1341.661178][T27298] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1341.740224][T27298] CPU: 1 UID: 0 PID: 27298 Comm: syz.2.4196 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1341.752163][T27298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1341.763386][T27298] Call Trace:
[ 1341.767057][T27298]  <TASK>
[ 1341.770438][T27298]  dump_stack_lvl+0x16c/0x1f0
[ 1341.775946][T27298]  should_fail_ex+0x497/0x5b0
[ 1341.781196][T27298]  _copy_to_user+0x32/0xd0
[ 1341.786150][T27298]  simple_read_from_buffer+0xd0/0x160
[ 1341.792317][T27298]  proc_fail_nth_read+0x198/0x270
[ 1341.797936][T27298]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1341.804124][T27298]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1341.810305][T27298]  vfs_read+0x1df/0xbe0
[ 1341.814957][T27298]  ? __fget_files+0x1fc/0x3a0
[ 1341.820176][T27298]  ? __pfx___mutex_lock+0x10/0x10
[ 1341.825813][T27298]  ? __pfx_vfs_read+0x10/0x10
[ 1341.831045][T27298]  ? __fget_files+0x206/0x3a0
[ 1341.836269][T27298]  ksys_read+0x12b/0x250
[ 1341.841003][T27298]  ? __pfx_ksys_read+0x10/0x10
[ 1341.846321][T27298]  do_syscall_64+0xcd/0x250
[ 1341.851447][T27298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1341.858018][T27298] RIP: 0033:0x7fbfdab8473c
[ 1341.862925][T27298] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1341.885040][T27298] RSP: 002b:00007fbfdb942030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1341.894378][T27298] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab8473c
[ 1341.903344][T27298] RDX: 000000000000000f RSI: 00007fbfdb9420a0 RDI: 0000000000000004
[ 1341.912263][T27298] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1341.921196][T27298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1341.930039][T27298] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1341.938889][T27298]  </TASK>
[ 1342.876616][T27292] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1344.246316][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1344.780965][T27335] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[ 1345.434613][T27346] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4209'.
[ 1345.456606][T27346] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4209'.
[ 1345.936803][T27357] FAULT_INJECTION: forcing a failure.
[ 1345.936803][T27357] name failslab, interval 1, probability 0, space 0, times 0
[ 1345.964669][T27357] CPU: 0 UID: 0 PID: 27357 Comm: syz.1.4212 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1345.976648][T27357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1345.987990][T27357] Call Trace:
[ 1345.991676][T27357]  <TASK>
[ 1345.995165][T27357]  dump_stack_lvl+0x16c/0x1f0
[ 1346.000384][T27357]  should_fail_ex+0x497/0x5b0
[ 1346.005601][T27357]  ? fs_reclaim_acquire+0xae/0x150
[ 1346.011292][T27357]  should_failslab+0xc2/0x120
[ 1346.016505][T27357]  __kmalloc_noprof+0xce/0x4f0
[ 1346.021814][T27357]  ? tomoyo_encode2+0x100/0x3e0
[ 1346.027219][T27357]  tomoyo_encode2+0x100/0x3e0
[ 1346.032439][T27357]  tomoyo_realpath_from_path+0x1a7/0x710
[ 1346.038704][T27357]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1346.045182][T27357]  tomoyo_path_number_perm+0x248/0x5b0
[ 1346.051477][T27357]  ? tomoyo_path_number_perm+0x235/0x5b0
[ 1346.057762][T27357]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1346.064467][T27357]  ? __pfx_lock_release+0x10/0x10
[ 1346.070061][T27357]  ? trace_lock_acquire+0x14e/0x1f0
[ 1346.075970][T27357]  ? lock_acquire+0x2f/0xb0
[ 1346.081458][T27357]  ? __fget_files+0x40/0x3a0
[ 1346.086589][T27357]  ? __fget_files+0x206/0x3a0
[ 1346.091814][T27357]  security_file_ioctl+0x9b/0x240
[ 1346.097610][T27357]  __x64_sys_ioctl+0xb7/0x200
[ 1346.102830][T27357]  do_syscall_64+0xcd/0x250
[ 1346.107853][T27357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1346.114505][T27357] RIP: 0033:0x7f12f1b85d29
[ 1346.119439][T27357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1346.141266][T27357] RSP: 002b:00007f12f29ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1346.150585][T27357] RAX: ffffffffffffffda RBX: 00007f12f1d75fa0 RCX: 00007f12f1b85d29
[ 1346.159420][T27357] RDX: 0000000000000000 RSI: 000000000000541b RDI: 000000000000000f
[ 1346.168342][T27357] RBP: 00007f12f29ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1346.177209][T27357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1346.186108][T27357] R13: 0000000000000000 R14: 00007f12f1d75fa0 R15: 00007ffc6acea5b8
[ 1346.194961][T27357]  </TASK>
[ 1346.306130][T27357] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1346.618045][T27370] syz.1.4217 (27370): drop_caches: 0
[ 1348.723311][T27416] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1349.944847][T27398] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1350.976238][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1354.031603][T27492] FAULT_INJECTION: forcing a failure.
[ 1354.031603][T27492] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1354.181316][T27492] CPU: 0 UID: 0 PID: 27492 Comm: syz.2.4249 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1354.193353][T27492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1354.204486][T27492] Call Trace:
[ 1354.208148][T27492]  <TASK>
[ 1354.211418][T27492]  dump_stack_lvl+0x16c/0x1f0
[ 1354.216632][T27492]  should_fail_ex+0x497/0x5b0
[ 1354.221881][T27492]  _copy_to_user+0x32/0xd0
[ 1354.226841][T27492]  simple_read_from_buffer+0xd0/0x160
[ 1354.232807][T27492]  proc_fail_nth_read+0x198/0x270
[ 1354.238394][T27492]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1354.244544][T27492]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1354.250692][T27492]  vfs_read+0x1df/0xbe0
[ 1354.255300][T27492]  ? __fget_files+0x1fc/0x3a0
[ 1354.260483][T27492]  ? __pfx___mutex_lock+0x10/0x10
[ 1354.266057][T27492]  ? __pfx_vfs_read+0x10/0x10
[ 1354.271246][T27492]  ? __fget_files+0x206/0x3a0
[ 1354.276443][T27492]  ksys_read+0x12b/0x250
[ 1354.281146][T27492]  ? __pfx_ksys_read+0x10/0x10
[ 1354.286425][T27492]  do_syscall_64+0xcd/0x250
[ 1354.291420][T27492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1354.297944][T27492] RIP: 0033:0x7fbfdab8473c
[ 1354.302843][T27492] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1354.324459][T27492] RSP: 002b:00007fbfdb942030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1354.333772][T27492] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab8473c
[ 1354.342952][T27492] RDX: 000000000000000f RSI: 00007fbfdb9420a0 RDI: 0000000000000010
[ 1354.351752][T27492] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1354.360647][T27492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1354.369461][T27492] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1354.378397][T27492]  </TASK>
[ 1357.599607][T27502] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1358.087954][   T54] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1365.274202][T27642] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4288'.
[ 1365.309535][T27644] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1365.643373][T27650] udc usbip-vudc.0: soft-connect without a gadget driver
[ 1365.942353][T27653] mkiss: ax0: crc mode is auto.
[ 1366.250367][T27664] mkiss: ax0: crc mode is auto.
[ 1367.045548][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1367.053000][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1368.047069][T27685] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1368.072750][T27685] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1368.094238][T27679] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1368.115966][T27685] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1368.124952][T27685] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1368.163356][T27685] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1368.286638][T27685] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1368.667973][T27700] FAULT_INJECTION: forcing a failure.
[ 1368.667973][T27700] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1368.726151][T27700] CPU: 0 UID: 0 PID: 27700 Comm: syz.2.4302 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1368.738213][T27700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1368.749335][T27700] Call Trace:
[ 1368.752988][T27700]  <TASK>
[ 1368.756257][T27700]  dump_stack_lvl+0x16c/0x1f0
[ 1368.761469][T27700]  should_fail_ex+0x497/0x5b0
[ 1368.766699][T27700]  _copy_from_user+0x2e/0xd0
[ 1368.771848][T27700]  copy_msghdr_from_user+0x99/0x160
[ 1368.777758][T27700]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1368.784252][T27700]  ___sys_sendmsg+0xff/0x1e0
[ 1368.789391][T27700]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1368.795222][T27700]  ? __pfx_lock_release+0x10/0x10
[ 1368.800819][T27700]  ? trace_lock_acquire+0x14e/0x1f0
[ 1368.806628][T27700]  ? __fget_files+0x206/0x3a0
[ 1368.811888][T27700]  __sys_sendmsg+0x16e/0x220
[ 1368.817028][T27700]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1368.822753][T27700]  do_syscall_64+0xcd/0x250
[ 1368.827800][T27700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1368.834485][T27700] RIP: 0033:0x7fbfdab85d29
[ 1368.839421][T27700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1368.861315][T27700] RSP: 002b:00007fbfdb942038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1368.870619][T27700] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab85d29
[ 1368.879412][T27700] RDX: 0000000000040000 RSI: 0000000020000240 RDI: 0000000000000004
[ 1368.888222][T27700] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1368.897014][T27700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1368.905805][T27700] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1368.914617][T27700]  </TASK>
[ 1368.918025][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1369.360334][   T54] Bluetooth: hci2: command 0x0406 tx timeout
[ 1369.900250][T27724] netlink: 22 bytes leftover after parsing attributes in process `syz.2.4310'.
[ 1370.076387][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1370.156352][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1370.157102][ T5851] Bluetooth: hci1: command 0x0406 tx timeout
[ 1372.238471][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1372.806332][T27764] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1372.818475][T27766] can0: slcan on ptm0.
[ 1373.130653][T27765] can0 (unregistered): slcan off ptm0.
[ 1374.326383][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1374.545931][T27780] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1374.575120][T27780] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1374.611608][T27780] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1374.686386][T27780] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1376.325351][T27835] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4333'.
[ 1376.396365][   T54] Bluetooth: hci2: command 0x0406 tx timeout
[ 1376.665632][   T54] Bluetooth: hci1: command 0x0406 tx timeout
[ 1376.665661][ T5851] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1376.746363][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1378.226391][T27851] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1379.510819][T27888] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1048706].
[ 1379.916173][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1383.650495][T27940] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1384.636468][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1385.569053][T27964] mkiss: ax0: crc mode is auto.
[ 1386.574786][T27974] mkiss: ax0: crc mode is auto.
[ 1388.025490][T28010] openvswitch: netlink: IP tunnel attribute has 25 unknown bytes.
[ 1388.668374][T28018] mkiss: ax0: crc mode is auto.
[ 1392.186188][T28054] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1392.441701][T28071] mkiss: ax0: crc mode is auto.
[ 1393.676335][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1400.720706][T28176] snd_virmidi snd_virmidi.0: control 3:9:1025:IA�5��+-C��Y����΁�l�0S:5 is already present
[ 1402.500298][T28201] mkiss: ax0: crc mode is auto.
[ 1402.792175][T28191] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1404.716619][ T5851] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1406.015891][T28248] mkiss: ax0: crc mode is auto.
[ 1409.725895][T28286] Invalid ELF header magic: != ELF
[ 1410.190314][T28295] mkiss: ax0: crc mode is auto.
[ 1417.949925][T28406] mkiss: ax0: crc mode is auto.
[ 1419.161981][T28425] FAULT_INJECTION: forcing a failure.
[ 1419.161981][T28425] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1419.213060][T28425] CPU: 1 UID: 0 PID: 28425 Comm: syz.2.4496 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1419.225011][T28425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1419.236124][T28425] Call Trace:
[ 1419.239774][T28425]  <TASK>
[ 1419.243044][T28425]  dump_stack_lvl+0x16c/0x1f0
[ 1419.248265][T28425]  should_fail_ex+0x497/0x5b0
[ 1419.254185][T28425]  _copy_from_iter+0x29b/0x1400
[ 1419.259602][T28425]  ? trace_lock_acquire+0x14e/0x1f0
[ 1419.265393][T28425]  ? __alloc_skb+0x200/0x380
[ 1419.270522][T28425]  ? __pfx__copy_from_iter+0x10/0x10
[ 1419.276405][T28425]  ? __virt_addr_valid+0x1a4/0x590
[ 1419.282217][T28425]  ? __virt_addr_valid+0x5e/0x590
[ 1419.287843][T28425]  ? __phys_addr_symbol+0x30/0x80
[ 1419.293439][T28425]  ? __check_object_size+0x488/0x710
[ 1419.299330][T28425]  netlink_sendmsg+0x813/0xd70
[ 1419.304645][T28425]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1419.310565][T28425]  ____sys_sendmsg+0x9ae/0xb40
[ 1419.315882][T28425]  ? copy_msghdr_from_user+0x10b/0x160
[ 1419.322094][T28425]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1419.328093][T28425]  ___sys_sendmsg+0x135/0x1e0
[ 1419.333442][T28425]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1419.339259][T28425]  ? __pfx_lock_release+0x10/0x10
[ 1419.344856][T28425]  ? trace_lock_acquire+0x14e/0x1f0
[ 1419.350669][T28425]  ? __fget_files+0x206/0x3a0
[ 1419.355903][T28425]  __sys_sendmsg+0x16e/0x220
[ 1419.361147][T28425]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1419.366878][T28425]  do_syscall_64+0xcd/0x250
[ 1419.371941][T28425]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1419.378588][T28425] RIP: 0033:0x7fbfdab85d29
[ 1419.383498][T28425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1419.405705][T28425] RSP: 002b:00007fbfdb942038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1419.415026][T28425] RAX: ffffffffffffffda RBX: 00007fbfdad75fa0 RCX: 00007fbfdab85d29
[ 1419.423855][T28425] RDX: 0000000000040000 RSI: 0000000020000240 RDI: 0000000000000004
[ 1419.432721][T28425] RBP: 00007fbfdb942090 R08: 0000000000000000 R09: 0000000000000000
[ 1419.441553][T28425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1419.450519][T28425] R13: 0000000000000000 R14: 00007fbfdad75fa0 R15: 00007ffd35b1bd18
[ 1419.459367][T28425]  </TASK>
[ 1419.531401][T28434] syz.5.4498 (28434): drop_caches: 0
[ 1420.321227][T28439] mkiss: ax0: crc mode is auto.
[ 1421.256891][T28469] syz.4.4509 (28469): drop_caches: 0
[ 1421.782029][T28480] netlink: 22 bytes leftover after parsing attributes in process `syz.1.4512'.
[ 1422.398745][T28487] mkiss: ax0: crc mode is auto.
[ 1422.502164][T28491] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4515'.
[ 1423.237897][T28506] syz.5.4520 (28506): drop_caches: 0
[ 1424.226278][T28521] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4525'.
[ 1425.042223][T28540] syz.5.4531 (28540): drop_caches: 0
[ 1427.402172][T28546] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1427.508958][T28545] ------------[ cut here ]------------
[ 1427.515047][T28545] entry already in use
[ 1427.549666][T28545] WARNING: CPU: 0 PID: 28545 at drivers/net/netdevsim/udp_tunnels.c:26 nsim_udp_tunnel_set_port+0x2d3/0x390
[ 1427.563079][T28545] Modules linked in:
[ 1427.567969][T28545] CPU: 0 UID: 0 PID: 28545 Comm: syz.5.4533 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1427.580392][T28545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1427.591636][T28545] RIP: 0010:nsim_udp_tunnel_set_port+0x2d3/0x390
[ 1427.599131][T28545] Code: c3 cc cc cc cc e8 2d 7a ca fa 44 89 f7 e8 e5 14 b8 fa e9 ee fd ff ff e8 1b 7a ca fa 90 48 c7 c7 c0 84 0a 8c e8 fe 41 8b fa 90 <0f> 0b 90 90 4c 8d 73 04 41 bf f0 ff ff ff e9 fa fe ff ff e8 a5 ea
[ 1427.621305][T28545] RSP: 0018:ffffc90004c5fab8 EFLAGS: 00010282
[ 1427.628533][T28545] RAX: 0000000000000000 RBX: ffffc90004c5fbb0 RCX: ffffc9000ee49000
[ 1427.637488][T28545] RDX: 0000000000080000 RSI: ffffffff815a17d6 RDI: 0000000000000001
[ 1427.646829][T28545] RBP: ffff88806bc5c000 R08: 0000000000000001 R09: 0000000000000000
[ 1427.655689][T28545] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000
[ 1427.665075][T28545] R13: 0000000000000000 R14: 0000000017c10002 R15: 0000000000000000
[ 1427.674437][T28545] FS:  00007f26cba1e6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1427.684585][T28545] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1427.692114][T28545] CR2: 0000001b30889ff8 CR3: 000000002a046000 CR4: 00000000003526f0
[ 1427.701052][T28545] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1427.709955][T28545] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1427.719222][T28545] Call Trace:
[ 1427.723226][T28545]  <TASK>
[ 1427.726718][T28545]  ? __warn+0xea/0x3c0
[ 1427.731385][T28545]  ? preempt_schedule_notrace+0x62/0xe0
[ 1427.737819][T28545]  ? nsim_udp_tunnel_set_port+0x2d3/0x390
[ 1427.744425][T28545]  ? report_bug+0x3c0/0x580
[ 1427.749818][T28545]  ? handle_bug+0x54/0xa0
[ 1427.754799][T28545]  ? exc_invalid_op+0x17/0x50
[ 1427.760148][T28545]  ? asm_exc_invalid_op+0x1a/0x20
[ 1427.766119][T28545]  ? __warn_printk+0x1a6/0x350
[ 1427.771456][T28545]  ? nsim_udp_tunnel_set_port+0x2d3/0x390
[ 1427.778328][T28545]  ? nsim_udp_tunnel_set_port+0x2d2/0x390
[ 1427.784732][T28545]  __udp_tunnel_nic_device_sync.part.0+0x935/0xed0
[ 1427.792101][T28545]  ? __pfx___udp_tunnel_nic_device_sync.part.0+0x10/0x10
[ 1427.800017][T28545]  ? __pfx___mutex_lock+0x10/0x10
[ 1427.805685][T28545]  __udp_tunnel_nic_reset_ntf+0x3c1/0x520
[ 1427.812244][T28545]  nsim_udp_tunnels_info_reset_write+0xc2/0x110
[ 1427.819564][T28545]  full_proxy_write+0xfd/0x1b0
[ 1427.825358][T28545]  ? __pfx_full_proxy_write+0x10/0x10
[ 1427.831677][T28545]  vfs_write+0x24c/0x1150
[ 1427.837006][T28545]  ? __fget_files+0x1fc/0x3a0
[ 1427.842385][T28545]  ? __pfx___mutex_lock+0x10/0x10
[ 1427.848408][T28545]  ? __pfx_vfs_write+0x10/0x10
[ 1427.853757][T28545]  ? __fget_files+0x206/0x3a0
[ 1427.859101][T28545]  ksys_write+0x12b/0x250
[ 1427.863941][T28545]  ? __pfx_ksys_write+0x10/0x10
[ 1427.869832][T28545]  do_syscall_64+0xcd/0x250
[ 1427.874896][T28545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1427.881905][T28545] RIP: 0033:0x7f26cab85d29
[ 1427.886877][T28545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1427.908674][T28545] RSP: 002b:00007f26cba1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1427.918445][T28545] RAX: ffffffffffffffda RBX: 00007f26cad75fa0 RCX: 00007f26cab85d29
[ 1427.927810][T28545] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1427.936921][T28545] RBP: 00007f26cac01b08 R08: 0000000000000000 R09: 0000000000000000
[ 1427.945901][T28545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1427.955019][T28545] R13: 0000000000000000 R14: 00007f26cad75fa0 R15: 00007ffd3e8ebd38
[ 1427.963971][T28545]  </TASK>
[ 1427.967774][T28545] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1427.975849][T28545] CPU: 0 UID: 0 PID: 28545 Comm: syz.5.4533 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[ 1427.987748][T28545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1427.998840][T28545] Call Trace:
[ 1428.002466][T28545]  <TASK>
[ 1428.005728][T28545]  dump_stack_lvl+0x3d/0x1f0
[ 1428.010821][T28545]  panic+0x71d/0x800
[ 1428.015175][T28545]  ? __pfx_panic+0x10/0x10
[ 1428.020077][T28545]  ? show_trace_log_lvl+0x29d/0x3d0
[ 1428.025878][T28545]  ? nsim_udp_tunnel_set_port+0x2d3/0x390
[ 1428.032224][T28545]  check_panic_on_warn+0xab/0xb0
[ 1428.037719][T28545]  __warn+0xf6/0x3c0
[ 1428.042047][T28545]  ? preempt_schedule_notrace+0x62/0xe0
[ 1428.048222][T28545]  ? nsim_udp_tunnel_set_port+0x2d3/0x390
[ 1428.054781][T28545]  report_bug+0x3c0/0x580
[ 1428.059588][T28545]  handle_bug+0x54/0xa0
[ 1428.064406][T28545]  exc_invalid_op+0x17/0x50
[ 1428.069403][T28545]  asm_exc_invalid_op+0x1a/0x20
[ 1428.074780][T28545] RIP: 0010:nsim_udp_tunnel_set_port+0x2d3/0x390
[ 1428.081787][T28545] Code: c3 cc cc cc cc e8 2d 7a ca fa 44 89 f7 e8 e5 14 b8 fa e9 ee fd ff ff e8 1b 7a ca fa 90 48 c7 c7 c0 84 0a 8c e8 fe 41 8b fa 90 <0f> 0b 90 90 4c 8d 73 04 41 bf f0 ff ff ff e9 fa fe ff ff e8 a5 ea
[ 1428.103413][T28545] RSP: 0018:ffffc90004c5fab8 EFLAGS: 00010282
[ 1428.110218][T28545] RAX: 0000000000000000 RBX: ffffc90004c5fbb0 RCX: ffffc9000ee49000
[ 1428.119012][T28545] RDX: 0000000000080000 RSI: ffffffff815a17d6 RDI: 0000000000000001
[ 1428.127838][T28545] RBP: ffff88806bc5c000 R08: 0000000000000001 R09: 0000000000000000
[ 1428.136633][T28545] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000
[ 1428.145454][T28545] R13: 0000000000000000 R14: 0000000017c10002 R15: 0000000000000000
[ 1428.154266][T28545]  ? __warn_printk+0x1a6/0x350
[ 1428.159589][T28545]  ? nsim_udp_tunnel_set_port+0x2d2/0x390
[ 1428.165926][T28545]  __udp_tunnel_nic_device_sync.part.0+0x935/0xed0
[ 1428.173142][T28545]  ? __pfx___udp_tunnel_nic_device_sync.part.0+0x10/0x10
[ 1428.180926][T28545]  ? __pfx___mutex_lock+0x10/0x10
[ 1428.186509][T28545]  __udp_tunnel_nic_reset_ntf+0x3c1/0x520
[ 1428.192862][T28545]  nsim_udp_tunnels_info_reset_write+0xc2/0x110
[ 1428.199776][T28545]  full_proxy_write+0xfd/0x1b0
[ 1428.205059][T28545]  ? __pfx_full_proxy_write+0x10/0x10
[ 1428.211008][T28545]  vfs_write+0x24c/0x1150
[ 1428.215812][T28545]  ? __fget_files+0x1fc/0x3a0
[ 1428.221009][T28545]  ? __pfx___mutex_lock+0x10/0x10
[ 1428.226594][T28545]  ? __pfx_vfs_write+0x10/0x10
[ 1428.231920][T28545]  ? __fget_files+0x206/0x3a0
[ 1428.237126][T28545]  ksys_write+0x12b/0x250
[ 1428.241930][T28545]  ? __pfx_ksys_write+0x10/0x10
[ 1428.247320][T28545]  do_syscall_64+0xcd/0x250
[ 1428.252334][T28545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1428.258905][T28545] RIP: 0033:0x7f26cab85d29
[ 1428.263803][T28545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1428.285506][T28545] RSP: 002b:00007f26cba1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1428.294817][T28545] RAX: ffffffffffffffda RBX: 00007f26cad75fa0 RCX: 00007f26cab85d29
[ 1428.303641][T28545] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 1428.312477][T28545] RBP: 00007f26cac01b08 R08: 0000000000000000 R09: 0000000000000000
[ 1428.321275][T28545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1428.330202][T28545] R13: 0000000000000000 R14: 00007f26cad75fa0 R15: 00007ffd3e8ebd38
[ 1428.339049][T28545]  </TASK>
[ 1428.342663][T28545] Kernel Offset: disabled
[ 1428.347535][T28545] Rebooting in 86400 seconds..