last executing test programs:

6m50.409482879s ago: executing program 2 (id=684):
prctl$auto(0x2f, 0x2, 0x8, 0x0, 0x0)
prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0x7fffffffffffffff, 0x3, 0x7, 0xf) (async)
socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="1b0025bd7000fddbdf250300000004000380ee6265e2ba62945f2074b5521f4c6a68f459ebaea6b714e63726e43f05ff24e67d3507e7c485f386f7bb4079801469d79d41b55034703c4c48c5dced555fb22cd0a47bbacfd9a7d26bf5f4c80c9391d2def4de6aff706cc9b604dedd8cd63e1824be6786b2442b0761e76856b5589bc37cfcf0b5b917c717c8ab4e06e464c430596c1abada0011e820513dbab9fabebffd90ff6423bc69fec326b43fd21f77ed5479f812aa09c0b8e137c92967f99c1a85f36aa9a9e05c52db20cae59f8922ae9a683cdf2b88486299b08a33f0215f770493d870"], 0x18}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='N'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

6m50.192277237s ago: executing program 2 (id=685):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/ip_vs_conn\x00', 0x10100, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20a04, 0x0)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000031c0)='/dev/ttyua\x00', 0x109000, 0x0)
read$auto(r1, 0x0, 0x1)
read$auto(r1, 0x0, 0x800)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto_proc_reg_file_ops_compat_inode(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000004, 0x1010, r0, 0x7)
r2 = epoll_create$auto(0x3e)
epoll_ctl$auto(r2, 0x1, 0x8000000000000000, 0x0) (async)
epoll_ctl$auto(r2, 0x1, 0x8000000000000000, 0x0)

6m49.920143191s ago: executing program 2 (id=687):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/ram10/queue/minimum_io_size\x00', 0x42e00, 0x0) (async)
newfstatat$auto(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x6, 0x8, 0x3, 0x699, <r2=>0xee01, 0xffffffffffffffff, 0x0, 0xbb, 0x6, 0xffffffffffffffff, 0xff, 0x100000001, 0x7d10, 0xffffffff7fffffff, 0x5, 0x1a8, 0x800}, 0x1ff)
r3 = getgid() (async)
r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg1\x00', 0x82800, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120027", @ANYBLOB="5de1523353782950330a"], 0x1ac}, 0x1, 0x0, 0x0, 0x4004800}, 0x40000)
recvmmsg$auto(r5, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000140)="c48596dda5a72fc74d4a2340d1e5ed1e9a3625402333c91e491d1681bbaef0aeb600823566967c935f2dc9d7a36b9ed400c15888b89827d024dc2de502feea168e4cbec2f8c9bcee548142a65f54ad5e52fdee5b09cd163215", 0xcb}, 0x3, 0x0, 0x80000000, 0x7}, 0x80010009}, 0x7, 0x200, 0x0) (async)
r6 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f0000000080)={@siginfo_0_0={0x7, 0x2, 0xfffffffa, @_sigpoll={0x3, r4}}}, 0x7, &(0x7f0000000100)={{0x0, 0x8}, {0x0, 0x8}, 0x6, 0x9, 0x4, 0x9, 0x6, 0x3, 0x7, 0x2, 0x6, 0x365, 0x6, 0x7, 0x0, 0x9})
shmctl$auto_IPC_RMID(0x4e2c, 0x0, &(0x7f0000000280)={{0x8, 0xee00, r3, 0x9, 0x0, 0x7fffffff, 0x7}, 0xbb, 0x0, 0x4, 0x7ff, @inferred, @inferred=r6, 0x8, 0x0, &(0x7f00000001c0)="9fa2e9fc0c0130699c6abd100dd26fd5a7cb69a0bbd2e27d7f1e44e545ddcb274b1532a2c39c526e6a31964ae0deb045d40366d8b8eb", &(0x7f0000000200)="d0ddafd366ebf31f5aefc7a8df1de5be6f634380b48a3ebd69ff1d3e5af7bb3d868bfa455d2bc2befe4573d533450f768628e45a953b960287510334dc16dfa8f1bd4165c70fee9c7f0de0173b77318e103df336e5f29a3b7464f772"}) (async)
r7 = semctl$auto(0x0, 0xfffffffa, 0xfffff6d4, 0x9)
msgctl$auto_MSG_INFO(0xfffffffe, 0xc, &(0x7f00000001c0)={{0x100, r2, r3, 0x28, 0x10, 0xc7, 0x2}, &(0x7f0000000140)=0x2, &(0x7f0000000180)=0x8, 0x2b4e, 0x2, 0x8, 0xdba, 0x40, 0x8, 0x9, 0x6, @inferred=r7, @inferred=r0})
pread64$auto(r1, 0x0, 0x5ec, 0x6) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x80502, 0x0)
r8 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sda1\x00', 0x20800, 0x0)
r9 = getpgid(0xffffffffffffffff)
ioctl$auto_BLKTRACESETUP(r8, 0xc0481273, &(0x7f00000004c0)={"141a070000000000000060357fb9fe94f9d26800", 0x1, 0x4, 0x6, 0x0, 0xfffffffffffffffc, r9}) (async)
write$auto(0x3, 0x0, 0xfffffdef)

6m49.680173502s ago: executing program 2 (id=688):
socket(0x2, 0x3, 0x6)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0)
write$auto_fuse_dev_operations_fuse_i(r2, &(0x7f0000000440)="110000000500"/16, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r4, 0x2, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x1a46)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0xc0000080, 0x400, 0x9}]})
open_tree_attr$auto(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x100, &(0x7f00000000c0)={0x3, 0x0, 0x7fff, @raw=0x5}, 0x8)
mmap$auto(0x0, 0x2000d, 0x4080000200df, 0xeb1, 0x404, 0x8000)

6m48.501429446s ago: executing program 2 (id=691):
r0 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000200), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x44}, 0x80000)
wait4$auto(0x0, 0x0, 0x80000001, 0x0)
getuid()
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r0, 0x0, 0x15)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
syz_genetlink_get_family_id$auto_seg6(0x0, r0)
socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x0, 0x81, 0x0, 0x338)
syz_genetlink_get_family_id$auto_ethtool(0x0, r0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x5cb8b173, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/irq/12/hwirq\x00', 0x303080, 0x0)
write$auto(r1, 0x0, 0x81)
acct$auto(&(0x7f0000000000)='/dev/fb0\x00')
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)=""/112, 0x70)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto_PR_SET_SPECULATION_CTRL(0x35, 0xaaa2, 0xffffffffffffffff, 0x101, 0x5)

6m48.162576723s ago: executing program 2 (id=694):
r0 = socket(0xa, 0x5, 0x0)
setsockopt$auto(r0, 0x284, 0x6c5d, 0x0, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0)
r1 = io_uring_setup$auto(0x9, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'caif0\x00', <r2=>0x0})
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r1, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0x5f4, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_STATS_HEADER={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_STATS_SRC={0x8, 0x5, 0x3}, @ETHTOOL_A_STATS_SRC={0x8, 0x5, 0x3}, @ETHTOOL_A_STATS_GROUPS={0xc7, 0x3, 0x0, 0x1, [@nested={0x52, 0x89, 0x0, 0x1, [@typed={0x14, 0x37, 0x0, 0x0, @ipv6=@remote}, @typed={0xb, 0x12b, 0x0, 0x0, @str='TIPCv2\x00'}, @nested={0x4, 0xd5}, @nested={0x4, 0x71}, @nested={0x4, 0x97}, @generic="b4b0c9948abaaf716c255bb61ff2c4b3742de5f52456", @nested={0x4, 0x109}, @typed={0x8, 0x81, 0x0, 0x0, @u32=0x4}]}, @generic="4ebbb205555342138edb0bcaf0af5b490976cef223e8596c037fc913a9cd3f5cff70b1ea670974ee4cbaf4281c9b89e17cb0e0cb2193063f07a3db83a98974083f536c14d701", @typed={0x7, 0x85, 0x0, 0x0, @str=',(\x00'}, @generic="c1d85652517c9d600d99e04e5f22b08c9e6731e3a2799cbcd0f21b4840ec41761b"]}, @ETHTOOL_A_STATS_GROUPS={0x41c, 0x3, 0x0, 0x1, [@generic="cd1359705a13231f7164b54c9d99ba92390314f48b72805203049e739ea90d1e6e3c8a93ad90b5ddc71b8e9d1de0a111c8b3548c045da76cf9d9435478d0e32d42b3d819e67e1211120026397d5cc929954b9c1cde5664d1561e9a743a7d565ae70ba0b25a447d80858b03c9d7584a929e5385a776bcae5e7f967f7bf5230fea5f7e1f49de26b08424daa4cb568de8d85b1f9ed3b5e7dd8de9908d24195d0ec188e6592063", @generic="c6ebfef943d97c42f3813a205dbcbb3b6e3a2853bef9775d35d69d17c5e76297d1bf9dfd75f8be4816b1fac27de7cd605e1bde79aa024826a8b56e7c6144e6003b03f916d656cb657ecd84c68e889ba275938b88213ecc7341d6acb7dfb5f8da94e965bac6838bfec6317854824e02ee39d5038c50638fcf7ea9ca7e18d2cf82b53910d819919f8ea2729d5d1e0cdf64c3a3c1ba90553de8b006555a41c5b304b569617e49e4bccf135efddb08e376c61a1d3c04723041f915a9b95962c0650bd049f8b2212a990004630343c02e9ff228856a675693c69835373e4088d2d2ceb1ea1e05d4e453d1017f2bcb0afa856451100953e46d42", @nested={0xe6, 0x129, 0x0, 0x1, [@generic="b07fe8cdd23ba67d0bafddc41909b70b6ec270002a6816d631cb50493464b0ddc856cf776d578a3992b8812a2db15383c5f250b80b4d24217beb71d831d7d62c0e0261046f4ba572c91849a0a0e571eded601f4a45171f73f6a162186a1753565eac1c287dd3161d5a554154be382d00fd3dbb7c1acb6d53a55f3ec28120b427ba050d4802196ba59f8c093a93a7d9088a8d76799e396ff0d2c00daaab4795", @generic="564c262f03f947429bb7e017b04865f3b7e88a89e36cce57ee2c03e82bd06ad99e2cc27afd2a9e44cce21269106ebc975c2e48073d8ff7b1d3750b", @nested={0x4, 0x84}, @nested={0x4, 0x14a}]}, @nested={0x191, 0xc1, 0x0, 0x1, [@generic="d7e43f0c89b0e7f9aa218314ebfc3e27b946472f66f35b449f94bbd4451bba92c9bc9b7ea887fea8b3fb2f59be79df62cdd5aa8270df31af528bf84f1b7f3991676dc3f431d24f661a67645027606fc5f732ff932d89219867d16fe6303a9c8d38995a93535d1d54d8527ca91da69386b3aab334203da3eb90f7cafd733579c4307c681522460c23df3b93a06408566fabcfda2100d0", @nested={0x4, 0x39}, @generic="b76149a84d20da202f677922bf6806afb026f89391740116022c7642e651ba5bc151a6f11b3cbd2f5dba3c2dfc4123c7a8b6179b65c8a22047d528fbbdeb79dbec15beb3d9cf0bcf70b3dd85e05596a1e304085034f4350974877c928725f482b4a1f5c0e426b5a17cbbb7f0a7ac819d986e4915f2c9f41a363616953f2c1d4a8af094934d6c25ff222bd9e252c800fadb067a5acd599d19342ea3ccb1634c01758d6a64960062954b3489c1d23357171c775927524fba18e338f432ab6c743eae71f1a22a4f72403156316505a30ecb25e49c918204b61bd2799513ea10ec3c6cb54a6a543f14bcbd4d2b41c7e852f85386fb"]}]}, @ETHTOOL_A_STATS_GROUPS={0xe0, 0x3, 0x0, 0x1, [@typed={0xd9, 0xe4, 0x0, 0x0, @binary="abbc98343eab2959fe90fd951a79b3c0a07739cd4b8ff6f6d5856005f27ab6cbbf74fe53bda8910e54a45fba00132711d06377346b023f4767e7c353b1f1aa433fd02caebe4fc7342cdb4c9cfabf69fa6f76510ac7ff04b5e44edde47fbce868e43c9bfc2c6f071b6b92c2daa3cef8a810f7207a1be77a6ba4d71fe265515b7f0237b0b193645f9d7dbb14fc5e65a0fb5a2348876a237e719e51c33d7836b926764fdcb10ae6b562363ce513bfab76fcfb78ac1cfbe12099b67363a1cc5f52d274d3cf03e0771cecf2b3a4a5a2cc3541be0b47854d"}]}]}, 0x5f4}, 0x1, 0x0, 0x0, 0x90}, 0x880)
clone$auto(0x20003b4b, 0x8000000000000000, 0x0, 0x0, 0x1b0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_ADD(r4, &(0x7f0000002dc0)={0x0, 0x0, &(0x7f0000002d80)={&(0x7f0000000280)={0x14, r5, 0x1, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x404c045}, 0x0)
write$auto(r3, &(0x7f0000000240)=',-\t', 0x2000008008)
socket(0xa, 0x4, 0xad3)
r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0)
write$auto(0x3, 0x0, 0x100082)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r6, 0x40045010, 0x0)
socket(0xa, 0x5, 0x0) (async)
setsockopt$auto(r0, 0x284, 0x6c5d, 0x0, 0x4) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0) (async)
io_uring_setup$auto(0x9, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'caif0\x00'}) (async)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r1, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0x5f4, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_STATS_HEADER={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_STATS_SRC={0x8, 0x5, 0x3}, @ETHTOOL_A_STATS_SRC={0x8, 0x5, 0x3}, @ETHTOOL_A_STATS_GROUPS={0xc7, 0x3, 0x0, 0x1, [@nested={0x52, 0x89, 0x0, 0x1, [@typed={0x14, 0x37, 0x0, 0x0, @ipv6=@remote}, @typed={0xb, 0x12b, 0x0, 0x0, @str='TIPCv2\x00'}, @nested={0x4, 0xd5}, @nested={0x4, 0x71}, @nested={0x4, 0x97}, @generic="b4b0c9948abaaf716c255bb61ff2c4b3742de5f52456", @nested={0x4, 0x109}, @typed={0x8, 0x81, 0x0, 0x0, @u32=0x4}]}, @generic="4ebbb205555342138edb0bcaf0af5b490976cef223e8596c037fc913a9cd3f5cff70b1ea670974ee4cbaf4281c9b89e17cb0e0cb2193063f07a3db83a98974083f536c14d701", @typed={0x7, 0x85, 0x0, 0x0, @str=',(\x00'}, @generic="c1d85652517c9d600d99e04e5f22b08c9e6731e3a2799cbcd0f21b4840ec41761b"]}, @ETHTOOL_A_STATS_GROUPS={0x41c, 0x3, 0x0, 0x1, [@generic="cd1359705a13231f7164b54c9d99ba92390314f48b72805203049e739ea90d1e6e3c8a93ad90b5ddc71b8e9d1de0a111c8b3548c045da76cf9d9435478d0e32d42b3d819e67e1211120026397d5cc929954b9c1cde5664d1561e9a743a7d565ae70ba0b25a447d80858b03c9d7584a929e5385a776bcae5e7f967f7bf5230fea5f7e1f49de26b08424daa4cb568de8d85b1f9ed3b5e7dd8de9908d24195d0ec188e6592063", @generic="c6ebfef943d97c42f3813a205dbcbb3b6e3a2853bef9775d35d69d17c5e76297d1bf9dfd75f8be4816b1fac27de7cd605e1bde79aa024826a8b56e7c6144e6003b03f916d656cb657ecd84c68e889ba275938b88213ecc7341d6acb7dfb5f8da94e965bac6838bfec6317854824e02ee39d5038c50638fcf7ea9ca7e18d2cf82b53910d819919f8ea2729d5d1e0cdf64c3a3c1ba90553de8b006555a41c5b304b569617e49e4bccf135efddb08e376c61a1d3c04723041f915a9b95962c0650bd049f8b2212a990004630343c02e9ff228856a675693c69835373e4088d2d2ceb1ea1e05d4e453d1017f2bcb0afa856451100953e46d42", @nested={0xe6, 0x129, 0x0, 0x1, [@generic="b07fe8cdd23ba67d0bafddc41909b70b6ec270002a6816d631cb50493464b0ddc856cf776d578a3992b8812a2db15383c5f250b80b4d24217beb71d831d7d62c0e0261046f4ba572c91849a0a0e571eded601f4a45171f73f6a162186a1753565eac1c287dd3161d5a554154be382d00fd3dbb7c1acb6d53a55f3ec28120b427ba050d4802196ba59f8c093a93a7d9088a8d76799e396ff0d2c00daaab4795", @generic="564c262f03f947429bb7e017b04865f3b7e88a89e36cce57ee2c03e82bd06ad99e2cc27afd2a9e44cce21269106ebc975c2e48073d8ff7b1d3750b", @nested={0x4, 0x84}, @nested={0x4, 0x14a}]}, @nested={0x191, 0xc1, 0x0, 0x1, [@generic="d7e43f0c89b0e7f9aa218314ebfc3e27b946472f66f35b449f94bbd4451bba92c9bc9b7ea887fea8b3fb2f59be79df62cdd5aa8270df31af528bf84f1b7f3991676dc3f431d24f661a67645027606fc5f732ff932d89219867d16fe6303a9c8d38995a93535d1d54d8527ca91da69386b3aab334203da3eb90f7cafd733579c4307c681522460c23df3b93a06408566fabcfda2100d0", @nested={0x4, 0x39}, @generic="b76149a84d20da202f677922bf6806afb026f89391740116022c7642e651ba5bc151a6f11b3cbd2f5dba3c2dfc4123c7a8b6179b65c8a22047d528fbbdeb79dbec15beb3d9cf0bcf70b3dd85e05596a1e304085034f4350974877c928725f482b4a1f5c0e426b5a17cbbb7f0a7ac819d986e4915f2c9f41a363616953f2c1d4a8af094934d6c25ff222bd9e252c800fadb067a5acd599d19342ea3ccb1634c01758d6a64960062954b3489c1d23357171c775927524fba18e338f432ab6c743eae71f1a22a4f72403156316505a30ecb25e49c918204b61bd2799513ea10ec3c6cb54a6a543f14bcbd4d2b41c7e852f85386fb"]}]}, @ETHTOOL_A_STATS_GROUPS={0xe0, 0x3, 0x0, 0x1, [@typed={0xd9, 0xe4, 0x0, 0x0, @binary="abbc98343eab2959fe90fd951a79b3c0a07739cd4b8ff6f6d5856005f27ab6cbbf74fe53bda8910e54a45fba00132711d06377346b023f4767e7c353b1f1aa433fd02caebe4fc7342cdb4c9cfabf69fa6f76510ac7ff04b5e44edde47fbce868e43c9bfc2c6f071b6b92c2daa3cef8a810f7207a1be77a6ba4d71fe265515b7f0237b0b193645f9d7dbb14fc5e65a0fb5a2348876a237e719e51c33d7836b926764fdcb10ae6b562363ce513bfab76fcfb78ac1cfbe12099b67363a1cc5f52d274d3cf03e0771cecf2b3a4a5a2cc3541be0b47854d"}]}]}, 0x5f4}, 0x1, 0x0, 0x0, 0x90}, 0x880) (async)
clone$auto(0x20003b4b, 0x8000000000000000, 0x0, 0x0, 0x1b0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$auto_TIPC_NL_BEARER_ADD(r4, &(0x7f0000002dc0)={0x0, 0x0, &(0x7f0000002d80)={&(0x7f0000000280)={0x14, r5, 0x1, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x404c045}, 0x0) (async)
write$auto(r3, &(0x7f0000000240)=',-\t', 0x2000008008) (async)
socket(0xa, 0x4, 0xad3) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0) (async)
write$auto(0x3, 0x0, 0x100082) (async)
write$auto(0x3, 0x0, 0x100082) (async)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r6, 0x40045010, 0x0) (async)

6m32.96768659s ago: executing program 32 (id=694):
r0 = socket(0xa, 0x5, 0x0)
setsockopt$auto(r0, 0x284, 0x6c5d, 0x0, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0)
r1 = io_uring_setup$auto(0x9, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'caif0\x00', <r2=>0x0})
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r1, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0x5f4, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_STATS_HEADER={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_STATS_SRC={0x8, 0x5, 0x3}, @ETHTOOL_A_STATS_SRC={0x8, 0x5, 0x3}, @ETHTOOL_A_STATS_GROUPS={0xc7, 0x3, 0x0, 0x1, [@nested={0x52, 0x89, 0x0, 0x1, [@typed={0x14, 0x37, 0x0, 0x0, @ipv6=@remote}, @typed={0xb, 0x12b, 0x0, 0x0, @str='TIPCv2\x00'}, @nested={0x4, 0xd5}, @nested={0x4, 0x71}, @nested={0x4, 0x97}, @generic="b4b0c9948abaaf716c255bb61ff2c4b3742de5f52456", @nested={0x4, 0x109}, @typed={0x8, 0x81, 0x0, 0x0, @u32=0x4}]}, @generic="4ebbb205555342138edb0bcaf0af5b490976cef223e8596c037fc913a9cd3f5cff70b1ea670974ee4cbaf4281c9b89e17cb0e0cb2193063f07a3db83a98974083f536c14d701", @typed={0x7, 0x85, 0x0, 0x0, @str=',(\x00'}, @generic="c1d85652517c9d600d99e04e5f22b08c9e6731e3a2799cbcd0f21b4840ec41761b"]}, @ETHTOOL_A_STATS_GROUPS={0x41c, 0x3, 0x0, 0x1, [@generic="cd1359705a13231f7164b54c9d99ba92390314f48b72805203049e739ea90d1e6e3c8a93ad90b5ddc71b8e9d1de0a111c8b3548c045da76cf9d9435478d0e32d42b3d819e67e1211120026397d5cc929954b9c1cde5664d1561e9a743a7d565ae70ba0b25a447d80858b03c9d7584a929e5385a776bcae5e7f967f7bf5230fea5f7e1f49de26b08424daa4cb568de8d85b1f9ed3b5e7dd8de9908d24195d0ec188e6592063", @generic="c6ebfef943d97c42f3813a205dbcbb3b6e3a2853bef9775d35d69d17c5e76297d1bf9dfd75f8be4816b1fac27de7cd605e1bde79aa024826a8b56e7c6144e6003b03f916d656cb657ecd84c68e889ba275938b88213ecc7341d6acb7dfb5f8da94e965bac6838bfec6317854824e02ee39d5038c50638fcf7ea9ca7e18d2cf82b53910d819919f8ea2729d5d1e0cdf64c3a3c1ba90553de8b006555a41c5b304b569617e49e4bccf135efddb08e376c61a1d3c04723041f915a9b95962c0650bd049f8b2212a990004630343c02e9ff228856a675693c69835373e4088d2d2ceb1ea1e05d4e453d1017f2bcb0afa856451100953e46d42", @nested={0xe6, 0x129, 0x0, 0x1, [@generic="b07fe8cdd23ba67d0bafddc41909b70b6ec270002a6816d631cb50493464b0ddc856cf776d578a3992b8812a2db15383c5f250b80b4d24217beb71d831d7d62c0e0261046f4ba572c91849a0a0e571eded601f4a45171f73f6a162186a1753565eac1c287dd3161d5a554154be382d00fd3dbb7c1acb6d53a55f3ec28120b427ba050d4802196ba59f8c093a93a7d9088a8d76799e396ff0d2c00daaab4795", @generic="564c262f03f947429bb7e017b04865f3b7e88a89e36cce57ee2c03e82bd06ad99e2cc27afd2a9e44cce21269106ebc975c2e48073d8ff7b1d3750b", @nested={0x4, 0x84}, @nested={0x4, 0x14a}]}, @nested={0x191, 0xc1, 0x0, 0x1, [@generic="d7e43f0c89b0e7f9aa218314ebfc3e27b946472f66f35b449f94bbd4451bba92c9bc9b7ea887fea8b3fb2f59be79df62cdd5aa8270df31af528bf84f1b7f3991676dc3f431d24f661a67645027606fc5f732ff932d89219867d16fe6303a9c8d38995a93535d1d54d8527ca91da69386b3aab334203da3eb90f7cafd733579c4307c681522460c23df3b93a06408566fabcfda2100d0", @nested={0x4, 0x39}, @generic="b76149a84d20da202f677922bf6806afb026f89391740116022c7642e651ba5bc151a6f11b3cbd2f5dba3c2dfc4123c7a8b6179b65c8a22047d528fbbdeb79dbec15beb3d9cf0bcf70b3dd85e05596a1e304085034f4350974877c928725f482b4a1f5c0e426b5a17cbbb7f0a7ac819d986e4915f2c9f41a363616953f2c1d4a8af094934d6c25ff222bd9e252c800fadb067a5acd599d19342ea3ccb1634c01758d6a64960062954b3489c1d23357171c775927524fba18e338f432ab6c743eae71f1a22a4f72403156316505a30ecb25e49c918204b61bd2799513ea10ec3c6cb54a6a543f14bcbd4d2b41c7e852f85386fb"]}]}, @ETHTOOL_A_STATS_GROUPS={0xe0, 0x3, 0x0, 0x1, [@typed={0xd9, 0xe4, 0x0, 0x0, @binary="abbc98343eab2959fe90fd951a79b3c0a07739cd4b8ff6f6d5856005f27ab6cbbf74fe53bda8910e54a45fba00132711d06377346b023f4767e7c353b1f1aa433fd02caebe4fc7342cdb4c9cfabf69fa6f76510ac7ff04b5e44edde47fbce868e43c9bfc2c6f071b6b92c2daa3cef8a810f7207a1be77a6ba4d71fe265515b7f0237b0b193645f9d7dbb14fc5e65a0fb5a2348876a237e719e51c33d7836b926764fdcb10ae6b562363ce513bfab76fcfb78ac1cfbe12099b67363a1cc5f52d274d3cf03e0771cecf2b3a4a5a2cc3541be0b47854d"}]}]}, 0x5f4}, 0x1, 0x0, 0x0, 0x90}, 0x880)
clone$auto(0x20003b4b, 0x8000000000000000, 0x0, 0x0, 0x1b0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_ADD(r4, &(0x7f0000002dc0)={0x0, 0x0, &(0x7f0000002d80)={&(0x7f0000000280)={0x14, r5, 0x1, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x404c045}, 0x0)
write$auto(r3, &(0x7f0000000240)=',-\t', 0x2000008008)
socket(0xa, 0x4, 0xad3)
r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0)
write$auto(0x3, 0x0, 0x100082)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r6, 0x40045010, 0x0)
socket(0xa, 0x5, 0x0) (async)
setsockopt$auto(r0, 0x284, 0x6c5d, 0x0, 0x4) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0) (async)
io_uring_setup$auto(0x9, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'caif0\x00'}) (async)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r1, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0x5f4, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_STATS_HEADER={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_STATS_SRC={0x8, 0x5, 0x3}, @ETHTOOL_A_STATS_SRC={0x8, 0x5, 0x3}, @ETHTOOL_A_STATS_GROUPS={0xc7, 0x3, 0x0, 0x1, [@nested={0x52, 0x89, 0x0, 0x1, [@typed={0x14, 0x37, 0x0, 0x0, @ipv6=@remote}, @typed={0xb, 0x12b, 0x0, 0x0, @str='TIPCv2\x00'}, @nested={0x4, 0xd5}, @nested={0x4, 0x71}, @nested={0x4, 0x97}, @generic="b4b0c9948abaaf716c255bb61ff2c4b3742de5f52456", @nested={0x4, 0x109}, @typed={0x8, 0x81, 0x0, 0x0, @u32=0x4}]}, @generic="4ebbb205555342138edb0bcaf0af5b490976cef223e8596c037fc913a9cd3f5cff70b1ea670974ee4cbaf4281c9b89e17cb0e0cb2193063f07a3db83a98974083f536c14d701", @typed={0x7, 0x85, 0x0, 0x0, @str=',(\x00'}, @generic="c1d85652517c9d600d99e04e5f22b08c9e6731e3a2799cbcd0f21b4840ec41761b"]}, @ETHTOOL_A_STATS_GROUPS={0x41c, 0x3, 0x0, 0x1, [@generic="cd1359705a13231f7164b54c9d99ba92390314f48b72805203049e739ea90d1e6e3c8a93ad90b5ddc71b8e9d1de0a111c8b3548c045da76cf9d9435478d0e32d42b3d819e67e1211120026397d5cc929954b9c1cde5664d1561e9a743a7d565ae70ba0b25a447d80858b03c9d7584a929e5385a776bcae5e7f967f7bf5230fea5f7e1f49de26b08424daa4cb568de8d85b1f9ed3b5e7dd8de9908d24195d0ec188e6592063", @generic="c6ebfef943d97c42f3813a205dbcbb3b6e3a2853bef9775d35d69d17c5e76297d1bf9dfd75f8be4816b1fac27de7cd605e1bde79aa024826a8b56e7c6144e6003b03f916d656cb657ecd84c68e889ba275938b88213ecc7341d6acb7dfb5f8da94e965bac6838bfec6317854824e02ee39d5038c50638fcf7ea9ca7e18d2cf82b53910d819919f8ea2729d5d1e0cdf64c3a3c1ba90553de8b006555a41c5b304b569617e49e4bccf135efddb08e376c61a1d3c04723041f915a9b95962c0650bd049f8b2212a990004630343c02e9ff228856a675693c69835373e4088d2d2ceb1ea1e05d4e453d1017f2bcb0afa856451100953e46d42", @nested={0xe6, 0x129, 0x0, 0x1, [@generic="b07fe8cdd23ba67d0bafddc41909b70b6ec270002a6816d631cb50493464b0ddc856cf776d578a3992b8812a2db15383c5f250b80b4d24217beb71d831d7d62c0e0261046f4ba572c91849a0a0e571eded601f4a45171f73f6a162186a1753565eac1c287dd3161d5a554154be382d00fd3dbb7c1acb6d53a55f3ec28120b427ba050d4802196ba59f8c093a93a7d9088a8d76799e396ff0d2c00daaab4795", @generic="564c262f03f947429bb7e017b04865f3b7e88a89e36cce57ee2c03e82bd06ad99e2cc27afd2a9e44cce21269106ebc975c2e48073d8ff7b1d3750b", @nested={0x4, 0x84}, @nested={0x4, 0x14a}]}, @nested={0x191, 0xc1, 0x0, 0x1, [@generic="d7e43f0c89b0e7f9aa218314ebfc3e27b946472f66f35b449f94bbd4451bba92c9bc9b7ea887fea8b3fb2f59be79df62cdd5aa8270df31af528bf84f1b7f3991676dc3f431d24f661a67645027606fc5f732ff932d89219867d16fe6303a9c8d38995a93535d1d54d8527ca91da69386b3aab334203da3eb90f7cafd733579c4307c681522460c23df3b93a06408566fabcfda2100d0", @nested={0x4, 0x39}, @generic="b76149a84d20da202f677922bf6806afb026f89391740116022c7642e651ba5bc151a6f11b3cbd2f5dba3c2dfc4123c7a8b6179b65c8a22047d528fbbdeb79dbec15beb3d9cf0bcf70b3dd85e05596a1e304085034f4350974877c928725f482b4a1f5c0e426b5a17cbbb7f0a7ac819d986e4915f2c9f41a363616953f2c1d4a8af094934d6c25ff222bd9e252c800fadb067a5acd599d19342ea3ccb1634c01758d6a64960062954b3489c1d23357171c775927524fba18e338f432ab6c743eae71f1a22a4f72403156316505a30ecb25e49c918204b61bd2799513ea10ec3c6cb54a6a543f14bcbd4d2b41c7e852f85386fb"]}]}, @ETHTOOL_A_STATS_GROUPS={0xe0, 0x3, 0x0, 0x1, [@typed={0xd9, 0xe4, 0x0, 0x0, @binary="abbc98343eab2959fe90fd951a79b3c0a07739cd4b8ff6f6d5856005f27ab6cbbf74fe53bda8910e54a45fba00132711d06377346b023f4767e7c353b1f1aa433fd02caebe4fc7342cdb4c9cfabf69fa6f76510ac7ff04b5e44edde47fbce868e43c9bfc2c6f071b6b92c2daa3cef8a810f7207a1be77a6ba4d71fe265515b7f0237b0b193645f9d7dbb14fc5e65a0fb5a2348876a237e719e51c33d7836b926764fdcb10ae6b562363ce513bfab76fcfb78ac1cfbe12099b67363a1cc5f52d274d3cf03e0771cecf2b3a4a5a2cc3541be0b47854d"}]}]}, 0x5f4}, 0x1, 0x0, 0x0, 0x90}, 0x880) (async)
clone$auto(0x20003b4b, 0x8000000000000000, 0x0, 0x0, 0x1b0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$auto_TIPC_NL_BEARER_ADD(r4, &(0x7f0000002dc0)={0x0, 0x0, &(0x7f0000002d80)={&(0x7f0000000280)={0x14, r5, 0x1, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x404c045}, 0x0) (async)
write$auto(r3, &(0x7f0000000240)=',-\t', 0x2000008008) (async)
socket(0xa, 0x4, 0xad3) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0) (async)
write$auto(0x3, 0x0, 0x100082) (async)
write$auto(0x3, 0x0, 0x100082) (async)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r6, 0x40045010, 0x0) (async)

11.163887337s ago: executing program 1 (id=2072):
sysfs$auto(0x2, 0x4d, 0x0)
mmap$auto(0x80000001, 0x40000b, 0xffffffffffffffbd, 0xfffffffffffffffa, 0x2, 0x10808000)
mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x9d1f, 0x7fff, 0xe6, 0x13, 0xffffffffffffffff, 0x7f)
unshare$auto(0xc)
socket(0xa, 0x801, 0x84)
listen$auto(0x3, 0x0)

10.569927604s ago: executing program 1 (id=2074):
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
socket(0x15, 0x5, 0x0)
socket(0xa, 0x1, 0x84)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r0 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0x103001, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x3, 0x3a)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x29, 0x2, 0x0)
bpf$auto(0x5, &(0x7f0000000000)=@link_create={@map_fd, @target_fd, 0x1, 0x7, @tracing={0x1000, 0x7fffffff}}, 0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd}, 0xa3)
write$auto_tracing_mark_raw_fops_trace(r0, 0x0, 0x0)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9)
write$auto(0x6, 0x0, 0x100000001)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async)
socket(0x15, 0x5, 0x0) (async)
socket(0xa, 0x1, 0x84) (async)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0x103001, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x11, 0x3, 0x3a) (async)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x29, 0x2, 0x0) (async)
bpf$auto(0x5, &(0x7f0000000000)=@link_create={@map_fd, @target_fd, 0x1, 0x7, @tracing={0x1000, 0x7fffffff}}, 0x7) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd}, 0xa3) (async)
write$auto_tracing_mark_raw_fops_trace(r0, 0x0, 0x0) (async)
dup2$auto(0x5, 0x4) (async)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) (async)
write$auto(0x6, 0x0, 0x100000001) (async)

9.388318607s ago: executing program 1 (id=2077):
socket(0x2d, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x3, 0x89e2, 0x91)
close_range$auto(0x2, 0x8000, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/irq/2/smp_affinity_list\x00', 0x48041, 0x0)
write$auto(r0, 0x0, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000000), 0x1000, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x8100, 0x0)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/cmdline\x00', 0x40, 0x0) (async)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/cmdline\x00', 0x40, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x3, 0x66) (async)
madvise$auto(0x0, 0x3, 0x66)
prctl$auto_PR_SET_VMA(0x53564d41, 0x10, 0x694, 0x5, 0x7) (async)
prctl$auto_PR_SET_VMA(0x53564d41, 0x10, 0x694, 0x5, 0x7)
madvise$auto(0x100007fffffff, 0xfffffffffffffffb, 0x8)

9.254830096s ago: executing program 4 (id=2078):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x41, 0x0)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/smbd_send_credit_target\x00', 0x141001, 0x0)
iopl$auto(0x7)
write$auto(r1, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/ceph/parameters/disable_send_metrics\x00', 0xc0202, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
lsm_list_modules$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = getpgid(0x0)
r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001c80), 0x1, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GSTATUS(r3, 0xc0505405, &(0x7f0000001cc0)={{0x800, 0x10000, 0x5, 0x591, 0x7}, 0x6, 0x2, 0x6, "58e5218f9678796f35bf2803b1e21a54bddb4e340bb83340b899e51485a51568"})
rt_tgsigqueueinfo$auto(0xffffffffffffffff, r2, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={r2, 0x0, 0x401, 0x5, 0x3}}})
process_vm_readv$auto(r2, &(0x7f0000000000)={&(0x7f0000000080)="9d9062a85159809fa1dee0dccb28b80e1ea98635c1ac2df5ad4d0b287016fd1839943d4419684becfbdfa0092552da24daf6daf50026d0890ccc56e7b462651c3d8196498e2a59de5a01adb76b25", 0x6a5}, 0xda7, &(0x7f0000000180)={&(0x7f0000000140)="a1", 0x921}, 0x8, 0x48f1)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, 0x0)

8.933066248s ago: executing program 3 (id=2079):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r0 = socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r1, 0x8008551c, 0x38)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r0, 0x0, 0x20000001)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
kill$auto(0x0, 0x21)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_MPP(r0, 0x0, 0x880)
munmap$auto(0x8000, 0xffffffff)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0x400000eb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x10000000000048, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
io_uring_enter$auto(r2, 0x8001, 0x80, 0xf, &(0x7f0000000040)="6f6fdfc624482b6feebecf0c6f9b95dfda4c61249e97790decc0a3b8885108e61e06e4de584eb953737116e751be9b06447d68ceb2fbe4cab38f1f351737e8a1acfa09e4ad456d9b26a7f85a39540a7cb4f7adedabc87237db4dc316f7f529c11804c2db4dbf598c1ea68248f57e56", 0x5)
read$auto(r2, 0x0, 0xb4d3)

8.287305845s ago: executing program 0 (id=2082):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async)
read$auto_fake_panic_fops_(0xffffffffffffffff, 0x0, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r0 = socket(0xa, 0x5, 0x0) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
sysfs$auto(0x2, 0x4, 0x0)
r1 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r1, 0x84, 0x71, 0x0, 0x0) (async, rerun: 32)
r2 = socket(0xa, 0x801, 0x84) (async, rerun: 32)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
msgctl$auto_IPC_INFO(0x100, 0x3, &(0x7f00000012c0)={{0x632, <r4=>0xffffffffffffffff, <r5=>0xee00, 0x1, 0x5, 0x1, 0x80}, 0x0, 0x0, 0x1b, 0x7, 0x5, 0x7, 0x1, 0xdd34, 0x7, 0x8, @raw=0xffff, @inferred=<r6=>0x0})
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) (async, rerun: 64)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async, rerun: 64)
msgctl$auto_IPC_RMID(0xffff, 0x0, &(0x7f0000000280)={{0x80000004, r4, r5, 0xfffffffd, 0x9, 0xd, 0xb}, &(0x7f0000000200)=0x5, &(0x7f0000000240)=0x5, 0x1, 0x1, 0x6e, 0xe811, 0x5, 0x417a, 0x5, 0x10, @inferred=r6, @raw=0x7}) (async)
r7 = syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="88f5bd1b1d9b2a792da5f1ed19ecee75fbcc86cc9d8943182c8314fda84de6531c25c4a1c7bbd26b8a5e39a392b33379", @ANYRES16=r7, @ANYBLOB="0b032abd7000ffdbdf2504000000080002000600000008000600060000000800090000040000080006000200000008000500040000000800050000000000"], 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x4001) (async)
sendmsg$auto_NLBL_CIPSOV4_C_LIST(r0, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000a00)={0x388, r7, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_TAG={0x5, 0x3, 0x7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7fff}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x80000001}, @NLBL_CIPSOV4_A_TAGLST={0xc5, 0x4, 0x0, 0x1, [@generic="b2d73101f41e320d5402421fc4ece849fd99b9ca9f3b3ba8df84900b03f858c764686d64421ac90d325c4f23abc18c015b63815b1d0fd9c84caf420fdcae8265278eb818835f0d80d49829969758269874d9bef2e7c8647850735b254690f45050c771a97eea26f293b08774fa81729cf42642a5259e74418e90033b2a61e22be379b8107ae762b1b16d30a5e7d40e7fc1835fecac7762637b5003aa25ed7c2f1e935cbf61669b4efb085f887f27bb2d6764b7b5f9fca323e95432aeeff627590e"]}, @NLBL_CIPSOV4_A_MLSCAT={0x293, 0xb, 0x0, 0x1, [@nested={0x10, 0x120, 0x0, 0x1, [@nested={0x4, 0x6e}, @nested={0x4, 0x23}, @nested={0x4, 0xa4}]}, @generic="61bb221c143d5449547fa70010ebd32139c1a88e860114bf88b578c1061eb2ed7bb66d418bf02bdb9c08e92fe224da354262722efad8cc93cb7b394c0c6cc56f9e9ff7cd5b3129833429825eeceb55fbb8b5a68adc1843e7e6fa8ff585a07cd0850c69f728a79df098a1e791c90ad470985b247a299931fd2d857d3c5c547108f91604f3a3c2db56d817953adc1fc8898105a94a6b3d6b6ebcb9ab584fefff", @nested={0xc, 0xfa, 0x0, 0x1, [@nested={0x4, 0xd5}, @nested={0x4, 0x83}]}, @nested={0x14d, 0x5e, 0x0, 0x1, [@nested={0x4, 0xa1}, @typed={0x6, 0x4a, 0x0, 0x0, @str='^\x00'}, @generic="0d4255816161b743e2a220dd5395f51997f8b6cf7de51685b2b1d914f1ee75ef7e33b685a9a19a8d543b5694ad0a9f9a23312f4149064eae82529deb74c0e01aa6bdfce3149e86372cbb5563b252a9c1f6a64315fb8712f485bb449e4be8b28008b4b665efe5bd720f583bc18331684da443c1ba62f471653a67683db44944db042c9d4a87e29b9572f4b3f5c2616790d4dc8f704e9bdf7390b3ecdf91079540484e8a6e", @generic="b3baa2064f07433673e7f15e868c62d86630880e72faf683f11cc62c2de7199622cf60ed2060c71ff5eaac6fc6bfbc157f45ec0424a36ad588680fd2670ae931d90872bf6fd5e68e2eb613b9f46f2a4922550f4da0f49db18708cebcdb77e98f6907ad366c7a4f1e551b70a6d1d2640cdd305fd23f70af54567f3346b1d7dd6d96ad6dde4079a9a46eeb2257a0d9db4f8a847c9565", @nested={0x4, 0xb2}]}, @nested={0x84, 0xeb, 0x0, 0x1, [@generic, @nested={0x7d, 0x149, 0x0, 0x1, [@nested={0x4, 0xe1}, @generic="5d5202b37fa4209efe707a03bfb34b84de42e6bfaec4ab24d3117a945bf733284234aa88fd38788a775ff546dd49dc881b8d0dba6427b6e2dc7e81114ccca9b89ea28cc68994bd5160c0dc7c767a9b2f5571a4bf159e56a1985b06a46c26d912e247ddfc16824a2bbfa6c4f1f0d9bdf9ab4ecb9f7b"]}]}]}]}, 0x388}, 0x1, 0x0, 0x0, 0x40004}, 0x41) (async)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff) (async, rerun: 64)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x54) (async, rerun: 64)
get_robust_list$auto(0x0, 0x0, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0) (async, rerun: 64)
r8 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/kcm\x00', 0x480, 0x0) (rerun: 64)
read$auto(r8, &(0x7f0000000300)='2\x06J Nwe0\xbd\"\x8f\xe5h_b\xde\x19\xa5\x0e\xfa\xe0\xcb\xb7\xaceW\x1a\x1f\xae\xd8\xfe\x01Y\xd6\xba\xde3\xc7\xf8\x91\xda\xf6_%\xf30\xdc\x97<\xf3A\xa7\xb4\x8dj\xbd\x02\xb1}{e\xf64\xec4\x83,\xecp7j\xf8<\xc8x\xd4\xb0\x1d\b\xb0\x18\x01\x9e\x9et\x8aa\xe1\re\xcf\x8e\x02\xeeW\xf0z\vk#_\xdb\x15f8>;zM\xa95\x16\xe9l\xf5\xaa\xaa\x03\x18p\x0e\xde$\xc3\xa9\xac\xc7\x98\x05<\xef\xcd@z\fx}F\x93\xe1\xbd\xb3s\x80\xc1w\x1eP\xd0\xea\xab\x8f\xc7\a\xe6\xad\ni\n~-u)\x88\x97\xed\xa7\x9b\x0f\xef\x99\x13\xdc<\xd1{\br\xd6[\xd3\xa9-(KH\b\xdfJ\xdek\xef\xc9\xd7\n\x83m\x86\xf2\a\x8d\x19\xe0\\\xf0lg?\x98\xc8\x8e\xbd2?C\xa5\x8a\xe3\xc6\xd7\x00\x14n\xb8<\xab\x96\x8d\xa1\xf4\x87\xe5\a:z\xea\xcc\xa1\x8d\xae8\x12\xa6\xb9\xd99\xaa\xc5\x10\xad\xdd\x89\xdd\xbb\xf5\xd2Q\x92\xcd\xcc\x9f\x1a\xdbR\xeeL:\x87\xb3#\x00\x1bR\xf2\xe2/\xa3\x0e\x90\x98\x8c\xc0\xa4\xda', 0x805644) (async, rerun: 32)
setsockopt$auto(r2, 0x1, 0x3f, 0x0, 0xb) (rerun: 32)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r9) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0xffffffff, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0)

7.060143364s ago: executing program 4 (id=2083):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
r0 = getpid()
prctl$auto(0xa, 0x5376, r0, 0x4, 0x5)
madvise$auto(0x0, 0x240007, 0x19)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socket(0x2, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
io_uring_enter$auto(r2, 0x9, 0x820e, 0x29, 0x0, 0x18)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000)
ioctl$auto_SNDCTL_DSP_RESET(0xffffffffffffffff, 0x5000, &(0x7f0000000000)="10b1ab0c01e2eab37703c87b05de28e861e2d04b4579a46225")
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x8841}, 0x40000)
read$auto(r3, 0x0, 0x10001)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000080)="e27e0f710c957120d044a8abb90ad1d889b8a0527854a3ca15d210b91e6db6a14296bf235013d881cd1356a1cd42dbb5680bcf146d6c0ce4ec8987e6dfcd4de23afdb7e14b6b24cb8d", 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x5, 0x5, 0x200000002, 0x19, r1, 0x1003)
sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c)
ioctl$auto(0x3, 0x80000541b, 0x38)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)

7.056288667s ago: executing program 1 (id=2091):
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
r0 = socket(0x10, 0x2, 0x4)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x401, 0xfffffffffffffffd, 0xd4, 0x4, 0x28c, 0x0, 0x3, 0x368e, 0x9, {0xfffffffe, 0x10000}, 0x5, 0x6, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x7f, 0x9, 0xa747, 0xd, 0x804})
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x20282, 0x0)
fcntl$auto_F_SETSIG(0xffffffffffffffff, 0xa, 0x5)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/vlan/config\x00', 0x41900, 0x0)
pread64$auto(r3, 0x0, 0xe, 0x100000000007)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x84280, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0)
write$auto(r4, 0x0, 0x3)
syz_clone3(&(0x7f00000004c0)={0x82000280, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x58)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x4c03, 0xfffffffffffffffd)
bind$auto(0x3, 0x0, 0x6a)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55)
getsockopt$auto_SO_PEERCRED(r1, 0x8, 0x11, &(0x7f0000000040)='!\x00', &(0x7f00000000c0)=0x2)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)

6.912313253s ago: executing program 0 (id=2084):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
r1 = socket(0xa, 0x1, 0x84)
r2 = getsockopt$auto(r1, 0x84, 0x1b, 0x0, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x3, 0x5, 0x2000000000000002, 0x9, 0x8, 0x400000000ff, 0xa, 0x4, 0xaab, 0x5, 0x7]}, 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = socket(0x2, 0x1, 0x0)
sendmmsg$auto(r3, 0x0, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x801, 0x106)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
mmap$auto(0x80000000, 0x202000b, 0x9, 0xeb6, r2, 0x8000)
write$auto(0x3, 0x0, 0x100082)

5.451975874s ago: executing program 4 (id=2085):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/dummy_hcd.2/usb3/power/runtime_suspended_time\x00', 0x60000, 0x0)
open(0x0, 0x149080, 0x81)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x48041, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
bind$auto(0x3, 0x0, 0x6a)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000080))
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x40000)
syz_genetlink_get_family_id$auto_ovs_vport(0xfffffffffffffffe, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
write$auto(r1, 0x0, 0x8ed)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001080)=""/98, 0x62)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/uvcvideo/parameters/clock\x00', 0xa001, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
statmount$auto(0x0, &(0x7f0000000180)={0x315, 0xfffffffd, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x6, 0x3, 0x2, 0x9, 0x2, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0xfffff192, 0x0, 0x84}, 0x1fe, 0xd)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060006004000000006000600070000000a0010"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/gss_krb5_enctypes\x00', 0x1c9180, 0x0)
read$auto_tracing_stats_fops_trace(r3, 0x0, 0x0)
socket(0x2c, 0x3, 0x0)

5.283279087s ago: executing program 0 (id=2086):
close_range$auto(0x2, 0x8, 0x0)

5.175389594s ago: executing program 1 (id=2087):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
r1 = socket(0xa, 0x1, 0x84)
r2 = getsockopt$auto(r1, 0x84, 0x1b, 0x0, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x3, 0x5, 0x2000000000000002, 0x9, 0x8, 0x400000000ff, 0xa, 0x4, 0xaab, 0x5, 0x7]}, 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = socket(0x2, 0x1, 0x0)
sendmmsg$auto(r3, 0x0, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x801, 0x106)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, 0x0, 0x142, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
mmap$auto(0x80000000, 0x202000b, 0x9, 0xeb6, r2, 0x8000)
write$auto(0x3, 0x0, 0x100082)

4.784407759s ago: executing program 0 (id=2088):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
ioctl$auto(r1, 0x227f, 0xffffffffffffffff)
write$auto(r0, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) (async)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) (async)
ioctl$auto(r1, 0x227f, 0xffffffffffffffff) (async)
write$auto(r0, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) (async)

4.295157994s ago: executing program 3 (id=2089):
mmap$auto(0x0, 0x1, 0xe1, 0xeb1, 0x401, 0x8000)
openat$auto_ubifs_dir_operations_ubifs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci1/power\x00', 0x400, 0x0)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/dsp\x00', 0x769040, 0x0)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r0, r0, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video31\x00', 0x180, 0x0)
ioctl$auto(r1, 0xc0585611, r1)

4.063738832s ago: executing program 3 (id=2090):
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
r0 = socket(0x10, 0x2, 0x4)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x401, 0xfffffffffffffffd, 0xd4, 0x4, 0x28c, 0x0, 0x3, 0x368e, 0x9, {0xfffffffe, 0x10000}, 0x5, 0x6, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x7f, 0x9, 0xa747, 0xd, 0x804})
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x20282, 0x0)
fcntl$auto_F_SETSIG(0xffffffffffffffff, 0xa, 0x5)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/vlan/config\x00', 0x41900, 0x0)
pread64$auto(r3, 0x0, 0xe, 0x100000000007)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x84280, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0)
write$auto(r4, 0x0, 0x3)
syz_clone3(&(0x7f00000004c0)={0x82000280, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x58)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x4c03, 0xfffffffffffffffd)
bind$auto(0x3, 0x0, 0x6a)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55)
getsockopt$auto_SO_PEERCRED(r1, 0x8, 0x11, &(0x7f0000000040)='!\x00', &(0x7f00000000c0)=0x2)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)

3.895052511s ago: executing program 0 (id=2092):
socket(0x2, 0x801, 0x100)
mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x1ff, 0xdf, 0x200000810, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
write$auto(0x3, 0x0, 0x8003)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x29a02, 0x0)
socket(0xa, 0x3, 0x3a)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x2040, 0x0)
read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f00000010c0)=""/22, 0x16)
r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto_proc_single_file_operations_base(r1, 0x0, 0x0)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, 0x0, 0x40001)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r3 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
ppoll$auto(&(0x7f0000000000)={r3, 0x81, 0x9}, 0x9, &(0x7f0000000040)={0x1}, &(0x7f00000000c0), 0x8)
mq_timedsend$auto(r3, 0x0, 0x2000, 0x2, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GPARAMS(r3, 0x40485404, &(0x7f0000000100)={{0x521, 0x9, 0x7, 0x9, 0xffffffff}, 0x6, 0x3, "c5a22f1570cdb0fe850e4cfaaf82a9c429d59c884998450cc5a6b0e78c6fd6e0"})
msync$auto(0x1ffff002, 0x180000000000000, 0x0)
getsockopt$auto_SO_PASSCRED(r2, 0x40, 0x10, &(0x7f0000000000)='#!@\\$\x00', &(0x7f0000000040)=0x6)
msgsnd$auto(0x0, &(0x7f0000000080)={0x1, 0x6}, 0x8, 0x7)
mremap$auto(0x8000, 0x7, 0x1, 0x3, 0x20000000)
msgsnd$auto(0x5, &(0x7f00000000c0)={0xce12479, 0xb2}, 0x5, 0x6)
msgrcv$auto(0x0, 0x0, 0x4bd, 0x1, 0xf1)

3.860831977s ago: executing program 4 (id=2093):
mmap$auto(0x0, 0x2020009, 0xc, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto_PR_SET_VMA_ANON_NAME(0x1, 0x0, 0xffffffffffffffff, 0x0, 0x9)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/user\x00')
getsockname$auto(r0, &(0x7f0000000040)=@hci={0x1f, 0x1, 0x6b08a44121e17c81}, &(0x7f0000000080)=0x3)
mmap$auto(0xfffffffffffffffd, 0x5, 0x1, 0xeb1, 0xffffffffffffffff, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x3)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r1 = open(0x0, 0x22040, 0x75)
r2 = socket(0x10, 0x2, 0x0)
r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), r1)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'veth1_to_bridge\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'veth1_to_team\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'veth1_to_bridge\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'veth0_to_hsr\x00', <r7=>0x0})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r11=>0x0})
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r8, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010b27bd7000fda5c5a62073660008000300", @ANYRES32=r11], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4040080)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'hsr0\x00', <r12=>0x0})
r13 = io_uring_setup$auto(0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000000)={'ip_vti0\x00', <r14=>0x0})
sendto$auto(0x3, 0x0, 0x13, 0xfffffff8, &(0x7f0000000440)=@xdp={0x2c, 0xdd86, r14, 0x2f}, 0x22)
sendmsg$auto_NETDEV_CMD_NAPI_GET2(r2, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="020026bd7000fbdbdf250b00000008000100", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r5, @ANYBLOB="f3ff3000", @ANYRES32=r6, @ANYBLOB="08000100", @ANYRES32=r7, @ANYBLOB="08000100", @ANYRES32=r11, @ANYBLOB="08000100", @ANYRES32=r12, @ANYBLOB="08000100", @ANYRES32=r14, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB], 0x54}, 0x1, 0x0, 0x0, 0x30009044}, 0x80)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x101040, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xe2400, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r15 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r15, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x28)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/team_slave_1/max_desync_factor\x00', 0x90082, 0x0)

3.428664628s ago: executing program 3 (id=2094):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x48001}, 0x4040004)
lstat$auto(0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/slab/kmalloc-64/remote_node_defrag_ratio\x00', 0x2062, 0x0)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x12, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
r1 = socket(0x10, 0x100007, 0xc)
close_range$auto(0x2, 0x8, 0x0)
r2 = open(0x0, 0x22240, 0x155)
fgetxattr$auto(r2, 0x0, 0x0, 0xffffffff)
r3 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
socket(0x2, 0x1, 0x106)
ioctl$auto(r3, 0x400066c7, r1)
listen$auto(0x3, 0x81)
accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x2}, 0x800009}, 0x5, 0x20000000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dri/card1\x00', 0x16d102, 0x0)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c866}, 0x80c0)
socketpair$auto(0x0, 0xde8, 0xc7, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x10b142, 0x0)

3.326522453s ago: executing program 4 (id=2095):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x15f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async)
getsockopt$auto_SO_BUSY_POLL(r0, 0x7, 0x2e, &(0x7f0000000040)='#*\xb5:\x00', &(0x7f0000000080)=0x1) (async)
write$auto(0x3, 0x0, 0x100082)

2.972230873s ago: executing program 4 (id=2096):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
rseq$auto(0x0, 0xfffffff4, 0x0, 0x5)
msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004)
socket(0x15, 0xa, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r2, 0x4b47, 0x1)
unshare$auto(0x40000080)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001840), r3)
sendmsg$auto_MACSEC_CMD_UPD_TXSA(r3, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000002700)=ANY=[@ANYRES32=r0, @ANYRES16=r4, @ANYBLOB="010027bd7000fcdbdf25060000005c1102801c00e08014002f00fe8000000000000000000000000000bb0400aa80530dcdf320e3ea98ab7ec6dba64e5105ac8d2f0d60b31422773e50586c2294ed2edc231cf696d7931a58f9b7352d2518346b460274788f9bd6350c922da2c849f6cb801071b6222ad4fcbf7bd2b7bde23b229086b0133a8db8fba01503fc67ac3c0d8abca57bd30589222795d71ee24157ca88b44b9b6d63c3c568ab233b5a7e1b5c70e75279eb7c16a5573f10d9735e1b7524909a0b66df97c7ff773a09f89e7baa18a359fa8fc1949ee4ffda0460d041c34c86b2376bb0a3c4f1e24f4edd119bbf82b01606abffd8d10e9bf5e2220249cccd9fce470a1583b896cdeced0db3c73dc3e55bbf60aacf3632f31b90d773018e22495de0e81e4993292653ad73bd8dad442c81a38918919edc78f8cfaf31e136e3166cd2aed7addca42102ab77850d2fde64b248a50feb134636109bef93d97e3ea38da1470992a6043cee97ac08bebda02343eb04fdfba6819adbf7bef7d83e3591a096000cfd71a54259209b76e16e9828e3b3bee233aa70fca759ea58d66279a65d15278bdb7ad4ffb2ab0f11a52f3cbd1160e3e0ab934603bd249aa1b53000eb3d6990da684df3ba87558b725895c19dafd1f9cf8a94ccf8833b004fa51795f7ec5dabeaf31cac8879c0fb1a7f5c83761536054a93ad86ee27d394224b77c3330a1206d829e780ae39e747f2a664999e9422636140fcb16ea9877a68d1dbadf9392650bc010b029fcffe6f71d539a67a6e91f38f15a7d8bebffab76fa2255f1f341e732a9b7770c5610d6abf1c7998ef5da36b3b2f54e6c7629d9f27f4ab788e479b602e4e64ba68196b6b1b4576822eb030f9a4e40cb844171275cbcf21d7de6767cf17fb3983a551efc41204a53256758b2fac8bc44d4c91aa264804117cf8dbf8d636208302dc1f3c471935fa7f703c34a942e4d532092dd7c3447cec31b035a0fcba16b72673a6856e906d354171a2609464d627c8c5714538c695e91b72b1e95fb2ca2aaad0f5ebe83c5c30d43a72c062350c1ab183a75c0153e50811cf12839ac810fb59a92a8151b07ebb5f15adf68e1d7d80269087ac466267caf533aafb02fb294073ec77a125f612e97e07f3c8e7e55be60bdda32fceb03422c058b2da419653078a270d9d0c532e25d57525df1d4cfca91365a78410b38be919663668b9eef4c622d2b46f516765b891d44ea74630648058d6f8f0de6daa67bfdf0e984e43380e320bf28ad00278144d5881f08061b6d8b27b740120a648e8bc9e282363dc8930e54ff709303478e3762e408108c24967ba13780ecf2197749d0d12843e3be8e81120a1d9df81011d0f749b3a9df7609851026a647d46cfa2c7e108a26c91d67c6a22e60dbb1a352d11ff2670cb925c3a265129df44bf9fd6d73150994c3dafe01a642eb66da78221c52230f664455c56ff17cec42207e07fa79c7f3dd0f76a713baee6131f9ef72968a405a4ca8c90f639f72878f0cb0ea8e16b649fb2db01076e859d9e4a4e0cb899d68fb824d444d9f5b1faa1c058caf259e0882cb746337d584c4cee76b6172588ae899ac9f9eba534cb592fd7234213b1cafa9f64483b672027d46762b4a650e22e71022764ea10ccf206a9f97327d8338276f41b1bd8269d1389dec03c1fe1d71941945e93316ff748ed973024dff172bdcaa1b0562603cfd37ee42914971aa24e3d0b282248a02d293316a4afa3d8fc76dc6a529931e43da3f12f7682ec01f83d6d374ff85524c9fbcc0d56c02cb125edf7fda6ec165f17468e70f979ba1f471366f9dc3013e1e9473bf1fbea93b3d1fbc32cb07afc83c9a59c3c558f3d21f149fc14a2a71e3337acf31fd9b487139c198d645695b63ac62ee310b54dfbe2e2532bc7d5bef6b28a15e19ff12f561d88ab59298135d09d8320324c513f13290706d7174a35c75a0ee0f89250de810d5933a98b96f33a5e91ac6c7f26ea0cc01aa593e284bf2e4745c356a31897d766a89509b2987b6b7438d99013fc2898fd4e5961934017c5eb8c449899914c2639470e82fa8353595341acb83efe95dd70c5c06511d114d77edac7c45d51d47c57fab1e68c4e60317aac1fb304181dc3f1317d675ccc0971e35fb2a412d5bf6aa8a02160d014d8283b73c005fc41cea3a3e0666fffbfef53d0728f555d9291ee572c5997a535c41924028b211b73fd07a3286d36612411134e85340a1a8225320503f9ec69a5792388551ebaaf3a0fe19912c38959f7b3d0dd8cf00e27d05523d21433ed7805859f1016b8cc4e4774501b40b8a1be6edd8bcfb451e5555432bebbc68744a70eb5a70208f4f317314707eab15ed7741726e97355b9255d4a3492ee2c7f4546bd85c69dcce262a0f1244f703d384d2e87dd556126327b506bc61af2ddd68619da74951d38d9320e50a972afe7d0a94bf46ef88e1e9bdc906141a88f3bc05fc9590d7cf7a6ae2f2612f8245e866bb40ef03970fd6cb2c9ad7740f5f773a8718277a4300ef7e890654ff5a042c2e2b5bf63454720836158352121bf1561ab071f56e5f322a4f1737e722aab90a56964c0c87d65474e36a1c6ca16d6031a04d788fa55f551f27763819c6e272b4270303b62fb9dec84222b106f67c107870ac030450d12e7231a6008a18a746be67a2cc9a91867895752aac838da28221703e451396b605475518d3be59254af04c39be74f2ce9deaffc14ccccb95ba4043fc32d09cd61b0a238cadaaa4516754157461a05b33850b3ae8254d04742d81c9661ce63577ad881597fcd8f7ff022f8b4eed04fa1cea3fd306b82ecd1b7cbe2905b3f3f2fcc8a3a8b1a027b6e01c335cfa2e4888854c1bbfc5247bee95fcdf4901d4d895baea8d7fcc6c5d6103d4450d53bb29a3c90bc528f8222b1762ee85044dd3812bc9989cd3ba057cbff9184d5c6bdd8342d64cdea684fc553ef82a5428cf5b321f9f81166023abae38e0707818160a3926c385503978a39400716c74ca34144138b3611ad891f6ddf120aa26df70a7f1f98de85777878f2998fe2a1c47e20618ec23d6a14796e1dc5407e518f4d6509624cbae6887f6b1060189857a8f02d416072b53ffc6aab4fdcae526d678e99bae0daabeda0b1609b2fce182aa82ecf4ba0a4c44f097ffcc9c820638391be55d0acee262f2967aed4ff4d3ab7a93c5cfc86f6a4d698f0489dcaf4bc692ab904736529a322445fe864360d5c2d427a1560694f2521a41d9d436c0e5a9c0541bea52adebdd4db534d318cf0021b1ad6ee16262f5ac895859ed2cc242515b9f990d2a70b4ab824aacc0198738ecd44358f17e5b1250b7c198f62bd774d0811f69ae6ec92f664c430afb2fad9857ab0f304d848c27a303e94fcda2ee149d9a90263a48a5aacba7205bf408e9e276b4d7516606512bb8277ebf7eb1d4520870a293ee8dff3098ba0b63f39349b44985667d6605e589dac5eec00087e8743dac8d92b8f3cfe5e3a61287a1ab69db6da7827bedec8f3c2cf0801b90125a339fea5d5f77864072e1ba1b44835a4f0427a8776108e3c0d439c80b7a2946654fc3e7a4524ab296fd554d3acbd15562698c0a8eee70e40c6d9465b0e3a92aa4d839e8589951b14a2a0d8cf27716d8bafe67732671022fca5b73f2d5b20dcb07d12fad008a73eb8f4d357f901088ba483ef08a61538cf01739585433fac47709a37c39ce719189f3972e007ce604d4c1c4542992f4324419a3bce618bf685c2381dd64feca59e15d97fcdc0c0b7ae505dca991d863b756124e37af6125c8a3f2023fd320b4d4b8ecae0a5eac7b14bda9fea621400dd60e1d705708ddb7023c73ca3c519b60b68cc97ada143e925410f954e8f7e091e3f1b730f0bc48196592cc03f23d182a6dd77a679394881f452900845fe7cc537853ba171429510d10d762241d1c7ec7f73daf6f4cc1becc702acfeaca52fa787841edfaed1be7efb99c3a993ff4e42a8c8e9ecb47af7bbaa6960c3772ccc55d535bfd8f1a958ccf0398eee3277358737bc1123d4e1a6dc302029ea34bc372d052d345ccb6b48429fd37f60ec19c1ab889ef8a595dae52ca4e355cdc8793eb1488368c45b17fea512cd5ca6b84a8457d46e02ff6f1721aebc8376c45338ad3e02cbce6fa215525e9283d276728493ad59e281acdd0824c214f5fdceed6832c22232fcb4d55cbf7a296ec228a7fc59aee7c9f2d83ccaa03d8e6bfd4db653b81e8f532a46c7ec3540c35423586ef891e1aea999c82d821183c124f8542c8d98e8e20bf03328f025406c1197b0905027bbad1679452c11f8d44906a9baba97389e4cddcb78a352b81cf44689efd9747e5a37c4837c1910fa3999b13779840c260c2071bbabbbbd7bb0bcd00d9ac11c01c4ce393cedf4935da002942ad068b9ed461673ca54bf5598487197742629ae015bd82e9d09b19e170557f5f917209507a9bac964d2ebf1e91fbe4f30d86b4d02d4cc5c25089d2b3e6f129d7c421eebb1947ad013ba3e9d72418a6d0088be2341547cbac0a1c79b165be93607c17e1999cc7c5a5517322148d009858f3492894f4bdac16c6f94dc2b1fc8758b076a412b9dd228642da69e5597c350a31a2306405ebca42daa1487acecee13b1edf28b7fcc5710cd7d4223956e0d01451b515e98e63371d5d0d813b7d68b46b08213a450041b8fee7fb6b9ed69f810424d80d44e430619747919e73bde5d04dcd87f577e9c9953379388de919193c672769d558ecdea981735e4033e6f034cd852983ee2384a09daae3089a32fae78b76ca230a66cb9f06abe20db41604b1d9620cb585689e0f70d4bdb6f1c139f1a9f8d176fd7b071a3b5194ce2ac93891f12a70538a3d70a8c3516b1f5f82fa9a08baeba5473e9518bf3e79be479a362b4573544f6504682b1178b0c0fdeb52e6897f4db40c4226a75ffebf1174decb35e5257aed03b98ce4286c78792823ded241c4352ee99ff0bd528d344c74c121a3914f753d045422a8b14cfbf66e63f70c18924718639d8aed8bcab8666e6aa630bd032848320ba183025aa2c978ee1454d6f587f6c5337ce0d672a4957f77bd4f55df9a139f2de97315f3c654e27ff32805d4ad110382d46331b65159a6153b68b1a9e03363d71d8dacc3f250a43ab819bfd68a2c0fa904fc44f07c0285eec3657337104dbcef34a84690d11d9f736a6d50d6f954ab38d4d6374275cd6a8b5c5d69423993d7cf8212d4e71d6c893686397bad4c406fd7111477a29aa0f95fac4d471f468a89a895c1ce0b33d332dea3ad6db81e3465229751fbac829241535ab2780b88ae3e97eebcf48eadcda370b3ce437bea5b1a408f4f34a23f3c50294da69673a2f048313cf1e8f6670b709d77f1ac1d31a9425c1fdea2ddb6bd5c1cf767783083d0b52b63304efeeccce36ef2ff24062bbd3cffb7c85a0ba8757b75656d055d999aa092560333b0dc99feebacc781081ffe198af83c5db74c4113b1612e36e4fd650dd903d14b15d89ab086f55fba76cfd9b1c71e2aeaaa453dde0cff2311e100cf3c5151f3e4305c1ad9156fd78a4b445531fd50cbffd82f54db7543b83ad8cc714e74ce184f6fd05ed673c7c384d3179270a669139623375143896b53be95212a73f477becf5aab34d3e43737b4014250f14537ac7da018e7f947808d0f7a6d93acf3220836b96384638b4504bb4972762935b21a1e895cd886dc12b4e8c3cf64889af94290afc19ebf4ac356618218fa3edd59ec3062a4aea5a6b8cd74f06ca6bdba77214753aeb498bf0380d6c5e49012dbd2b33efe10619bbea4e824aef32f66c9e3d024d274c0995a47a7214a83901e98008f3e06f63524423c23a97949adaaa51abd79c07e0d610298c68f9bf38c36f556c7b252d2bef1d5635a10759d73ce1be251d618a9d7d5f2b942387688d5cb829664c5b7146ee3831b7066cfb63d11c4ce9d598cd7e9d00412d80fce90c9767411dc796d75168b698e3415d78883db9bfb932b2a38c130d378f0ccbf3b5d3123a749ba6ed45eff4025fd8e3d5ebda85b63a4d16408df08cc81c9694abc76ce1fcfd8be46f4ed5a45ab5887013be5d60f1d10400a100a65b80c9292c4af17f76435e77d594426758334c1c9450c62ddd9f5e007f3718b9c5f6413380198c741dccbb3e25f7cf8540efa0d7ff6092882640ec4f9e700ee1ad43ac4b4579338aef7737deed3022b5b48af8770621ac687300709c7ac7235aa544ec29c65c9058e88b07fa5e845fbc87e9ffbf18d2ba41c1e12ff43715f600000008000100", @ANYRESOCT=r1, @ANYBLOB, @ANYBLOB="7dad465a36c9f6f455827723ecd4be9b0b139ef1"], 0x1178}, 0x1, 0x0, 0x0, 0x200480c7}, 0x48084)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/netfs/caches\x00', 0x8340, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r5, &(0x7f0000001700)=""/4096, 0x1000)
r6 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
write$auto(r6, &(0x7f0000000340)='3\x00', 0x6)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000040), 0x301002, 0x0)
connect$auto(0xffffffffffffffff, &(0x7f0000000040)=@ethernet={0x306, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, 0x54)
openat$auto_ftrace_event_format_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/format\x00', 0x40, 0x0)
pread64$auto(r2, 0x0, 0x1ffffffef, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x84, 0x72, 0x0, &(0x7f0000000100)=0x22a)
clone$auto(0x3, 0x0, &(0x7f0000006a00), &(0x7f0000006a40)=0x49fb, 0x8)
r7 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0)
ioctl$auto_I2C_RETRIES(r7, 0x701, &(0x7f00000000c0))
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), r0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
write$auto(0x3, 0x0, 0x100082)

2.323626804s ago: executing program 3 (id=2097):
close_range$auto(0x2, 0x8, 0x0)

2.106674062s ago: executing program 3 (id=2098):
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
r0 = socket(0x10, 0x2, 0x4)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x401, 0xfffffffffffffffd, 0xd4, 0x4, 0x28c, 0x0, 0x3, 0x368e, 0x9, {0xfffffffe, 0x10000}, 0x5, 0x6, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x7f, 0x9, 0xa747, 0xd, 0x804})
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x20282, 0x0)
fcntl$auto_F_SETSIG(0xffffffffffffffff, 0xa, 0x5)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/vlan/config\x00', 0x41900, 0x0)
pread64$auto(r3, 0x0, 0xe, 0x100000000007)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x84280, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0)
write$auto(r4, 0x0, 0x3)
syz_clone3(&(0x7f00000004c0)={0x82000280, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x58)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x4c03, 0xfffffffffffffffd)
bind$auto(0x3, 0x0, 0x6a)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55)
getsockopt$auto_SO_PEERCRED(r1, 0x8, 0x11, &(0x7f0000000040)='!\x00', &(0x7f00000000c0)=0x2)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)

402.979249ms ago: executing program 1 (id=2100):
read$auto(0xffffffffffffffff, 0x0, 0x20)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810005, 0xffb, 0x12, 0x3, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x11, 0x2, 0x73)
pipe2$auto(0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
open(0x0, 0x22240, 0x155)
io_uring_setup$auto(0x6, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, 0x0, 0x1, 0x0)
openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x121080, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x12480, 0x0)
r0 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/projid_map\x00', 0x8801, 0x0)
pidfd_send_signal$auto_PIDFD_SIGNAL_PROCESS_GROUP(r0, 0x59, 0x0, 0x4)
socket(0x2, 0x5, 0x0)
openat$auto_stat_fops_(0xffffffffffffff9c, 0x0, 0x202802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc2dc0, 0x0)
socket(0x11, 0x2, 0x14)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x101e81, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0)
r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_MACSEC_CMD_ADD_RXSA(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000008440)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0008000000fbdbdf250700000008000100", @ANYRES32=0x0, @ANYBLOB="1c0003801800058004000a8004001b0004006d80080082007f000001"], 0x38}, 0x1, 0x0, 0x0, 0x24048800}, 0x800)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
write$auto(0x3, 0x0, 0x100082)
ppoll$auto(0x0, 0x7f, 0x0, 0x0, 0x8)

0s ago: executing program 0 (id=2101):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptypf\x00', 0x100, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000000040)="2426ad8eb3f76e0015ed4465645a4f94d4bf4d0fd42e32f3b8a7da7325c43c9c0a28449c66e590f8af67780637118b93276e9ab25ea07df74e7425bcc9ba0a7ead5e1f613c54252b8b3ccb0f2fcc281a2f9a74d947a1aa9a", 0x58)
r2 = bpf$auto_BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)=@link_detach={<r3=>r0}, 0x4)
close_range$auto(r1, r3, 0x9)
ioctl$auto_PPPIOCSMRU(r2, 0x40047452, &(0x7f0000000180)=0x1ff)
r4 = memfd_create$auto(&(0x7f00000001c0)='\x00', 0x82)
r5 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000240), r3)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8290}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x28, r5, 0x0, 0x70bd25, 0x25dfdbfe, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x4}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xfffffffffffffffa}]}, 0x28}}, 0x0)
r6 = open_by_handle_at$auto(r3, &(0x7f0000000340)={0xee, 0x3, "f56caad2e3d7cb004e455704860143fe10bf6fa43ace95b8f5564ab33823713acab1969318c7cf7d2ee75c39bae739f32c4a302f3004023feb0147be640bddfb063b5c5dac0aa50ff86b993c37928fc2b5742002464f5efeb1acfe1acdc903ea3afcf1e23f22811dd522cf521f24aa95654c648a8e3ab001764f6b9474da634c5eb29bef6ff9211b0cd271268eede6f0ee1736d173b354346d260e0947073093b188bff047c5557c91e4b7f658a9a7b7ba3784139850a632de66946e7ff0499a6fcff97760b293ae1802f33d53e337e5d57d519f179c630c4c1ab0d0c2eebe02d252ec92092c1bff8ba1230bc4a8"}, 0x1)
kexec_load$auto(0x7, 0x998, &(0x7f0000000480)={@buf=&(0x7f0000000440)="e70ac299e788f6bceb524b2e36f9a3be76d3710165bb54593a78b76553d7d8963b531e78319c594bec69", 0x78980, 0x5, 0x3}, 0x3)
getsockopt$auto_SO_MARK(r4, 0x4, 0x24, &(0x7f00000004c0)='[/$$\x00', &(0x7f0000000500)=0xffffffb1)
sendmmsg$auto(r0, &(0x7f00000007c0)={{&(0x7f0000000540)="e2db6b16f1912e47f600aed7a103656152cff39f0a500a242ae284ae927f526a43c9e31fe557a8dc9a6b2b54cb81e7c69d497aeb66c0014d7da4fa65d011a9d73416038e0f860f911516bae6fbdde6c3c1dea77f735af8962fe35938eb4509eb17fb9e9d5df8b4ad7e7b6b6403c6a6ead9f85afcbfc16e38df192ce00fab7b0d137a8015a3d7daf75e1bab8c2babda4703859615eb4791d3560a0f586768d4fdde7718de0e2f38b60a0bfa2a5a3d56edde7069969962b9962510d807f6ba8d973f94454042465c8b06e67ba87bb5365b07", 0x8, &(0x7f0000000700)={&(0x7f0000000640)="87168bbf1c03b7ff1a706a55977bd8c72719d800bb7bf231995287cd78561aa01c605070dfc7707ef479549ea000b3666ceff837182dc1e9aaaae945d9ee6802de39a103ec34959256d1328b0c98c88836bf80b5cddbaf164d6ef31751f0e5132dfaee0940a2e90deca8789d13be1b1a47a7e49fcd038c1756972164325662b139c0504b47417051fc8fa9f5c2c58d0a09", 0x15}, 0x6, &(0x7f0000000740)="da3b6b615c521afd775e8d4d8f6ae6d07780e649c091976b6c54d8cffda6878fd05007c262466330eddf542cc9f352dcff534754aac736624b5d910bc6f711227609ee42df00d88ef5057ad475e2b3138a5814cfdada48a720a16bb045cce36a674fae5040ecfc0dbb75", 0xfffffffffffffff7, 0x3cc}, 0x3}, 0x7e, 0x5)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000840), r3)
sendmsg$auto_NL80211_CMD_DEL_INTERFACE(r6, &(0x7f0000000940)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x4c, r7, 0x800, 0x70bd27, 0x25dfdbfe, {}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3}, @NL80211_ATTR_MLD_ADDR={0x12, 0x13a, "51d51b9e369dcca2f22c6c0b0166"}, @NL80211_ATTR_WIPHY_ANTENNA_TX={0x8, 0x69, 0x48c}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0xd79}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0xe6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000050}, 0x40000)
r8 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f00000009c0), r0)
capset$auto(&(0x7f0000000a00)={0x80000001, <r9=>0xffffffffffffffff}, &(0x7f0000000a40)={0x3d1, 0xdd2, 0xe})
sendmsg$auto_OVS_METER_CMD_GET(r6, &(0x7f0000000d00)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000a80)={0x22c, r8, 0x300, 0x70bd2b, 0x25dfdbfe, {}, [@OVS_METER_ATTR_BANDS={0x210, 0x4, 0x0, 0x1, [@typed={0x14, 0x90, 0x0, 0x0, @ipv6=@remote}, @typed={0x4, 0x85}, @typed={0x8, 0x110, 0x0, 0x0, @pid=0xffffffffffffffff}, @nested={0x1b5, 0x57, 0x0, 0x1, [@typed={0x8, 0xcb, 0x0, 0x0, @pid=r9}, @typed={0x50, 0x26, 0x0, 0x0, @binary="ed41b3672a1454fc974941c9ccc74c378824991b49460c2861b7fef90d4502bb46fd35943050a77589d0ec26a98d8890116cb361a1fb7c2b9c00154e88463bea127726a692c96f272f0e6da7"}, @generic="4853013620324055c96d7f23ee876a5115c70e874e95c35feae8d5c785f61a79cc10da19c9dea75b3905819e78ed5b30c9", @typed={0xb, 0xf6, 0x0, 0x0, @str='\\$^[-\xf4\x00'}, @generic="ed458676f1c2aa926b1e27dbac772bd0455d82df1bb423656ed54756fbd2440ef2019d5cf9604de9e9c1bc4585b3fc17c070ddac31512a0d648f20b939cd216e8a26bdd47865fd61e492c66e4890abf291bae84e4825555387845e9599a4bdec0d03a86a7bdcf42d712045ef869ba90776fc50787eec78f4a34cadcc4ff3bae8bd786ec2b0ac4cbc03dec905d18a4efa4b0e04703389f4f10e3ddaae406abb59e481737194b9c31348e22662326746e1683e6042c39fcfbc3ed32475bf0d3886bf5b9b9ef147f0971e5d80b2081621264ad1dbb787bb2e08", @generic="5f8a287b29f009afebaf16debd88f62ac949daea81cc0377ffe4f48cbbbc66c729a42ecc61cc7faedf413edf", @typed={0x14, 0x137, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @nested={0x4, 0xa0}]}, @generic="3f06b4f18d32f16e7e73a74a175280670327a4716a0617836f99408a85f9c671a52c71a66368ac142a33011ee237af6d491113a6"]}, @OVS_METER_ATTR_MAX_BANDS={0x8}]}, 0x22c}, 0x1, 0x0, 0x0, 0x400c000}, 0x80)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000d40), r0)
statmount$auto(&(0x7f0000000d80)={0x0, @raw=0x5, 0x9, 0x7, 0x7fff}, &(0x7f0000000dc0)={0x10001, 0x4, 0x7fffffff, 0x2b91, 0x1b, 0xffffffffffffff00, 0x68d5, 0xffffffff, 0x7, 0x2, 0x6, 0x2, 0x2, 0x93f, 0x1, 0x2, 0x5, 0x3ff, 0x7, 0x4, 0x1, 0x0, 0x7, 0xd, 0x23, 0x3, 0x6bf9a69e, 0x5, 0xffff0000, 0x3, 0xb9f, [0x5, 0x10001, 0x8, 0x70, 0x3ff, 0x8000000000000001, 0x10001, 0x4, 0x6, 0xe6a, 0x8, 0x6, 0x109, 0x9be1, 0x9, 0xc, 0x0, 0x3, 0x1, 0x3, 0xbc, 0x4, 0xfffffffffffffff9, 0xbeba, 0xffffffff, 0x80000001, 0x8, 0x800, 0xffffffff80000001, 0x0, 0x7, 0x2, 0x0, 0x5, 0xbdc, 0xe, 0x9, 0x2, 0xab39, 0x4f8, 0x401, 0x7, 0x3], "eb03aa25e5a672e7201040e3b8352c3c84d305ccbabe99b4e6e2bba3f4b5c4b6ba72c7188fd8ba5f0077f2eea8f9808afb6cb7b321211ef9286702abc32d1cd8c0b6e0e706ad43aaa15ca15ef5cfe45ff9e4322122a4b7bcfc6707ce0c06c4f1d4f53117ee2fd95131dfc144666b3f51a4dae8"}, 0x2000000000000000, 0x80)
r10 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001080), r3)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000010c0)={'macvlan0\x00', <r11=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001100)={'bridge_slave_1\x00', <r12=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001140)={'rose0\x00', <r13=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001180)={'bridge0\x00', <r14=>0x0})
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000001340)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001300)={&(0x7f00000011c0)={0x110, r10, 0x4, 0x70bd2c, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfffffffd}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x66a9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x81}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}]}, @ETHTOOL_A_CHANNELS_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x411f}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}, @ETHTOOL_A_CHANNELS_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}]}, @ETHTOOL_A_CHANNELS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x40000}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
r15 = syz_genetlink_get_family_id$auto_nbd(&(0x7f00000013c0), r0)
sendmsg$auto_NBD_CMD_RECONFIGURE(r2, &(0x7f0000001480)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x13000}, 0xc, &(0x7f0000001440)={&(0x7f0000001400)={0x38, r15, 0x304, 0x70bd2c, 0x25dfdbff, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x1}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xfffffffffffffffd}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x40050}, 0x4004855)
syz_genetlink_get_family_id$auto_gtp(&(0x7f00000014c0), r2)
write$auto(r4, &(0x7f0000001500)=',\x00', 0x1)

kernel console output (not intermixed with test programs):

 digest TFM handle 
[  256.084096][ T8757] i2c i2c-0: new_device: Can't parse I2C address
[  256.610223][ T8768] cougar: G6 mapped to space
[  256.650617][ T8769] cougar: G6 mapped to space
[  256.962115][ T8772] __nla_validate_parse: 3 callbacks suppressed
[  256.962134][ T8772] netlink: 326 bytes leftover after parsing attributes in process `syz.3.581'.
[  257.906750][ T8793] netlink: 940 bytes leftover after parsing attributes in process `syz.0.586'.
[  257.920796][ T8793] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  257.942202][ T8792] netlink: 940 bytes leftover after parsing attributes in process `syz.0.586'.
[  257.951722][ T8792] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  258.628446][ T8822] bridge0: port 4(vlan1) entered blocking state
[  258.636550][ T8822] bridge0: port 4(vlan1) entered disabled state
[  258.645340][ T8822] vlan1: entered allmulticast mode
[  258.675119][ T8822] veth0_vlan: entered allmulticast mode
[  258.733996][ T8822] vlan1: entered promiscuous mode
[  258.821394][ T8822] bridge0: port 4(vlan1) entered blocking state
[  258.827849][ T8822] bridge0: port 4(vlan1) entered listening state
[  259.456823][ T7731] ttyS ttyS0: 4 input overrun(s)
[  260.828841][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  260.835652][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  261.455721][ T8897] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  261.462251][ T8897] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  263.033653][ T8938] kAFS: No cell specified
[  264.675427][ T8969] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  264.682162][ T8969] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  265.011815][ T8977] netlink: 16 bytes leftover after parsing attributes in process `syz.0.619'.
[  268.032908][ T9015] sctp: [Deprecated]: syz.3.628 (pid 9015) Use of int in max_burst socket option deprecated.
[  268.032908][ T9015] Use struct sctp_assoc_value instead
[  269.531119][ T9032] can: request_module (can-proto-0) failed.
[  269.941574][ T9055] netlink: 342 bytes leftover after parsing attributes in process `syz.1.634'.
[  271.139362][ T9069] vivid-003: =================  START STATUS  =================
[  271.147214][ T9069] vivid-003: Radio HW Seek Mode: Bounded
[  271.153056][ T9069] vivid-003: Radio Programmable HW Seek: false
[  271.159984][ T9069] vivid-003: RDS Rx I/O Mode: Block I/O
[  271.168957][ T9069] vivid-003: Generate RBDS Instead of RDS: false
[  271.175898][ T9069] vivid-003: RDS Reception: true
[  271.193267][ T9069] vivid-003: RDS Program Type: 0 inactive
[  271.230532][ T9069] vivid-003: RDS PS Name:  inactive
[  271.238635][ T9069] vivid-003: RDS Radio Text:  inactive
[  271.443747][ T9069] vivid-003: RDS Traffic Announcement: false inactive
[  271.477094][ T9069] vivid-003: RDS Traffic Program: false inactive
[  271.504785][ T9069] vivid-003: RDS Music: false inactive
[  271.510550][ T9069] vivid-003: ==================  END STATUS  ==================
[  272.756566][ T9091] FAULT_INJECTION: forcing a failure.
[  272.756566][ T9091] name failslab, interval 1, probability 0, space 0, times 0
[  272.800935][ T9091] CPU: 0 UID: 0 PID: 9091 Comm: syz.2.638 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  272.800969][ T9091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  272.800992][ T9091] Call Trace:
[  272.800999][ T9091]  <TASK>
[  272.801011][ T9091]  dump_stack_lvl+0x16c/0x1f0
[  272.801050][ T9091]  should_fail_ex+0x512/0x640
[  272.801083][ T9091]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  272.801112][ T9091]  should_failslab+0xc2/0x120
[  272.801141][ T9091]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  272.801165][ T9091]  ? __pfx___might_resched+0x10/0x10
[  272.801191][ T9091]  ? __anon_vma_prepare+0x344/0x5e0
[  272.801220][ T9091]  __anon_vma_prepare+0x344/0x5e0
[  272.801248][ T9091]  __vmf_anon_prepare+0x11c/0x240
[  272.801284][ T9091]  do_wp_page+0x11a6/0x58e0
[  272.801327][ T9091]  ? __pfx_do_wp_page+0x10/0x10
[  272.801364][ T9091]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  272.801398][ T9091]  ? ___pte_offset_map+0x1bc/0x540
[  272.801436][ T9091]  __handle_mm_fault+0x1ada/0x2a40
[  272.801467][ T9091]  ? __pfx___handle_mm_fault+0x10/0x10
[  272.801507][ T9091]  ? find_vma+0xbf/0x140
[  272.801544][ T9091]  ? __pfx_find_vma+0x10/0x10
[  272.801580][ T9091]  handle_mm_fault+0x3fe/0xad0
[  272.801607][ T9091]  do_user_addr_fault+0x7a6/0x1370
[  272.801633][ T9091]  ? rcu_is_watching+0x12/0xc0
[  272.801657][ T9091]  exc_page_fault+0x5c/0xc0
[  272.801689][ T9091]  asm_exc_page_fault+0x26/0x30
[  272.801710][ T9091] RIP: 0010:__put_user_4+0xd/0x20
[  272.801743][ T9091] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90
[  272.801764][ T9091] RSP: 0018:ffffc900042a7cc0 EFLAGS: 00050206
[  272.801788][ T9091] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000009
[  272.801801][ T9091] RDX: 0000000000080000 RSI: ffffffff823643bc RDI: ffffffff8bf46d60
[  272.801815][ T9091] RBP: 1ffff92000854f9b R08: 192076e9d3864c5e R09: 0000000000000001
[  272.801829][ T9091] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000ffffffea
[  272.801842][ T9091] R13: 0000000000000009 R14: 0000000000000000 R15: 0000000000000000
[  272.801864][ T9091]  ? do_vfs_ioctl+0x110c/0x1990
[  272.801898][ T9091]  do_vfs_ioctl+0x1117/0x1990
[  272.801931][ T9091]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  272.801982][ T9091]  ? find_held_lock+0x2b/0x80
[  272.802002][ T9091]  ? hook_file_ioctl_common+0x145/0x410
[  272.802034][ T9091]  ? __fget_files+0x20e/0x3c0
[  272.802078][ T9091]  __x64_sys_ioctl+0x11d/0x200
[  272.802111][ T9091]  do_syscall_64+0xcd/0x230
[  272.802146][ T9091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.802168][ T9091] RIP: 0033:0x7f683d18e969
[  272.802185][ T9091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  272.802206][ T9091] RSP: 002b:00007f683df93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  272.802226][ T9091] RAX: ffffffffffffffda RBX: 00007f683d3b5fa0 RCX: 00007f683d18e969
[  272.802240][ T9091] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 0000000000000008
[  272.802253][ T9091] RBP: 00007f683d210ab1 R08: 0000000000000000 R09: 0000000000000000
[  272.802267][ T9091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  272.802280][ T9091] R13: 0000000000000000 R14: 00007f683d3b5fa0 R15: 00007ffd6d8896c8
[  272.802308][ T9091]  </TASK>
[  274.259773][    C1] bridge0: port 4(vlan1) entered learning state
[  276.369136][ T9095] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  277.232361][ T9135] netlink: 16 bytes leftover after parsing attributes in process `syz.3.648'.
[  277.908725][   T30] audit: type=1800 audit(6041940039.069:9): pid=9147 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.650" name="dbroot" dev="configfs" ino=21969 res=0 errno=0
[  278.400762][ T9148] netlink: 28 bytes leftover after parsing attributes in process `syz.1.650'.
[  278.418847][ T9147] svc: failed to register nfsdv3 RPC service (errno 111).
[  278.472741][ T9147] svc: failed to register nfsaclv3 RPC service (errno 111).
[  279.053685][ T9155] netlink: 28 bytes leftover after parsing attributes in process `syz.1.652'.
[  279.152880][ T9155] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  281.730371][ T9194] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x18e pfn:0x7fe00
[  281.755849][ T9194] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  281.790107][ T9194] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  281.830026][ T9194] raw: 000000000000018e 0000000000000000 00000001ffffffff 0000000000000000
[  281.871889][ T9194] page dumped because: unmovable page
[  281.890236][ T9194] page_owner tracks the page as allocated
[  281.896626][ T9194] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO), pid 6653, tgid 6648 (syz.3.157), ts 155485984706, free_ts 153228956779
[  281.959734][ T9194]  post_alloc_hook+0x181/0x1b0
[  281.964592][ T9194]  get_page_from_freelist+0x135c/0x3920
[  281.999726][ T9194]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  282.005715][ T9194]  alloc_pages_mpol+0x1fb/0x550
[  282.010790][ T9194]  alloc_pages_noprof+0x131/0x390
[  282.015878][ T9194]  brd_insert_page+0x59/0x120
[  282.039759][ T9194]  brd_submit_bio+0x365/0xe30
[  282.045485][ T9194]  __submit_bio+0x301/0x690
[  282.052587][ T9194]  submit_bio_noacct_nocheck+0x855/0xd30
[  282.058300][ T9194]  submit_bio_noacct+0x50d/0x1ec0
[  282.072113][ T9194]  blkdev_direct_IO+0x13fa/0x1cc0
[  282.078935][ T9194]  blkdev_write_iter+0x6fd/0xdf0
[  282.101717][ T9194]  vfs_write+0x5ba/0x1180
[  282.106124][ T9194]  ksys_write+0x12a/0x240
[  282.121404][ T9194]  do_syscall_64+0xcd/0x230
[  282.125999][ T9194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.144833][ T9194] page last free pid 6608 tgid 6608 stack trace:
[  282.167262][ T9194]  __free_frozen_pages+0x69d/0xff0
[  282.177375][ T9194]  vfree+0x176/0x960
[  282.189951][ T9194]  snd_dma_free_pages+0x51/0x70
[  282.210000][ T9194]  snd_pcm_lib_free_pages+0x172/0x390
[  282.215482][ T9194]  snd_pcm_release_substream.part.0+0x2a8/0x340
[  282.259835][ T9194]  snd_pcm_release_substream+0x5b/0x70
[  282.272284][ T9194]  snd_pcm_oss_release+0x16f/0x310
[  282.292236][ T9194]  __fput+0x3ff/0xb70
[  282.307883][ T9194]  task_work_run+0x14d/0x240
[  282.326482][ T9194]  syscall_exit_to_user_mode+0x27b/0x2a0
[  282.345159][ T9194]  do_syscall_64+0xda/0x230
[  282.364477][ T9194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.490522][ T9199] syz.1.662 (9199) used greatest stack depth: 19912 bytes left
[  282.871863][ T9210] vivid-003: =================  START STATUS  =================
[  282.930985][ T9210] vivid-003: Radio HW Seek Mode: Bounded
[  282.952395][ T9210] vivid-003: Radio Programmable HW Seek: false
[  282.958662][ T9210] vivid-003: RDS Rx I/O Mode: Block I/O
[  283.030698][ T9210] vivid-003: Generate RBDS Instead of RDS: false
[  283.054713][ T9210] vivid-003: RDS Reception: true
[  283.065630][ T9210] vivid-003: RDS Program Type: 0 inactive
[  283.089977][ T9210] vivid-003: RDS PS Name:  inactive
[  283.095327][ T9210] vivid-003: RDS Radio Text:  inactive
[  283.139848][ T9210] vivid-003: RDS Traffic Announcement: false inactive
[  283.156088][ T9210] vivid-003: RDS Traffic Program: false inactive
[  283.182979][ T9210] vivid-003: RDS Music: false inactive
[  283.188559][ T9210] vivid-003: ==================  END STATUS  ==================
[  283.250199][ T9215] bridge0: port 3(vlan1) entered blocking state
[  283.267395][ T9215] bridge0: port 3(vlan1) entered disabled state
[  283.289020][ T9215] vlan1: entered allmulticast mode
[  283.318661][ T9215] veth0_vlan: entered allmulticast mode
[  283.399162][ T9215] vlan1: entered promiscuous mode
[  283.990325][ T9225] Malformed UNC in devname
[  283.990325][ T9225] 
[  284.005373][ T9225] CIFS: VFS: Malformed UNC in devname
[  284.111025][ T9240] binder: 9235:9240 unknown command 537396514
[  284.117183][ T9240] binder: 9235:9240 ioctl c0306201 0 returned -22
[  284.315273][   T55] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  284.541747][ T9246] FAULT_INJECTION: forcing a failure.
[  284.541747][ T9246] name failslab, interval 1, probability 0, space 0, times 0
[  284.617210][ T9246] CPU: 1 UID: 0 PID: 9246 Comm: syz.2.674 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  284.617255][ T9246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  284.617273][ T9246] Call Trace:
[  284.617301][ T9246]  <TASK>
[  284.617313][ T9246]  dump_stack_lvl+0x16c/0x1f0
[  284.617364][ T9246]  should_fail_ex+0x512/0x640
[  284.617410][ T9246]  ? __kmalloc_noprof+0xbf/0x510
[  284.617448][ T9246]  ? ops_init+0x77/0x5f0
[  284.617483][ T9246]  should_failslab+0xc2/0x120
[  284.617522][ T9246]  __kmalloc_noprof+0xd2/0x510
[  284.617557][ T9246]  ? __raw_spin_lock_init+0x3a/0x110
[  284.617614][ T9246]  ops_init+0x77/0x5f0
[  284.617657][ T9246]  setup_net+0x21e/0x850
[  284.617711][ T9246]  ? __pfx_setup_net+0x10/0x10
[  284.617749][ T9246]  ? lockdep_init_map_type+0x5c/0x280
[  284.617794][ T9246]  ? __pfx_down_read_killable+0x10/0x10
[  284.617829][ T9246]  ? debug_mutex_init+0x37/0x70
[  284.617864][ T9246]  copy_net_ns+0x2a6/0x5f0
[  284.617912][ T9246]  create_new_namespaces+0x3ea/0xad0
[  284.617957][ T9246]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  284.617998][ T9246]  ksys_unshare+0x45b/0xa40
[  284.618042][ T9246]  ? __pfx_ksys_unshare+0x10/0x10
[  284.618081][ T9246]  ? xfd_validate_state+0x5d/0x180
[  284.618135][ T9246]  ? rcu_is_watching+0x12/0xc0
[  284.618180][ T9246]  __x64_sys_unshare+0x31/0x40
[  284.618223][ T9246]  do_syscall_64+0xcd/0x230
[  284.618274][ T9246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.618305][ T9246] RIP: 0033:0x7f683d18e969
[  284.618330][ T9246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.618361][ T9246] RSP: 002b:00007f683df93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  284.618391][ T9246] RAX: ffffffffffffffda RBX: 00007f683d3b5fa0 RCX: 00007f683d18e969
[  284.618411][ T9246] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  284.618430][ T9246] RBP: 00007f683d210ab1 R08: 0000000000000000 R09: 0000000000000000
[  284.618449][ T9246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  284.618466][ T9246] R13: 0000000000000000 R14: 00007f683d3b5fa0 R15: 00007ffd6d8896c8
[  284.618507][ T9246]  </TASK>
[  285.104275][ T8991] syz.3.622 (8991) used greatest stack depth: 18760 bytes left
[  285.848554][ T5839] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  287.687801][ T9289] kernel read not supported for file /set_event_notrace_pid (pid: 9289 comm: syz.2.682)
[  287.728546][   T30] audit: type=1800 audit(6041940048.889:10): pid=9289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.682" name="set_event_notrace_pid" dev="tracefs" ino=1047 res=0 errno=0
[  289.629745][    C1] bridge0: port 4(vlan1) entered forwarding state
[  289.636252][    C1] bridge0: topology change detected, propagating
[  290.104441][ T9339] Invalid ELF header magic: != ELF
[  290.162672][ T9342] block2mtd: illegal erase size
[  290.632942][ T9335] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[9335]
[  291.774968][ T9357] netlink: 342 bytes leftover after parsing attributes in process `syz.1.695'.
[  292.809570][ T9390] FAULT_INJECTION: forcing a failure.
[  292.809570][ T9390] name failslab, interval 1, probability 0, space 0, times 0
[  292.843500][ T9390] CPU: 1 UID: 0 PID: 9390 Comm: syz.1.700 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  292.843534][ T9390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  292.843547][ T9390] Call Trace:
[  292.843555][ T9390]  <TASK>
[  292.843564][ T9390]  dump_stack_lvl+0x16c/0x1f0
[  292.843602][ T9390]  should_fail_ex+0x512/0x640
[  292.843636][ T9390]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  292.843665][ T9390]  should_failslab+0xc2/0x120
[  292.843693][ T9390]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  292.843718][ T9390]  ? __pfx___might_resched+0x10/0x10
[  292.843744][ T9390]  ? __anon_vma_prepare+0xae/0x5e0
[  292.843781][ T9390]  __anon_vma_prepare+0xae/0x5e0
[  292.843821][ T9390]  __vmf_anon_prepare+0x11c/0x240
[  292.843872][ T9390]  do_wp_page+0x11a6/0x58e0
[  292.843933][ T9390]  ? __pfx_do_wp_page+0x10/0x10
[  292.843978][ T9390]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  292.844013][ T9390]  ? ___pte_offset_map+0x1bc/0x540
[  292.844051][ T9390]  __handle_mm_fault+0x1ada/0x2a40
[  292.844082][ T9390]  ? __pfx___handle_mm_fault+0x10/0x10
[  292.844121][ T9390]  ? find_vma+0xbf/0x140
[  292.844152][ T9390]  ? __pfx_find_vma+0x10/0x10
[  292.844189][ T9390]  handle_mm_fault+0x3fe/0xad0
[  292.844217][ T9390]  do_user_addr_fault+0x7a6/0x1370
[  292.844242][ T9390]  ? rcu_is_watching+0x12/0xc0
[  292.844266][ T9390]  exc_page_fault+0x5c/0xc0
[  292.844298][ T9390]  asm_exc_page_fault+0x26/0x30
[  292.844319][ T9390] RIP: 0010:__put_user_4+0xd/0x20
[  292.844352][ T9390] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90
[  292.844379][ T9390] RSP: 0018:ffffc9000abffcc0 EFLAGS: 00050206
[  292.844397][ T9390] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000009
[  292.844411][ T9390] RDX: 0000000000080000 RSI: ffffffff823643bc RDI: ffffffff8bf46d60
[  292.844436][ T9390] RBP: 1ffff9200157ff9b R08: 192076e9d3864c5e R09: 0000000000000001
[  292.844451][ T9390] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000ffffffea
[  292.844464][ T9390] R13: 0000000000000009 R14: 0000000000000000 R15: 0000000000000000
[  292.844487][ T9390]  ? do_vfs_ioctl+0x110c/0x1990
[  292.844522][ T9390]  do_vfs_ioctl+0x1117/0x1990
[  292.844554][ T9390]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  292.844605][ T9390]  ? find_held_lock+0x2b/0x80
[  292.844626][ T9390]  ? hook_file_ioctl_common+0x145/0x410
[  292.844658][ T9390]  ? __fget_files+0x20e/0x3c0
[  292.844702][ T9390]  __x64_sys_ioctl+0x11d/0x200
[  292.844735][ T9390]  do_syscall_64+0xcd/0x230
[  292.844770][ T9390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.844792][ T9390] RIP: 0033:0x7fee0e98e969
[  292.844810][ T9390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.844830][ T9390] RSP: 002b:00007fee0f7b5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  292.844850][ T9390] RAX: ffffffffffffffda RBX: 00007fee0ebb5fa0 RCX: 00007fee0e98e969
[  292.844864][ T9390] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 0000000000000008
[  292.844879][ T9390] RBP: 00007fee0ea10ab1 R08: 0000000000000000 R09: 0000000000000000
[  292.844896][ T9390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  292.844914][ T9390] R13: 0000000000000000 R14: 00007fee0ebb5fa0 R15: 00007ffef1efa918
[  292.844954][ T9390]  </TASK>
[  295.230085][ T9408] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  298.813372][   T30] audit: type=1800 audit(6041940059.972:11): pid=9466 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.723" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[  299.003806][ T9464] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  305.875073][ T9506] netlink: 93 bytes leftover after parsing attributes in process `syz.3.725'.
[  306.319834][   T55] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  306.330314][   T55] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  306.338762][   T55] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  306.348449][   T55] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  306.357152][   T55] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  306.515708][ T9514] netlink: 16 bytes leftover after parsing attributes in process `syz.0.726'.
[  307.030154][ T7100] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.425730][ T7100] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.450596][   T55] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  307.589304][ T7100] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.634999][ T9519] chnl_net:caif_netlink_parms(): no params data found
[  307.825142][ T7100] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  308.411955][ T5839] Bluetooth: hci4: command tx timeout
[  308.584811][ T9519] bridge0: port 1(bridge_slave_0) entered blocking state
[  308.600103][ T9519] bridge0: port 1(bridge_slave_0) entered disabled state
[  308.608880][ T9519] bridge_slave_0: entered allmulticast mode
[  308.617214][ T9519] bridge_slave_0: entered promiscuous mode
[  308.650380][ T9519] bridge0: port 2(bridge_slave_1) entered blocking state
[  308.660051][ T9519] bridge0: port 2(bridge_slave_1) entered disabled state
[  308.670341][ T9519] bridge_slave_1: entered allmulticast mode
[  308.679393][ T9519] bridge_slave_1: entered promiscuous mode
[  308.887753][ T9519] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  308.915456][ T7100] vlan1: left allmulticast mode
[  308.920778][ T7100] veth0_vlan: left allmulticast mode
[  308.942716][ T7100] vlan1: left promiscuous mode
[  308.950063][ T7100] bridge0: port 4(vlan1) entered disabled state
[  309.027452][ T7100] gretap0: left allmulticast mode
[  309.041450][ T7100] gretap0: left promiscuous mode
[  309.061692][ T7100] bridge0: port 3(gretap0) entered disabled state
[  309.108712][ T7100] bridge_slave_1: left allmulticast mode
[  309.119299][ T7100] bridge_slave_1: left promiscuous mode
[  309.130996][ T7100] bridge0: port 2(bridge_slave_1) entered disabled state
[  309.146091][ T5839] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  309.154479][ T5839] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[  309.164340][ T5839] CPU: 1 UID: 0 PID: 5839 Comm: kworker/u9:5 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  309.164381][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  309.164396][ T5839] Workqueue: hci3 hci_rx_work
[  309.164420][ T5839] Call Trace:
[  309.164429][ T5839]  <TASK>
[  309.164437][ T5839]  dump_stack_lvl+0x16c/0x1f0
[  309.164484][ T5839]  sysfs_warn_dup+0x7f/0xa0
[  309.164521][ T5839]  sysfs_create_dir_ns+0x24b/0x2b0
[  309.164557][ T5839]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  309.164592][ T5839]  ? find_held_lock+0x2b/0x80
[  309.164619][ T5839]  ? do_raw_spin_unlock+0x172/0x230
[  309.164656][ T5839]  kobject_add_internal+0x2c4/0x9b0
[  309.164698][ T5839]  kobject_add+0x16e/0x240
[  309.164718][ T5839]  ? __pfx_kobject_add+0x10/0x10
[  309.164741][ T5839]  ? do_raw_spin_unlock+0x172/0x230
[  309.164776][ T5839]  ? kobject_put+0xab/0x5a0
[  309.164819][ T5839]  device_add+0x288/0x1a70
[  309.164851][ T5839]  ? __pfx_dev_set_name+0x10/0x10
[  309.164886][ T5839]  ? __pfx_device_add+0x10/0x10
[  309.164917][ T5839]  ? mgmt_send_event_skb+0x2fb/0x460
[  309.164961][ T5839]  hci_conn_add_sysfs+0x17e/0x230
[  309.164986][ T5839]  le_conn_complete_evt+0x1075/0x1d70
[  309.165030][ T5839]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  309.165066][ T5839]  ? bt_warn+0xe4/0x120
[  309.165098][ T5839]  ? __pfx_bt_warn+0x10/0x10
[  309.165138][ T5839]  hci_le_conn_complete_evt+0x23c/0x370
[  309.165182][ T5839]  hci_le_meta_evt+0x2f3/0x5e0
[  309.165203][ T5839]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  309.165245][ T5839]  hci_event_packet+0x669/0x1190
[  309.165281][ T5839]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  309.165305][ T5839]  ? __pfx_hci_event_packet+0x10/0x10
[  309.165351][ T5839]  ? kcov_remote_start+0x3c9/0x6d0
[  309.165381][ T5839]  ? lockdep_hardirqs_on+0x7c/0x110
[  309.165419][ T5839]  hci_rx_work+0x2c5/0x16b0
[  309.165443][ T5839]  ? rcu_is_watching+0x12/0xc0
[  309.165468][ T5839]  process_one_work+0x9cc/0x1b70
[  309.165515][ T5839]  ? __pfx_process_one_work+0x10/0x10
[  309.165560][ T5839]  ? assign_work+0x1a0/0x250
[  309.165596][ T5839]  worker_thread+0x6c8/0xf10
[  309.165645][ T5839]  ? __pfx_worker_thread+0x10/0x10
[  309.165680][ T5839]  kthread+0x3c2/0x780
[  309.165713][ T5839]  ? __pfx_kthread+0x10/0x10
[  309.165743][ T5839]  ? __pfx_kthread+0x10/0x10
[  309.165775][ T5839]  ? __pfx_kthread+0x10/0x10
[  309.165806][ T5839]  ? __pfx_kthread+0x10/0x10
[  309.165837][ T5839]  ? rcu_is_watching+0x12/0xc0
[  309.165858][ T5839]  ? __pfx_kthread+0x10/0x10
[  309.165891][ T5839]  ret_from_fork+0x45/0x80
[  309.165910][ T5839]  ? __pfx_kthread+0x10/0x10
[  309.165943][ T5839]  ret_from_fork_asm+0x1a/0x30
[  309.165990][ T5839]  </TASK>
[  309.166018][ T5839] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  309.450886][ T5839] Bluetooth: hci3: failed to register connection device
[  309.464981][ T7100] bridge_slave_0: left allmulticast mode
[  309.499380][ T7100] bridge_slave_0: left promiscuous mode
[  309.514763][ T7100] bridge0: port 1(bridge_slave_0) entered disabled state
[  310.262296][   T55] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  310.454973][ T7100] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  310.467330][ T7100] bond0 (unregistering): Released all slaves
[  310.489293][ T9519] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  310.499368][   T55] Bluetooth: hci4: command tx timeout
[  310.744087][ T9519] team0: Port device team_slave_0 added
[  310.866418][ T9519] team0: Port device team_slave_1 added
[  311.094489][   T30] audit: type=1800 audit(6041940072.268:12): pid=9593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.741" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[  311.627451][ T9519] batman_adv: batadv0: Adding interface: batadv_slave_0
[  311.634567][ T9519] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  311.661955][ T9519] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  311.769789][ T9519] batman_adv: batadv0: Adding interface: batadv_slave_1
[  311.803137][ T9519] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  311.855964][ T9519] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  312.251888][ T7100] hsr_slave_0: left promiscuous mode
[  312.258244][ T7100] hsr_slave_1: left promiscuous mode
[  312.273396][ T7100] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  312.296163][ T7100] batman_adv: batadv0: Removing interface: batadv_slave_0
[  312.317538][ T7100] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  312.326558][ T7100] batman_adv: batadv0: Removing interface: batadv_slave_1
[  312.402820][ T7100] veth0_macvtap: left promiscuous mode
[  312.419141][ T7100] veth1_vlan: left promiscuous mode
[  312.424808][ T7100] veth0_vlan: left promiscuous mode
[  312.571660][   T55] Bluetooth: hci4: command tx timeout
[  313.186686][ T7100] team0 (unregistering): Port device team_slave_1 removed
[  313.241266][ T7100] team0 (unregistering): Port device team_slave_0 removed
[  313.688570][ T9519] hsr_slave_0: entered promiscuous mode
[  313.713728][ T9519] hsr_slave_1: entered promiscuous mode
[  313.721772][ T9519] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  313.733397][ T9519] Cannot create hsr debugfs directory
[  314.649324][   T55] Bluetooth: hci4: command tx timeout
[  314.714510][ T9519] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  314.794145][ T9519] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  314.867985][ T9519] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  314.943225][ T9519] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  315.051919][ T9637] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  315.081975][ T9637] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  315.119968][ T9637] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  315.165858][ T9637] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  315.191091][ T9637] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  315.269753][ T9637] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  315.275827][ T9637] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  315.354269][ T9637] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  315.424223][ T9637] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  315.448537][ T9637] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  315.547673][ T9637] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  315.818606][ T9655] FAULT_INJECTION: forcing a failure.
[  315.818606][ T9655] name failslab, interval 1, probability 0, space 0, times 0
[  315.874795][ T9519] 8021q: adding VLAN 0 to HW filter on device bond0
[  315.896703][ T9655] CPU: 1 UID: 0 PID: 9655 Comm: syz.1.749 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  315.896735][ T9655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  315.896749][ T9655] Call Trace:
[  315.896756][ T9655]  <TASK>
[  315.896764][ T9655]  dump_stack_lvl+0x16c/0x1f0
[  315.896801][ T9655]  should_fail_ex+0x512/0x640
[  315.896836][ T9655]  should_failslab+0xc2/0x120
[  315.896863][ T9655]  __kmalloc_cache_noprof+0x6a/0x3e0
[  315.896885][ T9655]  ? nfc_genl_rcv_nl_event+0xc1/0x2e0
[  315.896912][ T9655]  nfc_genl_rcv_nl_event+0xc1/0x2e0
[  315.896936][ T9655]  notifier_call_chain+0xb9/0x410
[  315.896961][ T9655]  ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10
[  315.896990][ T9655]  blocking_notifier_call_chain+0x69/0xa0
[  315.897020][ T9655]  netlink_release+0x186b/0x2020
[  315.897052][ T9655]  ? netlink_release+0x1de/0x2020
[  315.897081][ T9655]  ? __pfx_netlink_release+0x10/0x10
[  315.897110][ T9655]  ? __pfx_locks_remove_file+0x10/0x10
[  315.897144][ T9655]  __sock_release+0xb0/0x270
[  315.897172][ T9655]  ? __pfx_sock_close+0x10/0x10
[  315.897196][ T9655]  sock_close+0x1c/0x30
[  315.897220][ T9655]  __fput+0x3ff/0xb70
[  315.897248][ T9655]  ? _raw_spin_unlock_irq+0x23/0x50
[  315.897292][ T9655]  task_work_run+0x14d/0x240
[  315.897327][ T9655]  ? __pfx_task_work_run+0x10/0x10
[  315.897360][ T9655]  ? __pfx___do_sys_close_range+0x10/0x10
[  315.897380][ T9655]  ? rcu_is_watching+0x12/0xc0
[  315.897406][ T9655]  syscall_exit_to_user_mode+0x27b/0x2a0
[  315.897439][ T9655]  do_syscall_64+0xda/0x230
[  315.897473][ T9655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.897496][ T9655] RIP: 0033:0x7fee0e98e969
[  315.897513][ T9655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.897533][ T9655] RSP: 002b:00007fee0f773038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  315.897553][ T9655] RAX: 0000000000000000 RBX: 00007fee0ebb6160 RCX: 00007fee0e98e969
[  315.897567][ T9655] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  315.897579][ T9655] RBP: 00007fee0ea10ab1 R08: 0000000000000000 R09: 0000000000000000
[  315.897592][ T9655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  315.897604][ T9655] R13: 0000000000000000 R14: 00007fee0ebb6160 R15: 00007ffef1efa918
[  315.897636][ T9655]  </TASK>
[  316.244469][ T9519] 8021q: adding VLAN 0 to HW filter on device team0
[  316.376134][ T7490] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.383334][ T7490] bridge0: port 1(bridge_slave_0) entered forwarding state
[  316.447471][ T7490] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.454716][ T7490] bridge0: port 2(bridge_slave_1) entered forwarding state
[  317.070442][ T9682] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  317.127680][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  317.207575][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  317.287467][   T55] Bluetooth: hci3: command 0x0c1a tx timeout
[  317.447691][   T55] Bluetooth: hci4: command 0x0c1a tx timeout
[  317.477070][ T9697] bond0: option all_slaves_active: invalid value ()
[  317.816722][ T9519] 8021q: adding VLAN 0 to HW filter on device batadv0
[  319.206533][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  319.286468][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  319.366450][   T55] Bluetooth: hci3: command 0x0c1a tx timeout
[  319.526175][   T55] Bluetooth: hci4: command 0x0c1a tx timeout
[  319.837746][ T9519] veth0_vlan: entered promiscuous mode
[  319.890139][ T9519] veth1_vlan: entered promiscuous mode
[  320.046756][ T9519] veth0_macvtap: entered promiscuous mode
[  320.068826][ T9519] veth1_macvtap: entered promiscuous mode
[  320.128948][ T9519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  320.158692][ T9519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.197350][ T9519] batman_adv: batadv0: Interface activated: batadv_slave_0
[  320.223773][ T9519] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.257134][ T9519] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.280397][ T9755] binder: 9754:9755 ioctl 400c620e 200000000400 returned -22
[  320.317381][ T9519] batman_adv: batadv0: Interface activated: batadv_slave_1
[  320.363532][ T9519] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  320.384891][ T9519] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  320.680646][ T9519] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  320.734320][ T9519] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  321.234911][ T9766] FAULT_INJECTION: forcing a failure.
[  321.234911][ T9766] name failslab, interval 1, probability 0, space 0, times 0
[  321.273456][ T9766] CPU: 0 UID: 0 PID: 9766 Comm: syz.0.761 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  321.273499][ T9766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  321.273528][ T9766] Call Trace:
[  321.273538][ T9766]  <TASK>
[  321.273550][ T9766]  dump_stack_lvl+0x16c/0x1f0
[  321.273600][ T9766]  should_fail_ex+0x512/0x640
[  321.273641][ T9766]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  321.273674][ T9766]  should_failslab+0xc2/0x120
[  321.273713][ T9766]  __kmalloc_cache_noprof+0x6a/0x3e0
[  321.273745][ T9766]  ? single_open+0x4d/0x1f0
[  321.273801][ T9766]  ? __pfx_show_smaps_rollup+0x10/0x10
[  321.273867][ T9766]  single_open+0x4d/0x1f0
[  321.273907][ T9766]  smaps_rollup_open+0x6f/0x150
[  321.273956][ T9766]  do_dentry_open+0x741/0x1c10
[  321.273989][ T9766]  ? __pfx_smaps_rollup_open+0x10/0x10
[  321.274042][ T9766]  vfs_open+0x82/0x3f0
[  321.274089][ T9766]  path_openat+0x1e5e/0x2d40
[  321.274133][ T9766]  ? __pfx_path_openat+0x10/0x10
[  321.274173][ T9766]  do_filp_open+0x20b/0x470
[  321.274203][ T9766]  ? __pfx_do_filp_open+0x10/0x10
[  321.274246][ T9766]  ? __pfx_kfree_link+0x10/0x10
[  321.274298][ T9766]  ? alloc_fd+0x471/0x7d0
[  321.274357][ T9766]  do_sys_openat2+0x11b/0x1d0
[  321.274398][ T9766]  ? __pfx_do_sys_openat2+0x10/0x10
[  321.274441][ T9766]  ? __pfx___might_resched+0x10/0x10
[  321.274485][ T9766]  __x64_sys_openat+0x174/0x210
[  321.274536][ T9766]  ? __pfx___x64_sys_openat+0x10/0x10
[  321.274583][ T9766]  ? rcu_is_watching+0x12/0xc0
[  321.274625][ T9766]  do_syscall_64+0xcd/0x230
[  321.274676][ T9766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.274707][ T9766] RIP: 0033:0x7faccb98e969
[  321.274731][ T9766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.274762][ T9766] RSP: 002b:00007faccc85b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  321.274793][ T9766] RAX: ffffffffffffffda RBX: 00007faccbbb6160 RCX: 00007faccb98e969
[  321.274814][ T9766] RDX: 0000000000040000 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  321.274835][ T9766] RBP: 00007faccba10ab1 R08: 0000000000000000 R09: 0000000000000000
[  321.274854][ T9766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  321.274872][ T9766] R13: 0000000000000000 R14: 00007faccbbb6160 R15: 00007ffc13ddd2f8
[  321.274911][ T9766]  </TASK>
[  321.340760][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  321.515711][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout
[  321.615183][   T55] Bluetooth: hci4: command 0x0c1a tx timeout
[  322.259470][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  322.269953][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  322.309807][ T7093] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  322.328454][ T7093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  322.629504][ T7093] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  322.666360][ T7093] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  325.167988][ T9822] netlink: 146 bytes leftover after parsing attributes in process `syz.3.766'.
[  328.368317][ T9886] Device name cannot be null; rc = [-22]
[  328.841918][ T9904] FAULT_INJECTION: forcing a failure.
[  328.841918][ T9904] name failslab, interval 1, probability 0, space 0, times 0
[  328.881581][ T9904] CPU: 1 UID: 0 PID: 9904 Comm: syz.4.777 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  328.881623][ T9904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  328.881636][ T9904] Call Trace:
[  328.881643][ T9904]  <TASK>
[  328.881651][ T9904]  dump_stack_lvl+0x16c/0x1f0
[  328.881689][ T9904]  should_fail_ex+0x512/0x640
[  328.881720][ T9904]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  328.881744][ T9904]  should_failslab+0xc2/0x120
[  328.881774][ T9904]  __kmalloc_cache_noprof+0x6a/0x3e0
[  328.881793][ T9904]  ? __pfx_apparmor_file_open+0x10/0x10
[  328.881822][ T9904]  ? smaps_rollup_open+0x4c/0x150
[  328.881857][ T9904]  smaps_rollup_open+0x4c/0x150
[  328.881890][ T9904]  do_dentry_open+0x741/0x1c10
[  328.881912][ T9904]  ? __pfx_smaps_rollup_open+0x10/0x10
[  328.881948][ T9904]  vfs_open+0x82/0x3f0
[  328.881979][ T9904]  path_openat+0x1e5e/0x2d40
[  328.882016][ T9904]  ? __pfx_path_openat+0x10/0x10
[  328.882044][ T9904]  do_filp_open+0x20b/0x470
[  328.882065][ T9904]  ? __pfx_do_filp_open+0x10/0x10
[  328.882095][ T9904]  ? __pfx_kfree_link+0x10/0x10
[  328.882132][ T9904]  ? alloc_fd+0x471/0x7d0
[  328.882180][ T9904]  do_sys_openat2+0x11b/0x1d0
[  328.882209][ T9904]  ? __pfx_do_sys_openat2+0x10/0x10
[  328.882239][ T9904]  ? __pfx___might_resched+0x10/0x10
[  328.882271][ T9904]  __x64_sys_openat+0x174/0x210
[  328.882300][ T9904]  ? __pfx___x64_sys_openat+0x10/0x10
[  328.882351][ T9904]  ? rcu_is_watching+0x12/0xc0
[  328.882379][ T9904]  do_syscall_64+0xcd/0x230
[  328.882415][ T9904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.882437][ T9904] RIP: 0033:0x7f610518e969
[  328.882455][ T9904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  328.882477][ T9904] RSP: 002b:00007f6105f68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  328.882497][ T9904] RAX: ffffffffffffffda RBX: 00007f61053b5fa0 RCX: 00007f610518e969
[  328.882512][ T9904] RDX: 0000000000040000 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  328.882526][ T9904] RBP: 00007f6105210ab1 R08: 0000000000000000 R09: 0000000000000000
[  328.882539][ T9904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  328.882553][ T9904] R13: 0000000000000000 R14: 00007f61053b5fa0 R15: 00007fff89545a28
[  328.882580][ T9904]  </TASK>
[  333.727978][ T9978] netlink: 8 bytes leftover after parsing attributes in process `syz.4.791'.
[  333.842138][ T9978] netlink: 8 bytes leftover after parsing attributes in process `syz.4.791'.
[  334.136222][ T9978] netlink: 8 bytes leftover after parsing attributes in process `syz.4.791'.
[  334.516096][ T9978] netlink: 8 bytes leftover after parsing attributes in process `syz.4.791'.
[  334.776738][ T9987] ima: policy update failed
[  334.915323][   T30] audit: type=1802 audit(6041940276.094:13): pid=9987 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.793" res=0 errno=0
[  335.341041][T10011] netlink: 330 bytes leftover after parsing attributes in process `syz.3.796'.
[  336.483088][   T30] audit: type=1804 audit(6041940277.654:14): pid=10019 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.800" name="/newroot/9/file0" dev="tmpfs" ino=65 res=1 errno=0
[  336.511691][   T30] audit: type=1800 audit(6041940277.654:15): pid=10019 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.800" name="file0" dev="tmpfs" ino=65 res=0 errno=0
[  337.168279][T10044] netlink: 4 bytes leftover after parsing attributes in process `syz.0.802'.
[  337.760320][T10072] netlink: 330 bytes leftover after parsing attributes in process `syz.4.807'.
[  338.079108][T10082] netlink: 186 bytes leftover after parsing attributes in process `syz.0.808'.
[  338.348367][T10087] bridge0: port 4(netdevsim1) entered blocking state
[  338.373358][T10087] bridge0: port 4(netdevsim1) entered disabled state
[  338.403335][T10087] netdevsim netdevsim3 netdevsim1: entered allmulticast mode
[  338.451149][T10087] netdevsim netdevsim3 netdevsim1: entered promiscuous mode
[  338.488567][T10087] bridge0: port 4(netdevsim1) entered blocking state
[  338.495511][T10087] bridge0: port 4(netdevsim1) entered forwarding state
[  338.962954][T10101] netlink: 4 bytes leftover after parsing attributes in process `syz.4.811'.
[  339.816629][T10114] zero sized request
[  340.818461][T10142] FAULT_INJECTION: forcing a failure.
[  340.818461][T10142] name failslab, interval 1, probability 0, space 0, times 0
[  340.995231][T10142] CPU: 0 UID: 0 PID: 10142 Comm: syz.1.817 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  340.995292][T10142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  340.995312][T10142] Call Trace:
[  340.995323][T10142]  <TASK>
[  340.995334][T10142]  dump_stack_lvl+0x16c/0x1f0
[  340.995384][T10142]  should_fail_ex+0x512/0x640
[  340.995429][T10142]  ? fs_reclaim_acquire+0xae/0x150
[  340.995480][T10142]  ? tomoyo_encode2+0x100/0x3e0
[  340.995522][T10142]  should_failslab+0xc2/0x120
[  340.995562][T10142]  __kmalloc_noprof+0xd2/0x510
[  340.995606][T10142]  tomoyo_encode2+0x100/0x3e0
[  340.995657][T10142]  tomoyo_encode+0x29/0x50
[  340.995700][T10142]  tomoyo_mount_acl+0x144/0x850
[  340.995738][T10142]  ? kernel_text_address+0x8d/0x100
[  340.995789][T10142]  ? __kernel_text_address+0xd/0x40
[  340.995837][T10142]  ? unwind_get_return_address+0x59/0xa0
[  340.995872][T10142]  ? arch_stack_walk+0xa6/0x100
[  340.995919][T10142]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  340.996010][T10142]  ? tomoyo_domain+0xbb/0x150
[  340.996035][T10142]  ? tomoyo_profile+0x47/0x60
[  340.996088][T10142]  tomoyo_mount_permission+0x16d/0x420
[  340.996129][T10142]  ? tomoyo_mount_permission+0x14f/0x420
[  340.996175][T10142]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  340.996253][T10142]  security_sb_mount+0x9b/0x260
[  340.996293][T10142]  path_mount+0x128/0x1f20
[  340.996329][T10142]  ? kmem_cache_free+0x2d4/0x4d0
[  340.996362][T10142]  ? __pfx_path_mount+0x10/0x10
[  340.996402][T10142]  ? putname+0x154/0x1a0
[  340.996444][T10142]  __x64_sys_mount+0x28d/0x310
[  340.996479][T10142]  ? __pfx___x64_sys_mount+0x10/0x10
[  340.996511][T10142]  ? rcu_is_watching+0x12/0xc0
[  340.996553][T10142]  do_syscall_64+0xcd/0x230
[  340.996604][T10142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.996636][T10142] RIP: 0033:0x7fee0e98e969
[  340.996661][T10142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  340.996692][T10142] RSP: 002b:00007fee0f7b5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  340.996721][T10142] RAX: ffffffffffffffda RBX: 00007fee0ebb5fa0 RCX: 00007fee0e98e969
[  340.996742][T10142] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000000
[  340.996761][T10142] RBP: 00007fee0ea10ab1 R08: 0000000000000000 R09: 0000000000000000
[  340.996779][T10142] R10: 0000000000003379 R11: 0000000000000246 R12: 0000000000000000
[  340.996798][T10142] R13: 0000000000000000 R14: 00007fee0ebb5fa0 R15: 00007ffef1efa918
[  340.996839][T10142]  </TASK>
[  341.921925][T10164] netlink: 330 bytes leftover after parsing attributes in process `syz.1.821'.
[  343.869604][T10211] netlink: 330 bytes leftover after parsing attributes in process `syz.0.832'.
[  343.919088][T10211] : renamed from bond_slave_1 (while UP)
[  347.483052][T10296] busy
[  352.008995][T10421] FAULT_INJECTION: forcing a failure.
[  352.008995][T10421] name failslab, interval 1, probability 0, space 0, times 0
[  352.079031][T10421] CPU: 1 UID: 0 PID: 10421 Comm: syz.4.867 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  352.079083][T10421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  352.079104][T10421] Call Trace:
[  352.079114][T10421]  <TASK>
[  352.079127][T10421]  dump_stack_lvl+0x16c/0x1f0
[  352.079181][T10421]  should_fail_ex+0x512/0x640
[  352.079227][T10421]  ? __kmalloc_noprof+0xbf/0x510
[  352.079263][T10421]  ? constrain_params_by_rules+0x175/0xca0
[  352.079299][T10421]  should_failslab+0xc2/0x120
[  352.079328][T10421]  __kmalloc_noprof+0xd2/0x510
[  352.079351][T10421]  ? unwind_get_return_address+0x59/0xa0
[  352.079378][T10421]  ? arch_stack_walk+0xa6/0x100
[  352.079409][T10421]  constrain_params_by_rules+0x175/0xca0
[  352.079450][T10421]  ? stack_trace_save+0x8e/0xc0
[  352.079475][T10421]  ? stack_depot_save_flags+0x28/0xa50
[  352.079529][T10421]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  352.079576][T10421]  ? kfree+0x2b6/0x4d0
[  352.079593][T10421]  ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0
[  352.079632][T10421]  ? __kasan_kmalloc+0xaa/0xb0
[  352.079653][T10421]  ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  352.079685][T10421]  ? snd_pcm_oss_change_params_locked+0x1398/0x3b40
[  352.079718][T10421]  ? snd_pcm_oss_make_ready+0xe6/0x1b0
[  352.079760][T10421]  ? snd_interval_refine+0x2fa/0x580
[  352.079801][T10421]  snd_pcm_hw_refine+0x7de/0xad0
[  352.079856][T10421]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  352.079915][T10421]  ? _snd_pcm_hw_param_min+0x259/0x630
[  352.079952][T10421]  snd_pcm_hw_param_near.constprop.0+0x58a/0x8e0
[  352.079991][T10421]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  352.080025][T10421]  ? __asan_memset+0x23/0x50
[  352.080044][T10421]  ? calc_src_frames.isra.0+0x187/0x1d0
[  352.080084][T10421]  snd_pcm_oss_change_params_locked+0x1398/0x3b40
[  352.080132][T10421]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  352.080168][T10421]  ? __pfx___mutex_lock+0x10/0x10
[  352.080219][T10421]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  352.080254][T10421]  snd_pcm_oss_set_trigger.isra.0+0x211/0x6b0
[  352.080288][T10421]  ? lockdep_hardirqs_on+0x7c/0x110
[  352.080322][T10421]  snd_pcm_oss_poll+0x549/0xaf0
[  352.080353][T10421]  ? __pfx_ep_ptable_queue_proc+0x10/0x10
[  352.080386][T10421]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  352.080419][T10421]  ? do_raw_spin_lock+0x12c/0x2b0
[  352.080452][T10421]  ? find_held_lock+0x2b/0x80
[  352.080474][T10421]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  352.080513][T10421]  ep_item_poll+0x13e/0x1f0
[  352.080546][T10421]  do_epoll_ctl+0x1db8/0x3590
[  352.080590][T10421]  ? __pfx_do_epoll_ctl+0x10/0x10
[  352.080624][T10421]  ? __pfx_ep_ptable_queue_proc+0x10/0x10
[  352.080658][T10421]  ? rep_movs_alternative+0x30/0x90
[  352.080687][T10421]  ? __x64_sys_epoll_ctl+0x15c/0x1e0
[  352.080717][T10421]  __x64_sys_epoll_ctl+0x15c/0x1e0
[  352.080761][T10421]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  352.080811][T10421]  ? rcu_is_watching+0x12/0xc0
[  352.080839][T10421]  do_syscall_64+0xcd/0x230
[  352.080873][T10421]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.080896][T10421] RIP: 0033:0x7f610518e969
[  352.080914][T10421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.080936][T10421] RSP: 002b:00007f6105f68038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  352.080957][T10421] RAX: ffffffffffffffda RBX: 00007f61053b5fa0 RCX: 00007f610518e969
[  352.080972][T10421] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[  352.080986][T10421] RBP: 00007f6105210ab1 R08: 0000000000000000 R09: 0000000000000000
[  352.080999][T10421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  352.081012][T10421] R13: 0000000000000000 R14: 00007f61053b5fa0 R15: 00007fff89545a28
[  352.081040][T10421]  </TASK>
[  355.103604][T10487] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  355.133360][T10482] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[10482]
[  356.202127][T10513] netlink: 252 bytes leftover after parsing attributes in process `syz.3.883'.
[  356.214767][T10513] netlink: 252 bytes leftover after parsing attributes in process `syz.3.883'.
[  356.267852][T10501] bond0: option all_slaves_active: invalid value ()
[  357.020648][T10529] netlink: 'syz.1.886': attribute type 11 has an invalid length.
[  360.732991][T10584] kexec: Could not allocate control_code_buffer
[  361.519338][T10603] netlink: 28 bytes leftover after parsing attributes in process `syz.1.899'.
[  361.620277][T10603] ipvlan1: entered allmulticast mode
[  361.675113][T10603] veth0_vlan: entered allmulticast mode
[  362.109085][T10608] GUP no longer grows the stack in syz.1.900 (10608): 14000-401000 (4000)
[  362.118120][T10608] CPU: 0 UID: 0 PID: 10608 Comm: syz.1.900 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  362.118160][T10608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  362.118178][T10608] Call Trace:
[  362.118189][T10608]  <TASK>
[  362.118199][T10608]  dump_stack_lvl+0x16c/0x1f0
[  362.118247][T10608]  gup_vma_lookup+0x1d2/0x220
[  362.118295][T10608]  __get_user_pages+0x234/0x36f0
[  362.118353][T10608]  ? process_vm_rw_core.constprop.0+0x1d8/0x9a0
[  362.118393][T10608]  ? look_up_lock_class+0x59/0x150
[  362.118436][T10608]  ? __pfx___get_user_pages+0x10/0x10
[  362.118484][T10608]  ? process_vm_rw+0x216/0x2c0
[  362.118519][T10608]  ? __x64_sys_process_vm_readv+0xe2/0x1c0
[  362.118556][T10608]  ? do_syscall_64+0xcd/0x230
[  362.118624][T10608]  __gup_longterm_locked+0x20d/0x1850
[  362.118687][T10608]  ? __pfx___gup_longterm_locked+0x10/0x10
[  362.118758][T10608]  pin_user_pages_remote+0xed/0x140
[  362.118811][T10608]  ? __pfx_pin_user_pages_remote+0x10/0x10
[  362.118861][T10608]  ? mm_access+0x22d/0x2e0
[  362.118914][T10608]  process_vm_rw_core.constprop.0+0x41b/0x9a0
[  362.118973][T10608]  ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[  362.119016][T10608]  ? iovec_from_user+0xbb/0x140
[  362.119084][T10608]  ? iovec_from_user+0xbb/0x140
[  362.119137][T10608]  process_vm_rw+0x216/0x2c0
[  362.119178][T10608]  ? __pfx_process_vm_rw+0x10/0x10
[  362.119214][T10608]  ? __pfx_futex_wake+0x10/0x10
[  362.119261][T10608]  ? task_mm_cid_work+0x37b/0x910
[  362.119328][T10608]  ? xfd_validate_state+0x5d/0x180
[  362.119388][T10608]  __x64_sys_process_vm_readv+0xe2/0x1c0
[  362.119429][T10608]  ? do_syscall_64+0x91/0x230
[  362.119473][T10608]  ? lockdep_hardirqs_on+0x7c/0x110
[  362.119515][T10608]  do_syscall_64+0xcd/0x230
[  362.119562][T10608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.119608][T10608] RIP: 0033:0x7fee0e98e969
[  362.119631][T10608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.119661][T10608] RSP: 002b:00007fee0f7b5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  362.119689][T10608] RAX: ffffffffffffffda RBX: 00007fee0ebb5fa0 RCX: 00007fee0e98e969
[  362.119709][T10608] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 000000000000041c
[  362.119727][T10608] RBP: 00007fee0ea10ab1 R08: 0000000000000003 R09: 0000000000000000
[  362.119744][T10608] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000
[  362.119762][T10608] R13: 0000000000000000 R14: 00007fee0ebb5fa0 R15: 00007ffef1efa918
[  362.119799][T10608]  </TASK>
[  362.922270][T10621] FAULT_INJECTION: forcing a failure.
[  362.922270][T10621] name failslab, interval 1, probability 0, space 0, times 0
[  362.944549][T10621] CPU: 0 UID: 0 PID: 10621 Comm: syz.4.904 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  362.944596][T10621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  362.944615][T10621] Call Trace:
[  362.944626][T10621]  <TASK>
[  362.944637][T10621]  dump_stack_lvl+0x16c/0x1f0
[  362.944689][T10621]  should_fail_ex+0x512/0x640
[  362.944733][T10621]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  362.944768][T10621]  should_failslab+0xc2/0x120
[  362.944817][T10621]  __kmalloc_cache_noprof+0x6a/0x3e0
[  362.944852][T10621]  ? sctp_endpoint_new+0x11f/0xcd0
[  362.944908][T10621]  sctp_endpoint_new+0x11f/0xcd0
[  362.944968][T10621]  sctp_init_sock+0xe2d/0x1330
[  362.945017][T10621]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  362.945068][T10621]  sctp_v6_init_sock+0x16/0x70
[  362.945113][T10621]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  362.945162][T10621]  inet6_create+0xb2d/0x1300
[  362.945203][T10621]  ? inet6_create+0x7f/0x1300
[  362.945242][T10621]  __sock_create+0x335/0x8d0
[  362.945300][T10621]  inet_ctl_sock_create+0x94/0x230
[  362.945347][T10621]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[  362.945390][T10621]  ? lockdep_init_map_type+0x5c/0x280
[  362.945434][T10621]  ? do_init_timer+0xc9/0x110
[  362.945472][T10621]  ? __pfx_sctp_ctrlsock_init+0x10/0x10
[  362.945516][T10621]  sctp_ctrlsock_init+0x40/0xf0
[  362.945563][T10621]  ops_init+0x1df/0x5f0
[  362.945606][T10621]  setup_net+0x21e/0x850
[  362.945651][T10621]  ? __pfx_setup_net+0x10/0x10
[  362.945688][T10621]  ? lockdep_init_map_type+0x5c/0x280
[  362.945729][T10621]  ? __pfx_down_read_killable+0x10/0x10
[  362.945764][T10621]  ? debug_mutex_init+0x37/0x70
[  362.945808][T10621]  copy_net_ns+0x2a6/0x5f0
[  362.945857][T10621]  create_new_namespaces+0x3ea/0xad0
[  362.945904][T10621]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  362.945945][T10621]  ksys_unshare+0x45b/0xa40
[  362.945991][T10621]  ? __pfx_ksys_unshare+0x10/0x10
[  362.946034][T10621]  ? xfd_validate_state+0x5d/0x180
[  362.946088][T10621]  ? rcu_is_watching+0x12/0xc0
[  362.946128][T10621]  __x64_sys_unshare+0x31/0x40
[  362.946173][T10621]  do_syscall_64+0xcd/0x230
[  362.946223][T10621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.946256][T10621] RIP: 0033:0x7f610518e969
[  362.946281][T10621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.946312][T10621] RSP: 002b:00007f6105f68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  362.946343][T10621] RAX: ffffffffffffffda RBX: 00007f61053b5fa0 RCX: 00007f610518e969
[  362.946364][T10621] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  362.946383][T10621] RBP: 00007f6105210ab1 R08: 0000000000000000 R09: 0000000000000000
[  362.946402][T10621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  362.946420][T10621] R13: 0000000000000000 R14: 00007f61053b5fa0 R15: 00007fff89545a28
[  362.946462][T10621]  </TASK>
[  364.052884][T10647] netlink: 146 bytes leftover after parsing attributes in process `syz.4.906'.
[  364.678926][   T55] Bluetooth: hci4: Unable to find connection for big 0xd2
[  365.324300][T10663] netlink: 4 bytes leftover after parsing attributes in process `syz.3.910'.
[  365.354854][T10663] netlink: 354 bytes leftover after parsing attributes in process `syz.3.910'.
[  367.011709][T10696] FAULT_INJECTION: forcing a failure.
[  367.011709][T10696] name failslab, interval 1, probability 0, space 0, times 0
[  367.053931][T10696] CPU: 0 UID: 0 PID: 10696 Comm: syz.0.915 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  367.053981][T10696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  367.054000][T10696] Call Trace:
[  367.054011][T10696]  <TASK>
[  367.054023][T10696]  dump_stack_lvl+0x16c/0x1f0
[  367.054077][T10696]  should_fail_ex+0x512/0x640
[  367.054123][T10696]  ? __kvmalloc_node_noprof+0x122/0x600
[  367.054162][T10696]  should_failslab+0xc2/0x120
[  367.054203][T10696]  __kvmalloc_node_noprof+0x135/0x600
[  367.054239][T10696]  ? bucket_table_alloc.isra.0+0x83/0x460
[  367.054292][T10696]  ? bucket_table_alloc.isra.0+0x83/0x460
[  367.054336][T10696]  bucket_table_alloc.isra.0+0x83/0x460
[  367.054386][T10696]  rhashtable_init_noprof+0x41a/0x7e0
[  367.054427][T10696]  ? kasan_save_track+0x14/0x30
[  367.054466][T10696]  fqdir_init+0xb4/0x1f0
[  367.054507][T10696]  lowpan_frags_init_net+0x2d/0x3a0
[  367.054566][T10696]  ? __pfx_lowpan_frags_init_net+0x10/0x10
[  367.054617][T10696]  ops_init+0x1df/0x5f0
[  367.054662][T10696]  setup_net+0x21e/0x850
[  367.054705][T10696]  ? __pfx_setup_net+0x10/0x10
[  367.054741][T10696]  ? lockdep_init_map_type+0x5c/0x280
[  367.054784][T10696]  ? __pfx_down_read_killable+0x10/0x10
[  367.054818][T10696]  ? debug_mutex_init+0x37/0x70
[  367.054849][T10696]  copy_net_ns+0x2a6/0x5f0
[  367.054898][T10696]  create_new_namespaces+0x3ea/0xad0
[  367.054942][T10696]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  367.054981][T10696]  ksys_unshare+0x45b/0xa40
[  367.055026][T10696]  ? __pfx_ksys_unshare+0x10/0x10
[  367.055065][T10696]  ? xfd_validate_state+0x5d/0x180
[  367.055118][T10696]  ? rcu_is_watching+0x12/0xc0
[  367.055157][T10696]  __x64_sys_unshare+0x31/0x40
[  367.055201][T10696]  do_syscall_64+0xcd/0x230
[  367.055249][T10696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.055282][T10696] RIP: 0033:0x7faccb98e969
[  367.055307][T10696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.055338][T10696] RSP: 002b:00007faccc89d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  367.055370][T10696] RAX: ffffffffffffffda RBX: 00007faccbbb5fa0 RCX: 00007faccb98e969
[  367.055392][T10696] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  367.055411][T10696] RBP: 00007faccba10ab1 R08: 0000000000000000 R09: 0000000000000000
[  367.055430][T10696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  367.055448][T10696] R13: 0000000000000000 R14: 00007faccbbb5fa0 R15: 00007ffc13ddd2f8
[  367.055490][T10696]  </TASK>
[  368.837841][T10726] random: crng reseeded on system resumption
[  370.196326][T10742] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(540160050.1714911280.892350774), cmd(5)
[  372.103043][T10778] netlink: 28 bytes leftover after parsing attributes in process `syz.0.931'.
[  373.854018][T10829] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  374.898613][T10851] tipc: Can't bind to reserved service type 1
[  378.743776][   T55] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  379.384209][T10940] FAULT_INJECTION: forcing a failure.
[  379.384209][T10940] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  379.398228][T10940] CPU: 1 UID: 0 PID: 10940 Comm: syz.4.964 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  379.398278][T10940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  379.398291][T10940] Call Trace:
[  379.398299][T10940]  <TASK>
[  379.398308][T10940]  dump_stack_lvl+0x16c/0x1f0
[  379.398345][T10940]  should_fail_ex+0x512/0x640
[  379.398384][T10940]  should_fail_alloc_page+0xe7/0x130
[  379.398415][T10940]  prepare_alloc_pages+0x3c2/0x610
[  379.398451][T10940]  ? __lock_acquire+0x5ca/0x1ba0
[  379.398484][T10940]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  379.398513][T10940]  ? __lock_acquire+0x5ca/0x1ba0
[  379.398555][T10940]  ? __lock_acquire+0x5ca/0x1ba0
[  379.398587][T10940]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  379.398628][T10940]  ? filemap_get_entry+0x1a7/0x3b0
[  379.398663][T10940]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  379.398696][T10940]  ? policy_nodemask+0xea/0x4e0
[  379.398727][T10940]  alloc_pages_mpol+0x1fb/0x550
[  379.398756][T10940]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  379.398784][T10940]  ? _raw_spin_unlock+0x28/0x50
[  379.398811][T10940]  ? swap_entry_swapped+0x122/0x190
[  379.398838][T10940]  ? __pfx_swap_entry_swapped+0x10/0x10
[  379.398870][T10940]  folio_alloc_mpol_noprof+0x36/0x2f0
[  379.398904][T10940]  __read_swap_cache_async+0x3b6/0x5a0
[  379.398931][T10940]  ? __pfx___read_swap_cache_async+0x10/0x10
[  379.398954][T10940]  ? swp_swap_info+0xce/0x130
[  379.398983][T10940]  ? __pfx_swp_swap_info+0x10/0x10
[  379.399019][T10940]  swap_cluster_readahead+0x4e1/0x710
[  379.399048][T10940]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  379.399089][T10940]  ? get_vma_policy+0x242/0x3c0
[  379.399121][T10940]  swapin_readahead+0x13a/0xd60
[  379.399152][T10940]  ? __pfx_swapin_readahead+0x10/0x10
[  379.399173][T10940]  ? __filemap_get_folio+0x333/0xc10
[  379.399212][T10940]  ? swap_cache_get_folio+0x1df/0x450
[  379.399251][T10940]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  379.399287][T10940]  ? __pfx_get_swap_device+0x10/0x10
[  379.399315][T10940]  ? do_swap_page+0x127/0x6030
[  379.399352][T10940]  do_swap_page+0x67e/0x6030
[  379.399386][T10940]  ? futex_unqueue+0xba/0x140
[  379.399420][T10940]  ? __pfx_do_swap_page+0x10/0x10
[  379.399470][T10940]  ? __pfx_default_wake_function+0x10/0x10
[  379.399493][T10940]  ? ___pte_offset_map+0x1bc/0x540
[  379.399536][T10940]  __handle_mm_fault+0x1056/0x2a40
[  379.399567][T10940]  ? __pfx___handle_mm_fault+0x10/0x10
[  379.399590][T10940]  ? lock_vma_under_rcu+0x47d/0x970
[  379.399623][T10940]  ? lock_vma_under_rcu+0x47d/0x970
[  379.399677][T10940]  handle_mm_fault+0x3fe/0xad0
[  379.399704][T10940]  do_user_addr_fault+0x60c/0x1370
[  379.399735][T10940]  exc_page_fault+0x5c/0xc0
[  379.399765][T10940]  asm_exc_page_fault+0x26/0x30
[  379.399787][T10940] RIP: 0033:0x7f610514380f
[  379.399804][T10940] Code: c7 00 00 00 00 00 48 c7 40 08 00 00 00 00 c3 66 66 2e 0f 1f 84 00 00 00 00 00 90 81 ce 00 00 ad fb 48 89 f8 66 0f ef c0 89 37 <8b> 3d d7 4e da 00 31 f6 48 c7 40 68 00 00 00 00 85 ff 0f 11 40 08
[  379.399826][T10940] RSP: 002b:00007f6105f67d18 EFLAGS: 00010286
[  379.399843][T10940] RAX: 00007f6105f67d30 RBX: 00007f6105f67fa0 RCX: 0000000000000000
[  379.399858][T10940] RDX: 00000000ffffffff RSI: 00000000fbad8000 RDI: 00007f6105f67d30
[  379.399872][T10940] RBP: 00007f6105f67e20 R08: 0000000000000000 R09: 0000000000000000
[  379.399885][T10940] R10: 0000000000000000 R11: 0000000000000000 R12: 00007f61052107b4
[  379.399898][T10940] R13: 00007f6105f67eb0 R14: 0000000000000000 R15: 00007f6105f67d30
[  379.399926][T10940]  </TASK>
[  379.400097][T10940] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  381.081231][T10955] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  381.108604][T10955] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  381.208937][T10955] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  381.223174][T10955] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  381.269255][T10955] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  383.111565][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout
[  383.260311][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout
[  383.262312][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  383.343791][   T55] Bluetooth: hci4: command 0x0c1a tx timeout
[  383.669650][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  383.676098][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  384.443544][T11024] zram: Removed device: zram0
[  385.181235][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  385.705120][T11045] FAULT_INJECTION: forcing a failure.
[  385.705120][T11045] name failslab, interval 1, probability 0, space 0, times 0
[  385.756421][T11045] CPU: 1 UID: 0 PID: 11045 Comm: syz.4.985 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  385.756468][T11045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  385.756487][T11045] Call Trace:
[  385.756497][T11045]  <TASK>
[  385.756508][T11045]  dump_stack_lvl+0x16c/0x1f0
[  385.756559][T11045]  should_fail_ex+0x512/0x640
[  385.756603][T11045]  ? __kmalloc_noprof+0xbf/0x510
[  385.756640][T11045]  ? handler_new_ref+0x1b0/0xc60
[  385.756680][T11045]  should_failslab+0xc2/0x120
[  385.756719][T11045]  __kmalloc_noprof+0xd2/0x510
[  385.756751][T11045]  ? __asan_memcpy+0x3c/0x60
[  385.756788][T11045]  handler_new_ref+0x1b0/0xc60
[  385.756844][T11045]  v4l2_ctrl_new+0x1963/0x2180
[  385.756905][T11045]  ? __pfx_v4l2_ctrl_new+0x10/0x10
[  385.756946][T11045]  ? __pfx_v4l2_ctrl_new+0x10/0x10
[  385.757001][T11045]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  385.757051][T11045]  v4l2_ctrl_new_std+0x1be/0x290
[  385.757114][T11045]  ? __pfx_v4l2_ctrl_new_std+0x10/0x10
[  385.757158][T11045]  ? __pfx_v4l2_ctrl_new_std+0x10/0x10
[  385.757208][T11045]  ? rcu_is_watching+0x12/0xc0
[  385.757237][T11045]  ? trace_kmalloc+0x2b/0xd0
[  385.757277][T11045]  ? __kvmalloc_node_noprof+0x296/0x600
[  385.757320][T11045]  ? media_request_object_init+0x100/0x180
[  385.757363][T11045]  vicodec_open+0x1f7/0xf90
[  385.757410][T11045]  v4l2_open+0x222/0x490
[  385.757447][T11045]  ? __pfx_v4l2_open+0x10/0x10
[  385.757484][T11045]  chrdev_open+0x231/0x6a0
[  385.757516][T11045]  ? __pfx_apparmor_file_open+0x10/0x10
[  385.757557][T11045]  ? __pfx_chrdev_open+0x10/0x10
[  385.757594][T11045]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  385.757650][T11045]  do_dentry_open+0x741/0x1c10
[  385.757683][T11045]  ? __pfx_chrdev_open+0x10/0x10
[  385.757725][T11045]  vfs_open+0x82/0x3f0
[  385.757772][T11045]  path_openat+0x1e5e/0x2d40
[  385.757817][T11045]  ? __pfx_path_openat+0x10/0x10
[  385.757859][T11045]  do_filp_open+0x20b/0x470
[  385.757891][T11045]  ? __pfx_do_filp_open+0x10/0x10
[  385.757952][T11045]  ? alloc_fd+0x471/0x7d0
[  385.758013][T11045]  do_sys_openat2+0x11b/0x1d0
[  385.758053][T11045]  ? __pfx_do_sys_openat2+0x10/0x10
[  385.758118][T11045]  __x64_sys_openat+0x174/0x210
[  385.758161][T11045]  ? __pfx___x64_sys_openat+0x10/0x10
[  385.758211][T11045]  ? rcu_is_watching+0x12/0xc0
[  385.758252][T11045]  do_syscall_64+0xcd/0x230
[  385.758300][T11045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.758332][T11045] RIP: 0033:0x7f610518e969
[  385.758356][T11045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.758386][T11045] RSP: 002b:00007f6105f68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  385.758416][T11045] RAX: ffffffffffffffda RBX: 00007f61053b5fa0 RCX: 00007f610518e969
[  385.758437][T11045] RDX: 00000000000c4400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  385.758457][T11045] RBP: 00007f6105210ab1 R08: 0000000000000000 R09: 0000000000000000
[  385.758476][T11045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  385.758494][T11045] R13: 0000000000000000 R14: 00007f61053b5fa0 R15: 00007fff89545a28
[  385.758536][T11045]  </TASK>
[  386.491750][T11023] Invalid ELF header magic: != ELF
[  388.482043][T11081] Invalid ELF header magic: != ELF
[  388.584887][T11080] netlink: 93 bytes leftover after parsing attributes in process `syz.3.991'.
[  389.765283][T11117] Invalid ELF header magic: != ELF
[  391.589194][T11154] netlink: 'syz.0.1006': attribute type 1 has an invalid length.
[  393.574417][T11199] sysfs_service_op_store: Client not running :-5:
[  393.613484][T11199] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1014'.
[  393.822667][T11199] bond0: (slave ): Releasing backup interface
[  394.033861][T11210] kernel read not supported for file /�0B���c�LıZgv)7zLk0<0;M�G|#��E>)R>���y���Y�ZsC��"�i�e�����:*�f�&�� (pid: 11210 comm: syz.3.1016)
[  394.113499][   T30] audit: type=1800 audit(4294967316.551:16): pid=11210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1016" name=C330429CBD079F63D04CC4B15A6776291E03377A4C6B303C301C3B1B4DA0470D047C2389F445053E29523E929812AF79829D9759AA5A734388CA229769EC658EAC9CFE973A2AE566A2268DCF dev="mqueue" ino=31902 res=0 errno=0
[  396.144243][T11249] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1026'.
[  396.228654][T11236] kexec: Could not allocate control_code_buffer
[  396.748023][T11263] FAULT_INJECTION: forcing a failure.
[  396.748023][T11263] name failslab, interval 1, probability 0, space 0, times 0
[  396.795760][T11263] CPU: 1 UID: 0 PID: 11263 Comm: syz.0.1028 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  396.795818][T11263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  396.795843][T11263] Call Trace:
[  396.795854][T11263]  <TASK>
[  396.795868][T11263]  dump_stack_lvl+0x16c/0x1f0
[  396.795922][T11263]  should_fail_ex+0x512/0x640
[  396.795970][T11263]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  396.796019][T11263]  should_failslab+0xc2/0x120
[  396.796061][T11263]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  396.796099][T11263]  ? vm_area_dup+0x25/0x760
[  396.796149][T11263]  vm_area_dup+0x25/0x760
[  396.796190][T11263]  __split_vma+0x17f/0x1030
[  396.796231][T11263]  ? __pfx___split_vma+0x10/0x10
[  396.796285][T11263]  vma_modify+0x2b5/0x510
[  396.796329][T11263]  vma_modify_flags+0x212/0x2d0
[  396.796369][T11263]  ? __pfx_vma_modify_flags+0x10/0x10
[  396.796404][T11263]  ? mtree_range_walk+0x718/0xc00
[  396.796476][T11263]  ? mas_walk+0x6a6/0x910
[  396.796531][T11263]  mlock_fixup+0x27c/0xe50
[  396.796571][T11263]  apply_vma_lock_flags+0x261/0x390
[  396.796621][T11263]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  396.796665][T11263]  ? __pfx___might_resched+0x10/0x10
[  396.796715][T11263]  ? __pfx_down_write_killable+0x10/0x10
[  396.796770][T11263]  ? do_futex+0x122/0x350
[  396.796809][T11263]  do_mlock+0x2ac/0x810
[  396.796842][T11263]  ? __pfx___might_resched+0x10/0x10
[  396.796879][T11263]  ? __pfx_do_mlock+0x10/0x10
[  396.796912][T11263]  ? __x64_sys_futex+0x1e0/0x4c0
[  396.796957][T11263]  ? __x64_sys_futex+0x1e9/0x4c0
[  396.797002][T11263]  ? xfd_validate_state+0x5d/0x180
[  396.797057][T11263]  ? rcu_is_watching+0x12/0xc0
[  396.797095][T11263]  __x64_sys_mlock+0x59/0x80
[  396.797136][T11263]  do_syscall_64+0xcd/0x230
[  396.797187][T11263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.797220][T11263] RIP: 0033:0x7faccb98e969
[  396.797253][T11263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.797293][T11263] RSP: 002b:00007faccc89d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  396.797325][T11263] RAX: ffffffffffffffda RBX: 00007faccbbb5fa0 RCX: 00007faccb98e969
[  396.797346][T11263] RDX: 0000000000000000 RSI: 0000000000007fff RDI: 0000000000007c88
[  396.797365][T11263] RBP: 00007faccba10ab1 R08: 0000000000000000 R09: 0000000000000000
[  396.797384][T11263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  396.797402][T11263] R13: 0000000000000000 R14: 00007faccbbb5fa0 R15: 00007ffc13ddd2f8
[  396.797443][T11263]  </TASK>
[  398.055152][T11285] cgroup: fork rejected by pids controller in /syz4
[  398.215215][T11331] Invalid ELF header magic: != ELF
[  398.602436][T11362] Invalid ELF header magic: != ELF
[  401.566654][T11411] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1048'.
[  401.941851][T11421] size and base must be multiples of 4 kiB
[  401.947960][T11421] CPU: 1 UID: 0 PID: 11421 Comm: syz.4.1051 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  401.948006][T11421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  401.948026][T11421] Call Trace:
[  401.948038][T11421]  <TASK>
[  401.948049][T11421]  dump_stack_lvl+0x16c/0x1f0
[  401.948104][T11421]  mtrr_add+0xdf/0x110
[  401.948152][T11421]  mtrr_ioctl+0x7ef/0xcf0
[  401.948202][T11421]  ? __pfx_mtrr_ioctl+0x10/0x10
[  401.948259][T11421]  ? find_held_lock+0x2b/0x80
[  401.948310][T11421]  ? __fget_files+0x20e/0x3c0
[  401.948363][T11421]  ? __pfx_mtrr_ioctl+0x10/0x10
[  401.948414][T11421]  proc_reg_unlocked_ioctl+0x226/0x320
[  401.948447][T11421]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  401.948485][T11421]  __x64_sys_ioctl+0x190/0x200
[  401.948533][T11421]  do_syscall_64+0xcd/0x230
[  401.948583][T11421]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.948616][T11421] RIP: 0033:0x7f610518e969
[  401.948641][T11421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.948674][T11421] RSP: 002b:00007f6105f68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  401.948704][T11421] RAX: ffffffffffffffda RBX: 00007f61053b5fa0 RCX: 00007f610518e969
[  401.948727][T11421] RDX: 0000000000000003 RSI: 00000000400c4d01 RDI: 0000000000000003
[  401.948745][T11421] RBP: 00007f6105210ab1 R08: 0000000000000000 R09: 0000000000000000
[  401.948764][T11421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  401.948782][T11421] R13: 0000000000000000 R14: 00007f61053b5fa0 R15: 00007fff89545a28
[  401.948822][T11421]  </TASK>
[  405.040014][   T30] audit: type=1800 audit(4294967327.481:17): pid=11477 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1060" name="dummy_udc" dev="gadgetfs" ino=6557 res=0 errno=0
[  406.123464][T11488] can0: slcan on ttyprintk.
[  406.297109][T11488] can0 (unregistered): slcan off ttyprintk.
[  409.361812][T11569] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1088'.
[  409.386817][T11572] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1080'.
[  409.411704][T11580] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1081'.
[  409.655244][T11580] bridge0: port 2(bridge_slave_1) entered disabled state
[  409.715510][T11580] bridge_slave_1 (unregistering): left allmulticast mode
[  409.725405][T11580] bridge_slave_1 (unregistering): left promiscuous mode
[  409.734364][T11580] bridge0: port 2(bridge_slave_1) entered disabled state
[  415.414205][   T55] Bluetooth: hci0: unexpected subevent 0x01 length: 5 < 18
[  415.534998][T11730] FAULT_INJECTION: forcing a failure.
[  415.534998][T11730] name failslab, interval 1, probability 0, space 0, times 0
[  415.658801][T11730] CPU: 1 UID: 0 PID: 11730 Comm: syz.1.1106 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  415.658849][T11730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  415.658869][T11730] Call Trace:
[  415.658878][T11730]  <TASK>
[  415.658891][T11730]  dump_stack_lvl+0x16c/0x1f0
[  415.658940][T11730]  should_fail_ex+0x512/0x640
[  415.658985][T11730]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  415.659028][T11730]  should_failslab+0xc2/0x120
[  415.659096][T11730]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  415.659137][T11730]  ? sock_alloc_inode+0x25/0x1c0
[  415.659186][T11730]  ? __pfx_sock_alloc_inode+0x10/0x10
[  415.659228][T11730]  sock_alloc_inode+0x25/0x1c0
[  415.659270][T11730]  alloc_inode+0x61/0x240
[  415.659311][T11730]  sock_alloc+0x40/0x280
[  415.659353][T11730]  __sock_create+0xc1/0x8d0
[  415.659409][T11730]  __sys_socket+0x14d/0x260
[  415.659459][T11730]  ? __pfx___sys_socket+0x10/0x10
[  415.659508][T11730]  ? rcu_is_watching+0x12/0xc0
[  415.659546][T11730]  __x64_sys_socket+0x72/0xb0
[  415.659593][T11730]  ? lockdep_hardirqs_on+0x7c/0x110
[  415.659639][T11730]  do_syscall_64+0xcd/0x230
[  415.659689][T11730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.659721][T11730] RIP: 0033:0x7fee0e98e969
[  415.659747][T11730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  415.659779][T11730] RSP: 002b:00007fee0f794038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  415.659811][T11730] RAX: ffffffffffffffda RBX: 00007fee0ebb6080 RCX: 00007fee0e98e969
[  415.659832][T11730] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000025
[  415.659850][T11730] RBP: 00007fee0ea10ab1 R08: 0000000000000000 R09: 0000000000000000
[  415.659870][T11730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  415.659889][T11730] R13: 0000000000000000 R14: 00007fee0ebb6080 R15: 00007ffef1efa918
[  415.659930][T11730]  </TASK>
[  415.659945][T11730] socket: no more sockets
[  417.453176][T11747] kexec: Could not allocate control_code_buffer
[  417.956198][T11778] tipc: Started in network mode
[  417.962393][T11778] tipc: Node identity ee00, cluster identity 4711
[  417.968867][T11778] tipc: Node number set to 60928
[  418.437556][T11783] �: entered promiscuous mode
[  418.510342][T11789] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1119'.
[  418.638356][T11801] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1121'.
[  422.038368][T11892] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1132'.
[  425.639712][T11950] random: crng reseeded on system resumption
[  426.023742][T11960] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1145'.
[  427.232185][T11982] ubi0: detaching mtd0
[  427.351863][T11982] ubi0: mtd0 is detached
[  431.111404][T12061] svc: failed to register nfsdv3 RPC service (errno 101).
[  431.127588][T12061] svc: failed to register nfsaclv3 RPC service (errno 101).
[  431.162584][T12064] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1164'.
[  431.479273][T12059] ima: policy update failed
[  431.488883][   T30] audit: type=1802 audit(4294968384.924:18): pid=12059 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1164" res=0 errno=0
[  431.508441][T12069] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12
[  431.822158][T12071] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13
[  431.987103][T12078] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1169'.
[  434.845663][T12123] nfs4: Unknown parameter 'nfsd'
[  435.079184][T12106] netlink: 'syz.0.1174': attribute type 33 has an invalid length.
[  435.190252][T12106] netlink: 322 bytes leftover after parsing attributes in process `syz.0.1174'.
[  439.035761][T12177] netlink: 'syz.1.1189': attribute type 11 has an invalid length.
[  440.570480][T12186] kexec: Could not allocate control_code_buffer
[  441.092025][T12223] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1199'.
[  441.855020][T12229] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[  443.262574][T12261] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1209'.
[  444.778038][   T30] audit: type=1806 audit(4294968398.214:19): xattr="0" res=-22
[  444.890982][T12313] netlink: 346 bytes leftover after parsing attributes in process `syz.0.1221'.
[  445.127619][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  445.134001][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  446.123704][T12355] can: request_module (can-proto-3) failed.
[  446.297722][T12363] openvswitch: netlink: IPv6 tunnel dst address is zero
[  446.450467][T12365] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1235'.
[  446.540759][T12365] bond0: (slave bond_slave_1): Releasing backup interface
[  447.383780][T12382] ubi4: attaching mtd0
[  447.429176][T12382] ubi4 error: ubi_attach_mtd_dev: bad VID header (3969) or data offsets (4033)
[  448.278181][T12393] program syz.0.1241 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  449.762582][   T30] audit: type=1800 audit(4294968403.194:20): pid=12439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1248" name="dbroot" dev="configfs" ino=39088 res=0 errno=0
[  449.809020][T12439] db_root: not a directory: /dev/audio1
[  449.965922][   T30] audit: type=1326 audit(4294968403.394:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12438 comm="syz.0.1248" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faccb98e969 code=0x0
[  452.215647][T12457] ptrace attach of "./syz-executor exec"[5830] was attempted by ""[12457]
[  452.960617][T12481] random: crng reseeded on system resumption
[  453.648362][T12488] can: request_module (can-proto-0) failed.
[  453.745481][T12481] busy
[  453.751411][T12481] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1256'.
[  454.337103][T12508] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1263'.
[  455.654969][T12528] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1267'.
[  456.937995][T12584] Format for linking two devices is "netnsfd_a:ifidx_a netnsfd_b:ifidx_b" (int uint int uint).
[  457.968266][T12596] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1281'.
[  461.757582][T12659] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  461.795486][T12659] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  461.814513][T12659] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  461.964607][T12659] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  462.327377][T12680] can: request_module (can-proto-3) failed.
[  463.116170][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  463.844294][   T55] Bluetooth: hci3: command 0x0c1a tx timeout
[  463.850418][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  463.995155][T12723] Bluetooth: hci4: command 0x0c1a tx timeout
[  464.279026][T12707] Invalid ELF header magic: != ELF
[  467.774566][   T30] audit: type=1800 audit(4294968421.204:22): pid=12769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1316" name="members" dev="configfs" ino=38870 res=0 errno=0
[  473.261654][T12860] mkiss: ax0: crc mode is auto.
[  473.876264][T12866] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1330'.
[  475.252478][T12914] netlink: zone id is out of range
[  475.274263][T12914] netlink: zone id is out of range
[  475.288547][T12914] netlink: zone id is out of range
[  475.293716][T12914] netlink: zone id is out of range
[  475.325705][T12914] netlink: zone id is out of range
[  475.330863][T12914] netlink: zone id is out of range
[  475.330887][T12914] netlink: zone id is out of range
[  475.364357][T12914] netlink: zone id is out of range
[  475.389962][T12914] netlink: zone id is out of range
[  475.400080][T12914] netlink: zone id is out of range
[  475.606876][T12927] bcache: register_bcache() error : Not a bcache superblock (bad offset)
[  476.445251][T12941] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1344'.
[  476.602337][T12941] bridge_slave_0: left allmulticast mode
[  476.609393][T12941] bridge_slave_0: left promiscuous mode
[  476.615461][T12941] bridge0: port 1(bridge_slave_0) entered disabled state
[  479.955772][T13014] capability: warning: `syz.3.1359' uses deprecated v2 capabilities in a way that may be insecure
[  482.047592][   T30] audit: type=1800 audit(4294968435.484:23): pid=13019 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1363" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[  485.962929][   T30] audit: type=1800 audit(4294968439.394:24): pid=13128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1384" name="SYSVffffffff" dev="tmpfs" ino=0 res=0 errno=0
[  487.127594][T13129] could not allocate digest TFM handle binfmt_misc
[  487.742299][T13151] can: request_module (can-proto-0) failed.
[  488.071827][T13156] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1390'.
[  490.215501][T13197] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1398'.
[  490.244701][T13197] team_slave_0: entered allmulticast mode
[  491.336530][T13215] kernel read not supported for file /set_event_notrace_pid (pid: 13215 comm: syz.1.1402)
[  491.370680][   T30] audit: type=1800 audit(4294968444.804:25): pid=13215 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1402" name="set_event_notrace_pid" dev="tracefs" ino=1047 res=0 errno=0
[  491.749567][T12723] Bluetooth: hci4: Unable to find connection for big 0xd2
[  492.940016][T12723] Bluetooth: hci4: unexpected event 0x3e length: 728 > 260
[  492.940077][T12723] Bluetooth: hci4: unexpected subevent 0x0c length: 727 > 5
[  492.960577][T13246] FAULT_INJECTION: forcing a failure.
[  492.960577][T13246] name fail_futex, interval 1, probability 0, space 0, times 0
[  492.994342][T13246] CPU: 0 UID: 0 PID: 13246 Comm: syz.4.1407 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  492.994391][T13246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  492.994410][T13246] Call Trace:
[  492.994420][T13246]  <TASK>
[  492.994432][T13246]  dump_stack_lvl+0x16c/0x1f0
[  492.994481][T13246]  should_fail_ex+0x512/0x640
[  492.994533][T13246]  get_futex_key+0x49e/0x1000
[  492.994565][T13246]  ? __pfx_seq_read+0x10/0x10
[  492.994614][T13246]  ? __pfx_get_futex_key+0x10/0x10
[  492.994663][T13246]  futex_wake+0xe7/0x4e0
[  492.994707][T13246]  ? __pfx_futex_wake+0x10/0x10
[  492.994747][T13246]  ? __pfx_full_proxy_read+0x10/0x10
[  492.994789][T13246]  ? ksys_read+0x190/0x240
[  492.994827][T13246]  do_futex+0x1e3/0x350
[  492.994862][T13246]  ? __pfx_do_futex+0x10/0x10
[  492.994907][T13246]  __x64_sys_futex+0x1e0/0x4c0
[  492.994961][T13246]  ? fput+0x70/0xf0
[  492.994995][T13246]  ? __pfx___x64_sys_futex+0x10/0x10
[  492.995027][T13246]  ? ksys_read+0x1b9/0x240
[  492.995054][T13246]  ? __pfx_ksys_read+0x10/0x10
[  492.995081][T13246]  ? rcu_is_watching+0x12/0xc0
[  492.995119][T13246]  do_syscall_64+0xcd/0x230
[  492.995177][T13246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.995207][T13246] RIP: 0033:0x7f610518e969
[  492.995230][T13246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.995260][T13246] RSP: 002b:00007f6105f680e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  492.995299][T13246] RAX: ffffffffffffffda RBX: 00007f61053b5fa8 RCX: 00007f610518e969
[  492.995319][T13246] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f61053b5fac
[  492.995338][T13246] RBP: 00007f61053b5fa0 R08: 00007f6105f69000 R09: 0000000000000000
[  492.995356][T13246] R10: 000000000000007a R11: 0000000000000246 R12: 00007f61053b5fac
[  492.995374][T13246] R13: 0000000000000000 R14: 00007fff89545940 R15: 00007fff89545a28
[  492.995412][T13246]  </TASK>
[  493.668914][T13262] futex_wake_op: syz.1.1410 tries to shift op by 64; fix this program
[  496.599796][   T30] audit: type=1800 audit(4294968450.034:26): pid=13301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1419" name="version" dev="configfs" ino=42103 res=0 errno=0
[  496.923568][T13313] FAULT_INJECTION: forcing a failure.
[  496.923568][T13313] name failslab, interval 1, probability 0, space 0, times 0
[  496.986418][T13313] CPU: 0 UID: 0 PID: 13313 Comm: syz.0.1418 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  496.986465][T13313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  496.986484][T13313] Call Trace:
[  496.986495][T13313]  <TASK>
[  496.986507][T13313]  dump_stack_lvl+0x16c/0x1f0
[  496.986559][T13313]  should_fail_ex+0x512/0x640
[  496.986612][T13313]  should_failslab+0xc2/0x120
[  496.986652][T13313]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  496.986691][T13313]  ? skb_clone+0x190/0x3f0
[  496.986734][T13313]  skb_clone+0x190/0x3f0
[  496.986773][T13313]  netlink_deliver_tap+0xabd/0xd30
[  496.986822][T13313]  netlink_unicast+0x5df/0x7f0
[  496.986868][T13313]  ? __pfx_netlink_unicast+0x10/0x10
[  496.986907][T13313]  ? __lock_acquire+0xaa4/0x1ba0
[  496.986961][T13313]  netlink_sendmsg+0x8d1/0xdd0
[  496.987008][T13313]  ? __pfx_netlink_sendmsg+0x10/0x10
[  496.987072][T13313]  ____sys_sendmsg+0xa95/0xc70
[  496.987121][T13313]  ? copy_msghdr_from_user+0x10a/0x160
[  496.987159][T13313]  ? __pfx_____sys_sendmsg+0x10/0x10
[  496.987224][T13313]  ___sys_sendmsg+0x134/0x1d0
[  496.987262][T13313]  ? __pfx____sys_sendmsg+0x10/0x10
[  496.987350][T13313]  __sys_sendmsg+0x16d/0x220
[  496.987389][T13313]  ? __pfx___sys_sendmsg+0x10/0x10
[  496.987425][T13313]  ? __x64_sys_futex+0x1e0/0x4c0
[  496.987471][T13313]  ? rcu_is_watching+0x12/0xc0
[  496.987513][T13313]  do_syscall_64+0xcd/0x230
[  496.987562][T13313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.987594][T13313] RIP: 0033:0x7faccb98e969
[  496.987620][T13313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  496.987670][T13313] RSP: 002b:00007faccc87c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  496.987701][T13313] RAX: ffffffffffffffda RBX: 00007faccbbb6080 RCX: 00007faccb98e969
[  496.987723][T13313] RDX: 0000000020040000 RSI: 0000200000000340 RDI: 0000000000000005
[  496.987743][T13313] RBP: 00007faccba10ab1 R08: 0000000000000000 R09: 0000000000000000
[  496.987763][T13313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  496.987783][T13313] R13: 0000000000000000 R14: 00007faccbbb6080 R15: 00007ffc13ddd2f8
[  496.987825][T13313]  </TASK>
[  499.305676][T13358] bcache: register_bcache() error : failed to open device
[  499.686053][T13365] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  499.712538][T13365] CIFS mount error: No usable UNC path provided in device string!
[  499.712538][T13365] 
[  499.723071][T13365] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  500.534437][T13380] netlink: 350 bytes leftover after parsing attributes in process `syz.4.1435'.
[  501.996521][T13408] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1440'.
[  502.348016][T13415] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[  502.930450][T13430] netlink: 'syz.3.1446': attribute type 16 has an invalid length.
[  502.938917][T13430] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1446'.
[  502.974781][T13430] veth1_macvtap: left promiscuous mode
[  503.255823][T13433] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1445'.
[  506.001159][T13509] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1463'.
[  506.561888][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  506.562238][T13522] ptp ptp0: new virtual clock ptp1
[  506.568464][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  506.629834][T13522] ptp ptp0: guarantee physical clock free running
[  507.293715][T13542] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1474'.
[  507.380326][T13531] random: crng reseeded on system resumption
[  508.315899][T13558] sd 0:0:1:0: PR command failed: 1026
[  508.340657][T13558] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  508.387548][T13558] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  509.303492][T13590] random: crng reseeded on system resumption
[  510.467827][T13606] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  510.499813][T13606] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  510.508787][T13606] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  510.514993][T13606] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  511.653802][T13662] FAULT_INJECTION: forcing a failure.
[  511.653802][T13662] name failslab, interval 1, probability 0, space 0, times 0
[  511.687164][T13662] CPU: 1 UID: 0 PID: 13662 Comm: syz.4.1499 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  511.687212][T13662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  511.687233][T13662] Call Trace:
[  511.687243][T13662]  <TASK>
[  511.687256][T13662]  dump_stack_lvl+0x16c/0x1f0
[  511.687310][T13662]  should_fail_ex+0x512/0x640
[  511.687355][T13662]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  511.687395][T13662]  should_failslab+0xc2/0x120
[  511.687436][T13662]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  511.687472][T13662]  ? __proc_create+0xc3/0x8c0
[  511.687506][T13662]  ? __proc_create+0x2ce/0x8c0
[  511.687547][T13662]  __proc_create+0x2ce/0x8c0
[  511.687584][T13662]  ? __pfx___proc_create+0x10/0x10
[  511.687636][T13662]  proc_create_reg+0x7d/0x180
[  511.687678][T13662]  proc_create_net_data+0x8e/0x1b0
[  511.687718][T13662]  ? __pfx_proc_create_net_data+0x10/0x10
[  511.687766][T13662]  ? __pfx_ipmr_net_init+0x10/0x10
[  511.687803][T13662]  ipmr_net_init+0x27d/0x4e0
[  511.687848][T13662]  ? __pfx_ipmr_net_init+0x10/0x10
[  511.687892][T13662]  ops_init+0x1df/0x5f0
[  511.687937][T13662]  setup_net+0x21e/0x850
[  511.687981][T13662]  ? __pfx_setup_net+0x10/0x10
[  511.688016][T13662]  ? lockdep_init_map_type+0x5c/0x280
[  511.688059][T13662]  ? __pfx_down_read_killable+0x10/0x10
[  511.688094][T13662]  ? debug_mutex_init+0x37/0x70
[  511.688128][T13662]  copy_net_ns+0x2a6/0x5f0
[  511.688175][T13662]  create_new_namespaces+0x3ea/0xad0
[  511.688221][T13662]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  511.688268][T13662]  ksys_unshare+0x45b/0xa40
[  511.688314][T13662]  ? __pfx_ksys_unshare+0x10/0x10
[  511.688353][T13662]  ? xfd_validate_state+0x5d/0x180
[  511.688408][T13662]  ? rcu_is_watching+0x12/0xc0
[  511.688446][T13662]  __x64_sys_unshare+0x31/0x40
[  511.688487][T13662]  do_syscall_64+0xcd/0x230
[  511.688536][T13662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  511.688567][T13662] RIP: 0033:0x7f610518e969
[  511.688592][T13662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  511.688630][T13662] RSP: 002b:00007f6105f68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  511.688660][T13662] RAX: ffffffffffffffda RBX: 00007f61053b5fa0 RCX: 00007f610518e969
[  511.688682][T13662] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  511.688701][T13662] RBP: 00007f6105210ab1 R08: 0000000000000000 R09: 0000000000000000
[  511.688721][T13662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  511.688740][T13662] R13: 0000000000000000 R14: 00007f61053b5fa0 R15: 00007fff89545a28
[  511.688781][T13662]  </TASK>
[  511.947448][T12723] Bluetooth: hci2: command 0x0c1a tx timeout
[  512.512611][T13679] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1501'.
[  512.559335][T12723] Bluetooth: hci4: command 0x0c1a tx timeout
[  512.565434][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout
[  512.571724][T12723] Bluetooth: hci0: command 0x0c1a tx timeout
[  512.635620][T13684] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5)
[  513.018438][T13700] bond0: Unable to set down delay as MII monitoring is disabled
[  516.428279][T13814] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1525'.
[  516.478490][T13814] macvlan0: entered allmulticast mode
[  516.501650][T13814] veth1_vlan: entered allmulticast mode
[  519.156019][T13889] netlink: 'syz.0.1536': attribute type 27 has an invalid length.
[  519.167763][T13889] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1536'.
[  519.612144][   T30] audit: type=1804 audit(4294968339.214:27): pid=13903 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1539" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  520.021306][T13909] FAULT_INJECTION: forcing a failure.
[  520.021306][T13909] name failslab, interval 1, probability 0, space 0, times 0
[  520.056965][T13909] CPU: 1 UID: 0 PID: 13909 Comm: syz.0.1540 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  520.057013][T13909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  520.057032][T13909] Call Trace:
[  520.057042][T13909]  <TASK>
[  520.057054][T13909]  dump_stack_lvl+0x16c/0x1f0
[  520.057106][T13909]  should_fail_ex+0x512/0x640
[  520.057149][T13909]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  520.057184][T13909]  ? __pfx_blk_mq_debugfs_open+0x10/0x10
[  520.057219][T13909]  should_failslab+0xc2/0x120
[  520.057261][T13909]  __kmalloc_cache_noprof+0x6a/0x3e0
[  520.057293][T13909]  ? single_open+0x4d/0x1f0
[  520.057335][T13909]  ? __pfx_blk_mq_debugfs_open+0x10/0x10
[  520.057369][T13909]  ? __pfx_blk_mq_debugfs_show+0x10/0x10
[  520.057399][T13909]  single_open+0x4d/0x1f0
[  520.057438][T13909]  blk_mq_debugfs_open+0x14a/0x250
[  520.057475][T13909]  full_proxy_open_regular+0x1b6/0x360
[  520.057519][T13909]  do_dentry_open+0x741/0x1c10
[  520.057552][T13909]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  520.057600][T13909]  vfs_open+0x82/0x3f0
[  520.057646][T13909]  path_openat+0x1e5e/0x2d40
[  520.057691][T13909]  ? __pfx_path_openat+0x10/0x10
[  520.057732][T13909]  do_filp_open+0x20b/0x470
[  520.057763][T13909]  ? __pfx_do_filp_open+0x10/0x10
[  520.057823][T13909]  ? alloc_fd+0x471/0x7d0
[  520.057882][T13909]  do_sys_openat2+0x11b/0x1d0
[  520.057922][T13909]  ? __pfx_do_sys_openat2+0x10/0x10
[  520.057966][T13909]  ? __pfx___might_resched+0x10/0x10
[  520.058016][T13909]  __x64_sys_openat+0x174/0x210
[  520.058059][T13909]  ? __pfx___x64_sys_openat+0x10/0x10
[  520.058105][T13909]  ? rcu_is_watching+0x12/0xc0
[  520.058146][T13909]  do_syscall_64+0xcd/0x230
[  520.058196][T13909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.058226][T13909] RIP: 0033:0x7faccb98e969
[  520.058250][T13909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  520.058286][T13909] RSP: 002b:00007faccc89d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  520.058335][T13909] RAX: ffffffffffffffda RBX: 00007faccbbb5fa0 RCX: 00007faccb98e969
[  520.058355][T13909] RDX: 0000000000143642 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  520.058375][T13909] RBP: 00007faccba10ab1 R08: 0000000000000000 R09: 0000000000000000
[  520.058395][T13909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  520.058413][T13909] R13: 0000000000000000 R14: 00007faccbbb5fa0 R15: 00007ffc13ddd2f8
[  520.058454][T13909]  </TASK>
[  520.795691][T13936] busy
[  526.255580][T14037] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1563'.
[  526.827566][T14051] bond0: Unable to set down delay as MII monitoring is disabled
[  528.424052][T14107] busy
[  530.872306][T14165] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd
[  531.156366][T14171] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1591'.
[  531.157784][T14171] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1591'.
[  531.158361][T14171] netlink: 170 bytes leftover after parsing attributes in process `syz.4.1591'.
[  531.902689][T14183] Invalid ELF header magic: != ELF
[  532.251166][T14211] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1601'.
[  532.267797][   T30] audit: type=1804 audit(4294968351.872:28): pid=14212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1601" name="file0" dev="tmpfs" ino=2460 res=1 errno=0
[  532.331120][   T30] audit: type=1800 audit(4294968351.872:29): pid=14212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1601" name="file0" dev="tmpfs" ino=2460 res=0 errno=0
[  534.525632][T14265] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1610'.
[  534.687627][T14265] team0: Port device team_slave_0 removed
[  535.360580][   T30] audit: type=1800 audit(4294968354.962:30): pid=14287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1613" name="discovery_nqn" dev="configfs" ino=46187 res=0 errno=0
[  535.381413][    C0] vkms_vblank_simulate: vblank timer overrun
[  536.502964][T14295] sctp: [Deprecated]: syz.3.1616 (pid 14295) Use of int in maxseg socket option.
[  536.502964][T14295] Use struct sctp_assoc_value instead
[  536.751863][T14289] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  536.770918][T14289] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  536.784770][T14289] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  536.797059][T14289] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  537.847742][T13681] Bluetooth: hci2: command 0x0c1a tx timeout
[  538.804478][T13681] Bluetooth: hci4: command 0x0c1a tx timeout
[  538.811677][   T55] Bluetooth: hci3: command 0x0c1a tx timeout
[  538.817938][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  538.893185][T14347] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1625'.
[  538.917202][T14351] random: crng reseeded on system resumption
[  538.940969][T14347] netlink: 'syz.4.1625': attribute type 1 has an invalid length.
[  538.967074][T14347] netlink: 274 bytes leftover after parsing attributes in process `syz.4.1625'.
[  540.903703][T14406] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1637'.
[  540.916854][T14404] nbd: couldn't find device at index 33904
[  541.028716][T14406] : renamed from bond0 (while UP)
[  542.058705][T14430] Invalid ELF header magic: != ELF
[  543.089296][T14446] Invalid ELF header magic: != ELF
[  544.029204][T14451] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  544.040994][T14451] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  544.065516][T14451] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  544.140514][T14451] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  544.974505][T13681] Bluetooth: hci2: command 0x0c1a tx timeout
[  545.516869][T13681] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18
[  545.519452][T14508] netlink: 'syz.3.1659': attribute type 1 has an invalid length.
[  545.910586][T14515] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  546.092515][T13681] Bluetooth: hci3: command 0x0c1a tx timeout
[  546.098581][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  546.134160][T14526] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input15
[  546.165969][T13681] Bluetooth: hci4: command 0x0c1a tx timeout
[  546.827963][T14538] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1672'.
[  547.337048][T14537] Invalid ELF header magic: != ELF
[  548.883554][T14542] sctp: [Deprecated]: syz.1.1665 (pid 14542) Use of int in maxseg socket option.
[  548.883554][T14542] Use struct sctp_assoc_value instead
[  552.801760][T14618] Invalid ELF header magic: != ELF
[  553.596377][T14616] sctp: [Deprecated]: syz.0.1680 (pid 14616) Use of int in maxseg socket option.
[  553.596377][T14616] Use struct sctp_assoc_value instead
[  555.341442][   T30] audit: type=1807 audit(4294968382.942:31): UNKNOWN=0"�]$|�1j�0B|d���ӉO��+��/��x����WӦ��^��gq%Ḧr�O� res=0
[  555.369570][   T30] audit: type=1802 audit(4294968382.942:32): pid=14654 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.1688" res=0 errno=0
[  555.425743][T14652] ima: policy update failed
[  555.452094][   T30] audit: type=1802 audit(4294968383.052:33): pid=14652 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1688" res=0 errno=0
[  556.628571][T14651] kexec: Could not allocate control_code_buffer
[  558.188578][T14696] Invalid ELF header magic: != ELF
[  558.382372][T14698] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1698'.
[  558.496684][T14698] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  559.918438][T14733] netlink: 'syz.3.1705': attribute type 1 has an invalid length.
[  560.626137][T14739] FAULT_INJECTION: forcing a failure.
[  560.626137][T14739] name failslab, interval 1, probability 0, space 0, times 0
[  560.713753][T14739] CPU: 0 UID: 0 PID: 14739 Comm: syz.1.1707 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  560.713809][T14739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  560.713829][T14739] Call Trace:
[  560.713839][T14739]  <TASK>
[  560.713852][T14739]  dump_stack_lvl+0x16c/0x1f0
[  560.713913][T14739]  should_fail_ex+0x512/0x640
[  560.713963][T14739]  should_failslab+0xc2/0x120
[  560.714004][T14739]  __kmalloc_cache_noprof+0x6a/0x3e0
[  560.714036][T14739]  ? sctp_add_bind_addr+0xae/0x3f0
[  560.714082][T14739]  sctp_add_bind_addr+0xae/0x3f0
[  560.714127][T14739]  sctp_copy_local_addr_list+0x39d/0x5a0
[  560.714183][T14739]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  560.714238][T14739]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  560.714308][T14739]  ? sctp_bind_addr_copy+0xe0/0x530
[  560.714353][T14739]  sctp_bind_addr_copy+0xe0/0x530
[  560.714410][T14739]  sctp_connect_new_asoc+0x1d7/0x790
[  560.714450][T14739]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  560.714500][T14739]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  560.714557][T14739]  sctp_sendmsg+0x15f9/0x1ee0
[  560.714593][T14739]  ? preempt_schedule_common+0x44/0xc0
[  560.714648][T14739]  ? __pfx_sctp_sendmsg+0x10/0x10
[  560.714706][T14739]  ? __might_fault+0xe3/0x190
[  560.714744][T14739]  ? __pfx_aa_sk_perm+0x10/0x10
[  560.714787][T14739]  ? __pfx_sctp_sendmsg+0x10/0x10
[  560.714840][T14739]  inet_sendmsg+0x119/0x140
[  560.714913][T14739]  __sys_sendto+0x431/0x510
[  560.714948][T14739]  ? __pfx___sys_sendto+0x10/0x10
[  560.714996][T14739]  ? __pfx___do_sys_clone+0x10/0x10
[  560.715056][T14739]  ? xfd_validate_state+0x5d/0x180
[  560.715124][T14739]  ? rcu_is_watching+0x12/0xc0
[  560.715157][T14739]  __x64_sys_sendto+0xe0/0x1c0
[  560.715187][T14739]  ? do_syscall_64+0x91/0x230
[  560.715231][T14739]  ? lockdep_hardirqs_on+0x7c/0x110
[  560.715274][T14739]  do_syscall_64+0xcd/0x230
[  560.715323][T14739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.715355][T14739] RIP: 0033:0x7fee0e98e969
[  560.715380][T14739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  560.715411][T14739] RSP: 002b:00007fee0f7b5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  560.715459][T14739] RAX: ffffffffffffffda RBX: 00007fee0ebb5fa0 RCX: 00007fee0e98e969
[  560.715480][T14739] RDX: 000000000002000f RSI: 0000000000000000 RDI: 0000000000000003
[  560.715498][T14739] RBP: 00007fee0ea10ab1 R08: 0000200000000000 R09: 000000000000001c
[  560.715518][T14739] R10: 0000000000000102 R11: 0000000000000246 R12: 0000000000000000
[  560.715536][T14739] R13: 0000000000000000 R14: 00007fee0ebb5fa0 R15: 00007ffef1efa918
[  560.715577][T14739]  </TASK>
[  560.977741][    C0] vkms_vblank_simulate: vblank timer overrun
[  562.480678][T14762] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1709'.
[  562.602287][T14762] mac80211_hwsim hwsim20 wlan1: entered allmulticast mode
[  562.637823][T14766] FAULT_INJECTION: forcing a failure.
[  562.637823][T14766] name failslab, interval 1, probability 0, space 0, times 0
[  562.681890][T14766] CPU: 0 UID: 0 PID: 14766 Comm: syz.1.1710 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  562.681935][T14766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  562.681953][T14766] Call Trace:
[  562.681963][T14766]  <TASK>
[  562.681974][T14766]  dump_stack_lvl+0x16c/0x1f0
[  562.682021][T14766]  should_fail_ex+0x512/0x640
[  562.682062][T14766]  ? fs_reclaim_acquire+0xae/0x150
[  562.682109][T14766]  should_failslab+0xc2/0x120
[  562.682144][T14766]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  562.682178][T14766]  ? security_inode_alloc+0x3b/0x2b0
[  562.682217][T14766]  security_inode_alloc+0x3b/0x2b0
[  562.682250][T14766]  inode_init_always_gfp+0xce4/0x1030
[  562.682302][T14766]  alloc_inode+0x86/0x240
[  562.682337][T14766]  path_from_stashed+0x2be/0xb00
[  562.682371][T14766]  ? __pfx_path_from_stashed+0x10/0x10
[  562.682402][T14766]  ? do_raw_read_unlock+0x44/0xe0
[  562.682453][T14766]  ns_get_path+0x5f/0x80
[  562.682498][T14766]  proc_ns_get_link+0x121/0x260
[  562.682556][T14766]  ? __pfx_proc_ns_get_link+0x10/0x10
[  562.682603][T14766]  ? __pfx___might_resched+0x10/0x10
[  562.682642][T14766]  ? __pfx_proc_ns_get_link+0x10/0x10
[  562.682686][T14766]  step_into+0x1b22/0x2270
[  562.682736][T14766]  ? __pfx_step_into+0x10/0x10
[  562.682780][T14766]  ? find_held_lock+0x2b/0x80
[  562.682817][T14766]  path_openat+0x749/0x2d40
[  562.682859][T14766]  ? __pfx_path_openat+0x10/0x10
[  562.682897][T14766]  do_filp_open+0x20b/0x470
[  562.682926][T14766]  ? __pfx_do_filp_open+0x10/0x10
[  562.682980][T14766]  ? alloc_fd+0x471/0x7d0
[  562.683036][T14766]  do_sys_openat2+0x11b/0x1d0
[  562.683076][T14766]  ? __pfx_do_sys_openat2+0x10/0x10
[  562.683128][T14766]  __x64_sys_openat+0x174/0x210
[  562.683166][T14766]  ? __pfx___x64_sys_openat+0x10/0x10
[  562.683210][T14766]  ? do_user_addr_fault+0x843/0x1370
[  562.683250][T14766]  do_syscall_64+0xcd/0x230
[  562.683297][T14766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.683327][T14766] RIP: 0033:0x7fee0e98d2d0
[  562.683351][T14766] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  562.683381][T14766] RSP: 002b:00007fee0f793f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  562.683409][T14766] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fee0e98d2d0
[  562.683428][T14766] RDX: 0000000000000002 RSI: 00007fee0f793fa0 RDI: 00000000ffffff9c
[  562.683448][T14766] RBP: 00007fee0f793fa0 R08: 0000000000000000 R09: 0000000000000000
[  562.683466][T14766] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  562.683484][T14766] R13: 0000000000000000 R14: 00007fee0ebb6080 R15: 00007ffef1efa918
[  562.683529][T14766]  </TASK>
[  564.133181][T14784] Invalid ELF header magic: != ELF
[  565.745903][T14793] netlink: 'syz.4.1716': attribute type 1 has an invalid length.
[  567.874558][T13681] Bluetooth: hci0: Malformed LE Event: 0x1b
[  567.910210][T14837] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1728'.
[  567.959471][T14837] ipvlan1: entered allmulticast mode
[  567.992237][T14837] veth0_vlan: entered allmulticast mode
[  568.002933][T14840] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1728'.
[  568.025138][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  568.031622][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  568.042950][T14837] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1728'.
[  570.710566][T13681] Bluetooth: hci3: unexpected subevent 0x01 length: 5 < 18
[  572.042387][T14896] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1737'.
[  572.148045][T14896] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  572.543985][T14909] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1740'.
[  573.351319][T14928] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1746'.
[  573.701845][T14933] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1746'.
[  574.247877][T14947] zswap: compressor  not available
[  574.474308][T14948] zswap: compressor  not available
[  574.888022][T13681] Bluetooth: hci4: unexpected subevent 0x01 length: 5 < 18
[  577.946503][T15002] kexec: Could not allocate control_code_buffer
[  579.407522][T15043] lo: entered allmulticast mode
[  579.427998][T15043] lo: left allmulticast mode
[  579.586325][T15047] random: crng reseeded on system resumption
[  580.961380][T15072] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[15072]
[  586.566597][T13681] Bluetooth: hci4: unexpected event 0x3e length: 508 > 260
[  586.566643][T13681] Bluetooth: hci4: unexpected subevent 0x02 length: 507 > 260
[  586.583801][T13681] Bluetooth: hci4: Dropping invalid advertising data
[  586.590712][T13681] Bluetooth: hci4: unknown advertising packet type: 0xe9
[  588.372684][T15173] random: crng reseeded on system resumption
[  589.190225][T15189] random: crng reseeded on system resumption
[  592.172284][T15203] kexec: Could not allocate control_code_buffer
[  594.515426][T15276] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input18
[  595.380610][T15284] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1815'.
[  597.416104][T15330] binder: 15329:15330 ioctl 400c620e 200000000400 returned -22
[  597.927941][T15343] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1827'.
[  599.734507][T15367] netlink: 'syz.3.1831': attribute type 11 has an invalid length.
[  600.203103][T15379] Console: switching to colour VGA+ 80x25
[  602.602172][T15391] kexec: Could not allocate control_code_buffer
[  603.071971][T15426] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1840'.
[  604.171474][T15448] netlink: 'syz.4.1845': attribute type 11 has an invalid length.
[  605.283021][T15472] random: crng reseeded on system resumption
[  606.533340][T15492] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1854'.
[  608.622402][T15484] kexec: Could not allocate control_code_buffer
[  610.741650][T15556] cifs: Unknown parameter '�'
[  613.103998][T15604] RDS: rds_bind could not find a transport for ::ffff:10.1.1.2, load rds_tcp or rds_rdma?
[  613.847074][T15607] Console: switching to colour frame buffer device 128x48
[  616.041254][T15629] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  617.376190][T15654] can: request_module (can-proto-3) failed.
[  618.576585][T15685] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1892'.
[  620.601210][T15735] can: request_module (can-proto-3) failed.
[  621.709203][T15749] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1905'.
[  622.143096][T15749] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1905'.
[  622.224640][T15749] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1905'.
[  622.319026][T15749] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1905'.
[  622.385552][T15749] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1905'.
[  623.514615][T15774] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[  623.556112][T15774] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[  623.593052][T15774] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[  624.260274][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  624.269931][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  624.285108][   T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  624.306261][   T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  624.315801][   T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  624.522448][T15781] zswap: compressor  not available
[  625.252373][T15786] chnl_net:caif_netlink_parms(): no params data found
[  626.262074][T15786] bridge0: port 1(bridge_slave_0) entered blocking state
[  626.281294][T15786] bridge0: port 1(bridge_slave_0) entered disabled state
[  626.307748][T15786] bridge_slave_0: entered allmulticast mode
[  626.336189][T15786] bridge_slave_0: entered promiscuous mode
[  626.356273][T15786] bridge0: port 2(bridge_slave_1) entered blocking state
[  626.364578][T15786] bridge0: port 2(bridge_slave_1) entered disabled state
[  626.394586][T15786] bridge_slave_1: entered allmulticast mode
[  626.402677][T15786] bridge_slave_1: entered promiscuous mode
[  626.414523][T13681] Bluetooth: hci1: command tx timeout
[  626.779048][T15786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  627.008525][T15786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  627.373374][T15786] team0: Port device team_slave_0 added
[  627.398728][T15786] team0: Port device team_slave_1 added
[  627.727283][T15786] batman_adv: batadv0: Adding interface: batadv_slave_0
[  627.734587][T15786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  627.824371][T15786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  627.860911][T15835] HfR: entered promiscuous mode
[  627.886720][T15786] batman_adv: batadv0: Adding interface: batadv_slave_1
[  627.893719][T15786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  627.970633][T15786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  628.242406][T15786] hsr_slave_0: entered promiscuous mode
[  628.266223][T15786] hsr_slave_1: entered promiscuous mode
[  628.272668][T15786] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  628.290122][T15786] Cannot create hsr debugfs directory
[  628.494484][T13681] Bluetooth: hci1: command tx timeout
[  628.814888][T15845] netlink: 'syz.3.1926': attribute type 4 has an invalid length.
[  628.876205][T15845] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1926'.
[  628.894550][T15845] IPv6: NLM_F_CREATE should be specified when creating new route
[  628.917703][T15845] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  628.925697][T15845] IPv6: NLM_F_CREATE should be set when creating new route
[  629.456165][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  629.462542][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  629.539583][T15786] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  629.976608][T15786] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  630.243537][T15786] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  630.489757][T15786] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  630.520102][T15867] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1930'.
[  630.564625][T13681] Bluetooth: hci1: command tx timeout
[  631.055538][T15786] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  631.082991][T15786] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  631.117160][T15786] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  631.154434][T15786] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  632.074115][T15786] 8021q: adding VLAN 0 to HW filter on device bond0
[  632.173024][T15786] 8021q: adding VLAN 0 to HW filter on device team0
[  632.208453][T10594] bridge0: port 1(bridge_slave_0) entered blocking state
[  632.215747][T10594] bridge0: port 1(bridge_slave_0) entered forwarding state
[  632.349008][T10594] bridge0: port 2(bridge_slave_1) entered blocking state
[  632.356277][T10594] bridge0: port 2(bridge_slave_1) entered forwarding state
[  632.644785][T13681] Bluetooth: hci1: command tx timeout
[  633.035191][T15786] 8021q: adding VLAN 0 to HW filter on device batadv0
[  633.779221][T15786] veth0_vlan: entered promiscuous mode
[  633.802554][T15786] veth1_vlan: entered promiscuous mode
[  634.346816][T15786] veth0_macvtap: entered promiscuous mode
[  634.363021][T15786] veth1_macvtap: entered promiscuous mode
[  634.422008][T15786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  634.448169][T15786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  634.471756][T15786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  634.512040][T15786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  634.528957][T15786] batman_adv: batadv0: Interface activated: batadv_slave_0
[  634.549848][T15936] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1943'.
[  634.636119][T15786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  634.656004][T15786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  634.674600][T15786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  634.688062][T15786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  634.715484][T15786] batman_adv: batadv0: Interface activated: batadv_slave_1
[  634.747813][T15786] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  634.757874][T15786] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  634.774755][T15786] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  634.786728][T15786] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  635.152765][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  635.181302][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  635.272084][ T7097] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  635.294331][ T7097] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  636.014018][T15950] Process accounting resumed
[  637.605385][T15968] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  637.611810][T15968] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  637.810206][T15968] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  637.850154][T15968] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  637.916830][T15968] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  637.979945][T15968] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  638.678608][T15991] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1953'.
[  639.204880][T13681] Bluetooth: hci2: command 0x0c1a tx timeout
[  639.690648][T13681] Bluetooth: hci3: command 0x0c1a tx timeout
[  639.696976][T13681] Bluetooth: hci0: command 0x0c1a tx timeout
[  639.930184][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  641.414089][T16016] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  641.424176][T16016] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  641.443001][T16016] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  641.464794][T16016] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  643.050505][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  643.444401][   T55] Bluetooth: hci3: command 0x0c1a tx timeout
[  643.450651][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  643.526050][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  645.616994][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  646.058109][T16096] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1977'.
[  650.891860][ T5878] smpboot: CPU 1 is now offline
[  656.407170][T16213] mkiss: ax0: crc mode is auto.
[  659.192094][T16234] ptrace attach of "./syz-executor exec"[15786] was attempted by "./syz-executor exec"[16234]
[  661.915919][T16264] CIFS mount error: No usable UNC path provided in device string!
[  661.915919][T16264] 
[  661.961599][T16264] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  662.144815][T16266] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[16266]
[  667.389733][T16299] hugetlbfs: syz.3.2021 (16299): Using mlock ulimits for SHM_HUGETLB is obsolete
[  668.107470][T16328] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2027'.
[  673.184883][T16387] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2038'.
[  675.996787][T16401] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2042'.
[  676.114409][T16401] team_slave_0: entered allmulticast mode
[  679.582283][T16416] kexec: Could not allocate control_code_buffer
[  681.145645][T16462] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2058'.
[  682.434633][T16478] bond0: option all_slaves_active: invalid value (]\/)
[  685.700886][T16529] netlink: 'syz.4.2068': attribute type 11 has an invalid length.
[  685.816186][T16529] netlink: 'syz.4.2068': attribute type 11 has an invalid length.
[  685.931550][T16529] netlink: 'syz.4.2068': attribute type 11 has an invalid length.
[  686.514726][T16539] [U] 
[  686.517578][T16539] [U] 
[  686.520293][T16539] [U] 
[  686.523004][T16539] [U] 
[  686.586973][T16539] [U] 
[  686.589734][T16539] [U] 
[  686.592446][T16539] [U] 
[  686.595156][T16539] [U] 
[  686.658370][T16539] [U] 
[  686.661215][T16539] [U] 
[  686.663925][T16539] [U] 
[  686.666632][T16539] [U] 
[  686.712431][T16539] [U] 
[  686.715179][T16539] [U] 
[  686.717889][T16539] [U] 
[  686.720599][T16539] [U] 
[  686.784760][T16539] [U] 
[  686.787514][T16539] [U] 
[  686.790227][T16539] [U] 
[  686.792947][T16539] [U] 
[  686.822340][T16539] [U] 
[  686.825099][T16539] [U] 
[  686.827845][T16539] [U] 
[  686.830557][T16539] [U] 
[  686.883549][T16539] [U] 
[  686.886297][T16539] [U] 
[  686.889008][T16539] [U] 
[  686.891718][T16539] [U] 
[  686.938467][T16539] [U] 
[  686.941221][T16539] [U] 
[  686.943936][T16539] [U] 
[  686.946646][T16539] [U] 
[  687.014736][T16539] [U] 
[  687.017491][T16539] [U] 
[  687.020203][T16539] [U] 
[  687.022912][T16539] [U] 
[  687.062721][T16539] [U] 
[  687.065473][T16539] [U] 
[  687.068184][T16539] [U] 
[  687.070893][T16539] [U] 
[  687.118977][T16539] [U] 
[  687.121724][T16539] [U] 
[  687.124435][T16539] [U] 
[  687.127146][T16539] [U] 
[  687.169371][T16539] [U] 
[  687.172121][T16539] [U] 
[  687.174834][T16539] [U] 
[  687.177567][T16539] [U] 
[  687.224704][T16539] [U] 
[  687.227452][T16539] [U] 
[  687.230161][T16539] [U] 
[  687.232956][T16539] [U] 
[  687.304809][T16539] [U] 
[  690.888708][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  690.895488][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  693.284050][T16614] netlink: 'syz.4.2085': attribute type 16 has an invalid length.
[  693.396081][T16614] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2085'.
[  693.582566][T16614] veth1_macvtap: left promiscuous mode
[  696.463738][ T7732] bridge_slave_1: left allmulticast mode
[  696.489612][ T7732] bridge_slave_1: left promiscuous mode
[  696.525735][ T7732] bridge0: port 2(bridge_slave_1) entered disabled state
[  696.673545][ T7732] bridge_slave_0: left allmulticast mode
[  696.695103][ T7732] bridge_slave_0: left promiscuous mode
[  696.700948][ T7732] bridge0: port 1(bridge_slave_0) entered disabled state
[  698.223164][T13681] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  698.235221][T13681] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  698.243224][T13681] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  698.251719][T13681] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  698.259303][T13681] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  698.698710][ T7600] ------------[ cut here ]------------
[  698.704664][ T7600] ODEBUG: free active (active state 0) object: ffff8880333c1248 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0
[  698.854686][ T7600] WARNING: CPU: 0 PID: 7600 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0
[  698.864221][ T7600] Modules linked in:
[  698.868286][ T7600] CPU: 0 UID: 0 PID: 7600 Comm: syz.3.334 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  698.880299][ T7600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  698.890565][ T7600] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  698.896681][ T7600] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 40 7e f4 8b 4c 89 e6 48 c7 c7 c0 72 f4 8b e8 7f 7a a7 fc 90 <0f> 0b 90 90 58 83 05 36 40 b2 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  698.916708][ T7600] RSP: 0018:ffffc90019847798 EFLAGS: 00010286
[  698.922789][ T7600] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a7f78
[  698.931207][ T7600] RDX: ffff888027aa8000 RSI: ffffffff817a7f85 RDI: 0000000000000001
[  698.939232][ T7600] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  698.947247][ T7600] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bf47960
[  698.955504][ T7600] R13: ffffffff8b8fc600 R14: ffffffff8a75eef0 R15: ffffc90019847898
[  698.963485][ T7600] FS:  0000000000000000(0000) GS:ffff8881249ec000(0000) knlGS:0000000000000000
[  698.972528][ T7600] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  698.979396][ T7600] CR2: 00007fe950150440 CR3: 0000000027810000 CR4: 00000000003526f0
[  698.987401][ T7600] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  698.995421][ T7600] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  699.003531][ T7600] Call Trace:
[  699.007178][ T7600]  <TASK>
[  699.010121][ T7600]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  699.015961][ T7600]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  699.021817][ T7600]  debug_check_no_obj_freed+0x4b7/0x600
[  699.027494][ T7600]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  699.033589][ T7600]  ? rcu_is_watching+0x12/0xc0
[  699.038561][ T7600]  ? kmem_cache_free+0x2d4/0x4d0
[  699.043565][ T7600]  kfree+0x291/0x4d0
[  699.047944][ T7600]  ? hci_release_dev+0x4d8/0x600
[  699.053078][ T7600]  hci_release_dev+0x4d8/0x600
[  699.057960][ T7600]  ? __pfx_hci_release_dev+0x10/0x10
[  699.063277][ T7600]  ? rcu_is_watching+0x12/0xc0
[  699.068103][ T7600]  ? kfree+0x252/0x4d0
[  699.072188][ T7600]  bt_host_release+0x6a/0xb0
[  699.076832][ T7600]  ? __pfx_bt_host_release+0x10/0x10
[  699.082143][ T7600]  device_release+0xa1/0x240
[  699.086853][ T7600]  kobject_put+0x1e4/0x5a0
[  699.091383][ T7600]  ? __pfx_vhci_release+0x10/0x10
[  699.096580][ T7600]  put_device+0x1f/0x30
[  699.100901][ T7600]  vhci_release+0x81/0xf0
[  699.105308][ T7600]  __fput+0x3ff/0xb70
[  699.109639][ T7600]  task_work_run+0x14d/0x240
[  699.114592][ T7600]  ? __pfx_task_work_run+0x10/0x10
[  699.119743][ T7600]  do_exit+0xafb/0x2c30
[  699.123931][ T7600]  ? __pfx_do_exit+0x10/0x10
[  699.128805][ T7600]  ? cgroup_update_frozen_flag+0x107/0x210
[  699.134679][ T7600]  ? find_held_lock+0x2b/0x80
[  699.139375][ T7600]  do_group_exit+0xd3/0x2a0
[  699.143904][ T7600]  get_signal+0x2673/0x26d0
[  699.148480][ T7600]  ? __lock_acquire+0xaa4/0x1ba0
[  699.153567][ T7600]  ? __pfx_get_signal+0x10/0x10
[  699.158496][ T7600]  ? __lock_acquire+0xaa4/0x1ba0
[  699.163457][ T7600]  arch_do_signal_or_restart+0x8f/0x7a0
[  699.169115][ T7600]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  699.175571][ T7600]  syscall_exit_to_user_mode+0x150/0x2a0
[  699.181280][ T7600]  ret_from_fork_asm+0x1a/0x30
[  699.186204][ T7600]  </TASK>
[  699.189238][ T7600] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  699.196537][ T7600] CPU: 0 UID: 0 PID: 7600 Comm: syz.3.334 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  699.208468][ T7600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  699.218577][ T7600] Call Trace:
[  699.221863][ T7600]  <TASK>
[  699.224811][ T7600]  dump_stack_lvl+0x3d/0x1f0
[  699.229436][ T7600]  panic+0x71c/0x800
[  699.233368][ T7600]  ? __pfx_panic+0x10/0x10
[  699.237805][ T7600]  ? show_trace_log_lvl+0x29b/0x3e0
[  699.243022][ T7600]  ? check_panic_on_warn+0x1f/0xb0
[  699.248157][ T7600]  ? debug_print_object+0x1a2/0x2b0
[  699.253366][ T7600]  check_panic_on_warn+0xab/0xb0
[  699.258325][ T7600]  __warn+0xf6/0x3c0
[  699.262252][ T7600]  ? debug_print_object+0x1a2/0x2b0
[  699.267457][ T7600]  report_bug+0x3c3/0x580
[  699.271803][ T7600]  ? debug_print_object+0x1a2/0x2b0
[  699.277012][ T7600]  handle_bug+0x184/0x210
[  699.281381][ T7600]  exc_invalid_op+0x17/0x50
[  699.285903][ T7600]  asm_exc_invalid_op+0x1a/0x20
[  699.290762][ T7600] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  699.296587][ T7600] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 40 7e f4 8b 4c 89 e6 48 c7 c7 c0 72 f4 8b e8 7f 7a a7 fc 90 <0f> 0b 90 90 58 83 05 36 40 b2 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  699.316639][ T7600] RSP: 0018:ffffc90019847798 EFLAGS: 00010286
[  699.322720][ T7600] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a7f78
[  699.330696][ T7600] RDX: ffff888027aa8000 RSI: ffffffff817a7f85 RDI: 0000000000000001
[  699.338676][ T7600] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  699.346657][ T7600] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8bf47960
[  699.354638][ T7600] R13: ffffffff8b8fc600 R14: ffffffff8a75eef0 R15: ffffc90019847898
[  699.362615][ T7600]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  699.368108][ T7600]  ? __warn_printk+0x198/0x350
[  699.372913][ T7600]  ? __warn_printk+0x1a5/0x350
[  699.377699][ T7600]  ? debug_print_object+0x1a1/0x2b0
[  699.382900][ T7600]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  699.388377][ T7600]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  699.394207][ T7600]  debug_check_no_obj_freed+0x4b7/0x600
[  699.399786][ T7600]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  699.405864][ T7600]  ? rcu_is_watching+0x12/0xc0
[  699.410648][ T7600]  ? kmem_cache_free+0x2d4/0x4d0
[  699.415604][ T7600]  kfree+0x291/0x4d0
[  699.419504][ T7600]  ? hci_release_dev+0x4d8/0x600
[  699.424472][ T7600]  hci_release_dev+0x4d8/0x600
[  699.429314][ T7600]  ? __pfx_hci_release_dev+0x10/0x10
[  699.434622][ T7600]  ? rcu_is_watching+0x12/0xc0
[  699.439396][ T7600]  ? kfree+0x252/0x4d0
[  699.443473][ T7600]  bt_host_release+0x6a/0xb0
[  699.448071][ T7600]  ? __pfx_bt_host_release+0x10/0x10
[  699.453366][ T7600]  device_release+0xa1/0x240
[  699.457978][ T7600]  kobject_put+0x1e4/0x5a0
[  699.462419][ T7600]  ? __pfx_vhci_release+0x10/0x10
[  699.467463][ T7600]  put_device+0x1f/0x30
[  699.471640][ T7600]  vhci_release+0x81/0xf0
[  699.475988][ T7600]  __fput+0x3ff/0xb70
[  699.479992][ T7600]  task_work_run+0x14d/0x240
[  699.484607][ T7600]  ? __pfx_task_work_run+0x10/0x10
[  699.489752][ T7600]  do_exit+0xafb/0x2c30
[  699.493932][ T7600]  ? __pfx_do_exit+0x10/0x10
[  699.498627][ T7600]  ? cgroup_update_frozen_flag+0x107/0x210
[  699.504449][ T7600]  ? find_held_lock+0x2b/0x80
[  699.509141][ T7600]  do_group_exit+0xd3/0x2a0
[  699.513666][ T7600]  get_signal+0x2673/0x26d0
[  699.518190][ T7600]  ? __lock_acquire+0xaa4/0x1ba0
[  699.523147][ T7600]  ? __pfx_get_signal+0x10/0x10
[  699.529530][ T7600]  ? __lock_acquire+0xaa4/0x1ba0
[  699.534505][ T7600]  arch_do_signal_or_restart+0x8f/0x7a0
[  699.540086][ T7600]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  699.546286][ T7600]  syscall_exit_to_user_mode+0x150/0x2a0
[  699.551948][ T7600]  ret_from_fork_asm+0x1a/0x30
[  699.556750][ T7600]  </TASK>
[  699.559846][ T7600] Kernel Offset: disabled
[  699.564180][ T7600] Rebooting in 86400 seconds..