last executing test programs:

4m5.961313929s ago: executing program 3 (id=502):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000007c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000140)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000ffdbdf25010000000c00040002000000000000000c00060001000000000000000c00020007000000000000000c00080001000000000000001c0007"], 0x60}}, 0x0)

4m5.841196831s ago: executing program 3 (id=503):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
iopl(0x3)
shutdown(0xffffffffffffffff, 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000480)='blkio.throttle.io_serviced\x00', 0x275a, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
dup2(r3, r2)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x166676000})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000300)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0, 0x6000})
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000d80))
ioctl$VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000000)=0x1ff)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="043106ffffffffffff6adee47aaaf78f5cc2be6fcf01f4bd2473a0038b8b011921b23f62ee1ad7618196fe6d9a5ca4c837c964f8a2b631e4f73da556f0c5fc60a5afa53ee156d1ae6b26d53c2a25a26017100f6b9c2cdae6982cc8993af0e02da7f4ec7acda34c6bbe14c871ed41"], 0x9)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000b, 0x12, r2, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe4000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, 0x0}], 0x1, 0x30, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r8 = dup(r7)
write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0xfffffd2c)
setsockopt(0xffffffffffffffff, 0x84, 0x7f, 0x0, 0x0)

4m4.761639531s ago: executing program 3 (id=505):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg$unix(r1, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)

4m4.761288013s ago: executing program 3 (id=506):
setgid(0x0)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x50, 0x10, 0x734f13fc1965a4f5, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @loopback}]}}}, @IFLA_MASTER={0x8, 0x3}]}, 0x50}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)

4m4.725661942s ago: executing program 3 (id=507):
r0 = socket(0x10, 0x2, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(r1, &(0x7f0000000040)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3006}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}}, 0x40)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

4m4.462067007s ago: executing program 3 (id=510):
landlock_create_ruleset(0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
futex(&(0x7f000000cffc)=0x100000000000004, 0x0, 0x4, &(0x7f0000edfff0)={0x0, 0x989680}, 0x0, 0xf2ffffff)

4m4.461953187s ago: executing program 32 (id=510):
landlock_create_ruleset(0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
futex(&(0x7f000000cffc)=0x100000000000004, 0x0, 0x4, &(0x7f0000edfff0)={0x0, 0x989680}, 0x0, 0xf2ffffff)

3m47.792158515s ago: executing program 0 (id=592):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f00000000c0)=ANY=[], 0x8)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3a, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_CURSOR(r3, 0xc01c64a3, &(0x7f0000000040)={0x2, 0x0, 0x10000003, 0x8000, 0x9ab, 0x401fc, 0x5})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r6, &(0x7f0000002540)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
shmat(0x0, &(0x7f0000ff9000/0x1000)=nil, 0x5000)
shmdt(0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000002340), 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00'}, 0x2c)
write(r1, &(0x7f00000000c0), 0x0)
ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000080)={0xf0f046})
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x0, @mcast2, 0x5}, 0x1c)

3m40.145286795s ago: executing program 0 (id=600):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x38, r1, 0xfc5, 0x98010000, 0x0, {{0x11}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IE={0x1b, 0x2a, [@perr={0x84, 0x15, {0x0, 0x1, [{{0x0, 0x1}, @broadcast, 0x3ff, @value=@device_b, 0x2f}]}}]}]}, 0x38}}, 0x0)

3m40.14457421s ago: executing program 0 (id=601):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, 0x0, 0x40020)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x2000000, 0x0, 0x0, 0xa, "ff00f7000000000000000000af88008300"})
r1 = syz_open_pts(r0, 0x141601)
gettid()
r2 = openat$cachefiles(0xffffff9c, &(0x7f0000000040), 0x100, 0x0)
getsockopt$netrom_NETROM_T1(r2, 0x103, 0x1, &(0x7f0000000100), &(0x7f00000012c0)=0x4)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x9, 0x800000000004, @thr={&(0x7f00000002c0)="ae8df0e16ef228ff12da2966c77d49dd5815345f74c70bbed0c3e044ebc16d6eb1093edde84b47611b28675a5edaad840bcbafd3539817d1ab6168d552da1ecde94000e54fcca1bd8ac1cced7ab5ee5dc840b9c5121f520c0383af09fd1dc1fa8e2aab22e5288a7d72b1226ce9b1c9ebf3f29e755eb1465d504ed269557335e67e2a8fbd06e6f07a0c212eec71c754764d9bade95adbfff0f72e10a655a639d203ca798dc9a39733e3174752aedf5789cfb75071251513f28e84f1acdd293520e5fc35cf74ba043a5223b7dc824007876c984335a5ddc45d10cf181ce75829ffb4fc3c7ce6e314009dd05e051bd6932376ae76b374e375b68c9561003284b725959ed1417fc68c59dc1602ddbe5c7ac5e9c1955610858129e9365f2739783cddcafef6652e88600b4198e6ccfc4c46e9d5cd52d7d10b5e3bc2f9c0063a25c2aaaa67aac178dfa75eac5d7076a54599744c15d43b8b0fad310385429a919d956188e5ca6c08d70e0bafc028267df5413da8867f77caee5b8d459a468ceae200251e2bf213aea8f40d5f7541726482757eb7907c0019e9cb6a79a2ce8695cb9bf5382ccb52df52003bd6f5c0a8813290c06458c7f81b4f858c275564c57ebfbd998cafb2bd4733b6a2f816a852daf046aa0976391ec2f28a12abef7489e90ad7238af5b0c855d37add2aa5f0ed78acbdaaa233d184aadf342a4eea6f45055b432a46a86966fc0974b2bbb15634a375585fe9a5001a79cc745395ff4f3d85469053ffdad90033062983a27934125028da581093822500373f3a66bf4138ea6aa19abe235079c0bfd5d5686b3546feac48af74a203bc94480a853edb47dac46d4848013df7422eb30fbf0c2cec0917db7aee76bd443f341395decf900414e7ea64f347e66367c2125077b5adf5a46798670cf0cdff45acc57a9f6fc74a934d83505ebfb776ccccbba7552b4590483b84286435f2f2dd71315e03be86ffbec5432d1fea0f7bad20a6ccf83e49c24d7747aab08b2b24116f8d9106f0ca80fec510d6c4d498334005b36d9633d9dbe6513e8025bf37de0ba355c4720c3b4c4693b27fc1751bc09b2742131841963d1d245ce513e1971a8f7b10fc0336ad5e335ed8953d5c1e7574d47d06c7774cdcd17e8ccefceb420f7eddf8643a52bb951b6b7a288f544c0f68081538dc0bc4c55d0e7e8d184834d6c45c3576616bca6b67cab5d2de4d46e3828221a2e69c40b806373e32310a969407c7afdcf9f66c54258154b945ec6d2272c7941ed776b55d00612ed33ac199be3573214d127075b330ca294212749a8f7725532426fcdf3ef0d9e7f79c7493f301db79edaada6edf22e6d0e5b149005efab57f3d0ec3e7ad7cb40781d5a56987459b7b33129284d6ad30776cc9dc7d3ed2b9639bf07c313de4803b8f8d5451984d2ad01de639025f71b1ec33b9528a89be5da3909b67cde3cd782372e3193c13dcebadcf3a6da65bbbdde1f571c2945562c232b2f419deff3923a4839eb4963d37675f90b1b6ebd6c6db56b058f29c0a655158d58fe043a80dc82924cbc226d1ba483d3f87c77a0acab952a8d4c0b29bd2cdd1e73113c1ff0edc2314bb834e605c4ef77537e6eb7e3e4cc791320ce397c70df1327f722a7ea44d5baccad86f9223aa07cf8596b8ed476b02c8925d11127ef548f6b57ea5bcb1dc12d9b7b4775624c02fd9620244ba025e212ff9d96bd521b4eb39f9d7c677f7fd60bf5c6e8d40920e4a5e0c9fc8fc946618fac8bc09d14a57ebf3e9c087293d4598835c97dbc3ea9833030ab7c7c58b67d0994f45ca1d6408d125492bc94a9af6da5169ab4468fbefbca74f22668ba911a6435df394ea3383b8a50d8430f4d3028892819ce7a5c4f05439a2be9addc54afa695837e8d642ead4f6c48b92d127055b7b708fd0a8aebb16cae2ca2c893bbf47ea99e683c1f9fc5b55811d04982f279e658a6cdb4117e2cad41dde72f55de7716070daf8c335da55beec84c3bcfdcb1bc47d751c6175bf722b853b0746ea1e76eb0017e8d89b38e3e4da495c15fcc5f91a11c733d66eb36baa617fea0c8766aef127fe97f9d945621675a3bb4af240915339906d729cd091e42f662cecf84bb7a6acc9910007262d21d5c1fcc95dc33a52bc617a3f446ba4fe635f73b8f36688aaf7f62752e93ebc5affeaf5b79f725f6d0ee238ccf9def57c00b70beb306bdb8b9a6a0a3f1d7b2ccb6b37cfe23fb0927be8c67ada85afb6ca38925add254a6f516ffedbba5f288b44b5d4fb7e5d00da88bea9cf35011307ba2fc6ea0483143915cdfa198e05514bb131afaefa025f322b04d6fa60aca6cc95c32779c075111d0f271ec13d044994beeefcdeab19016b10150618302a946b0775d85a8a97537b73b61a8081b3cd95010cc8e3150f134341ad27e8a220d8786bab555426cf4e6ecedbc46206a43f9b9dbe237ff9e8aa7b6a75755ef448d1ba9afd6022f997b9d2c35f1d2735808e0311575ae4d03954f8817e1b5bb4ab0ef5b2b88daf4434608cccafcd73f9348d625a7d081b25940640405e6f4d4b1319181f5c44a4f716c0a2594779b85a80e517ef54c72e03e9912b37f927aa9c4e68d9386b3333644958ab5a38f298c43271a29f8ac0bb9723bdcecbe84ac2c552932b96fc7c9a86e62e9a29ce89c7343dd23850e6f81085fa5d65a2c01263147ec2f99bd3973b570ca8a28f1e99c02ee3654cd919f31c4cc2fda39eac0ec4862d5882377d88daa3f6146bc347fddd5b1aff8a2f9207aa828ff3cfeb0287c22e3cc99778cc39521fd556fedd2830e8e19f7b2ef988b0ed834e6db3f83bb70679e96e14b97c3019dce15a0bec446e3893cf9d8fa71fc01d1fc5b27e50397b7e9cf4f2ba894c5ea1cfefb03ff89866f3f7ed8ef2d0fc14a3ab092e7b9d93e3a4e2ada037c3da6815a28b42f7673ef6682791752f8dc2188e9638a714dce9b5eb542a12ca475580b3274fa037d7008a28b1c37b8aaefa67fc902783aa67bcb332dc30d67006fffe78affeac67c6c2109dab040fed2b81f13439f9469ba80b0755c112324f3908f2e441f1d5e9000dca51808faa8e64d2a27a7b089e238b56987346dd9930846c73d04197324f139c88c923afb99c380c780637a4d09c296d1732de6e22b9baf57d0c2d97c8089ce61c16c880887ac8277a34547f078202b3229095886b10f121027163946b7dda17fdf40ac37e2c02b65adc33de4c6b20f25d9e63283aa4057f7a4ab4724126356ab9fd31698af4c6523074b0e233f1ed1f810913cf65f99e26503b72f977fc5662f5e94822483df6e75961fe4d07ad6cdd9ceab1f84c102ceee41226500b6b74f910ea6ce22e2321a13a51ed7c4721b6f25c3fd3c0b92e433ba9ab31f0b3505a3530ac66699231ed0f1a230db63eecc635105bb0c51c2e4a7025e94bfa9b9fe221c361d6a72a21a40036f5cdd21c0de328b7679fe869e3f9970606c3d3b4f95b7eee5da5b78039bb45280af4fe66fd385d5f4e1cb6db5099b5a7ffed663ef96bb3354b6fb1a772a0b30602068bfd6bc9ae4930948b79234d6063d240fc2297a09c745073fad44529e43d4e346038092ae9db83226245b5a98a90fed2474910b31dd0b8b862b369370d2afdd9a7412d29bc2de83afa0002c0ffa4504907e010191d0862a88efd5e824f13d389e0ac70380e686fd2b73602b9260135435958f3f1da1630ba4e88f330ed0b03d7d9cf5ba5f077acdf5f9cb76f804209409dbc40ba1ce6532c61b3892a57df54b55f6b51e33dda125906a1560c5524bdaf4fada62abc9e37ed26f4aaf162ffbc22f20f7888970d188ce871717724b35e446e0af30e6e50692b1b7317dd6194962e477e1cb60eb0cb8d7c288738b9bdd709a0662dc048fa0b522ba406d18ae9e1f93301e6057209f65ea201e07b929747f4dc74fd789400cac03f19def6f0dadfdbdf20aded390fbb2e0d2b58b29db57ee666af4ba6b2b3ff33dcff7ec22291c8a2a3e4737dca4faf26da1c6d5fb4195894a2b0de1345d3f569c375c92a3b34f9cf5089e3c43cae9eeb149fef7f84c07667f55d87873503723250e439b8130334138fc478e64e797a58f4f38d73aa38bf7618ff04c65eeda91669536309a0f4f3eb748fa95f3b26f923915b51b07a93514d2d5cc2b3d9262335a244973d65b7220bb6fd1a83c7a74f3039362198d575250d2d5e8372988179fbba0b9212b175a1da8c90c0e66aad2329e449b653860dc587e197d852e6bb17341fae159653ddca8d478c2c63d0a3abd06e5aef77f77434dc95d2e408c9d3df9d88c4a5e1b188651a10ea58252ffba0b329231376fcf79db390d97c2bdc97b573af47e69ddaa8aa7c4c63e8a80500cfb60e2c983369227e2ee09c4f27b216bf61ce4dbc2066b720e3920d798d5d756881e3e7c3298e0e74f5f1e82a7f398c2299bf5ac9d4bdd2f4d79ffe887163b925d578068dc44911d67c5d9f7896b60731dc0b5e2a9a9da71267b84528c1f34728a3166c1463aef03dfacc85a9c6689ece8821f0dda1c34e1d31fa9d94d11b49f9da6ca5fdbe3f9bfa7b63a9eef599f8619eb82c660fa4d94cffdd890373e94561d898727b1255bab63e96cc4addccbeda85dd6e730e32dbc225f3327a152cf9151ed675ba6bba118c1a3beeb7e9020891d1c5194b5276b39727eb0d5b7b15e15fc70ff93cca9510ccd32504f8c6759926bb264100740a9325e531ac8f8adca724329b36809f5bb2b14ae37a2430a31153fa5a15fe231c4a1bb230c7a2c130a9746262aec84fb8aeabfc588f860d8d2836a79bc1ddb3036de954169fd5638ff4bb2fc4180c66893bb95a87eaa53a2462ec02d5f6c9b05511b47960d11d43e5652e0cf979bddfb3f53cb41796596d95e9b0eb19df965097a7bf8e84af49e5740789e327107062613ab5128f8125c9d48e7b4abea65d10c173af8940dc903d6f1351569245a01147645065fee24f6261925bca2cfb7c1b0749a62bcd3f2c8603c5e26ce02f1eeea18428ef81b6e6543c4f2eb7626db32022dd1c431756717f905238ca08e6b121c79bc1c5866f7ff4fd8fdd1ad3a10ced3f36eb5963e5ea637499c30b04dc948781d01b067c09fe7546f3db44e1b0ccd37c253ff9d60fddf4d44ee1c155498cf5985126b08414cf6b950f47fd2708907ad71dc8bbe6b0b5b6082edb60caae37daaaa120792d92cbb1fb45676b77aab6e60e33b806be6f93ab3bf418fa2f6e2a32d3d43f9416b0f8d059a5c7fc5ab6992496d3d9cec29123b7e3fd6b93d2dc09245e0c9db176ae2e837296a0483df0e52d355512551117f28882f963f4514c6aa62297f00c29b8724645a0f05db4bce03db959cb08ab27a343a98a367237415f2b0c454372b076069424d24e035cbed0e23cbfb6228d1687019d352a9b5d5f2bf2bb1c597fed064c0b77f2f0f0f76ff655fb139a9e4e8ae269395e68758d4fb462a8f6748225aec3b7214e1ea07978ebc76244f50f39f61e2b6e5b11b2ba9b1c87e409407be78ef9dffd6520a6daa09b02a92f7912bedf8fe54cf5d756f763d2258ba4f1edc0df772b4f2fe901a1cb23426ecf865226bd1ca7591f7702a1f74a1198c07e9c80e2a037bc8eee730f2d91477dee866f5cb8722879ce0729ab230651d241d0325e499eb1df1aa40654b08f0d924760b3504c12bd772dc665604a576e69eeb09a40b75217eb6efc38eb1afdbfb8d71151de46fb58ac73adead6729b9333f50ee39f0595382d5a764f52cd91f6d2cbd3c821fa5c7b9cadb67514cd20311df2d145a4b3df5b8f", &(0x7f0000000180)="41ba70ed666ba6995c7d44bb1fc848823697813dba4b7999809eec44fc952995710a6bbcab4e2142c15134c67d03baffcf98668c4b8b3477c5204a5a7a9d13731f6ebc3e64014d57d2590d8931352f298d8cc1639d6af4ff813dd38d752a10aaf80450115b76fd55d3ab42ebc4123bedde3653a51389d6025b2433639b356459b36ecbc637d8b955ab5dd674869d5043bd9b222a98a49e0b842b230837c0cc2f313b9edd6f9bfdb7e214ffa7e0ba7a6fb48c8b3aaeb3c18e451bfe0e03df993e0f163066a222f46e09d3628d0b03692ba6154dd094f86b2701d61655fd736f08a1709632670dc4d1"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
write(r1, &(0x7f0000000000)="d5", 0xfffffedf)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0xfffffffc, 0x0, 0x0, "682341f2fd71a6a76177920ea7e60c0ac7a4a5"})

3m36.428101856s ago: executing program 0 (id=605):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r4, 0x29, 0x41, &(0x7f0000000880)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x64)
getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, 0x0, &(0x7f0000000280))
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newspdinfo={0x24, 0x24, 0x103, 0x0, 0x0, 0x0, [@XFRMA_SPD_IPV6_HTHRESH={0x6}, @XFRMA_SPD_IPV4_HTHRESH={0x6}]}, 0x24}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r7, 0xc0285700, &(0x7f0000000140)={0xffffffff, "ff0f000000000000f5a72d866b0000000000f0ffdefe00"})
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r9 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
link(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
ioctl$DMA_HEAP_IOCTL_ALLOC(r9, 0xc0184800, &(0x7f0000000100)={0x4, <r10=>r8})
ioctl$DMA_BUF_SET_NAME_A(r10, 0x40086203, &(0x7f00000001c0)='\x02\x00\x00\x00\x05\x00\x00\x00-control\x00')
ioctl$DMA_BUF_IOCTL_SYNC(r10, 0x40086200, &(0x7f0000000540)=0x1)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})

3m34.968664904s ago: executing program 0 (id=619):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000000c0), 0x0, 0x200)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r2, 0x40049366, 0x0)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)={0x18, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

3m34.889876292s ago: executing program 0 (id=620):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = openat$vim2m(0xffffff9c, &(0x7f0000000280), 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x1, 0x34324152, 0x0, 0xa, [{}, {0x10}, {}, {}, {0x8}, {}, {0x0, 0x3ff}], 0x0, 0x0, 0x8}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xd)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0))
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
read$msr(r1, &(0x7f00000000c0)=""/124, 0x7c)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
r3 = socket(0x10, 0x3, 0x6)
r4 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000600)={'team0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x7fffffff, 0x1000, 0x8, 0x76, 0xc36, 0x200, 0x6, 0xfffffff7, 0x4}}}}]}, 0x58}}, 0x20000000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)

2m37.994959117s ago: executing program 33 (id=620):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = openat$vim2m(0xffffff9c, &(0x7f0000000280), 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x1, 0x34324152, 0x0, 0xa, [{}, {0x10}, {}, {}, {0x8}, {}, {0x0, 0x3ff}], 0x0, 0x0, 0x8}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xd)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0))
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
read$msr(r1, &(0x7f00000000c0)=""/124, 0x7c)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
r3 = socket(0x10, 0x3, 0x6)
r4 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000600)={'team0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x7fffffff, 0x1000, 0x8, 0x76, 0xc36, 0x200, 0x6, 0xfffffff7, 0x4}}}}]}, 0x58}}, 0x20000000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)

2m20.020491172s ago: executing program 5 (id=857):
io_submit(0x0, 0x0, 0x0)
r0 = openat$cdrom(0xffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$CDROMREADTOCENTRY(r0, 0x5306, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x2, @msf={0x5, 0xed, 0x5}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bridge_slave_1\x00', <r2=>0x0})
io_uring_setup(0x2c49, &(0x7f0000000400))
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x8, 0x1, 0x0, r4, 0x0}])
openat(r4, &(0x7f0000000080)='./file0\x00', 0x210002, 0x130)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="7c0000001000010400"/20, @ANYRES32=r2, @ANYBLOB="00000000000000005c001280110001006272696467655f736c617665000000004400058005000900000000000500200001000000050008000000000006001f"], 0x7c}}, 0x0)

2m19.761058998s ago: executing program 5 (id=858):
openat$rfkill(0xffffffffffffff9c, 0x0, 0x801, 0x0)
msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x4000, 0x0)
msgget$private(0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f00000009c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000180)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x36e)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000580)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000240))
lseek(r3, 0x0, 0x4)
quotactl$Q_GETINFO(0xffffffff80000500, &(0x7f0000000000)=@filename='./bus/file0\x00', 0x0, &(0x7f0000000280))
openat$snapshot(0xffffff9c, 0x0, 0x8001, 0x0)
unshare(0x68060200)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, &(0x7f0000000080))
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x81, &(0x7f00000003c0)={'nat\x00', 0x0, 0x3, 0x0, [0x5, 0x9, 0xfa, 0x6, 0x10000, 0x8001], 0x0, 0x0, 0x0}, &(0x7f0000000440)=0x78)

2m18.896175757s ago: executing program 5 (id=860):
personality(0x200000)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x112, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000001040)={'vcan0\x00', <r1=>0x0})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r2)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0xc0)
getdents(r3, &(0x7f00000002c0)=""/31, 0x1f)
sendmsg$can_raw(r0, &(0x7f0000000440)={&(0x7f0000000780)={0x1d, r1}, 0x10, &(0x7f0000000200)={&(0x7f0000001100)=@can={{0x0, 0x0, 0x0, 0x1}, 0x1, 0x1, 0x0, 0x0, "09151995c95f32cc"}, 0x10}}, 0x44001)
recvmmsg(r0, &(0x7f0000004e40)=[{{0x0, 0x0, 0x0}, 0xb}], 0x1, 0x80012022, 0x0)
r4 = socket(0x10, 0x3, 0x4)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=@newqdisc={0x68, 0x14, 0xf0b, 0x0, 0x25dfdbff, {0x2, 0x0, 0x0, 0x0, {0xd}, {0xb, 0xd}, {0x4, 0xa}}, [@TCA_STAB={0x44, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x8, 0xfc, 0x200, 0x4, 0x0, 0x0, 0x7fffffff}}, {0x4}}, {{0x1c, 0x1, {0x2, 0xa, 0xfe01, 0x9, 0x2, 0x0, 0x7}}, {0x4}}]}]}, 0x68}}, 0x0)

2m18.751231108s ago: executing program 5 (id=863):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) (async)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x3127099, 0x0) (async)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) (async)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
ioctl$TIOCL_SETSEL(r2, 0x4b52, &(0x7f0000000100)={0x2, {0x2, 0xda2, 0x0, 0xd6e}}) (async, rerun: 32)
move_mount(r0, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x100) (rerun: 32)

2m18.722057956s ago: executing program 5 (id=867):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\v'], 0x1c}}, 0x0)
ioctl$sock_SIOCBRDELBR(r0, 0x89a2, &(0x7f0000000000)='bridge0\x00')
r1 = socket$nl_generic(0x11, 0x3, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @random="0000fc00", @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x16, 0x7c, 0x0, @dev={0xac, 0x14, 0x14, 0x30}}}}}}, 0x0)
sendmsg(r1, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x36}], 0x2, 0x0, 0x0, 0x11000000}, 0x0)

2m18.491295486s ago: executing program 5 (id=872):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000100)=ANY=[@ANYBLOB="e4050000160001000000000000000000e0000001000000000006000000000000fe88000000000000000000000000000100000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000010000000033000000fc02000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000025bd7000000000000200001f09000000000000000700000091230000ab0002006374722d6165732d636500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000018030000cb8e892a23aa1faff0ca08bcbcbdbc09e75ff9da23961c863111c13df0946d7a81e1c2b09c76fcf63fb2c652f7"], 0x5e4}}, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
write$sndseq(r1, &(0x7f0000005880)=[{0xe, 0x0, 0x0, 0xfd, @tick, {}, {0xe}, @ext={0x0, &(0x7f00000057c0)}}], 0x1c)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000006c0015000000d9fece23b82000000000", @ANYRES32=r2, @ANYBLOB="000080000000000018003480"], 0x38}, 0x1, 0x300}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x5}]}}}]}, 0x3c}}, 0x8000)

2m18.41217911s ago: executing program 34 (id=872):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000100)=ANY=[@ANYBLOB="e4050000160001000000000000000000e0000001000000000006000000000000fe88000000000000000000000000000100000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x5e4}}, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101041)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
write$sndseq(r1, &(0x7f0000005880)=[{0xe, 0x0, 0x0, 0xfd, @tick, {}, {0xe}, @ext={0x0, &(0x7f00000057c0)}}], 0x1c)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000006c0015000000d9fece23b82000000000", @ANYRES32=r2, @ANYBLOB="000080000000000018003480"], 0x38}, 0x1, 0x300}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x5}]}}}]}, 0x3c}}, 0x8000)

17.679529747s ago: executing program 6 (id=1840):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="0401020028000b05d25a806f8c6394f90824fc600d0003000a740100ff3582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r0, r3}, 0x40)
syz_emit_ethernet(0xedc0, &(0x7f0000000100)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "2a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x4, 0x5}}}}}}}, 0x0)

17.608891604s ago: executing program 6 (id=1841):
r0 = socket$inet6(0xa, 0x1, 0x100)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0xa)
getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
socket(0x200000000000011, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0x8, 0x3, 0x268, 0x0, 0x11, 0x148, 0x13c, 0x10, 0x1d4, 0x2a8, 0x2a8, 0x1d4, 0x2a8, 0xac, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'veth1_vlan\x00', 'sit0\x00'}, 0x10, 0xf4, 0x13c, 0x1c, {}, [@common=@unspec=@helper={{0x44}, {0x0, 'irc-20000\x00'}}, @common=@unspec=@connlimit={{0x40}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@local, 'ip6gre0\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x2c4)
openat$mixer(0xffffffffffffff9c, &(0x7f00000018c0), 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)={0x6c, 0x2, 0x6, 0x1, 0x6000000, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0x80ffffff}}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x2}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x6c}}, 0x0)
r5 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x2)
ioctl$PPPIOCGCHAN(r5, 0x80047437, &(0x7f0000001f00))
sendmmsg(r5, &(0x7f0000003d40)=[{{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f0000001d00)='o', 0x1}], 0x1}}], 0x1, 0x400c000)

17.606837021s ago: executing program 6 (id=1843):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

17.539005329s ago: executing program 6 (id=1846):
setsockopt(0xffffffffffffffff, 0x84, 0x11, &(0x7f00000002c0), 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x11, 0x3, 0x10)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-sse2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmmsg$alg(r5, &(0x7f0000004140)=[{0x8dffffff, 0x0, &(0x7f0000000600)=[{&(0x7f00000001c0)="14", 0x1}, {&(0x7f0000000280)="3b942cdf3dbb4d708446209c8a7a9893c711167b6aee1ac4a8cc59d92a394f460b20f21b9add9e84d2dba9e6df8034c449e641", 0x33}], 0x2}], 0x1, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000040)={0x0, 0x1, 0xd, 0x2, 0x3})
setgid(0x0)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)

16.661499213s ago: executing program 6 (id=1850):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x1c, r1, 0x1, 0x870bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x1000}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x7fff}]}, 0x30}, 0x1, 0x0, 0x0, 0x4011}, 0x4048)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff}) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xb, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0) (async)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r5, r5) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) (async)
connect$unix(r6, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r8 = socket$can_raw(0x1d, 0x3, 0x1) (async)
r9 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt(r9, 0x65, 0x1, &(0x7f0000000080), 0x1d0) (async)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000003340)=[{{0x0, 0x0, &(0x7f0000000280)}}], 0x1, 0x0) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$NFT_MSG_GETSET(r10, 0x0, 0x40002) (async)
bind$can_raw(r9, &(0x7f0000000000), 0x10) (async)
dup3(r8, r9, 0x0) (async)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r4, 0x8983, &(0x7f0000000000)={0x3, 'syzkaller1\x00', {0x24db}, 0x5}) (async)
socket$alg(0x26, 0x5, 0x0)

16.379607424s ago: executing program 6 (id=1858):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x142)
close(r2)
ioctl$DRM_IOCTL_MODE_GETFB2(r2, 0xc06864ce, &(0x7f0000000600))
ioctl$FIONREAD(r2, 0x541b, &(0x7f0000000080))
write$binfmt_misc(r2, &(0x7f0000000280)="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", 0xfc)
write$tun(r0, &(0x7f0000000140)={@val={0x3, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x14}, @ipv4=@icmp={{0x5, 0x4, 0x0, 0x0, 0x8016, 0x1400, 0x0, 0x0, 0x1, 0x0, @private=0xa010100, @local}, @dest_unreach={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @local, @loopback}}}}, 0xfdef)

16.333500033s ago: executing program 35 (id=1858):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x142)
close(r2)
ioctl$DRM_IOCTL_MODE_GETFB2(r2, 0xc06864ce, &(0x7f0000000600))
ioctl$FIONREAD(r2, 0x541b, &(0x7f0000000080))
write$binfmt_misc(r2, &(0x7f0000000280)="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", 0xfc)
write$tun(r0, &(0x7f0000000140)={@val={0x3, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x14}, @ipv4=@icmp={{0x5, 0x4, 0x0, 0x0, 0x8016, 0x1400, 0x0, 0x0, 0x1, 0x0, @private=0xa010100, @local}, @dest_unreach={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @local, @loopback}}}}, 0xfdef)

6.129803081s ago: executing program 7 (id=1928):
r0 = syz_io_uring_setup(0xdaa, &(0x7f0000000380)={0x0, 0x0, 0x13291, 0x0, 0x2000}, &(0x7f0000000100), &(0x7f0000000000))
io_uring_enter(r0, 0x1, 0xffffffff, 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000480)='./file1\x00', &(0x7f0000000440), 0x840040, &(0x7f00000002c0)={[{@verity_require}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0xf800, 0x100000001})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = getpid()
unshare(0x6a040000)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0xc0241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r4, &(0x7f0000000040)=ANY=[@ANYBLOB="034886dd02003200030030000000600000000028320081e949b93897bc3b0000000000007d01ff020000000000000000000000000001"], 0xfdef)
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000540)={{{@in, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@local}}, &(0x7f0000000640)=0xe4)
mount$9p_unix(&(0x7f0000000340)='./file1\x00', &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500), 0x1000, &(0x7f0000000680)=ANY=[@ANYBLOB="7472616e733d756e69782c6e6f657874656e642c63616368653d6c6f6f73652c63616368653d667363616368652c63616368653d6c6f6f73652c706f73697861636c2c616669643d3078303030303030306330303030303030302c756e616d653d2428282a2b263a2c63616368653d6e6f6e652c6d6d61702c646972656374696f2c7063723d30303030303030303030303030303030303034302c736d61636b66736465663d46ebc5729ff3be53e22336077a9e38efef25adec8c5629b3249407aacab5e22083b848080000002bbdee8c7ef973747f8b926e7695374f2c666f776e65723e", @ANYRESDEC=r6, @ANYBLOB='\x00\x00'])
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640), 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000140)={r1, r1, 0x34, 0x0, @void}, 0x10)
r7 = socket$inet(0x2, 0x6, 0x0)
shutdown(r7, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x318, 0x144, 0x2b8, 0x182, 0x144, 0x0, 0x250, 0x3a8, 0x3a8, 0x250, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'batadv_slave_1\x00', 'veth1_vlan\x00'}, 0x0, 0xdc, 0x144, 0x0, {0x0, 0x1800}, [@common=@unspec=@connbytes={{0x38}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0xa4, 0x10c}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x374)
recvmmsg(r7, &(0x7f0000000340), 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c00000010004bb537f90a7ef25a8bffff000000", @ANYRES32=0x0, @ANYBLOB="00000000000000003c0012800800010067747000300002800800030004000000080004000100000014000800fc010000000000000000000000000000050005"], 0x5c}}, 0x0)

5.919864708s ago: executing program 7 (id=1933):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
inotify_init()
pipe2(&(0x7f00000003c0), 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$caif_stream(0x25, 0x1, 0x2)
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, 0x0)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100)={<r6=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000006a40)={0x3, 0x40, 0xfa00, {{0x6000000, 0x0, 0xff00, @private0}, {0xa, 0x0, 0x0, @loopback={0xfec0ffff00000000, 0x8e84fffef67c07}}, r6}}, 0x48)
sendmsg$SEG6_CMD_DUMPHMAC(r4, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

4.989229706s ago: executing program 7 (id=1942):
mknod$loop(0x0, 0x200, 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x31303453, 0x8, 0x4, [{}, {0x10}, {0x403, 0x4000}, {0x2, 0xa}, {0x8}, {}, {0xb}, {0x0, 0x4}], 0x0, 0x0, 0x0, 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
read$FUSE(r2, &(0x7f0000005740)={0x2020, 0x0, 0x0, <r3=>0x0}, 0x2020)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={[{@verity_off}, {@redirect_dir_on}], [{@smackfsdef={'smackfsdef', 0x3d, '$!'}}, {@uid_gt={'uid>', r3}}], 0x2f})
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
syz_usb_connect(0x0, 0x3f, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f0000000100))
read$FUSE(r4, &(0x7f00000023c0)={0x2020}, 0x2020)

4.739886456s ago: executing program 2 (id=1945):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000ed000095"], &(0x7f00000000c0)='syzkaller\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x40008060, 0x0)
r1 = syz_io_uring_setup(0x1111, &(0x7f0000000300), &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18010000000000000000000000000000850000002e00000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r6 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r7=>0x0, &(0x7f0000000200)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x10, 0x6000, @fd=r4, 0x5, 0x0, 0x0, 0xc})
io_uring_enter(r6, 0x47f6, 0x1000000, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x8, 0x0, 0x7, 0x0, 0x0})
io_uring_enter(r1, 0x47fa, 0x0, 0x0, 0x0, 0x0)
r9 = epoll_create1(0x0)
r10 = fcntl$dupfd(r9, 0x2, 0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(r10, 0x1, 0x19, &(0x7f0000000000)='veth1_vlan\x00', 0x10)
fanotify_init(0x2, 0x0)
fanotify_mark(0xffffffffffffffff, 0x1, 0x20, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x18, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[0xffffffffffffffff]}, 0x1)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, 0x0, 0x0)
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x3)

4.40917465s ago: executing program 2 (id=1947):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffffa8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x11, 0x4000}, @TCA_FQ_QUANTUM={0x8, 0x3, 0x4000}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = syz_io_uring_setup(0x23c, &(0x7f0000000380)={0x0, 0x1ffefe, 0x10100, 0x7ffff, 0x0, 0x0, r6}, &(0x7f0000000200)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r7, 0x2ded, 0x25d2, 0x0, 0x0, 0x0)
openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
r10 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r10, 0x7a7, &(0x7f00000000c0)=0xa0000)
r11 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r11, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
sendto$inet6(r11, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r11, 0x84, 0x9, 0x0, 0x0)
recvmmsg(r11, &(0x7f0000001a40), 0x0, 0x0, 0x0)

3.970188096s ago: executing program 1 (id=1950):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
mkdir(0x0, 0x8)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x10ffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x20002)
r2 = socket(0x10, 0x3, 0x0)
write(r2, 0x0, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x1, 0x0, 'queue0\x00'})
write$sndseq(r3, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600, 0xfd]}}], 0xffc8)
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
syz_open_procfs$userns(0x0, 0x0)

3.149861858s ago: executing program 2 (id=1952):
mkdir(&(0x7f0000000180)='./file1\x00', 0x0) (async, rerun: 32)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0) (rerun: 32)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
syz_open_dev$MSR(&(0x7f0000000140), 0x1000139, 0x0) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed85"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) (async)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r1, 0x0, 0x0) (async)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 32)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil) (async, rerun: 32)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00')
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0) (async)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) (async, rerun: 64)
mknodat$loop(0xffffffffffffff9c, 0x0, 0xc000, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)

3.142562458s ago: executing program 2 (id=1953):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000580)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="fd8d00000000050000000200000008000300", @ANYRES32=r3, @ANYBLOB="0a0009000180c2000000000008000b"], 0x30}}, 0x48804)

3.060105059s ago: executing program 2 (id=1954):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xa, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f000081c000/0x1000)=nil, 0x1000, 0x8, 0x1010, 0xffffffffffffffff, 0xab880000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(r4, r4, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x89e0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1200000007000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000090000000000000044d06021fd9d3f26c3f22c2105ceef2cc913807164d36ccebce5be"], 0x48)
r6 = socket$igmp(0x2, 0x3, 0x2)
prctl$PR_SET_SECUREBITS(0x1c, 0x1e)
setreuid(0xee01, 0xee01)
fcntl$setstatus(r6, 0x4, 0x42800)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x7ffe, 0x0, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x1f, 0xf, &(0x7f0000000680)=ANY=[@ANYBLOB, @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000001000000850008000000000000000000000000009500000000000000f3a674f29403ea5dc877d10a1b9ab65fce713fb0281c33639821990ab9c09f402c610c84b54e6f8dbb5bfc1e99ebcd886675cd6134b571e0b2f416faee826b6c6bbbf5e952bb77a2dce071a75c70238e"], &(0x7f0000000180)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x34, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0xc0205710, &(0x7f00000002c0)={0x1, 0xff, 0x1, 0x0, 0x5})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000700)='notify_on_release\x00', 0x2, 0x0)

3.040093883s ago: executing program 1 (id=1955):
r0 = socket$kcm(0x10, 0x3, 0x10)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000540), 0x1, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000580)='0', 0x1)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90324fc60100005000a000248053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0)
socket$kcm(0x10, 0x3, 0x10) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000540), 0x1, 0x0) (async)
write$6lowpan_enable(r1, &(0x7f0000000580)='0', 0x1) (async)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90324fc60100005000a000248053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0) (async)

2.929876034s ago: executing program 1 (id=1957):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000a80)={'ip6gretap0\x00', &(0x7f00000009c0)=@ethtool_flash={0x26, 0x8000000, './file0\x00'}})
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, 0x0)
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
openat$ttynull(0xffffff9c, &(0x7f0000000080), 0x181802, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
ptrace(0x10, r3)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000000)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000040)=0x1c)

2.159917863s ago: executing program 2 (id=1958):
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0) (async)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0) (async)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0xb, "08405af3"}, @local=@item_4, @local=@item_4={0x3, 0x2, 0x0, "6fe695cd"}]}}, 0x0}, 0x0)
r3 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r3, 0xc018480b, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8084)
sendmmsg$sock(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0) (async)
socket$tipc(0x1e, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xfffffffffffffdb4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
ioctl$HIDIOCGDEVINFO(r3, 0x801c4803, 0x0) (async)
ioctl$HIDIOCGDEVINFO(r3, 0x801c4803, 0x0)
bind$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r6, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r6, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0) (async)
sendmmsg(r6, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
connect$unix(r5, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100000000000000000001009b78882f0009865ab27932e1460024000180060005004e23000006000100026a550008000300ac1414aa08000600"], 0x38}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r6, 0x8933, &(0x7f0000000280)={'wg0\x00', <r7=>0x0})
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x48, 0x0, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x20, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast1}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r7}]}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x4004001}, 0x8810)
ppoll(&(0x7f0000000140)=[{r6, 0x1114}, {r5, 0x1620}], 0x2, 0x0, 0x0, 0x0)
close(r1) (async)
close(r1)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)

2.099534247s ago: executing program 1 (id=1960):
syz_open_dev$sndctrl(&(0x7f0000000100), 0xab3, 0x2d0142)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00\x00'], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x16, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000400)={'veth0_to_team\x00', &(0x7f0000000480)=@ethtool_ringparam={0x10, 0x4, 0xf, 0xe, 0x124a, 0x8, 0x2, 0xa5c, 0x4a}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
ioctl$FIBMAP(r4, 0x1, &(0x7f00000002c0)=0x2a278e3f)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
mkdir(&(0x7f0000000300)='./file0\x00', 0x1)
chdir(&(0x7f00000001c0)='./bus\x00')
syz_open_dev$video4linux(&(0x7f0000000480), 0x5, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000340)='./file0\x00', &(0x7f00000004c0), 0x700, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000080)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x4000000, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@verity_require}]})
chdir(&(0x7f0000000140)='./bus\x00')
chown(&(0x7f0000000540)='./file0\x00', 0x0, 0x0)
symlink(&(0x7f0000000380)='./file1\x00', &(0x7f0000000780)='./bus\x00')
sendto$inet6(r5, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
socket(0x1e, 0x4, 0x0)

2.099407216s ago: executing program 4 (id=1961):
socket$xdp(0x2c, 0x3, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)

2.018631814s ago: executing program 4 (id=1962):
r0 = openat$fuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = openat$ppp(0xffffff9c, &(0x7f0000002140), 0x140, 0x0)
write$ppp(r1, &(0x7f0000002180)="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", 0x1000)
read$FUSE(r0, &(0x7f0000000100)={0x2020}, 0x2020)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000080)={0x1f, 0x0, @none}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f00000000c0)=0x2, 0x12)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_256={{0x304}, "76f7bc3e4ae1c84c", "af193cff4810ba5ac120d096eb00b40752095b4285514ca312c52e3a08756735", '8\x00', "bc3a20b10f4ad11e"}, 0x38)
close(r3)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING(r5, 0x4068aea3, &(0x7f0000000240)={0xc0, 0x0, 0x8000})
ioperm(0x5, 0x4, 0x8)
inotify_init()

1.920065769s ago: executing program 7 (id=1963):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x70bd2a, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0x11}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x18884}, 0x20000004)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000180)={0x5, &(0x7f0000000000)=[{0x3, 0xb, 0x1, 0x80}, {0x1, 0x2, 0x39, 0xffffffff}, {0x0, 0x6, 0x5, 0xdfb}, {0x8, 0x1, 0x6, 0x8}, {0x5, 0x2, 0x9, 0x9}]}, 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000000480)=""/102392, 0x18ff8)
connect$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0xfffd, 0x2000001, @mcast2, 0x41}, 0x1c)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x4, 0x316}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_mtu(r0, 0x0, 0xa, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_open_dev$sg(&(0x7f0000000380), 0x4, 0x4200)
r7 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r8 = dup(r7)
quotactl_fd$Q_SETQUOTA(r8, 0xffffffff80000800, 0xee01, &(0x7f00000002c0)={0x8000000000000000, 0x5, 0xd38, 0x10000000, 0x199b7836, 0x1, 0x0, 0x1, 0xa})
write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0xfffffd2c)
socket$inet(0x2, 0x2, 0x3)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

1.846675414s ago: executing program 4 (id=1964):
mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000065c0)={0x2020, 0x0, <r1=>0x0, 0x0, 0x0, <r2=>0x0}, 0xfffffffffffffcc8)
r3 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200))
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$dri(&(0x7f00000008c0), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETENCODER(r5, 0xc01464a6, &(0x7f0000000240))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYRES8=r2], &(0x7f0000004440)=""/4077, 0x26, 0xfed, 0x8, 0x0, 0x0, @void, @value}, 0x28)
r6 = epoll_create1(0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x400, &(0x7f0000001080)=<r8=>0x0)
io_submit(r8, 0x1, &(0x7f0000000180)=[&(0x7f0000000340)={0x1802, 0x0, 0x0, 0x1, 0x824c, r6, 0x0, 0x0, 0x0, 0x0, 0x2}])
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f00000004c0)={0x40000000})
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[], 0x0)
write$FUSE_INIT(r7, &(0x7f0000002300)={0x50, 0x0, r1, {0x7, 0x9, 0xc}}, 0x50)
read$FUSE(r0, &(0x7f0000002400)={0x2020, 0x0, <r9=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r9}, 0x10)
fsopen(&(0x7f0000000040)='ntfs3\x00', 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="19000000040000000800000003"], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r11}, 0x10)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000500)='\x00\x11\x00\x00\x00\x00\x00\x00\x00\x91\x0f\x85\xd7=\xdc` \xc2\x00t%l0\xe19\r\xb7\xbc\xaaJ\xcb\xaa\xd7w\x92\xdfR\x11$\xfc%\x19W\xdc\xc3\x91\xac\xe0\xc7\xb1\xa8h\xd2\x192\xbb\xb6\x11^\n\x18\x01Q\x8arH#\a5\xb9oxi\b7~\xc6\x84\xd2\xb1e\v\xe8&\xf9&\x12>D\xf2\x03|*\xf8B\xfd\xd5}\xf9\x8a\xc3\x8e c\xf9\xa2eN\x04\xec\xc2\xe7\xbbl\x16\xbb\xddO\xba\x96\xd3\xd2\xcc\xfd\xfdQ\x92l\x92\x83\xff\xe7\xbba\xe6\x0fM\x19\xaeoK,.\x00\x00\x00', &(0x7f0000000400)='ioc\xd1ars\xc2t7\xe9U\r\x00V\xb9\xfd\xc5z.\xa7\\\xf9\x0f\xa8\xef\xddr\x05_\xb5\x0f7\x120\xac\x06\xf7\xff%\xab\xfe5\x04\xf8}\x0e+\x9d\x03v(y/\xb4\x9b\xc2\x9f\xa6\x9b\xa3\x94#\xd27\x974\x15\x91>\x1a\xda\x1f\x93\xca\x036\xd5\x824\xa1\'\xbcei\bK\xde\xd3\xf6\xca\xca\n\x1d\xd1\x05\xee\xe8\xc3\x89\x12l\x0f(\xd7\x00\x00-\xa3}\xba\x88Y\xaf\x01\xaf\v\xcdO\x85\xb2G\x8e+j\x97\x8c\xdfF7(\x8eW\xe4pB\xd1tzaI\x8a\xae\x8a\x80\xff!FK\xb3p`1\xdc\xccb\x93\x98\x94\x81;\xef\x7fq\xa7\x03>1!\x15\xff}<\xf3g^\f\xfd\x12\xd72\f\xba\x13|#\x13T/C\xc4q', 0x0)
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000001800), 0x0, 0x0)
r12 = dup3(r11, r0, 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
r13 = openat$cgroup_ro(r12, &(0x7f0000000000)='cgroup.kill\x00', 0x275a, 0x0)
ftruncate(r13, 0x2000009)

1.169973922s ago: executing program 1 (id=1965):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000400)="580000001400192340834b80040d8c560a067fbc45ff810500000000070058000b480400945f640094272d7061d328b92d0000000000008000f0fffeffe809000000fff5dd00000010000100090808004149004001040800", 0x58}], 0x1)
r1 = socket$l2tp(0x2, 0x2, 0x73)
getsockname$l2tp(r1, &(0x7f00000000c0), &(0x7f0000000b00)=0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x30, r2, 0x701, 0x0, 0x0, {{}, {@void, @void, @val={0xc, 0x99, {0x6d, 0x11}}}}, [@NL80211_ATTR_VENDOR_ID={0x8}, @NL80211_ATTR_VENDOR_SUBCMD={0x8}]}, 0x30}}, 0x0)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000000b40)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x20}, 0xffffffffffffff77, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, r2, 0x8, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x4000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xf, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0xfffffffffffffffc}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=ANY=[@ANYBLOB="58000000020605000000000000000000000000001400078005001400090000000800124008001f000512486860c3188ea700010006000000050005000200000005000400000000000900020073797a31000000000c0003da72b3336f7bea41c43691d1c72c8fd365d5ea365fdd0f5fd88fd255999e09a597e358c329e5f43a0c9a4671c57febded112a1f47f1c80cc5671e390c0038b7f9cfd"], 0x58}}, 0x0)
r6 = gettid()
prlimit64(r6, 0xe, 0x0, &(0x7f0000000a00))
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffb, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r7}, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="010300000100fddbdf2526"], 0x14}}, 0x0)
readv(r4, &(0x7f0000000840)=[{&(0x7f0000000080)=""/45, 0x2d}], 0x1)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r10, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r10, 0xffff8001)
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0xc01cf509, &(0x7f0000000040)={<r11=>r10, 0x1d, 0x10001, 0xfffffffffffffff7})
sendmsg$kcm(r11, &(0x7f0000000740)={&(0x7f0000000140)=@tipc=@name={0x1e, 0x2, 0x1, {{}, 0x3}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000200)="3186f2a2d0178056c3ab3d010a467f68f018bb251f69a49372425ed3b737367ddf3df6fa654dd8c4b178669bd85954f4dc75302a73ad11546752730a167fc3b1c2d57afe215dc2c85b97e00647ba1a9ac3ff403ee856d176afb0a5393d46d7d39d18cae6915e6fc9c9358f381faeb2a1", 0x70}, {&(0x7f00000002c0)="e728aa7dd5e35f8da0fbf65e454b572cf03ad8cca9b621c0e38fe7ddea46c41b4fbe1cf491e24d864e0ca582bc6ec6f967d9681e7a65747f", 0x38}, {&(0x7f0000000300)="26252019c7575b65f4534ddc9145962abba930522fc15d47b284d7e681c30cbe2209863ec0bcfc8471dc38b52e9791b52a2edd52d074537b4bb5e9d514b1028024c9e0871fa41add6c9b46f6fbb17475a4be5be87db6d2f51cee0ddcf1b1de9175334ec8390482bff049c37ec87edc2396abc5a5f737c39e9c65f9a24a726db9ec3b1df28a9a8407d22036698c3444c0c7d7a607d7bcdc6943823e08a518946915fb1602bd20ac36285308951654a7634df5fe27eff2", 0xb6}, {&(0x7f0000000480)="235801e203478612274ffcfe8097326ebac1ead0075748f1785b5861ad7c99f364cd0b9db08d72802eb2e8fa1bae1a1459c1d400dbb2d6a3ee86867d7e1852dd2fc6c14a46792dee8f80e40961e925ad", 0x50}, {&(0x7f00000003c0)="fa74aec0044ec9ba5032f1f1", 0xc}, {&(0x7f0000000500)="265543bc197ee3a632803b375370c4427cd693beaad66cb99840a5bc75241ad5c36765a1fb2664e56197e58c3fdc8e615c516277", 0x34}, {&(0x7f0000000540)="44ce8d0320e633fe9cfd68ab035226a9f28081bd3ced6bdeb85d81fe39b114d39a14df1ffced4e0c1b0fc274650a27500364b7a281641625c8c2793939b102cc9fe3d9882c4a715feb1cfcf48885e2aa2b6aac7582c8ce5c89a049d6db4cda478209a58e372c8debfe4697219b26cb3d0dba4c0f5b4f95c365b7d4993a7d03f26445f663cd6ff620332885a961ac3cceee", 0x91}], 0x7, &(0x7f0000000640)=ANY=[@ANYBLOB="f400000004010000ffff00001b7971e26ff1a2db4796cc7066edc7c566d4eac98ce06bfb888d51008ca84acb9ac058ef76cb03441a2361618a3d02a279dc6ec6b95fc1c651391a60657b9b951d31d5e8fec1b00706685b12740b24b7942bdec9714daab94102e1040a199db7caab0b25e968143981db2d43fed6bffb57fc2141de04ee7243c43a008ebc5bba9b125ad1dca36dca86c249a654298f3804a3d4d90b1dcd19fffadd737cb95e7ae354bf88f36598e6b756e6ce706a2d443d93a9217f6a9eb7db387b522759517f290fbb0d274d2876506ac7c5734432d291e204f110aef8b58e6500"/244], 0xf4}, 0x4)
syz_emit_ethernet(0x56, &(0x7f0000000880)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa88a820008100300086dd6010104000180600fe8000004000000000000000000000bbfe8000000500000000000000000000aa4e234e22784e88a6ca62cd2e13b1609c0b9c6215d9bce29eaf1f13d0d294c4fd7153c4ba4911b234edd1d5285cbffce6de123b1e8a1ba3af5300509fe0cec7b3a28ca1f9b338793440b296fb402d4efc56b3ca1eec8185fc3d17da3e156ea73070ff1854a2a1897c5c783275b2b4c09bcede3893c8743352008d51c8889f4a29af484f4ff31e663bb9654af95b7b5c4c40eb0d63f0beb1e1c2a8da989782b5bf92d2c390d736be14665d6dd57d7038b9798bd87c24193defdb0a15", @ANYRES32=0x41424344, @ANYRES64=r11, @ANYBLOB="64020001907800000303fc00"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.169696309s ago: executing program 7 (id=1966):
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100)=0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x11)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000000000000000000000000085000000050000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008008000b703000000009c8c850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000140)={0x18, 0x0, {0x0, @local, 'bond_slave_0\x00'}}, 0x1e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x29, 0x1, @thr={0x0, 0x0}}, &(0x7f0000000040))
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
writev(r2, &(0x7f0000000800)=[{&(0x7f0000000c00)="89e7ee2c7c", 0x5}, {0x0}], 0x2)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
gettid()
r3 = openat$vimc2(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VIDIOC_S_EDID(r3, 0xc0245629, &(0x7f0000000400)={0x0, 0x4, 0x5, '\x00', &(0x7f0000000240)=0x1})
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0xc, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="18040000000000000000000000000000180000002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001040)={r4, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000100)="b9ff03316844268cb89e14f00800", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x4c)
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000300)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x6, 0x0, 0x3400}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r5}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)

968.643753ms ago: executing program 4 (id=1967):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xa, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f000081c000/0x1000)=nil, 0x1000, 0x8, 0x1010, 0xffffffffffffffff, 0xab880000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(r4, r4, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x89e0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1200000007000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000090000000000000044d06021fd9d3f26c3f22c2105ceef2cc913807164d36ccebce5be"], 0x48)
r6 = socket$igmp(0x2, 0x3, 0x2)
prctl$PR_SET_SECUREBITS(0x1c, 0x1e)
setreuid(0xee01, 0xee01)
fcntl$setstatus(r6, 0x4, 0x42800)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x7ffe, 0x0, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x1f, 0xf, &(0x7f0000000680)=ANY=[@ANYBLOB, @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000001000000850008000000000000000000000000009500000000000000f3a674f29403ea5dc877d10a1b9ab65fce713fb0281c33639821990ab9c09f402c610c84b54e6f8dbb5bfc1e99ebcd886675cd6134b571e0b2f416faee826b6c6bbbf5e952bb77a2dce071a75c70238e"], &(0x7f0000000180)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x34, '\x00', 0x0, 0x0, r7, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0xc0205710, &(0x7f00000002c0)={0x1, 0xff, 0x1, 0x0, 0x5})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000700)='notify_on_release\x00', 0x2, 0x0)

343.048305ms ago: executing program 7 (id=1968):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f", @ANYRESHEX=r0], 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x5e06246b7ffbf016, 0x0)
r1 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0xe9)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x80)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'veth1_to_bridge\x00', <r3=>0x0})
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-aesni)\x00'}, 0x58)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000100)={@local, 0x0, r3})
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
write$UHID_CREATE(r6, &(0x7f0000000180)={0x0, {'syz1\x00', 'syz0\x00', 'syz1\x00', 0x0, 0x0, 0x3, 0x7, 0x0, 0x961d, 0xa}}, 0x120)
socket$inet_dccp(0x2, 0x6, 0x0)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(0xffffffffffffffff, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000002c40)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCADDRT(r7, 0x890b, &(0x7f0000000140)={@mcast2, @local, @private2, 0x0, 0x0, 0x0, 0x100, 0x0, 0xa0022, r3})
syz_open_dev$midi(&(0x7f0000000000), 0x7, 0x62040)
close(0x4)

160.117526ms ago: executing program 1 (id=1969):
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x40000)
ioctl$SG_GET_NUM_WAITING(r0, 0x227d, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000440)={0x53, 0x3000, 0x10, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="851666ce20db", 0x0, 0x10, 0x39, 0x0, 0x0})

60.011767ms ago: executing program 4 (id=1970):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'ip6_vti0\x00'})
r1 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$apparmor_current(r1, &(0x7f0000000500)=@profile={'stack ', ':\t\x0e\xa3h\x0e\xb0j\x1a_\xd3\xf7aN\xfc\xd3\x12g\xa0Y\r\xd5\t\xa5\xef\xfe\x06\x9a\xbb\x05\xad3R\xb3\xac\x01t9\xe1\xdb\xc6oM\xf2\f\aA\xb0-\xb7\x17\xf3[\xbb\xcdJsM\xe1\xf7\fs\xc0~\xdaw\xd9ak\xe3\xdd\x1ec\xe9 U\xfe7:\x94\xf0\"\xb1\xf0\x18\xe4\xb2\xa8\f\x8d\xe7\xf6>DjqG\x00\xba\xfcX\xcd\x92\xd4(0?\x8d%\x06\xac\xc8\xb9\xf9\xba68Q\x80<\xcf'}, 0x7f)
unshare(0x62040200)
r2 = gettid()
r3 = io_uring_setup(0x2e34, &(0x7f0000000180))
close_range(r3, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005f00)=ANY=[@ANYRES64=r0, @ANYRES32=r3, @ANYBLOB="6d3082610000000008001300", @ANYRES32=r2], 0x28}}, 0x20000800)

0s ago: executing program 4 (id=1971):
mknod$loop(0x0, 0x200, 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x31303453, 0x8, 0x4, [{}, {0x10}, {0x403, 0x4000}, {0x2, 0xa}, {0x8}, {}, {0xb}, {0x0, 0x4}], 0x0, 0x0, 0x0, 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
read$FUSE(r2, &(0x7f0000005740)={0x2020, 0x0, 0x0, <r3=>0x0}, 0x2020)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={[{@verity_off}, {@redirect_dir_on}], [{@smackfsdef={'smackfsdef', 0x3d, '$!'}}, {@uid_gt={'uid>', r3}}], 0x2f})
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
syz_usb_connect(0x0, 0x3f, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f0000000100))
read$FUSE(r4, &(0x7f00000023c0)={0x2020}, 0x2020)

kernel console output (not intermixed with test programs):

 item tag 0x0
[  248.705032][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.708188][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.710676][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.713740][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.717790][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.720932][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.723852][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.727300][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.730328][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.733295][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.738377][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.741398][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.743810][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.746309][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.748768][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.751365][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.753989][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.757614][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.760618][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.763601][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.767103][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.770189][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.773186][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.776566][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.779699][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.782719][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.786005][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.788897][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.791760][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.796141][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.799075][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.802032][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.805155][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.808097][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.811054][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.814019][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.817265][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.820230][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.822467][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.825143][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.827204][    T9] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  248.833663][    T9] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  249.324377][   T39] kauditd_printk_skb: 1671 callbacks suppressed
[  249.324393][   T39] audit: type=1326 audit(1737467732.577:2147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9914 comm="syz.1.1004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  249.354566][   T39] audit: type=1326 audit(1737467732.577:2148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9914 comm="syz.1.1004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  249.379683][   T39] audit: type=1326 audit(1737467732.577:2149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9914 comm="syz.1.1004" exe="/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  249.412930][   T39] audit: type=1326 audit(1737467732.577:2150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9914 comm="syz.1.1004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  249.424396][   T39] audit: type=1326 audit(1737467732.577:2151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9914 comm="syz.1.1004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  249.432362][   T39] audit: type=1326 audit(1737467732.577:2152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9914 comm="syz.1.1004" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  249.440319][   T39] audit: type=1326 audit(1737467732.577:2153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9914 comm="syz.1.1004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  249.449726][   T39] audit: type=1326 audit(1737467732.577:2154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9914 comm="syz.1.1004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  249.458598][   T39] audit: type=1326 audit(1737467732.577:2155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9914 comm="syz.1.1004" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  249.467395][   T39] audit: type=1326 audit(1737467732.577:2156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9914 comm="syz.1.1004" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  249.866870][ T9929] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  250.463863][ T9946] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  251.131154][ T9988] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  251.201663][T10000] Bluetooth: MGMT ver 1.23
[  251.229444][T10004] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1016'.
[  251.489154][T10009] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1024'.
[  251.509221][T10010] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1023'.
[  252.080443][T10009] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  252.083987][T10009] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  252.086299][T10009] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  252.088092][T10009] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  252.089830][T10009] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  252.091561][T10009] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  252.097096][T10009] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  252.236632][T10039] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  253.178538][T10069] ip6t_srh: unknown srh match flags  E506
[  253.574393][ T5955] Bluetooth: hci1: command 0x0406 tx timeout
[  254.134219][ T5955] Bluetooth: hci2: command 0x0405 tx timeout
[  254.134425][   T66] Bluetooth: hci3: command 0x0406 tx timeout
[  254.138697][ T5942] Bluetooth: hci0: command 0x0c1a tx timeout
[  254.268133][T10099] fuse: Unknown parameter ''
[  254.875755][T10118] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  255.101014][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  255.108733][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  255.664239][ T5942] Bluetooth: hci1: command 0x0406 tx timeout
[  256.009323][T10151] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1068'.
[  256.221503][ T5942] Bluetooth: hci0: command 0x0c1a tx timeout
[  256.986092][T10167] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1072'.
[  257.070484][T10169] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1073'.
[  257.305939][T10175] loop6: detected capacity change from 0 to 524287999
[  257.315812][    C1] blk_print_req_error: 29 callbacks suppressed
[  257.315823][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[  257.323112][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  257.325884][    C1] buffer_io_error: 26 callbacks suppressed
[  257.325892][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  257.331500][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  257.334254][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  257.531831][T10187] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1077'.
[  257.975093][T10202] random: crng reseeded on system resumption
[  258.014699][T10207] netlink: 'syz.1.1083': attribute type 20 has an invalid length.
[  258.044241][T10202] trusted_key: syz.2.1081 sent an empty control message without MSG_MORE.
[  258.304906][ T5942] Bluetooth: hci0: command 0x0c1a tx timeout
[  258.550023][T10190] dccp_close: ABORT with 32 bytes unread
[  259.753292][T10254] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  259.850752][   T39] kauditd_printk_skb: 8 callbacks suppressed
[  259.850761][   T39] audit: type=1326 audit(1737467743.227:2165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10255 comm="syz.1.1096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  259.860912][   T39] audit: type=1326 audit(1737467743.227:2166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10255 comm="syz.1.1096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  259.868936][   T39] audit: type=1326 audit(1737467743.227:2167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10255 comm="syz.1.1096" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  259.878611][   T39] audit: type=1326 audit(1737467743.227:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10255 comm="syz.1.1096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  259.884208][   T63] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  259.884946][   T39] audit: type=1326 audit(1737467743.227:2169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10255 comm="syz.1.1096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  259.908350][   T39] audit: type=1326 audit(1737467743.227:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10255 comm="syz.1.1096" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  259.918456][   T39] audit: type=1326 audit(1737467743.227:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10255 comm="syz.1.1096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  259.924991][   T39] audit: type=1326 audit(1737467743.227:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10255 comm="syz.1.1096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  259.931526][   T39] audit: type=1326 audit(1737467743.227:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10255 comm="syz.1.1096" exe="/syz-executor" sig=0 arch=40000003 syscall=12 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  259.938540][   T39] audit: type=1326 audit(1737467743.227:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10255 comm="syz.1.1096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x7ffc0000
[  260.064265][   T63] usb 11-1: Using ep0 maxpacket: 8
[  260.067244][   T63] usb 11-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  260.070730][   T63] usb 11-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  260.074871][   T63] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  260.077628][   T63] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  260.083061][   T63] usbtmc 11-1:16.0: bulk endpoints not found
[  260.092407][T10268] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1101'.
[  260.545902][T10271] syz.2.1101 (10271): attempted to duplicate a private mapping with mremap.  This is not supported.
[  260.833617][T10280] sctp: [Deprecated]: syz.4.1104 (pid 10280) Use of struct sctp_assoc_value in delayed_ack socket option.
[  260.833617][T10280] Use struct sctp_sack_info instead
[  260.849781][T10278] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1104'.
[  262.135699][   T66] Bluetooth: hci0: command 0x0c1a tx timeout
[  262.726007][   T57] usb 11-1: USB disconnect, device number 4
[  262.816267][T10323] xt_CT: You must specify a L4 protocol and not use inversions on it
[  263.296931][T10360] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6
[  263.382185][T10363] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1123'.
[  263.556144][T10373] netlink: 'syz.2.1124': attribute type 102 has an invalid length.
[  263.621631][T10376] 9pnet_fd: Insufficient options for proto=fd
[  264.298726][T10381] netlink: 'syz.4.1126': attribute type 33 has an invalid length.
[  264.606503][ T8740] udevd[8740]: inotify_add_watch(7, /dev/pmem0p13, 10) failed: No such file or directory
[  264.881569][T10390] cgroup: fork rejected by pids controller in /syz1
[  265.605257][T10777] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1140'.
[  266.919429][T10803] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1148'.
[  266.963387][T10804] overlayfs: workdir and upperdir must be separate subtrees
[  267.001009][T10809] netlink: 72 bytes leftover after parsing attributes in process `syz.6.1147'.
[  267.019215][T10809] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  268.072797][T10830] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  268.372908][T10833] can0: slcan on ptm1.
[  268.428857][T10836] FAULT_INJECTION: forcing a failure.
[  268.428857][T10836] name failslab, interval 1, probability 0, space 0, times 0
[  268.433707][T10836] CPU: 2 UID: 0 PID: 10836 Comm: syz.1.1159 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  268.436939][T10836] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  268.439968][T10836] Call Trace:
[  268.440971][T10836]  <TASK>
[  268.441867][T10836]  dump_stack_lvl+0x16c/0x1f0
[  268.443234][T10836]  should_fail_ex+0x497/0x5b0
[  268.444837][T10836]  ? fs_reclaim_acquire+0xae/0x150
[  268.446459][T10836]  should_failslab+0xc2/0x120
[  268.447806][T10836]  __kmalloc_noprof+0xce/0x4f0
[  268.449187][T10836]  ? d_absolute_path+0x137/0x1b0
[  268.450610][T10836]  ? tomoyo_encode2+0x100/0x3e0
[  268.452457][T10836]  tomoyo_encode2+0x100/0x3e0
[  268.454373][T10836]  tomoyo_realpath_from_path+0x1a7/0x710
[  268.456123][T10836]  tomoyo_path_number_perm+0x248/0x5b0
[  268.457706][T10836]  ? tomoyo_path_number_perm+0x235/0x5b0
[  268.459391][T10836]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  268.461202][T10836]  ? mark_lock+0xb5/0xc60
[  268.462467][T10836]  ? __d_lookup+0x266/0x4a0
[  268.463781][T10836]  ? d_lookup+0xe7/0x190
[  268.465048][T10836]  ? lookup_dcache+0x62/0x130
[  268.466407][T10836]  ? lookup_one_qstr_excl+0x39/0x190
[  268.467928][T10836]  tomoyo_path_mkdir+0x9c/0xe0
[  268.469341][T10836]  ? __pfx_tomoyo_path_mkdir+0x10/0x10
[  268.470906][T10836]  ? lock_acquire+0x2f/0xb0
[  268.472714][T10836]  ? get_current_fs_domain+0x184/0x1f0
[  268.474820][T10836]  security_path_mkdir+0x154/0x2f0
[  268.476319][T10836]  do_mkdirat+0x176/0x3a0
[  268.477602][T10836]  ? __pfx_do_mkdirat+0x10/0x10
[  268.478947][T10836]  ? getname_flags.part.0+0x1c5/0x550
[  268.480431][T10836]  __ia32_sys_mkdir+0x61/0x80
[  268.481862][T10836]  __do_fast_syscall_32+0x73/0x120
[  268.483333][T10836]  do_fast_syscall_32+0x32/0x80
[  268.484781][T10836]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  268.486627][T10836] RIP: 0023:0xf7f83579
[  268.487850][T10836] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  268.494286][T10836] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000027
[  268.496811][T10836] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 0000000000000000
[  268.499070][T10836] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  268.501369][T10836] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  268.503625][T10836] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  268.505945][T10836] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  268.508224][T10836]  </TASK>
[  268.518478][T10836] ERROR: Out of memory at tomoyo_realpath_from_path.
[  268.835252][T10824] can0 (unregistered): slcan off ptm1.
[  269.387221][T10866] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1164'.
[  269.548034][T10867] can0: slcan on ttyS3.
[  269.551685][T10867] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  269.555494][T10867] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1164'.
[  269.674307][T10876] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1166'.
[  269.858397][T10885] sch_tbf: burst 0 is lower than device lo mtu (81) !
[  270.526861][T10865] can0 (unregistered): slcan off ttyS3.
[  271.257929][T10919] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4)
[  271.260201][T10919] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  271.263060][T10919] vhci_hcd vhci_hcd.0: Device attached
[  271.326762][T10928] sch_tbf: burst 0 is lower than device lo mtu (1075109906) !
[  271.622874][    T9] vhci_hcd: vhci_device speed not set
[  271.764892][    T9] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[  272.051273][T10920] vhci_hcd: connection reset by peer
[  272.054848][ T1249] vhci_hcd: stop threads
[  272.056653][ T1249] vhci_hcd: release socket
[  272.058707][ T1249] vhci_hcd: disconnect device
[  272.393703][ T5942] Bluetooth: hci3: SCO packet for unknown connection handle 0
[  272.652867][T10967] FAULT_INJECTION: forcing a failure.
[  272.652867][T10967] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  272.659054][T10967] CPU: 1 UID: 0 PID: 10967 Comm: syz.2.1190 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  272.662044][T10967] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  272.665130][T10967] Call Trace:
[  272.666109][T10967]  <TASK>
[  272.666986][T10967]  dump_stack_lvl+0x16c/0x1f0
[  272.668333][T10967]  should_fail_ex+0x497/0x5b0
[  272.669701][T10967]  _copy_from_user+0x2e/0xd0
[  272.671044][T10967]  move_addr_to_kernel+0x68/0x160
[  272.672481][T10967]  __sys_sendto+0x1ba/0x4f0
[  272.673780][T10967]  ? __pfx___sys_sendto+0x10/0x10
[  272.675240][T10967]  ? __might_fault+0x13b/0x190
[  272.676654][T10967]  __do_compat_sys_socketcall+0x5e2/0x700
[  272.678311][T10967]  ? __fget_files+0x206/0x3a0
[  272.679669][T10967]  ? __pfx___do_compat_sys_socketcall+0x10/0x10
[  272.681471][T10967]  ? fput+0x67/0x440
[  272.682572][T10967]  __do_fast_syscall_32+0x73/0x120
[  272.684905][T10967]  do_fast_syscall_32+0x32/0x80
[  272.686597][T10967]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  272.688537][T10967] RIP: 0023:0xf7fa7579
[  272.689770][T10967] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  272.695688][T10967] RSP: 002b:00000000f50f5430 EFLAGS: 00000293 ORIG_RAX: 0000000000000066
[  272.699018][T10967] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f50f5444
[  272.701325][T10967] RDX: 0000000000000000 RSI: 00000000f50f5560 RDI: 00000000f7433ff4
[  272.703702][T10967] RBP: 00000000f50f5560 R08: 0000000000000000 R09: 0000000000000000
[  272.706031][T10967] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  272.708345][T10967] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  272.710677][T10967]  </TASK>
[  273.080929][T10990] wg1 speed is unknown, defaulting to 1000
[  273.294176][T10993] syzkaller0: entered promiscuous mode
[  273.295782][T10993] syzkaller0: entered allmulticast mode
[  273.678847][T11001] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1198'.
[  273.927131][ T6002] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  274.076573][ T6002] usb 6-1: Using ep0 maxpacket: 8
[  275.177988][ T6002] usb 6-1: unable to get BOS descriptor or descriptor too short
[  275.184307][ T6002] usb 6-1: unable to read config index 0 descriptor/start: -71
[  275.186550][ T6002] usb 6-1: can't read configurations, error -71
[  275.977595][T11044] veth0_to_team: entered promiscuous mode
[  275.979334][T11044] veth0_to_team: entered allmulticast mode
[  276.112757][T11054] xt_connbytes: Forcing CT accounting to be enabled
[  276.283616][T11055] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  276.485117][T11073] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1214'.
[  276.546214][T11074] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1214'.
[  276.556971][T11074] netlink: 'syz.2.1214': attribute type 4 has an invalid length.
[  276.560176][T11074] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1214'.
[  276.567235][T11074] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1214'.
[  276.595491][T11074] wg1 speed is unknown, defaulting to 1000
[  276.632114][T11080] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1217'.
[  276.731103][T11083] FAULT_INJECTION: forcing a failure.
[  276.731103][T11083] name failslab, interval 1, probability 0, space 0, times 0
[  276.736296][T11083] CPU: 3 UID: 0 PID: 11083 Comm: syz.4.1218 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  276.740910][T11083] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  276.745356][T11083] Call Trace:
[  276.746750][T11083]  <TASK>
[  276.748009][T11083]  dump_stack_lvl+0x16c/0x1f0
[  276.749942][T11083]  should_fail_ex+0x497/0x5b0
[  276.751868][T11083]  ? fs_reclaim_acquire+0xae/0x150
[  276.753920][T11083]  should_failslab+0xc2/0x120
[  276.755818][T11083]  __kmalloc_noprof+0xce/0x4f0
[  276.757761][T11083]  ? d_absolute_path+0x137/0x1b0
[  276.759749][T11083]  ? tomoyo_encode2+0x100/0x3e0
[  276.761746][T11083]  tomoyo_encode2+0x100/0x3e0
[  276.763658][T11083]  tomoyo_realpath_from_path+0x1a7/0x710
[  276.765937][T11083]  tomoyo_path_number_perm+0x248/0x5b0
[  276.768120][T11083]  ? tomoyo_path_number_perm+0x235/0x5b0
[  276.770349][T11083]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  276.772762][T11083]  ? __pfx_lock_release+0x10/0x10
[  276.774835][T11083]  ? trace_lock_acquire+0x14e/0x1f0
[  276.776981][T11083]  ? lock_acquire+0x2f/0xb0
[  276.778887][T11083]  ? __fget_files+0x40/0x3a0
[  276.780848][T11083]  ? __fget_files+0x206/0x3a0
[  276.782827][T11083]  security_file_ioctl_compat+0x9b/0x240
[  276.785085][T11083]  __do_compat_sys_ioctl+0x4e/0x2c0
[  276.787163][T11083]  __do_fast_syscall_32+0x73/0x120
[  276.789297][T11083]  do_fast_syscall_32+0x32/0x80
[  276.791271][T11083]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  276.793820][T11083] RIP: 0023:0xf70ee579
[  276.795445][T11083] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  276.803035][T11083] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  276.806297][T11083] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005437
[  276.809432][T11083] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  276.812667][T11083] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  276.815955][T11083] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  276.819236][T11083] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  276.822526][T11083]  </TASK>
[  276.826265][T11083] ERROR: Out of memory at tomoyo_realpath_from_path.
[  276.924637][    T9] vhci_hcd: vhci_device speed not set
[  277.179894][T11083] netlink: 'syz.4.1218': attribute type 10 has an invalid length.
[  277.816047][T11104] Cannot find add_set index 0 as target
[  277.818908][T11102] overlayfs: missing 'lowerdir'
[  278.133691][T11120] syzkaller1: entered promiscuous mode
[  278.137048][T11120] syzkaller1: entered allmulticast mode
[  278.266371][T11125] xt_CT: No such helper "netbios-ns"
[  278.723032][T11136] netlink: 'syz.2.1234': attribute type 10 has an invalid length.
[  278.759607][T11141] Cannot find add_set index 0 as target
[  279.055124][T11155] FAULT_INJECTION: forcing a failure.
[  279.055124][T11155] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.058975][T11155] CPU: 1 UID: 0 PID: 11155 Comm: syz.4.1242 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  279.061998][T11155] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  279.065019][T11155] Call Trace:
[  279.065986][T11155]  <TASK>
[  279.066850][T11155]  dump_stack_lvl+0x16c/0x1f0
[  279.068500][T11155]  should_fail_ex+0x497/0x5b0
[  279.069877][T11155]  _copy_from_user+0x2e/0xd0
[  279.071216][T11155]  cmsghdr_from_user_compat_to_kern+0x356/0x7c0
[  279.072993][T11155]  ? __pfx_cmsghdr_from_user_compat_to_kern+0x10/0x10
[  279.074888][T11155]  ____sys_sendmsg+0x43d/0xb40
[  279.076252][T11155]  ? __pfx_____sys_sendmsg+0x10/0x10
[  279.077976][T11155]  ? get_compat_msghdr+0x11b/0x170
[  279.080040][T11155]  ___sys_sendmsg+0x135/0x1e0
[  279.081614][T11155]  ? __pfx____sys_sendmsg+0x10/0x10
[  279.083090][T11155]  ? trace_lock_acquire+0x14e/0x1f0
[  279.084580][T11155]  __sys_sendmmsg+0x2fa/0x420
[  279.085941][T11155]  ? __pfx___sys_sendmmsg+0x10/0x10
[  279.087489][T11155]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  279.089200][T11155]  ? fput+0x67/0x440
[  279.090327][T11155]  ? ksys_write+0x1ba/0x250
[  279.091642][T11155]  ? __pfx_ksys_write+0x10/0x10
[  279.093046][T11155]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  279.094633][T11155]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  279.096497][T11155]  __do_fast_syscall_32+0x73/0x120
[  279.098049][T11155]  do_fast_syscall_32+0x32/0x80
[  279.099445][T11155]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  279.101207][T11155] RIP: 0023:0xf70ee579
[  279.102361][T11155] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  279.109534][T11155] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  279.112839][T11155] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200009c0
[  279.115910][T11155] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  279.119003][T11155] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  279.122165][T11155] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  279.125325][T11155] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  279.128440][T11155]  </TASK>
[  279.211488][T11161] syzkaller1: entered promiscuous mode
[  279.213168][T11161] syzkaller1: entered allmulticast mode
[  279.427259][T11172] Cannot find add_set index 0 as target
[  279.785851][T11178] FAULT_INJECTION: forcing a failure.
[  279.785851][T11178] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.790872][T11178] CPU: 2 UID: 0 PID: 11178 Comm: syz.1.1250 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  279.794884][T11178] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  279.799044][T11178] Call Trace:
[  279.800401][T11178]  <TASK>
[  279.801605][T11178]  dump_stack_lvl+0x16c/0x1f0
[  279.803507][T11178]  should_fail_ex+0x497/0x5b0
[  279.805349][T11178]  _copy_to_iter+0x29b/0x1400
[  279.807249][T11178]  ? trace_lock_acquire+0x14e/0x1f0
[  279.809351][T11178]  ? seq_put_decimal_ull_width+0x1d3/0x390
[  279.811662][T11178]  ? __pfx__copy_to_iter+0x10/0x10
[  279.813738][T11178]  ? __virt_addr_valid+0x1a4/0x590
[  279.815790][T11178]  ? __virt_addr_valid+0x5e/0x590
[  279.817846][T11178]  ? __phys_addr_symbol+0x30/0x80
[  279.819886][T11178]  ? __check_object_size+0x488/0x710
[  279.822022][T11178]  seq_read_iter+0x725/0x12b0
[  279.823908][T11178]  proc_reg_read_iter+0x21d/0x310
[  279.825927][T11178]  vfs_read+0x87f/0xbe0
[  279.827634][T11178]  ? __pfx_vfs_read+0x10/0x10
[  279.829538][T11178]  ? lock_acquire+0x2f/0xb0
[  279.831255][T11178]  ? __fget_files+0x40/0x3a0
[  279.833010][T11178]  ksys_pread64+0x170/0x1a0
[  279.834867][T11178]  ? __pfx_ksys_pread64+0x10/0x10
[  279.836725][T11178]  __do_fast_syscall_32+0x73/0x120
[  279.838660][T11178]  do_fast_syscall_32+0x32/0x80
[  279.840138][T11178]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  279.842351][T11178] RIP: 0023:0xf7f83579
[  279.844033][T11178] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  279.851001][T11178] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 00000000000000b4
[  279.854164][T11178] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200003c0
[  279.857149][T11178] RDX: 0000000000000085 RSI: 0000000000000002 RDI: 0000000000000000
[  279.860062][T11178] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  279.862972][T11178] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  279.865851][T11178] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  279.868751][T11178]  </TASK>
[  280.350780][T11157] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  280.458765][T11159] orangefs_mount: mount request failed with -4
[  280.484874][T11187] openvswitch: netlink: IP tunnel dst address not specified
[  280.817186][T11197] syzkaller1: entered promiscuous mode
[  280.818987][T11197] syzkaller1: entered allmulticast mode
[  281.151055][T11213] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1263'.
[  281.814147][ T6001] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  281.974634][ T6001] usb 6-1: Using ep0 maxpacket: 8
[  281.977461][ T6001] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  281.979860][ T6001] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  281.983115][ T6001] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  281.987121][ T6001] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  281.990679][ T6001] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  281.995404][ T6001] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  281.998131][ T6001] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.216367][ T6001] usb 6-1: usb_control_msg returned -32
[  282.218026][ T6001] usbtmc 6-1:16.0: can't read capabilities
[  282.282516][T11236] syzkaller1: entered promiscuous mode
[  282.284411][T11236] syzkaller1: entered allmulticast mode
[  282.568259][T11216] usbtmc 6-1:16.0: INITIATE_CLEAR returned 0
[  282.733069][ T6001] hid-generic 0000:0000:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  282.842840][T11264] syzkaller1: entered promiscuous mode
[  282.844704][T11264] syzkaller1: entered allmulticast mode
[  283.166110][T11279] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1286'.
[  283.207618][T11285] wg1 speed is unknown, defaulting to 1000
[  283.470888][T11295] loop6: detected capacity change from 0 to 524287999
[  283.585621][T11298] syzkaller1: entered promiscuous mode
[  283.587366][T11298] syzkaller1: entered allmulticast mode
[  283.786670][T11311] syzkaller0: entered promiscuous mode
[  283.788679][T11311] syzkaller0: entered allmulticast mode
[  283.851242][T11315] netlink: 'syz.2.1295': attribute type 1 has an invalid length.
[  283.853175][T11314] overlayfs: missing 'lowerdir'
[  285.058192][T11325] nbd: device at index 6 is going down
[  285.138384][T11330] loop7: detected capacity change from 0 to 16384
[  285.493845][   T57] usb 6-1: USB disconnect, device number 14
[  285.915142][T11355] FAULT_INJECTION: forcing a failure.
[  285.915142][T11355] name failslab, interval 1, probability 0, space 0, times 0
[  285.920698][T11355] CPU: 0 UID: 0 PID: 11355 Comm: syz.2.1303 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  285.924804][T11355] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.928898][T11355] Call Trace:
[  285.930173][T11355]  <TASK>
[  285.931258][T11355]  dump_stack_lvl+0x16c/0x1f0
[  285.932820][T11355]  should_fail_ex+0x497/0x5b0
[  285.934523][T11355]  ? fs_reclaim_acquire+0xae/0x150
[  285.936810][T11355]  should_failslab+0xc2/0x120
[  285.938730][T11355]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  285.940876][T11355]  ? __pfx___might_resched+0x10/0x10
[  285.942961][T11355]  ? __anon_vma_prepare+0x344/0x5e0
[  285.945031][T11355]  __anon_vma_prepare+0x344/0x5e0
[  285.947039][T11355]  ? __pfx___pte_alloc+0x10/0x10
[  285.949036][T11355]  __vmf_anon_prepare+0x11c/0x240
[  285.951113][T11355]  do_pte_missing+0x1020/0x3e00
[  285.953181][T11355]  ? mt_find+0x82d/0xa20
[  285.954903][T11355]  ? __pfx_lock_release+0x10/0x10
[  285.956938][T11355]  __handle_mm_fault+0x103c/0x2a40
[  285.959034][T11355]  ? __pfx___handle_mm_fault+0x10/0x10
[  285.961235][T11355]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  285.963475][T11355]  ? find_vma+0xc0/0x140
[  285.965169][T11355]  ? __pfx_find_vma+0x10/0x10
[  285.967039][T11355]  handle_mm_fault+0x3fa/0xaa0
[  285.968960][T11355]  do_user_addr_fault+0x7a3/0x13f0
[  285.971025][T11355]  exc_page_fault+0x5c/0xc0
[  285.972833][T11355]  asm_exc_page_fault+0x26/0x30
[  285.974792][T11355] RIP: 0010:_copy_to_user+0xb6/0xd0
[  285.976856][T11355] Code: 89 ee 48 89 ef e8 fa 39 fd fc 4d 85 ff 75 a8 e8 80 3f fd fc 89 de 4c 89 e7 e8 46 b7 5f fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[  285.984377][T11355] RSP: 0018:ffffc90002f1fe08 EFLAGS: 00050246
[  285.986833][T11355] RAX: 0000000000000001 RBX: 0000000000000038 RCX: 0000000000000038
[  285.989958][T11355] RDX: fffff520005e3fd3 RSI: ffffc90002f1fe60 RDI: 0000000020000180
[  285.993085][T11355] RBP: 0000000020000180 R08: 0000000000000000 R09: fffff520005e3fd2
[  285.996428][T11355] R10: ffffc90002f1fe97 R11: 0000000000000000 R12: ffffc90002f1fe60
[  285.999527][T11355] R13: 00000000200001b8 R14: 00007ffffffff000 R15: 0000000000000000
[  286.002632][T11355]  ? _copy_to_user+0xaa/0xd0
[  286.004495][T11355]  __do_sys_sched_getattr+0x246/0x3a0
[  286.006616][T11355]  ? __pfx___do_sys_sched_getattr+0x10/0x10
[  286.008935][T11355]  ? native_tss_update_io_bitmap+0x2ec/0x610
[  286.011331][T11355]  __do_fast_syscall_32+0x73/0x120
[  286.013371][T11355]  do_fast_syscall_32+0x32/0x80
[  286.015311][T11355]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  286.017858][T11355] RIP: 0023:0xf7fa7579
[  286.019472][T11355] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  286.026989][T11355] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000160
[  286.030241][T11355] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000180
[  286.033372][T11355] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[  286.036482][T11355] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  286.039446][T11355] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  286.042509][T11355] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  286.045465][T11355]  </TASK>
[  286.494303][T11369] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1307'.
[  287.398076][T11388] netlink: 2980 bytes leftover after parsing attributes in process `syz.2.1312'.
[  287.416525][T11390] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1313'.
[  287.497299][T11393] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1313'.
[  287.528177][T11395] 9pnet_fd: Insufficient options for proto=fd
[  287.625078][T11397] 9pnet_fd: Insufficient options for proto=fd
[  288.340060][T11408] IPVS: ip_vs_add_dest(): lower threshold is higher than upper threshold
[  288.390270][ T6001] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  288.428082][T11413] sg_write: data in/out 16777180/251 bytes for SCSI command 0x15-- guessing data in;
[  288.428082][T11413]    program syz.4.1321 not setting count and/or reply_len properly
[  288.550659][T11425] syz_tun: left allmulticast mode
[  288.552313][T11425] syz_tun: left promiscuous mode
[  288.553877][T11425] bridge0: port 1(syz_tun) entered disabled state
[  288.555610][ T6001] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  288.560438][ T6001] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  288.566281][ T6001] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  288.569968][ T6001] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.570236][T11425] bond0: (slave batadv0): Releasing backup interface
[  288.576792][T11406] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  288.582099][ T6001] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  288.589455][T11425] bridge_slave_1: left allmulticast mode
[  288.591398][T11425] bridge_slave_1: left promiscuous mode
[  288.593167][T11425] bridge0: port 2(bridge_slave_1) entered disabled state
[  288.599249][T11425] bond0: (slave bond_slave_0): Releasing backup interface
[  288.604623][T11426] netlink: 'syz.2.1324': attribute type 10 has an invalid length.
[  288.610207][T11425] bond0: (slave bond_slave_1): Releasing backup interface
[  288.632850][T11425] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  288.635747][T11425] batman_adv: batadv0: Removing interface: batadv_slave_0
[  288.639182][T11425] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  288.641465][T11425] batman_adv: batadv0: Removing interface: batadv_slave_1
[  288.675343][T11426] 8021q: adding VLAN 0 to HW filter on device bond0
[  288.681750][T11426] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  288.702727][T11425] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  288.719207][T11430] team0 (unregistering): Port device team_slave_0 removed
[  288.723839][T11430] team0 (unregistering): Port device team_slave_1 removed
[  288.919867][T11433] can0: slcan on pts0.
[  288.985393][T11433] can0 (unregistered): slcan off pts0.
[  289.594713][T11457] wg1 speed is unknown, defaulting to 1000
[  289.841780][T11461] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1333'.
[  289.981776][T11463] tipc: Started in network mode
[  289.983784][T11463] tipc: Node identity 7, cluster identity 4711
[  289.990099][T11463] tipc: Node number set to 7
[  289.992296][T11463] tipc: Cannot configure node identity twice
[  290.105255][T11466] 9pnet_fd: Insufficient options for proto=fd
[  290.199773][T11469] netlink: 'syz.4.1336': attribute type 1 has an invalid length.
[  290.202580][T11469] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1336'.
[  290.822012][T11492] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  291.183972][ T6001] usb 6-1: USB disconnect, device number 15
[  292.127446][T11527] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1354'.
[  293.542211][T11543] mmap: syz.6.1357 (11543) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  293.618277][   T39] kauditd_printk_skb: 27 callbacks suppressed
[  293.618286][   T39] audit: type=1326 audit(1737467776.997:2202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11547 comm="syz.4.1359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  293.626968][   T39] audit: type=1326 audit(1737467776.997:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11547 comm="syz.4.1359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  293.634301][   T39] audit: type=1326 audit(1737467777.007:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11547 comm="syz.4.1359" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  293.640520][   T39] audit: type=1326 audit(1737467777.007:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11547 comm="syz.4.1359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  293.647335][   T39] audit: type=1326 audit(1737467777.007:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11547 comm="syz.4.1359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  293.653522][   T39] audit: type=1326 audit(1737467777.007:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11547 comm="syz.4.1359" exe="/syz-executor" sig=0 arch=40000003 syscall=97 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  293.659984][   T39] audit: type=1326 audit(1737467777.007:2208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11547 comm="syz.4.1359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  293.666893][   T39] audit: type=1326 audit(1737467777.007:2209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11547 comm="syz.4.1359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  293.673523][   T39] audit: type=1326 audit(1737467777.007:2210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11547 comm="syz.4.1359" exe="/syz-executor" sig=0 arch=40000003 syscall=114 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  293.773543][   T39] audit: type=1326 audit(1737467777.147:2211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11547 comm="syz.4.1359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  293.812910][T11554] wg1 speed is unknown, defaulting to 1000
[  293.920797][T11558] random: crng reseeded on system resumption
[  293.974674][T11559] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1361'.
[  294.059123][T11559] netfs: Couldn't get user pages (rc=-14)
[  294.338233][T11564] ebtables: wrong size: *len 264, entries_size 144, replsz 144
[  294.666505][T11571] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1364'.
[  295.626754][T11593] Cannot find add_set index 0 as target
[  296.152755][T11597] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1372'.
[  296.458246][T11605] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1375'.
[  296.462007][T11605] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1375'.
[  296.471716][T11605] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1375'.
[  296.531091][T11614] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  296.543249][T11614] batadv_slave_1: entered promiscuous mode
[  297.033975][T11629] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1383'.
[  297.117886][T11635] syzkaller1: entered promiscuous mode
[  297.119746][T11635] syzkaller1: entered allmulticast mode
[  297.554198][   T35] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  297.704191][   T35] usb 9-1: Using ep0 maxpacket: 8
[  297.708266][   T35] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  297.711385][   T35] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  297.714737][   T35] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  297.718013][   T35] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  297.722220][   T35] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  297.725318][   T35] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.951591][   T35] usb 9-1: usb_control_msg returned -71
[  297.953330][   T35] usbtmc 9-1:16.0: can't read capabilities
[  297.956753][   T35] usb 9-1: USB disconnect, device number 5
[  298.285446][T11663] syzkaller1: entered promiscuous mode
[  298.287633][T11663] syzkaller1: entered allmulticast mode
[  298.374598][T11665] overlayfs: workdir and upperdir must be separate subtrees
[  298.564752][ T1114] sr 2:0:0:0: [sr0] tag#25 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  298.567652][ T1114] sr 2:0:0:0: [sr0] tag#25 Sense Key : Illegal Request [current] 
[  298.569893][ T1114] sr 2:0:0:0: [sr0] tag#25 Add. Sense: Invalid command operation code
[  298.572302][ T1114] sr 2:0:0:0: [sr0] tag#25 CDB: Write(10) 2a 00 00 00 00 00 00 00 02 00
[  298.574769][ T1114] critical target error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[  298.577700][ T1114] Buffer I/O error on dev sr0, logical block 0, lost async page write
[  299.005017][T11657] FAULT_INJECTION: forcing a failure.
[  299.005017][T11657] name failslab, interval 1, probability 0, space 0, times 0
[  299.010091][T11657] CPU: 1 UID: 0 PID: 11657 Comm: syz.1.1390 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  299.014317][T11657] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  299.018605][T11657] Call Trace:
[  299.019984][T11657]  <TASK>
[  299.021288][T11657]  dump_stack_lvl+0x16c/0x1f0
[  299.023239][T11657]  should_fail_ex+0x497/0x5b0
[  299.025181][T11657]  ? fs_reclaim_acquire+0xae/0x150
[  299.027277][T11657]  should_failslab+0xc2/0x120
[  299.029228][T11657]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  299.031432][T11657]  ? security_inode_alloc+0x3b/0x2b0
[  299.033600][T11657]  security_inode_alloc+0x3b/0x2b0
[  299.035687][T11657]  inode_init_always_gfp+0xce4/0x1030
[  299.037886][T11657]  alloc_inode+0x82/0x230
[  299.039663][T11657]  sock_alloc+0x40/0x280
[  299.041406][T11657]  do_accept+0xf8/0x530
[  299.043112][T11657]  ? do_raw_spin_lock+0x12d/0x2c0
[  299.045062][T11657]  ? __pfx_do_accept+0x10/0x10
[  299.046985][T11657]  __sys_accept4+0xfe/0x1b0
[  299.048870][T11657]  ? __pfx___sys_accept4+0x10/0x10
[  299.050975][T11657]  ? __pfx_ksys_write+0x10/0x10
[  299.052976][T11657]  __ia32_sys_accept4+0x94/0x100
[  299.054920][T11657]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  299.057580][T11657]  __do_fast_syscall_32+0x73/0x120
[  299.059671][T11657]  do_fast_syscall_32+0x32/0x80
[  299.061638][T11657]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  299.064191][T11657] RIP: 0023:0xf7f83579
[  299.065842][T11657] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  299.073317][T11657] RSP: 002b:00000000f50b555c EFLAGS: 00000296 ORIG_RAX: 000000000000016c
[  299.076469][T11657] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000000000
[  299.079478][T11657] RDX: 0000000000000000 RSI: 0000000000000800 RDI: 0000000000000000
[  299.081880][T11657] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  299.084384][T11657] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  299.087876][T11657] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  299.090990][T11657]  </TASK>
[  299.324253][    T9] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  299.345598][T11683] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1397'.
[  299.348863][T11683] unsupported nlmsg_type 40
[  299.494553][    T9] usb 9-1: Using ep0 maxpacket: 8
[  299.501000][    T9] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  299.509127][    T9] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  299.512560][    T9] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  299.518903][    T9] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  299.523723][    T9] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  299.528530][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  299.662642][T11685] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  299.744724][    T9] usb 9-1: usb_control_msg returned -32
[  299.747158][    T9] usbtmc 9-1:16.0: can't read capabilities
[  300.191642][T11693] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1396'.
[  300.195267][T11693] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1396'.
[  300.342324][T11696] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1401'.
[  300.348708][T11696] bridge_slave_1: left allmulticast mode
[  300.350370][T11696] bridge_slave_1: left promiscuous mode
[  300.352236][T11696] bridge0: port 2(bridge_slave_1) entered disabled state
[  300.356538][T11696] bridge2: port 1(bridge_slave_1) entered blocking state
[  300.362026][T11696] bridge2: port 1(bridge_slave_1) entered disabled state
[  300.367230][T11696] bridge_slave_1: entered allmulticast mode
[  300.371932][T11696] bridge_slave_1: entered promiscuous mode
[  300.418202][T11698] syzkaller1: entered promiscuous mode
[  300.419854][T11698] syzkaller1: entered allmulticast mode
[  300.547056][T11700] raw_sendmsg: syz.6.1403 forgot to set AF_INET. Fix it!
[  300.575754][T11702] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1404'.
[  301.563426][T11715] FAULT_INJECTION: forcing a failure.
[  301.563426][T11715] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  301.567311][T11715] CPU: 1 UID: 0 PID: 11715 Comm: syz.6.1409 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  301.570301][T11715] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  301.573359][T11715] Call Trace:
[  301.574336][T11715]  <TASK>
[  301.575209][T11715]  dump_stack_lvl+0x16c/0x1f0
[  301.576592][T11715]  should_fail_ex+0x497/0x5b0
[  301.577982][T11715]  _copy_to_user+0x32/0xd0
[  301.579285][T11715]  simple_read_from_buffer+0xd0/0x160
[  301.580857][T11715]  proc_fail_nth_read+0x198/0x270
[  301.582736][T11715]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  301.584350][T11715]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  301.585953][T11715]  vfs_read+0x1df/0xbe0
[  301.587188][T11715]  ? __fget_files+0x1fc/0x3a0
[  301.588578][T11715]  ? __pfx___mutex_lock+0x10/0x10
[  301.590047][T11715]  ? __pfx_vfs_read+0x10/0x10
[  301.591432][T11715]  ? __fget_files+0x206/0x3a0
[  301.592807][T11715]  ksys_read+0x12b/0x250
[  301.594044][T11715]  ? __pfx_ksys_read+0x10/0x10
[  301.595435][T11715]  __do_fast_syscall_32+0x73/0x120
[  301.596932][T11715]  do_fast_syscall_32+0x32/0x80
[  301.598417][T11715]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  301.600679][T11715] RIP: 0023:0xf70ce579
[  301.601856][T11715] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  301.608089][T11715] RSP: 002b:00000000f50c0590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  301.611192][T11715] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50c0620
[  301.613725][T11715] RDX: 000000000000000f RSI: 00000000f7403ff4 RDI: 0000000000000000
[  301.616143][T11715] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  301.618439][T11715] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  301.620697][T11715] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  301.622958][T11715]  </TASK>
[  302.072483][ T5944] usb 9-1: USB disconnect, device number 6
[  302.171098][T11720] syzkaller1: entered promiscuous mode
[  302.173486][T11720] syzkaller1: entered allmulticast mode
[  302.375055][T11726] netlink: 'syz.4.1414': attribute type 2 has an invalid length.
[  302.388290][T11726] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1414'.
[  302.517962][T11730] netlink: 'syz.4.1416': attribute type 41 has an invalid length.
[  302.628985][T11739] syzkaller1: entered promiscuous mode
[  302.631207][T11739] syzkaller1: entered allmulticast mode
[  302.792257][T11752] FAULT_INJECTION: forcing a failure.
[  302.792257][T11752] name failslab, interval 1, probability 0, space 0, times 0
[  302.798131][T11752] CPU: 0 UID: 0 PID: 11752 Comm: syz.6.1424 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  302.801478][T11752] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  302.805142][T11752] Call Trace:
[  302.806113][T11752]  <TASK>
[  302.806994][T11752]  dump_stack_lvl+0x16c/0x1f0
[  302.808365][T11752]  should_fail_ex+0x497/0x5b0
[  302.809771][T11752]  ? fs_reclaim_acquire+0xae/0x150
[  302.811295][T11752]  should_failslab+0xc2/0x120
[  302.812976][T11752]  __kmalloc_node_noprof+0xd1/0x520
[  302.814479][T11752]  ? __vmalloc_node_range_noprof+0x3d8/0x1530
[  302.816229][T11752]  __vmalloc_node_range_noprof+0x3d8/0x1530
[  302.818029][T11752]  ? local_lock_acquire+0x10/0x150
[  302.819992][T11752]  ? kernel_clone+0xfd/0x960
[  302.821848][T11752]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  302.824337][T11752]  ? rcu_is_watching+0x12/0xc0
[  302.825735][T11752]  ? trace_kmem_cache_alloc+0x2d/0xd0
[  302.827302][T11752]  ? kmem_cache_alloc_node_noprof+0x219/0x3b0
[  302.829250][T11752]  ? copy_process+0x49c/0x6f20
[  302.830640][T11752]  ? kernel_clone+0xfd/0x960
[  302.832041][T11752]  copy_process+0x29b3/0x6f20
[  302.833583][T11752]  ? kernel_clone+0xfd/0x960
[  302.834952][T11752]  ? __might_fault+0x13b/0x190
[  302.836339][T11752]  ? __pfx_lock_release+0x10/0x10
[  302.837880][T11752]  ? trace_lock_acquire+0x14e/0x1f0
[  302.839410][T11752]  ? __pfx_copy_process+0x10/0x10
[  302.840849][T11752]  ? __might_fault+0xe3/0x190
[  302.842255][T11752]  ? _copy_from_user+0x59/0xd0
[  302.843641][T11752]  kernel_clone+0xfd/0x960
[  302.844957][T11752]  ? __pfx_kernel_clone+0x10/0x10
[  302.846901][T11752]  ? vfs_write+0x306/0x1150
[  302.848707][T11752]  __do_sys_clone3+0x1f9/0x270
[  302.850594][T11752]  ? __pfx___do_sys_clone3+0x10/0x10
[  302.852670][T11752]  __do_fast_syscall_32+0x73/0x120
[  302.854736][T11752]  do_fast_syscall_32+0x32/0x80
[  302.856333][T11752]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  302.858090][T11752] RIP: 0023:0xf70ce579
[  302.859362][T11752] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  302.865267][T11752] RSP: 002b:00000000f50c042c EFLAGS: 00000286 ORIG_RAX: 00000000000001b3
[  302.868058][T11752] RAX: ffffffffffffffda RBX: 00000000f50c0460 RCX: 0000000000000058
[  302.871047][T11752] RDX: 0000000000000000 RSI: 0000000000000400 RDI: 0000000000000002
[  302.873425][T11752] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  302.876357][T11752] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  302.879316][T11752] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  302.882226][T11752]  </TASK>
[  302.884170][T11752] syz.6.1424: vmalloc error: size 32768, failed to allocated page array size 64, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  302.890677][T11752] CPU: 0 UID: 0 PID: 11752 Comm: syz.6.1424 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  302.894627][T11752] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  302.898678][T11752] Call Trace:
[  302.899952][T11752]  <TASK>
[  302.901096][T11752]  dump_stack_lvl+0x16c/0x1f0
[  302.902831][T11752]  warn_alloc+0x24d/0x3a0
[  302.904431][T11752]  ? __pfx_warn_alloc+0x10/0x10
[  302.906188][T11752]  ? dump_stack_lvl+0x1a1/0x1f0
[  302.907962][T11752]  ? rcu_is_watching+0x12/0xc0
[  302.909692][T11752]  ? trace_kmalloc+0x2d/0xd0
[  302.911383][T11752]  ? __kmalloc_node_noprof+0x23d/0x520
[  302.913357][T11752]  __vmalloc_node_range_noprof+0x1105/0x1530
[  302.915683][T11752]  ? local_lock_acquire+0x10/0x150
[  302.917696][T11752]  ? kernel_clone+0xfd/0x960
[  302.919396][T11752]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  302.921801][T11752]  ? rcu_is_watching+0x12/0xc0
[  302.923671][T11752]  ? trace_kmem_cache_alloc+0x2d/0xd0
[  302.925774][T11752]  ? kmem_cache_alloc_node_noprof+0x219/0x3b0
[  302.928065][T11752]  ? copy_process+0x49c/0x6f20
[  302.929921][T11752]  ? kernel_clone+0xfd/0x960
[  302.931769][T11752]  copy_process+0x29b3/0x6f20
[  302.933670][T11752]  ? kernel_clone+0xfd/0x960
[  302.935413][T11752]  ? __might_fault+0x13b/0x190
[  302.937338][T11752]  ? __pfx_lock_release+0x10/0x10
[  302.939320][T11752]  ? trace_lock_acquire+0x14e/0x1f0
[  302.941330][T11752]  ? __pfx_copy_process+0x10/0x10
[  302.943237][T11752]  ? __might_fault+0xe3/0x190
[  302.945152][T11752]  ? _copy_from_user+0x59/0xd0
[  302.947101][T11752]  kernel_clone+0xfd/0x960
[  302.948845][T11752]  ? __pfx_kernel_clone+0x10/0x10
[  302.950878][T11752]  ? vfs_write+0x306/0x1150
[  302.952700][T11752]  __do_sys_clone3+0x1f9/0x270
[  302.954551][T11752]  ? __pfx___do_sys_clone3+0x10/0x10
[  302.956670][T11752]  __do_fast_syscall_32+0x73/0x120
[  302.958726][T11752]  do_fast_syscall_32+0x32/0x80
[  302.960652][T11752]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  302.962761][T11752] RIP: 0023:0xf70ce579
[  302.963948][T11752] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  302.969565][T11752] RSP: 002b:00000000f50c042c EFLAGS: 00000286 ORIG_RAX: 00000000000001b3
[  302.972010][T11752] RAX: ffffffffffffffda RBX: 00000000f50c0460 RCX: 0000000000000058
[  302.974397][T11752] RDX: 0000000000000000 RSI: 0000000000000400 RDI: 0000000000000002
[  302.976727][T11752] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  302.979032][T11752] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  302.981419][T11752] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  302.983680][T11752]  </TASK>
[  302.984890][T11752] Mem-Info:
[  302.985846][T11752] active_anon:9318 inactive_anon:0 isolated_anon:0
[  302.985846][T11752]  active_file:9273 inactive_file:34862 isolated_file:0
[  302.985846][T11752]  unevictable:1768 dirty:242 writeback:0
[  302.985846][T11752]  slab_reclaimable:6085 slab_unreclaimable:64764
[  302.985846][T11752]  mapped:24707 shmem:5529 pagetables:935
[  302.985846][T11752]  sec_pagetables:303 bounce:0
[  302.985846][T11752]  kernel_misc_reclaimable:0
[  302.985846][T11752]  free:46270 free_pcp:4959 free_cma:0
[  302.999487][T11752] Node 0 active_anon:1744kB inactive_anon:0kB active_file:0kB inactive_file:14620kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5552kB dirty:8kB writeback:0kB shmem:3712kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9360kB pagetables:700kB sec_pagetables:1136kB all_unreclaimable? yes
[  303.008773][T11752] Node 1 active_anon:35528kB inactive_anon:0kB active_file:37092kB inactive_file:124828kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:93276kB dirty:960kB writeback:0kB shmem:18404kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4120kB pagetables:3040kB sec_pagetables:76kB all_unreclaimable? no
[  303.017960][T11752] Node 0 DMA free:2804kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:1024kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:556kB local_pcp:132kB free_cma:0kB
[  303.025975][T11752] lowmem_reserve[]: 0 296 0 0 0
[  303.027499][T11752] Node 0 DMA32 free:38928kB boost:20480kB min:34152kB low:37568kB high:40984kB reserved_highatomic:4096KB active_anon:1744kB inactive_anon:0kB active_file:0kB inactive_file:13596kB unevictable:3536kB writepending:8kB present:1032196kB managed:303684kB mlocked:0kB bounce:0kB free_pcp:988kB local_pcp:148kB free_cma:0kB
[  303.036194][T11752] lowmem_reserve[]: 0 0 0 0 0
[  303.037658][T11752] Node 1 DMA32 free:143348kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:6144KB active_anon:35528kB inactive_anon:0kB active_file:37092kB inactive_file:124828kB unevictable:3536kB writepending:960kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:18220kB local_pcp:900kB free_cma:0kB
[  303.046786][T11752] lowmem_reserve[]: 0 0 0 0 0
[  303.048280][T11752] Node 0 DMA: 113*4kB (U) 68*8kB (U) 29*16kB (U) 36*32kB (U) 3*64kB (U) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2804kB
[  303.052161][T11752] Node 0 DMA32: 941*4kB (UEH) 371*8kB (UMEH) 70*16kB (UMEH) 159*32kB (UMEH) 127*64kB (UMEH) 37*128kB (UME) 17*256kB (UME) 7*512kB (UM) 3*1024kB (UM) 1*2048kB (M) 0*4096kB = 38860kB
[  303.057725][T11752] Node 1 DMA32: 79*4kB (UEH) 62*8kB (UEH) 647*16kB (MEH) 439*32kB (UMEH) 401*64kB (UMEH) 94*128kB (UMEH) 42*256kB (UMEH) 26*512kB (UMEH) 25*1024kB (UMH) 5*2048kB (UM) 5*4096kB (UM) = 143292kB
[  303.063038][T11752] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  303.065815][T11752] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  303.068527][T11752] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  303.071173][T11752] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  303.073774][T11752] 49665 total pagecache pages
[  303.075214][T11752] 0 pages in swap cache
[  303.076414][T11752] Free swap  = 123916kB
[  303.077577][T11752] Total swap = 124996kB
[  303.078834][T11752] 524155 pages RAM
[  303.079906][T11752] 0 pages HighMem/MovableOnly
[  303.081607][T11752] 207331 pages reserved
[  303.082873][T11752] 0 pages cma reserved
[  303.532931][T11761] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode
[  303.540859][T11761] macvtap1: entered promiscuous mode
[  303.543208][T11761] macvtap1: entered allmulticast mode
[  303.544973][T11761] mac80211_hwsim hwsim10 wlan0: entered allmulticast mode
[  303.551603][T11761] mac80211_hwsim hwsim10 wlan0: left allmulticast mode
[  303.554205][T11761] mac80211_hwsim hwsim10 wlan0: left promiscuous mode
[  304.073707][T11775] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1431'.
[  304.274009][T11791] FAULT_INJECTION: forcing a failure.
[  304.274009][T11791] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  304.294855][T11791] CPU: 3 UID: 0 PID: 11791 Comm: syz.6.1434 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  304.298412][T11791] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  304.301603][T11791] Call Trace:
[  304.302609][T11791]  <TASK>
[  304.303503][T11791]  dump_stack_lvl+0x16c/0x1f0
[  304.304934][T11791]  should_fail_ex+0x497/0x5b0
[  304.306381][T11791]  _copy_from_user+0x2e/0xd0
[  304.308075][T11791]  get_old_timespec32+0x153/0x1f0
[  304.310306][T11791]  ? __pfx_get_old_timespec32+0x10/0x10
[  304.312547][T11791]  __ia32_sys_clock_nanosleep_time32+0x1ce/0x4d0
[  304.315124][T11791]  ? __pfx___ia32_sys_clock_nanosleep_time32+0x10/0x10
[  304.317916][T11791]  __do_fast_syscall_32+0x73/0x120
[  304.320013][T11791]  do_fast_syscall_32+0x32/0x80
[  304.321997][T11791]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  304.324563][T11791] RIP: 0023:0xf70ce579
[  304.326191][T11791] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  304.333812][T11791] RSP: 002b:00000000f509f55c EFLAGS: 00000296 ORIG_RAX: 000000000000010b
[  304.337155][T11791] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000000
[  304.340314][T11791] RDX: 0000000020000200 RSI: 0000000020000240 RDI: 0000000000000000
[  304.343469][T11791] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  304.346601][T11791] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  304.349758][T11791] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  304.352922][T11791]  </TASK>
[  304.394892][T11793] wg1 speed is unknown, defaulting to 1000
[  304.436891][T11796] ptrace attach of "/syz-executor exec"[7915] was attempted by "/syz-executor exec"[11796]
[  305.129164][T11817] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1441'.
[  306.094700][T11848] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1447'.
[  306.903835][T11851] ubi0: detaching mtd0
[  306.932051][T11851] ubi0: mtd0 is detached
[  306.972776][T11851] netlink: 52 bytes leftover after parsing attributes in process `syz.6.1448'.
[  306.976974][T11851] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1448'.
[  307.346378][   T39] kauditd_printk_skb: 1 callbacks suppressed
[  307.346389][   T39] audit: type=1326 audit(1737467790.727:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11860 comm="syz.4.1451" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x0
[  307.739266][   T39] audit: type=1326 audit(1737467791.117:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11875 comm="syz.4.1455" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x0
[  307.875961][T11880] netlink: 'syz.6.1456': attribute type 8 has an invalid length.
[  308.178342][T11884] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  308.278277][T11890] syzkaller0: entered allmulticast mode
[  308.282131][ T5942] Bluetooth: hci0: unexpected event for opcode 0x1003
[  308.381584][T11893] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1459'.
[  308.744544][T11899] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1461'.
[  308.747775][T11899] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1461'.
[  309.403419][T11920] FAULT_INJECTION: forcing a failure.
[  309.403419][T11920] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.408832][T11920] CPU: 3 UID: 0 PID: 11920 Comm: syz.2.1467 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  309.412497][T11920] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  309.416689][T11920] Call Trace:
[  309.418090][T11920]  <TASK>
[  309.419287][T11920]  dump_stack_lvl+0x16c/0x1f0
[  309.420978][T11920]  should_fail_ex+0x497/0x5b0
[  309.422605][T11920]  _copy_to_user+0x32/0xd0
[  309.424391][T11920]  simple_read_from_buffer+0xd0/0x160
[  309.426719][T11920]  proc_fail_nth_read+0x198/0x270
[  309.428758][T11920]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  309.430790][T11920]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  309.432717][T11920]  vfs_read+0x1df/0xbe0
[  309.434403][T11920]  ? __fget_files+0x1fc/0x3a0
[  309.436260][T11920]  ? __pfx___mutex_lock+0x10/0x10
[  309.438222][T11920]  ? __pfx_vfs_read+0x10/0x10
[  309.439975][T11920]  ? __fget_files+0x206/0x3a0
[  309.441492][T11920]  ksys_read+0x12b/0x250
[  309.442934][T11920]  ? __pfx_ksys_read+0x10/0x10
[  309.444899][T11920]  __do_fast_syscall_32+0x73/0x120
[  309.446964][T11920]  do_fast_syscall_32+0x32/0x80
[  309.448905][T11920]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  309.451163][T11920] RIP: 0023:0xf7fa7579
[  309.452567][T11920] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  309.459921][T11920] RSP: 002b:00000000f50f6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  309.462535][T11920] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50f6620
[  309.465487][T11920] RDX: 000000000000000f RSI: 00000000f7433ff4 RDI: 0000000000000000
[  309.468556][T11920] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  309.471204][T11920] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  309.474001][T11920] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  309.477066][T11920]  </TASK>
[  309.616696][T11928] syzkaller0: entered promiscuous mode
[  309.624229][T11928] syzkaller0: entered allmulticast mode
[  309.642591][T11931] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1471'.
[  309.657757][T11931] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1471'.
[  309.967432][T11951] netlink: 'syz.6.1480': attribute type 105 has an invalid length.
[  309.969698][T11951] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1480'.
[  310.083563][T11958] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1481'.
[  310.384739][   T63] libceph: connect (1)[c::]:6789 error -101
[  310.387110][   T63] libceph: mon0 (1)[c::]:6789 connect error
[  310.645602][   T63] libceph: connect (1)[c::]:6789 error -101
[  310.647433][   T63] libceph: mon0 (1)[c::]:6789 connect error
[  310.789984][T11969] ceph: No mds server is up or the cluster is laggy
[  311.122356][T11984] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1486'.
[  311.326202][T11987] /dev/sr0: Can't open blockdev
[  311.892995][T12008] overlayfs: conflicting options: userxattr,redirect_dir=on
[  312.169701][T12006] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  313.335400][   T11] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  313.942825][T12090] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1512'.
[  313.946391][T12090] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1512'.
[  313.976049][   T11] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  313.979020][   T11] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  314.211554][T12113] siw: device registration error -23
[  314.216920][T12115] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  314.219947][T12115] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.222767][T12115] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  314.226886][T12115] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.229787][T12115] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  314.233321][T12115] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.237304][T12115] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  314.240514][T12115] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.243902][T12115] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  314.247257][T12115] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.255973][T12118] kvm: apic: phys broadcast and lowest prio
[  314.259297][T12118] sg_write: data in/out 11/14 bytes for SCSI command 0x0-- guessing data in;
[  314.259297][T12118]    program syz.2.1517 not setting count and/or reply_len properly
[  314.726611][T12136] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1528'.
[  315.112935][T12153] tmpfs: Bad value for 'mpol'
[  315.905143][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  315.907996][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  315.988688][   T39] audit: type=1326 audit(1737467799.367:2215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12164 comm="syz.4.1537" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  316.004231][   T39] audit: type=1326 audit(1737467799.367:2216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12164 comm="syz.4.1537" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  316.010793][   T39] audit: type=1326 audit(1737467799.367:2217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12164 comm="syz.4.1537" exe="/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  316.017359][   T39] audit: type=1326 audit(1737467799.377:2218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12166 comm="syz.4.1537" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  316.023831][   T39] audit: type=1326 audit(1737467799.377:2219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12164 comm="syz.4.1537" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  316.024983][T12163] can0: slcan on ttyS3.
[  316.049254][   T39] audit: type=1326 audit(1737467799.377:2220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12164 comm="syz.4.1537" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  316.060176][   T39] audit: type=1326 audit(1737467799.427:2221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12164 comm="syz.4.1537" exe="/syz-executor" sig=0 arch=40000003 syscall=270 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  316.084384][   T39] audit: type=1326 audit(1737467799.427:2222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12164 comm="syz.4.1537" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  316.092565][   T39] audit: type=1326 audit(1737467799.427:2223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12164 comm="syz.4.1537" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  316.125395][   T39] audit: type=1326 audit(1737467799.427:2224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12166 comm="syz.4.1537" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000
[  316.329243][T12179] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1536'.
[  316.535933][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  316.537950][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  316.608471][T12160] can0 (unregistered): slcan off ttyS3.
[  316.762040][T12203] can0: slcan on ttyS3.
[  316.764254][    T9] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  316.856902][T12203] can0 (unregistered): slcan off ttyS3.
[  316.916038][    T9] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  316.919306][    T9] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  316.922130][    T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  316.925865][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.932456][T12191] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  316.943356][    T9] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  317.163040][   T63] usb 6-1: USB disconnect, device number 16
[  318.296503][T12262] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1562'.
[  318.835954][T12272] netlink: 'syz.6.1564': attribute type 11 has an invalid length.
[  319.040507][T12281] ax25_connect(): syz.6.1565 uses autobind, please contact jreuter@yaina.de
[  319.094585][  T104] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  319.502721][T12288] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1566'.
[  319.734424][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  319.738108][ T1134] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  321.014937][ T1134] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  321.117493][T12322] wg1 speed is unknown, defaulting to 1000
[  321.383891][T12334] netlink: zone id is out of range
[  321.389428][T12334] netlink: zone id is out of range
[  321.406423][T12334] netlink: zone id is out of range
[  321.408590][T12334] netlink: zone id is out of range
[  321.410537][T12334] netlink: zone id is out of range
[  321.412510][T12334] netlink: zone id is out of range
[  321.447440][T12334] virtio-fs: tag <(null)> not found
[  321.460950][T12338] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1580'.
[  321.511373][   T39] kauditd_printk_skb: 31 callbacks suppressed
[  321.511437][   T39] audit: type=1326 audit(1737467804.887:2256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.6.1579" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  321.524817][T12333] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1578'.
[  321.530281][   T39] audit: type=1326 audit(1737467804.897:2257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.6.1579" exe="/syz-executor" sig=0 arch=40000003 syscall=310 compat=1 ip=0xf70ce579 code=0x7fc00000
[  321.545630][   T39] audit: type=1326 audit(1737467804.897:2258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.6.1579" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  321.554793][   T39] audit: type=1326 audit(1737467804.897:2259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.6.1579" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  321.555973][T12342] netlink: 'syz.1.1580': attribute type 4 has an invalid length.
[  321.563596][   T39] audit: type=1326 audit(1737467804.897:2260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.6.1579" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  321.566772][T12342] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1580'.
[  321.575274][   T39] audit: type=1326 audit(1737467804.897:2261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.6.1579" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  321.587263][   T39] audit: type=1326 audit(1737467804.897:2262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.6.1579" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  321.596194][   T39] audit: type=1326 audit(1737467804.897:2263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.6.1579" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  321.605813][   T39] audit: type=1326 audit(1737467804.897:2264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.6.1579" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  321.614532][   T39] audit: type=1326 audit(1737467804.897:2265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12335 comm="syz.6.1579" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  321.956441][T12342] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1580'.
[  322.144660][T12342] wg1 speed is unknown, defaulting to 1000
[  324.374248][ T5942] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  324.374259][   T66] Bluetooth: hci4: command 0x1003 tx timeout
[  324.854629][   T45] net_ratelimit: 9 callbacks suppressed
[  324.854646][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  324.859988][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  324.982654][T12398] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1593'.
[  325.374874][T12408] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1598'.
[  325.495508][   T11] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  325.652572][T12416] wg1 speed is unknown, defaulting to 1000
[  325.699265][T12416] lo speed is unknown, defaulting to 1000
[  325.701668][T12416] lo speed is unknown, defaulting to 1000
[  325.713982][T12416] lo speed is unknown, defaulting to 1000
[  325.739755][T12416] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  325.757988][T12420] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  325.765763][T12416] lo speed is unknown, defaulting to 1000
[  325.768884][T12416] lo speed is unknown, defaulting to 1000
[  325.783507][T12416] lo speed is unknown, defaulting to 1000
[  325.790306][T12416] lo speed is unknown, defaulting to 1000
[  325.793566][T12416] lo speed is unknown, defaulting to 1000
[  325.801025][T12416] lo speed is unknown, defaulting to 1000
[  325.812304][T12416] lo speed is unknown, defaulting to 1000
[  326.509204][ T1015] libceph: connect (1)[c::]:6789 error -101
[  326.511076][ T1015] libceph: mon0 (1)[c::]:6789 connect error
[  326.546477][T12455] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1612'.
[  326.683759][T12476] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1620'.
[  326.687360][T12476] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1620'.
[  326.695393][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  326.774729][ T1015] libceph: connect (1)[c::]:6789 error -101
[  326.776594][ T1015] libceph: mon0 (1)[c::]:6789 connect error
[  326.856213][T12489] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1625'.
[  326.906390][T12480] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  327.284497][ T1015] libceph: connect (1)[c::]:6789 error -101
[  327.286396][ T1015] libceph: mon0 (1)[c::]:6789 connect error
[  327.353308][T12496] nbd: must specify at least one socket
[  327.385718][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  327.385729][   T39] audit: type=1326 audit(1737467810.767:2271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12497 comm="syz.4.1627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  327.393684][   T39] audit: type=1326 audit(1737467810.767:2272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12497 comm="syz.4.1627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  327.400109][   T39] audit: type=1326 audit(1737467810.777:2273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12497 comm="syz.4.1627" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  327.406951][   T39] audit: type=1326 audit(1737467810.777:2274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12497 comm="syz.4.1627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  327.415771][   T39] audit: type=1326 audit(1737467810.777:2275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12497 comm="syz.4.1627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  327.421964][   T39] audit: type=1326 audit(1737467810.777:2276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12497 comm="syz.4.1627" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  327.428132][T12447] ceph: No mds server is up or the cluster is laggy
[  327.430948][   T39] audit: type=1326 audit(1737467810.777:2277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12497 comm="syz.4.1627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  327.437151][   T39] audit: type=1326 audit(1737467810.777:2278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12497 comm="syz.4.1627" exe="/syz-executor" sig=0 arch=40000003 syscall=156 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  327.440504][T12500] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1628'.
[  327.443280][   T39] audit: type=1326 audit(1737467810.777:2279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12497 comm="syz.4.1627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  327.465734][   T39] audit: type=1326 audit(1737467810.777:2280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12497 comm="syz.4.1627" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  327.495633][ T5942] Bluetooth: hci2: command 0x0405 tx timeout
[  327.522213][T12504] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1629'.
[  327.581975][T12505] wg1 speed is unknown, defaulting to 1000
[  328.455508][T12519] sctp: [Deprecated]: syz.2.1633 (pid 12519) Use of struct sctp_assoc_value in delayed_ack socket option.
[  328.455508][T12519] Use struct sctp_sack_info instead
[  328.668962][T12529] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  328.864285][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  329.778284][   T12] Bluetooth: (null): Invalid header checksum
[  329.780559][   T12] Bluetooth: (null): Invalid header checksum
[  329.822430][T12584] vti0: entered promiscuous mode
[  329.840023][T12586] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1656'.
[  329.846837][T12586] netlink: 164 bytes leftover after parsing attributes in process `syz.6.1656'.
[  329.966018][  T104] Bluetooth: (null): Invalid header checksum
[  329.984602][  T104] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  330.007322][   T12] Bluetooth: (null): Invalid header checksum
[  330.023119][T12592] 9pnet_fd: Insufficient options for proto=fd
[  330.031223][T12592] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  330.119371][   T45] Bluetooth: (null): Invalid header checksum
[  330.205575][T12600] fuse: Bad value for 'fd'
[  330.235095][   T12] Bluetooth: (null): Invalid header checksum
[  330.335774][T12600] nbd1: detected capacity change from 0 to 22
[  330.351425][ T1140] Bluetooth: (null): Invalid header checksum
[  330.352144][T12613] block nbd1: shutting down sockets
[  330.363762][    C0] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  330.366594][    C0] Buffer I/O error on dev nbd1, logical block 0, async page read
[  330.369340][ T6094] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  330.372283][ T6094] Buffer I/O error on dev nbd1, logical block 0, async page read
[  330.376488][ T8740] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  330.379449][ T8740] Buffer I/O error on dev nbd1, logical block 0, async page read
[  330.383218][ T8740] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  330.386314][ T8740] Buffer I/O error on dev nbd1, logical block 0, async page read
[  330.388776][ T8740] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  330.391471][ T8740] Buffer I/O error on dev nbd1, logical block 0, async page read
[  330.393861][ T8740] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  330.397248][ T8740] Buffer I/O error on dev nbd1, logical block 0, async page read
[  330.399927][ T8740] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  330.402659][ T8740] Buffer I/O error on dev nbd1, logical block 0, async page read
[  330.406630][ T8740] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  330.409268][ T8740] Buffer I/O error on dev nbd1, logical block 0, async page read
[  330.411677][ T8740] ldm_validate_partition_table(): Disk read failed.
[  330.413702][ T8740] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  330.416554][ T8740] Buffer I/O error on dev nbd1, logical block 0, async page read
[  330.418973][ T8740] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  330.421826][ T8740] Buffer I/O error on dev nbd1, logical block 0, async page read
[  330.424301][ T8740] Dev nbd1: unable to read RDB block 0
[  330.426078][ T8740]  nbd1: unable to read partition table
[  330.427786][ T8740] nbd1: partition table beyond EOD, truncated
[  330.431787][T12600] ldm_validate_partition_table(): Disk read failed.
[  330.433912][T12600] Dev nbd1: unable to read RDB block 0
[  330.435821][T12600]  nbd1: unable to read partition table
[  330.437855][T12600] nbd1: partition table beyond EOD, truncated
[  330.440282][ T8740] ldm_validate_partition_table(): Disk read failed.
[  330.442318][ T8740] Dev nbd1: unable to read RDB block 0
[  330.444137][ T8740]  nbd1: unable to read partition table
[  330.446342][ T8740] nbd1: partition table beyond EOD, truncated
[  330.455853][   T78] Bluetooth: (null): Invalid header checksum
[  330.504198][ T5944] usb 11-1: new high-speed USB device number 5 using dummy_hcd
[  330.614527][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  330.617005][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  330.663412][ T5944] usb 11-1: unable to get BOS descriptor or descriptor too short
[  330.665845][ T5944] usb 11-1: too many configurations: 255, using maximum allowed: 8
[  330.670388][ T5944] usb 11-1: unable to read config index 0 descriptor/start: -71
[  330.672573][ T5944] usb 11-1: can't read configurations, error -71
[  330.693739][T12622] /dev/sg0: Can't lookup blockdev
[  330.698228][T12622] __nla_validate_parse: 1 callbacks suppressed
[  330.698240][T12622] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1666'.
[  330.820341][T12633] netlink: 'syz.2.1669': attribute type 1 has an invalid length.
[  330.831783][T12633] netlink: 'syz.2.1669': attribute type 3 has an invalid length.
[  330.836541][T12633] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1669'.
[  330.861004][T12633] netlink: 'syz.2.1669': attribute type 4 has an invalid length.
[  331.868876][T12664] tc_dump_action: action bad kind
[  331.875761][T12664] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1677'.
[  331.907134][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  331.926821][T12669] netlink: 'syz.6.1679': attribute type 10 has an invalid length.
[  331.929590][T12669] bond0: (slave wlan1): Opening slave failed
[  331.937488][T12669] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  332.071691][T12673] binder_alloc: 12672: binder_alloc_buf, no vma
[  332.109446][T12678] netlink: 'syz.6.1683': attribute type 4 has an invalid length.
[  332.114418][T12678] netlink: 'syz.6.1683': attribute type 4 has an invalid length.
[  332.832245][T12689] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1685'.
[  332.939579][T12682] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  333.226303][T12692] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1686'.
[  334.043700][T12699] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  334.190237][T12734] wg1 speed is unknown, defaulting to 1000
[  334.218923][T12734] netlink: 'syz.4.1696': attribute type 8 has an invalid length.
[  334.221432][T12734] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1696'.
[  334.604164][ T5944] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  334.834203][ T5944] usb 9-1: Using ep0 maxpacket: 8
[  334.838180][ T5944] usb 9-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 8
[  334.841787][ T5944] usb 9-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[  334.847109][ T5944] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  334.850466][ T5944] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  334.853431][ T5944] usb 9-1: Product: Ќ
[  334.855124][ T5944] usb 9-1: Manufacturer: á°Š
[  334.856998][ T5944] usb 9-1: SerialNumber: à š
[  335.186892][ T1140] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  335.190092][ T1140] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  335.195764][T12756] openvswitch: netlink: Flow actions attr not present in new flow.
[  335.204257][ T5944] cdc_ncm 9-1:1.0: bind() failure
[  335.208526][ T5944] cdc_ncm 9-1:1.1: CDC Union missing and no IAD found
[  335.210529][ T5944] cdc_ncm 9-1:1.1: bind() failure
[  335.224622][ T5944] usb 9-1: USB disconnect, device number 7
[  335.908920][T12788] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1704'.
[  335.915647][T12780] xt_hashlimit: invalid interval
[  336.384660][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  336.387724][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  336.870442][T12805] FAULT_INJECTION: forcing a failure.
[  336.870442][T12805] name failslab, interval 1, probability 0, space 0, times 0
[  336.874889][T12805] CPU: 0 UID: 0 PID: 12805 Comm: syz.2.1720 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  336.878126][T12805] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.881269][T12805] Call Trace:
[  336.882266][T12805]  <TASK>
[  336.883148][T12805]  dump_stack_lvl+0x16c/0x1f0
[  336.884599][T12805]  should_fail_ex+0x497/0x5b0
[  336.886023][T12805]  ? fs_reclaim_acquire+0xae/0x150
[  336.887508][T12805]  should_failslab+0xc2/0x120
[  336.888942][T12805]  __kmalloc_cache_noprof+0x68/0x420
[  336.890525][T12805]  ? lock_acquire+0x2f/0xb0
[  336.891854][T12805]  binder_get_thread+0x223/0x8c0
[  336.893370][T12805]  binder_ioctl+0x1f4/0x7080
[  336.894831][T12805]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  336.896663][T12805]  ? tomoyo_path_number_perm+0x190/0x5b0
[  336.898507][T12805]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  336.900324][T12805]  ? __pfx_binder_ioctl+0x10/0x10
[  336.901832][T12805]  ? do_vfs_ioctl+0x513/0x1950
[  336.903282][T12805]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  336.904873][T12805]  ? __pfx_lock_release+0x10/0x10
[  336.906372][T12805]  ? trace_lock_acquire+0x14e/0x1f0
[  336.907983][T12805]  ? __fget_files+0x206/0x3a0
[  336.909446][T12805]  ? __pfx_binder_ioctl+0x10/0x10
[  336.910968][T12805]  compat_ptr_ioctl+0x6b/0xa0
[  336.912390][T12805]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  336.914011][T12805]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  336.915895][T12805]  __do_fast_syscall_32+0x73/0x120
[  336.917700][T12805]  do_fast_syscall_32+0x32/0x80
[  336.919384][T12805]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  336.921616][T12805] RIP: 0023:0xf7fa7579
[  336.923037][T12805] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  336.928777][T12805] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  336.931202][T12805] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0046209
[  336.933491][T12805] RDX: 0000000020001340 RSI: 0000000000000000 RDI: 0000000000000000
[  336.935946][T12805] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  336.938269][T12805] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  336.940562][T12805] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  336.942857][T12805]  </TASK>
[  336.945752][T12805] binder: 12804:12805 ioctl c0046209 20001340 returned -12
[  337.184203][    T9] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  337.189140][T12811] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1722'.
[  337.354296][    T9] usb 9-1: Using ep0 maxpacket: 8
[  337.364948][    T9] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  337.367924][    T9] usb 9-1: config 0 has no interfaces?
[  337.370900][    T9] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  337.373967][    T9] usb 9-1: config 0 has no interfaces?
[  337.377665][    T9] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  337.380561][    T9] usb 9-1: config 0 has no interfaces?
[  337.395636][    T9] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  337.398305][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  337.400576][    T9] usb 9-1: Product: syz
[  337.401785][    T9] usb 9-1: Manufacturer: syz
[  337.403134][    T9] usb 9-1: SerialNumber: syz
[  337.406345][    T9] usb 9-1: config 0 descriptor??
[  337.497722][T12815] can0: slcan on ttyS3.
[  337.574295][T12815] can0 (unregistered): slcan off ttyS3.
[  337.655236][   T78] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  337.869490][ T1015] usb 9-1: USB disconnect, device number 8
[  338.073686][T12834] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  338.077530][T12834] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  338.139151][T12836] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1729'.
[  338.144742][T12836] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1729'.
[  338.986912][T12851] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  339.083185][T12856] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  339.116914][T12851] /dev/sr0: Can't open blockdev
[  339.210886][ T5942] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  339.266363][T12854] /dev/sr0: Can't open blockdev
[  339.485244][T12877] veth0: entered promiscuous mode
[  339.486819][T12877] macsec1: entered promiscuous mode
[  339.488412][T12877] macsec1: entered allmulticast mode
[  339.489898][T12877] veth0: entered allmulticast mode
[  340.024267][T12878] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  340.031041][T12885] syz.2.1742: attempt to access beyond end of device
[  340.031041][T12885] nbd2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  340.034227][T12878] batman_adv: batadv0: Adding interface: gretap1
[  340.036847][T12885] SQUASHFS error: Failed to read block 0x0: -5
[  340.036879][T12878] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  340.038712][T12885] unable to read squashfs_super_block
[  340.046017][T12878] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  340.055777][T12885] netlink: 120 bytes leftover after parsing attributes in process `syz.2.1742'.
[  340.058462][T12885] netlink: 120 bytes leftover after parsing attributes in process `syz.2.1742'.
[  340.062051][T12885] syz.2.1742: attempt to access beyond end of device
[  340.062051][T12885] nbd2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  340.067092][T12885] SQUASHFS error: Failed to read block 0x0: -5
[  340.069355][T12885] unable to read squashfs_super_block
[  340.214732][ T1134] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  340.552658][T12915] tmpfs: Unknown parameter 'usrquota'
[  340.574299][T12927] netlink: 'syz.2.1755': attribute type 4 has an invalid length.
[  340.854584][   T11] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  341.228778][T12941] wg1 speed is unknown, defaulting to 1000
[  341.267583][T12946] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  341.319715][T12949] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1761'.
[  341.322597][T12949] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1761'.
[  341.325400][T12949] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1761'.
[  341.414983][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  341.494709][  T104] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  342.184956][T12970] tty tty2: ldisc open failed (-12), clearing slot 1
[  342.286744][   T63] libceph: connect (1)[c::]:6789 error -101
[  342.289387][   T63] libceph: mon0 (1)[c::]:6789 connect error
[  342.294252][   T63] libceph: connect (1)[c::]:6789 error -101
[  342.297494][   T63] libceph: mon0 (1)[c::]:6789 connect error
[  342.554338][   T63] libceph: connect (1)[c::]:6789 error -101
[  342.556189][   T63] libceph: mon0 (1)[c::]:6789 connect error
[  342.909616][T12977] ceph: No mds server is up or the cluster is laggy
[  343.048602][T13020] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1783'.
[  343.124235][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  343.323913][T13040] loop6: detected capacity change from 0 to 524287999
[  343.328211][    C2] blk_print_req_error: 40 callbacks suppressed
[  343.328225][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  343.334447][    C2] buffer_io_error: 40 callbacks suppressed
[  343.334459][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  343.340014][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  343.342753][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  343.345495][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  343.348443][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  343.351172][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  343.353934][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  343.356794][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  343.360345][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  343.363642][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  343.366677][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  343.369269][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  343.372191][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  343.375331][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  343.378043][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  343.380437][T13040] ldm_validate_partition_table(): Disk read failed.
[  343.414548][   T78] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  343.429337][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  343.433133][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  343.437414][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  343.441054][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  343.444861][T13040] Dev loop6: unable to read RDB block 0
[  343.447501][T13040]  loop6: unable to read partition table
[  343.451956][T13040] loop_reread_partitions: partition scan of loop6 (Í¢†ÃÙÇ´ÝCP'OÈQž=}m”=@4r„(Uk+Z—Ö 4—Ö>˜ìF¼1ã“›ÍÀù‚àÔ™Û1Œ°) failed (rc=-5)
[  343.465652][ T5356] ldm_validate_partition_table(): Disk read failed.
[  343.469430][ T5356] Dev loop6: unable to read RDB block 0
[  343.473415][ T5356]  loop6: unable to read partition table
[  343.576679][T13049] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1792'.
[  343.714285][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  343.869074][T13017] dccp_close: ABORT with 40 bytes unread
[  344.045754][T13068] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1797'.
[  344.148321][T13079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1801'.
[  344.194493][T13079] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1801'.
[  344.199042][T13079] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1801'.
[  344.411603][ T5942] Bluetooth: hci1: SCO packet for unknown connection handle 0
[  344.413005][   T39] kauditd_printk_skb: 18 callbacks suppressed
[  344.413015][   T39] audit: type=1326 audit(1737467827.787:2299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13090 comm="syz.2.1805" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa7579 code=0x0
[  344.631861][T13097] ata1.00: invalid cdb length 6
[  345.335159][ T1249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  346.374210][    T9] usb 11-1: new high-speed USB device number 7 using dummy_hcd
[  346.586365][    T9] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  346.589967][    T9] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  346.592884][    T9] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  346.595872][    T9] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  346.599576][T13132] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  346.604677][    T9] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  346.615804][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  346.619983][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  346.623150][T13138] cgroup: Name too long
[  346.671123][   T39] audit: type=1326 audit(1737467830.047:2300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13137 comm="syz.2.1823" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa7579 code=0x0
[  347.053963][ T5944] usb 11-1: USB disconnect, device number 7
[  347.256099][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  347.372120][T13148] kvm: kvm [13147]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x4ce00000012
[  347.375390][T13148] kvm: kvm [13147]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x4ce00000812
[  347.513248][T13153] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1826'.
[  347.865221][T13182] ip6tnl0: entered promiscuous mode
[  347.867167][T13182] vlan2: entered promiscuous mode
[  347.871644][T13182] ip6tnl0: left promiscuous mode
[  348.294513][T13214] wg1 speed is unknown, defaulting to 1000
[  348.860724][T13226] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1849'.
[  348.872774][T13226] wireguard0: entered promiscuous mode
[  349.175425][ T1134] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  349.267904][T13238] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[  349.272226][T13238] overlayfs: overlapping lowerdir path
[  349.338414][ T5942] Bluetooth: hci2: unexpected event for opcode 0x0060
[  349.572866][   T66] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  349.581809][   T66] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  349.587710][   T66] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  349.594734][   T66] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  349.603055][   T66] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  349.606441][   T66] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  349.646483][T13254] wg1 speed is unknown, defaulting to 1000
[  350.162441][T13254] chnl_net:caif_netlink_parms(): no params data found
[  350.454406][ T1249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  350.709484][T13254] bridge0: port 1(bridge_slave_0) entered blocking state
[  350.711889][T13254] bridge0: port 1(bridge_slave_0) entered disabled state
[  350.714188][T13254] bridge_slave_0: entered allmulticast mode
[  350.716470][T13254] bridge_slave_0: entered promiscuous mode
[  350.719317][T13254] bridge0: port 2(bridge_slave_1) entered blocking state
[  350.721555][T13254] bridge0: port 2(bridge_slave_1) entered disabled state
[  350.723685][T13254] bridge_slave_1: entered allmulticast mode
[  350.726673][T13254] bridge_slave_1: entered promiscuous mode
[  350.758190][T13254] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  350.762340][T13254] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  350.793452][T13254] team0: Port device team_slave_0 added
[  350.797087][T13254] team0: Port device team_slave_1 added
[  350.818933][T13254] batman_adv: batadv0: Adding interface: batadv_slave_0
[  350.821020][T13254] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  350.828791][T13254] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  350.832713][T13254] batman_adv: batadv0: Adding interface: batadv_slave_1
[  350.834909][T13254] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  350.842160][T13254] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  350.874391][T13254] hsr_slave_0: entered promiscuous mode
[  350.877523][T13254] hsr_slave_1: entered promiscuous mode
[  350.883471][T13254] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  350.893308][T13254] Cannot create hsr debugfs directory
[  350.983920][T13254] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  350.995505][T13254] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  350.999539][T13254] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  351.005132][T13254] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  351.015372][T13254] bridge0: port 2(bridge_slave_1) entered blocking state
[  351.017439][T13254] bridge0: port 2(bridge_slave_1) entered forwarding state
[  351.019485][T13254] bridge0: port 1(bridge_slave_0) entered blocking state
[  351.021434][T13254] bridge0: port 1(bridge_slave_0) entered forwarding state
[  351.049043][T13254] 8021q: adding VLAN 0 to HW filter on device bond0
[  351.059737][T13254] 8021q: adding VLAN 0 to HW filter on device team0
[  351.072114][   T78] bridge0: port 1(bridge_slave_0) entered disabled state
[  351.080407][   T78] bridge0: port 2(bridge_slave_1) entered disabled state
[  351.121352][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[  351.123920][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[  351.129573][   T78] bridge0: port 2(bridge_slave_1) entered blocking state
[  351.131715][   T78] bridge0: port 2(bridge_slave_1) entered forwarding state
[  351.229190][T13254] 8021q: adding VLAN 0 to HW filter on device batadv0
[  351.312341][   T39] audit: type=1800 audit(1737467834.687:2301): pid=13286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1867" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  351.434131][ T5942] Bluetooth: hci2: command 0x0405 tx timeout
[  351.436181][T13254] veth0_vlan: entered promiscuous mode
[  351.445474][T13254] veth1_vlan: entered promiscuous mode
[  351.461794][T13254] veth0_macvtap: entered promiscuous mode
[  351.472355][T13254] veth1_macvtap: entered promiscuous mode
[  351.486087][T13254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  351.489253][T13254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.492145][T13254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  351.495431][T13254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.498365][T13254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  351.501467][T13254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.504578][T13254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  351.507979][T13254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.510905][T13254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  351.516245][T13254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.521196][T13254] batman_adv: batadv0: Interface activated: batadv_slave_0
[  351.528270][T13254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.532425][T13254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.536578][T13254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.540830][T13254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.545035][T13254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.548244][T13254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.551104][T13254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.554214][T13254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.557696][T13254] batman_adv: batadv0: Interface activated: batadv_slave_1
[  351.562207][T13254] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  351.565701][T13254] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  351.568634][T13254] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  351.571755][T13254] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  351.632293][   T78] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  351.641087][   T78] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  351.651927][ T1134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  351.654573][ T1134] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  351.658698][ T5942] Bluetooth: hci0: command tx timeout
[  351.697048][T13294] loop5: detected capacity change from 0 to 8
[  351.701122][    C2] blk_print_req_error: 154 callbacks suppressed
[  351.701133][    C2] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.705614][    C2] buffer_io_error: 152 callbacks suppressed
[  351.705621][    C2] Buffer I/O error on dev loop5, logical block 0, async page read
[  351.711811][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.714476][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  351.717181][    C2] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.720769][    C2] Buffer I/O error on dev loop5, logical block 0, async page read
[  351.724024][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.726703][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  351.729135][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.731963][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  351.736151][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.739061][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  351.745386][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  351.747650][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  351.748379][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.753610][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  351.757162][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.759818][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  351.762301][T13294] ldm_validate_partition_table(): Disk read failed.
[  351.764533][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.767178][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  351.769601][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.771462][T13300] wg1 speed is unknown, defaulting to 1000
[  351.772656][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  351.778866][T13294] Dev loop5: unable to read RDB block 0
[  351.781792][T13294]  loop5: unable to read partition table
[  351.792116][T13294] loop5: partition table beyond EOD, truncated
[  351.794925][T13294] loop_reread_partitions: partition scan of loop5 (3Ÿ¾‚³˜) failed (rc=-5)
[  351.801151][T13300] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1870'.
[  352.003562][T13306] overlayfs: failed to resolve './file1': -2
[  352.004042][T13313] serio: Serial port ptm0
[  352.092647][T13319] binder: BINDER_SET_CONTEXT_MGR already set
[  352.094795][T13319] binder: 13316:13319 ioctl 4018620d 20000100 returned -16
[  352.165606][T13321] fuse: Bad value for 'fd'
[  352.385671][  T104] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  352.393448][T13327] FAULT_INJECTION: forcing a failure.
[  352.393448][T13327] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  352.400117][T13327] CPU: 2 UID: 0 PID: 13327 Comm: syz.7.1878 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  352.403900][T13327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  352.407790][T13327] Call Trace:
[  352.408964][T13327]  <TASK>
[  352.410071][T13327]  dump_stack_lvl+0x16c/0x1f0
[  352.411912][T13327]  should_fail_ex+0x497/0x5b0
[  352.413656][T13327]  _copy_from_user+0x2e/0xd0
[  352.415353][T13327]  cmsghdr_from_user_compat_to_kern+0x4f0/0x7c0
[  352.417647][T13327]  ? __pfx_cmsghdr_from_user_compat_to_kern+0x10/0x10
[  352.420108][T13327]  ____sys_sendmsg+0x43d/0xb40
[  352.421876][T13327]  ? __pfx_____sys_sendmsg+0x10/0x10
[  352.423848][T13327]  ? get_compat_msghdr+0x11b/0x170
[  352.425725][T13327]  ___sys_sendmsg+0x135/0x1e0
[  352.427483][T13327]  ? __pfx____sys_sendmsg+0x10/0x10
[  352.429367][T13327]  ? __pfx_lock_release+0x10/0x10
[  352.431200][T13327]  ? trace_lock_acquire+0x14e/0x1f0
[  352.433089][T13327]  ? __fget_files+0x206/0x3a0
[  352.434835][T13327]  __sys_sendmsg+0x16e/0x220
[  352.436765][T13327]  ? __pfx___sys_sendmsg+0x10/0x10
[  352.438414][T13327]  __do_fast_syscall_32+0x73/0x120
[  352.439867][T13327]  do_fast_syscall_32+0x32/0x80
[  352.441337][T13327]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  352.443048][T13327] RIP: 0023:0xf712e579
[  352.444280][T13327] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  352.449698][T13327] RSP: 002b:00000000f512055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  352.452295][T13327] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200007c0
[  352.454668][T13327] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  352.457126][T13327] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  352.459393][T13327] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  352.461824][T13327] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  352.463940][T13327]  </TASK>
[  352.554914][T13332] overlayfs: failed to resolve './file1': -2
[  352.716489][T13346] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1886'.
[  352.722525][T13346] overlayfs: conflicting lowerdir path
[  352.728481][T13346] tmpfs: Unknown parameter '/'
[  353.458768][T13358] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1891'.
[  353.734186][ T5942] Bluetooth: hci0: command tx timeout
[  354.360910][T13394] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  354.363650][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  354.653565][T13413] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1904'.
[  355.575813][   T11] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  355.824223][ T5942] Bluetooth: hci0: command tx timeout
[  356.774518][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  356.847065][T13468] input: syz0 as /devices/virtual/input/input12
[  357.378961][T13474] 9pnet_virtio: no channels available for device syz
[  357.494906][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  357.498672][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  357.904209][ T5942] Bluetooth: hci0: command tx timeout
[  358.055939][T13480] qnx6: unable to read the first superblock
[  358.061906][T13480] netlink: 'syz.2.1922': attribute type 4 has an invalid length.
[  358.134986][   T11] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  359.123745][T13490] openvswitch: netlink: Geneve opt len 126 is not a multiple of 4.
[  359.428840][T13497] kvm: kvm [13496]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x40000004)
[  359.690533][T13502] wg1 speed is unknown, defaulting to 1000
[  359.742522][T13502] xt_connbytes: Forcing CT accounting to be enabled
[  359.746631][T13502] xt_CT: You must specify a L4 protocol and not use inversions on it
[  359.801390][T13512] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  359.805440][T13512] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  360.040957][T13492] [U] 
[  360.530209][T13535] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1938'.
[  360.551401][T13535] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1938'.
[  360.833477][T13548] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  360.837038][T13548] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  360.959201][T13555] block device autoloading is deprecated and will be removed.
[  360.973896][T13555] binder: 13554:13555 ioctl 400c620e 20000140 returned -22
[  361.346880][ T1140] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  361.694288][T13574] netlink: 'syz.1.1949': attribute type 4 has an invalid length.
[  361.698219][T13574] netlink: 'syz.1.1949': attribute type 4 has an invalid length.
[  362.534527][ T1140] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  362.620009][ T1249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  362.783206][T13602] netlink: 'syz.1.1955': attribute type 9 has an invalid length.
[  362.786228][T13602] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1955'.
[  362.866470][   T39] audit: type=1326 audit(1737467846.247:2302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13607 comm="syz.1.1957" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f83579 code=0x0
[  363.169497][   T39] audit: type=1326 audit(1737467846.547:2303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13600 comm="syz.4.1956" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  363.177500][   T39] audit: type=1326 audit(1737467846.547:2304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13600 comm="syz.4.1956" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  363.183868][   T39] audit: type=1326 audit(1737467846.547:2305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13600 comm="syz.4.1956" exe="/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  363.191079][   T39] audit: type=1326 audit(1737467846.547:2306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13600 comm="syz.4.1956" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  363.198320][   T39] audit: type=1326 audit(1737467846.547:2307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13600 comm="syz.4.1956" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  363.204639][   T39] audit: type=1326 audit(1737467846.547:2308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13600 comm="syz.4.1956" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  363.210878][   T39] audit: type=1326 audit(1737467846.547:2309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13600 comm="syz.4.1956" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  363.219501][   T39] audit: type=1326 audit(1737467846.547:2310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13600 comm="syz.4.1956" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  363.225909][   T39] audit: type=1326 audit(1737467846.547:2311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13600 comm="syz.4.1956" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  363.894963][   T78] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  363.914672][T13630] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  363.944878][T13633] usb 1-1: USB disconnect, device number 2
[  364.755812][T13645] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1965'.
[  365.715687][T13656] wg1 speed is unknown, defaulting to 1000
[  365.724308][    T8] usb 12-1: new high-speed USB device number 2 using dummy_hcd
[  365.896458][    T8] usb 12-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  365.901568][    T8] usb 12-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 12335, setting to 1024
[  365.906688][    T8] usb 12-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  365.918368][    T8] usb 12-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  365.921324][    T8] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  365.938154][T13652] raw-gadget.1 gadget.7: fail, usb_ep_enable returned -22
[  365.952778][    T8] usb 12-1: Quirk or no altset; falling back to MIDI 1.0
[  366.161231][T13652] sp0: Synchronizing with TNC
[  366.172198][T13652] sp0: Found TNC
[  366.182963][T13652] UHID_CREATE from different security context by process 99 (syz.7.1968), this is not allowed.
[  366.194473][   T63] usb 12-1: USB disconnect, device number 2
[  366.196219][T13651] [U] è`
[  366.388759][   T35] 
[  366.389486][   T35] ======================================================
[  366.391433][   T35] WARNING: possible circular locking dependency detected
[  366.393457][   T35] 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0 Not tainted
[  366.395936][   T35] ------------------------------------------------------
[  366.399503][   T35] kworker/3:0/35 is trying to acquire lock:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  366.401891][   T35] ffff88804397ec78 (&q->q_usage_counter(queue)#51){++++}-{0:0}, at: blk_mq_alloc_request+0x59b/0x950
[  366.406241][   T35] 
[  366.406241][   T35] but task is already holding lock:
[  366.409161][   T35] ffff88804397f290 (&q->limits_lock){+.+.}-{4:4}, at: sd_revalidate_disk.isra.0+0x52c/0xa8d0
[  366.413204][   T35] 
[  366.413204][   T35] which lock already depends on the new lock.
[  366.413204][   T35] 
[  366.417260][   T35] 
[  366.417260][   T35] the existing dependency chain (in reverse order) is:
[  366.420794][   T35] 
[  366.420794][   T35] -> #5 (&q->limits_lock){+.+.}-{4:4}:
[  366.423811][   T35]        __mutex_lock+0x19b/0xa60
[  366.425796][   T35]        __nbd_set_size+0x2c0/0x730
[  366.427803][   T35]        nbd_start_device+0x8fd/0xd70
[  366.429856][   T35]        nbd_ioctl+0x21a/0xfd0
[  366.431776][   T35]        compat_blkdev_ioctl+0x2f7/0x750
[  366.434011][   T35]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  366.436579][   T35]        __do_fast_syscall_32+0x73/0x120
[  366.438790][   T35]        do_fast_syscall_32+0x32/0x80
[  366.440839][   T35]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  366.443525][   T35] 
[  366.443525][   T35] -> #4 (&q->q_usage_counter(io)#70){++++}-{0:0}:
[  366.446967][   T35]        blk_mq_submit_bio+0x1fb6/0x24c0
[  366.449245][   T35]        __submit_bio+0x384/0x540
[  366.451286][   T35]        submit_bio_noacct_nocheck+0x698/0xd70
[  366.453669][   T35]        submit_bio_noacct+0x93a/0x1e20
[  366.455882][   T35]        block_read_full_folio+0x812/0xa50
[  366.458259][   T35]        filemap_read_folio+0xc6/0x2a0
[  366.460461][   T35]        filemap_get_pages+0x155f/0x1be0
[  366.462717][   T35]        filemap_read+0x3ca/0xd70
[  366.464753][   T35]        blkdev_read_iter+0x187/0x480
[  366.466937][   T35]        vfs_read+0x87f/0xbe0
[  366.468828][   T35]        ksys_read+0x12b/0x250
[  366.470709][   T35]        do_syscall_64+0xcd/0x250
[  366.472706][   T35]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.475133][   T35] 
[  366.475133][   T35] -> #3 (mapping.invalidate_lock#2){++++}-{4:4}:
[  366.478435][   T35]        down_read+0x9a/0x330
[  366.480361][   T35]        page_cache_ra_unbounded+0x173/0x750
[  366.482760][   T35]        page_cache_ra_order+0x8f2/0xc80
[  366.485078][   T35]        page_cache_async_ra+0x5cb/0x8a0
[  366.487320][   T35]        filemap_fault+0xd69/0x2820
[  366.489397][   T35]        __do_fault+0x10a/0x490
[  366.490870][   T35]        do_pte_missing+0xebd/0x3e00
[  366.492523][   T35]        __handle_mm_fault+0x103c/0x2a40
[  366.494466][   T35]        handle_mm_fault+0x3fa/0xaa0
[  366.496635][   T35]        __get_user_pages+0x8d9/0x3b50
[  366.498703][   T35]        get_dump_page+0xff/0x230
[  366.500234][   T35]        dump_user_range+0x135/0x8c0
[  366.501749][   T35]        elf_core_dump+0x2baa/0x3df0
[  366.503272][   T35]        do_coredump+0x300e/0x4590
[  366.504763][   T35]        get_signal+0x23f3/0x2610
[  366.506661][   T35]        arch_do_signal_or_restart+0x90/0x7e0
[  366.509076][   T35]        syscall_exit_to_user_mode+0x150/0x2a0
[  366.510994][   T35]        __do_fast_syscall_32+0x80/0x120
[  366.512605][   T35]        do_fast_syscall_32+0x32/0x80
[  366.514497][   T35]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  366.517236][   T35] 
[  366.517236][   T35] -> #2 (&mm->mmap_lock){++++}-{4:4}:
[  366.520244][   T35]        __might_fault+0x11b/0x190
[  366.522248][   T35]        _copy_from_user+0x29/0xd0
[  366.524337][   T35]        compat_blk_trace_setup+0xc9/0x200
[  366.526600][   T35]        blk_trace_ioctl+0x24a/0x290
[  366.528725][   T35]        compat_blkdev_ioctl+0x13c/0x750
[  366.530990][   T35]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  366.533325][   T35]        __do_fast_syscall_32+0x73/0x120
[  366.535568][   T35]        do_fast_syscall_32+0x32/0x80
[  366.537660][   T35]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  366.540160][   T35] 
[  366.540160][   T35] -> #1 (&q->debugfs_mutex){+.+.}-{4:4}:
[  366.543346][   T35]        __mutex_lock+0x19b/0xa60
[  366.545422][   T35]        blk_mq_init_sched+0x42b/0x640
[  366.547645][   T35]        elevator_init_mq+0x2cd/0x420
[  366.549823][   T35]        add_disk_fwnode+0x113/0x1300
[  366.551978][   T35]        sd_probe+0xa66/0xfa0
[  366.553886][   T35]        really_probe+0x23e/0xa90
[  366.555930][   T35]        __driver_probe_device+0x1de/0x440
[  366.557707][   T35]        driver_probe_device+0x4c/0x1b0
[  366.559326][   T35]        __device_attach_driver+0x1df/0x310
[  366.561061][   T35]        bus_for_each_drv+0x157/0x1e0
[  366.562627][   T35]        __device_attach_async_helper+0x1d3/0x290
[  366.564498][   T35]        async_run_entry_fn+0x9c/0x530
[  366.566084][   T35]        process_one_work+0x958/0x1b30
[  366.567705][   T35]        worker_thread+0x6c8/0xf00
[  366.569192][   T35]        kthread+0x2c1/0x3a0
[  366.570560][   T35]        ret_from_fork+0x45/0x80
[  366.572018][   T35]        ret_from_fork_asm+0x1a/0x30
[  366.573556][   T35] 
[  366.573556][   T35] -> #0 (&q->q_usage_counter(queue)#51){++++}-{0:0}:
[  366.576107][   T35]        __lock_acquire+0x249e/0x3c40
[  366.577685][   T35]        lock_acquire.part.0+0x11b/0x380
[  366.579319][   T35]        blk_queue_enter+0x50f/0x640
[  366.580863][   T35]        blk_mq_alloc_request+0x59b/0x950
[  366.582519][   T35]        scsi_execute_cmd+0x20a/0xf30
[  366.584082][   T35]        read_capacity_16+0x21a/0xe20
[  366.585680][   T35]        sd_revalidate_disk.isra.0+0x1a06/0xa8d0
[  366.587523][   T35]        scsi_rescan_device+0x243/0x340
[  366.589132][   T35]        ata_scsi_dev_rescan+0x1cb/0x470
[  366.590762][   T35]        process_one_work+0x958/0x1b30
[  366.592341][   T35]        worker_thread+0x6c8/0xf00
[  366.593822][   T35]        kthread+0x2c1/0x3a0
[  366.595230][   T35]        ret_from_fork+0x45/0x80
[  366.596720][   T35]        ret_from_fork_asm+0x1a/0x30
[  366.598249][   T35] 
[  366.598249][   T35] other info that might help us debug this:
[  366.598249][   T35] 
[  366.601214][   T35] Chain exists of:
[  366.601214][   T35]   &q->q_usage_counter(queue)#51 --> &q->q_usage_counter(io)#70 --> &q->limits_lock
[  366.601214][   T35] 
[  366.605812][   T35]  Possible unsafe locking scenario:
[  366.605812][   T35] 
[  366.608121][   T35]        CPU0                    CPU1
[  366.609669][   T35]        ----                    ----
[  366.611221][   T35]   lock(&q->limits_lock);
[  366.612547][   T35]                                lock(&q->q_usage_counter(io)#70);
[  366.614813][   T35]                                lock(&q->limits_lock);
[  366.616810][   T35]   rlock(&q->q_usage_counter(queue)#51);
[  366.618466][   T35] 
[  366.618466][   T35]  *** DEADLOCK ***
[  366.618466][   T35] 
[  366.620803][   T35] 5 locks held by kworker/3:0/35:
[  366.622257][   T35]  #0: ffff88801b088948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30
[  366.625275][   T35]  #1: ffffc900005dfd80 ((work_completion)(&(&ap->scsi_rescan_task)->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30
[  366.628962][   T35]  #2: ffff8880214bc358 (&ap->scsi_scan_mutex){+.+.}-{4:4}, at: ata_scsi_dev_rescan+0x3e/0x470
[  366.631949][   T35]  #3: ffff8880215ea378 (&dev->mutex){....}-{4:4}, at: scsi_rescan_device+0x27/0x340
[  366.634728][   T35]  #4: ffff88804397f290 (&q->limits_lock){+.+.}-{4:4}, at: sd_revalidate_disk.isra.0+0x52c/0xa8d0
[  366.637641][   T35] 
[  366.637641][   T35] stack backtrace:
[  366.639324][   T35] CPU: 3 UID: 0 PID: 35 Comm: kworker/3:0 Not tainted 6.13.0-syzkaller-00603-g3d3a9c8b89d4 #0
[  366.642161][   T35] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.645227][   T35] Workqueue: events ata_scsi_dev_rescan
[  366.646851][   T35] Call Trace:
[  366.647774][   T35]  <TASK>
[  366.648597][   T35]  dump_stack_lvl+0x116/0x1f0
[  366.649892][   T35]  print_circular_bug+0x41c/0x610
[  366.651306][   T35]  check_noncircular+0x31a/0x400
[  366.652701][   T35]  ? __pfx_check_noncircular+0x10/0x10
[  366.654302][   T35]  ? find_held_lock+0x2d/0x110
[  366.656222][   T35]  ? __pfx___lock_acquire+0x10/0x10
[  366.658301][   T35]  ? lockdep_lock+0xc6/0x200
[  366.659844][   T35]  ? __pfx_lockdep_lock+0x10/0x10
[  366.661288][   T35]  __lock_acquire+0x249e/0x3c40
[  366.662651][   T35]  ? __pfx___lock_acquire+0x10/0x10
[  366.664123][   T35]  lock_acquire.part.0+0x11b/0x380
[  366.665643][   T35]  ? blk_mq_alloc_request+0x59b/0x950
[  366.667165][   T35]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  366.668763][   T35]  ? rcu_is_watching+0x12/0xc0
[  366.670144][   T35]  ? trace_lock_acquire+0x14e/0x1f0
[  366.671639][   T35]  ? blk_mq_alloc_request+0x59b/0x950
[  366.673161][   T35]  ? lock_acquire+0x2f/0xb0
[  366.674477][   T35]  ? blk_mq_alloc_request+0x59b/0x950
[  366.676045][   T35]  blk_queue_enter+0x50f/0x640
[  366.677465][   T35]  ? blk_mq_alloc_request+0x59b/0x950
[  366.679013][   T35]  ? __pfx_blk_queue_enter+0x10/0x10
[  366.680500][   T35]  ? save_trace+0x42/0xa10
[  366.681783][   T35]  ? add_lock_to_list+0x17d/0x390
[  366.683199][   T35]  ? lockdep_unlock+0x11a/0x290
[  366.684597][   T35]  blk_mq_alloc_request+0x59b/0x950
[  366.686039][   T35]  ? __pfx_blk_mq_alloc_request+0x10/0x10
[  366.687646][   T35]  ? __pfx___lock_acquire+0x10/0x10
[  366.689131][   T35]  ? __pfx_mod_delayed_work_on+0x10/0x10
[  366.690752][   T35]  ? blk_mq_hw_queue_need_run+0x30b/0x4a0
[  366.692468][   T35]  scsi_execute_cmd+0x20a/0xf30
[  366.693828][   T35]  ? lock_acquire.part.0+0x11b/0x380
[  366.695671][   T35]  ? __mutex_trylock_common+0xea/0x250
[  366.697231][   T35]  ? __pfx_scsi_execute_cmd+0x10/0x10
[  366.698742][   T35]  ? sd_revalidate_disk.isra.0+0x52c/0xa8d0
[  366.700425][   T35]  ? rcu_is_watching+0x12/0xc0
[  366.701780][   T35]  read_capacity_16+0x21a/0xe20
[  366.703154][   T35]  ? __pfx_read_capacity_16+0x10/0x10
[  366.704681][   T35]  ? __pfx___mutex_lock+0x10/0x10
[  366.706123][   T35]  ? __pfx_scsi_execute_cmd+0x10/0x10
[  366.707645][   T35]  sd_revalidate_disk.isra.0+0x1a06/0xa8d0
[  366.709273][   T35]  ? find_held_lock+0x2d/0x110
[  366.710661][   T35]  ? mark_held_locks+0x9f/0xe0
[  366.712027][   T35]  ? __pfx_sd_revalidate_disk.isra.0+0x10/0x10
[  366.713777][   T35]  ? kasan_save_stack+0x42/0x60
[  366.715221][   T35]  ? kasan_save_stack+0x33/0x60
[  366.716577][   T35]  ? kasan_save_track+0x14/0x30
[  366.717992][   T35]  ? kasan_save_free_info+0x3b/0x60
[  366.719497][   T35]  ? __kasan_slab_free+0x51/0x70
[  366.720938][   T35]  ? kfree+0x14f/0x4b0
[  366.722116][   T35]  ? scsi_attach_vpd+0x4dc/0x580
[  366.723399][   T35]  ? scsi_rescan_device+0xf5/0x340
[  366.724888][   T35]  ? ata_scsi_dev_rescan+0x1cb/0x470
[  366.726390][   T35]  ? process_one_work+0x958/0x1b30
[  366.727850][   T35]  ? worker_thread+0x6c8/0xf00
[  366.729163][   T35]  ? hlock_class+0x4e/0x130
[  366.730505][   T35]  ? mark_lock+0xb5/0xc60
[  366.731704][   T35]  ? mark_held_locks+0x9f/0xe0
[  366.733030][   T35]  ? kasan_quarantine_put+0x10a/0x240
[  366.734610][   T35]  ? lockdep_hardirqs_on+0x7c/0x110
[  366.736149][   T35]  ? kfree+0x14f/0x4b0
[  366.737358][   T35]  ? lockdep_hardirqs_on+0x7c/0x110
[  366.738821][   T35]  ? scsi_attach_vpd+0x4dc/0x580
[  366.740237][   T35]  ? scsi_attach_vpd+0x4dc/0x580
[  366.741640][   T35]  ? __pfx_sd_rescan+0x10/0x10
[  366.742986][   T35]  scsi_rescan_device+0x243/0x340
[  366.744436][   T35]  ata_scsi_dev_rescan+0x1cb/0x470
[  366.745825][   T35]  process_one_work+0x958/0x1b30
[  366.747246][   T35]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  366.748955][   T35]  ? __pfx_process_one_work+0x10/0x10
[  366.750521][   T35]  ? rcu_is_watching+0x12/0xc0
[  366.751918][   T35]  ? assign_work+0x1a0/0x250
[  366.753289][   T35]  worker_thread+0x6c8/0xf00
[  366.754703][   T35]  ? __pfx_worker_thread+0x10/0x10
[  366.756238][   T35]  kthread+0x2c1/0x3a0
[  366.757425][   T35]  ? _raw_spin_unlock_irq+0x23/0x50
[  366.758926][   T35]  ? __pfx_kthread+0x10/0x10
[  366.760277][   T35]  ret_from_fork+0x45/0x80
[  366.761575][   T35]  ? __pfx_kthread+0x10/0x10
[  366.762920][   T35]  ret_from_fork_asm+0x1a/0x30
[  366.764322][   T35]  </TASK>
[  367.097184][  T104] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  367.107892][   T11] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.146734][   T11] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.226367][   T11] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.276859][   T11] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.337090][   T11] bridge_slave_1: left allmulticast mode
[  367.338764][   T11] bridge_slave_1: left promiscuous mode
[  367.340433][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.343064][   T11] bridge_slave_0: left allmulticast mode
[  367.344938][   T11] bridge_slave_0: left promiscuous mode
[  367.346781][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.411222][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  367.414774][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  367.417896][   T11] bond0 (unregistering): Released all slaves
[  367.631240][   T11] hsr_slave_0: left promiscuous mode
[  367.633678][   T11] hsr_slave_1: left promiscuous mode
[  367.636227][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  367.638403][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  367.641034][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  367.644122][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  367.647689][   T11] veth1_macvtap: left promiscuous mode
[  367.649299][   T11] veth0_macvtap: left promiscuous mode
[  367.651003][   T11] veth1_vlan: left promiscuous mode
[  367.652667][   T11] veth0_vlan: left promiscuous mode
[  367.738972][ T1140] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  367.744648][ T1140] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  367.835228][   T11] team0 (unregistering): Port device team_slave_1 removed
[  367.879364][   T11] team0 (unregistering): Port device team_slave_0 removed
[  368.374612][ T1249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  369.664397][  T104] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  372.214455][ T1249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  373.494575][ T1249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  374.144376][ T1249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  375.424458][ T1249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog

VM DIAGNOSIS:
13:57:29  Registers:
info registers vcpu 0

CPU#0
RAX=00000002000008fb RBX=0000000000000001 RCX=0000000000000830 RDX=0000000000000002
RSI=00000000000000fb RDI=0000000000000002 RBP=0000000000000001 RSP=ffffc90000007e20
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffc90000007ff8
R12=0000000000000001 R13=0000000000000000 R14=ffff88802b53ed40 R15=ffff88806a81a801
RIP=ffffffff8147b098 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f743b21c CR3=000000004edb8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7433ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000adddcede7 RBX=ffff88802b43ed40 RCX=1ffffffff1b4919c RDX=1ffff11005687f44
RSI=ffffffff813e5ef8 RDI=ffff88802b43fa20 RBP=0000000000002df8 RSP=ffffc90006db7700
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=ffffffff905e7a54 R13=ffff88802b43f918 R14=0000000adddcede7 R15=ffff88802b43f878
RIP=ffffffff8168abbc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002002b000 CR3=0000000065f98000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000039eac4 RBX=0000000000000002 RCX=ffffffff8b1df559 RDX=ffffed10056c6fee
RSI=ffffffff8bd24700 RDI=ffffffff81704689 RBP=ffffed1003ad2000 RSP=ffffc9000048fe08
R8 =0000000000000000 R9 =ffffed10056c6fed R10=ffff88802b637f6b R11=0000000000000001
R12=0000000000000002 R13=ffff88801d690000 R14=ffffffff905e4750 R15=0000000000000000
RIP=ffffffff8b1e093f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000056364c3dd000 CR3=000000004aabc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=4402c9b24402c9b2 4402c9b24402c9b2 4402c9b24402c9b2 4402c9b24402c9b2 4402c9b24402c9b2 4402c9b24402c9b2 4402c9b24402c9b2 4402c9b24402c9b2
ZMM22=48bbda9448bbda94 48bbda9448bbda94 48bbda9448bbda94 48bbda9448bbda94 48bbda9448bbda94 48bbda9448bbda94 48bbda9448bbda94 48bbda9448bbda94
ZMM23=a4d1d68ca4d1d68c a4d1d68ca4d1d68c a4d1d68ca4d1d68c a4d1d68ca4d1d68c a4d1d68ca4d1d68c a4d1d68ca4d1d68c a4d1d68ca4d1d68c a4d1d68ca4d1d68c
ZMM24=00e9809a00e9809a 00e9809a00e9809a 00e9809a00e9809a 00e9809a00e9809a 00e9809a00e9809a 00e9809a00e9809a 00e9809a00e9809a 00e9809a00e9809a
ZMM25=ef709be7ef709be7 ef709be7ef709be7 ef709be7ef709be7 ef709be7ef709be7 ef709be7ef709be7 ef709be7ef709be7 ef709be7ef709be7 ef709be7ef709be7
ZMM26=ad923ad7ad923ad7 ad923ad7ad923ad7 ad923ad7ad923ad7 ad923ad7ad923ad7 ad923ad7ad923ad7 ad923ad7ad923ad7 ad923ad7ad923ad7 ad923ad7ad923ad7
ZMM27=2e94c8812e94c881 2e94c8812e94c881 2e94c8812e94c881 2e94c8812e94c881 2e94c8812e94c881 2e94c8812e94c881 2e94c8812e94c881 2e94c8812e94c881
ZMM28=000000400000003f 0000003e0000003d 0000003c0000003b 0000003a00000039 0000003800000037 0000003600000035 0000003400000033 0000003200000031
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=8d0d00008d0d0000 8d0d00008d0d0000 8d0d00008d0d0000 8d0d00008d0d0000 8d0d00008d0d0000 8d0d00008d0d0000 8d0d00008d0d0000 8d0d00008d0d0000
info registers vcpu 3

CPU#3
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8517b025 RDI=ffffffff9aa92500 RBP=ffffffff9aa924c0 RSP=ffffc900005dea60
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000020 R14=ffffffff8517afc0 R15=0000000000000000
RIP=ffffffff8517b04f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c32f20c CR3=000000006bf58000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000