last executing test programs:

18m8.046899346s ago: executing program 3 (id=342):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000180)=<r0=>0x0)
prlimit64(r0, 0xa, &(0x7f00000001c0)={0x80000001, 0x1}, &(0x7f0000000200))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
sched_setscheduler(0x0, 0x6, &(0x7f0000000300)=0x8)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$KVM_GET_DEBUGREGS(r4, 0x8080aea1, &(0x7f0000000400))
write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000005, 0x12, r1, 0x0)
read$FUSE(r1, &(0x7f00000009c0)={0x2020}, 0x2020)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r9, 0x4068aea3, &(0x7f0000000080))
ioctl$KVM_SET_GSI_ROUTING(r9, 0x4008ae6a, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000000000000000000050000"])
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs2/custom1\x00', 0x800, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r10 = socket$inet6(0xa, 0x802, 0x88)
setsockopt$inet6_udp_int(r10, 0x11, 0x100000000a, &(0x7f00000003c0)=0x800000001, 0x4)
sendto$inet6(r10, 0x0, 0x0, 0x4008840, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @local}, 0x1c)
sendto$inet6(r10, 0x0, 0x0, 0x10, 0x0, 0x0)

18m2.265392819s ago: executing program 3 (id=362):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="300000001c00010000000000fedbdf2507000000", @ANYRES32=r1, @ANYBLOB="000072010a000200df58e5774b4e0000060005"], 0x30}}, 0x4)

18m1.801197325s ago: executing program 3 (id=365):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x180300, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000040)={0x191, 0x258, 0x1e0, 0x3e, 0x32, 0x1, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

18m0.864586475s ago: executing program 3 (id=368):
open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}})
mount$fuse(0xf0ff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xa000}})

18m0.238517081s ago: executing program 3 (id=371):
syz_io_uring_setup(0x10d, &(0x7f00000003c0)={0x0, 0x16fd, 0x80, 0x2, 0xeb}, &(0x7f0000000500), &(0x7f0000000340)) (async)
syz_io_uring_setup(0x10d, &(0x7f00000003c0)={0x0, 0x16fd, 0x80, 0x2, 0xeb}, &(0x7f0000000500)=<r0=>0x0, &(0x7f0000000340))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xff, 0xffffffffffffbffc}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x5e) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x5e)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYRES32, @ANYRES64], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYRES32, @ANYRES64], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='sched_switch\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="3400000010000100000000000000000003000000", @ANYRES32=r3, @ANYBLOB="0006000000000000140012800b00010067656e657665000004000280"], 0x34}, 0x1, 0x2}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0xa)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e) (async)
connect$unix(r5, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
open(&(0x7f0000000280)='.\x00', 0x0, 0x8) (async)
r7 = open(&(0x7f0000000280)='.\x00', 0x0, 0x8)
ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000040)=0x10)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r7, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18, r6}, '.\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r8 = getpid()
sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x7) (async)
sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
connect$unix(r9, 0x0, 0x0)
sendmmsg$unix(r10, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r9, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
recvmmsg(r9, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

17m59.077468309s ago: executing program 3 (id=376):
socket$kcm(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000000401400e27f000001"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000180)={{r0, <r1=>0xffffffffffffffff}, 0x0, &(0x7f0000000140)='%pK    \x00'}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x29, 0x1, @thr={0x0, 0x0}}, &(0x7f0000000040))
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r4 = fanotify_init(0x0, 0x0)
write$binfmt_elf64(r4, 0x0, 0x18)
io_setup(0xb, &(0x7f0000000240))
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r1, &(0x7f0000000040), 0x0}, 0x20)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r6=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000080), r6, 0x0, 0x2, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r5, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {r6}}, 0x10)
shmget$private(0x0, 0x4000, 0x200, &(0x7f0000ffb000/0x4000)=nil)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r7, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

17m54.715281557s ago: executing program 2 (id=386):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = memfd_create(&(0x7f0000000580)='\x80\x105\xfb\xf7u\x83%:r\xc2\xb9\xce\x1d\xe1B>.\xff\x7f\x00\x00\x00\x00\x00\x00,\xc7\x96\x1f\xcda\x9b\x11X\x0e\xa1\xcf\x1a?\x00\x95y\x1d\x80\x17\x8f\xbbluw\xa7(\x9e\xa0\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\"\xb7\x8d\x8b\xf5\x18\xac\x8e^\xd7J\xdd#{\x00\xae\x84\x18>\xebJ\xe3y\xd0\xd7\xc97\x873}\xf6\xa05\xa8s\t\x84\x00\xfe&\xedR\xdak\xc3\xec\xaa\r\xc7\xa0\xdaA\xf8G\xa4\xba\xa3\xcbh\x05\x0f\x1e\xa1*/I2N\xee+<`\xa5=\xe2\xe7\xdf\xd5\x9c\x13\xd6\xb0Z\x10\xa0\x93\xdd\xcd]\x01\xfe\xce\xa3\xb2\xc3\x10\xa4x@|\\@\x1c7\xcf{\xcc\xdf\xa1\xb4\xfb%\x19\xe2\xc1\xcd\xbf{3\x82\xde\xe9\x8f8\xb3\x88j\x9c\xee\x88A\x182@P\xe63\xc2s\xd0\xc8\xe2\\\xa3\xd4Q\xc4{\x00\x00\x00\x00\x00\"G\xee\x10\x14pp+S\x00\xac\xea|\x17\xe5\xf0\x03\xcdt\xee\xed\x1a&F\xb2.bWM9\x11\\3\x8b2OM\xd5\x05II\x9d\xad=Nh\xb3\x84t\xc7Qh\xcfU\a\x12\xa8\x1e7\xc1)\"%\xf9\xad\xfd\xd5\xd4\x1b\xc5\xb7\xd5?\xb5?\xa8\xc4\x9d\xc5\xb7=f\xf2', 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/rcu_expedited', 0x0, 0x0)
cachestat(r1, 0x0, 0x0, 0x0)
ftruncate(r0, 0xffff)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xb})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="180100008000000000f93ac207000000950000000000000061977df2e984e7fd82cbcc256319bd6c811035f1ff2857858f039966443bb1858e8f1da3172d5bf0724609b8a322b46757c2603be740e782af4806c1242f8425bee8c500b448b829f49ff0c1511444472621fd98264972f2c87802fb7bd0d193bd872cc58292b2d9bfee64306e205cdd17d1d2df9377efb224ea950116b1a4bd279cd2c7f5816b5b4b388cf225d156c072d0d949a4b79ddf5776f712eba0bc"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
socketpair$unix(0x1, 0x5, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNDETACHFILTER(r6, 0x401054d6, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0)
fcntl$setlease(r7, 0x400, 0x300)
r8 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid\x00')
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000300)={0x1000a4, 0x7a, 0x0, {r8}}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

17m52.453626805s ago: executing program 2 (id=388):
socket(0x840000000002, 0x3, 0xff) (async)
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='bridge_slave_0\x00', 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000240)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffa)
add_key(&(0x7f0000000000)='id_legacy\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000100)="304cd3da94862b75e2b7d9f3c78c1d0778e921303ba7453fbc5b36789858e0516606033481018218", 0x28, r4)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000540)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1a}}, 0x10) (async)
connect$inet(r0, &(0x7f0000000540)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1a}}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94) (async)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_GET_PCI(r5, 0x5309, 0x0)

17m51.589151772s ago: executing program 2 (id=390):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
timer_gettime(0x0, &(0x7f0000000300))
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'crct10dif-pclmul\x00'}, 0x58)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000440)}], 0x1, &(0x7f0000000580)=[@timestamping={{0x14, 0x1, 0x25, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0x6}}, @txtime={{0x18, 0x1, 0x3d, 0xfffffffffffffff8}}, @mark={{0x14, 0x1, 0x24, 0xd54f}}, @txtime={{0x18, 0x1, 0x3d, 0x3}}], 0x78}}, {{&(0x7f0000000e00)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x1, 0x4, 0x2, {0xa, 0x4e21, 0x10000, @private2, 0x80}}}, 0x80, 0x0}}, {{0x0, 0x0, &(0x7f0000001180)=[{&(0x7f0000001080)="e5d25f522238fbe629390589d827819ebeab124ce4a5e77ecb61bfdc89a3a6b46130c7886bb2fe8d42d2922b392826a1", 0x30}], 0x1}}, {{0x0, 0x0, 0x0}}, {{&(0x7f0000002dc0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0xffff, 0x1, 0x0, 0x1, {0xa, 0x4e24, 0x2, @empty, 0x1}}}, 0x80, 0x0}}], 0x5, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000200000000000000", @ANYRES32, @ANYBLOB="000000080000000000000015de00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r5}, &(0x7f00000002c0), &(0x7f0000000300)=r5}, 0x20)

17m50.704760457s ago: executing program 2 (id=392):
r0 = socket(0x18, 0x0, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2482ac861b82b520}, 0x20)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
fsync(r1)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = epoll_create1(0x0)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000020c0), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000001040)={0x9000001d})
read(r4, &(0x7f0000002e00)=""/4088, 0xff8)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
connect$unix(r5, 0x0, 0x0)
recvmmsg(r5, 0x0, 0x0, 0x2, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000080)={0x3ff}, 0x0, 0x0)
r6 = dup(r2)
write$UHID_INPUT(r6, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x2, @empty, 'geneve1\x00'}}, 0x1e)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000009000071123b000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

17m46.185340487s ago: executing program 2 (id=400):
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$inet_smc(0x2b, 0x1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @dev, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x12, 0x0, 0x0, @multicast1}}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fe0500000000000000000000950000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r4 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r4, 0x40049366, &(0x7f0000000180))
syz_genetlink_get_family_id$netlbl_unlabel(0x0, 0xffffffffffffffff)
socket$kcm(0x10, 0x3, 0x10)

17m44.484193143s ago: executing program 2 (id=404):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0xa, [@ptr, @struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x8, [{0x6, 0x1, 0x3}]}]}, {0x0, [0x0, 0x0, 0x0, 0x5c, 0x0, 0x2e, 0x0, 0x0]}}, &(0x7f0000000380)=""/3, 0x46, 0x3, 0x1, 0x0, 0x10000, @value}, 0x28)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/kexec_crash_size', 0x202, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)={0x118, 0x41, 0x2, 0x70bd2c, 0x25dfdbfc, {0xe}, [@generic="d71ac2df1b18df112a6683543e5fee7a5231a60d867f87b00f8a61f4f98bbc9dcb6bcf2082a4b29328846bae475e743da4ce83734678449e6fd74abc5e03708b488baa393365aa7db019cedff397f8a1af9323cb864ae213787365a545cc975506809baeea43774ae9f880e2fbbe49fa366d56c6251f55425c5a55915b0318a49a8cf4d3d7d5552693240808a217b2cad6b4130fe4b581d6fc65a303e5a1cc78fe6eb56c7f7031e201171ec1cb4c6c2b433ae75efb2733608edf25a78473c3b524c5c5dca06c85fad4f776f4a9414047", @generic="bcc0b350d6e66782d3a960", @nested={0x28, 0x6c, 0x0, 0x1, [@nested={0x4, 0x12b}, @nested={0x4, 0x112}, @nested={0x4, 0x7a}, @typed={0x8, 0x15, 0x0, 0x0, @u32=0x401}, @nested={0x4, 0xfe}, @nested={0x4, 0xaa}, @typed={0x8, 0x36, 0x0, 0x0, @fd=r0}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x2000c096}, 0x20008000)
r2 = socket(0x22, 0x2, 0x3)
getsockopt$nfc_llcp(r2, 0x6a, 0x0, 0x0, 0x1000000000000)
sendfile(r1, r1, 0x0, 0x6)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000dc0)={0x3d, 0x0, [{0x100000, 0x28, &(0x7f0000000200)=""/40}, {0xeeee8000, 0x1000, &(0x7f0000001400)=""/4096}, {0xd000, 0xff, &(0x7f00000008c0)=""/255}, {0x4, 0xffffffffffffff55, &(0x7f0000000240)}, {0xeeee0000, 0xce, &(0x7f00000009c0)=""/206}, {0xeeef0000, 0x90, &(0x7f0000000b00)=""/144}, {0xf000, 0x40, &(0x7f00000002c0)=""/64}, {0x6000, 0x1000, &(0x7f0000002400)=""/4096}, {0x4000, 0x34, &(0x7f0000000740)=""/41}, {0x8000000, 0x2e, &(0x7f0000000bc0)=""/46}]})
ioctl$sock_SIOCADDRT(r2, 0x890b, &(0x7f0000000000)={0x0, @l2={0x1f, 0xd7, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x66, 0x2}, @nl=@kern={0x10, 0x0, 0x0, 0x42070042}, @isdn={0x22, 0x6, 0x5, 0x2, 0xf8}, 0x6, 0x0, 0x0, 0x0, 0x1, 0x0, 0xb, 0x8000000000000000, 0xfff8})
r4 = openat$smackfs_revoke_subject(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
writev(r4, &(0x7f0000000300)=[{&(0x7f0000000380)='i', 0x1}], 0x1)

17m43.682101065s ago: executing program 32 (id=376):
socket$kcm(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000000401400e27f000001"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000180)={{r0, <r1=>0xffffffffffffffff}, 0x0, &(0x7f0000000140)='%pK    \x00'}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x29, 0x1, @thr={0x0, 0x0}}, &(0x7f0000000040))
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r4 = fanotify_init(0x0, 0x0)
write$binfmt_elf64(r4, 0x0, 0x18)
io_setup(0xb, &(0x7f0000000240))
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r1, &(0x7f0000000040), 0x0}, 0x20)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r6=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000080), r6, 0x0, 0x2, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r5, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {r6}}, 0x10)
shmget$private(0x0, 0x4000, 0x200, &(0x7f0000ffb000/0x4000)=nil)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r7, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

17m28.803469499s ago: executing program 33 (id=404):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0xa, [@ptr, @struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x8, [{0x6, 0x1, 0x3}]}]}, {0x0, [0x0, 0x0, 0x0, 0x5c, 0x0, 0x2e, 0x0, 0x0]}}, &(0x7f0000000380)=""/3, 0x46, 0x3, 0x1, 0x0, 0x10000, @value}, 0x28)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/kexec_crash_size', 0x202, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)={0x118, 0x41, 0x2, 0x70bd2c, 0x25dfdbfc, {0xe}, [@generic="d71ac2df1b18df112a6683543e5fee7a5231a60d867f87b00f8a61f4f98bbc9dcb6bcf2082a4b29328846bae475e743da4ce83734678449e6fd74abc5e03708b488baa393365aa7db019cedff397f8a1af9323cb864ae213787365a545cc975506809baeea43774ae9f880e2fbbe49fa366d56c6251f55425c5a55915b0318a49a8cf4d3d7d5552693240808a217b2cad6b4130fe4b581d6fc65a303e5a1cc78fe6eb56c7f7031e201171ec1cb4c6c2b433ae75efb2733608edf25a78473c3b524c5c5dca06c85fad4f776f4a9414047", @generic="bcc0b350d6e66782d3a960", @nested={0x28, 0x6c, 0x0, 0x1, [@nested={0x4, 0x12b}, @nested={0x4, 0x112}, @nested={0x4, 0x7a}, @typed={0x8, 0x15, 0x0, 0x0, @u32=0x401}, @nested={0x4, 0xfe}, @nested={0x4, 0xaa}, @typed={0x8, 0x36, 0x0, 0x0, @fd=r0}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x2000c096}, 0x20008000)
r2 = socket(0x22, 0x2, 0x3)
getsockopt$nfc_llcp(r2, 0x6a, 0x0, 0x0, 0x1000000000000)
sendfile(r1, r1, 0x0, 0x6)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000dc0)={0x3d, 0x0, [{0x100000, 0x28, &(0x7f0000000200)=""/40}, {0xeeee8000, 0x1000, &(0x7f0000001400)=""/4096}, {0xd000, 0xff, &(0x7f00000008c0)=""/255}, {0x4, 0xffffffffffffff55, &(0x7f0000000240)}, {0xeeee0000, 0xce, &(0x7f00000009c0)=""/206}, {0xeeef0000, 0x90, &(0x7f0000000b00)=""/144}, {0xf000, 0x40, &(0x7f00000002c0)=""/64}, {0x6000, 0x1000, &(0x7f0000002400)=""/4096}, {0x4000, 0x34, &(0x7f0000000740)=""/41}, {0x8000000, 0x2e, &(0x7f0000000bc0)=""/46}]})
ioctl$sock_SIOCADDRT(r2, 0x890b, &(0x7f0000000000)={0x0, @l2={0x1f, 0xd7, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x66, 0x2}, @nl=@kern={0x10, 0x0, 0x0, 0x42070042}, @isdn={0x22, 0x6, 0x5, 0x2, 0xf8}, 0x6, 0x0, 0x0, 0x0, 0x1, 0x0, 0xb, 0x8000000000000000, 0xfff8})
r4 = openat$smackfs_revoke_subject(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
writev(r4, &(0x7f0000000300)=[{&(0x7f0000000380)='i', 0x1}], 0x1)

16m56.07261876s ago: executing program 1 (id=617):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='kfree\x00', r2}, 0x10)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

16m55.824047078s ago: executing program 1 (id=620):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000300)=@ipv6_deladdrlabel={0x38, 0x49, 0x1, 0x80, 0x0, {0xa, 0x0, 0x20}, [@IFAL_LABEL={0x8, 0x2, 0x4}, @IFAL_ADDRESS={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x15}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

16m55.585216597s ago: executing program 1 (id=622):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
ftruncate(0xffffffffffffffff, 0x8200)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000f80)={'wlan1\x00', &(0x7f0000000f40)=@ethtool_stats})

16m55.286412016s ago: executing program 1 (id=623):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0)
umount2(&(0x7f00000001c0)='./file0/file0/file0\x00', 0x0)

16m54.75338645s ago: executing program 1 (id=626):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000078c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000007880)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x28}, 0x1, 0x0, 0x0, 0x400c8b4}, 0x44000800)

16m54.472976607s ago: executing program 1 (id=629):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', &(0x7f0000000100)='devpts\x00', 0x0, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0/../file0\x00', 0x0, 0x20, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x12, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
umount2(&(0x7f0000000040)='.\x00', 0x2)

16m54.061099632s ago: executing program 34 (id=629):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', &(0x7f0000000100)='devpts\x00', 0x0, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0/../file0\x00', 0x0, 0x20, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x12, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
umount2(&(0x7f0000000040)='.\x00', 0x2)

9m40.793027823s ago: executing program 0 (id=1987):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000640)=@newlink={0x40, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4048b}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @broadcast}, @IFLA_IPTUN_FLAGS={0x6, 0x8, 0x3}]}}}]}, 0x40}}, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
r3 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000140)={0x14, 0x0, &(0x7f00000000c0)=[@decrefs={0x40046307, 0x3}, @dead_binder_done], 0x64, 0x0, &(0x7f00000001c0)="0312a69bbb8832fa42585f135e65db0e4dcee09c2f3f39cbe21a43ca499eb78f6f13f923a7c44e32ce6da1b83044fb646150bd1c5850d098c81b5536fba1ae6e17ee8eb31d1c80acc73e4a71ac857651a63fcd3071da61ab38100c5907210cc50ef724b0"})
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
r4 = landlock_create_ruleset(&(0x7f0000000040)={0x4a4, 0x3, 0x1}, 0x18, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x61, 0x10, 0x48}, [@ldst={0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x0, 0x10, &(0x7f0000000080), 0xffffffffffffffb2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$SIOCGETMIFCNT_IN6(r2, 0x89e0, &(0x7f0000000000))
landlock_restrict_self(r4, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
sendmsg$NL80211_CMD_SET_BSS(r0, &(0x7f0000000380)={&(0x7f0000000240), 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x38, r5, 0x610, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x4, 0x7d}}}}, [@NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x2}, @NL80211_ATTR_P2P_CTWINDOW={0x5}, @NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x4)
landlock_restrict_self(r4, 0x0)
landlock_restrict_self(r4, 0x0)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r4, 0x0)
landlock_restrict_self(r4, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c00000043000701000000000000000004"], 0x1c}}, 0x48844)

9m40.159257716s ago: executing program 0 (id=1990):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x3)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, 0x0)
r2 = add_key$keyring(&(0x7f0000000300), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r2)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000500))
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000340)=@keyring={'key_or_keyring:', r2})
ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f0000000080)=0x1)

9m39.801241352s ago: executing program 0 (id=1992):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
epoll_create1(0x99344c68e635bb3)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x0, &(0x7f0000000140)='gquota\x00\x00')
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2b}, {}, {}, 0x8000}}, 0xb8}}, 0x0)
sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB="b80000001900674c0000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a"], 0xb8}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000580)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x104}]}, @NFT_MSG_NEWSETELEM={0x6c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x40, 0x3, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x30, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x9}]}}}]}]}]}]}, @NFT_MSG_DELRULE={0x140, 0x8, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0x7}, [@NFTA_RULE_USERDATA={0x2c, 0x7, 0x1, 0x0, "3d71b32682bb15897c01d4fa66a8175e9872e4cc0d9b3832de08e08e24df369ec0a31c82067f6a31"}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x2}, @NFTA_RULE_USERDATA={0x4a, 0x7, 0x1, 0x0, "5c890b690e2214dac90362bb4f8e989a74bdc1985458a1e6868adb9ac469290098443d437b475c9c2a18de6b34f9e8558b70644604cadd65d58ce8b25f35723200cfaabbf185"}, @NFTA_RULE_COMPAT={0x3c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x88}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x32}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x15}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2b}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x29}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x883e}]}, @NFTA_RULE_USERDATA={0x44, 0x7, 0x1, 0x0, "bef2077827d68611293f798db07a28cc2c1202c7e2d73fcc3d77ee08e72db9248d17c4cb04a4ef18eb8f1f24c9c36d7d09b85546d932ec0960261f57c866e38f"}]}, @NFT_MSG_DELRULE={0x234, 0x8, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x108, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @hash={{0x9}, @void}}, {0xc, 0x1, 0x0, 0x1, @rt={{0x7}, @void}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0x48, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_IMMEDIATE_DREG={0x8}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xa}]}}}, {0x3c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x10}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x33}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_DREG={0x8}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x10, 0x1, 0x0, 0x1, @exthdr={{0xb}, @void}}, {0x24, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RANGE_OP={0x8}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x1c, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_MASQ_FLAGS={0x8, 0x1, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_EXPRESSIONS={0x118, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @numgen={{0xb}, @void}}, {0x48, 0x1, 0x0, 0x1, @fwd={{0x8}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_FWD_NFPROTO={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0x14}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0xe}, @NFTA_FWD_SREG_DEV={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_FWD_SREG_ADDR={0x8}]}}}, {0x60, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x50, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0xf0}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x9}, @NFTA_QUOTA_FLAGS={0x8}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0x8}, @NFTA_QUOTA_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x80000001}]}}}, {0x10, 0x1, 0x0, 0x1, @tproxy={{0xb}, @void}}, {0x4c, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}}}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x46c}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00))
r6 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r7 = memfd_create(&(0x7f0000000540)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\"%/u\x17\xdam\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d[\v\xfc\xad\x0f\xa8\xc5\xad\x001\x8b%\xaa?\x00\x00\x00\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV', 0x2)
ftruncate(r7, 0xfbff)
fcntl$addseals(r7, 0x409, 0x7)
r8 = ioctl$UDMABUF_CREATE(r6, 0x40187542, &(0x7f0000000000)={r7, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r8, 0x40086200, &(0x7f0000000440)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf20000000000000160005003f1b48013d030100000000009500000000000000bc26000000000000bf67000000000000070600000fff07006702000003000000360600000ee600f0bf052000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

9m38.649317124s ago: executing program 0 (id=1995):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x89901)
move_mount(r4, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x10a5840, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x8, 0xfffffffe, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xe, 0xffff}, {0x0, 0x1}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_MEMORY_LIMIT={0x8, 0x8, 0x3}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00"], 0x50}}, 0x4008840)

9m37.45379568s ago: executing program 0 (id=2000):
ioctl$vim2m_VIDIOC_G_FMT(0xffffffffffffffff, 0xc0d05604, &(0x7f0000000a00)={0x1, @sliced={0x4, [0xffe9, 0x3, 0xf993, 0xffff, 0x1, 0x8, 0x4, 0x9, 0x1ff, 0x4, 0x2, 0xcd0, 0x84, 0x408, 0xfff, 0xe, 0x8, 0x476d, 0x200, 0x401, 0x731, 0x5, 0x5, 0xf, 0x3, 0x3, 0x6, 0x109, 0x8, 0x6, 0x0, 0x5, 0xc3ea, 0x101, 0x80, 0x1, 0x7, 0xffff, 0x40, 0x17e6, 0xffff, 0x6, 0x1, 0x7fff, 0x8, 0x9, 0x58, 0x8000], 0xf6}})
r0 = socket(0x11, 0x800000003, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='sessionid\x00')
r2 = fanotify_init(0x8, 0x0)
fanotify_mark(r2, 0x1, 0x40000011, r1, 0x0)
pread64(r1, &(0x7f0000000180)=""/116, 0x74, 0x3)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r3=>0x0})
socket$nl_route(0x10, 0x3, 0x0)
r4 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000000)=0x15)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000140)=0x15)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000000)=0x15)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000140)=0x15)
r8 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000000)=0x15)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000b00)=@newqdisc={0x238, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r3, {}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x208, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0xd, [0x5, 0x2, 0x5, 0x2, 0x1, 0x7, 0xe, 0xf, 0x7, 0xd, 0x10, 0xc, 0xb, 0x6, 0xe, 0xc], 0x0, [0x5, 0x7, 0x3, 0x6, 0x1000, 0x6, 0x7ffc, 0x6, 0xaae, 0x19f4, 0xb, 0x3, 0x4, 0x6e2, 0x1001, 0x6f54], [0xfa, 0x9, 0x7e, 0x3, 0x8, 0x0, 0x701, 0x5, 0x9, 0x2, 0x5, 0x6, 0x7, 0x4, 0x8, 0x80]}}, @TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x1}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xfffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x14, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x3}]}, {0x4}]}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x90, 0x2, 0x0, 0x1, [{0x4}, {0x54, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x6}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x2}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0xb}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x6}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x2}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x100}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x9}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x9}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0xad}]}, {0x34, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x9}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x1ff}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x4}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x9}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0xb9}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0xcd}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x7}]}, {0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0xffffffff}]}, {0x44, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x7f}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x2}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x4}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x7}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x80}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x7f}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x6}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x2}]}, {0x2c, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0x86}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0xd}, @TCA_TAPRIO_SCHED_ENTRY_CMD={0x5}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x1}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0xf2}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x1f}, @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME_EXTENSION={0xc, 0x9, 0x4}]}}]}, 0x238}, 0x1, 0x7a00}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="c10e2abd7000ffdbdf250f0000001c0007800c00040017000000000000000c0003002e00000000000000"], 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x4050)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r11 = semget$private(0x0, 0x5, 0x6a4)
semtimedop(r11, &(0x7f0000000000)=[{0x4, 0xff3d}], 0x1, 0x0)

9m36.001382496s ago: executing program 0 (id=2003):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r2 = openat$kvm(0x0, &(0x7f00000000c0), 0x5c0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = eventfd2(0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0xfffffffffffffffd, 0x2)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000002700)=""/102392, 0x18ff8)
r6 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000003f00)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0xc014)
writev(0xffffffffffffffff, 0x0, 0x0)
unshare(0x22020600)
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r7, 0x40000000af01, 0x0)
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000180)={0x0, 0x0, 0x2, r4, 0x18})
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000002c0)=ANY=[@ANYRES16=r7, @ANYRES32=r0, @ANYBLOB="12ebf6c71fae876dfb9061bd6ea547e2f6daad2669b6dc7106f699da0ea72a0e7ddffeb9d1838bd4a09b1590bce9983c810c51f9a6ca2011d7208a78db1994e76f4fc72e784921032bc574be7cfffd179f617cbcda8a1a3854e9eab818b4314720b1f95e1e9fe87ac3a52e7afee83c0d0324107ab4410b"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

9m35.027673327s ago: executing program 35 (id=2003):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r2 = openat$kvm(0x0, &(0x7f00000000c0), 0x5c0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = eventfd2(0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0xfffffffffffffffd, 0x2)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000002700)=""/102392, 0x18ff8)
r6 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000003f00)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0xc014)
writev(0xffffffffffffffff, 0x0, 0x0)
unshare(0x22020600)
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r7, 0x40000000af01, 0x0)
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000180)={0x0, 0x0, 0x2, r4, 0x18})
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000002c0)=ANY=[@ANYRES16=r7, @ANYRES32=r0, @ANYBLOB="12ebf6c71fae876dfb9061bd6ea547e2f6daad2669b6dc7106f699da0ea72a0e7ddffeb9d1838bd4a09b1590bce9983c810c51f9a6ca2011d7208a78db1994e76f4fc72e784921032bc574be7cfffd179f617cbcda8a1a3854e9eab818b4314720b1f95e1e9fe87ac3a52e7afee83c0d0324107ab4410b"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

8m23.996034343s ago: executing program 8 (id=2202):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
epoll_create1(0x99344c68e635bb3)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r1, &(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x0, &(0x7f0000000140)='gquota\x00\x00')
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2b}, {}, {}, 0x8000}}, 0xb8}}, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB="b80000001900674c0000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a"], 0xb8}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000580)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x104}]}, @NFT_MSG_NEWSETELEM={0x6c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x40, 0x3, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x30, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x9}]}}}]}]}]}]}, @NFT_MSG_DELRULE={0x140, 0x8, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0x7}, [@NFTA_RULE_USERDATA={0x2c, 0x7, 0x1, 0x0, "3d71b32682bb15897c01d4fa66a8175e9872e4cc0d9b3832de08e08e24df369ec0a31c82067f6a31"}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x2}, @NFTA_RULE_USERDATA={0x4a, 0x7, 0x1, 0x0, "5c890b690e2214dac90362bb4f8e989a74bdc1985458a1e6868adb9ac469290098443d437b475c9c2a18de6b34f9e8558b70644604cadd65d58ce8b25f35723200cfaabbf185"}, @NFTA_RULE_COMPAT={0x3c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x88}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x32}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x15}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2b}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x29}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x883e}]}, @NFTA_RULE_USERDATA={0x44, 0x7, 0x1, 0x0, "bef2077827d68611293f798db07a28cc2c1202c7e2d73fcc3d77ee08e72db9248d17c4cb04a4ef18eb8f1f24c9c36d7d09b85546d932ec0960261f57c866e38f"}]}, @NFT_MSG_DELRULE={0x234, 0x8, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x108, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @hash={{0x9}, @void}}, {0xc, 0x1, 0x0, 0x1, @rt={{0x7}, @void}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0x48, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_IMMEDIATE_DREG={0x8}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xa}]}}}, {0x3c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x10}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x33}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_DREG={0x8}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x10, 0x1, 0x0, 0x1, @exthdr={{0xb}, @void}}, {0x24, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RANGE_OP={0x8}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x1c, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_MASQ_FLAGS={0x8, 0x1, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_EXPRESSIONS={0x118, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @numgen={{0xb}, @void}}, {0x48, 0x1, 0x0, 0x1, @fwd={{0x8}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_FWD_NFPROTO={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0x14}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0xe}, @NFTA_FWD_SREG_DEV={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_FWD_SREG_ADDR={0x8}]}}}, {0x60, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x50, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0xf0}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x9}, @NFTA_QUOTA_FLAGS={0x8}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0x8}, @NFTA_QUOTA_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x80000001}]}}}, {0x10, 0x1, 0x0, 0x1, @tproxy={{0xb}, @void}}, {0x4c, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}}}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x46c}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00))
r5 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r6 = memfd_create(&(0x7f0000000540)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\"%/u\x17\xdam\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d[\v\xfc\xad\x0f\xa8\xc5\xad\x001\x8b%\xaa?\x00\x00\x00\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV', 0x2)
ftruncate(r6, 0xfbff)
fcntl$addseals(r6, 0x409, 0x7)
r7 = ioctl$UDMABUF_CREATE(r5, 0x40187542, &(0x7f0000000000)={r6, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000440)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf20000000000000160005003f1b48013d030100000000009500000000000000bc26000000000000bf67000000000000070600000fff07006702000003000000360600000ee600f0bf052000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

8m23.600634253s ago: executing program 8 (id=2206):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000090000000000000000000000850000004100000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000000700000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$alg(0x26, 0x5, 0x0)
socket$igmp(0x2, 0x3, 0x2)
syz_io_uring_setup(0xe6a, &(0x7f0000000340)={0x0, 0x7cb7, 0x40, 0x1, 0x30a}, 0x0, 0x0)
syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001000000ff7f0000000080000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\b\x00', @ANYRES32=r0], 0x24}}, 0x0)

8m22.46820537s ago: executing program 8 (id=2209):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
epoll_create1(0x99344c68e635bb3)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x0, &(0x7f0000000140)='gquota\x00\x00')
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2b}, {}, {}, 0x8000}}, 0xb8}}, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB="b80000001900674c0000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a"], 0xb8}}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000580)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x104}]}, @NFT_MSG_NEWSETELEM={0x6c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x40, 0x3, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x30, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x9}]}}}]}]}]}]}, @NFT_MSG_DELRULE={0x140, 0x8, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0x7}, [@NFTA_RULE_USERDATA={0x2c, 0x7, 0x1, 0x0, "3d71b32682bb15897c01d4fa66a8175e9872e4cc0d9b3832de08e08e24df369ec0a31c82067f6a31"}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x2}, @NFTA_RULE_USERDATA={0x4a, 0x7, 0x1, 0x0, "5c890b690e2214dac90362bb4f8e989a74bdc1985458a1e6868adb9ac469290098443d437b475c9c2a18de6b34f9e8558b70644604cadd65d58ce8b25f35723200cfaabbf185"}, @NFTA_RULE_COMPAT={0x3c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x88}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x32}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x15}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2b}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x29}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x883e}]}, @NFTA_RULE_USERDATA={0x44, 0x7, 0x1, 0x0, "bef2077827d68611293f798db07a28cc2c1202c7e2d73fcc3d77ee08e72db9248d17c4cb04a4ef18eb8f1f24c9c36d7d09b85546d932ec0960261f57c866e38f"}]}, @NFT_MSG_DELRULE={0x234, 0x8, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x108, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @hash={{0x9}, @void}}, {0xc, 0x1, 0x0, 0x1, @rt={{0x7}, @void}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0x48, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_IMMEDIATE_DREG={0x8}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xa}]}}}, {0x3c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x10}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x33}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_DREG={0x8}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x10, 0x1, 0x0, 0x1, @exthdr={{0xb}, @void}}, {0x24, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RANGE_OP={0x8}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x1c, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_MASQ_FLAGS={0x8, 0x1, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_EXPRESSIONS={0x118, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @numgen={{0xb}, @void}}, {0x48, 0x1, 0x0, 0x1, @fwd={{0x8}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_FWD_NFPROTO={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0x14}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0xe}, @NFTA_FWD_SREG_DEV={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_FWD_SREG_ADDR={0x8}]}}}, {0x60, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x50, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0xf0}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x9}, @NFTA_QUOTA_FLAGS={0x8}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0x8}, @NFTA_QUOTA_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x80000001}]}}}, {0x10, 0x1, 0x0, 0x1, @tproxy={{0xb}, @void}}, {0x4c, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}}}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x46c}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00))
r6 = memfd_create(&(0x7f0000000540)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\"%/u\x17\xdam\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d[\v\xfc\xad\x0f\xa8\xc5\xad\x001\x8b%\xaa?\x00\x00\x00\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV', 0x2)
r7 = ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000000)={r6, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000440)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf20000000000000160005003f1b48013d030100000000009500000000000000bc26000000000000bf67000000000000070600000fff07006702000003000000360600000ee600f0bf052000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

8m20.799499514s ago: executing program 8 (id=2211):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0)
dup3(0xffffffffffffffff, r0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
close(0xffffffffffffffff)
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x800}}, './file0\x00'})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x70, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @remote={0xac, 0x3}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_LABELS={0x6, 0x16, 0x1, 0x0, [0x0, 0x0]}]}, 0x70}}, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r4, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r5, 0x0, 0x0, 0x0, <r6=>0x0})
r7 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r8=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(r8, r8, 0x0)
ioprio_get$uid(0x0, r8)
ioctl$IOMMU_HWPT_ALLOC$NONE(r4, 0x3b89, &(0x7f00000001c0)={0x28, 0x0, r6, r5, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000180)={0x28, 0x4, r5, 0x0, &(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x7})

8m20.628902211s ago: executing program 8 (id=2212):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x3, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"/880], &(0x7f0000000140)='GPL\x00', 0x0, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0xfffff000, 0xe, 0x0, &(0x7f00000000c0)="61df712bc884fed5722780b6c2a7", 0x0, 0x41f}, 0x28)

8m20.401334026s ago: executing program 8 (id=2214):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a80)={0x11, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000200000000000000666700089500000000000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000001440)='contention_end\x00', r0}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
openat$dlm_plock(0xffffff9c, 0x0, 0x402, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
prlimit64(0x0, 0xb, &(0x7f0000000140)={0x3, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x6, &(0x7f0000000200)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x13, 0xffffffffffffffff, 0x761ad000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r5, &(0x7f0000000080)=ANY=[@ANYRESHEX=r3, @ANYRES32=0x0, @ANYRESHEX=r0, @ANYRES32=0x0, @ANYRES16=r3, @ANYRES32=r1, @ANYRES8=r4, @ANYRESHEX], 0xffffff63)
sched_setaffinity(0x0, 0x0, 0x0)
io_uring_setup(0x74e5, &(0x7f0000000340)={0x0, 0x40000001})
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
listen(r6, 0x20000005)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
accept4(r6, 0x0, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB], 0x10}}, 0x20000004)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r8, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})

8m5.292963339s ago: executing program 36 (id=2214):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a80)={0x11, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000200000000000000666700089500000000000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000001440)='contention_end\x00', r0}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
openat$dlm_plock(0xffffff9c, 0x0, 0x402, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
prlimit64(0x0, 0xb, &(0x7f0000000140)={0x3, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x6, &(0x7f0000000200)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x13, 0xffffffffffffffff, 0x761ad000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r5, &(0x7f0000000080)=ANY=[@ANYRESHEX=r3, @ANYRES32=0x0, @ANYRESHEX=r0, @ANYRES32=0x0, @ANYRES16=r3, @ANYRES32=r1, @ANYRES8=r4, @ANYRESHEX], 0xffffff63)
sched_setaffinity(0x0, 0x0, 0x0)
io_uring_setup(0x74e5, &(0x7f0000000340)={0x0, 0x40000001})
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
listen(r6, 0x20000005)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
accept4(r6, 0x0, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB], 0x10}}, 0x20000004)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r8, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})

44.992899771s ago: executing program 6 (id=3501):
r0 = fanotify_init(0x1, 0x2)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x700, 0x0)
fanotify_mark(r0, 0x455, 0x40000008, r1, 0x0)
fanotify_mark(r0, 0x0, 0x8000038, r1, 0x0)
fanotify_mark(r0, 0x80, 0x20, r1, 0x0)
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r2, 0x0, 0x0, 0x7a00, 0x0, 0x3)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000000)={0x9, 0x9, 0x800a, 0x2, 0x6, 0x56d, 0x9, 0x8, <r3=>0x0}, &(0x7f0000000180)=0x20)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f00000001c0)={r3, @in={{0x2, 0x4e22, @broadcast}}}, &(0x7f0000000280)=0x84)
r4 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000c80)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x137, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r4, 0x82, 0x10, &(0x7f0000000040)=ANY=[@ANYRES8=r4])
syz_usb_ep_write$ath9k_ep1(r4, 0x82, 0x14, &(0x7f00000000c0)=ANY=[@ANYBLOB="0d4f000000ed5fb6311b8cdcd3c629045e3ac0dc9061630188eba6b05ad3bc9acb91b55e251b7d0ec236d8b12510cfb311bcba5599cb6a8a21f2f9c9e6e3a8b0c42d51580073096b6feb026fa16590b951b38f66d70f49a78aa4df9f80f1a5e7db5ce24e1c7156c6d1722b758eeae5fc44f0d36fdffebffa253b96d6871f7bace83e512c3400000013f4793e3b6a8d23"])

44.797387046s ago: executing program 5 (id=3502):
r0 = shmget$private(0x0, 0x13000, 0x1, &(0x7f0000feb000/0x13000)=nil)
syz_clone(0x40100000, &(0x7f0000000280), 0x0, &(0x7f00000000c0), &(0x7f0000000300), &(0x7f0000000340)="97ed329f65516ca8e604b51ce04a07aa926f9f873c14ae6efd340b89705e8b713ed779ad5053dc22fdfe436e21c071ecc2efa09a3b")
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x15, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000000080)=r1, 0x4)
shmat(r0, &(0x7f0000ff7000/0x3000)=nil, 0x400c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240))
ioctl$SIOCSIFHWADDR(r3, 0x8b04, &(0x7f0000000000)={'wlan1\x00', @random="c300"})
munmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000)
r4 = accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x0)
fcntl$F_GET_RW_HINT(r4, 0x40b, &(0x7f0000000040))
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$peeksig(0x4209, r5, &(0x7f0000000200)={0x1, 0x1, 0xfffffffffffffffb}, 0x0)
io_setup(0x22, &(0x7f00000003c0))
socket$rxrpc(0x21, 0x2, 0xa)
mremap(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)

42.840646856s ago: executing program 7 (id=3506):
openat$vmci(0xffffff9c, 0x0, 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r1, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)
ioctl$SNDCTL_DSP_SPEED(r1, 0xc0045009, &(0x7f0000000040))
ioctl$SNDCTL_DSP_RESET(r1, 0x5000, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x2, 0xfffff010}, {0x20, 0x0, 0x0, 0xfffff038}, {0x6}]}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x4000190, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f}}, 0x20)
openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
r2 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000000))
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000080))
r3 = socket(0x11, 0x800000003, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67728c75705f69643d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
read$FUSE(r4, &(0x7f0000002380)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f00000004c0)={0x50, 0x0, r5, {0x7, 0x9, 0x0, 0x18292}}, 0x50)
read$FUSE(r4, &(0x7f00000043c0)={0x2020, 0x0, <r6=>0x0}, 0x2020)
truncate(&(0x7f0000000080)='./file0\x00', 0x8cff)
syz_fuse_handle_req(r4, &(0x7f000000b1c0)="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", 0x2000, &(0x7f000000d8c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f000000d540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0xee00}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r4, &(0x7f0000006500)={0x50, 0x0, r6}, 0x50)
r7 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000600)={'team0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000f00)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x8, [], 0x0, [0x0, 0x40, 0x0, 0x4], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}}}}]}, 0x88}}, 0x0)

42.665523085s ago: executing program 5 (id=3507):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = socket$kcm(0xa, 0x6, 0x0)
setsockopt$sock_attach_bpf(r2, 0x10d, 0xa, &(0x7f0000000000), 0x4)

41.797538255s ago: executing program 7 (id=3511):
syz_open_dev$dri(&(0x7f00000000c0), 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000340)='syscall\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x7)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x40600, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x5)
pipe2(&(0x7f0000000840)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
splice(r1, 0x0, r2, 0x0, 0x1, 0x6)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000400)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100200037a6ee934b5f1add2400080003005e1c44e8e1c545a8fcfb2b46a45a6a76b3c262028588227851abfaba59014c8baf11f78f67ae39061e93c38d5dabc038556529dc543dfd50bee454096e03d353e083af6989989f63a6223d66758f3d4201883087f9b72141de213f2262a6ff8ac158f6e4c1f9ac0e4b26cb4a9d93a596f8eaa772ef7f45f9963c0b73588439d42bf397884a5b9e7fc4b5ad00221170ff9c4f", @ANYRES32=r6, @ANYBLOB="14002f80040003800c0002000001000000000000"], 0x30}}, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000380)={0x1d, 0x0, 0x1}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
unshare(0x22020600)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x882)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r8, 0x40605346, &(0x7f0000000180)={0x0, 0x0, {0xffffffffffffffff, 0x1}})
write$sndseq(r7, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)

41.333281473s ago: executing program 7 (id=3512):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000000c0), 0x4000000000001a7, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x42, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r3, 0x8b2a, &(0x7f0000000040))
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r4, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r5 = add_key$user(&(0x7f0000002100), &(0x7f0000002180)={'syz', 0x1}, &(0x7f00000021c0)='b', 0x1, 0xfffffffffffffffe)
r6 = add_key$keyring(&(0x7f0000000100), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r7 = add_key$user(&(0x7f0000000180), &(0x7f0000000100)={'syz', 0x1}, &(0x7f0000000400)="370c099069effa43de3e1404db09b4ce1ef77bde4b371532dd16447c1b13403656c86711f69e05e361e750026f23029a50d44299c7bf5c78dc5efae2d041016160e8bef7b30c05e298aa9572540dd950307987eef2115e1bcf512bea3410ca5a9e9f827e4b13490dbbd4fc5a45e0738b959acafd2c12861b45225bdbc2c9426ac3f614746b436fe86a72dc642dd67d970604a69b4f22cd0076beedc18056ab4bea4c825b69a7886d069c0ad7b77adcd5488684872b1bb9eb84586549e11b080468668e8fd0e52ce0705ae70200000082f2f1b26dbfd5d3ccd53e714c9ddcd3f33b1d80bdd42219d076", 0xe9, r6)
keyctl$dh_compute(0x17, &(0x7f0000000080)={r5, r7, r5}, &(0x7f0000000500)=""/219, 0xdb, &(0x7f00000003c0)={&(0x7f0000000200)={'sha384-avx\x00'}})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r4, 0xc0189372, &(0x7f0000000240)={{0x1, 0x1, 0x18, r1, {0x21000002}}, './file1\x00'})
cachestat(r4, &(0x7f0000000040), &(0x7f0000000080), 0x0)
ioctl(r4, 0x8b1a, &(0x7f0000000280)="d2cc5946bbbecad109a4ce4955c403c4c3492d5bfa4c1d3750d67f59c23cb74aebbcb9ebb655dac14e2c921f36b417187f87a28635ad3a08f7ca108bb70960b47ffc53daea5f78ead8ae6b3e8886e4605d356da3112eccb357f4cddcc24b8e00183cc8fb3eac8c39e82c2b51894023f2522daea069e800163da91c777835041241b7ae7bb5b6d24a7a1d672f0000a38778a0581d907cd7d1b7e3c93a3a5873206b42335ef1055ceeba6163dbf89402ab18998c5cccd793dc9a2a5383770f99ebf503b25aee89766df8a37041646f8dfca35a12b00946e312c68578ae10a665158c442d970bd9592a48a5a4cab71a4d5d04e8a3a0c022eb4df00031afccb38dde84b03ad41a3abcf21628d1a16aca54f334a302f57e0291")
bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000ec0)={'wpan0\x00'})

41.180260259s ago: executing program 6 (id=3513):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="7a0a00ff0000000071665000000000009500008700800000"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$pptp(0x18, 0x1, 0x2) (async)
socket$pptp(0x18, 0x1, 0x2)
fsopen(0x0, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0) (async)
ioctl$int_in(r1, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000b00)={0x800000000000085})
setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4) (async)
setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x1a, &(0x7f0000000200)={0x1, 'netdevsim0\x00'}, 0x18)
syz_emit_vhci(&(0x7f00000006c0)=ANY=[], 0x7)
socket(0x9, 0x3, 0xfffffffa)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x2, 0x0) (async)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000100))
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
dup3(r3, r2, 0x0) (async)
dup3(r3, r2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0) (async)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_open_dev$vim2m(&(0x7f0000000000), 0x4, 0x2) (async)
r5 = syz_open_dev$vim2m(&(0x7f0000000000), 0x4, 0x2)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000), 0xa002, 0x0)
socket(0x2, 0x80805, 0x0) (async)
r6 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r6, 0x84, 0x6d, 0x0, 0x0) (async)
getsockopt$bt_hci(r6, 0x84, 0x6d, 0x0, 0x0)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_opts(r7, 0x0, 0x480, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r5, 0xc0d05605, &(0x7f0000000140)={0x1, @pix={0x0, 0x0, 0x30314247}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

37.946454359s ago: executing program 5 (id=3514):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsopen(&(0x7f0000000000)='proc\x00', 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000180)={0x80, 0x7, 0x3, 0x8, 0xb, "b8a5a42327f8600b"})
openat$uinput(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000080)='io\x00')
read$hiddev(r5, &(0x7f0000000100)=""/100, 0x64)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r4, 0x7, 0x0, 0x0, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x16, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20002, 0x600a8}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_IGMP_VERSION={0x5, 0x2b, 0x69}]}}}]}, 0x3c}}, 0x24008040)

37.507629853s ago: executing program 9 (id=3516):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x1a103e43)
syz_emit_ethernet(0x3e, &(0x7f0000000140)={@local, @random="808458e38055", @void, {@ipv4={0x820, @tcp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x7, 0x2, 0x0, 0x0, 0x0, {[@exp_fastopen={0xfe, 0x4}, @mptcp=@mp_join={0x1e, 0x3, 0x9}]}}}}}}}, 0x0)

37.505254995s ago: executing program 7 (id=3517):
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f0000000000)={0x1, 0x1}, 0x2)
write$USERIO_CMD_REGISTER(r0, &(0x7f0000000100), 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)={0x44, r2, 0x1, 0x0, 0x0, {0x2a}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x58}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8}]}, 0x44}}, 0x0)
write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f0000000140)={0x2, 0xfa}, 0x2)
write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f0000000040)={0x2, 0x4}, 0x2)

37.255876523s ago: executing program 9 (id=3518):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000500), r0)
sendmsg$NFC_CMD_GET_SE(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14, r2, 0xf15}, 0x14}}, 0x0)

37.002159112s ago: executing program 9 (id=3519):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x41, 0x3f, 0x5f, 0x20, 0x61d, 0xc150, 0xce6f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x33, 0x0, 0x1, 0x18, 0x70, 0xfd, 0x0, [], [{{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x4}}]}}]}}]}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000040))
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000002a000b000000000000000000060000000400ecff0800018004008180"], 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000180), 0x414401, 0x0)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000140), 0xffffffffffffffb5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f00000000c0)=ANY=[], 0x8)
connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f00000000c0)='bridge0\x00', 0x10)
sendmmsg$inet6(r6, &(0x7f0000004b80)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="613697", 0x3}], 0x1}}], 0x1, 0x40000)
r7 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$alg(r7, &(0x7f00000002c0)=[{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000001680)='\b', 0x1}, {&(0x7f0000000440)="46b2ad1905f977d1bebaa83c55df26c3e5f9e362ad00cfa783fb3a2b690284581a580ae975015725255d5c0cb9c6a1f5eb3a89c16e06edbbddde9ba6fd5508de61e5a1b2a0278a6c979aee763ba59295945d693ec872583862c1e7160a9ddc4f274132c9a322827dac845502c6067bf1e7b7593a590da82954fd6bc1283bd02ff6f137", 0x83}, {&(0x7f00000005c0)="a495e5c45ccdaa2e4b3c251f76eccd1d3c4a4ad145e3435c20f2c9253e8504c0c5cd2fbd1027875b07380e4879dec5820ca1127b2b8f9bc2340edb44aa29ebb7caf56b0137faf08693f2ac64c65b1f86ee", 0x51}], 0x3, &(0x7f0000000400)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10}], 0x1, 0x0)
openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)

36.853405269s ago: executing program 7 (id=3520):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk', 0x1, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x8000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0xe, 0x9}}, './file0\x00'})
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_calipso(0x0, r2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r8 = accept4(r7, 0x0, 0x0, 0x0)
sendmmsg$alg(r8, &(0x7f0000004e00)=[{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000cc0)="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", 0x10d}], 0x1, &(0x7f0000000200)=[@assoc={0x18, 0x117, 0x4, 0x104}, @op={0x18, 0x117, 0x3, 0x1}], 0x30}], 0x1, 0x0)
recvmsg$can_j1939(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000000c0)=""/48, 0x30}, {&(0x7f00000001c0)=""/31, 0x1f}, {&(0x7f0000000400)=""/50, 0x32}, {&(0x7f0000000880)=""/156, 0x9c}], 0x4}, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
write$rfkill(r0, &(0x7f0000000040), 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r9}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='signal_generate\x00', r10}, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)

36.603926777s ago: executing program 6 (id=3521):
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
fchmod(r0, 0x20049549e2a2d659)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040), 0x10)
listen(r1, 0x0)
r2 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r2, &(0x7f0000000080), 0x10)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x5}, 0x8)
sendmmsg(r2, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)
r3 = accept4$unix(r1, 0x0, 0x0, 0x0)
recvfrom$unix(r3, &(0x7f0000000140)=""/263, 0x107, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x4174, &(0x7f0000000780)={0x0, 0x7e05, 0x10100}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r4, 0x567, 0x0, 0x0, 0x0, 0x0)
ftruncate(r0, 0x0)

36.318507095s ago: executing program 6 (id=3522):
syz_open_dev$dri(&(0x7f00000000c0), 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000340)='syscall\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x7)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x40600, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x5)
pipe2(&(0x7f0000000840)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
splice(r1, 0x0, r2, 0x0, 0x1, 0x6)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000400)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100200037a6ee934b5f1add2400080003005e1c44e8e1c545a8fcfb2b46a45a6a76b3c262028588227851abfaba59014c8baf11f78f67ae39061e93c38d5dabc038556529dc543dfd50bee454096e03d353e083af6989989f63a6223d66758f3d4201883087f9b72141de213f2262a6ff8ac158f6e4c1f9ac0e4b26cb4a9d93a596f8eaa772ef7f45f9963c0b73588439d42bf397884a5b9e7fc4b5ad00221170ff9c4f", @ANYRES32=r6, @ANYBLOB="14002f80040003800c0002000001000000000000"], 0x30}}, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000380)={0x1d, 0x0, 0x1}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
unshare(0x22020600)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x882)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r8, 0x40605346, &(0x7f0000000180)={0x0, 0x0, {0xffffffffffffffff, 0x1}})
write$sndseq(r7, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)

36.057775257s ago: executing program 5 (id=3523):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
epoll_create1(0x99344c68e635bb3)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r3, &(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x0, &(0x7f0000000140)='gquota\x00\x00')
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=@updpolicy={0xb8, 0x19, 0xfd3649826d894c67, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2b}, {}, {}, 0x8000}}, 0xb8}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000580)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x104}]}, @NFT_MSG_NEWSETELEM={0x6c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x40, 0x3, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x30, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_UNIT={0xc}, @NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x9}]}}}]}]}]}]}, @NFT_MSG_DELRULE={0x140, 0x8, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0x7}, [@NFTA_RULE_USERDATA={0x2c, 0x7, 0x1, 0x0, "3d71b32682bb15897c01d4fa66a8175e9872e4cc0d9b3832de08e08e24df369ec0a31c82067f6a31"}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x2}, @NFTA_RULE_USERDATA={0x4a, 0x7, 0x1, 0x0, "5c890b690e2214dac90362bb4f8e989a74bdc1985458a1e6868adb9ac469290098443d437b475c9c2a18de6b34f9e8558b70644604cadd65d58ce8b25f35723200cfaabbf185"}, @NFTA_RULE_COMPAT={0x3c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x88}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x32}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x15}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2b}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x29}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x883e}]}, @NFTA_RULE_USERDATA={0x44, 0x7, 0x1, 0x0, "bef2077827d68611293f798db07a28cc2c1202c7e2d73fcc3d77ee08e72db9248d17c4cb04a4ef18eb8f1f24c9c36d7d09b85546d932ec0960261f57c866e38f"}]}, @NFT_MSG_DELRULE={0x234, 0x8, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x108, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @hash={{0x9}, @void}}, {0xc, 0x1, 0x0, 0x1, @rt={{0x7}, @void}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0x48, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_IMMEDIATE_DREG={0x8}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xa}]}}}, {0x3c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x10}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x33}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_DREG={0x8}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x10, 0x1, 0x0, 0x1, @exthdr={{0xb}, @void}}, {0x24, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RANGE_OP={0x8}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x1c, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_MASQ_FLAGS={0x8, 0x1, 0x1, 0x0, 0x4}]}}}]}, @NFTA_RULE_EXPRESSIONS={0x118, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @numgen={{0xb}, @void}}, {0x48, 0x1, 0x0, 0x1, @fwd={{0x8}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_FWD_NFPROTO={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0x14}, @NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0xe}, @NFTA_FWD_SREG_DEV={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_FWD_SREG_ADDR={0x8}]}}}, {0x60, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x50, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0xf0}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x9}, @NFTA_QUOTA_FLAGS={0x8}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0x8}, @NFTA_QUOTA_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_QUOTA_CONSUMED={0xc, 0x4, 0x1, 0x0, 0x80000001}]}}}, {0x10, 0x1, 0x0, 0x1, @tproxy={{0xb}, @void}}, {0x4c, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}}}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x46c}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00))
r7 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
ftruncate(0xffffffffffffffff, 0xfbff)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
r8 = ioctl$UDMABUF_CREATE(r7, 0x40187542, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r8, 0x40086200, &(0x7f0000000440)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf20000000000000160005003f1b48013d030100000000009500000000000000bc26000000000000bf67000000000000070600000fff07006702000003000000360600000ee600f0bf052000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

34.055004099s ago: executing program 6 (id=3524):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = socket$kcm(0xa, 0x6, 0x0)
setsockopt$sock_attach_bpf(r2, 0x10d, 0xa, &(0x7f0000000000), 0x4)

33.988858713s ago: executing program 7 (id=3525):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000300)=ANY=[@ANYBLOB="f5000000000000001b"])
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f00000000c0)=0x1, r4, 0x0, 0x1, 0x4}}, 0x20)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r8 = dup(r7)
ioctl$KVM_SET_MSRS(r8, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB="820000000000000084000040"])
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r9, &(0x7f0000000040)=ANY=[@ANYBLOB='5'], 0x118)
write$RDMA_USER_CM_CMD_LISTEN(r9, &(0x7f0000000000)={0x7, 0x8, 0xfa00, {r4, 0x9}}, 0x10)

33.53144961s ago: executing program 5 (id=3526):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xcb65000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r4 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r4, 0x0, 0x0)
connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r4, &(0x7f00000092c0), 0x4ff, 0x0)

31.085024694s ago: executing program 9 (id=3528):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x10, &(0x7f0000001280), 0x4)
sendmsg$inet(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000013c0)="d080", 0x2}], 0x1}, 0x20000801)
recvmsg(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000280)=""/97, 0x61}], 0x1, &(0x7f0000000300)=""/22, 0x16}, 0x20102)
bind(r0, &(0x7f0000000280)=@in6={0xa, 0x4e22, 0x4, @mcast2, 0x7ff}, 0x80)
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r3, &(0x7f0000001400)={0x2020}, 0x2020)

30.798543262s ago: executing program 9 (id=3529):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
truncate(&(0x7f0000000000)='./file0\x00', 0x345)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000300)={0x88, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x6b, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @broadcast, @device_a, @initial, {}, @value=@ver_80211n={0x0, 0x7f7f, 0x2, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1}}, 0x0, @random=0x24, 0x2, @val={0x0, 0x6, @default_ap_ssid}, @val, @void, @val={0x4, 0x6, {0x80, 0x0, 0x3, 0x7}}, @void, @void, @val={0x25, 0x3, {0x1, 0x9c5fa755e4287b74, 0x9}}, @val={0x2a, 0x1, {0x0, 0x1, 0x1}}, @void, @val={0x2d, 0x1a, {0x20, 0x2, 0x4, 0x0, {0x4000001fc, 0x7, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2}, 0x7cfadfd09456c782, 0x401, 0x7}}, @void, @val={0x71, 0x7, {0x1, 0x1, 0x1, 0x8, 0x1, 0xd, 0x41}}, @void}}]}, 0x88}}, 0x0)

30.627781804s ago: executing program 9 (id=3530):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xcb65000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r4 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r4, 0x0, 0x0)
connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r4, &(0x7f00000092c0), 0x4ff, 0x0)

30.42635325s ago: executing program 5 (id=3531):
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
pwrite64(r0, &(0x7f00000008c0)='/', 0x1, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x9, 0x0)
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f00000005c0)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61965b7e, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x2, 0x0, 0x0, 0xc, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x7f, 0x0, 0x1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x199, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc], [0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x785234a6, 0x0, 0x0, 0x1001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x8000]}, 0x45c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
statx(0xffffffffffffff9c, 0x0, 0x400, 0x4, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in=@loopback, 0x4e22, 0x0, 0x1, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {0x0, 0x0, 0x0, 0x6}, 0x2253, 0x6e6bb0}, {{@in6=@local, 0x4d2, 0x6c}, 0x0, @in6=@private2, 0x0, 0x0, 0x2}}, 0xe8)
syz_genetlink_get_family_id$netlbl_unlabel(0x0, r5)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r5, 0x0, 0x4000)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r6, 0x0)

29.046424892s ago: executing program 4 (id=3532):
write(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x2, 0xa, 0x2) (async)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) (async)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000000000005"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0)
open_by_handle_at(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000002"], 0x0) (async)
r2 = dup(r0) (async)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bind$vsock_stream(r4, &(0x7f0000000000)={0x10}, 0x10)
listen(r3, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x13, r2, 0x558f3000) (async)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r2) (async)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x3041c814}, 0xc, &(0x7f00000001c0)={&(0x7f00000073c0)=ANY=[@ANYBLOB="a4710000", @ANYRES16=r5, @ANYBLOB="08002cd27000fcdbdf258300000008000300", @ANYRES32=r6, @ANYBLOB="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"], 0x71a4}, 0x1, 0x0, 0x0, 0x4048010}, 0x24008000) (async)
io_setup(0x8, &(0x7f0000000000))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) (async)
ioctl$BLKRRPART(r2, 0x125f, 0x0) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000006ec0)=@newtaction={0x4fc, 0x30, 0x1, 0x0, 0x0, {}, [{0x4e8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_police={0x478, 0x2, 0x0, 0x0, {{0xb}, {0x44c, 0x2, 0x0, 0x1, [[@TCA_POLICE_AVRATE={0x8, 0x4, 0x478c}], [@TCA_POLICE_RATE={0x404, 0x2, [0x400, 0x6, 0x7fff, 0x3, 0x8, 0x3, 0x7, 0x5be47b, 0xde, 0x7, 0x3, 0x20, 0x7fffffff, 0xfffffe01, 0x3, 0x0, 0x5, 0xa89, 0x400, 0x0, 0x6, 0x1, 0x1, 0x8, 0x9, 0x0, 0x0, 0x7, 0x9, 0x5, 0x5, 0x1, 0x0, 0x0, 0x6, 0x8, 0x7fffffff, 0x3, 0xd090, 0x3, 0xd9, 0x6, 0x0, 0x2, 0xfff, 0x1, 0x4, 0xa, 0x4, 0x2, 0x0, 0x5, 0x4874, 0x10, 0x9, 0xb611, 0x35, 0x8e6b, 0x3, 0x6, 0x8, 0x9, 0x6, 0x0, 0xa34f, 0x401, 0x50, 0x1180000, 0x7, 0xd, 0xffff8001, 0x401, 0x9, 0x4, 0x6, 0xbc7, 0xac0e, 0x80, 0x1, 0x9, 0x1, 0xa5fd, 0x594, 0x1, 0x99, 0x1, 0x7, 0xc032, 0x4, 0x0, 0x4, 0x0, 0x917, 0x10001, 0x87c, 0x7, 0x7ff, 0x0, 0xfffffffb, 0xdfb, 0x6, 0x3, 0x8, 0x9, 0x100, 0x4, 0x3, 0xee, 0x6, 0x7, 0x1, 0xa9, 0x8000, 0x0, 0x6, 0x9, 0x5, 0xff, 0x10, 0xfffffff6, 0x401, 0xb, 0x25cb, 0x0, 0x5, 0xb, 0x0, 0x3, 0xc, 0x800, 0x5, 0xff, 0x4, 0x10000, 0x3, 0x8, 0x4, 0x3, 0x6, 0xe56fb13, 0x7, 0x4, 0xff, 0x8, 0x4, 0x4, 0xaf, 0x1, 0x95f, 0x2, 0xffffffff, 0x1, 0x1, 0x101, 0x8, 0x7ff, 0x0, 0x119, 0x7, 0x1, 0x4, 0x71e, 0x7, 0x4, 0x1, 0xfffffff8, 0x1000, 0x3831, 0x204000, 0x3, 0x1, 0x6, 0x6, 0x4, 0x7, 0x401, 0x3, 0x7, 0x5, 0x80000000, 0x4, 0x9ff5, 0x5, 0x717, 0xec, 0xa, 0x26b, 0x0, 0xa814, 0x1ff, 0x9, 0x6, 0x0, 0x7, 0x4, 0x3, 0xd, 0x9, 0x3, 0x42b1, 0x1ff, 0x1, 0x2, 0xfffff38d, 0xf, 0xf6b2, 0x7, 0x7, 0x6, 0x2, 0x7ff, 0x7, 0x0, 0xe4, 0x2b57, 0x0, 0x1, 0x0, 0x5, 0x1, 0x80000000, 0x80000000, 0x5, 0x959, 0x3ff, 0xfffffc01, 0x0, 0x3, 0x2, 0x9, 0x8, 0x9, 0x5, 0x81, 0x3, 0x99c, 0x3, 0xa, 0x40, 0x2, 0xa0c, 0x68, 0x6, 0x7ff, 0xfffffff9, 0xfffffffa, 0x9, 0x1, 0x10001, 0xf, 0x6, 0x7, 0x2, 0x7, 0x0, 0x6]}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x7, 0x6, 0x7ff, 0x5, 0xc27, {0x8, 0x0, 0x6, 0x3, 0xfff, 0x6}, {0x9, 0x2, 0x9800, 0x2, 0x6}, 0x5f78, 0x7f, 0x8}}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x4fc}}, 0x0)
r8 = socket$inet(0x2, 0xa, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r9 = memfd_create(&(0x7f0000000840)='5\xae`u?CZ=c\xad\xf91\x12s\a\xd7\x1c\xf9+\x01', 0x6) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
fallocate(r9, 0x0, 0x1000000, 0x5)
read$FUSE(r9, &(0x7f00000029c0)={0x2020}, 0x2020)
ioctl$sock_inet_SIOCSARP(r8, 0x8953, &(0x7f0000000080)={{0x2, 0x0, @loopback}, {0x0, @random="32b2c9c6645a"}, 0x2f, {0x2, 0x0, @empty}})

28.904884519s ago: executing program 4 (id=3533):
unshare(0x20400)
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x5, 0x401d031, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
r3 = socket(0x2b, 0x1, 0x1)
sendmmsg$sock(r3, &(0x7f0000001280)=[{{&(0x7f0000000240)=@in6={0xa, 0x0, 0x0, @dev, 0x5}, 0x80, 0x0}}], 0x1, 0x20000001)
connect$netlink(r3, &(0x7f0000000000)=@unspec, 0xc)

27.967275868s ago: executing program 4 (id=3534):
syz_open_dev$dri(&(0x7f00000000c0), 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000340)='syscall\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x7)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x40600, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x5)
pipe2(&(0x7f0000000840)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
splice(r1, 0x0, r2, 0x0, 0x1, 0x6)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000400)={'wpan0\x00', <r6=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100200037a6ee934b5f1add2400080003005e1c44e8e1c545a8fcfb2b46a45a6a76b3c262028588227851abfaba59014c8baf11f78f67ae39061e93c38d5dabc038556529dc543dfd50bee454096e03d353e083af6989989f63a6223d66758f3d4201883087f9b72141de213f2262a6ff8ac158f6e4c1f9ac0e4b26cb4a9d93a596f8eaa772ef7f45f9963c0b73588439d42bf397884a5b9e7fc4b5ad00221170ff9c4f3ab72442d434f23a5df8966f", @ANYRES32=r6, @ANYBLOB="14002f80040003800c0002000001000000000000"], 0x30}}, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000380)={0x1d, 0x0, 0x1}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
unshare(0x22020600)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x882)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r8, 0x40605346, &(0x7f0000000180)={0x0, 0x0, {0xffffffffffffffff, 0x1}})
write$sndseq(r7, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)

25.170724883s ago: executing program 4 (id=3535):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000180)=0x80000)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r4, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(0xffffffffffffffff, 0x47f9, 0x0, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0x8, 0x3, 0x248, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1b0, 0xffffffff, 0xffffffff, 0x1b0, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'veth1\x00', 'veth1_virt_wifi\x00'}, 0x6, 0x98, 0xe0, 0x0, {}, [@common=@unspec=@addrtype1={{0x28}, {0x0, 0x0, 0x4}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@rand_addr=0x64010101, 'team_slave_0\x00', {0x8000000000000000}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @remote, 0x0, 0x0, [0x0, 0x0, 0x0, 0x10]}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
ioctl$TIOCL_BLANKSCREEN(0xffffffffffffffff, 0x541c, 0x0)

19.627985309s ago: executing program 6 (id=3536):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$inet_int(r0, 0x0, 0x33, &(0x7f0000000080)=0x7, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bond0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f00000002c0), 0x0, 0x4, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)
r3 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382)
r4 = memfd_create(&(0x7f0000001e00)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xefE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xd1\xa7@\xa1_B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7<\x7f\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xb0\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcd\x90\x95\xdd\x8a\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\fe\x84\x7f\x10Y,\xe6\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xab>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1d<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4M\xc7\xfa\f\b\x8f\xc4\xbe\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaa\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00w\xa8wW\xb7\a\xda\xe1\xe0\x9b\xcd\x1dM\t\x86.\xc5\x06A\x17\xd3\xb7\xd7\xe8\xf5\xf4\xa48\xa1\x8cp\x89\x95y\x14\xa5k/\xceu\xad\x7f\x04Q\x96[@\xfb\xe4\x11\x88\xda}\xcd\xe8!\xb8\x92\xa14c\x85b\xd9\f\xbf\x95J\xa1cU\xf9\xa3\x11\xad\xaa\x00vZ]An\xba3\xde}G\x95qZ\xff\x1e\x9d\xd8\x86\x9a\xf8\xca\x1dMiJ\x0f\xed\xbb\x1a\xf5\xf2\x90j\x13\xdc^!\xe2Z\':\xb6\x19js|\xb5\xdf\xe7\xe3\xff\x17+\x96\xae\t\xb7\xcd#s5VTT\x93hD\xe9`\xfbl\xc4\xf9\xe7_\xb4\xc4[%B\x85\x91\x0f\xef\x15)je\xc9.\xec\xb7@\a\xa1\x83\xe3/\x04bw\x00\x00\x00\x00\x00\x00\x00\x00\x00\xda\xca\x1fM\x15\x9c\xe0}\x86,\xef=s(\xc0\x03\xf1H\xa0\xa9\xfblV\x81\xd1\xe3KQlR\xbc\xc9\'O}+e\xc3\xabr?v\x9dMS\xa9<\fq3\xe8\xe2I\x9f\x9b\x11\xa4\xc0\xbdV;\x83Y\x86$\r\a%\x1aV\x00\x00\x00\x00\x8f:R9\xe3HU_\xebJ\xc4C\v)\x87[\xa0\xc0\x90\xb0\x9f\x8f\xae |m\x85m\xe6\xa3~\xa4', 0x3)
pwritev(r4, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000380)="b9", 0x1}], 0x2, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r3, r3, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x4, 0x0, 0x13, 0x9, "4b8b3ea46929dfed0b2f34380d308f95a023d009855a94a9fe9549918ae7fd1f0ece5bc61375b108403362cfe0f4fccffb1b6a2115354d4df15d017a3f00", "2363f18d9acc6c25af21ca2af6d2e80e4caadd6d126cfb80c92dd817d44dcdec", [0x1, 0x7]})
ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x0, 0x0}, 0x10)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
ioctl$KVM_CREATE_PIT2(r6, 0x4040ae77, &(0x7f0000000040))
syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r6, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}]})
pipe(&(0x7f0000000080))
fsetxattr$smack_xattr_label(r0, &(0x7f0000000200)='security.SMACK64\x00', &(0x7f0000000240)={'maps\x00'}, 0x6, 0x0)

19.605431392s ago: executing program 4 (id=3537):
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r0=>0x0})
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140), 0x4)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(0xffffffffffffffff, &(0x7f00000000c0)={0x1d, r0, 0x1, {0x0, 0xff, 0x3}, 0xfd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
socket$inet6_tcp(0xa, 0x1, 0x0)
bind$can_j1939(r1, &(0x7f0000000080)={0x1d, r0}, 0x18)
sendmsg$can_j1939(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x1d, r0, 0x1, {0x0, 0x0, 0x3}}, 0x18, &(0x7f0000000180)={&(0x7f0000000280)="92", 0x1}, 0x1, 0x0, 0x0, 0x400c4}, 0x0)

18.500626368s ago: executing program 37 (id=3525):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000300)=ANY=[@ANYBLOB="f5000000000000001b"])
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f00000000c0)=0x1, r4, 0x0, 0x1, 0x4}}, 0x20)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r8 = dup(r7)
ioctl$KVM_SET_MSRS(r8, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB="820000000000000084000040"])
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r9, &(0x7f0000000040)=ANY=[@ANYBLOB='5'], 0x118)
write$RDMA_USER_CM_CMD_LISTEN(r9, &(0x7f0000000000)={0x7, 0x8, 0xfa00, {r4, 0x9}}, 0x10)

15.237733325s ago: executing program 38 (id=3530):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xcb65000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r4 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r4, 0x0, 0x0)
connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r4, &(0x7f00000092c0), 0x4ff, 0x0)

15.091058532s ago: executing program 39 (id=3531):
r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0)
pwrite64(r0, &(0x7f00000008c0)='/', 0x1, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
lseek(r0, 0x9, 0x0)
sendfile(r0, r0, &(0x7f00000001c0), 0x7fa)
symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f00000005c0)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61965b7e, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x2, 0x0, 0x0, 0xc, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x7f, 0x0, 0x1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x199, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc], [0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x785234a6, 0x0, 0x0, 0x1001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x8000]}, 0x45c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
statx(0xffffffffffffff9c, 0x0, 0x400, 0x4, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in=@loopback, 0x4e22, 0x0, 0x1, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {0x0, 0x0, 0x0, 0x6}, 0x2253, 0x6e6bb0}, {{@in6=@local, 0x4d2, 0x6c}, 0x0, @in6=@private2, 0x0, 0x0, 0x2}}, 0xe8)
syz_genetlink_get_family_id$netlbl_unlabel(0x0, r5)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r5, 0x0, 0x4000)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r6, 0x0)

15.065828527s ago: executing program 4 (id=3541):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x20001400)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{}, &(0x7f0000000580), 0x0}, 0x20)
ioctl$TUNSETOFFLOAD(r2, 0x4010744d, 0x20000000)
pipe2$9p(&(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r5 = dup(r4)
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r5, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0)
write$FUSE_NOTIFY_POLL(r5, &(0x7f0000000340)={0x18}, 0x18)
write$FUSE_ENTRY(r5, &(0x7f0000000380)={0x90}, 0x90)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
fremovexattr(r5, &(0x7f0000000040)=@known='security.apparmor\x00')
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r6=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f00000001c0)={r6, <r7=>0x0, <r8=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000380)={0x0, 0x0, r7, r8, 0x101, 0x101, 0x8000, 0x8, {0x4, 0x80, 0x401, 0xa, 0xc4, 0x6, 0x7, 0xa, 0x9, 0x3, 0x7, 0x1f, 0x5, 0x3, "ecf318201d01abfc8686beeb0c4c044c80c8a6eda2619b460e2945292111873e"}})

4.48900569s ago: executing program 40 (id=3536):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$inet_int(r0, 0x0, 0x33, &(0x7f0000000080)=0x7, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bond0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f00000002c0), 0x0, 0x4, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)
r3 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382)
r4 = memfd_create(&(0x7f0000001e00)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xefE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xd1\xa7@\xa1_B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7<\x7f\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xb0\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcd\x90\x95\xdd\x8a\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\fe\x84\x7f\x10Y,\xe6\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xab>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1d<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4M\xc7\xfa\f\b\x8f\xc4\xbe\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaa\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00w\xa8wW\xb7\a\xda\xe1\xe0\x9b\xcd\x1dM\t\x86.\xc5\x06A\x17\xd3\xb7\xd7\xe8\xf5\xf4\xa48\xa1\x8cp\x89\x95y\x14\xa5k/\xceu\xad\x7f\x04Q\x96[@\xfb\xe4\x11\x88\xda}\xcd\xe8!\xb8\x92\xa14c\x85b\xd9\f\xbf\x95J\xa1cU\xf9\xa3\x11\xad\xaa\x00vZ]An\xba3\xde}G\x95qZ\xff\x1e\x9d\xd8\x86\x9a\xf8\xca\x1dMiJ\x0f\xed\xbb\x1a\xf5\xf2\x90j\x13\xdc^!\xe2Z\':\xb6\x19js|\xb5\xdf\xe7\xe3\xff\x17+\x96\xae\t\xb7\xcd#s5VTT\x93hD\xe9`\xfbl\xc4\xf9\xe7_\xb4\xc4[%B\x85\x91\x0f\xef\x15)je\xc9.\xec\xb7@\a\xa1\x83\xe3/\x04bw\x00\x00\x00\x00\x00\x00\x00\x00\x00\xda\xca\x1fM\x15\x9c\xe0}\x86,\xef=s(\xc0\x03\xf1H\xa0\xa9\xfblV\x81\xd1\xe3KQlR\xbc\xc9\'O}+e\xc3\xabr?v\x9dMS\xa9<\fq3\xe8\xe2I\x9f\x9b\x11\xa4\xc0\xbdV;\x83Y\x86$\r\a%\x1aV\x00\x00\x00\x00\x8f:R9\xe3HU_\xebJ\xc4C\v)\x87[\xa0\xc0\x90\xb0\x9f\x8f\xae |m\x85m\xe6\xa3~\xa4', 0x3)
pwritev(r4, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000380)="b9", 0x1}], 0x2, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r3, r3, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x4, 0x0, 0x13, 0x9, "4b8b3ea46929dfed0b2f34380d308f95a023d009855a94a9fe9549918ae7fd1f0ece5bc61375b108403362cfe0f4fccffb1b6a2115354d4df15d017a3f00", "2363f18d9acc6c25af21ca2af6d2e80e4caadd6d126cfb80c92dd817d44dcdec", [0x1, 0x7]})
ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x0, 0x0}, 0x10)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
ioctl$KVM_CREATE_PIT2(r6, 0x4040ae77, &(0x7f0000000040))
syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r6, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}]})
pipe(&(0x7f0000000080))
fsetxattr$smack_xattr_label(r0, &(0x7f0000000200)='security.SMACK64\x00', &(0x7f0000000240)={'maps\x00'}, 0x6, 0x0)

0s ago: executing program 41 (id=3541):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x20001400)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{}, &(0x7f0000000580), 0x0}, 0x20)
ioctl$TUNSETOFFLOAD(r2, 0x4010744d, 0x20000000)
pipe2$9p(&(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r5 = dup(r4)
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r5, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0)
write$FUSE_NOTIFY_POLL(r5, &(0x7f0000000340)={0x18}, 0x18)
write$FUSE_ENTRY(r5, &(0x7f0000000380)={0x90}, 0x90)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
fremovexattr(r5, &(0x7f0000000040)=@known='security.apparmor\x00')
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r6=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f00000001c0)={r6, <r7=>0x0, <r8=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000380)={0x0, 0x0, r7, r8, 0x101, 0x101, 0x8000, 0x8, {0x4, 0x80, 0x401, 0xa, 0xc4, 0x6, 0x7, 0xa, 0x9, 0x3, 0x7, 0x1f, 0x5, 0x3, "ecf318201d01abfc8686beeb0c4c044c80c8a6eda2619b460e2945292111873e"}})

kernel console output (not intermixed with test programs):

descriptor of length 0, skipping remainder of the config
[ 1005.667976][ T5873] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1005.724371][ T5873] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1005.787145][ T5873] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1005.851129][ T5873] usb 6-1: SerialNumber: syz
[ 1006.450398][T17629] /dev/sg0: Can't lookup blockdev
[ 1006.462794][T17630] /dev/sg0: Can't lookup blockdev
[ 1006.673957][T17628] netlink: 5312 bytes leftover after parsing attributes in process `syz.9.2907'.
[ 1006.934141][    C1] hrtimer: interrupt took 50569 ns
[ 1006.958240][T17603] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1007.099268][T17603] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1007.188726][ T5873] usb 6-1: 0:2 : does not exist
[ 1007.212304][ T5873] usb 6-1: USB disconnect, device number 30
[ 1007.389586][T17637] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[ 1007.407153][T17352] udevd[17352]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1008.658101][T17637] vcan0: tx drop: invalid da for name 0x0000000000000001
[ 1009.284706][T17664] FAULT_INJECTION: forcing a failure.
[ 1009.284706][T17664] name failslab, interval 1, probability 0, space 0, times 0
[ 1009.298213][T17664] CPU: 1 UID: 0 PID: 17664 Comm: syz.9.2914 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1009.308996][T17664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1009.319067][T17664] Call Trace:
[ 1009.322362][T17664]  <TASK>
[ 1009.325300][T17664]  dump_stack_lvl+0x241/0x360
[ 1009.330000][T17664]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1009.335213][T17664]  ? __pfx__printk+0x10/0x10
[ 1009.339822][T17664]  ? __kmalloc_cache_noprof+0x48/0x390
[ 1009.345296][T17664]  ? __pfx___might_resched+0x10/0x10
[ 1009.350600][T17664]  should_fail_ex+0x3b0/0x4e0
[ 1009.355293][T17664]  should_failslab+0xac/0x100
[ 1009.359989][T17664]  __kmalloc_cache_noprof+0x70/0x390
[ 1009.365280][T17664]  ? mon_bin_open+0xe0/0x500
[ 1009.369887][T17664]  mon_bin_open+0xe0/0x500
[ 1009.374327][T17664]  chrdev_open+0x521/0x600
[ 1009.378767][T17664]  ? __pfx_chrdev_open+0x10/0x10
[ 1009.383723][T17664]  ? __pfx_chrdev_open+0x10/0x10
[ 1009.388677][T17664]  do_dentry_open+0xbe1/0x1b70
[ 1009.393473][T17664]  vfs_open+0x3e/0x330
[ 1009.397566][T17664]  path_openat+0x2c84/0x3590
[ 1009.402204][T17664]  ? __pfx_path_openat+0x10/0x10
[ 1009.407177][T17664]  do_filp_open+0x27f/0x4e0
[ 1009.411701][T17664]  ? __pfx_do_filp_open+0x10/0x10
[ 1009.416742][T17664]  ? do_raw_spin_lock+0x14f/0x370
[ 1009.421820][T17664]  do_sys_openat2+0x13e/0x1d0
[ 1009.426512][T17664]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1009.431721][T17664]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1009.437709][T17664]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1009.444053][T17664]  __x64_sys_openat+0x247/0x2a0
[ 1009.448916][T17664]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1009.454320][T17664]  do_syscall_64+0xf3/0x230
[ 1009.458845][T17664]  ? clear_bhb_loop+0x35/0x90
[ 1009.463534][T17664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1009.469441][T17664] RIP: 0033:0x7f1f33b84680
[ 1009.473866][T17664] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[ 1009.493481][T17664] RSP: 002b:00007f1f319d4b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 1009.501910][T17664] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1f33b84680
[ 1009.509910][T17664] RDX: 0000000000000000 RSI: 00007f1f319d4c10 RDI: 00000000ffffff9c
[ 1009.517908][T17664] RBP: 00007f1f319d4c10 R08: 0000000000000000 R09: 00236e6f6d627375
[ 1009.525895][T17664] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1009.533887][T17664] R13: 0000000000000000 R14: 00007f1f33d76160 R15: 00007ffe82554568
[ 1009.541896][T17664]  </TASK>
[ 1009.545053][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1010.206665][T17665] /dev/sg0: Can't lookup blockdev
[ 1012.060572][T17672] binder: 17671:17672 ioctl 4018620d 0 returned -22
[ 1013.294286][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1014.151666][ T6114] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1014.589726][ T6114] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1014.639812][ T5821] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1014.649739][ T5821] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1014.658409][ T5821] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1014.667989][ T5821] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1014.676553][ T5821] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1014.683839][ T5821] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1014.702190][T13281] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1014.709631][T13281] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1014.718853][T13281] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1014.727802][T13281] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1014.735382][T13281] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1014.742811][T13281] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1015.538954][T17726] /dev/sg0: Can't lookup blockdev
[ 1016.857530][ T6114] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1016.869020][T17736] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[ 1016.907886][ T5821] Bluetooth: hci1: command tx timeout
[ 1017.111174][ T6114] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1017.126281][T17736] vcan0: tx drop: invalid da for name 0x0000000000000001
[ 1017.211318][T17713] chnl_net:caif_netlink_parms(): no params data found
[ 1017.929810][T17713] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1017.963641][T17713] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1017.976447][T17713] bridge_slave_0: entered allmulticast mode
[ 1018.243195][T17713] bridge_slave_0: entered promiscuous mode
[ 1018.983499][T17765] slcan: can't register candev
[ 1018.988531][T17765] Falling back ldisc for ttyS3.
[ 1018.997067][ T5821] Bluetooth: hci1: command tx timeout
[ 1019.014960][T17713] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1019.047088][T17713] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1019.107556][T17713] bridge_slave_1: entered allmulticast mode
[ 1019.136404][T17713] bridge_slave_1: entered promiscuous mode
[ 1019.150041][T17750] syz.6.2936: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1019.214383][T17750] CPU: 1 UID: 0 PID: 17750 Comm: syz.6.2936 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1019.225183][T17750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1019.235241][T17750] Call Trace:
[ 1019.238519][T17750]  <TASK>
[ 1019.241445][T17750]  dump_stack_lvl+0x241/0x360
[ 1019.246131][T17750]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1019.251327][T17750]  ? __pfx__printk+0x10/0x10
[ 1019.255917][T17750]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[ 1019.262333][T17750]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[ 1019.268841][T17750]  warn_alloc+0x278/0x410
[ 1019.273179][T17750]  ? __pfx_warn_alloc+0x10/0x10
[ 1019.278033][T17750]  ? translate_table+0x174/0x2330
[ 1019.283050][T17750]  ? __get_vm_area_node+0x1c8/0x2d0
[ 1019.288243][T17750]  ? __get_vm_area_node+0x25c/0x2d0
[ 1019.293438][T17750]  __vmalloc_node_range_noprof+0x62f/0x1380
[ 1019.299326][T17750]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1019.305055][T17750]  ? rcu_is_watching+0x15/0xb0
[ 1019.309819][T17750]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1019.316151][T17750]  ? rcu_is_watching+0x15/0xb0
[ 1019.321011][T17750]  ? trace_kmalloc+0x1f/0xd0
[ 1019.325607][T17750]  ? __kmalloc_node_noprof+0x2ad/0x4d0
[ 1019.331070][T17750]  ? __kvmalloc_node_noprof+0x72/0x190
[ 1019.336536][T17750]  __kvmalloc_node_noprof+0x142/0x190
[ 1019.341912][T17750]  ? translate_table+0x174/0x2330
[ 1019.346937][T17750]  translate_table+0x174/0x2330
[ 1019.351812][T17750]  ? __pfx_translate_table+0x10/0x10
[ 1019.357092][T17750]  ? __might_fault+0xaa/0x120
[ 1019.361767][T17750]  ? __pfx_lock_release+0x10/0x10
[ 1019.366967][T17750]  ? __virt_addr_valid+0x183/0x530
[ 1019.372073][T17750]  ? __might_fault+0xaa/0x120
[ 1019.376745][T17750]  ? __might_fault+0xc6/0x120
[ 1019.381421][T17750]  ? _copy_from_user+0x99/0xc0
[ 1019.386185][T17750]  ? copy_from_sockptr_offset+0x6b/0xb0
[ 1019.391759][T17750]  do_ip6t_set_ctl+0xe4c/0x1270
[ 1019.396625][T17750]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1019.402524][T17750]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[ 1019.407916][T17750]  ? __pfx_lock_release+0x10/0x10
[ 1019.412941][T17750]  ? rcu_is_watching+0x15/0xb0
[ 1019.417707][T17750]  ? trace_contention_end+0x3c/0x120
[ 1019.423005][T17750]  ? __mutex_unlock_slowpath+0x21e/0x790
[ 1019.428641][T17750]  ? __pfx___mutex_lock+0x10/0x10
[ 1019.433670][T17750]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1019.439659][T17750]  nf_setsockopt+0x295/0x2c0
[ 1019.444268][T17750]  rawv6_setsockopt+0x327/0x740
[ 1019.449137][T17750]  ? __pfx_rawv6_setsockopt+0x10/0x10
[ 1019.454514][T17750]  ? __pfx_lock_acquire+0x10/0x10
[ 1019.459549][T17750]  ? sock_common_setsockopt+0x37/0xc0
[ 1019.464950][T17750]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1019.470857][T17750]  do_sock_setsockopt+0x3af/0x720
[ 1019.475890][T17750]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1019.481434][T17750]  ? __fget_files+0x395/0x410
[ 1019.486109][T17750]  ? __fget_files+0x2a/0x410
[ 1019.490700][T17750]  __x64_sys_setsockopt+0x1ee/0x280
[ 1019.495962][T17750]  do_syscall_64+0xf3/0x230
[ 1019.500501][T17750]  ? clear_bhb_loop+0x35/0x90
[ 1019.505185][T17750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1019.511105][T17750] RIP: 0033:0x7f16aaf85d19
[ 1019.515529][T17750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1019.535144][T17750] RSP: 002b:00007f16abde9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1019.543573][T17750] RAX: ffffffffffffffda RBX: 00007f16ab175fa0 RCX: 00007f16aaf85d19
[ 1019.551541][T17750] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[ 1019.559505][T17750] RBP: 00007f16ab001a20 R08: 0000000000000478 R09: 0000000000000000
[ 1019.567472][T17750] R10: 0000000020000b00 R11: 0000000000000246 R12: 0000000000000000
[ 1019.575437][T17750] R13: 0000000000000000 R14: 00007f16ab175fa0 R15: 00007fff85c69168
[ 1019.583415][T17750]  </TASK>
[ 1019.586573][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1019.597409][T17750] Mem-Info:
[ 1019.794487][T17770] /dev/sg0: Can't lookup blockdev
[ 1019.807190][T17750] active_anon:46 inactive_anon:16853 isolated_anon:0
[ 1019.807190][T17750]  active_file:14442 inactive_file:5360 isolated_file:0
[ 1019.807190][T17750]  unevictable:768 dirty:292 writeback:0
[ 1019.807190][T17750]  slab_reclaimable:8812 slab_unreclaimable:105627
[ 1019.807190][T17750]  mapped:35616 shmem:7204 pagetables:1369
[ 1019.807190][T17750]  sec_pagetables:0 bounce:0
[ 1019.807190][T17750]  kernel_misc_reclaimable:0
[ 1019.807190][T17750]  free:1320825 free_pcp:2993 free_cma:0
[ 1019.955341][T17750] Node 0 active_anon:184kB inactive_anon:67412kB active_file:57768kB inactive_file:21436kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:142464kB dirty:1168kB writeback:0kB shmem:27380kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12744kB pagetables:5476kB sec_pagetables:0kB all_unreclaimable? no
[ 1020.075607][T17750] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1020.122919][T17750] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1020.186091][T17750] lowmem_reserve[]: 0 2465 2466 0 0
[ 1020.208638][T17750] Node 0 DMA32 free:1383188kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:180kB inactive_anon:55800kB active_file:57056kB inactive_file:21312kB unevictable:1536kB writepending:1120kB present:3129332kB managed:2552780kB mlocked:0kB bounce:0kB free_pcp:1180kB local_pcp:796kB free_cma:0kB
[ 1020.239353][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1020.480146][T17750] lowmem_reserve[]: 0 0 0 0 0
[ 1020.639896][T17750] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:12kB inactive_anon:108kB active_file:712kB inactive_file:40kB unevictable:0kB writepending:0kB present:1048580kB managed:880kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 1020.701503][T17750] lowmem_reserve[]: 0 0 0 0 0
[ 1020.738573][T17750] Node 1 Normal free:3908252kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111168kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1021.458065][T17750] lowmem_reserve[]: 0 0 0 0 0
[ 1021.462866][T17750] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1021.494281][ T5821] Bluetooth: hci1: command tx timeout
[ 1021.501444][T17750] Node 0 DMA32: 460*4kB (ME) 563*8kB (ME) 445*16kB (UME) 686*32kB (UME) 554*64kB (UME) 209*128kB (UME) 79*256kB (UME) 51*512kB (UME) 20*1024kB (UM) 10*2048kB (M) 292*4096kB (M) = 1380952kB
[ 1021.521391][T17750] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 1021.536547][T17750] Node 1 Normal: 253*4kB (UME) 75*8kB (UME) 45*16kB (UME) 204*32kB (UME) 98*64kB (UME) 31*128kB (UME) 16*256kB (UME) 12*512kB (UME) 4*1024kB (UM) 4*2048kB (UE) 944*4096kB (M) = 3908252kB
[ 1021.559890][T17750] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1021.569598][T17750] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1021.579382][T17750] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1021.589541][T17750] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1021.599347][T17750] 21269 total pagecache pages
[ 1021.604121][T17750] 0 pages in swap cache
[ 1021.608402][T17750] Free swap  = 124812kB
[ 1021.612659][T17750] Total swap = 124996kB
[ 1021.626071][T17750] 2097051 pages RAM
[ 1021.629993][T17750] 0 pages HighMem/MovableOnly
[ 1021.646474][T17750] 427004 pages reserved
[ 1021.650743][T17750] 0 pages cma reserved
[ 1021.731333][T17783] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[ 1021.741700][T17790] vcan0: tx drop: invalid da for name 0x0000000000000001
[ 1021.839492][T17785] can: request_module (can-proto-4) failed.
[ 1022.652045][ T6114] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1022.685409][ T6114] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1022.717562][ T6114] bond0 (unregistering): Released all slaves
[ 1023.060317][ T6114] team0: Port device bond1 removed
[ 1023.074268][ T6114] bond1 (unregistering): Released all slaves
[ 1023.149269][T17713] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1023.261962][T17713] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1023.359631][T17802] netlink: 'syz.9.2948': attribute type 1 has an invalid length.
[ 1023.550134][ T5821] Bluetooth: hci1: command tx timeout
[ 1024.778169][T17808] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1025.239379][T17713] team0: Port device team_slave_0 added
[ 1025.279932][T17713] team0: Port device team_slave_1 added
[ 1027.958349][T17713] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1027.965570][T17713] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1028.029466][T17713] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1028.073111][T17713] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1028.097644][T17713] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1028.137993][T17713] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1028.155435][   T29] kauditd_printk_skb: 3 callbacks suppressed
[ 1028.155460][   T29] audit: type=1326 audit(1734313195.112:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17840 comm="syz.7.2955" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8f25185d19 code=0x0
[ 1028.287259][T17713] hsr_slave_0: entered promiscuous mode
[ 1028.299476][T17713] hsr_slave_1: entered promiscuous mode
[ 1028.488185][ T6114] hsr_slave_0: left promiscuous mode
[ 1028.548194][ T6114] hsr_slave_1: left promiscuous mode
[ 1028.621686][ T6114] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1028.641103][ T6114] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1028.658992][ T6114] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1028.795700][T17860] netlink: 5312 bytes leftover after parsing attributes in process `syz.6.2956'.
[ 1028.893549][T17859] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2957'.
[ 1029.027742][ T6114] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1029.544603][ T6114] veth0_macvtap: left promiscuous mode
[ 1029.558971][ T6114] veth1_vlan: left promiscuous mode
[ 1029.571918][ T6114] veth0_vlan: left promiscuous mode
[ 1030.185230][ T6114] pimreg (unregistering): left allmulticast mode
[ 1030.629266][ T6114] team0 (unregistering): Port device team_slave_1 removed
[ 1030.681802][ T6114] team0 (unregistering): Port device team_slave_0 removed
[ 1031.137204][T17859] dummy0: entered promiscuous mode
[ 1031.144144][T17859] dummy0: left promiscuous mode
[ 1035.338406][   T29] audit: type=1800 audit(1734313202.252:152): pid=17913 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.7.2965" name="/" dev="fuse" ino=0 res=0 errno=0
[ 1035.356757][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1035.410815][T17918] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1035.686629][ T6114] IPVS: stop unused estimator thread 0...
[ 1036.576789][T17713] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1036.592796][T17713] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1036.602577][T17713] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1036.613703][T17713] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1036.686241][ T5873] usb 10-1: new full-speed USB device number 5 using dummy_hcd
[ 1036.725854][T17943] fuse: Bad value for 'fd'
[ 1036.769422][T17713] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1036.788896][T17713] 8021q: adding VLAN 0 to HW filter on device team0
[ 1036.805281][ T6110] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1036.812485][ T6110] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1036.848092][ T6110] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1036.855278][ T6110] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1036.875393][ T5873] usb 10-1: config 0 has an invalid interface number: 223 but max is 0
[ 1036.884069][ T5873] usb 10-1: config 0 has no interface number 0
[ 1036.897281][ T5873] usb 10-1: New USB device found, idVendor=05ac, idProduct=0242, bcdDevice=70.28
[ 1036.923376][ T5873] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1036.943321][ T5873] usb 10-1: Product: syz
[ 1036.951149][ T5873] usb 10-1: Manufacturer: syz
[ 1036.962674][ T5873] usb 10-1: SerialNumber: syz
[ 1036.976905][ T5873] usb 10-1: config 0 descriptor??
[ 1037.005334][ T5873] input: bcm5974 as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.223/input/input26
[ 1037.090693][T17958] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-xor(2)
[ 1037.203590][ T5180] bcm5974 10-1:0.223: could not read from device
[ 1037.238626][ T5873] usb 10-1: USB disconnect, device number 5
[ 1037.246144][ T5180] bcm5974 10-1:0.223: could not read from device
[ 1037.381316][T17713] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1038.504384][T17973] trusted_key: encrypted_key: insufficient parameters specified
[ 1039.934737][T17713] veth0_vlan: entered promiscuous mode
[ 1040.207102][T17713] veth1_vlan: entered promiscuous mode
[ 1040.236644][T17713] veth0_macvtap: entered promiscuous mode
[ 1040.257631][T17713] veth1_macvtap: entered promiscuous mode
[ 1040.277602][T17713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1040.293599][T17713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.304093][T17713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1040.331115][T17713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.343905][T17713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1040.359890][T17713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.380060][T17713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1040.401885][T17713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.444923][T17713] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1040.478818][T17713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1040.547051][T17713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.570267][T17713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1040.632461][T17713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.680213][T17713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1040.708583][T17713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.730177][T17713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1040.766578][T17713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1040.780057][T17713] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1041.032617][T17713] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1041.041895][T17713] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1041.050761][T17713] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1041.059719][T17713] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1041.623013][ T6110] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1041.664862][ T6110] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1041.738364][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1041.755222][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1042.145072][T18047] fuse: Bad value for 'fd'
[ 1042.201287][T18052] vlan2: entered promiscuous mode
[ 1042.206672][T18052] netdevsim netdevsim7 netdevsim0: entered promiscuous mode
[ 1045.391922][T18070] trusted_key: encrypted_key: insufficient parameters specified
[ 1046.116024][T18108] trusted_key: encrypted_key: insufficient parameters specified
[ 1047.820765][T18127] overlay: Unknown parameter 'subj_user'
[ 1047.889616][T18134] fuse: Bad value for 'fd'
[ 1049.368357][T18150] trusted_key: encrypted_key: insufficient parameters specified
[ 1050.699767][ T1203] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[ 1050.950658][ T1203] usb 7-1: config 0 has an invalid interface number: 18 but max is 0
[ 1050.963344][ T1203] usb 7-1: config 0 has no interface number 0
[ 1050.971591][ T1203] usb 7-1: config 0 interface 18 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1050.983909][ T1203] usb 7-1: config 0 interface 18 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1051.063232][ T1203] usb 7-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10
[ 1051.091136][ T1203] usb 7-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[ 1051.108993][ T1203] usb 7-1: Manufacturer: syz
[ 1051.115787][ T1203] usb 7-1: config 0 descriptor??
[ 1051.174728][T18170] FAULT_INJECTION: forcing a failure.
[ 1051.174728][T18170] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1051.190454][T18170] CPU: 0 UID: 0 PID: 18170 Comm: syz.4.3008 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1051.201231][T18170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1051.211285][T18170] Call Trace:
[ 1051.214553][T18170]  <TASK>
[ 1051.217476][T18170]  dump_stack_lvl+0x241/0x360
[ 1051.222149][T18170]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1051.227339][T18170]  ? __pfx__printk+0x10/0x10
[ 1051.231926][T18170]  should_fail_ex+0x3b0/0x4e0
[ 1051.236594][T18170]  prepare_alloc_pages+0x1da/0x5b0
[ 1051.241700][T18170]  __alloc_pages_noprof+0x16f/0x710
[ 1051.246891][T18170]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1051.252611][T18170]  alloc_pages_mpol_noprof+0x3e8/0x680
[ 1051.258067][T18170]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1051.264061][T18170]  ? xas_start+0x3ff/0x7b0
[ 1051.268470][T18170]  ? xas_load+0x58d/0x5c0
[ 1051.272794][T18170]  folio_alloc_noprof+0x128/0x180
[ 1051.277803][T18170]  filemap_alloc_folio_noprof+0xdf/0x500
[ 1051.283449][T18170]  ? filemap_get_entry+0x123/0x3b0
[ 1051.288572][T18170]  ? __pfx_filemap_alloc_folio_noprof+0x10/0x10
[ 1051.294813][T18170]  ? fault_in_readable+0x1b4/0x2d0
[ 1051.299917][T18170]  ? __pfx_fault_in_readable+0x10/0x10
[ 1051.305367][T18170]  __filemap_get_folio+0x41f/0x940
[ 1051.310473][T18170]  netfs_perform_write+0x618/0x2150
[ 1051.315667][T18170]  ? __mod_timer+0xb89/0xeb0
[ 1051.320261][T18170]  ? __pfx_netfs_perform_write+0x10/0x10
[ 1051.325880][T18170]  ? do_raw_spin_lock+0x14f/0x370
[ 1051.330915][T18170]  ? file_update_time+0x3dd/0x450
[ 1051.335929][T18170]  ? netfs_buffered_write_iter_locked+0x12e/0x2b0
[ 1051.342331][T18170]  netfs_file_write_iter+0x187/0x3f0
[ 1051.347630][T18170]  do_iter_readv_writev+0x600/0x880
[ 1051.352821][T18170]  ? __pfx_do_iter_readv_writev+0x10/0x10
[ 1051.358527][T18170]  ? rcu_read_lock_any_held+0xb7/0x160
[ 1051.363983][T18170]  vfs_writev+0x376/0xba0
[ 1051.368302][T18170]  ? trace_contention_end+0x3c/0x120
[ 1051.373580][T18170]  ? __mutex_lock+0x37f/0xee0
[ 1051.378248][T18170]  ? __pfx_lock_acquire+0x10/0x10
[ 1051.383288][T18170]  ? __pfx_vfs_writev+0x10/0x10
[ 1051.388187][T18170]  ? __fget_files+0x2a/0x410
[ 1051.392776][T18170]  ? __fget_files+0x395/0x410
[ 1051.397446][T18170]  ? __fget_files+0x2a/0x410
[ 1051.402038][T18170]  do_writev+0x1b6/0x360
[ 1051.406281][T18170]  ? __pfx_do_writev+0x10/0x10
[ 1051.411043][T18170]  ? do_syscall_64+0x100/0x230
[ 1051.415809][T18170]  ? do_syscall_64+0xb6/0x230
[ 1051.420498][T18170]  do_syscall_64+0xf3/0x230
[ 1051.425004][T18170]  ? clear_bhb_loop+0x35/0x90
[ 1051.429682][T18170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1051.435694][T18170] RIP: 0033:0x7fe2a6385d19
[ 1051.440109][T18170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1051.459717][T18170] RSP: 002b:00007fe2a71ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1051.468149][T18170] RAX: ffffffffffffffda RBX: 00007fe2a6575fa0 RCX: 00007fe2a6385d19
[ 1051.476115][T18170] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000007
[ 1051.484156][T18170] RBP: 00007fe2a71ce090 R08: 0000000000000000 R09: 0000000000000000
[ 1051.492144][T18170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1051.500112][T18170] R13: 0000000000000000 R14: 00007fe2a6575fa0 R15: 00007fffa3a4e848
[ 1051.508099][T18170]  </TASK>
[ 1051.799364][ T1203] input: syz as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.18/0003:054C:03D5.000B/input/input27
[ 1052.692204][ T1203] sony 0003:054C:03D5.000B: input,hidraw0: USB HID v0.00 Joystick [syz] on usb-dummy_hcd.6-1/input18
[ 1052.741587][T18176] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3006'.
[ 1052.850676][ T5873] usb 7-1: USB disconnect, device number 30
[ 1053.015047][T18193] netlink: 5312 bytes leftover after parsing attributes in process `syz.7.3012'.
[ 1053.808304][ T1203] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[ 1054.956074][ T1203] usb 10-1: Using ep0 maxpacket: 16
[ 1055.157519][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1055.311636][ T1203] usb 10-1: config 0 has an invalid interface number: 8 but max is 0
[ 1055.319856][ T1203] usb 10-1: config 0 has no interface number 0
[ 1055.326341][ T1203] usb 10-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1055.338482][ T1203] usb 10-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1055.341442][T18213] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3018'.
[ 1055.359995][ T1203] usb 10-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1055.374425][ T1203] usb 10-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1055.383355][T18214] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1055.393211][ T1203] usb 10-1: Product: syz
[ 1055.404284][ T1203] usb 10-1: SerialNumber: syz
[ 1055.417105][ T1203] usb 10-1: config 0 descriptor??
[ 1055.431032][ T1203] cm109 10-1:0.8: invalid payload size 0, expected 4
[ 1055.441885][ T1203] input: CM109 USB driver as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.8/input/input28
[ 1055.456575][T18213] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3018'.
[ 1055.754294][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[ 1056.606116][ T5825] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[ 1056.909805][ T5825] usb 6-1: New USB device found, idVendor=0b95, idProduct=772b, bcdDevice=a2.4c
[ 1056.921664][ T5825] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1057.746084][ T5825] usb 6-1: Product: syz
[ 1057.750305][ T5825] usb 6-1: Manufacturer: syz
[ 1057.755068][ T5825] usb 6-1: SerialNumber: syz
[ 1057.765415][ T5825] usb 6-1: config 0 descriptor??
[ 1057.793941][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1057.803773][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1057.812037][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1057.820498][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1057.827746][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1057.834997][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1057.842322][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1057.849818][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1057.857057][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1057.864289][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[ 1057.885828][ T1203] usb 10-1: USB disconnect, device number 6
[ 1057.885888][    C1] cm109 10-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[ 1057.919742][ T1203] cm109 10-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[ 1058.033053][T18242] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1058.067190][ T5825] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1058.116211][ T5825] asix 6-1:0.0: probe with driver asix failed with error -71
[ 1058.202491][ T5825] usb 6-1: USB disconnect, device number 31
[ 1058.535534][T18256] netlink: 5312 bytes leftover after parsing attributes in process `syz.5.3027'.
[ 1058.686400][ T1203] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[ 1059.546312][ T1203] usb 10-1: device descriptor read/64, error -71
[ 1060.322884][T18272] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1060.406521][ T1203] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[ 1060.846558][ T1203] usb 10-1: device descriptor read/64, error -71
[ 1060.975396][T18272] loop4: detected capacity change from 0 to 524287999
[ 1060.997653][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1061.007096][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1061.025939][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1061.035194][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1061.044314][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1061.053542][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1061.062433][ T1203] usb usb10-port1: attempt power cycle
[ 1061.071083][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1061.080346][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1061.098667][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1061.107928][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1061.142657][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1061.151917][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1061.246412][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1061.255649][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1061.274374][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1061.283614][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1061.292122][T18272] ldm_validate_partition_table(): Disk read failed.
[ 1061.309707][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1061.318932][    C0] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1061.321780][T18287] netlink: 'syz.9.3036': attribute type 10 has an invalid length.
[ 1061.338772][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1061.347985][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1061.368588][T18272] Dev loop4: unable to read RDB block 0
[ 1061.391431][T18272]  loop4: unable to read partition table
[ 1061.426188][T18272] loop_reread_partitions: partition scan of loop4 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[ 1061.597829][T18287] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1061.605336][T18287] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1061.639895][T18287] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1061.649202][T18287] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1061.656755][T18287] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1061.663886][T18287] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1061.808531][T18287] bond0: (slave bridge0): Enslaving as an active interface with an up link
[ 1064.466802][T18319] netlink: 5312 bytes leftover after parsing attributes in process `syz.7.3043'.
[ 1065.120519][T18326] netlink: 5312 bytes leftover after parsing attributes in process `syz.9.3042'.
[ 1065.715322][T18331] dlm: no local IP address has been set
[ 1065.721711][T18331] dlm: cannot start dlm midcomms -107
[ 1065.729680][T18331] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3044'.
[ 1065.742093][T18331] xfrm1: entered promiscuous mode
[ 1065.747185][T18331] xfrm1: entered allmulticast mode
[ 1066.448467][T18339] lo speed is unknown, defaulting to 1000
[ 1066.465403][T18339] lo speed is unknown, defaulting to 1000
[ 1066.474236][T18339] lo speed is unknown, defaulting to 1000
[ 1067.010688][T18339] infiniband s
z1: set active
[ 1067.015465][T18339] infiniband s
z1: added lo
[ 1067.046092][ T1203] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[ 1067.062243][ T5873] lo speed is unknown, defaulting to 1000
[ 1067.141660][T18339] RDS/IB: s
z1: added
[ 1067.145739][T18339] smc: adding ib device s
z1 with port count 1
[ 1067.152019][T18339] smc:    ib device s
z1 port 1 has pnetid 
[ 1067.160853][T18339] lo speed is unknown, defaulting to 1000
[ 1067.171874][ T5873] lo speed is unknown, defaulting to 1000
[ 1067.271117][T18339] lo speed is unknown, defaulting to 1000
[ 1067.327677][T18339] lo speed is unknown, defaulting to 1000
[ 1067.384479][T18339] lo speed is unknown, defaulting to 1000
[ 1067.440689][T18339] lo speed is unknown, defaulting to 1000
[ 1067.566074][ T1203] usb 6-1: Using ep0 maxpacket: 32
[ 1067.587836][ T1203] usb 6-1: config 0 has an invalid interface number: 51 but max is 0
[ 1067.614605][ T1203] usb 6-1: config 0 has no interface number 0
[ 1067.634342][ T1203] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1067.643510][ T1203] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1067.651828][ T1203] usb 6-1: Product: syz
[ 1067.656258][ T1203] usb 6-1: Manufacturer: syz
[ 1067.660881][ T1203] usb 6-1: SerialNumber: syz
[ 1067.668759][ T1203] usb 6-1: config 0 descriptor??
[ 1067.677186][ T1203] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1067.844682][T18350] overlayfs: failed to decode file handle (len=5, type=0, flags=0, err=-22)
[ 1069.952987][T18369] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3056'.
[ 1070.674543][T18378] netlink: 5312 bytes leftover after parsing attributes in process `syz.6.3058'.
[ 1071.390134][ T1203] usb 6-1: qt2_attach - failed to power on unit: -71
[ 1071.397618][ T1203] quatech2 6-1:0.51: probe with driver quatech2 failed with error -71
[ 1071.761471][ T1203] usb 6-1: USB disconnect, device number 32
[ 1071.793950][T18390] Bluetooth: hci0: Opcode 0x0401 failed: -22
[ 1072.756133][ T1211] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[ 1073.866647][ T1211] usb 10-1: Using ep0 maxpacket: 16
[ 1073.872198][ T5821] Bluetooth: hci0: command tx timeout
[ 1074.103441][ T1211] usb 10-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[ 1074.112873][ T1211] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1074.121646][ T1211] usb 10-1: Product: syz
[ 1074.125913][ T1211] usb 10-1: Manufacturer: syz
[ 1074.130812][ T1211] usb 10-1: SerialNumber: syz
[ 1074.368055][T18407] syz.6.3065 (18407): drop_caches: 2
[ 1074.375447][T18407] syz.6.3065 (18407): drop_caches: 2
[ 1074.483404][ T1211] usb 10-1: config 0 descriptor??
[ 1074.583694][ T1211] ssu100 10-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[ 1074.928215][ T1211] ssu100 10-1:0.0: probe with driver ssu100 failed with error -71
[ 1075.049014][ T1211] usb 10-1: USB disconnect, device number 10
[ 1075.846707][T18421] netlink: 5312 bytes leftover after parsing attributes in process `syz.5.3069'.
[ 1075.864522][T18419] netlink: 5312 bytes leftover after parsing attributes in process `syz.9.3068'.
[ 1080.014886][T14976] IPVS: starting estimator thread 0...
[ 1080.136164][T18464] IPVS: using max 19 ests per chain, 45600 per kthread
[ 1080.987143][T18478] netlink: 5312 bytes leftover after parsing attributes in process `syz.6.3083'.
[ 1082.217949][T18480] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3082'.
[ 1084.079611][   T29] audit: type=1800 audit(1734313250.902:153): pid=18503 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3090" name="/" dev="fuse" ino=0 res=0 errno=0
[ 1084.716319][ T5873] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[ 1084.896131][ T5873] usb 7-1: Using ep0 maxpacket: 8
[ 1084.903048][ T5873] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1084.920481][ T5873] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x93, changing to 0x83
[ 1084.941037][ T5873] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1084.976053][ T5873] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1084.998355][ T5873] usb 7-1: New USB device found, idVendor=15c2, idProduct=003b, bcdDevice=66.3e
[ 1085.008293][ T5873] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1085.016895][ T5873] usb 7-1: Product: syz
[ 1085.021270][ T5873] usb 7-1: Manufacturer: syz
[ 1085.026508][ T5873] usb 7-1: SerialNumber: syz
[ 1085.117554][ T5873] usb 7-1: config 0 descriptor??
[ 1085.149640][ T5873] imon:imon_find_endpoints: no valid input (IR) endpoint found
[ 1085.164942][ T5873] imon 7-1:0.0: unable to initialize intf0, err -19
[ 1085.185693][ T5873] imon:imon_probe: failed to initialize context!
[ 1085.219186][ T5873] imon 7-1:0.0: unable to register, err -19
[ 1085.993039][ T1211] usb 7-1: USB disconnect, device number 31
[ 1086.673920][T18529] netlink: 5312 bytes leftover after parsing attributes in process `syz.4.3096'.
[ 1087.065021][T18533] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3098'.
[ 1087.094732][T18533] netlink: 108 bytes leftover after parsing attributes in process `syz.5.3098'.
[ 1087.208851][T18533] FAULT_INJECTION: forcing a failure.
[ 1087.208851][T18533] name failslab, interval 1, probability 0, space 0, times 0
[ 1087.253926][T18533] CPU: 1 UID: 0 PID: 18533 Comm: syz.5.3098 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1087.264752][T18533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1087.274832][T18533] Call Trace:
[ 1087.278133][T18533]  <TASK>
[ 1087.281076][T18533]  dump_stack_lvl+0x241/0x360
[ 1087.285795][T18533]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1087.291023][T18533]  ? __pfx__printk+0x10/0x10
[ 1087.295640][T18533]  ? __kmalloc_cache_noprof+0x48/0x390
[ 1087.301115][T18533]  ? __pfx___might_resched+0x10/0x10
[ 1087.306434][T18533]  should_fail_ex+0x3b0/0x4e0
[ 1087.311132][T18533]  should_failslab+0xac/0x100
[ 1087.315821][T18533]  __kmalloc_cache_noprof+0x70/0x390
[ 1087.321137][T18533]  ? netlbl_cipsov4_add+0x604/0x25e0
[ 1087.326450][T18533]  netlbl_cipsov4_add+0x604/0x25e0
[ 1087.331591][T18533]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[ 1087.337167][T18533]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[ 1087.343536][T18533]  genl_rcv_msg+0xb14/0xec0
[ 1087.348070][T18533]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1087.353107][T18533]  ? __pfx_lock_acquire+0x10/0x10
[ 1087.358135][T18533]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[ 1087.363692][T18533]  ? __pfx___might_resched+0x10/0x10
[ 1087.368982][T18533]  netlink_rcv_skb+0x1e3/0x430
[ 1087.373739][T18533]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1087.378769][T18533]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1087.384137][T18533]  genl_rcv+0x28/0x40
[ 1087.388146][T18533]  netlink_unicast+0x7f6/0x990
[ 1087.392946][T18533]  ? __pfx_netlink_unicast+0x10/0x10
[ 1087.398251][T18533]  ? __virt_addr_valid+0x45f/0x530
[ 1087.403382][T18533]  ? __phys_addr_symbol+0x2f/0x70
[ 1087.408415][T18533]  ? __check_object_size+0x47a/0x730
[ 1087.413707][T18533]  netlink_sendmsg+0x8e4/0xcb0
[ 1087.418483][T18533]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.423775][T18533]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1087.429061][T18533]  __sock_sendmsg+0x221/0x270
[ 1087.433749][T18533]  ____sys_sendmsg+0x52a/0x7e0
[ 1087.438521][T18533]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1087.443808][T18533]  ? __fget_files+0x2a/0x410
[ 1087.448403][T18533]  ? __fget_files+0x2a/0x410
[ 1087.452996][T18533]  __sys_sendmsg+0x269/0x350
[ 1087.457592][T18533]  ? __pfx_lock_release+0x10/0x10
[ 1087.462616][T18533]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1087.467733][T18533]  ? __pfx_vfs_write+0x10/0x10
[ 1087.472517][T18533]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1087.478845][T18533]  ? do_syscall_64+0x100/0x230
[ 1087.483624][T18533]  ? do_syscall_64+0xb6/0x230
[ 1087.488322][T18533]  do_syscall_64+0xf3/0x230
[ 1087.492829][T18533]  ? clear_bhb_loop+0x35/0x90
[ 1087.497508][T18533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.503405][T18533] RIP: 0033:0x7f0ce8185d19
[ 1087.507822][T18533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1087.527431][T18533] RSP: 002b:00007f0ce8efb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1087.535848][T18533] RAX: ffffffffffffffda RBX: 00007f0ce8375fa0 RCX: 00007f0ce8185d19
[ 1087.543904][T18533] RDX: 0000000020008000 RSI: 0000000020000580 RDI: 0000000000000004
[ 1087.551872][T18533] RBP: 00007f0ce8efb090 R08: 0000000000000000 R09: 0000000000000000
[ 1087.559840][T18533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1087.567804][T18533] R13: 0000000000000000 R14: 00007f0ce8375fa0 R15: 00007ffdabdad918
[ 1087.575781][T18533]  </TASK>
[ 1088.201993][T18545] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3101'.
[ 1089.209706][   T29] audit: type=1800 audit(1734313256.152:154): pid=18562 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.6.3104" name="/" dev="fuse" ino=0 res=0 errno=0
[ 1090.038536][T18580] fuse: Unknown parameter 'grŒup_id'
[ 1090.441765][T18590] netlink: 5312 bytes leftover after parsing attributes in process `syz.7.3111'.
[ 1093.692639][T18625] netlink: 5312 bytes leftover after parsing attributes in process `syz.6.3124'.
[ 1095.692972][T18638] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[ 1096.258486][T18651] /dev/sg0: Can't lookup blockdev
[ 1098.115399][T13281] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1098.134486][T13281] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1098.180351][T13281] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1098.937640][T13281] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1098.945464][T13281] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1098.953025][T13281] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1098.984647][T18674] lo speed is unknown, defaulting to 1000
[ 1099.284134][ T7083] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1099.841116][ T7083] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1100.218585][T18702] /dev/sg0: Can't lookup blockdev
[ 1101.246307][T13281] Bluetooth: hci4: command tx timeout
[ 1101.771051][T18709] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1101.915632][T18711] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[ 1101.929221][ T7083] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1101.969716][T18714] vcan0: tx drop: invalid da for name 0x0000000000000001
[ 1102.619168][ T7083] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1102.809257][T18674] chnl_net:caif_netlink_parms(): no params data found
[ 1104.056067][T13281] Bluetooth: hci4: command tx timeout
[ 1104.510067][T18674] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1104.631411][   T29] audit: type=1800 audit(1734313271.492:155): pid=18742 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.6.3153" name="/" dev="fuse" ino=0 res=0 errno=0
[ 1104.701214][T18674] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1104.755300][T18674] bridge_slave_0: entered allmulticast mode
[ 1104.804631][T18674] bridge_slave_0: entered promiscuous mode
[ 1104.813435][T18674] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1104.820655][T18674] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1104.827908][T18674] bridge_slave_1: entered allmulticast mode
[ 1104.834930][T18674] bridge_slave_1: entered promiscuous mode
[ 1104.974991][ T7083] bridge_slave_1: left allmulticast mode
[ 1105.016327][ T7083] bridge_slave_1: left promiscuous mode
[ 1105.339166][ T7083] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1105.521529][ T7083] bridge_slave_0: left allmulticast mode
[ 1105.539332][ T7083] bridge_slave_0: left promiscuous mode
[ 1105.556290][ T7083] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1106.146094][T13281] Bluetooth: hci4: command tx timeout
[ 1107.340678][ T7083] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1107.350994][ T7083] bond0 (unregistering): Released all slaves
[ 1107.374450][T18674] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1107.402937][T18674] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1107.715722][T18674] team0: Port device team_slave_0 added
[ 1107.895385][T18783] /dev/sg0: Can't lookup blockdev
[ 1108.412458][T13281] Bluetooth: hci4: command tx timeout
[ 1108.462469][ T7083] tipc: Left network mode
[ 1108.856622][T18674] team0: Port device team_slave_1 added
[ 1109.261399][T18792] netlink: 'syz.9.3169': attribute type 10 has an invalid length.
[ 1109.269570][T18792] netlink: 40 bytes leftover after parsing attributes in process `syz.9.3169'.
[ 1109.374516][T18792] team0: Port device geneve0 added
[ 1109.412361][T18674] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1109.434600][T18674] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1109.481810][T18674] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1109.506724][T18674] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1109.535584][T18674] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1109.557604][T18807] ucma_write: process 655 (syz.9.3169) changed security contexts after opening file descriptor, this is not allowed.
[ 1109.614276][T18674] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1109.636370][T14976] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[ 1109.804153][T14976] usb 5-1: New USB device found, idVendor=249c, idProduct=9002, bcdDevice=de.ad
[ 1109.841413][T14976] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1109.882001][T14976] usb 5-1: config 0 descriptor??
[ 1109.927900][T18674] hsr_slave_0: entered promiscuous mode
[ 1109.955511][T18674] hsr_slave_1: entered promiscuous mode
[ 1109.981543][T18674] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1110.021758][T18674] Cannot create hsr debugfs directory
[ 1110.146394][T18802] netlink: 'syz.4.3170': attribute type 1 has an invalid length.
[ 1110.653990][T14976] usb 5-1: can't set first interface for hiFace device.
[ 1110.694862][T14976] snd-usb-hiface 5-1:0.0: probe with driver snd-usb-hiface failed with error -5
[ 1110.726468][T14976] usb 5-1: USB disconnect, device number 50
[ 1110.759171][ T7083] hsr_slave_0: left promiscuous mode
[ 1110.776218][ T7083] hsr_slave_1: left promiscuous mode
[ 1110.783521][ T7083] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1110.796586][ T7083] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1110.806419][ T7083] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1110.819100][ T7083] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1110.862391][ T7083] veth1_macvtap: left promiscuous mode
[ 1110.868129][ T7083] veth0_macvtap: left promiscuous mode
[ 1110.875492][ T7083] veth1_vlan: left promiscuous mode
[ 1110.887225][ T7083] veth0_vlan: left promiscuous mode
[ 1112.175480][ T7083] team0 (unregistering): Port device team_slave_1 removed
[ 1112.261096][ T7083] team0 (unregistering): Port device team_slave_0 removed
[ 1112.797728][T18832] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3175'.
[ 1113.916697][T18845] /dev/sg0: Can't lookup blockdev
[ 1115.338069][T18856] /dev/sg0: Can't lookup blockdev
[ 1116.082220][T18863] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3184'.
[ 1116.126595][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.236311][T18863] FAULT_INJECTION: forcing a failure.
[ 1116.236311][T18863] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.263647][T18863] CPU: 1 UID: 0 PID: 18863 Comm: syz.6.3184 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1116.274456][T18863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1116.284533][T18863] Call Trace:
[ 1116.287827][T18863]  <TASK>
[ 1116.290776][T18863]  dump_stack_lvl+0x241/0x360
[ 1116.295573][T18863]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1116.300795][T18863]  ? __pfx__printk+0x10/0x10
[ 1116.305416][T18863]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[ 1116.311419][T18863]  ? __pfx___might_resched+0x10/0x10
[ 1116.316738][T18863]  should_fail_ex+0x3b0/0x4e0
[ 1116.321440][T18863]  should_failslab+0xac/0x100
[ 1116.326140][T18863]  kmem_cache_alloc_node_noprof+0x77/0x380
[ 1116.331959][T18863]  ? __alloc_skb+0x1c3/0x440
[ 1116.336567][T18863]  __alloc_skb+0x1c3/0x440
[ 1116.341004][T18863]  ? __pfx___alloc_skb+0x10/0x10
[ 1116.345956][T18863]  ? netlink_ack_tlv_len+0x6e/0x200
[ 1116.351170][T18863]  netlink_ack+0x145/0xa50
[ 1116.355624][T18863]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1116.361010][T18863]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1116.366484][T18863]  ? __pfx___might_resched+0x10/0x10
[ 1116.371800][T18863]  netlink_rcv_skb+0x262/0x430
[ 1116.376592][T18863]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1116.381637][T18863]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1116.386956][T18863]  ? __netlink_deliver_tap+0x7aa/0x7f0
[ 1116.392443][T18863]  genl_rcv+0x28/0x40
[ 1116.396439][T18863]  netlink_unicast+0x7f6/0x990
[ 1116.401236][T18863]  ? __pfx_netlink_unicast+0x10/0x10
[ 1116.406539][T18863]  ? __virt_addr_valid+0x45f/0x530
[ 1116.411668][T18863]  ? __phys_addr_symbol+0x2f/0x70
[ 1116.416713][T18863]  ? __check_object_size+0x47a/0x730
[ 1116.422034][T18863]  netlink_sendmsg+0x8e4/0xcb0
[ 1116.426831][T18863]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1116.432144][T18863]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1116.437443][T18863]  __sock_sendmsg+0x221/0x270
[ 1116.442144][T18863]  ____sys_sendmsg+0x52a/0x7e0
[ 1116.446930][T18863]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1116.452227][T18863]  ? __fget_files+0x2a/0x410
[ 1116.456843][T18863]  ? __fget_files+0x2a/0x410
[ 1116.461461][T18863]  __sys_sendmsg+0x269/0x350
[ 1116.466063][T18863]  ? __pfx_lock_release+0x10/0x10
[ 1116.471102][T18863]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1116.476243][T18863]  ? __pfx_vfs_write+0x10/0x10
[ 1116.481056][T18863]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1116.487401][T18863]  ? do_syscall_64+0x100/0x230
[ 1116.492174][T18863]  ? do_syscall_64+0xb6/0x230
[ 1116.496865][T18863]  do_syscall_64+0xf3/0x230
[ 1116.501391][T18863]  ? clear_bhb_loop+0x35/0x90
[ 1116.506085][T18863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.512001][T18863] RIP: 0033:0x7f16aaf85d19
[ 1116.516441][T18863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1116.536076][T18863] RSP: 002b:00007f16abde9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1116.544520][T18863] RAX: ffffffffffffffda RBX: 00007f16ab175fa0 RCX: 00007f16aaf85d19
[ 1116.552516][T18863] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000003
[ 1116.560507][T18863] RBP: 00007f16abde9090 R08: 0000000000000000 R09: 0000000000000000
[ 1116.568499][T18863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1116.576489][T18863] R13: 0000000000000000 R14: 00007f16ab175fa0 R15: 00007fff85c69168
[ 1116.584500][T18863]  </TASK>
[ 1116.780300][ T7083] IPVS: stop unused estimator thread 0...
[ 1116.845613][T18876] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3185'.
[ 1117.032875][T18879] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3187'.
[ 1117.063559][T18674] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1117.113607][T18674] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1117.141851][T18674] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1117.172787][T18674] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1117.719895][T18886] trusted_key: encrypted_key: insufficient parameters specified
[ 1117.788342][T18674] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1117.804985][T18674] 8021q: adding VLAN 0 to HW filter on device team0
[ 1117.819305][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1117.826505][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1117.910496][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1117.917677][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1119.152843][T18674] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1119.345189][T18909] /dev/sg0: Can't lookup blockdev
[ 1119.520040][T18911] /dev/sg0: Can't lookup blockdev
[ 1120.468648][ T5825] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[ 1120.920764][ T5825] usb 5-1: device descriptor read/64, error -71
[ 1121.575143][T18674] veth0_vlan: entered promiscuous mode
[ 1121.835995][T18674] veth1_vlan: entered promiscuous mode
[ 1122.430370][T18933] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3200'.
[ 1122.439985][T18937] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3199'.
[ 1122.573222][T18674] veth0_macvtap: entered promiscuous mode
[ 1122.600499][T18674] veth1_macvtap: entered promiscuous mode
[ 1122.768219][T18674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1122.786092][T18674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1122.795938][T18674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1122.879312][T18674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1122.889766][T18674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1122.900418][T18674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1122.910336][T18674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1122.920967][T18674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1122.932464][T18674] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1122.944403][T18674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1122.974471][T18674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1122.987816][T18674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1123.013307][T18674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1124.056169][T18674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1124.067043][T18674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1124.077720][T18674] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1124.443865][T18674] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1124.558532][T18674] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1124.617765][T18674] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.676163][T18674] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.732095][T18674] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.768451][T18959] /dev/sg0: Can't lookup blockdev
[ 1124.786196][T18674] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1125.160043][ T6110] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1125.176689][ T6110] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1125.246474][ T2907] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1125.255241][ T2907] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1126.503306][T18995] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3211'.
[ 1127.767980][T19017] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1128.807068][T19038] netlink: 5312 bytes leftover after parsing attributes in process `syz.6.3218'.
[ 1131.902179][T19063] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3225'.
[ 1132.285297][T19071] binder: 19070:19071 ioctl c0306201 20000480 returned -22
[ 1132.293568][T19071] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3227'.
[ 1132.736238][ T5873] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[ 1132.799562][T19090] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3232'.
[ 1133.069069][ T5873] usb 10-1: Using ep0 maxpacket: 8
[ 1133.107034][ T5873] usb 10-1: config 0 has an invalid interface number: 52 but max is 0
[ 1133.145824][ T5873] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1133.175025][T19095] loop7: detected capacity change from 0 to 16384
[ 1133.176110][ T5873] usb 10-1: config 0 has no interface number 0
[ 1133.201099][ T5873] usb 10-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1133.217488][ T5873] usb 10-1: config 0 interface 52 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1133.229333][ T5873] usb 10-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1133.240802][ T5873] usb 10-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1133.253862][ T5873] usb 10-1: config 0 interface 52 has no altsetting 0
[ 1133.260847][ T5873] usb 10-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[ 1133.270488][ T5873] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1133.362960][ T5873] usb 10-1: config 0 descriptor??
[ 1133.373615][T19101] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1133.548048][T19097] loop7: detected capacity change from 16384 to 16383
[ 1133.963247][ T5873] input: USB Synaptics Device 06cb:0007 (Stick) as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.52/input/input30
[ 1134.236511][T19106] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1134.301676][T19115] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3236'.
[ 1135.858164][T19137] netlink: 'syz.6.3238': attribute type 12 has an invalid length.
[ 1137.400590][ T5825] usb 10-1: USB disconnect, device number 11
[ 1138.801826][T19159] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1139.245690][T19164] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3245'.
[ 1139.264653][T19174] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3246'.
[ 1139.490143][T13281] Bluetooth: hci1: command 0x0406 tx timeout
[ 1142.695719][T19224] trusted_key: encrypted_key: insufficient parameters specified
[ 1142.866107][   T29] audit: type=1326 audit(1734313309.782:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19217 comm="syz.9.3254" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1f33b85d19 code=0x0
[ 1143.753351][T19231] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1144.543093][T19238] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3259'.
[ 1144.752936][T19243] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3262'.
[ 1144.764856][T19246] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3262'.
[ 1144.862393][T19249] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[ 1144.948077][T19248] fuse: Unknown parameter 'grŒup_id'
[ 1144.953708][T19255] vcan0: tx drop: invalid da for name 0x0000000000000001
[ 1145.184182][T19259] trusted_key: encrypted_key: insufficient parameters specified
[ 1145.606911][T19264] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[ 1147.031044][T19271] vcan0: tx drop: invalid da for name 0x0000000000000001
[ 1148.463238][T19277] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1150.190838][ T5873] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[ 1150.376126][ T5873] usb 6-1: Using ep0 maxpacket: 16
[ 1150.419378][ T5873] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1150.435348][ T5873] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[ 1150.452646][ T5873] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 152, changing to 11
[ 1150.464056][T19310] program syz.6.3280 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1150.473679][ T5873] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 8285, setting to 1024
[ 1150.485022][ T5873] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1150.531716][ T5873] usb 6-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[ 1150.541774][ T5873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1150.867354][ T5873] usb 6-1: Product: syz
[ 1150.871681][ T5873] usb 6-1: Manufacturer: syz
[ 1150.928776][ T5873] usb 6-1: SerialNumber: syz
[ 1150.930817][T19318] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3281'.
[ 1151.153219][ T5873] usb 6-1: config 0 descriptor??
[ 1151.180070][T19308] trusted_key: encrypted_key: insufficient parameters specified
[ 1151.443940][ T5873] appledisplay 6-1:0.0: Error while getting initial brightness: -71
[ 1151.453598][ T5873] appledisplay 6-1:0.0: probe with driver appledisplay failed with error -71
[ 1151.466730][ T5873] usb 6-1: USB disconnect, device number 33
[ 1152.464106][T19351] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3287'.
[ 1152.520539][T19353] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1153.911934][T19362] FAULT_INJECTION: forcing a failure.
[ 1153.911934][T19362] name failslab, interval 1, probability 0, space 0, times 0
[ 1153.996416][T19362] CPU: 1 UID: 0 PID: 19362 Comm: syz.9.3289 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1154.007240][T19362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1154.017317][T19362] Call Trace:
[ 1154.020696][T19362]  <TASK>
[ 1154.023640][T19362]  dump_stack_lvl+0x241/0x360
[ 1154.028352][T19362]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1154.033576][T19362]  ? __pfx__printk+0x10/0x10
[ 1154.038191][T19362]  ? fs_reclaim_acquire+0x93/0x130
[ 1154.043318][T19362]  ? __pfx___might_resched+0x10/0x10
[ 1154.048613][T19362]  should_fail_ex+0x3b0/0x4e0
[ 1154.053290][T19362]  should_failslab+0xac/0x100
[ 1154.057972][T19362]  __kmalloc_noprof+0xdd/0x4c0
[ 1154.062729][T19362]  ? kstrtouint_from_user+0x128/0x190
[ 1154.068096][T19362]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1154.074161][T19362]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1154.079725][T19362]  tomoyo_path_number_perm+0x236/0x860
[ 1154.085179][T19362]  ? __lock_acquire+0x1397/0x2100
[ 1154.090200][T19362]  ? tomoyo_path_number_perm+0x206/0x860
[ 1154.095836][T19362]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1154.101843][T19362]  ? __fget_files+0x2a/0x410
[ 1154.106435][T19362]  ? __fget_files+0x2a/0x410
[ 1154.111023][T19362]  security_file_ioctl+0xc6/0x2a0
[ 1154.116048][T19362]  __se_sys_ioctl+0x46/0x170
[ 1154.120639][T19362]  do_syscall_64+0xf3/0x230
[ 1154.125148][T19362]  ? clear_bhb_loop+0x35/0x90
[ 1154.129820][T19362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1154.135717][T19362] RIP: 0033:0x7f1f33b85d19
[ 1154.140129][T19362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1154.159826][T19362] RSP: 002b:00007f1f348d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1154.168241][T19362] RAX: ffffffffffffffda RBX: 00007f1f33d75fa0 RCX: 00007f1f33b85d19
[ 1154.176403][T19362] RDX: 0000000020001480 RSI: 00000000c0305302 RDI: 0000000000000005
[ 1154.184390][T19362] RBP: 00007f1f348d9090 R08: 0000000000000000 R09: 0000000000000000
[ 1154.192370][T19362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1154.200349][T19362] R13: 0000000000000000 R14: 00007f1f33d75fa0 R15: 00007ffe82554568
[ 1154.208339][T19362]  </TASK>
[ 1154.225731][T19362] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1154.300637][T19370] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3294'.
[ 1154.494728][T19377] FAULT_INJECTION: forcing a failure.
[ 1154.494728][T19377] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1154.528324][T19376] trusted_key: encrypted_key: insufficient parameters specified
[ 1154.651428][T19377] CPU: 1 UID: 0 PID: 19377 Comm: syz.6.3292 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1154.662244][T19377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1154.672339][T19377] Call Trace:
[ 1154.675639][T19377]  <TASK>
[ 1154.678575][T19377]  dump_stack_lvl+0x241/0x360
[ 1154.683263][T19377]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1154.688470][T19377]  ? __pfx__printk+0x10/0x10
[ 1154.693060][T19377]  ? __pfx_lock_release+0x10/0x10
[ 1154.698090][T19377]  should_fail_ex+0x3b0/0x4e0
[ 1154.702774][T19377]  _copy_from_user+0x2f/0xc0
[ 1154.707372][T19377]  __x64_sys_clock_adjtime+0xdb/0x290
[ 1154.712748][T19377]  ? __pfx___x64_sys_clock_adjtime+0x10/0x10
[ 1154.718751][T19377]  do_syscall_64+0xf3/0x230
[ 1154.723261][T19377]  ? clear_bhb_loop+0x35/0x90
[ 1154.727944][T19377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1154.734096][T19377] RIP: 0033:0x7f16aaf85d19
[ 1154.738519][T19377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1154.758130][T19377] RSP: 002b:00007f16abda7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000131
[ 1154.766551][T19377] RAX: ffffffffffffffda RBX: 00007f16ab176160 RCX: 00007f16aaf85d19
[ 1154.774531][T19377] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000000
[ 1154.782502][T19377] RBP: 00007f16abda7090 R08: 0000000000000000 R09: 0000000000000000
[ 1154.790476][T19377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1154.798458][T19377] R13: 0000000000000000 R14: 00007f16ab176160 R15: 00007fff85c69168
[ 1154.806526][T19377]  </TASK>
[ 1156.572648][   T29] audit: type=1326 audit(1734317417.534:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19395 comm="syz.6.3300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16aaf85d19 code=0x7ffc0000
[ 1156.732878][   T29] audit: type=1326 audit(1734317417.694:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19395 comm="syz.6.3300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16aaf85d19 code=0x7ffc0000
[ 1156.754510][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1157.709144][   T29] audit: type=1326 audit(1734317417.694:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19395 comm="syz.6.3300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f16aaf85d19 code=0x7ffc0000
[ 1157.731040][   T29] audit: type=1326 audit(1734317417.694:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19395 comm="syz.6.3300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16aaf85d19 code=0x7ffc0000
[ 1157.752848][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1157.759164][   T29] audit: type=1326 audit(1734317417.694:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19395 comm="syz.6.3300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f16aaf85d19 code=0x7ffc0000
[ 1158.659130][   T29] audit: type=1326 audit(1734317417.694:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19395 comm="syz.6.3300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16aaf85d19 code=0x7ffc0000
[ 1158.760699][   T29] audit: type=1326 audit(1734317417.694:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19395 comm="syz.6.3300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f16aaf85d19 code=0x7ffc0000
[ 1158.816095][   T29] audit: type=1326 audit(1734317417.694:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19395 comm="syz.6.3300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16aaf85d19 code=0x7ffc0000
[ 1158.837667][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1158.931340][   T29] audit: type=1326 audit(1734317417.694:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19395 comm="syz.6.3300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16aaf85d19 code=0x7ffc0000
[ 1158.952959][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1159.166143][   T29] audit: type=1326 audit(1734317417.694:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19395 comm="syz.6.3300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16aaf85d19 code=0x7ffc0000
[ 1159.277229][T19424] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3306'.
[ 1162.175369][T19447] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3311'.
[ 1163.549403][   T29] kauditd_printk_skb: 38 callbacks suppressed
[ 1163.549420][   T29] audit: type=1800 audit(1734317424.414:205): pid=19459 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.3314" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1165.624906][T19473] x_tables: duplicate underflow at hook 1
[ 1165.735354][T19480] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1165.754464][T19480] FAULT_INJECTION: forcing a failure.
[ 1165.754464][T19480] name fail_iommufd, interval 1, probability 0, space 0, times 1
[ 1165.769535][T19480] CPU: 1 UID: 0 PID: 19480 Comm: syz.9.3320 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1165.780332][T19480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1165.790409][T19480] Call Trace:
[ 1165.793701][T19480]  <TASK>
[ 1165.796651][T19480]  dump_stack_lvl+0x241/0x360
[ 1165.801402][T19480]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1165.806635][T19480]  ? __pfx__printk+0x10/0x10
[ 1165.811253][T19480]  ? irqentry_exit+0x63/0x90
[ 1165.815869][T19480]  should_fail_ex+0x3b0/0x4e0
[ 1165.820568][T19480]  pfn_reader_first+0x297/0xa80
[ 1165.825447][T19480]  iopt_area_fill_domains+0x26a/0xa60
[ 1165.830862][T19480]  ? __pfx_lock_acquire+0x10/0x10
[ 1165.835916][T19480]  ? __pfx_iopt_area_fill_domains+0x10/0x10
[ 1165.841868][T19480]  ? iopt_insert_area+0x2d8/0x390
[ 1165.846931][T19480]  iopt_map_pages+0xe24/0x1130
[ 1165.851731][T19480]  ? __pfx_iopt_map_pages+0x10/0x10
[ 1165.856944][T19480]  ? iopt_map_user_pages+0x4d/0xe0
[ 1165.862275][T19480]  ? __asan_memset+0x23/0x50
[ 1165.866893][T19480]  iopt_map_common+0x33a/0x5c0
[ 1165.871684][T19480]  ? __pfx_iopt_map_common+0x10/0x10
[ 1165.876988][T19480]  ? safesetid_security_capable+0xb2/0x1d0
[ 1165.882835][T19480]  iopt_map_user_pages+0xcb/0xe0
[ 1165.887800][T19480]  iommufd_ioas_map+0x3eb/0x5f0
[ 1165.892679][T19480]  ? __pfx_iommufd_ioas_map+0x10/0x10
[ 1165.898075][T19480]  ? iommufd_fops_ioctl+0x4a1/0x5a0
[ 1165.903295][T19480]  iommufd_fops_ioctl+0x4d6/0x5a0
[ 1165.908399][T19480]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[ 1165.913973][T19480]  ? __fget_files+0x2a/0x410
[ 1165.918582][T19480]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[ 1165.924151][T19480]  __se_sys_ioctl+0xf5/0x170
[ 1165.928766][T19480]  do_syscall_64+0xf3/0x230
[ 1165.933290][T19480]  ? clear_bhb_loop+0x35/0x90
[ 1165.937989][T19480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1165.943903][T19480] RIP: 0033:0x7f1f33b85d19
[ 1165.948334][T19480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1165.967958][T19480] RSP: 002b:00007f1f319f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1165.976403][T19480] RAX: ffffffffffffffda RBX: 00007f1f33d76080 RCX: 00007f1f33b85d19
[ 1165.984389][T19480] RDX: 0000000020000180 RSI: 0000000000003b85 RDI: 0000000000000006
[ 1165.992379][T19480] RBP: 00007f1f319f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1166.000364][T19480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1166.008347][T19480] R13: 0000000000000000 R14: 00007f1f33d76080 R15: 00007ffe82554568
[ 1166.016350][T19480]  </TASK>
[ 1166.019453][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1166.992617][T19498] FAULT_INJECTION: forcing a failure.
[ 1166.992617][T19498] name failslab, interval 1, probability 0, space 0, times 0
[ 1167.005661][T19498] CPU: 1 UID: 0 PID: 19498 Comm: syz.7.3322 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1167.016451][T19498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1167.026526][T19498] Call Trace:
[ 1167.029816][T19498]  <TASK>
[ 1167.032759][T19498]  dump_stack_lvl+0x241/0x360
[ 1167.037460][T19498]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1167.042681][T19498]  ? __pfx__printk+0x10/0x10
[ 1167.047288][T19498]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[ 1167.053284][T19498]  ? __pfx___might_resched+0x10/0x10
[ 1167.058684][T19498]  should_fail_ex+0x3b0/0x4e0
[ 1167.063392][T19498]  should_failslab+0xac/0x100
[ 1167.068094][T19498]  kmem_cache_alloc_node_noprof+0x77/0x380
[ 1167.073915][T19498]  ? __alloc_skb+0x1c3/0x440
[ 1167.078525][T19498]  __alloc_skb+0x1c3/0x440
[ 1167.082963][T19498]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1167.088960][T19498]  ? __pfx___alloc_skb+0x10/0x10
[ 1167.093917][T19498]  ? irqentry_exit+0x63/0x90
[ 1167.098530][T19498]  alloc_skb_with_frags+0xc3/0x820
[ 1167.103663][T19498]  ? sock_alloc_send_pskb+0xb0/0xa60
[ 1167.108978][T19498]  sock_alloc_send_pskb+0x91a/0xa60
[ 1167.114223][T19498]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[ 1167.119964][T19498]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1167.125189][T19498]  unix_dgram_sendmsg+0x6d3/0x1f80
[ 1167.130325][T19498]  ? __pfx_smack_socket_sendmsg+0x10/0x10
[ 1167.136058][T19498]  ? tomoyo_socket_sendmsg_permission+0x288/0x420
[ 1167.142506][T19498]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[ 1167.148071][T19498]  ? lockdep_hardirqs_on+0x99/0x150
[ 1167.153297][T19498]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[ 1167.158861][T19498]  __sock_sendmsg+0x221/0x270
[ 1167.163560][T19498]  ____sys_sendmsg+0x52a/0x7e0
[ 1167.168347][T19498]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1167.173647][T19498]  ? __fget_files+0x2a/0x410
[ 1167.178251][T19498]  ? __fget_files+0x2a/0x410
[ 1167.182873][T19498]  __sys_sendmsg+0x269/0x350
[ 1167.187478][T19498]  ? lockdep_hardirqs_on+0x99/0x150
[ 1167.192696][T19498]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1167.197831][T19498]  ? __pfx_vfs_write+0x10/0x10
[ 1167.202640][T19498]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1167.208987][T19498]  ? do_syscall_64+0x100/0x230
[ 1167.213777][T19498]  ? do_syscall_64+0xb6/0x230
[ 1167.218488][T19498]  do_syscall_64+0xf3/0x230
[ 1167.223011][T19498]  ? clear_bhb_loop+0x35/0x90
[ 1167.227704][T19498]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1167.233615][T19498] RIP: 0033:0x7f8f25185d19
[ 1167.238042][T19498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1167.257661][T19498] RSP: 002b:00007f8f22ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1167.266093][T19498] RAX: ffffffffffffffda RBX: 00007f8f25376160 RCX: 00007f8f25185d19
[ 1167.274073][T19498] RDX: 0000000000000000 RSI: 0000000020000980 RDI: 0000000000000009
[ 1167.282062][T19498] RBP: 00007f8f22ff6090 R08: 0000000000000000 R09: 0000000000000000
[ 1167.290046][T19498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1167.298016][T19498] R13: 0000000000000000 R14: 00007f8f25376160 R15: 00007ffc3e06d1a8
[ 1167.306003][T19498]  </TASK>
[ 1167.309109][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1167.361089][T14976] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[ 1167.684201][T19501] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3324'.
[ 1167.880413][T14976] usb 7-1: config 0 has no interfaces?
[ 1167.899440][T14976] usb 7-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1167.913102][T14976] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1168.090420][T14976] usb 7-1: config 0 descriptor??
[ 1168.345851][T19483] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1168.366136][T19483] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1169.563695][T19527] mkiss: ax0: crc mode is auto.
[ 1170.042019][T19542] FAULT_INJECTION: forcing a failure.
[ 1170.042019][T19542] name failslab, interval 1, probability 0, space 0, times 0
[ 1170.084921][T19542] CPU: 1 UID: 0 PID: 19542 Comm: syz.9.3332 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1170.095744][T19542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1170.105820][T19542] Call Trace:
[ 1170.109116][T19542]  <TASK>
[ 1170.112066][T19542]  dump_stack_lvl+0x241/0x360
[ 1170.116771][T19542]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1170.121989][T19542]  ? __pfx__printk+0x10/0x10
[ 1170.126601][T19542]  ? stack_trace_save+0x118/0x1d0
[ 1170.131656][T19542]  ? __pfx_stack_trace_save+0x10/0x10
[ 1170.137061][T19542]  ? stack_depot_save_flags+0x37/0x940
[ 1170.142548][T19542]  should_fail_ex+0x3b0/0x4e0
[ 1170.147253][T19542]  should_failslab+0xac/0x100
[ 1170.151962][T19542]  kmem_cache_alloc_node_noprof+0x77/0x380
[ 1170.157787][T19542]  ? __alloc_skb+0x1c3/0x440
[ 1170.162391][T19542]  ? __x64_sys_shutdown+0x13f/0x1a0
[ 1170.167621][T19542]  __alloc_skb+0x1c3/0x440
[ 1170.172065][T19542]  ? __pfx___alloc_skb+0x10/0x10
[ 1170.177030][T19542]  ? mark_lock+0x20/0x360
[ 1170.181390][T19542]  skb_copy_expand+0x199/0xb60
[ 1170.186171][T19542]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1170.192535][T19542]  sctp_ulpevent_make_send_failed_event+0x5e/0xb80
[ 1170.199064][T19542]  ? kmem_cache_free+0x195/0x410
[ 1170.204038][T19542]  ? sctp_datamsg_put+0x42b/0x570
[ 1170.209087][T19542]  sctp_datamsg_put+0x3a4/0x570
[ 1170.213967][T19542]  sctp_chunk_free+0x4a/0x60
[ 1170.218584][T19542]  __sctp_outq_teardown+0x7c6/0x9b0
[ 1170.223806][T19542]  sctp_association_free+0x21a/0x7b0
[ 1170.229115][T19542]  sctp_do_sm+0x4393/0x60c0
[ 1170.233657][T19542]  ? __pfx_sctp_do_sm+0x10/0x10
[ 1170.238568][T19542]  ? __local_bh_enable_ip+0x168/0x200
[ 1170.243965][T19542]  ? lockdep_hardirqs_on+0x99/0x150
[ 1170.249194][T19542]  ? trace_inet_sock_set_state+0x90/0x230
[ 1170.254938][T19542]  sctp_primitive_SHUTDOWN+0x98/0xc0
[ 1170.260250][T19542]  ? __pfx_sctp_shutdown+0x10/0x10
[ 1170.265382][T19542]  inet_shutdown+0x1fd/0x390
[ 1170.270001][T19542]  __x64_sys_shutdown+0x13f/0x1a0
[ 1170.275058][T19542]  do_syscall_64+0xf3/0x230
[ 1170.279587][T19542]  ? clear_bhb_loop+0x35/0x90
[ 1170.284282][T19542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1170.290286][T19542] RIP: 0033:0x7f1f33b85d19
[ 1170.294716][T19542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1170.314342][T19542] RSP: 002b:00007f1f319f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000030
[ 1170.322783][T19542] RAX: ffffffffffffffda RBX: 00007f1f33d76080 RCX: 00007f1f33b85d19
[ 1170.330774][T19542] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000003
[ 1170.338760][T19542] RBP: 00007f1f319f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1170.346751][T19542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1170.354733][T19542] R13: 0000000000000001 R14: 00007f1f33d76080 R15: 00007ffe82554568
[ 1170.362914][T19542]  </TASK>
[ 1170.366150][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1171.345075][T19548] FAULT_INJECTION: forcing a failure.
[ 1171.345075][T19548] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1171.358436][T19548] CPU: 0 UID: 0 PID: 19548 Comm: syz.7.3333 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1171.369223][T19548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1171.379279][T19548] Call Trace:
[ 1171.382557][T19548]  <TASK>
[ 1171.385491][T19548]  dump_stack_lvl+0x241/0x360
[ 1171.390178][T19548]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1171.395373][T19548]  ? __pfx__printk+0x10/0x10
[ 1171.399967][T19548]  ? snprintf+0xda/0x120
[ 1171.404299][T19548]  should_fail_ex+0x3b0/0x4e0
[ 1171.408978][T19548]  _copy_to_user+0x31/0xb0
[ 1171.413397][T19548]  simple_read_from_buffer+0xca/0x150
[ 1171.418789][T19548]  proc_fail_nth_read+0x1e9/0x250
[ 1171.423816][T19548]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1171.429362][T19548]  ? rw_verify_area+0x55e/0x6f0
[ 1171.434207][T19548]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1171.439757][T19548]  vfs_read+0x1fc/0xb70
[ 1171.443916][T19548]  ? __pfx___mutex_lock+0x10/0x10
[ 1171.448941][T19548]  ? __pfx_vfs_read+0x10/0x10
[ 1171.453615][T19548]  ? __fget_files+0x2a/0x410
[ 1171.458207][T19548]  ? __fget_files+0x395/0x410
[ 1171.462876][T19548]  ? __fget_files+0x2a/0x410
[ 1171.467474][T19548]  ksys_read+0x18f/0x2b0
[ 1171.471717][T19548]  ? __pfx_ksys_read+0x10/0x10
[ 1171.476478][T19548]  ? do_syscall_64+0x100/0x230
[ 1171.481249][T19548]  ? do_syscall_64+0xb6/0x230
[ 1171.485934][T19548]  do_syscall_64+0xf3/0x230
[ 1171.490445][T19548]  ? clear_bhb_loop+0x35/0x90
[ 1171.495207][T19548]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1171.501131][T19548] RIP: 0033:0x7f8f2518472c
[ 1171.505584][T19548] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1171.525222][T19548] RSP: 002b:00007f8f22ff6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1171.533649][T19548] RAX: ffffffffffffffda RBX: 00007f8f25376160 RCX: 00007f8f2518472c
[ 1171.541622][T19548] RDX: 000000000000000f RSI: 00007f8f22ff60a0 RDI: 0000000000000009
[ 1171.549620][T19548] RBP: 00007f8f22ff6090 R08: 0000000000000000 R09: 0000000000000000
[ 1171.557605][T19548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1171.565668][T19548] R13: 0000000000000000 R14: 00007f8f25376160 R15: 00007ffc3e06d1a8
[ 1171.573653][T19548]  </TASK>
[ 1171.986101][ T5873] usb 7-1: USB disconnect, device number 32
[ 1173.896340][ T5873] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[ 1174.092606][ T5873] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1174.102895][ T5873] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1174.375928][ T5873] usb 7-1: config 0 descriptor??
[ 1174.397961][ T5873] cp210x 7-1:0.0: cp210x converter detected
[ 1174.434160][T19589] mkiss: ax0: crc mode is auto.
[ 1174.818572][ T5873] cp210x 7-1:0.0: failed to get vendor val 0x0010 size 3: -32
[ 1174.834437][ T5873] usb 7-1: cp210x converter now attached to ttyUSB0
[ 1175.497765][T19609] /dev/sg0: Can't lookup blockdev
[ 1176.246741][T19610] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1176.561933][   T57] usb 7-1: USB disconnect, device number 33
[ 1176.598331][   T57] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1176.766254][   T57] cp210x 7-1:0.0: device disconnected
[ 1177.773375][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.995857][   T57] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[ 1178.146472][   T57] usb 7-1: Using ep0 maxpacket: 32
[ 1178.154162][   T57] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1178.364125][   T57] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1178.375301][   T57] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[ 1178.387477][   T57] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024
[ 1178.398775][   T57] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[ 1178.408922][   T57] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[ 1178.420941][   T57] usb 7-1: New USB device found, idVendor=072f, idProduct=2200, bcdDevice=3f.bf
[ 1178.430337][   T57] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1178.438519][   T57] usb 7-1: Product: syz
[ 1178.442785][   T57] usb 7-1: Manufacturer: syz
[ 1178.453920][   T57] usb 7-1: SerialNumber: syz
[ 1178.490783][   T57] usb 7-1: config 0 descriptor??
[ 1178.610688][T19634] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1178.735623][   T57] pn533_usb 7-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[ 1179.051609][T19634] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1179.064402][T19634] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1179.119254][   T57] usb 7-1: USB disconnect, device number 34
[ 1179.377975][T19649] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1179.441553][T19649] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1179.498966][T19649] bond0 (unregistering): Released all slaves
[ 1179.749102][T19678] mkiss: ax0: crc mode is auto.
[ 1183.655296][T19757] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3365'.
[ 1185.783299][T19767] overlayfs: metacopy with no lower data found - abort lookup (/bus)
[ 1186.011041][T19773] mkiss: ax0: crc mode is auto.
[ 1188.307964][T19802] mkiss: ax0: crc mode is auto.
[ 1193.767629][T19845] mkiss: ax0: crc mode is auto.
[ 1193.806380][   T29] audit: type=1800 audit(1734317454.554:206): pid=19848 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.5.3382" name="/" dev="fuse" ino=0 res=0 errno=0
[ 1195.564658][T19884] mkiss: ax0: crc mode is auto.
[ 1196.560322][T19895] FAULT_INJECTION: forcing a failure.
[ 1196.560322][T19895] name failslab, interval 1, probability 0, space 0, times 0
[ 1196.677402][T19895] CPU: 1 UID: 0 PID: 19895 Comm: syz.4.3393 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1196.688227][T19895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1196.698317][T19895] Call Trace:
[ 1196.701614][T19895]  <TASK>
[ 1196.704559][T19895]  dump_stack_lvl+0x241/0x360
[ 1196.709263][T19895]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1196.714484][T19895]  ? __pfx__printk+0x10/0x10
[ 1196.719116][T19895]  ? __kmalloc_cache_noprof+0x48/0x390
[ 1196.724604][T19895]  ? __pfx___might_resched+0x10/0x10
[ 1196.729917][T19895]  ? arch_stack_walk+0xfd/0x150
[ 1196.734794][T19895]  should_fail_ex+0x3b0/0x4e0
[ 1196.739494][T19895]  should_failslab+0xac/0x100
[ 1196.744196][T19895]  __kmalloc_cache_noprof+0x70/0x390
[ 1196.749496][T19895]  ? rtnl_newlink+0x131/0x2150
[ 1196.754279][T19895]  rtnl_newlink+0x131/0x2150
[ 1196.758893][T19895]  ? kasan_save_track+0x51/0x80
[ 1196.763767][T19895]  ? kasan_save_free_info+0x40/0x50
[ 1196.768977][T19895]  ? __kasan_slab_free+0x59/0x70
[ 1196.773945][T19895]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1196.778987][T19895]  ? __netlink_deliver_tap+0x56b/0x7f0
[ 1196.784467][T19895]  ? __pfx_validate_chain+0x10/0x10
[ 1196.789684][T19895]  ? __sock_sendmsg+0x221/0x270
[ 1196.794555][T19895]  ? ____sys_sendmsg+0x52a/0x7e0
[ 1196.799508][T19895]  ? __sys_sendmsg+0x269/0x350
[ 1196.804290][T19895]  ? do_syscall_64+0xf3/0x230
[ 1196.808984][T19895]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1196.815096][T19895]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1196.821094][T19895]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1196.827443][T19895]  ? mark_lock+0x9a/0x360
[ 1196.831797][T19895]  ? __lock_acquire+0x1397/0x2100
[ 1196.836863][T19895]  ? rcu_read_unlock+0x87/0xa0
[ 1196.841640][T19895]  ? __dev_queue_xmit+0x1775/0x3f50
[ 1196.846857][T19895]  ? __pfx_lock_release+0x10/0x10
[ 1196.851897][T19895]  ? cap_capable+0x1b4/0x250
[ 1196.856499][T19895]  ? safesetid_security_capable+0xb2/0x1d0
[ 1196.862340][T19895]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1196.867389][T19895]  rtnetlink_rcv_msg+0x791/0xcf0
[ 1196.872343][T19895]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[ 1196.877478][T19895]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1196.882959][T19895]  ? ref_tracker_free+0x643/0x7e0
[ 1196.888015][T19895]  netlink_rcv_skb+0x1e3/0x430
[ 1196.892796][T19895]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1196.898282][T19895]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1196.903617][T19895]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1196.908839][T19895]  netlink_unicast+0x7f6/0x990
[ 1196.913635][T19895]  ? __pfx_netlink_unicast+0x10/0x10
[ 1196.918938][T19895]  ? __virt_addr_valid+0x45f/0x530
[ 1196.924069][T19895]  ? __phys_addr_symbol+0x2f/0x70
[ 1196.929107][T19895]  ? __check_object_size+0x47a/0x730
[ 1196.934417][T19895]  netlink_sendmsg+0x8e4/0xcb0
[ 1196.939211][T19895]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1196.944545][T19895]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1196.949856][T19895]  __sock_sendmsg+0x221/0x270
[ 1196.954566][T19895]  ____sys_sendmsg+0x52a/0x7e0
[ 1196.959362][T19895]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1196.964663][T19895]  ? __fget_files+0x2a/0x410
[ 1196.969275][T19895]  ? __fget_files+0x2a/0x410
[ 1196.973895][T19895]  __sys_sendmsg+0x269/0x350
[ 1196.978516][T19895]  ? __pfx_lock_release+0x10/0x10
[ 1196.983564][T19895]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1196.988723][T19895]  ? __pfx_vfs_write+0x10/0x10
[ 1196.993534][T19895]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1196.999894][T19895]  ? do_syscall_64+0x100/0x230
[ 1197.004689][T19895]  ? do_syscall_64+0xb6/0x230
[ 1197.009379][T19895]  do_syscall_64+0xf3/0x230
[ 1197.013918][T19895]  ? clear_bhb_loop+0x35/0x90
[ 1197.018593][T19895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1197.024486][T19895] RIP: 0033:0x7fe2a6385d19
[ 1197.028898][T19895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1197.048500][T19895] RSP: 002b:00007fe2a71ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1197.056912][T19895] RAX: ffffffffffffffda RBX: 00007fe2a6575fa0 RCX: 00007fe2a6385d19
[ 1197.064875][T19895] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[ 1197.072927][T19895] RBP: 00007fe2a71ce090 R08: 0000000000000000 R09: 0000000000000000
[ 1197.080890][T19895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1197.088858][T19895] R13: 0000000000000000 R14: 00007fe2a6575fa0 R15: 00007fffa3a4e848
[ 1197.096837][T19895]  </TASK>
[ 1197.099981][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1197.399682][T19913] mkiss: ax0: crc mode is auto.
[ 1198.001916][T19925] IPv6: sit1: Disabled Multicast RS
[ 1198.518028][T19925] 9pnet_fd: Insufficient options for proto=fd
[ 1199.976081][T19932] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[ 1200.236506][T19957] lo: entered allmulticast mode
[ 1200.991982][T19969] loop7: detected capacity change from 0 to 16384
[ 1201.138101][T19956] lo: left allmulticast mode
[ 1201.146093][T19973] loop7: detected capacity change from 16384 to 16383
[ 1201.273145][T19988] FAULT_INJECTION: forcing a failure.
[ 1201.273145][T19988] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1201.289687][T19988] CPU: 1 UID: 0 PID: 19988 Comm: syz.7.3410 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1201.300505][T19988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1201.310588][T19988] Call Trace:
[ 1201.313876][T19988]  <TASK>
[ 1201.316808][T19988]  dump_stack_lvl+0x241/0x360
[ 1201.321494][T19988]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1201.326691][T19988]  ? __pfx__printk+0x10/0x10
[ 1201.331277][T19988]  ? __pfx_lock_release+0x10/0x10
[ 1201.336302][T19988]  should_fail_ex+0x3b0/0x4e0
[ 1201.340986][T19988]  _copy_from_user+0x2f/0xc0
[ 1201.345580][T19988]  generic_map_update_batch+0x567/0x900
[ 1201.351135][T19988]  ? __pfx_generic_map_update_batch+0x10/0x10
[ 1201.357200][T19988]  ? __fget_files+0x395/0x410
[ 1201.361876][T19988]  ? __fget_files+0x2a/0x410
[ 1201.366473][T19988]  ? __pfx_generic_map_update_batch+0x10/0x10
[ 1201.372536][T19988]  bpf_map_do_batch+0x39a/0x660
[ 1201.377395][T19988]  __sys_bpf+0x377/0x810
[ 1201.381635][T19988]  ? __pfx___sys_bpf+0x10/0x10
[ 1201.386404][T19988]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1201.392381][T19988]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1201.398713][T19988]  ? do_syscall_64+0x100/0x230
[ 1201.403486][T19988]  __x64_sys_bpf+0x7c/0x90
[ 1201.407909][T19988]  do_syscall_64+0xf3/0x230
[ 1201.412412][T19988]  ? clear_bhb_loop+0x35/0x90
[ 1201.417087][T19988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1201.422979][T19988] RIP: 0033:0x7f8f25185d19
[ 1201.427392][T19988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1201.446996][T19988] RSP: 002b:00007f8f25efa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1201.455410][T19988] RAX: ffffffffffffffda RBX: 00007f8f25375fa0 RCX: 00007f8f25185d19
[ 1201.463381][T19988] RDX: 0000000000000038 RSI: 0000000020000200 RDI: 000000000000001a
[ 1201.471437][T19988] RBP: 00007f8f25efa090 R08: 0000000000000000 R09: 0000000000000000
[ 1201.479402][T19988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1201.487370][T19988] R13: 0000000000000000 R14: 00007f8f25375fa0 R15: 00007ffc3e06d1a8
[ 1201.495351][T19988]  </TASK>
[ 1201.525874][T19990] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1201.623610][T19993] mkiss: ax0: crc mode is auto.
[ 1201.633514][T19993] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3411'.
[ 1201.668342][T19967] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1202.366484][T20019] /dev/sg0: Can't lookup blockdev
[ 1203.154650][T14976] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[ 1203.229138][T20030] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3417'.
[ 1203.244673][T20030] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3417'.
[ 1203.258834][T20030] vlan3: entered allmulticast mode
[ 1203.264000][T20030] gretap0: entered allmulticast mode
[ 1203.717869][T20041] /dev/sg0: Can't lookup blockdev
[ 1204.856447][T14976] usb 5-1: config 0 has an invalid interface number: 127 but max is 3
[ 1204.870404][T14976] usb 5-1: config 0 has an invalid interface number: 86 but max is 3
[ 1204.879066][T14976] usb 5-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[ 1204.888632][T14976] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1204.899200][T14976] usb 5-1: config 0 has 2 interfaces, different from the descriptor's value: 4
[ 1204.908903][T14976] usb 5-1: config 0 has no interface number 0
[ 1204.915387][T14976] usb 5-1: config 0 has no interface number 1
[ 1204.930689][T14976] usb 5-1: config 0 interface 127 altsetting 6 has an invalid descriptor for endpoint zero, skipping
[ 1204.941986][T14976] usb 5-1: config 0 interface 127 altsetting 6 endpoint 0x9 has invalid maxpacket 1023, setting to 64
[ 1204.953416][T14976] usb 5-1: config 0 interface 127 altsetting 6 has 2 endpoint descriptors, different from the interface descriptor's value: 14
[ 1204.966947][T14976] usb 5-1: too many endpoints for config 0 interface 86 altsetting 21: 163, using maximum allowed: 30
[ 1205.054341][T14976] usb 5-1: config 0 interface 86 altsetting 21 has a duplicate endpoint with address 0x9, skipping
[ 1205.261518][T14976] usb 5-1: config 0 interface 86 altsetting 21 has 4 endpoint descriptors, different from the interface descriptor's value: 163
[ 1205.317274][T14976] usb 5-1: config 0 interface 127 has no altsetting 0
[ 1205.959367][T14976] usb 5-1: config 0 interface 86 has no altsetting 0
[ 1205.966307][T14976] usb 5-1: New USB device found, idVendor=05ac, idProduct=0253, bcdDevice=26.d5
[ 1205.975500][T14976] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1205.985054][   T29] audit: type=1800 audit(1734317466.944:207): pid=20052 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.7.3422" name="/" dev="fuse" ino=0 res=0 errno=0
[ 1206.218167][T14976] usb 5-1: config 0 descriptor??
[ 1206.224109][T14976] usb 5-1: can't set config #0, error -71
[ 1206.299215][T14976] usb 5-1: USB disconnect, device number 53
[ 1206.372413][T20074] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3428'.
[ 1206.439806][T20068] mkiss: ax0: crc mode is auto.
[ 1206.450967][T20068] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3423'.
[ 1207.699482][T20092] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1209.471931][T20122] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[ 1209.932881][T20136] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3443'.
[ 1210.255484][T20142] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3444'.
[ 1210.277064][T20142] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1210.825343][T20148] mkiss: ax0: crc mode is auto.
[ 1210.834316][T20148] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3445'.
[ 1210.946933][T20152] FAULT_INJECTION: forcing a failure.
[ 1210.946933][T20152] name failslab, interval 1, probability 0, space 0, times 0
[ 1210.999986][T20152] CPU: 1 UID: 0 PID: 20152 Comm: syz.7.3441 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1211.010780][T20152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1211.020838][T20152] Call Trace:
[ 1211.024109][T20152]  <TASK>
[ 1211.027038][T20152]  dump_stack_lvl+0x241/0x360
[ 1211.031733][T20152]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1211.036927][T20152]  ? __pfx__printk+0x10/0x10
[ 1211.041511][T20152]  ? fs_reclaim_acquire+0x93/0x130
[ 1211.046615][T20152]  ? __pfx___might_resched+0x10/0x10
[ 1211.051896][T20152]  should_fail_ex+0x3b0/0x4e0
[ 1211.056575][T20152]  should_failslab+0xac/0x100
[ 1211.061247][T20152]  __kmalloc_noprof+0xdd/0x4c0
[ 1211.066040][T20152]  ? kstrtouint_from_user+0x128/0x190
[ 1211.071401][T20152]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[ 1211.077144][T20152]  tomoyo_realpath_from_path+0xcf/0x5e0
[ 1211.082721][T20152]  tomoyo_path_number_perm+0x236/0x860
[ 1211.088190][T20152]  ? __lock_acquire+0x1397/0x2100
[ 1211.093227][T20152]  ? tomoyo_path_number_perm+0x206/0x860
[ 1211.098864][T20152]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1211.104873][T20152]  ? __fget_files+0x2a/0x410
[ 1211.109460][T20152]  ? __fget_files+0x2a/0x410
[ 1211.114052][T20152]  security_file_ioctl+0xc6/0x2a0
[ 1211.119073][T20152]  __se_sys_ioctl+0x46/0x170
[ 1211.123660][T20152]  do_syscall_64+0xf3/0x230
[ 1211.128163][T20152]  ? clear_bhb_loop+0x35/0x90
[ 1211.132841][T20152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1211.138738][T20152] RIP: 0033:0x7f8f25185d19
[ 1211.143149][T20152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1211.162754][T20152] RSP: 002b:00007f8f25ed9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1211.171169][T20152] RAX: ffffffffffffffda RBX: 00007f8f25376080 RCX: 00007f8f25185d19
[ 1211.179136][T20152] RDX: 0000000020000080 RSI: 00000000c028aa05 RDI: 0000000000000003
[ 1211.187102][T20152] RBP: 00007f8f25ed9090 R08: 0000000000000000 R09: 0000000000000000
[ 1211.195064][T20152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1211.203027][T20152] R13: 0000000000000000 R14: 00007f8f25376080 R15: 00007ffc3e06d1a8
[ 1211.211004][T20152]  </TASK>
[ 1211.238282][T20152] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1212.834425][T20131] syz.7.3441 (20131) used greatest stack depth: 17360 bytes left
[ 1212.987179][T20184] FAULT_INJECTION: forcing a failure.
[ 1212.987179][T20184] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1212.987309][T20183] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3453'.
[ 1213.000499][T20184] CPU: 1 UID: 0 PID: 20184 Comm: syz.6.3450 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1213.020381][T20184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1213.030440][T20184] Call Trace:
[ 1213.033716][T20184]  <TASK>
[ 1213.036645][T20184]  dump_stack_lvl+0x241/0x360
[ 1213.041333][T20184]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1213.046536][T20184]  ? __pfx__printk+0x10/0x10
[ 1213.051129][T20184]  ? __pfx_lock_release+0x10/0x10
[ 1213.056153][T20184]  ? qrtr_getname+0x141/0x1d0
[ 1213.060839][T20184]  should_fail_ex+0x3b0/0x4e0
[ 1213.065524][T20184]  _copy_to_user+0x31/0xb0
[ 1213.069946][T20184]  move_addr_to_user+0x13e/0x1d0
[ 1213.074881][T20184]  __sys_getsockname+0x1cb/0x270
[ 1213.079824][T20184]  ? __pfx___sys_getsockname+0x10/0x10
[ 1213.085289][T20184]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1213.091621][T20184]  ? do_syscall_64+0x100/0x230
[ 1213.096396][T20184]  __x64_sys_getsockname+0x7b/0x90
[ 1213.101506][T20184]  do_syscall_64+0xf3/0x230
[ 1213.106007][T20184]  ? clear_bhb_loop+0x35/0x90
[ 1213.110686][T20184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1213.116577][T20184] RIP: 0033:0x7f16aaf85d19
[ 1213.120988][T20184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1213.140596][T20184] RSP: 002b:00007f16abde9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000033
[ 1213.149192][T20184] RAX: ffffffffffffffda RBX: 00007f16ab175fa0 RCX: 00007f16aaf85d19
[ 1213.157158][T20184] RDX: 0000000020001480 RSI: 0000000020000200 RDI: 0000000000000003
[ 1213.165124][T20184] RBP: 00007f16abde9090 R08: 0000000000000000 R09: 0000000000000000
[ 1213.173087][T20184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1213.181057][T20184] R13: 0000000000000000 R14: 00007f16ab175fa0 R15: 00007fff85c69168
[ 1213.189045][T20184]  </TASK>
[ 1213.192417][T14862] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[ 1213.546093][T14862] usb 5-1: Using ep0 maxpacket: 16
[ 1213.599268][T14862] usb 5-1: New USB device found, idVendor=05ac, idProduct=0263, bcdDevice=6f.9e
[ 1213.667323][T14862] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1213.751248][T14862] usb 5-1: Product: syz
[ 1213.803028][T14862] usb 5-1: Manufacturer: syz
[ 1213.881180][T14862] usb 5-1: SerialNumber: syz
[ 1213.987664][T14862] usb 5-1: config 0 descriptor??
[ 1214.873119][T20207] mkiss: ax0: crc mode is auto.
[ 1214.882818][T20207] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3457'.
[ 1214.991511][T14862] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input31
[ 1214.996684][T20219] random: crng reseeded on system resumption
[ 1215.004641][ T5180] bcm5974 5-1:0.0: could not read from device
[ 1215.013365][T14862] usb 5-1: USB disconnect, device number 54
[ 1215.144173][T20236] fuse: Bad value for 'fd'
[ 1215.503418][T20242] /dev/sg0: Can't lookup blockdev
[ 1216.877444][T20251] fuse: Bad value for 'fd'
[ 1217.957019][T20219] Restarting kernel threads ... done.
[ 1218.102670][T20270] mkiss: ax0: crc mode is auto.
[ 1218.113902][T20270] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3469'.
[ 1218.729772][T20300] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3470'.
[ 1218.808471][T20300] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1218.817985][T20300] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1218.827070][T20300] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1218.835790][T20300] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1218.848534][T20300] vxlan0: entered promiscuous mode
[ 1219.356232][T19962] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[ 1219.536414][T19962] usb 10-1: Using ep0 maxpacket: 32
[ 1219.569695][T19962] usb 10-1: config 0 has an invalid interface number: 51 but max is 0
[ 1219.619248][T19962] usb 10-1: config 0 has no interface number 0
[ 1219.677274][T19962] usb 10-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1219.709887][T19962] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1219.739697][T19962] usb 10-1: Product: syz
[ 1219.763617][T19962] usb 10-1: Manufacturer: syz
[ 1219.806794][T19962] usb 10-1: SerialNumber: syz
[ 1219.846300][T19962] usb 10-1: config 0 descriptor??
[ 1219.863420][T19962] quatech2 10-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1220.230690][T20335] fuse: Unknown parameter 'grŒup_id'
[ 1221.399247][T19962] usb 10-1: qt2_attach - failed to power on unit: -71
[ 1221.418221][T19962] quatech2 10-1:0.51: probe with driver quatech2 failed with error -71
[ 1221.438604][T19962] usb 10-1: USB disconnect, device number 12
[ 1221.563450][T20366] mkiss: ax0: crc mode is auto.
[ 1221.572467][T20366] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3482'.
[ 1222.352453][T20389] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:20003
[ 1222.865741][T20374] overlayfs: failed to resolve './file1': -2
[ 1223.768824][T20399] /dev/sg0: Can't lookup blockdev
[ 1224.816240][T20397] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1225.115885][T20407] loop7: detected capacity change from 0 to 16384
[ 1225.186312][ T5876] usb 6-1: new full-speed USB device number 34 using dummy_hcd
[ 1225.396359][T20410] loop7: detected capacity change from 16384 to 16383
[ 1225.404416][ T5876] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1225.414374][ T5876] usb 6-1: unable to read config index 0 descriptor/start: -71
[ 1225.906780][T13281] Bluetooth: hci4: command 0x0406 tx timeout
[ 1226.060542][ T5876] usb 6-1: can't read configurations, error -71
[ 1226.528794][T20433] overlayfs: failed to resolve './file1': -2
[ 1226.817104][T20412] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1226.887792][T20437] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3496'.
[ 1227.081781][T20439] mkiss: ax0: crc mode is auto.
[ 1227.091754][T20439] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3497'.
[ 1227.676221][T14862] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[ 1227.828181][T14862] usb 7-1: too many configurations: 55, using maximum allowed: 8
[ 1228.334140][T14862] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1228.448450][T20467] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1228.516146][T14862] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1228.524194][T14862] usb 7-1: Product: syz
[ 1228.544577][T20465] lo speed is unknown, defaulting to 1000
[ 1228.550520][T14862] usb 7-1: Manufacturer: syz
[ 1228.550544][T14862] usb 7-1: SerialNumber: syz
[ 1228.628466][T20474] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1229.377885][T14862] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1229.473221][ T1211] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1229.801537][T20514] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3508'.
[ 1229.813606][T20514] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3508'.
[ 1229.839730][T20511] fuse: Unknown parameter 'grŒup_id'
[ 1230.646254][T14370] usb 10-1: new full-speed USB device number 13 using dummy_hcd
[ 1230.695706][T20533] mkiss: ax0: crc mode is auto.
[ 1230.705198][T20533] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3511'.
[ 1230.982223][T14370] usb 10-1: unable to get BOS descriptor or descriptor too short
[ 1231.005571][T14370] usb 10-1: unable to read config index 0 descriptor/start: -71
[ 1231.053807][T14370] usb 10-1: can't read configurations, error -71
[ 1235.876251][T14370] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[ 1236.036422][T14370] usb 10-1: Using ep0 maxpacket: 32
[ 1236.048676][T14370] usb 10-1: config 0 has an invalid interface number: 51 but max is 0
[ 1236.065560][T14370] usb 10-1: config 0 has no interface number 0
[ 1236.083165][T14370] usb 10-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1236.112254][T14370] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1236.176167][T14370] usb 10-1: Product: syz
[ 1236.196459][T14370] usb 10-1: Manufacturer: syz
[ 1236.225686][T14370] usb 10-1: SerialNumber: syz
[ 1236.242711][T14370] usb 10-1: config 0 descriptor??
[ 1236.303540][T20597] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3522'.
[ 1236.347956][T14370] quatech2 10-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1237.327892][T20602] /dev/sg0: Can't lookup blockdev
[ 1238.495076][T20607] program syz.7.3525 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1239.222505][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1241.288122][T14370] usb 10-1: qt2_attach - failed to power on unit: -71
[ 1241.295256][T14370] quatech2 10-1:0.51: probe with driver quatech2 failed with error -71
[ 1241.373270][T14370] usb 10-1: USB disconnect, device number 15
[ 1241.909249][T19962] usb 5-1: new full-speed USB device number 55 using dummy_hcd
[ 1242.730605][T19962] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1242.745485][T19962] usb 5-1: unable to read config index 0 descriptor/start: -71
[ 1242.762477][T19962] usb 5-1: can't read configurations, error -71
[ 1244.510240][T20654] mkiss: ax0: crc mode is auto.
[ 1244.577507][T20654] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3534'.
[ 1252.972267][T20671] loop7: detected capacity change from 0 to 16384
[ 1254.503934][T13281] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1254.526239][T13281] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1254.535746][T13281] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1254.551901][T13281] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1254.568608][T13281] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1254.578888][T13281] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1254.660582][T20684] lo speed is unknown, defaulting to 1000
[ 1255.187243][T20684] chnl_net:caif_netlink_parms(): no params data found
[ 1255.394976][T20684] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1255.435415][T20684] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1255.479056][T20684] bridge_slave_0: entered allmulticast mode
[ 1255.495711][T20684] bridge_slave_0: entered promiscuous mode
[ 1255.506787][T20684] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1255.514104][T20684] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1255.534434][T20684] bridge_slave_1: entered allmulticast mode
[ 1255.546981][T20684] bridge_slave_1: entered promiscuous mode
[ 1255.624842][T20684] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1255.643525][T20684] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1255.745729][T20684] team0: Port device team_slave_0 added
[ 1255.775548][T20684] team0: Port device team_slave_1 added
[ 1255.871615][T20684] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1255.893950][T20684] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1255.944946][T20684] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1255.962668][T20684] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1255.977893][T20684] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1256.013854][T20684] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1256.198547][T20684] hsr_slave_0: entered promiscuous mode
[ 1256.211064][T20684] hsr_slave_1: entered promiscuous mode
[ 1256.221476][T20684] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1256.233862][T20684] Cannot create hsr debugfs directory
[ 1256.678886][ T5821] Bluetooth: hci3: command tx timeout
[ 1258.264381][T13281] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1258.275895][T13281] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1258.284444][T13281] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1258.292844][T13281] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1258.301544][T13281] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1258.312981][T13281] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1258.455741][T13281] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1258.484664][T13281] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1258.495572][T13281] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1258.504075][T13281] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1258.528211][T13281] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 1258.535586][T13281] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1258.756213][T13281] Bluetooth: hci3: command tx timeout
[ 1260.436352][T13281] Bluetooth: hci5: command tx timeout
[ 1260.606079][T13281] Bluetooth: hci7: command tx timeout
[ 1260.846087][T13281] Bluetooth: hci3: command tx timeout
[ 1262.516133][T13281] Bluetooth: hci5: command tx timeout
[ 1262.676565][T13281] Bluetooth: hci7: command tx timeout
[ 1262.916057][T13281] Bluetooth: hci3: command tx timeout
[ 1264.596642][T13281] Bluetooth: hci5: command tx timeout
[ 1264.756116][T13281] Bluetooth: hci7: command tx timeout
[ 1266.676201][T13281] Bluetooth: hci5: command tx timeout
[ 1266.836178][T13281] Bluetooth: hci7: command tx timeout
[ 1268.664678][ T5821] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1268.687177][ T5821] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1268.695665][ T5821] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1268.703657][ T5821] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1268.713609][ T5821] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 1268.721068][ T5821] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1270.756224][ T5821] Bluetooth: hci8: command tx timeout
[ 1272.841751][ T5821] Bluetooth: hci8: command tx timeout
[ 1273.084052][T13281] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1273.097218][T13281] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1273.105856][T13281] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1273.130150][T13281] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1273.150493][T13281] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 1273.165172][T13281] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1274.916129][T13281] Bluetooth: hci8: command tx timeout
[ 1275.236152][T13281] Bluetooth: hci9: command tx timeout
[ 1276.986241][T13281] Bluetooth: hci8: command tx timeout
[ 1277.325968][T13281] Bluetooth: hci9: command tx timeout
[ 1279.396188][T13281] Bluetooth: hci9: command tx timeout
[ 1281.476062][T13281] Bluetooth: hci9: command tx timeout
[ 1300.442455][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1318.898725][ T5821] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1318.916221][ T5821] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1318.925290][ T5821] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1318.937480][ T5821] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1318.963367][ T5821] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 1318.971006][ T5821] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1319.665544][T13281] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 1319.686583][T13281] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 1319.695191][T13281] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 1319.706957][T13281] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 1319.714626][T13281] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 1319.726294][T13281] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 1319.814748][ T5821] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 1319.832092][ T5821] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 1319.840842][ T5821] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 1319.849997][ T5821] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 1319.861761][ T5821] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 1319.869617][ T5821] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 1321.076334][ T5821] Bluetooth: hci10: command tx timeout
[ 1321.799491][ T5821] Bluetooth: hci11: command tx timeout
[ 1321.962907][ T5821] Bluetooth: hci12: command tx timeout
[ 1323.156062][ T5821] Bluetooth: hci10: command tx timeout
[ 1323.876014][ T5821] Bluetooth: hci11: command tx timeout
[ 1324.036170][ T5821] Bluetooth: hci12: command tx timeout
[ 1325.238353][ T5821] Bluetooth: hci10: command tx timeout
[ 1325.956068][ T5821] Bluetooth: hci11: command tx timeout
[ 1326.117323][ T5821] Bluetooth: hci12: command tx timeout
[ 1327.316083][ T5821] Bluetooth: hci10: command tx timeout
[ 1328.036187][ T5821] Bluetooth: hci11: command tx timeout
[ 1328.199425][ T5821] Bluetooth: hci12: command tx timeout
[ 1328.896281][T13281] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 1328.920706][T13281] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 1328.929388][T13281] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 1328.937773][T13281] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 1328.945379][T13281] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[ 1328.954574][T13281] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 1330.996193][T13281] Bluetooth: hci13: command tx timeout
[ 1333.085451][T13281] Bluetooth: hci13: command tx timeout
[ 1333.644574][ T5821] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 1333.655350][ T5821] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 1333.671343][ T5821] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 1333.690074][ T5821] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 1333.706072][ T5821] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[ 1333.716540][ T5821] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 1335.156079][ T5821] Bluetooth: hci13: command tx timeout
[ 1335.796412][ T5821] Bluetooth: hci14: command tx timeout
[ 1337.236136][ T5821] Bluetooth: hci13: command tx timeout
[ 1337.866258][ T5821] Bluetooth: hci14: command tx timeout
[ 1339.956147][ T5821] Bluetooth: hci14: command tx timeout
[ 1342.036220][ T5821] Bluetooth: hci14: command tx timeout
[ 1361.880322][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1370.536801][ T1211] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[ 1370.544030][ T1211] ath9k_htc: Failed to initialize the device
[ 1379.332402][T13281] Bluetooth: hci3: command 0x0406 tx timeout
[ 1380.176711][T21074] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[ 1380.196367][T21074] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[ 1380.205068][T21074] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[ 1380.214804][T21074] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[ 1380.226738][T21074] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[ 1380.234100][T21074] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[ 1380.972067][T13281] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[ 1380.995243][T13281] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[ 1381.007379][T13281] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[ 1381.017980][T13281] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[ 1381.027900][T13281] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[ 1381.056871][T13281] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[ 1381.141105][T21074] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[ 1381.156313][T21074] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[ 1381.164587][T21074] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[ 1381.173763][T21074] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[ 1381.181625][T21074] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[ 1381.189524][T21074] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[ 1382.372961][T13281] Bluetooth: hci15: command tx timeout
[ 1383.156258][T21090] Bluetooth: hci16: command tx timeout
[ 1383.236240][T21090] Bluetooth: hci17: command tx timeout
[ 1384.536086][T21090] Bluetooth: hci7: command 0x0406 tx timeout
[ 1384.542175][T21090] Bluetooth: hci5: command 0x0406 tx timeout
[ 1384.565998][T21090] Bluetooth: hci15: command tx timeout
[ 1385.226206][T21091] Bluetooth: hci16: command tx timeout
[ 1385.316044][T21091] Bluetooth: hci17: command tx timeout
[ 1386.596081][T21091] Bluetooth: hci15: command tx timeout
[ 1387.316066][T21091] Bluetooth: hci16: command tx timeout
[ 1387.396065][T21091] Bluetooth: hci17: command tx timeout
[ 1388.676030][T21091] Bluetooth: hci15: command tx timeout
[ 1389.399860][T21091] Bluetooth: hci16: command tx timeout
[ 1389.430961][T21091] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[ 1389.450531][T21091] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[ 1389.476398][T21091] Bluetooth: hci17: command tx timeout
[ 1389.489548][T21091] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[ 1389.511429][T21091] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[ 1389.529557][T21091] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3
[ 1389.537204][T21091] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[ 1391.636132][T21091] Bluetooth: hci18: command tx timeout
[ 1393.723446][T21091] Bluetooth: hci18: command tx timeout
[ 1393.866572][   T30] INFO: task syz.7.3525:20606 blocked for more than 143 seconds.
[ 1393.874342][   T30]       Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1393.903675][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1393.936035][   T30] task:syz.7.3525      state:D stack:24128 pid:20606 tgid:20606 ppid:8352   flags:0x00004006
[ 1393.996081][   T30] Call Trace:
[ 1393.999422][   T30]  <TASK>
[ 1394.002375][   T30]  __schedule+0x17fb/0x4be0
[ 1394.046568][   T30]  ? __pfx___schedule+0x10/0x10
[ 1394.051486][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1394.096041][   T30]  ? schedule+0x90/0x320
[ 1394.100354][   T30]  schedule+0x14b/0x320
[ 1394.104542][   T30]  schedule_timeout+0xb0/0x290
[ 1394.156056][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[ 1394.161499][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1394.216015][   T30]  ? wait_for_completion+0x2fe/0x620
[ 1394.221754][   T30]  ? wait_for_completion+0x2fe/0x620
[ 1394.316065][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1394.321336][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[ 1394.395953][   T30]  ? wait_for_completion+0x2fe/0x620
[ 1394.401309][   T30]  wait_for_completion+0x355/0x620
[ 1394.426553][   T30]  ? __pfx_wait_for_completion+0x10/0x10
[ 1394.432506][   T30]  ? __init_swait_queue_head+0xae/0x150
[ 1394.456111][   T30]  __synchronize_srcu+0x357/0x400
[ 1394.461194][   T30]  ? __pfx___synchronize_srcu+0x10/0x10
[ 1394.486033][   T30]  ? __pfx_wakeme_after_rcu+0x10/0x10
[ 1394.491483][   T30]  ? read_tsc+0x9/0x20
[ 1394.495574][   T30]  ? ktime_get_mono_fast_ns+0x303/0x320
[ 1394.532978][   T30]  ? synchronize_srcu+0x2a7/0x2d0
[ 1394.545336][   T30]  mmu_notifier_unregister+0x2d0/0x3d0
[ 1394.565644][   T30]  ? mmu_notifier_unregister+0xae/0x3d0
[ 1394.571593][   T30]  kvm_put_kvm+0xa99/0xf60
[ 1394.576374][   T30]  kvm_vm_release+0x43/0x50
[ 1394.580903][   T30]  ? __pfx_kvm_vm_release+0x10/0x10
[ 1394.596877][   T30]  __fput+0x23c/0xa50
[ 1394.600921][   T30]  task_work_run+0x24f/0x310
[ 1394.605537][   T30]  ? _raw_spin_unlock+0x28/0x50
[ 1394.619256][   T30]  ? __pfx_task_work_run+0x10/0x10
[ 1394.624418][   T30]  ? syscall_exit_to_user_mode+0xa3/0x340
[ 1394.636262][   T30]  syscall_exit_to_user_mode+0x13f/0x340
[ 1394.641941][   T30]  do_syscall_64+0x100/0x230
[ 1394.659785][   T30]  ? clear_bhb_loop+0x35/0x90
[ 1394.664516][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1394.670946][T21091] Bluetooth: hci8: command 0x0406 tx timeout
[ 1394.690046][   T30] RIP: 0033:0x7f8f25185d19
[ 1394.694515][   T30] RSP: 002b:00007ffc3e06d308 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1394.706791][   T30] RAX: 0000000000000000 RBX: 00007f8f25377ba0 RCX: 00007f8f25185d19
[ 1394.714800][   T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 1394.731156][   T30] RBP: 00007f8f25377ba0 R08: 0000000000018c80 R09: 00007ffc3e06d5ff
[ 1394.746514][   T30] R10: 00007f8f25377ac0 R11: 0000000000000246 R12: 000000000012e8f2
[ 1394.754527][   T30] R13: 00007f8f25376080 R14: 0000000000000032 R15: ffffffffffffffff
[ 1394.779057][   T30]  </TASK>
[ 1394.782571][   T30] INFO: task syz.5.3531:20640 blocked for more than 144 seconds.
[ 1394.802098][   T30]       Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1394.812737][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1394.826192][   T30] task:syz.5.3531      state:D stack:23664 pid:20640 tgid:20639 ppid:18674  flags:0x00004004
[ 1394.844359][   T30] Call Trace:
[ 1394.851666][   T30]  <TASK>
[ 1394.854632][   T30]  __schedule+0x17fb/0x4be0
[ 1394.863108][   T30]  ? __pfx___schedule+0x10/0x10
[ 1394.871731][   T30]  ? __blk_flush_plug+0x449/0x500
[ 1394.885938][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1394.891018][   T30]  ? schedule+0x90/0x320
[ 1394.895293][   T30]  schedule+0x14b/0x320
[ 1394.914551][   T30]  schedule_timeout+0xb0/0x290
[ 1394.922717][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[ 1394.935646][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1394.945223][   T30]  ? wait_for_completion+0x2fe/0x620
[ 1394.956165][   T30]  ? wait_for_completion+0x2fe/0x620
[ 1394.961490][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1394.975928][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[ 1394.981172][   T30]  ? wait_for_completion+0x2fe/0x620
[ 1395.001988][   T30]  wait_for_completion+0x355/0x620
[ 1395.012463][   T30]  ? __pfx_wait_for_completion+0x10/0x10
[ 1395.026029][   T30]  ? __flush_work+0xe7/0xc50
[ 1395.030674][   T30]  __flush_work+0xa37/0xc50
[ 1395.035202][   T30]  ? __flush_work+0xe7/0xc50
[ 1395.052873][   T30]  ? __pfx___flush_work+0x10/0x10
[ 1395.062700][   T30]  ? __pfx_wq_barrier_func+0x10/0x10
[ 1395.072207][   T30]  __lru_add_drain_all+0x4f6/0x560
[ 1395.081165][   T30]  madvise_collapse+0x246/0xd30
[ 1395.086305][   T30]  ? find_vma_prev+0x1a1/0x270
[ 1395.091111][   T30]  ? __pfx_madvise_collapse+0x10/0x10
[ 1395.100443][   T30]  do_madvise+0x1833/0x4d10
[ 1395.104999][   T30]  ? schedule+0x90/0x320
[ 1395.119252][   T30]  ? futex_wait_queue+0x14e/0x1d0
[ 1395.124329][   T30]  ? __pfx_do_madvise+0x10/0x10
[ 1395.143531][   T30]  ? __pfx___futex_wait+0x10/0x10
[ 1395.154462][   T30]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1395.162500][   T30]  ? futex_hash+0x1e/0x1f0
[ 1395.167225][   T30]  ? __seccomp_filter+0x4fe/0x1fe0
[ 1395.172387][   T30]  ? __pfx___seccomp_filter+0x10/0x10
[ 1395.185661][   T30]  ? do_futex+0x33b/0x560
[ 1395.190329][   T30]  ? __pfx_do_futex+0x10/0x10
[ 1395.195055][   T30]  ? __pfx___sys_bpf+0x10/0x10
[ 1395.209704][   T30]  ? __secure_computing+0x125/0x370
[ 1395.214954][   T30]  __x64_sys_madvise+0xa6/0xc0
[ 1395.226884][   T30]  do_syscall_64+0xf3/0x230
[ 1395.231435][   T30]  ? clear_bhb_loop+0x35/0x90
[ 1395.238418][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1395.244357][   T30] RIP: 0033:0x7f3ca7385d19
[ 1395.266742][   T30] RSP: 002b:00007f3ca81a1038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 1395.275210][   T30] RAX: ffffffffffffffda RBX: 00007f3ca7575fa0 RCX: 00007f3ca7385d19
[ 1395.299985][   T30] RDX: 0000000000000019 RSI: 0000000000600722 RDI: 0000000020000000
[ 1395.315314][   T30] RBP: 00007f3ca7401a20 R08: 0000000000000000 R09: 0000000000000000
[ 1395.323642][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1395.339089][   T30] R13: 0000000000000000 R14: 00007f3ca7575fa0 R15: 00007ffe647a6ad8
[ 1395.353444][   T30]  </TASK>
[ 1395.356820][   T30] 
[ 1395.356820][   T30] Showing all locks held in the system:
[ 1395.382889][   T30] 3 locks held by kworker/u8:1/12:
[ 1395.396276][   T30]  #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[ 1395.418594][   T30]  #1: ffffc90000117d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[ 1395.434243][   T30]  #2: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[ 1395.447048][   T30] 1 lock held by khungtaskd/30:
[ 1395.452756][   T30]  #0: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0
[ 1395.469695][   T30] 2 locks held by kworker/0:2/1211:
[ 1395.474959][   T30] 2 locks held by getty/5573:
[ 1395.486144][   T30]  #0: ffff88803581a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1395.517411][   T30]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00
[ 1395.535919][   T30] 5 locks held by kworker/u9:2/5821:
[ 1395.541244][   T30]  #0: ffff8880352ee948 ((wq_completion)hci3){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[ 1395.561045][   T30]  #1: ffffc90003fbfd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[ 1395.577146][   T30]  #2: ffff888067b24d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[ 1395.600653][   T30]  #3: ffff888067b24078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[ 1395.617057][   T30]  #4: ffffffff8e93cff8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x451/0x830
[ 1395.635637][   T30] 4 locks held by kworker/0:6/5876:
[ 1395.649844][   T30] 3 locks held by kworker/u8:12/6114:
[ 1395.665617][   T30]  #0: ffff88814d374148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[ 1395.684510][   T30]  #1: ffffc9000b1bfd00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[ 1395.709504][   T30]  #2: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30
[ 1395.723688][   T30] 4 locks held by kworker/u9:3/13281:
[ 1395.733084][   T30]  #0: ffff888061a85948 ((wq_completion)hci5){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[ 1395.752011][   T30]  #1: ffffc9000c35fd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[ 1395.779364][   T30]  #2: ffff88805ff28d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[ 1395.789513][T21091] Bluetooth: hci18: command tx timeout
[ 1395.798889][   T30]  #3: ffff88805ff28078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[ 1395.819958][   T30] 3 locks held by kworker/0:1/14862:
[ 1395.825278][   T30] 3 locks held by kworker/0:3/14976:
[ 1395.837771][   T30] 4 locks held by kworker/u9:0/18676:
[ 1395.843169][   T30]  #0: ffff88802759b148 ((wq_completion)hci8){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[ 1395.859289][   T30]  #1: ffffc9000b7e7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[ 1395.877171][   T30]  #2: ffff88805eea4d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[ 1395.899744][   T30]  #3: ffff88805eea4078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[ 1395.916098][   T30] 2 locks held by syz.5.3531/20640:
[ 1395.921345][   T30]  #0: ffff888035bc60e0 (&mm->mmap_lock){++++}-{4:4}, at: do_madvise+0x5b0/0x4d10
[ 1395.941938][   T30]  #1: ffffffff8e9f8ba8 (lock#3){+.+.}-{4:4}, at: __lru_add_drain_all+0x66/0x560
[ 1395.957064][   T30] 2 locks held by syz.6.3536/20674:
[ 1395.962950][   T30]  #0: ffff8881437b0360 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2a/0x8f0
[ 1395.979135][   T30]  #1: ffffffff8e9f8ba8 (lock#3){+.+.}-{4:4}, at: __lru_add_drain_all+0x66/0x560
[ 1395.992813][   T30] 2 locks held by syz.6.3536/20677:
[ 1396.006147][   T30]  #0: ffffc90003db9b58 (&kvm->lock){+.+.}-{4:4}, at: kvm_arch_vm_ioctl+0x885/0x17b0
[ 1396.015761][   T30]  #1: ffffc90003db90a8 (&kvm->slots_lock){+.+.}-{4:4}, at: kvm_pic_init+0x193/0x2f0
[ 1396.032245][   T30] 1 lock held by syz.6.3536/20680:
[ 1396.052395][   T30]  #0: ffffc90003db9b58 (&kvm->lock){+.+.}-{4:4}, at: kvm_arch_vm_ioctl+0xd64/0x17b0
[ 1396.069113][   T30] 1 lock held by syz.6.3536/20681:
[ 1396.074255][   T30]  #0: ffffc90003db9b58 (&kvm->lock){+.+.}-{4:4}, at: kvm_vm_ioctl_create_vcpu+0x5a/0xa00
[ 1396.090364][   T30] 1 lock held by syz.6.3536/20683:
[ 1396.095501][   T30]  #0: ffffc90003db9b58 (&kvm->lock){+.+.}-{4:4}, at: kvm_arch_vm_ioctl+0xd0d/0x17b0
[ 1396.108586][   T30] 7 locks held by syz-executor/20684:
[ 1396.113985][   T30]  #0: ffff8880245fa420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x225/0xd30
[ 1396.134441][   T30]  #1: ffff88801cb52088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1ea/0x500
[ 1396.150715][   T30]  #2: ffff888144f0a5a8 (kn->active#49){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20e/0x500
[ 1396.166167][   T30]  #3: ffffffff8f54b168 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xfc/0x480
[ 1396.185170][   T30]  #4: ffff88805f17f0e8 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xce/0x7c0
[ 1396.196126][   T30]  #5: ffff88806bc18250 (&devlink->lock_key#2){+.+.}-{4:4}, at: nsim_drv_remove+0x50/0x160
[ 1396.213615][   T30]  #6: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: nsim_destroy+0x71/0x5c0
[ 1396.223484][   T30] 2 locks held by syz.4.3541/21004:
[ 1396.239336][   T30]  #0: ffffffff8f496b08 (ppp_mutex){+.+.}-{4:4}, at: ppp_ioctl+0x112/0x1cd0
[ 1396.261787][   T30]  #1: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: ppp_ioctl+0x789/0x1cd0
[ 1396.275936][   T30] 1 lock held by syz.4.3541/21005:
[ 1396.281076][   T30]  #0: ffffffff8f496b08 (ppp_mutex){+.+.}-{4:4}, at: ppp_ioctl+0x112/0x1cd0
[ 1396.302470][   T30] 1 lock held by syz-executor/21007:
[ 1396.311548][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.324683][   T30] 1 lock held by syz-executor/21013:
[ 1396.334459][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.347755][   T30] 1 lock held by syz-executor/21020:
[ 1396.353065][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.379767][   T30] 1 lock held by syz-executor/21027:
[ 1396.391490][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.406533][   T30] 1 lock held by syz-executor/21034:
[ 1396.411850][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.427545][   T30] 1 lock held by syz-executor/21042:
[ 1396.432857][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.456039][   T30] 1 lock held by syz-executor/21048:
[ 1396.461356][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.485195][   T30] 1 lock held by syz-executor/21055:
[ 1396.499522][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.519775][   T30] 1 lock held by syz-executor/21062:
[ 1396.525106][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.543077][   T30] 1 lock held by syz-executor/21069:
[ 1396.549339][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.566192][   T30] 4 locks held by kworker/u9:1/21074:
[ 1396.571593][   T30]  #0: ffff8880318cb148 ((wq_completion)hci7){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[ 1396.590218][   T30]  #1: ffffc9000cde7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[ 1396.625385][   T30]  #2: ffff888043dc4d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[ 1396.638668][   T30]  #3: ffff888043dc4078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[ 1396.653424][   T30] 1 lock held by syz-executor/21078:
[ 1396.661520][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.681412][   T30] 1 lock held by syz-executor/21084:
[ 1396.692506][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.703539][   T30] 1 lock held by syz-executor/21093:
[ 1396.714927][   T30]  #0: ffffffff8fc9f388 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[ 1396.733743][   T30] 
[ 1396.746438][   T30] =============================================
[ 1396.746438][   T30] 
[ 1396.754891][   T30] NMI backtrace for cpu 1
[ 1396.759233][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1396.769749][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1396.779835][   T30] Call Trace:
[ 1396.783132][   T30]  <TASK>
[ 1396.786093][   T30]  dump_stack_lvl+0x241/0x360
[ 1396.790825][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1396.796047][   T30]  ? __pfx__printk+0x10/0x10
[ 1396.800675][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[ 1396.805647][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1396.811134][   T30]  ? _printk+0xd5/0x120
[ 1396.815309][   T30]  ? __pfx__printk+0x10/0x10
[ 1396.819915][   T30]  ? __wake_up_klogd+0xcc/0x110
[ 1396.824792][   T30]  ? __pfx__printk+0x10/0x10
[ 1396.829397][   T30]  ? __rcu_read_unlock+0xa1/0x110
[ 1396.834437][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1396.840438][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[ 1396.846439][   T30]  watchdog+0xff6/0x1040
[ 1396.850703][   T30]  ? watchdog+0x1ea/0x1040
[ 1396.855141][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1396.859832][   T30]  kthread+0x2f0/0x390
[ 1396.863921][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1396.868609][   T30]  ? __pfx_kthread+0x10/0x10
[ 1396.873217][   T30]  ret_from_fork+0x4b/0x80
[ 1396.877652][   T30]  ? __pfx_kthread+0x10/0x10
[ 1396.882257][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1396.887058][   T30]  </TASK>
[ 1396.890809][   T30] Sending NMI from CPU 1 to CPUs 0:
[ 1396.896276][    C0] NMI backtrace for cpu 0
[ 1396.896290][    C0] CPU: 0 UID: 0 PID: 14976 Comm: kworker/0:3 Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1396.896310][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1396.896321][    C0] Workqueue: events_power_efficient neigh_periodic_work
[ 1396.896345][    C0] RIP: 0010:do_raw_spin_unlock+0xcd/0x8b0
[ 1396.896370][    C0] Code: 8d 77 08 4c 89 f3 48 c1 eb 03 48 b8 00 00 00 00 00 fc ff df 0f b6 04 03 84 c0 0f 85 f0 03 00 00 41 8b 06 65 8b 0d 5f cc 87 7e <39> c8 0f 85 cb 02 00 00 48 bd 00 00 00 00 00 fc ff df 41 80 3c 2c
[ 1396.896384][    C0] RSP: 0000:ffffc90000007990 EFLAGS: 00000046
[ 1396.896398][    C0] RAX: 0000000000000000 RBX: 1ffffffff1eb0265 RCX: 0000000000000000
[ 1396.896410][    C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff8f581320
[ 1396.896421][    C0] RBP: ffff88803071da00 R08: ffffffff8f581323 R09: 1ffffffff1eb0264
[ 1396.896434][    C0] R10: dffffc0000000000 R11: fffffbfff1eb0265 R12: 1ffffffff1eb0266
[ 1396.896447][    C0] R13: ffffffff8f581330 R14: ffffffff8f581328 R15: ffffffff8f581320
[ 1396.896460][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1396.896474][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1396.896487][    C0] CR2: 00007f1f315b2d58 CR3: 000000000e736000 CR4: 00000000003526f0
[ 1396.896502][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1396.896512][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1396.896523][    C0] Call Trace:
[ 1396.896529][    C0]  <NMI>
[ 1396.896536][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 1396.896556][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1396.896574][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1396.896592][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1396.896616][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1396.896637][    C0]  ? nmi_handle+0x14f/0x5a0
[ 1396.896653][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1396.896670][    C0]  ? do_raw_spin_unlock+0xcd/0x8b0
[ 1396.896691][    C0]  ? default_do_nmi+0x63/0x160
[ 1396.896708][    C0]  ? exc_nmi+0x123/0x1f0
[ 1396.896724][    C0]  ? end_repeat_nmi+0xf/0x53
[ 1396.896744][    C0]  ? do_raw_spin_unlock+0xcd/0x8b0
[ 1396.896765][    C0]  ? do_raw_spin_unlock+0xcd/0x8b0
[ 1396.896786][    C0]  ? do_raw_spin_unlock+0xcd/0x8b0
[ 1396.896807][    C0]  </NMI>
[ 1396.896812][    C0]  <IRQ>
[ 1396.896822][    C0]  _raw_spin_unlock+0x1e/0x50
[ 1396.896840][    C0]  dummy_timer+0x83a/0x4620
[ 1396.896860][    C0]  ? debug_object_deactivate+0x2d5/0x390
[ 1396.896912][    C0]  ? __pfx_dummy_timer+0x10/0x10
[ 1396.896931][    C0]  ? __pfx_dummy_timer+0x10/0x10
[ 1396.896947][    C0]  __hrtimer_run_queues+0x59b/0xd30
[ 1396.896966][    C0]  ? ktime_get_update_offsets_now+0x2d/0x3b0
[ 1396.896991][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1396.897010][    C0]  ? read_tsc+0x9/0x20
[ 1396.897028][    C0]  ? ktime_get_update_offsets_now+0x393/0x3b0
[ 1396.897048][    C0]  hrtimer_run_softirq+0x19a/0x2c0
[ 1396.897070][    C0]  handle_softirqs+0x2d4/0x9b0
[ 1396.897094][    C0]  ? do_softirq+0x11b/0x1e0
[ 1396.897114][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[ 1396.897138][    C0]  do_softirq+0x11b/0x1e0
[ 1396.897156][    C0]  </IRQ>
[ 1396.897162][    C0]  <TASK>
[ 1396.897169][    C0]  ? __pfx_do_softirq+0x10/0x10
[ 1396.897188][    C0]  ? __pfx_lockdep_softirqs_on+0x10/0x10
[ 1396.897204][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1396.897221][    C0]  ? rcu_is_watching+0x15/0xb0
[ 1396.897241][    C0]  __local_bh_enable_ip+0x1bb/0x200
[ 1396.897261][    C0]  ? neigh_periodic_work+0xbcb/0xde0
[ 1396.897280][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1396.897298][    C0]  ? neigh_destroy+0x429/0x590
[ 1396.897320][    C0]  neigh_periodic_work+0xbcb/0xde0
[ 1396.897343][    C0]  ? process_scheduled_works+0x976/0x1840
[ 1396.897365][    C0]  process_scheduled_works+0xa66/0x1840
[ 1396.897398][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1396.897423][    C0]  ? assign_work+0x364/0x3d0
[ 1396.897446][    C0]  worker_thread+0x870/0xd30
[ 1396.897464][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1396.897485][    C0]  ? __kthread_parkme+0x169/0x1d0
[ 1396.897502][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1396.897517][    C0]  kthread+0x2f0/0x390
[ 1396.897533][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1396.897547][    C0]  ? __pfx_kthread+0x10/0x10
[ 1396.897565][    C0]  ret_from_fork+0x4b/0x80
[ 1396.897579][    C0]  ? __pfx_kthread+0x10/0x10
[ 1396.897596][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1396.897622][    C0]  </TASK>
[ 1397.375046][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[ 1397.381937][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc2-syzkaller-00333-ga0e3919a2df2 #0
[ 1397.392458][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1397.402531][   T30] Call Trace:
[ 1397.405823][   T30]  <TASK>
[ 1397.408766][   T30]  dump_stack_lvl+0x241/0x360
[ 1397.413467][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1397.418696][   T30]  ? __pfx__printk+0x10/0x10
[ 1397.423302][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1397.429303][   T30]  ? vscnprintf+0x5d/0x90
[ 1397.433656][   T30]  panic+0x349/0x880
[ 1397.437568][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 1397.443737][   T30]  ? __pfx_panic+0x10/0x10
[ 1397.448167][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[ 1397.453555][   T30]  ? __irq_work_queue_local+0x137/0x410
[ 1397.459116][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[ 1397.464503][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[ 1397.470685][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[ 1397.476876][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[ 1397.483056][   T30]  watchdog+0x1035/0x1040
[ 1397.487404][   T30]  ? watchdog+0x1ea/0x1040
[ 1397.491843][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1397.496538][   T30]  kthread+0x2f0/0x390
[ 1397.500625][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1397.505317][   T30]  ? __pfx_kthread+0x10/0x10
[ 1397.509933][   T30]  ret_from_fork+0x4b/0x80
[ 1397.514370][   T30]  ? __pfx_kthread+0x10/0x10
[ 1397.518976][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1397.523773][   T30]  </TASK>
[ 1397.527264][   T30] Kernel Offset: disabled
[ 1397.531582][   T30] Rebooting in 86400 seconds..