[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   56.783783][   T26] audit: type=1800 audit(1572354331.260:25): pid=8538 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   56.803851][   T26] audit: type=1800 audit(1572354331.270:26): pid=8538 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   56.826036][   T26] audit: type=1800 audit(1572354331.270:27): pid=8538 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.38' (ECDSA) to the list of known hosts.
2019/10/29 13:05:42 fuzzer started
2019/10/29 13:05:43 dialing manager at 10.128.0.26:34715
2019/10/29 13:05:43 syscalls: 2541
2019/10/29 13:05:43 code coverage: enabled
2019/10/29 13:05:43 comparison tracing: enabled
2019/10/29 13:05:43 extra coverage: extra coverage is not supported by the kernel
2019/10/29 13:05:43 setuid sandbox: enabled
2019/10/29 13:05:43 namespace sandbox: enabled
2019/10/29 13:05:43 Android sandbox: /sys/fs/selinux/policy does not exist
2019/10/29 13:05:43 fault injection: enabled
2019/10/29 13:05:43 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/10/29 13:05:43 net packet injection: enabled
2019/10/29 13:05:43 net device setup: enabled
2019/10/29 13:05:43 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
13:07:20 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x2, 0x40003, 0x0, 0x2, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_sa={0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x50}}, 0x0)

13:07:20 executing program 1:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x12, &(0x7f0000fbe000)={0x0, 0x0}, 0x10)

syzkaller login: [  165.695292][ T8701] IPVS: ftp: loaded support on port[0] = 21
[  165.864938][ T8701] chnl_net:caif_netlink_parms(): no params data found
13:07:20 executing program 2:
r0 = epoll_create1(0x0)
flock(r0, 0x6)
r1 = epoll_create1(0x0)
flock(r1, 0x2)
r2 = gettid()
dup2(r0, r1)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
tkill(r2, 0x1000000000015)

[  165.957206][ T8704] IPVS: ftp: loaded support on port[0] = 21
[  165.964264][ T8701] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.990120][ T8701] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.009932][ T8701] device bridge_slave_0 entered promiscuous mode
[  166.030494][ T8701] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.037648][ T8701] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.071044][ T8701] device bridge_slave_1 entered promiscuous mode
[  166.132555][ T8701] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  166.152685][ T8701] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  166.181172][ T8707] IPVS: ftp: loaded support on port[0] = 21
13:07:20 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0800b5055e0bcfe87b0071")
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffdffffffffffffd, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x200000000011, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r3, 0x0, 0xfea2, 0x20000802, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r3, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0xffffffd8)

[  166.221538][ T8701] team0: Port device team_slave_0 added
[  166.279272][ T8701] team0: Port device team_slave_1 added
[  166.347586][ T8704] chnl_net:caif_netlink_parms(): no params data found
[  166.424484][ T8701] device hsr_slave_0 entered promiscuous mode
13:07:21 executing program 4:
io_setup(0x8e30, &(0x7f0000000100)=<r0=>0x0)
io_destroy(r0)

[  166.489542][ T8701] device hsr_slave_1 entered promiscuous mode
[  166.577265][ T8710] IPVS: ftp: loaded support on port[0] = 21
[  166.702325][ T8704] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.711195][ T8704] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.720462][ T8704] device bridge_slave_0 entered promiscuous mode
[  166.741921][ T8707] chnl_net:caif_netlink_parms(): no params data found
[  166.753882][ T8704] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.761811][ T8704] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.771181][ T8704] device bridge_slave_1 entered promiscuous mode
[  166.788308][ T8701] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.795624][ T8701] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.803558][ T8701] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.810717][ T8701] bridge0: port 1(bridge_slave_0) entered forwarding state
[  166.886153][ T8704] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  166.905711][ T8713] IPVS: ftp: loaded support on port[0] = 21
[  166.914830][   T47] bridge0: port 1(bridge_slave_0) entered disabled state
13:07:21 executing program 5:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f00000000c0)=@get={0x1, &(0x7f0000000cc0)=""/4096, 0xd00e})
fchdir(r0)
ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, &(0x7f00000004c0)={0x0, 0x0})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x0, &(0x7f0000005c80)=0x9, 0xfffffffffffffff9)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000240)=0x1, 0x4)
fcntl$notify(r0, 0x402, 0x8)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x5, &(0x7f0000000140)=[{0x2, 0x1, 0x46a, 0x2b}, {0x5, 0x6e4, 0xffffffffffffffff}, {0x0, 0x8001, 0x9, 0x77d5241e}, {0xbf, 0x4, 0x0, 0x101}, {0x1, 0x7fffffff}]})
r3 = syz_open_dev$loop(&(0x7f00000002c0)='/dev/loop#\x00', 0x0, 0x82)
r4 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x85nG\x13g\xa6\x05', 0x0)
write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7}, 0x7)
ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, &(0x7f0000000780)=ANY=[@ANYBLOB="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"])
ioctl$BLKDISCARD(r3, 0x1277, &(0x7f0000000180)=0x6)
r5 = syz_open_dev$admmidi(&(0x7f0000000300)='/dev/admmidi#\x00', 0xffffffffffff8538, 0x400200)
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000280)={'irlan0\x00', {0x2, 0x4e24, @empty}})
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805)
r6 = syz_open_procfs(0x0, &(0x7f00000003c0)='\x00\x00\x00\x00\x00egy\xc5\x8e\xcb\x1c\xf8\x8f\xca;\xa3?\xad\xae\x0f\xb5\x97ao3\xab\xcdY\x9a\xe3\xe5\xe1\xf4\x87\xac\xad\x80\xa3P\x8c\xea\x9c\xc7\x00\xeb\xf4X#\xe34\x80O]\x87\xdd\x894\xdal;w\xf8\xf8\v?v\xf0\xb8\xda=|\xa4\xba\xbbiq!\xd8g\xb7I\x12\x80')
openat$cgroup_ro(r6, &(0x7f0000000b00)='mem\x00\x01y7SwaS.\x06ur\x89\xc9B\xab\xe3\xfarent\x00\xaa\x1a\xfd\xae\v\xbf\xd8d\xbb\xaf9Q\xde\xfb\x1fY\xfb\x8do\xd1\x16\xce(\x82\xf1\xbf{5Z\x13\x15\x14\xd7\xb8\xce\xf20\x1e\xc0\xc2\xed<?\xc7\xb6s\xca\xff\x96\x9a}+Q\xd2\xd9{\xca\x86Vw\xde\xb3\x86\x91\xfd\xb5p\xdb$ j\xfb\xf8\xedw\xf4\x161a.\xc7\n\xe0X?\xc4\xf4BW\x01\x1f-\xcc\x01\xd0W\xc8\xf09\fV\x1b|A)\xb8\xda#NP\x1c\x9d\x93#V\x9f\"Kgn{\x96\xaa\xbd0\x8ef\x9d\xb88CP(}w\x8c\xbb\xdc%\ax \x10\xd1\n(\xa8=\xf54\xa9\xcb\xe9\x97T\xcf\xcf\x87t\x81\xfa\xaa\xf30\x8b\xb7\xea\xfc^\xb6\x95\x87E\x11\x89\x7f\xa0m\xd3&\tHvtD\x83\\6\xe0t\xa8\xdd\xa3\xa4\xd2\xb9\xb9{+\x1d\xa3\xd5Z;]*2\x99Os\bVW5\xe6\xe7\xdb\x95\x8d\xffY\xe0s\x7f\x9eK,\xae\xaeX\x15M@\xdd\x04`\xea\x03\xf7\x7f:\xc8HU3\xabX}\xa7S8s\xdb_\xc5\x9c\xc9Rw\x90G\xf3J\x9c\x8f\x91\xa1\xd6\x055?m\xed\x94\x9c\xb7(\x0f\xd3\xbc\xba\xc6T\xdd\x15\xf7+*Z3\x8e_Z\xa3k\xe4R\x1e\xc8\vYV\x8a\x8d\xad\x8cI\x88\fM\x19JX\x1f\xffe#|\x06\xfa86\xcb\x93\xea\xab\xcc\x864fC*I\x7fM\t7\x94}\x06\x1d\xc3\x9co-\xdd\xa6\x1b\xa8_\x1fBl\xc4:\xae\xfe4\x9e\xa9T\x91\xd9w\x05\xf8{\xd6@', 0x0, 0x0)
ioctl$UI_SET_LEDBIT(r6, 0x40045569, 0xc)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r5, 0x40045542, &(0x7f0000000440)=0x10e)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r4, r3, 0x0, 0x20002000005)
r7 = syz_open_dev$mouse(&(0x7f0000000480)='/dev/input/mouse#\x00', 0x6bc, 0x4000)
ioctl$LOOP_CLR_FD(r3, 0x4c01)
ioctl$KVM_SET_CLOCK(r7, 0x4030ae7b, &(0x7f0000000200)={0x0, 0x5})

[  166.930210][   T47] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.960706][ T8704] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  166.982212][ T8701] 8021q: adding VLAN 0 to HW filter on device bond0
[  167.018606][ T8707] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.039836][ T8707] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.047628][ T8707] device bridge_slave_0 entered promiscuous mode
[  167.056145][ T8707] bridge0: port 2(bridge_slave_1) entered blocking state
[  167.067016][ T8707] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.075249][ T8707] device bridge_slave_1 entered promiscuous mode
[  167.098249][ T8704] team0: Port device team_slave_0 added
[  167.107509][ T8704] team0: Port device team_slave_1 added
[  167.160301][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  167.169188][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  167.179694][ T8701] 8021q: adding VLAN 0 to HW filter on device team0
[  167.189154][ T8716] IPVS: ftp: loaded support on port[0] = 21
[  167.207787][ T8707] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  167.217771][ T8710] chnl_net:caif_netlink_parms(): no params data found
[  167.229433][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  167.238486][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  167.247171][   T47] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.254292][   T47] bridge0: port 1(bridge_slave_0) entered forwarding state
[  167.332266][ T8704] device hsr_slave_0 entered promiscuous mode
[  167.389855][ T8704] device hsr_slave_1 entered promiscuous mode
[  167.429148][ T8704] debugfs: Directory 'hsr0' with parent '/' already present!
[  167.438213][ T8707] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  167.467305][ T8707] team0: Port device team_slave_0 added
[  167.476735][ T8707] team0: Port device team_slave_1 added
[  167.494931][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  167.503755][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  167.512363][   T47] bridge0: port 2(bridge_slave_1) entered blocking state
[  167.519464][   T47] bridge0: port 2(bridge_slave_1) entered forwarding state
[  167.594531][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  167.621312][ T8710] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.628452][ T8710] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.636489][ T8710] device bridge_slave_0 entered promiscuous mode
[  167.647355][ T8710] bridge0: port 2(bridge_slave_1) entered blocking state
[  167.654603][ T8710] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.663359][ T8710] device bridge_slave_1 entered promiscuous mode
[  167.693371][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  167.702112][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  167.711642][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  167.720357][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  167.782253][ T8707] device hsr_slave_0 entered promiscuous mode
[  167.829450][ T8707] device hsr_slave_1 entered promiscuous mode
[  167.869718][ T8707] debugfs: Directory 'hsr0' with parent '/' already present!
[  167.897040][ T8710] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  167.950163][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  167.958723][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  167.967818][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  167.976184][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  167.989482][ T8701] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  168.003223][ T8701] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  168.020258][ T8710] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  168.047185][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  168.056171][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  168.085731][ T8710] team0: Port device team_slave_0 added
[  168.095103][ T8710] team0: Port device team_slave_1 added
[  168.126525][ T8713] chnl_net:caif_netlink_parms(): no params data found
[  168.150085][ T8701] 8021q: adding VLAN 0 to HW filter on device batadv0
[  168.190151][ T8716] chnl_net:caif_netlink_parms(): no params data found
[  168.242430][ T8710] device hsr_slave_0 entered promiscuous mode
[  168.279433][ T8710] device hsr_slave_1 entered promiscuous mode
[  168.319128][ T8710] debugfs: Directory 'hsr0' with parent '/' already present!
[  168.418630][ T8713] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.427975][ T8713] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.436698][ T8713] device bridge_slave_0 entered promiscuous mode
[  168.467211][ T8713] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.477011][ T8713] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.485044][ T8713] device bridge_slave_1 entered promiscuous mode
[  168.503370][ T8716] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.511717][ T8716] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.524662][ T8716] device bridge_slave_0 entered promiscuous mode
[  168.536703][ T8707] 8021q: adding VLAN 0 to HW filter on device bond0
[  168.556108][ T8713] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  168.566718][ T8716] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.595701][ T8716] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.608217][ T8716] device bridge_slave_1 entered promiscuous mode
[  168.623792][ T8707] 8021q: adding VLAN 0 to HW filter on device team0
[  168.634360][ T8704] 8021q: adding VLAN 0 to HW filter on device bond0
[  168.644404][ T8713] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
13:07:23 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000040)={@local, @remote, [], {@ipv6={0x86dd, {0x0, 0x6, "fd0033", 0x10, 0x2f, 0x0, @remote, @mcast2, {[], @dccp={{0x0, 0x800, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "96e266", 0x0, "fe3f00"}}}}}}}, 0x0)

[  168.675022][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  168.684003][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  168.700273][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
13:07:23 executing program 0:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

[  168.722277][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  168.742670][    T5] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.749809][    T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.765890][ T8704] 8021q: adding VLAN 0 to HW filter on device team0
[  168.812082][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  168.821206][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  168.829631][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  168.837870][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  168.847388][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  168.856309][ T3529] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.863442][ T3529] bridge0: port 2(bridge_slave_1) entered forwarding state
[  168.888384][    C1] hrtimer: interrupt took 34210 ns
[  168.893862][ T8716] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  168.915146][ T8713] team0: Port device team_slave_0 added
[  168.937937][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  168.946908][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  168.958784][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  168.968045][ T3734] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.975176][ T3734] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.992085][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  169.006693][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  169.016984][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  169.032646][ T3734] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.039787][ T3734] bridge0: port 2(bridge_slave_1) entered forwarding state
[  169.054367][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
13:07:23 executing program 0:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

[  169.063448][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  169.079656][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  169.087630][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  169.112769][ T8716] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  169.132891][ T8713] team0: Port device team_slave_1 added
[  169.164668][ T8707] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  169.175305][ T8707] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  169.195714][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  169.211800][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  169.239886][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  169.248714][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  169.260018][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  169.269948][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  169.278463][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  169.289924][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
13:07:23 executing program 0:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

[  169.372430][ T8713] device hsr_slave_0 entered promiscuous mode
[  169.421986][ T8713] device hsr_slave_1 entered promiscuous mode
[  169.459092][ T8713] debugfs: Directory 'hsr0' with parent '/' already present!
[  169.470812][ T8710] 8021q: adding VLAN 0 to HW filter on device bond0
[  169.478098][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  169.495261][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  169.504640][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  169.513601][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  169.522913][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  169.533384][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  169.544457][ T8716] team0: Port device team_slave_0 added
[  169.556819][ T8704] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  169.568920][ T8704] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  169.616577][ T8707] 8021q: adding VLAN 0 to HW filter on device batadv0
[  169.633744][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  169.649765][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  169.658427][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
13:07:24 executing program 0:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

[  169.674522][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  169.683786][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  169.692170][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  169.707164][ T8716] team0: Port device team_slave_1 added
[  169.716907][ T8710] 8021q: adding VLAN 0 to HW filter on device team0
[  169.756379][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  169.824819][ T8704] 8021q: adding VLAN 0 to HW filter on device batadv0
[  169.873849][ T8716] device hsr_slave_0 entered promiscuous mode
[  169.909741][ T8716] device hsr_slave_1 entered promiscuous mode
13:07:24 executing program 0:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

[  169.965764][ T8716] debugfs: Directory 'hsr0' with parent '/' already present!
[  169.987375][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  170.002531][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  170.022354][ T8714] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.029490][ T8714] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.061807][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  170.070573][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  170.079581][ T8714] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.086652][ T8714] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.097196][ T8714] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  170.126339][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  170.142016][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  170.159183][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  170.185350][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  170.196102][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  170.208474][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  170.224529][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  170.259438][ T8710] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  170.283358][ T8710] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
13:07:24 executing program 2:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

[  170.303630][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  170.333774][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  170.342763][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  170.374740][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  170.457907][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  170.488764][ T8710] 8021q: adding VLAN 0 to HW filter on device batadv0
13:07:25 executing program 1:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:25 executing program 0:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

[  170.615071][ T8713] 8021q: adding VLAN 0 to HW filter on device bond0
[  170.697790][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  170.711253][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  170.760454][ T8713] 8021q: adding VLAN 0 to HW filter on device team0
[  170.801079][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  170.814839][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  170.823665][   T47] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.830788][   T47] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.862035][ T8716] 8021q: adding VLAN 0 to HW filter on device bond0
[  170.871130][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  170.903082][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  170.942326][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  170.961196][   T47] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.968347][   T47] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.976328][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  171.059236][ T8716] 8021q: adding VLAN 0 to HW filter on device team0
[  171.073357][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  171.082437][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  171.091782][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  171.104773][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  171.113134][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  171.121584][ T3023] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  171.149941][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  171.158709][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  171.168699][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  171.177448][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  171.186045][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  171.194764][   T47] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  171.210185][ T8713] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  171.221009][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  171.230560][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  171.238877][ T3529] bridge0: port 1(bridge_slave_0) entered blocking state
[  171.245985][ T3529] bridge0: port 1(bridge_slave_0) entered forwarding state
[  171.253981][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  171.262789][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  171.271362][ T3529] bridge0: port 2(bridge_slave_1) entered blocking state
[  171.278410][ T3529] bridge0: port 2(bridge_slave_1) entered forwarding state
[  171.286400][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  171.310833][ T8713] 8021q: adding VLAN 0 to HW filter on device batadv0
[  171.327971][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  171.337013][ T3734] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  171.358667][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  171.368162][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  171.377149][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  171.386439][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  171.395951][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  171.404601][ T3529] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  171.416795][ T8716] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  171.428546][ T8716] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  171.444985][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  171.453873][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  171.462952][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  171.491982][ T8716] 8021q: adding VLAN 0 to HW filter on device batadv0
13:07:26 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0800b5055e0bcfe87b0071")
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffdffffffffffffd, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x200000000011, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r3, 0x0, 0xfea2, 0x20000802, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r3, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0xffffffd8)

13:07:26 executing program 2:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

[  171.933877][ T8802] blk_update_request: I/O error, dev loop0, sector 256 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
13:07:26 executing program 1:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:26 executing program 0:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:26 executing program 4:
io_setup(0x8e30, &(0x7f0000000100)=<r0=>0x0)
io_destroy(r0)

13:07:26 executing program 5:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f00000000c0)=@get={0x1, &(0x7f0000000cc0)=""/4096, 0xd00e})
fchdir(r0)
ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, &(0x7f00000004c0)={0x0, 0x0})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x0, &(0x7f0000005c80)=0x9, 0xfffffffffffffff9)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000240)=0x1, 0x4)
fcntl$notify(r0, 0x402, 0x8)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x5, &(0x7f0000000140)=[{0x2, 0x1, 0x46a, 0x2b}, {0x5, 0x6e4, 0xffffffffffffffff}, {0x0, 0x8001, 0x9, 0x77d5241e}, {0xbf, 0x4, 0x0, 0x101}, {0x1, 0x7fffffff}]})
r3 = syz_open_dev$loop(&(0x7f00000002c0)='/dev/loop#\x00', 0x0, 0x82)
r4 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x85nG\x13g\xa6\x05', 0x0)
write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7}, 0x7)
ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, &(0x7f0000000780)=ANY=[@ANYBLOB="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"])
ioctl$BLKDISCARD(r3, 0x1277, &(0x7f0000000180)=0x6)
r5 = syz_open_dev$admmidi(&(0x7f0000000300)='/dev/admmidi#\x00', 0xffffffffffff8538, 0x400200)
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000280)={'irlan0\x00', {0x2, 0x4e24, @empty}})
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805)
r6 = syz_open_procfs(0x0, &(0x7f00000003c0)='\x00\x00\x00\x00\x00egy\xc5\x8e\xcb\x1c\xf8\x8f\xca;\xa3?\xad\xae\x0f\xb5\x97ao3\xab\xcdY\x9a\xe3\xe5\xe1\xf4\x87\xac\xad\x80\xa3P\x8c\xea\x9c\xc7\x00\xeb\xf4X#\xe34\x80O]\x87\xdd\x894\xdal;w\xf8\xf8\v?v\xf0\xb8\xda=|\xa4\xba\xbbiq!\xd8g\xb7I\x12\x80')
openat$cgroup_ro(r6, &(0x7f0000000b00)='mem\x00\x01y7SwaS.\x06ur\x89\xc9B\xab\xe3\xfarent\x00\xaa\x1a\xfd\xae\v\xbf\xd8d\xbb\xaf9Q\xde\xfb\x1fY\xfb\x8do\xd1\x16\xce(\x82\xf1\xbf{5Z\x13\x15\x14\xd7\xb8\xce\xf20\x1e\xc0\xc2\xed<?\xc7\xb6s\xca\xff\x96\x9a}+Q\xd2\xd9{\xca\x86Vw\xde\xb3\x86\x91\xfd\xb5p\xdb$ j\xfb\xf8\xedw\xf4\x161a.\xc7\n\xe0X?\xc4\xf4BW\x01\x1f-\xcc\x01\xd0W\xc8\xf09\fV\x1b|A)\xb8\xda#NP\x1c\x9d\x93#V\x9f\"Kgn{\x96\xaa\xbd0\x8ef\x9d\xb88CP(}w\x8c\xbb\xdc%\ax \x10\xd1\n(\xa8=\xf54\xa9\xcb\xe9\x97T\xcf\xcf\x87t\x81\xfa\xaa\xf30\x8b\xb7\xea\xfc^\xb6\x95\x87E\x11\x89\x7f\xa0m\xd3&\tHvtD\x83\\6\xe0t\xa8\xdd\xa3\xa4\xd2\xb9\xb9{+\x1d\xa3\xd5Z;]*2\x99Os\bVW5\xe6\xe7\xdb\x95\x8d\xffY\xe0s\x7f\x9eK,\xae\xaeX\x15M@\xdd\x04`\xea\x03\xf7\x7f:\xc8HU3\xabX}\xa7S8s\xdb_\xc5\x9c\xc9Rw\x90G\xf3J\x9c\x8f\x91\xa1\xd6\x055?m\xed\x94\x9c\xb7(\x0f\xd3\xbc\xba\xc6T\xdd\x15\xf7+*Z3\x8e_Z\xa3k\xe4R\x1e\xc8\vYV\x8a\x8d\xad\x8cI\x88\fM\x19JX\x1f\xffe#|\x06\xfa86\xcb\x93\xea\xab\xcc\x864fC*I\x7fM\t7\x94}\x06\x1d\xc3\x9co-\xdd\xa6\x1b\xa8_\x1fBl\xc4:\xae\xfe4\x9e\xa9T\x91\xd9w\x05\xf8{\xd6@', 0x0, 0x0)
ioctl$UI_SET_LEDBIT(r6, 0x40045569, 0xc)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r5, 0x40045542, &(0x7f0000000440)=0x10e)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r4, r3, 0x0, 0x20002000005)
r7 = syz_open_dev$mouse(&(0x7f0000000480)='/dev/input/mouse#\x00', 0x6bc, 0x4000)
ioctl$LOOP_CLR_FD(r3, 0x4c01)
ioctl$KVM_SET_CLOCK(r7, 0x4030ae7b, &(0x7f0000000200)={0x0, 0x5})

13:07:26 executing program 2:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:26 executing program 4:
io_setup(0x8e30, &(0x7f0000000100)=<r0=>0x0)
io_destroy(r0)

13:07:26 executing program 0:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f00000000c0)=@get={0x1, &(0x7f0000000cc0)=""/4096, 0xd00e})
fchdir(r0)
ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, &(0x7f00000004c0)={0x0, 0x0})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x0, &(0x7f0000005c80)=0x9, 0xfffffffffffffff9)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000240)=0x1, 0x4)
fcntl$notify(r0, 0x402, 0x8)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x5, &(0x7f0000000140)=[{0x2, 0x1, 0x46a, 0x2b}, {0x5, 0x6e4, 0xffffffffffffffff}, {0x0, 0x8001, 0x9, 0x77d5241e}, {0xbf, 0x4, 0x0, 0x101}, {0x1, 0x7fffffff}]})
r3 = syz_open_dev$loop(&(0x7f00000002c0)='/dev/loop#\x00', 0x0, 0x82)
r4 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x85nG\x13g\xa6\x05', 0x0)
write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7}, 0x7)
ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, &(0x7f0000000780)=ANY=[@ANYBLOB="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"])
ioctl$BLKDISCARD(r3, 0x1277, &(0x7f0000000180)=0x6)
r5 = syz_open_dev$admmidi(&(0x7f0000000300)='/dev/admmidi#\x00', 0xffffffffffff8538, 0x400200)
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000280)={'irlan0\x00', {0x2, 0x4e24, @empty}})
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805)
r6 = syz_open_procfs(0x0, &(0x7f00000003c0)='\x00\x00\x00\x00\x00egy\xc5\x8e\xcb\x1c\xf8\x8f\xca;\xa3?\xad\xae\x0f\xb5\x97ao3\xab\xcdY\x9a\xe3\xe5\xe1\xf4\x87\xac\xad\x80\xa3P\x8c\xea\x9c\xc7\x00\xeb\xf4X#\xe34\x80O]\x87\xdd\x894\xdal;w\xf8\xf8\v?v\xf0\xb8\xda=|\xa4\xba\xbbiq!\xd8g\xb7I\x12\x80')
openat$cgroup_ro(r6, &(0x7f0000000b00)='mem\x00\x01y7SwaS.\x06ur\x89\xc9B\xab\xe3\xfarent\x00\xaa\x1a\xfd\xae\v\xbf\xd8d\xbb\xaf9Q\xde\xfb\x1fY\xfb\x8do\xd1\x16\xce(\x82\xf1\xbf{5Z\x13\x15\x14\xd7\xb8\xce\xf20\x1e\xc0\xc2\xed<?\xc7\xb6s\xca\xff\x96\x9a}+Q\xd2\xd9{\xca\x86Vw\xde\xb3\x86\x91\xfd\xb5p\xdb$ j\xfb\xf8\xedw\xf4\x161a.\xc7\n\xe0X?\xc4\xf4BW\x01\x1f-\xcc\x01\xd0W\xc8\xf09\fV\x1b|A)\xb8\xda#NP\x1c\x9d\x93#V\x9f\"Kgn{\x96\xaa\xbd0\x8ef\x9d\xb88CP(}w\x8c\xbb\xdc%\ax \x10\xd1\n(\xa8=\xf54\xa9\xcb\xe9\x97T\xcf\xcf\x87t\x81\xfa\xaa\xf30\x8b\xb7\xea\xfc^\xb6\x95\x87E\x11\x89\x7f\xa0m\xd3&\tHvtD\x83\\6\xe0t\xa8\xdd\xa3\xa4\xd2\xb9\xb9{+\x1d\xa3\xd5Z;]*2\x99Os\bVW5\xe6\xe7\xdb\x95\x8d\xffY\xe0s\x7f\x9eK,\xae\xaeX\x15M@\xdd\x04`\xea\x03\xf7\x7f:\xc8HU3\xabX}\xa7S8s\xdb_\xc5\x9c\xc9Rw\x90G\xf3J\x9c\x8f\x91\xa1\xd6\x055?m\xed\x94\x9c\xb7(\x0f\xd3\xbc\xba\xc6T\xdd\x15\xf7+*Z3\x8e_Z\xa3k\xe4R\x1e\xc8\vYV\x8a\x8d\xad\x8cI\x88\fM\x19JX\x1f\xffe#|\x06\xfa86\xcb\x93\xea\xab\xcc\x864fC*I\x7fM\t7\x94}\x06\x1d\xc3\x9co-\xdd\xa6\x1b\xa8_\x1fBl\xc4:\xae\xfe4\x9e\xa9T\x91\xd9w\x05\xf8{\xd6@', 0x0, 0x0)
ioctl$UI_SET_LEDBIT(r6, 0x40045569, 0xc)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r5, 0x40045542, &(0x7f0000000440)=0x10e)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r4, r3, 0x0, 0x20002000005)
r7 = syz_open_dev$mouse(&(0x7f0000000480)='/dev/input/mouse#\x00', 0x6bc, 0x4000)
ioctl$LOOP_CLR_FD(r3, 0x4c01)
ioctl$KVM_SET_CLOCK(r7, 0x4030ae7b, &(0x7f0000000200)={0x0, 0x5})

[  172.442170][ T8826] blk_update_request: I/O error, dev loop0, sector 136 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
13:07:27 executing program 5:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f00000000c0)=@get={0x1, &(0x7f0000000cc0)=""/4096, 0xd00e})
fchdir(r0)
ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, &(0x7f00000004c0)={0x0, 0x0})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x0, &(0x7f0000005c80)=0x9, 0xfffffffffffffff9)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000240)=0x1, 0x4)
fcntl$notify(r0, 0x402, 0x8)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x5, &(0x7f0000000140)=[{0x2, 0x1, 0x46a, 0x2b}, {0x5, 0x6e4, 0xffffffffffffffff}, {0x0, 0x8001, 0x9, 0x77d5241e}, {0xbf, 0x4, 0x0, 0x101}, {0x1, 0x7fffffff}]})
r3 = syz_open_dev$loop(&(0x7f00000002c0)='/dev/loop#\x00', 0x0, 0x82)
r4 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x85nG\x13g\xa6\x05', 0x0)
write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7}, 0x7)
ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, &(0x7f0000000780)=ANY=[@ANYBLOB="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"])
ioctl$BLKDISCARD(r3, 0x1277, &(0x7f0000000180)=0x6)
r5 = syz_open_dev$admmidi(&(0x7f0000000300)='/dev/admmidi#\x00', 0xffffffffffff8538, 0x400200)
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000280)={'irlan0\x00', {0x2, 0x4e24, @empty}})
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805)
r6 = syz_open_procfs(0x0, &(0x7f00000003c0)='\x00\x00\x00\x00\x00egy\xc5\x8e\xcb\x1c\xf8\x8f\xca;\xa3?\xad\xae\x0f\xb5\x97ao3\xab\xcdY\x9a\xe3\xe5\xe1\xf4\x87\xac\xad\x80\xa3P\x8c\xea\x9c\xc7\x00\xeb\xf4X#\xe34\x80O]\x87\xdd\x894\xdal;w\xf8\xf8\v?v\xf0\xb8\xda=|\xa4\xba\xbbiq!\xd8g\xb7I\x12\x80')
openat$cgroup_ro(r6, &(0x7f0000000b00)='mem\x00\x01y7SwaS.\x06ur\x89\xc9B\xab\xe3\xfarent\x00\xaa\x1a\xfd\xae\v\xbf\xd8d\xbb\xaf9Q\xde\xfb\x1fY\xfb\x8do\xd1\x16\xce(\x82\xf1\xbf{5Z\x13\x15\x14\xd7\xb8\xce\xf20\x1e\xc0\xc2\xed<?\xc7\xb6s\xca\xff\x96\x9a}+Q\xd2\xd9{\xca\x86Vw\xde\xb3\x86\x91\xfd\xb5p\xdb$ j\xfb\xf8\xedw\xf4\x161a.\xc7\n\xe0X?\xc4\xf4BW\x01\x1f-\xcc\x01\xd0W\xc8\xf09\fV\x1b|A)\xb8\xda#NP\x1c\x9d\x93#V\x9f\"Kgn{\x96\xaa\xbd0\x8ef\x9d\xb88CP(}w\x8c\xbb\xdc%\ax \x10\xd1\n(\xa8=\xf54\xa9\xcb\xe9\x97T\xcf\xcf\x87t\x81\xfa\xaa\xf30\x8b\xb7\xea\xfc^\xb6\x95\x87E\x11\x89\x7f\xa0m\xd3&\tHvtD\x83\\6\xe0t\xa8\xdd\xa3\xa4\xd2\xb9\xb9{+\x1d\xa3\xd5Z;]*2\x99Os\bVW5\xe6\xe7\xdb\x95\x8d\xffY\xe0s\x7f\x9eK,\xae\xaeX\x15M@\xdd\x04`\xea\x03\xf7\x7f:\xc8HU3\xabX}\xa7S8s\xdb_\xc5\x9c\xc9Rw\x90G\xf3J\x9c\x8f\x91\xa1\xd6\x055?m\xed\x94\x9c\xb7(\x0f\xd3\xbc\xba\xc6T\xdd\x15\xf7+*Z3\x8e_Z\xa3k\xe4R\x1e\xc8\vYV\x8a\x8d\xad\x8cI\x88\fM\x19JX\x1f\xffe#|\x06\xfa86\xcb\x93\xea\xab\xcc\x864fC*I\x7fM\t7\x94}\x06\x1d\xc3\x9co-\xdd\xa6\x1b\xa8_\x1fBl\xc4:\xae\xfe4\x9e\xa9T\x91\xd9w\x05\xf8{\xd6@', 0x0, 0x0)
ioctl$UI_SET_LEDBIT(r6, 0x40045569, 0xc)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r5, 0x40045542, &(0x7f0000000440)=0x10e)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r4, r3, 0x0, 0x20002000005)
r7 = syz_open_dev$mouse(&(0x7f0000000480)='/dev/input/mouse#\x00', 0x6bc, 0x4000)
ioctl$LOOP_CLR_FD(r3, 0x4c01)
ioctl$KVM_SET_CLOCK(r7, 0x4030ae7b, &(0x7f0000000200)={0x0, 0x5})

13:07:27 executing program 1:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:27 executing program 4:
io_setup(0x8e30, &(0x7f0000000100)=<r0=>0x0)
io_destroy(r0)

13:07:27 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0800b5055e0bcfe87b0071")
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffdffffffffffffd, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x200000000011, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r3, 0x0, 0xfea2, 0x20000802, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r3, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0xffffffd8)

13:07:27 executing program 5:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f00000000c0)=@get={0x1, &(0x7f0000000cc0)=""/4096, 0xd00e})
fchdir(r0)
ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, &(0x7f00000004c0)={0x0, 0x0})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x0, &(0x7f0000005c80)=0x9, 0xfffffffffffffff9)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000240)=0x1, 0x4)
fcntl$notify(r0, 0x402, 0x8)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x5, &(0x7f0000000140)=[{0x2, 0x1, 0x46a, 0x2b}, {0x5, 0x6e4, 0xffffffffffffffff}, {0x0, 0x8001, 0x9, 0x77d5241e}, {0xbf, 0x4, 0x0, 0x101}, {0x1, 0x7fffffff}]})
r3 = syz_open_dev$loop(&(0x7f00000002c0)='/dev/loop#\x00', 0x0, 0x82)
r4 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x85nG\x13g\xa6\x05', 0x0)
write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7}, 0x7)
ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, &(0x7f0000000780)=ANY=[@ANYBLOB="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"])
ioctl$BLKDISCARD(r3, 0x1277, &(0x7f0000000180)=0x6)
r5 = syz_open_dev$admmidi(&(0x7f0000000300)='/dev/admmidi#\x00', 0xffffffffffff8538, 0x400200)
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000280)={'irlan0\x00', {0x2, 0x4e24, @empty}})
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805)
r6 = syz_open_procfs(0x0, &(0x7f00000003c0)='\x00\x00\x00\x00\x00egy\xc5\x8e\xcb\x1c\xf8\x8f\xca;\xa3?\xad\xae\x0f\xb5\x97ao3\xab\xcdY\x9a\xe3\xe5\xe1\xf4\x87\xac\xad\x80\xa3P\x8c\xea\x9c\xc7\x00\xeb\xf4X#\xe34\x80O]\x87\xdd\x894\xdal;w\xf8\xf8\v?v\xf0\xb8\xda=|\xa4\xba\xbbiq!\xd8g\xb7I\x12\x80')
openat$cgroup_ro(r6, &(0x7f0000000b00)='mem\x00\x01y7SwaS.\x06ur\x89\xc9B\xab\xe3\xfarent\x00\xaa\x1a\xfd\xae\v\xbf\xd8d\xbb\xaf9Q\xde\xfb\x1fY\xfb\x8do\xd1\x16\xce(\x82\xf1\xbf{5Z\x13\x15\x14\xd7\xb8\xce\xf20\x1e\xc0\xc2\xed<?\xc7\xb6s\xca\xff\x96\x9a}+Q\xd2\xd9{\xca\x86Vw\xde\xb3\x86\x91\xfd\xb5p\xdb$ j\xfb\xf8\xedw\xf4\x161a.\xc7\n\xe0X?\xc4\xf4BW\x01\x1f-\xcc\x01\xd0W\xc8\xf09\fV\x1b|A)\xb8\xda#NP\x1c\x9d\x93#V\x9f\"Kgn{\x96\xaa\xbd0\x8ef\x9d\xb88CP(}w\x8c\xbb\xdc%\ax \x10\xd1\n(\xa8=\xf54\xa9\xcb\xe9\x97T\xcf\xcf\x87t\x81\xfa\xaa\xf30\x8b\xb7\xea\xfc^\xb6\x95\x87E\x11\x89\x7f\xa0m\xd3&\tHvtD\x83\\6\xe0t\xa8\xdd\xa3\xa4\xd2\xb9\xb9{+\x1d\xa3\xd5Z;]*2\x99Os\bVW5\xe6\xe7\xdb\x95\x8d\xffY\xe0s\x7f\x9eK,\xae\xaeX\x15M@\xdd\x04`\xea\x03\xf7\x7f:\xc8HU3\xabX}\xa7S8s\xdb_\xc5\x9c\xc9Rw\x90G\xf3J\x9c\x8f\x91\xa1\xd6\x055?m\xed\x94\x9c\xb7(\x0f\xd3\xbc\xba\xc6T\xdd\x15\xf7+*Z3\x8e_Z\xa3k\xe4R\x1e\xc8\vYV\x8a\x8d\xad\x8cI\x88\fM\x19JX\x1f\xffe#|\x06\xfa86\xcb\x93\xea\xab\xcc\x864fC*I\x7fM\t7\x94}\x06\x1d\xc3\x9co-\xdd\xa6\x1b\xa8_\x1fBl\xc4:\xae\xfe4\x9e\xa9T\x91\xd9w\x05\xf8{\xd6@', 0x0, 0x0)
ioctl$UI_SET_LEDBIT(r6, 0x40045569, 0xc)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r5, 0x40045542, &(0x7f0000000440)=0x10e)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r4, r3, 0x0, 0x20002000005)
r7 = syz_open_dev$mouse(&(0x7f0000000480)='/dev/input/mouse#\x00', 0x6bc, 0x4000)
ioctl$LOOP_CLR_FD(r3, 0x4c01)
ioctl$KVM_SET_CLOCK(r7, 0x4030ae7b, &(0x7f0000000200)={0x0, 0x5})

13:07:27 executing program 2:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:27 executing program 4:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:27 executing program 0:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f00000000c0)=@get={0x1, &(0x7f0000000cc0)=""/4096, 0xd00e})
fchdir(r0)
ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, &(0x7f00000004c0)={0x0, 0x0})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x0, &(0x7f0000005c80)=0x9, 0xfffffffffffffff9)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000240)=0x1, 0x4)
fcntl$notify(r0, 0x402, 0x8)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x5, &(0x7f0000000140)=[{0x2, 0x1, 0x46a, 0x2b}, {0x5, 0x6e4, 0xffffffffffffffff}, {0x0, 0x8001, 0x9, 0x77d5241e}, {0xbf, 0x4, 0x0, 0x101}, {0x1, 0x7fffffff}]})
r3 = syz_open_dev$loop(&(0x7f00000002c0)='/dev/loop#\x00', 0x0, 0x82)
r4 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x85nG\x13g\xa6\x05', 0x0)
write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7}, 0x7)
ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, &(0x7f0000000780)=ANY=[@ANYBLOB="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"])
ioctl$BLKDISCARD(r3, 0x1277, &(0x7f0000000180)=0x6)
r5 = syz_open_dev$admmidi(&(0x7f0000000300)='/dev/admmidi#\x00', 0xffffffffffff8538, 0x400200)
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000280)={'irlan0\x00', {0x2, 0x4e24, @empty}})
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805)
r6 = syz_open_procfs(0x0, &(0x7f00000003c0)='\x00\x00\x00\x00\x00egy\xc5\x8e\xcb\x1c\xf8\x8f\xca;\xa3?\xad\xae\x0f\xb5\x97ao3\xab\xcdY\x9a\xe3\xe5\xe1\xf4\x87\xac\xad\x80\xa3P\x8c\xea\x9c\xc7\x00\xeb\xf4X#\xe34\x80O]\x87\xdd\x894\xdal;w\xf8\xf8\v?v\xf0\xb8\xda=|\xa4\xba\xbbiq!\xd8g\xb7I\x12\x80')
openat$cgroup_ro(r6, &(0x7f0000000b00)='mem\x00\x01y7SwaS.\x06ur\x89\xc9B\xab\xe3\xfarent\x00\xaa\x1a\xfd\xae\v\xbf\xd8d\xbb\xaf9Q\xde\xfb\x1fY\xfb\x8do\xd1\x16\xce(\x82\xf1\xbf{5Z\x13\x15\x14\xd7\xb8\xce\xf20\x1e\xc0\xc2\xed<?\xc7\xb6s\xca\xff\x96\x9a}+Q\xd2\xd9{\xca\x86Vw\xde\xb3\x86\x91\xfd\xb5p\xdb$ j\xfb\xf8\xedw\xf4\x161a.\xc7\n\xe0X?\xc4\xf4BW\x01\x1f-\xcc\x01\xd0W\xc8\xf09\fV\x1b|A)\xb8\xda#NP\x1c\x9d\x93#V\x9f\"Kgn{\x96\xaa\xbd0\x8ef\x9d\xb88CP(}w\x8c\xbb\xdc%\ax \x10\xd1\n(\xa8=\xf54\xa9\xcb\xe9\x97T\xcf\xcf\x87t\x81\xfa\xaa\xf30\x8b\xb7\xea\xfc^\xb6\x95\x87E\x11\x89\x7f\xa0m\xd3&\tHvtD\x83\\6\xe0t\xa8\xdd\xa3\xa4\xd2\xb9\xb9{+\x1d\xa3\xd5Z;]*2\x99Os\bVW5\xe6\xe7\xdb\x95\x8d\xffY\xe0s\x7f\x9eK,\xae\xaeX\x15M@\xdd\x04`\xea\x03\xf7\x7f:\xc8HU3\xabX}\xa7S8s\xdb_\xc5\x9c\xc9Rw\x90G\xf3J\x9c\x8f\x91\xa1\xd6\x055?m\xed\x94\x9c\xb7(\x0f\xd3\xbc\xba\xc6T\xdd\x15\xf7+*Z3\x8e_Z\xa3k\xe4R\x1e\xc8\vYV\x8a\x8d\xad\x8cI\x88\fM\x19JX\x1f\xffe#|\x06\xfa86\xcb\x93\xea\xab\xcc\x864fC*I\x7fM\t7\x94}\x06\x1d\xc3\x9co-\xdd\xa6\x1b\xa8_\x1fBl\xc4:\xae\xfe4\x9e\xa9T\x91\xd9w\x05\xf8{\xd6@', 0x0, 0x0)
ioctl$UI_SET_LEDBIT(r6, 0x40045569, 0xc)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r5, 0x40045542, &(0x7f0000000440)=0x10e)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r4, r3, 0x0, 0x20002000005)
r7 = syz_open_dev$mouse(&(0x7f0000000480)='/dev/input/mouse#\x00', 0x6bc, 0x4000)
ioctl$LOOP_CLR_FD(r3, 0x4c01)
ioctl$KVM_SET_CLOCK(r7, 0x4030ae7b, &(0x7f0000000200)={0x0, 0x5})

[  173.546969][ T8871] blk_update_request: I/O error, dev loop0, sector 768 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
13:07:28 executing program 2:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:28 executing program 1:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:28 executing program 0:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f00000000c0)=@get={0x1, &(0x7f0000000cc0)=""/4096, 0xd00e})
fchdir(r0)
ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, &(0x7f00000004c0)={0x0, 0x0})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x0, &(0x7f0000005c80)=0x9, 0xfffffffffffffff9)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000240)=0x1, 0x4)
fcntl$notify(r0, 0x402, 0x8)
getpid()
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x5, &(0x7f0000000140)=[{0x2, 0x1, 0x46a, 0x2b}, {0x5, 0x6e4, 0xffffffffffffffff}, {0x0, 0x8001, 0x9, 0x77d5241e}, {0xbf, 0x4, 0x0, 0x101}, {0x1, 0x7fffffff}]})
r3 = syz_open_dev$loop(&(0x7f00000002c0)='/dev/loop#\x00', 0x0, 0x82)
r4 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x85nG\x13g\xa6\x05', 0x0)
write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7}, 0x7)
ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, &(0x7f0000000780)=ANY=[@ANYBLOB="1d00dd00e93b1a7f79947e8edc0a4b5d5e7d91009b4ae28a97eded91288fc23735d36bb8cd6463ea972f091ca729dc094d433f8cd1e748070d207d7183ffcef0f53281153c77c43af59e3edf45a024b33dcc5ea96db30aad178b24976695e74b61482374e76f0c6bf5d00895d53f4bb54fe9d097614cf46a33f8ec7aa1c36e03b11b60de0ff8a6f0ffaa66d3699a2c7c6287e4aa4a766d03a8bcf6b3b9b9eb7bba09fb37a2b2de5952806422e9b942212888c8dc17671d6013da22f0f216e997045270a7045988fd6eee7abff784c65fe3993030ec1a3cba2aa341f07edbabb9d94906ff3b8e5a6a2d40e3fc7b31afe5e9f60f085402e1349e2cef03caf38c864f0dace9392cc381ea366518bc4e434553bb4314c74d99f719fde5f7789920fde81fe76664067500db5552edd9dfbf9f8783e90fda90669e30abdf18359ab8af075dd3fbdd6705d226e74f00000000000000"])
ioctl$BLKDISCARD(r3, 0x1277, &(0x7f0000000180)=0x6)
r5 = syz_open_dev$admmidi(&(0x7f0000000300)='/dev/admmidi#\x00', 0xffffffffffff8538, 0x400200)
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000280)={'irlan0\x00', {0x2, 0x4e24, @empty}})
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805)
r6 = syz_open_procfs(0x0, &(0x7f00000003c0)='\x00\x00\x00\x00\x00egy\xc5\x8e\xcb\x1c\xf8\x8f\xca;\xa3?\xad\xae\x0f\xb5\x97ao3\xab\xcdY\x9a\xe3\xe5\xe1\xf4\x87\xac\xad\x80\xa3P\x8c\xea\x9c\xc7\x00\xeb\xf4X#\xe34\x80O]\x87\xdd\x894\xdal;w\xf8\xf8\v?v\xf0\xb8\xda=|\xa4\xba\xbbiq!\xd8g\xb7I\x12\x80')
openat$cgroup_ro(r6, &(0x7f0000000b00)='mem\x00\x01y7SwaS.\x06ur\x89\xc9B\xab\xe3\xfarent\x00\xaa\x1a\xfd\xae\v\xbf\xd8d\xbb\xaf9Q\xde\xfb\x1fY\xfb\x8do\xd1\x16\xce(\x82\xf1\xbf{5Z\x13\x15\x14\xd7\xb8\xce\xf20\x1e\xc0\xc2\xed<?\xc7\xb6s\xca\xff\x96\x9a}+Q\xd2\xd9{\xca\x86Vw\xde\xb3\x86\x91\xfd\xb5p\xdb$ j\xfb\xf8\xedw\xf4\x161a.\xc7\n\xe0X?\xc4\xf4BW\x01\x1f-\xcc\x01\xd0W\xc8\xf09\fV\x1b|A)\xb8\xda#NP\x1c\x9d\x93#V\x9f\"Kgn{\x96\xaa\xbd0\x8ef\x9d\xb88CP(}w\x8c\xbb\xdc%\ax \x10\xd1\n(\xa8=\xf54\xa9\xcb\xe9\x97T\xcf\xcf\x87t\x81\xfa\xaa\xf30\x8b\xb7\xea\xfc^\xb6\x95\x87E\x11\x89\x7f\xa0m\xd3&\tHvtD\x83\\6\xe0t\xa8\xdd\xa3\xa4\xd2\xb9\xb9{+\x1d\xa3\xd5Z;]*2\x99Os\bVW5\xe6\xe7\xdb\x95\x8d\xffY\xe0s\x7f\x9eK,\xae\xaeX\x15M@\xdd\x04`\xea\x03\xf7\x7f:\xc8HU3\xabX}\xa7S8s\xdb_\xc5\x9c\xc9Rw\x90G\xf3J\x9c\x8f\x91\xa1\xd6\x055?m\xed\x94\x9c\xb7(\x0f\xd3\xbc\xba\xc6T\xdd\x15\xf7+*Z3\x8e_Z\xa3k\xe4R\x1e\xc8\vYV\x8a\x8d\xad\x8cI\x88\fM\x19JX\x1f\xffe#|\x06\xfa86\xcb\x93\xea\xab\xcc\x864fC*I\x7fM\t7\x94}\x06\x1d\xc3\x9co-\xdd\xa6\x1b\xa8_\x1fBl\xc4:\xae\xfe4\x9e\xa9T\x91\xd9w\x05\xf8{\xd6@', 0x0, 0x0)
ioctl$UI_SET_LEDBIT(r6, 0x40045569, 0xc)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r5, 0x40045542, &(0x7f0000000440)=0x10e)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r4, r3, 0x0, 0x20002000005)
r7 = syz_open_dev$mouse(&(0x7f0000000480)='/dev/input/mouse#\x00', 0x6bc, 0x4000)
ioctl$LOOP_CLR_FD(r3, 0x4c01)
ioctl$KVM_SET_CLOCK(r7, 0x4030ae7b, &(0x7f0000000200)={0x0, 0x5})

13:07:28 executing program 4:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:28 executing program 5:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

[  174.149930][ T8896] blk_update_request: I/O error, dev loop0, sector 256 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
13:07:28 executing program 1:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:28 executing program 0:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:29 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0800b5055e0bcfe87b0071")
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffdffffffffffffd, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x200000000011, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r3, 0x0, 0xfea2, 0x20000802, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r3, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0xffffffd8)

13:07:29 executing program 4:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:29 executing program 2:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:29 executing program 5:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:29 executing program 1:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:29 executing program 4:
r0 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r0, 0x3f)
r1 = socket$unix(0x1, 0x5, 0x0)
connect(r1, &(0x7f0000931ff4)=@un=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
sendmsg$unix(r1, &(0x7f0000000080)={0x0, 0xffffffffffffff13, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES64=r0], 0x18}, 0x0)
close(r0)
r2 = socket$unix(0x1, 0x5, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
connect(r3, &(0x7f0000931ff4)=@un=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
close(r2)

13:07:29 executing program 0:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:29 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r1, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000a00)={0x10, 0x12, 0x1}, 0x10}], 0x1}, 0x0)
dup3(r1, r0, 0x7387fadfaab730a0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))

13:07:29 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r0, 0xc008ae88, &(0x7f0000000100)={0x8d, 0x0, [0x600000484]})

13:07:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r0, 0xc008ae88, &(0x7f0000000100)={0x8d, 0x0, [0x600000484]})

13:07:30 executing program 1:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x0, 0x0)
pread64(r0, 0x0, 0x2bd2716d0ab7c0a0, 0x0)

13:07:30 executing program 5:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:30 executing program 3:
io_setup(0x3b24, 0x0)
eventfd2(0x0, 0x0)
ioctl$RTC_RD_TIME(0xffffffffffffffff, 0x80247009, 0x0)
r0 = socket(0x10, 0x803, 0x0)
getsockname$packet(r0, 0x0, &(0x7f0000000200))
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001300)={{{@in6=@rand_addr="de19d7d0a9fac93bbc70866f7932c2de", @in=@empty, 0x0, 0x0, 0x4e22, 0x0, 0x2, 0x0, 0xe0, 0x32}, {0x0, 0x80000001, 0x0, 0x0, 0x3ff, 0x8, 0x7}, {0x0, 0x5f8}, 0x80000000, 0x10, 0x2, 0x0, 0x2}, {{@in=@loopback, 0x4d6, 0x33}, 0x0, @in=@broadcast, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x7ff}}, 0xe8)
syz_open_dev$sndtimer(0x0, 0x0, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
sendmsg$sock(0xffffffffffffffff, &(0x7f0000001100)={0x0, 0x0, &(0x7f0000001080), 0x0, &(0x7f00000010c0)=[@txtime={{0x18, 0x1, 0x3d, 0x9}}], 0x18}, 0x0)
ioctl$SNDRV_TIMER_IOCTL_STOP(0xffffffffffffffff, 0x54a1)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x0, 0x0)
open(0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, r1, 0x80000)
r2 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x1}, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x1c, 0x16, 0xa01, 0x0, 0x0, {}, [@typed={0x8, 0x0, @str='&\x00'}]}, 0x1c}}, 0x0)
readahead(0xffffffffffffffff, 0x4, 0x1)

13:07:30 executing program 0:
r0 = syz_open_dev$adsp(0x0, 0x0, 0x8000)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
truncate(0x0, 0x1000)
r2 = open(&(0x7f0000000480)='./bus\x00', 0x2, 0x0)
r3 = gettid()
r4 = creat(&(0x7f0000000100)='./file0\x00', 0x5a)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x84003ff)
fallocate(r4, 0x8, 0x0, 0x8000)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x84003ff)
fallocate(r5, 0x0, 0x0, 0x8000)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r7, 0x0, 0x0, 0x84003ff)
fallocate(r7, 0x8, 0x0, 0x8000)
ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000280)={0x80fb, 0x1})
socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000001c0), 0x14)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000080)=0x8)
r8 = creat(0x0, 0x0)
fallocate(r8, 0x0, 0x0, 0x84003ff)
fallocate(r8, 0x8, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
ptrace$setopts(0x4200, r3, 0xfffffffffffffe00, 0x100000)
lseek(r1, 0x0, 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000240)={0x5, 0x7, 0x10000}, 0x4)
sendfile(r1, r2, 0x0, 0x0)

13:07:30 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
sendfile(r0, r2, 0x0, 0x20000000009)

13:07:30 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r1, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000a00)={0x10, 0x12, 0x1}, 0x10}], 0x1}, 0x0)
dup3(r1, r0, 0x7387fadfaab730a0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))

13:07:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r0, 0xc008ae88, &(0x7f0000000100)={0x8d, 0x0, [0x600000484]})

[  176.123206][ T8984] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
13:07:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r0, 0xc008ae88, &(0x7f0000000100)={0x8d, 0x0, [0x600000484]})

[  176.205553][ T8992] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
13:07:30 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
sendfile(r0, r2, 0x0, 0x20000000009)

13:07:31 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r1, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000a00)={0x10, 0x12, 0x1}, 0x10}], 0x1}, 0x0)
dup3(r1, r0, 0x7387fadfaab730a0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))

13:07:31 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r1, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000a00)={0x10, 0x12, 0x1}, 0x10}], 0x1}, 0x0)
dup3(r1, r0, 0x7387fadfaab730a0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))

13:07:31 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000940)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000a80)="ad56b6cc0400fb8b65d8b4ac2ca35c66", 0x10)
sendmmsg$sock(r1, &(0x7f0000000900)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000240)="526b60ef8c0fbf8238f26ecdafbf97e69541b19392b3252280155728", 0x1fdc0}], 0x1}}], 0x1, 0x0)

13:07:31 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
sendfile(r0, r2, 0x0, 0x20000000009)

13:07:31 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'nr0\x01\x00', 0x4009})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x336)
close(r0)

13:07:31 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r1, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000a00)={0x10, 0x12, 0x1}, 0x10}], 0x1}, 0x0)
dup3(r1, r0, 0x7387fadfaab730a0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))

13:07:31 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
sendfile(r0, r2, 0x0, 0x20000000009)

13:07:32 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r1, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000a00)={0x10, 0x12, 0x1}, 0x10}], 0x1}, 0x0)
dup3(r1, r0, 0x7387fadfaab730a0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))

13:07:32 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r1, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000a00)={0x10, 0x12, 0x1}, 0x10}], 0x1}, 0x0)
dup3(r1, r0, 0x7387fadfaab730a0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))

13:07:32 executing program 5:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x8)

13:07:32 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'nr0\x01\x00', 0x4009})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x336)
close(r0)

13:07:32 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'nr0\x01\x00', 0x4009})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x336)
close(r0)

13:07:32 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000003c0)=0x6, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000001c0)=0x2, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="fa01711425a6b42ddc5c46757f6b420f356f4f008ce309074327bfdd3558461fe59a8fd6186e0a11a693ed5f54b054e87042b72df1ce9aa8d1c176bea1239e42ab4119d8ebba7d7572e655238e8156a75410f44a7665b186275f2182aeae9570569bea3a5a5e22475ef4d24a9fa031de380e0d1a5ddf665a39fa4317200e1cf4457dd6a9c3a948a4d159e7c13db66c42327db092a6924604db4343b6386fd648d7e27be1cfc4ebcd71ff34048236cd59a7d4401307f3277e5ed875001a30134ed752a5b811689ab9c8", 0x2a2b178a6daa88db, 0x5, 0x0, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x42, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r1, 0x0)

13:07:33 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r1, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000a00)={0x10, 0x12, 0x1}, 0x10}], 0x1}, 0x0)
dup3(r1, r0, 0x7387fadfaab730a0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))

13:07:33 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r1, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000a00)={0x10, 0x12, 0x1}, 0x10}], 0x1}, 0x0)
dup3(r1, r0, 0x7387fadfaab730a0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))

13:07:33 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r1, &(0x7f0000005d40)={0xfffffffffffffffe, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000a00)={0x10, 0x12, 0x1}, 0x10}], 0x1}, 0x0)
dup3(r1, r0, 0x7387fadfaab730a0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0))

13:07:33 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000003c0)=0x6, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000001c0)=0x2, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="fa01711425a6b42ddc5c46757f6b420f356f4f008ce309074327bfdd3558461fe59a8fd6186e0a11a693ed5f54b054e87042b72df1ce9aa8d1c176bea1239e42ab4119d8ebba7d7572e655238e8156a75410f44a7665b186275f2182aeae9570569bea3a5a5e22475ef4d24a9fa031de380e0d1a5ddf665a39fa4317200e1cf4457dd6a9c3a948a4d159e7c13db66c42327db092a6924604db4343b6386fd648d7e27be1cfc4ebcd71ff34048236cd59a7d4401307f3277e5ed875001a30134ed752a5b811689ab9c8", 0x2a2b178a6daa88db, 0x5, 0x0, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x42, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r1, 0x0)

13:07:33 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'nr0\x01\x00', 0x4009})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x336)
close(r0)

13:07:34 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'nr0\x01\x00', 0x4009})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x336)
close(r0)

13:07:34 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000500)={@dev}, 0x14)
setsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000000040)={@remote}, 0x14)

13:07:34 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000003c0)=0x6, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000001c0)=0x2, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="fa01711425a6b42ddc5c46757f6b420f356f4f008ce309074327bfdd3558461fe59a8fd6186e0a11a693ed5f54b054e87042b72df1ce9aa8d1c176bea1239e42ab4119d8ebba7d7572e655238e8156a75410f44a7665b186275f2182aeae9570569bea3a5a5e22475ef4d24a9fa031de380e0d1a5ddf665a39fa4317200e1cf4457dd6a9c3a948a4d159e7c13db66c42327db092a6924604db4343b6386fd648d7e27be1cfc4ebcd71ff34048236cd59a7d4401307f3277e5ed875001a30134ed752a5b811689ab9c8", 0x2a2b178a6daa88db, 0x5, 0x0, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x42, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r1, 0x0)

13:07:34 executing program 3:
r0 = socket$inet6(0xa, 0x1, 0x8010000400000084)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r0, 0xffffffff80000001)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f000055bfe4)=[@in={0x2, 0x4e23, @local}], 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, 0x0, 0x0)

13:07:35 executing program 2:
r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x4})

13:07:35 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='H', 0x1, 0x0, &(0x7f0000000100)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x4)
writev(r2, &(0x7f0000000280)=[{&(0x7f0000000040)="480000001400190d09004beafd0d8c560284ed7a80ffe00600000000000000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed4e00009052946f02", 0x48}], 0x1)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=""/166, 0xa6}, {&(0x7f0000000180)=""/157, 0x9d}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x3}}], 0x1, 0x0, 0x0)

13:07:35 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'nr0\x01\x00', 0x4009})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x336)
close(r0)

13:07:35 executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xa, 0x3, 0x20000000008, 0x3, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffff9c}, 0x11)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000000)={r0, &(0x7f0000000080), &(0x7f0000000280)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000140)={r0, &(0x7f0000000080), &(0x7f00000000c0)=""/92}, 0x18)

13:07:35 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000003c0)=0x6, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000001c0)=0x2, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="fa01711425a6b42ddc5c46757f6b420f356f4f008ce309074327bfdd3558461fe59a8fd6186e0a11a693ed5f54b054e87042b72df1ce9aa8d1c176bea1239e42ab4119d8ebba7d7572e655238e8156a75410f44a7665b186275f2182aeae9570569bea3a5a5e22475ef4d24a9fa031de380e0d1a5ddf665a39fa4317200e1cf4457dd6a9c3a948a4d159e7c13db66c42327db092a6924604db4343b6386fd648d7e27be1cfc4ebcd71ff34048236cd59a7d4401307f3277e5ed875001a30134ed752a5b811689ab9c8", 0x2a2b178a6daa88db, 0x5, 0x0, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x42, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r1, 0x0)

13:07:35 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'nr0\x01\x00', 0x4009})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x336)
close(r0)

13:07:35 executing program 3:
r0 = syz_open_dev$binderN(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup3(r1, r2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x18, 0x0, &(0x7f0000000380)=[@decrefs={0x40046305}, @clear_death={0x40046306}], 0x0, 0x0, 0x0})

[  181.541634][ T9198] binder: 9195:9198 unknown command 0
[  181.582556][ T9198] binder: 9195:9198 ioctl c0306201 20000080 returned -22
13:07:36 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f000000d379)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000140001030000000000005bb828d4bc1ae08950b579f566b1e4c15b6c0000b8040d00"], 0x9b}}, 0x0)

13:07:36 executing program 3:
r0 = syz_open_dev$binderN(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup3(r1, r2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x18, 0x0, &(0x7f0000000380)=[@decrefs={0x40046305}, @clear_death={0x40046306}], 0x0, 0x0, 0x0})

13:07:36 executing program 5:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000700)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in=@empty, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0xa}}, [@tmpl={0x44, 0x5, [{{}, 0x2, @in=@multicast2}]}]}, 0xfc}}, 0x0)

13:07:36 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='H', 0x1, 0x0, &(0x7f0000000100)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x4)
writev(r2, &(0x7f0000000280)=[{&(0x7f0000000040)="480000001400190d09004beafd0d8c560284ed7a80ffe00600000000000000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed4e00009052946f02", 0x48}], 0x1)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=""/166, 0xa6}, {&(0x7f0000000180)=""/157, 0x9d}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x3}}], 0x1, 0x0, 0x0)

13:07:36 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='H', 0x1, 0x0, &(0x7f0000000100)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x4)
writev(r2, &(0x7f0000000280)=[{&(0x7f0000000040)="480000001400190d09004beafd0d8c560284ed7a80ffe00600000000000000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed4e00009052946f02", 0x48}], 0x1)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=""/166, 0xa6}, {&(0x7f0000000180)=""/157, 0x9d}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x3}}], 0x1, 0x0, 0x0)

13:07:36 executing program 2:
r0 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000000))
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
socketpair(0x21, 0x2, 0x2, &(0x7f0000000040))

[  182.198273][ T9215] binder: 9212:9215 unknown command 0
[  182.311323][ T9215] binder: 9212:9215 ioctl c0306201 20000080 returned -22
13:07:36 executing program 5:
clock_nanosleep(0x0, 0x1, &(0x7f0000000040)={0x77359400}, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
sendmmsg(0xffffffffffffffff, &(0x7f0000005480)=[{{&(0x7f0000000000)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x80, 0x0}}], 0x1, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
tkill(r0, 0x15)

13:07:36 executing program 0:
r0 = perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000341000/0x2000)=nil, 0x2000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
mmap(&(0x7f0000395000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x0)

13:07:37 executing program 3:
r0 = syz_open_dev$binderN(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup3(r1, r2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x18, 0x0, &(0x7f0000000380)=[@decrefs={0x40046305}, @clear_death={0x40046306}], 0x0, 0x0, 0x0})

13:07:37 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0800b5055e0bcfe87b0071")
r1 = fsopen(&(0x7f0000000000)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x6, 0x0, 0x0, 0x0)

13:07:37 executing program 0:
setrlimit(0x7, &(0x7f0000becff0))
clone(0x802102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[  182.729728][ T9244] binder: 9241:9244 unknown command 0
13:07:37 executing program 5:
clock_nanosleep(0x0, 0x1, &(0x7f0000000040)={0x77359400}, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
sendmmsg(0xffffffffffffffff, &(0x7f0000005480)=[{{&(0x7f0000000000)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x80, 0x0}}], 0x1, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
tkill(r0, 0x15)

[  182.789084][ T9244] binder: 9241:9244 ioctl c0306201 20000080 returned -22
13:07:37 executing program 3:
r0 = syz_open_dev$binderN(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup3(r1, r2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x18, 0x0, &(0x7f0000000380)=[@decrefs={0x40046305}, @clear_death={0x40046306}], 0x0, 0x0, 0x0})

13:07:37 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0800b5055e0bcfe87b0071")
r1 = fsopen(&(0x7f0000000000)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x6, 0x0, 0x0, 0x0)

13:07:37 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vet\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbdh\x00', 0x43732e5398416f1a})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, 0x0)

13:07:37 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='H', 0x1, 0x0, &(0x7f0000000100)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x4)
writev(r2, &(0x7f0000000280)=[{&(0x7f0000000040)="480000001400190d09004beafd0d8c560284ed7a80ffe00600000000000000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed4e00009052946f02", 0x48}], 0x1)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=""/166, 0xa6}, {&(0x7f0000000180)=""/157, 0x9d}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x3}}], 0x1, 0x0, 0x0)

13:07:37 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='H', 0x1, 0x0, &(0x7f0000000100)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x4)
writev(r2, &(0x7f0000000280)=[{&(0x7f0000000040)="480000001400190d09004beafd0d8c560284ed7a80ffe00600000000000000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed4e00009052946f02", 0x48}], 0x1)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=""/166, 0xa6}, {&(0x7f0000000180)=""/157, 0x9d}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x3}}], 0x1, 0x0, 0x0)

13:07:37 executing program 5:
clock_nanosleep(0x0, 0x1, &(0x7f0000000040)={0x77359400}, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
sendmmsg(0xffffffffffffffff, &(0x7f0000005480)=[{{&(0x7f0000000000)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x80, 0x0}}], 0x1, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
tkill(r0, 0x15)

13:07:37 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0800b5055e0bcfe87b0071")
r1 = fsopen(&(0x7f0000000000)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x6, 0x0, 0x0, 0x0)

[  183.160154][ T9266] binder: 9265:9266 unknown command 0
[  183.199448][ T9266] binder: 9265:9266 ioctl c0306201 20000080 returned -22
13:07:37 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
r1 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x11, @rand_addr, 0x0, 0x0, 'lblcr\x00', 0x27}, 0x2c)

13:07:37 executing program 5:
clock_nanosleep(0x0, 0x1, &(0x7f0000000040)={0x77359400}, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
sendmmsg(0xffffffffffffffff, &(0x7f0000005480)=[{{&(0x7f0000000000)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x80, 0x0}}], 0x1, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
tkill(r0, 0x15)

13:07:38 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0800b5055e0bcfe87b0071")
r1 = fsopen(&(0x7f0000000000)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x6, 0x0, 0x0, 0x0)

[  183.510200][ T9293] IPVS: ip_vs_svc_hash(): request for already hashed, called from do_ip_vs_set_ctl+0xdcc/0xec0
13:07:38 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
r1 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x11, @rand_addr, 0x0, 0x0, 'lblcr\x00', 0x27}, 0x2c)

13:07:38 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000000)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', <r2=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x60, r1, 0x1, 0x0, 0x0, {0x1, 0x6c00000000000000}, [{{0x8, 0x1, r2}, {0x44, 0x2, [{0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x3}}, {0x8}}}]}}]}, 0x60}}, 0x0)

13:07:38 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffe79, &(0x7f0000000200)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @bridge={{0xc, 0x1, 'bridge\x00'}, {0x4}}}, @IFLA_ADDRESS={0x6, 0x1, @dev}]}, 0x40}}, 0x0)

[  183.656782][ T9304] IPVS: ip_vs_svc_hash(): request for already hashed, called from do_ip_vs_set_ctl+0xdcc/0xec0
13:07:38 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x80045518, &(0x7f0000000340)=@urb_type_control={0x2, {0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

13:07:38 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
r1 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x11, @rand_addr, 0x0, 0x0, 'lblcr\x00', 0x27}, 0x2c)

[  183.756782][ T9309] netlink: 'syz-executor.2': attribute type 3 has an invalid length.
[  183.814441][ T9309] netlink: 'syz-executor.2': attribute type 3 has an invalid length.
[  183.837075][ T9311] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  183.877506][ T9318] IPVS: ip_vs_svc_hash(): request for already hashed, called from do_ip_vs_set_ctl+0xdcc/0xec0
13:07:38 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='H', 0x1, 0x0, &(0x7f0000000100)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x4)
writev(r2, &(0x7f0000000280)=[{&(0x7f0000000040)="480000001400190d09004beafd0d8c560284ed7a80ffe00600000000000000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed4e00009052946f02", 0x48}], 0x1)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=""/166, 0xa6}, {&(0x7f0000000180)=""/157, 0x9d}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x3}}], 0x1, 0x0, 0x0)

13:07:38 executing program 0:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000000)={0x30}, 0x30)

13:07:38 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='H', 0x1, 0x0, &(0x7f0000000100)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x4)
writev(r2, &(0x7f0000000280)=[{&(0x7f0000000040)="480000001400190d09004beafd0d8c560284ed7a80ffe00600000000000000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed4e00009052946f02", 0x48}], 0x1)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=""/166, 0xa6}, {&(0x7f0000000180)=""/157, 0x9d}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x3}}], 0x1, 0x0, 0x0)

13:07:38 executing program 2:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='bpf\x00', 0x0, 0x0)
mount$overlay(0x400000, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='overlay\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB=',lowerdir=.:file0'])
open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
chdir(&(0x7f0000000080)='./file0\x00')
chown(&(0x7f0000000140)='./bus\x00', 0xee01, 0x0)

13:07:38 executing program 5:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x5, 0x3f, 0x6d, 0x2, 0x0, 0x0}, 0x26)
unshare(0x400)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={r0, &(0x7f0000000480), &(0x7f00000000c0)}, 0x20)
r1 = dup(r0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r1, &(0x7f0000000640)}, 0x20)

13:07:38 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
r1 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x11, @rand_addr, 0x0, 0x0, 'lblcr\x00', 0x27}, 0x2c)

[  184.239505][ T9327] IPVS: ip_vs_svc_hash(): request for already hashed, called from do_ip_vs_set_ctl+0xdcc/0xec0
13:07:38 executing program 0:
socket(0x200000000000011, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
geteuid()
ioprio_set$uid(0x3, 0x0, 0x0)

13:07:38 executing program 5:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
close(r0)
socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f0000000b40)=[{&(0x7f0000000200)=@in6={0xa, 0x0, 0x0, @rand_addr="e10c8ffd9d48c5ddcbac3b70d4ec45c6"}, 0x1c, &(0x7f00000004c0)=[{&(0x7f00000002c0)="fd", 0x1}], 0x1, &(0x7f0000000080)=[@sndrcv={0x30}], 0x30}], 0x1, 0x4000040)

13:07:38 executing program 3:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x240000c5)

13:07:38 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000300)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x100000351, 0x20020059, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
shutdown(r0, 0x1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
recvmmsg(r0, &(0x7f0000003b40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

13:07:38 executing program 3:
signalfd4(0xffffffffffffffff, &(0x7f0000000ff8), 0x8, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f0000000ff8), 0x8, 0x0)
openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
pipe(&(0x7f00000015c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000001c0), 0xfffffef3)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

13:07:38 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9)
r0 = add_key(&(0x7f0000000040)='big_key\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000001c0)='g', 0x524, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$revoke(0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[  184.536189][ T9357] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
13:07:39 executing program 0:
socket(0x200000000000011, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
geteuid()
ioprio_set$uid(0x3, 0x0, 0x0)

13:07:39 executing program 4:
madvise(&(0x7f0000aa2000/0x1000)=nil, 0x20aa2000, 0x4)

13:07:39 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9)
r0 = add_key(&(0x7f0000000040)='big_key\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000001c0)='g', 0x524, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$revoke(0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)

13:07:39 executing program 2:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9)
r0 = add_key(&(0x7f0000000040)='big_key\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000001c0)='g', 0x524, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$revoke(0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)

13:07:39 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
rt_sigpending(&(0x7f0000000000), 0x4f)

13:07:39 executing program 0:
socket(0x200000000000011, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
geteuid()
ioprio_set$uid(0x3, 0x0, 0x0)

13:07:39 executing program 4:
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video36\x00', 0x2, 0x0)
ioctl$VIDIOC_S_CROP(r0, 0x4014563c, &(0x7f00000008c0)={0xa})

13:07:39 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9)
r0 = add_key(&(0x7f0000000040)='big_key\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000001c0)='g', 0x524, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$revoke(0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)

13:07:39 executing program 2:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9)
r0 = add_key(&(0x7f0000000040)='big_key\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000001c0)='g', 0x524, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$revoke(0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)

13:07:39 executing program 1:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x3, 0x19)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
getsockopt$inet_mreqsrc(r0, 0x0, 0xe, 0x0, &(0x7f00000002c0))

13:07:40 executing program 3:
signalfd4(0xffffffffffffffff, &(0x7f0000000ff8), 0x8, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f0000000ff8), 0x8, 0x0)
openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
pipe(&(0x7f00000015c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000001c0), 0xfffffef3)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

13:07:40 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000640)=[{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000300)='|', 0x9d80}], 0x8, &(0x7f0000000600)=[@rights={{0x18, 0x1, 0x1, [r0, r0]}}], 0x18}], 0x1, 0x0)

13:07:40 executing program 2:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9)
r0 = add_key(&(0x7f0000000040)='big_key\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000001c0)='g', 0x524, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$revoke(0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)

13:07:40 executing program 0:
socket(0x200000000000011, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
geteuid()
ioprio_set$uid(0x3, 0x0, 0x0)

13:07:40 executing program 5:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9)
r0 = add_key(&(0x7f0000000040)='big_key\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000001c0)='g', 0x524, 0xfffffffffffffffb)
keyctl$revoke(0x3, r0)
keyctl$revoke(0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)

13:07:40 executing program 1:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x3, 0x19)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
getsockopt$inet_mreqsrc(r0, 0x0, 0xe, 0x0, &(0x7f00000002c0))

13:07:40 executing program 4:
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000580), 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f1, &(0x7f0000000580)='ip6_vti0\x00')
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f2, &(0x7f0000000580)='ip6_vti1\x00')

13:07:40 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x31, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x15}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f00000089c0)={0x0, 0x0, 0x0}, 0x0)
connect$inet(r0, &(0x7f0000000400)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x4000000000001a8, 0x0)

13:07:40 executing program 2:
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000001880)="2600000013003ff1eb14c1f8030322ff001000e313000081093903680000000006000300124b", 0x26)

13:07:40 executing program 5:
r0 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000380)='X', 0x1, 0xfffffffffffffffe)
keyctl$search(0xa, r0, &(0x7f0000000000)='trusted\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0)

13:07:40 executing program 1:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x3, 0x19)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
getsockopt$inet_mreqsrc(r0, 0x0, 0xe, 0x0, &(0x7f00000002c0))

13:07:40 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000000140)={0x0, 0x8, 0x4, @tid=r0}, &(0x7f0000000400))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1}, {0x0, 0x1c9c380}}, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000ff8)={0xfffffffffffffdb1}, 0x8, 0x0)
read(r1, &(0x7f0000000080)=""/128, 0x2c0537e)
timer_delete(0x0)

13:07:40 executing program 3:
signalfd4(0xffffffffffffffff, &(0x7f0000000ff8), 0x8, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f0000000ff8), 0x8, 0x0)
openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
pipe(&(0x7f00000015c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000001c0), 0xfffffef3)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

13:07:40 executing program 2:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
syz_genetlink_get_family_id$tipc(0x0)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f00000009c0)='./file1\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setxattr$system_posix_acl(0x0, &(0x7f00000005c0)='system.posix_acl_default\x00', &(0x7f0000000c40)={{}, {}, [], {}, [{}, {}, {}, {}]}, 0x44, 0x0)
mount$overlay(0x40000a, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}], [], 0xf603000000000000})
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='cgroup2\x00', 0x0, 0x0)

13:07:40 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x31, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x15}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f00000089c0)={0x0, 0x0, 0x0}, 0x0)
connect$inet(r0, &(0x7f0000000400)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x4000000000001a8, 0x0)

13:07:40 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, 0xfffffffffffffffe, 0x3be)

13:07:40 executing program 1:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x3, 0x19)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
getsockopt$inet_mreqsrc(r0, 0x0, 0xe, 0x0, &(0x7f00000002c0))

13:07:40 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000000140)={0x0, 0x8, 0x4, @tid=r0}, &(0x7f0000000400))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1}, {0x0, 0x1c9c380}}, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000ff8)={0xfffffffffffffdb1}, 0x8, 0x0)
read(r1, &(0x7f0000000080)=""/128, 0x2c0537e)
timer_delete(0x0)

13:07:41 executing program 4:
r0 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
bpf$MAP_CREATE(0x0, &(0x7f00000011c0)={0x6, 0x4, 0xc700, 0xe8}, 0x3c)

13:07:41 executing program 1:
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
setsockopt$ax25_int(r0, 0x101, 0x4, &(0x7f0000000000), 0x4)

[  186.693522][ T9466] overlayfs: workdir and upperdir must reside under the same mount
13:07:41 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000000140)={0x0, 0x8, 0x4, @tid=r0}, &(0x7f0000000400))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1}, {0x0, 0x1c9c380}}, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000ff8)={0xfffffffffffffdb1}, 0x8, 0x0)
read(r1, &(0x7f0000000080)=""/128, 0x2c0537e)
timer_delete(0x0)

13:07:41 executing program 4:
r0 = socket$inet(0x2, 0x4000000805, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = dup3(r0, r1, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10)
sendto$inet(r2, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
sendto$inet(r1, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000025e000)=ANY=[@ANYBLOB="e92b0000", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000a8a000)=0xc)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, <r4=>0x0]}, &(0x7f0000a8a000)=0xc)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000c40)={r4}, &(0x7f0000000d00)=0x8)

[  186.772655][ T9477] overlayfs: workdir and upperdir must reside under the same mount
13:07:41 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x31, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x15}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f00000089c0)={0x0, 0x0, 0x0}, 0x0)
connect$inet(r0, &(0x7f0000000400)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x4000000000001a8, 0x0)

13:07:41 executing program 1:
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
setsockopt$ax25_int(r0, 0x101, 0x4, &(0x7f0000000000), 0x4)

13:07:41 executing program 3:
signalfd4(0xffffffffffffffff, &(0x7f0000000ff8), 0x8, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f0000000ff8), 0x8, 0x0)
openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
pipe(&(0x7f00000015c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f00000001c0), 0xfffffef3)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

13:07:41 executing program 2:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
syz_genetlink_get_family_id$tipc(0x0)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f00000009c0)='./file1\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setxattr$system_posix_acl(0x0, &(0x7f00000005c0)='system.posix_acl_default\x00', &(0x7f0000000c40)={{}, {}, [], {}, [{}, {}, {}, {}]}, 0x44, 0x0)
mount$overlay(0x40000a, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}], [], 0xf603000000000000})
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='cgroup2\x00', 0x0, 0x0)

13:07:41 executing program 1:
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
setsockopt$ax25_int(r0, 0x101, 0x4, &(0x7f0000000000), 0x4)

13:07:41 executing program 4:
r0 = socket$inet(0x2, 0x4000000805, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = dup3(r0, r1, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10)
sendto$inet(r2, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
sendto$inet(r1, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000025e000)=ANY=[@ANYBLOB="e92b0000", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000a8a000)=0xc)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, <r4=>0x0]}, &(0x7f0000a8a000)=0xc)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000c40)={r4}, &(0x7f0000000d00)=0x8)

13:07:41 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000000140)={0x0, 0x8, 0x4, @tid=r0}, &(0x7f0000000400))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1}, {0x0, 0x1c9c380}}, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000ff8)={0xfffffffffffffdb1}, 0x8, 0x0)
read(r1, &(0x7f0000000080)=""/128, 0x2c0537e)
timer_delete(0x0)

13:07:41 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x31, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x15}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f00000089c0)={0x0, 0x0, 0x0}, 0x0)
connect$inet(r0, &(0x7f0000000400)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x4000000000001a8, 0x0)

13:07:42 executing program 1:
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
setsockopt$ax25_int(r0, 0x101, 0x4, &(0x7f0000000000), 0x4)

13:07:42 executing program 4:
r0 = socket$inet(0x2, 0x4000000805, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = dup3(r0, r1, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10)
sendto$inet(r2, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
sendto$inet(r1, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000025e000)=ANY=[@ANYBLOB="e92b0000", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000a8a000)=0xc)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, <r4=>0x0]}, &(0x7f0000a8a000)=0xc)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000c40)={r4}, &(0x7f0000000d00)=0x8)

13:07:42 executing program 5:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x800000000008031, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x3)
move_pages(0x0, 0x2, &(0x7f0000000140)=[&(0x7f0000ffd000/0x1000)=nil], &(0x7f0000000080), &(0x7f0000000000), 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

13:07:42 executing program 0:
mkdir(0x0, 0x0)
truncate(0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000300)={0xa, 0x8000002}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000540)='dctcp\x00', 0x6)
sendto$inet6(r0, 0x0, 0x0, 0x20000001, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='bbr\x00', 0x4)
sendto$packet(r0, &(0x7f0000000340), 0xfffffffffffffd72, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
link(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='./file0\x00')

13:07:42 executing program 1:
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0xffffffffffffffec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40043, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x2, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x3}, 0xfffffeb7)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, &(0x7f0000000000))
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890c, &(0x7f0000000000))

13:07:42 executing program 4:
r0 = socket$inet(0x2, 0x4000000805, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = dup3(r0, r1, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10)
sendto$inet(r2, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
sendto$inet(r1, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000025e000)=ANY=[@ANYBLOB="e92b0000", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000a8a000)=0xc)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, <r4=>0x0]}, &(0x7f0000a8a000)=0xc)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000c40)={r4}, &(0x7f0000000d00)=0x8)

13:07:42 executing program 4:
msgget$private(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
capset(&(0x7f0000000100)={0x19980330}, &(0x7f00000001c0))
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(0xffffffffffffffff, 0x0, 0x48f, &(0x7f0000000040)={0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e20, 0x2, 'lblcr\x00', 0x1, 0x0, 0x17}, 0x2c)
r1 = io_uring_setup(0xa4, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000280)=[r0, r0], 0x2)
io_uring_register$IORING_UNREGISTER_FILES(r1, 0x3, 0x0, 0x0)

13:07:42 executing program 2:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
syz_genetlink_get_family_id$tipc(0x0)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f00000009c0)='./file1\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setxattr$system_posix_acl(0x0, &(0x7f00000005c0)='system.posix_acl_default\x00', &(0x7f0000000c40)={{}, {}, [], {}, [{}, {}, {}, {}]}, 0x44, 0x0)
mount$overlay(0x40000a, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}], [], 0xf603000000000000})
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='cgroup2\x00', 0x0, 0x0)

13:07:42 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x182)
r1 = memfd_create(&(0x7f0000000240)='.^\x00', 0x0)
pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, "1c69ab0d058b1b678397214eec9ff0d0cc8773ebb2cfd89b0252317a845d3df759d280ad530ff887d31ed8f9bf42b889fadb99a5defc79bd6b2023939c49224f", "e9af2deca424f1d69c3cef2acc10d15cae4da1bf9b1c974dd2de2185a2ae81bbcb58ebaa0b202596b0b84f59798e42bca13b7dd7218fcb5e75d1d7299ff17955", "804c0e6791e9da90dce632e1e4efa40c25402952a8dd77a5bf0805cfc3425350"})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
sendfile(r0, r0, 0x0, 0x24000000)
ioctl$LOOP_CLR_FD(r0, 0x4c01)

13:07:42 executing program 0:
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000080)="240000001a0007041dfffd946f6105000a7400001f0000000000080008001b00ffffffff", 0x25f}], 0x1}, 0x0)
r0 = socket(0x10, 0x800000000080002, 0x0)
sendmmsg$alg(r0, &(0x7f0000000140), 0x52b, 0x0)

13:07:42 executing program 3:
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000000e0623010090205af6a28118b3001b00"], 0x14}}, 0x0)
r0 = socket(0x10, 0x80002, 0xc)
sendmmsg$alg(r0, &(0x7f0000000140), 0x492492492492805, 0x0)

[  188.404491][ T9545] netlink: 'syz-executor.0': attribute type 27 has an invalid length.
13:07:42 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x171, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, &(0x7f0000000040))
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000600)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
r2 = dup2(r0, r0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21}, {0xa, 0x0, 0x0, @mcast1}, r1}}, 0x48)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000600)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
r5 = dup2(r3, r3)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21}, {0xa, 0x0, 0x0, @mcast1}, r4}}, 0x48)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)

[  188.467311][ T9552] capability: warning: `syz-executor.4' uses 32-bit capabilities (legacy support in use)
[  188.595262][ T9555] blk_update_request: I/O error, dev loop0, sector 768 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[  188.610218][ T9565] netlink: 'syz-executor.0': attribute type 27 has an invalid length.
13:07:43 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x171, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, &(0x7f0000000040))
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000600)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
r2 = dup2(r0, r0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21}, {0xa, 0x0, 0x0, @mcast1}, r1}}, 0x48)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000600)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
r5 = dup2(r3, r3)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21}, {0xa, 0x0, 0x0, @mcast1}, r4}}, 0x48)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)

[  188.757397][ T9546] ==================================================================
[  188.765704][ T9546] BUG: KASAN: null-ptr-deref in io_wq_cancel_all+0x28/0x2a0
[  188.772991][ T9546] Write of size 8 at addr 0000000000000004 by task syz-executor.4/9546
[  188.781231][ T9546] 
[  188.783568][ T9546] CPU: 1 PID: 9546 Comm: syz-executor.4 Not tainted 5.4.0-rc5-next-20191029 #0
[  188.792499][ T9546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  188.802557][ T9546] Call Trace:
[  188.805852][ T9546]  dump_stack+0x172/0x1f0
[  188.810289][ T9546]  ? io_wq_cancel_all+0x28/0x2a0
[  188.815224][ T9546]  ? io_wq_cancel_all+0x28/0x2a0
[  188.820163][ T9546]  __kasan_report.cold+0x5/0x41
[  188.825010][ T9546]  ? io_wq_cancel_all+0x28/0x2a0
[  188.829955][ T9546]  kasan_report+0x12/0x20
[  188.834304][ T9546]  check_memory_region+0x134/0x1a0
[  188.839430][ T9546]  __kasan_check_write+0x14/0x20
[  188.844372][ T9546]  io_wq_cancel_all+0x28/0x2a0
[  188.849156][ T9546]  io_uring_flush+0x35a/0x4e0
[  188.853840][ T9546]  ? exit_sem+0x9a4/0x1d89
[  188.858269][ T9546]  ? io_wake_function+0x260/0x260
[  188.863299][ T9546]  ? exit_files+0x7b/0xb0
[  188.867632][ T9546]  ? finish_wait+0x260/0x260
[  188.872216][ T9546]  ? exit_files+0x7b/0xb0
[  188.876546][ T9546]  ? io_wake_function+0x260/0x260
[  188.881568][ T9546]  filp_close+0xbd/0x170
[  188.885801][ T9546]  put_files_struct+0x1d7/0x2f0
[  188.890670][ T9546]  exit_files+0x83/0xb0
[  188.894816][ T9546]  do_exit+0x8d2/0x2e60
[  188.898978][ T9546]  ? mm_update_next_owner+0x640/0x640
[  188.904344][ T9546]  ? lock_downgrade+0x920/0x920
[  188.909187][ T9546]  ? _raw_spin_unlock_irq+0x23/0x80
[  188.914738][ T9546]  ? get_signal+0x392/0x24f0
[  188.919329][ T9546]  ? _raw_spin_unlock_irq+0x23/0x80
[  188.924537][ T9546]  do_group_exit+0x135/0x360
[  188.929124][ T9546]  get_signal+0x47c/0x24f0
[  188.933540][ T9546]  ? lock_downgrade+0x920/0x920
[  188.938407][ T9546]  do_signal+0x87/0x1700
[  188.942644][ T9546]  ? __kasan_check_read+0x11/0x20
[  188.953557][ T9546]  ? _copy_to_user+0x118/0x160
[  188.958310][ T9546]  ? setup_sigcontext+0x7d0/0x7d0
[  188.963334][ T9546]  ? exit_to_usermode_loop+0x43/0x380
[  188.968689][ T9546]  ? do_syscall_64+0x65f/0x760
[  188.973439][ T9546]  ? exit_to_usermode_loop+0x43/0x380
[  188.978885][ T9546]  ? lockdep_hardirqs_on+0x421/0x5e0
[  188.984157][ T9546]  ? trace_hardirqs_on+0x67/0x240
[  188.989172][ T9546]  exit_to_usermode_loop+0x286/0x380
[  188.994449][ T9546]  do_syscall_64+0x65f/0x760
[  188.999029][ T9546]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  189.004906][ T9546] RIP: 0033:0x459f49
[  189.008789][ T9546] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  189.028464][ T9546] RSP: 002b:00007fc905c40cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  189.036862][ T9546] RAX: 0000000000000000 RBX: 000000000075bf28 RCX: 0000000000459f49
[  189.044819][ T9546] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf28
13:07:43 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x182)
r1 = memfd_create(&(0x7f0000000240)='.^\x00', 0x0)
pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, "1c69ab0d058b1b678397214eec9ff0d0cc8773ebb2cfd89b0252317a845d3df759d280ad530ff887d31ed8f9bf42b889fadb99a5defc79bd6b2023939c49224f", "e9af2deca424f1d69c3cef2acc10d15cae4da1bf9b1c974dd2de2185a2ae81bbcb58ebaa0b202596b0b84f59798e42bca13b7dd7218fcb5e75d1d7299ff17955", "804c0e6791e9da90dce632e1e4efa40c25402952a8dd77a5bf0805cfc3425350"})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
sendfile(r0, r0, 0x0, 0x24000000)
ioctl$LOOP_CLR_FD(r0, 0x4c01)

[  189.052788][ T9546] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  189.060743][ T9546] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bf2c
[  189.068716][ T9546] R13: 00007ffd3b9a0b4f R14: 00007fc905c419c0 R15: 000000000075bf2c
[  189.076688][ T9546] ==================================================================
[  189.084729][ T9546] Disabling lock debugging due to kernel taint
[  189.164184][ T9546] Kernel panic - not syncing: panic_on_warn set ...
[  189.170819][ T9546] CPU: 1 PID: 9546 Comm: syz-executor.4 Tainted: G    B             5.4.0-rc5-next-20191029 #0
[  189.181134][ T9546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  189.191186][ T9546] Call Trace:
[  189.194480][ T9546]  dump_stack+0x172/0x1f0
[  189.198818][ T9546]  panic+0x2e3/0x75c
[  189.202717][ T9546]  ? add_taint.cold+0x16/0x16
[  189.207395][ T9546]  ? io_wq_cancel_all+0x28/0x2a0
[  189.212330][ T9546]  ? preempt_schedule+0x4b/0x60
[  189.217181][ T9546]  ? ___preempt_schedule+0x16/0x18
[  189.222289][ T9546]  ? trace_hardirqs_on+0x5e/0x240
[  189.227317][ T9546]  ? io_wq_cancel_all+0x28/0x2a0
[  189.232257][ T9546]  end_report+0x47/0x4f
[  189.236408][ T9546]  ? io_wq_cancel_all+0x28/0x2a0
[  189.241349][ T9546]  __kasan_report.cold+0xe/0x41
[  189.246200][ T9546]  ? io_wq_cancel_all+0x28/0x2a0
[  189.251141][ T9546]  kasan_report+0x12/0x20
[  189.255470][ T9546]  check_memory_region+0x134/0x1a0
[  189.260590][ T9546]  __kasan_check_write+0x14/0x20
[  189.265556][ T9546]  io_wq_cancel_all+0x28/0x2a0
[  189.270325][ T9546]  io_uring_flush+0x35a/0x4e0
[  189.275000][ T9546]  ? exit_sem+0x9a4/0x1d89
[  189.279423][ T9546]  ? io_wake_function+0x260/0x260
[  189.284464][ T9546]  ? exit_files+0x7b/0xb0
[  189.288796][ T9546]  ? finish_wait+0x260/0x260
[  189.293385][ T9546]  ? exit_files+0x7b/0xb0
[  189.297721][ T9546]  ? io_wake_function+0x260/0x260
[  189.302747][ T9546]  filp_close+0xbd/0x170
[  189.306991][ T9546]  put_files_struct+0x1d7/0x2f0
[  189.311847][ T9546]  exit_files+0x83/0xb0
[  189.316002][ T9546]  do_exit+0x8d2/0x2e60
[  189.320170][ T9546]  ? mm_update_next_owner+0x640/0x640
[  189.325548][ T9546]  ? lock_downgrade+0x920/0x920
[  189.330402][ T9546]  ? _raw_spin_unlock_irq+0x23/0x80
[  189.335596][ T9546]  ? get_signal+0x392/0x24f0
[  189.340172][ T9546]  ? _raw_spin_unlock_irq+0x23/0x80
[  189.345356][ T9546]  do_group_exit+0x135/0x360
[  189.349929][ T9546]  get_signal+0x47c/0x24f0
[  189.354330][ T9546]  ? lock_downgrade+0x920/0x920
[  189.359172][ T9546]  do_signal+0x87/0x1700
[  189.363401][ T9546]  ? __kasan_check_read+0x11/0x20
[  189.368410][ T9546]  ? _copy_to_user+0x118/0x160
[  189.373160][ T9546]  ? setup_sigcontext+0x7d0/0x7d0
[  189.378176][ T9546]  ? exit_to_usermode_loop+0x43/0x380
[  189.383533][ T9546]  ? do_syscall_64+0x65f/0x760
[  189.388279][ T9546]  ? exit_to_usermode_loop+0x43/0x380
[  189.393636][ T9546]  ? lockdep_hardirqs_on+0x421/0x5e0
[  189.398904][ T9546]  ? trace_hardirqs_on+0x67/0x240
[  189.403924][ T9546]  exit_to_usermode_loop+0x286/0x380
[  189.409195][ T9546]  do_syscall_64+0x65f/0x760
[  189.413772][ T9546]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  189.419650][ T9546] RIP: 0033:0x459f49
[  189.423528][ T9546] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  189.443113][ T9546] RSP: 002b:00007fc905c40cf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  189.451509][ T9546] RAX: 0000000000000000 RBX: 000000000075bf28 RCX: 0000000000459f49
[  189.459550][ T9546] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000075bf28
[  189.467509][ T9546] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  189.475464][ T9546] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bf2c
[  189.483418][ T9546] R13: 00007ffd3b9a0b4f R14: 00007fc905c419c0 R15: 000000000075bf2c
[  189.492822][ T9546] Kernel Offset: disabled
[  189.497164][ T9546] Rebooting in 86400 seconds..