last executing test programs:

27.301081653s ago: executing program 2 (id=414):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)={0x70, 0xb, 0x6, 0x201, 0x0, 0x0, {0xa}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x48, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x7, 0x1a, '$.\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0xfffffffffffffffd}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PROTO={0x5, 0x7, 0x1}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0xffff}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}}]}]}, 0x70}}, 0x48001)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="280500003d0007010000000000000000017c0000040000000c00018006000600800a0000040502"], 0x528}}, 0xc000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r2=>0x0})
mkdir(&(0x7f0000000000)='./file1\x00', 0x14c)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@redirect_dir_off}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@uuid_null}, {@verity_off}], [{@euid_gt={'euid>', 0xee01}}]})
chdir(&(0x7f0000000140)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x41)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file4/file6\x00', 0x1c0)
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1/file4/file6\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x4)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="380020004fb5fc553f9d8948899ac912072a74f8edb3e6bb2fec1f8df12c6c12e15573945ed95de21c73cd6c8ff56a4ea0d5bc638c125e6d4343c2d31caf9b97ee8bbca948a6555019ed31643c23856bf95cd445ffc3d88955205637c512743e06bd4d08ca5d15beca485d88ac43d8295922629a2cf9e671dd", @ANYRESDEC=0x0, @ANYRES16=r3, @ANYRES32=r2, @ANYRESOCT=r3], 0x38}, 0x1, 0x0, 0x0, 0x20044081}, 0x40000)
r4 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r4, 0xc0405602, &(0x7f0000000140)={0x36, 0x2, 0x0, "d569e8000000fa44966262631e8ac11e00"})

27.251160277s ago: executing program 2 (id=415):
r0 = socket(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b7080000000200007b8af0", @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x7}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000340)=[{0x4, 0x1, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x7}, {0x4, 0x2, 0x13, 0x2}, {0x0, 0x5, 0x4005, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r4, 0x84, 0xf, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e22, 0x101, @remote, 0x140}}, 0x7, 0x2, 0x3, 0x4, 0x7}, &(0x7f0000000100)=0x98)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000079e02200850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r5, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
timer_settime(0x0, 0x1, &(0x7f0000000580)={{}, {0x0, 0x989680}}, &(0x7f00000005c0))
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, 0x0, 0x0)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f00000001c0), 0x4)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r8 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x164f42)
ioctl$LOOP_CONFIGURE(r8, 0x4c0a, &(0x7f0000001ac0)={r7, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1c, "339f020bbe78b39843d601010000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323695c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200"}}) (fail_nth: 4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'lo\x00', <r10=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x6000, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x5}}}]}, 0x48}}, 0x0)

26.89137954s ago: executing program 2 (id=418):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs(0xffffffffffffffff, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = socket(0x2, 0x2, 0xe31)
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100009ac0b620110f211066865578ac0109029c000100000400090400bf900b64ea00090587033b"], 0x0) (async)
syz_open_dev$char_usb(0xc, 0xb4, 0x0) (async)
r3 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000001340)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r3, 0x567, 0x0, 0x0, 0x0, 0x0)
syz_usb_disconnect(r2) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r6=>0x0})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r9}, 0x10)
ioctl$RNDADDENTROPY(0xffffffffffffffff, 0x40085203, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) (async)
r10 = inotify_init()
pwritev2(r10, 0x0, 0x0, 0x400, 0xc965, 0x8) (async)
inotify_add_watch(r10, &(0x7f0000000340)='.\x00', 0xa50003d1)
readv(r10, &(0x7f0000000140)=[{&(0x7f0000000040)=""/182, 0x20}], 0x1)
mkdir(&(0x7f0000000180)='./file0\x00', 0x500)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'bridge_slave_1\x00', <r11=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000005400e50100000000ac8a000007000000", @ANYRES32=r6, @ANYBLOB="20000100", @ANYRES32=r11, @ANYBLOB="01000000ff"], 0x38}}, 0x0) (async)
r12 = socket(0x10, 0x3, 0x0)
write(r12, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)

26.8114558s ago: executing program 2 (id=419):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000140)={0x10})
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x100)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) (fail_nth: 2)

26.718818565s ago: executing program 2 (id=421):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mremap(&(0x7f0000241000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2})
r1 = fcntl$dupfd(r0, 0x0, r0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000a19000/0x2000)=nil)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
r3 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29, r3}, './file0\x00'})
ioctl$UFFDIO_CONTINUE(r1, 0xc018aa06, &(0x7f0000000100)={{&(0x7f0000800000/0x800000)=nil, 0x800000}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

26.550605225s ago: executing program 2 (id=425):
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0xfffb, 0x0)

11.360706535s ago: executing program 32 (id=425):
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0xfffb, 0x0)

3.039353158s ago: executing program 1 (id=601):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000140)={0x10})
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x100)
mount$overlay(0x4000000, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

3.038636117s ago: executing program 1 (id=603):
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="00008d5b7099300000040000000000000000000067ec088aa8cefcbbeb506b055b54a2e6d79342ff116f8467dcb9e006287ea4f8f9a14fd799f9be5ffd1bcc7413e2341d0293c1e99db29447bc6fb8d82783ceb45c0e56d3bc8f30f80ef0a1d7dc3b612c354caf31e329e0ff1eda19c27b", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socket(0x1, 0x803, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x800, 0x70bd2c, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x784e, &(0x7f0000000180)={0x0, 0x20, 0x13100, 0x0, 0xfffffffc}, 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4}, &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000000c0)=@IORING_OP_TIMEOUT={0xb, 0x7d, 0x0, 0x0, 0x4, &(0x7f00000003c0)})
io_uring_enter(r5, 0x47f6, 0x0, 0x0, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
r8 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r8, 0x1, 0xf, 0x0, 0x0)
bind$inet6(r8, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r8, 0x50)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000fee000)=0x3fa, 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)

2.86083719s ago: executing program 0 (id=604):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x354, 0x0, 0x11, 0x148, 0x0, 0x0, 0x2c0, 0x2a8, 0x2a8, 0x2c0, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1c0, 0x208, 0x4003, {}, [@common=@inet=@hashlimit2={{0x150}, {'ip6_vti0\x00', {0x9, 0x3, 0x13, 0x3ff, 0x8, 0x6, 0x80000001, 0x18, 0x8}, {0x7}}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x88, 0x0, 0x5}}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00', {0xff}, {}, 0x0, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00', 0x1, 0x4, {0x100}}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x3b0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x68, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0xfffc}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x24, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}, {0xc, 0x1, 0x0, 0x1, @dup_ipv4={{0x8}, @void}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xb0}}, 0x20050800)

2.701124849s ago: executing program 4 (id=606):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x23c, &(0x7f0000000380)={0x0, 0x1ffefe, 0x10100, 0x2}, &(0x7f0000000200)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x4, 0x25d2, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000140))
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) (async)
dup(r0) (async)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) (async)
syz_io_uring_setup(0x23c, &(0x7f0000000380)={0x0, 0x1ffefe, 0x10100, 0x2}, &(0x7f0000000200), &(0x7f00000001c0)) (async)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {}, 0x1}) (async)
io_uring_enter(r2, 0x4, 0x25d2, 0x0, 0x0, 0x0) (async)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) (async)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0) (async)
epoll_create1(0x0) (async)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000140)) (async)

2.698988821s ago: executing program 0 (id=607):
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
listen(r0, 0xc)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="6c00000013000503008ee30000000000270034080000000000000000000000000000000000000000000000000000000000000000000000004a1815d8e13e099ba2b81584637e"], 0x6c}}, 0x0)

2.560603532s ago: executing program 0 (id=611):
keyctl$set_timeout(0xf, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="180100001c000000000000009500"/25, @ANYRES16=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xe, 0x0, &(0x7f00000000c0)=0x1)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x62, &(0x7f0000000680)=ANY=[@ANYRES8=r0, @ANYBLOB="5c8825cc30ba2e4d16d79fc2b63b011be34948e26fd9e5e0dd67d66def2303e723cb5afc190913b9145a297b2f28f49ed8f25c82c2681a9a974c04bcc08b6898ef6fc93d32b82d1fc5a3b2fd670abfbe98019a746c681cc5fa994e8230a183a81f952af82bce1af23b932064c3e7a8e399e1d1764849d102d7d5992c9bf77257f00f75bafe907d46134f731882d2bfd71e79517754fba99cdd99cd86f99c8bd6b80a36729bcefada51e2d4ab971acba1cc7456d70c6321fcdf71deff1729716098cc3625f13fe8f8b2068afdbb15ff154b6a9f13307d16c46edab95d4159f1834e005534", @ANYRES8=0x0, @ANYRES8=0x0, @ANYRES16=r1, @ANYRESHEX=r0], 0x0)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ff5000/0x3000)=nil)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
remap_file_pages(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x2, 0x0)
io_setup(0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x10, &(0x7f00000002c0)=ANY=[@ANYRESDEC, @ANYBLOB='\x00\x00\x00\x00\x00\x00'], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0xffffbd05}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$FITHAW(0xffffffffffffffff, 0xc0045878)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$CDROM_SEND_PACKET(r3, 0x5393, &(0x7f0000000100)={"46896fc4a41a41c9e4641d9d", &(0x7f0000000000), 0x0, 0x8000, 0x0, 0x1, 0x0, 0x2, 0x0})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f0000000080)=0x658e, 0x4)
bind$inet(r4, &(0x7f0000000380)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0x0)

2.501127599s ago: executing program 3 (id=612):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000140)={0x10})
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x100)
mount$overlay(0x7000000, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

2.439847676s ago: executing program 3 (id=613):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYRES8=r0, @ANYRES32=0x0, @ANYBLOB="8b04040000000000700012800b00010067656e6576650000600002800500040001000000140007000000000000"], 0x90}, 0x1, 0x0, 0x0, 0x4004084}, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f00000004c0)='cgroup\x00'}, 0x30)
sendmmsg$sock(r1, &(0x7f0000000280)=[{{&(0x7f00000003c0)=@nl=@kern={0x10, 0x0, 0x0, 0x800040}, 0x80, 0x0, 0x0, &(0x7f0000000440)=[@timestamping={{0x10, 0x1, 0x25, 0x9}}, @txtime={{0x14, 0x1, 0x3d, 0x81}}, @txtime={{0x14, 0x1, 0x3d, 0x7}}, @mark={{0x10}}], 0x48}}], 0x1, 0x88014)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_pressure(r5, &(0x7f0000000040)='io.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r6, &(0x7f0000000340)={'some', 0x20, 0x7, 0x20, 0xffffa}, 0x2f)
r7 = syz_open_dev$sg(&(0x7f0000001600), 0x1, 0x2002)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000300)=ANY=[@ANYBLOB="1900fcffef23575247c03400688d00000000000000e229fba896747a"])
write$binfmt_aout(r7, &(0x7f0000000000)=ANY=[], 0x66)
read(r7, 0x0, 0x0)
r8 = openat$cgroup_pressure(r5, &(0x7f00000000c0)='io.pressure\x00', 0x2, 0x0)
ppoll(&(0x7f0000000180)=[{r6}], 0x1, 0x0, 0x0, 0x0)
close(r8)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000100)={0x4, <r9=>0xffffffffffffffff})
socket$key(0xf, 0x3, 0x2)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001800)={0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r9, 0xd000943d, 0x0)
r10 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r10, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x200, 0x7c2, 0x41414770, 0x1, 0x425, 0x10001, 0xa, 0x2, 0x1, 0x3, 0x0, 0x6}})
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x980, 0x0)

2.439325409s ago: executing program 4 (id=614):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x114}], 0x1}, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x3)
syz_open_pts(r1, 0x12200)
mkdir(&(0x7f0000000080)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xc, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="b40000000000000061b7b59f9500000046000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xd1, &(0x7f0000000780)=""/209, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0xfffffffc}, 0x8, 0x10, &(0x7f00000002c0)={0x0, 0xffffffff, 0xffffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b708000000020000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x4}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000280))
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000000000800080000014000091ff0f00004500f5ff06ff00010100fc5e15f4c3d3fbd80dad0000abfa"], 0x125)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
openat$binder_debug(0xffffff9c, &(0x7f0000000340)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
io_uring_setup(0x79ae, &(0x7f0000000500)={0x0, 0x1, 0xfd62aee452ff1dbf})
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
listen(r6, 0x20000005)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

1.683456906s ago: executing program 1 (id=615):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000100))
r1 = syz_open_dev$video4linux(&(0x7f00000000c0), 0x0, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r1, 0x4020565b, &(0x7f0000000380)={0x8000000})
r2 = syz_open_dev$video4linux(&(0x7f0000000080), 0x800000000005, 0x183181)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r2, 0xc0305602, &(0x7f0000000000)={0x0, 0x2003, 0x3016, 0x1})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x49f9fcf9, 0x30000, &(0x7f00000004c0))
shutdown(0xffffffffffffffff, 0x2)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
io_setup(0xc, &(0x7f00000003c0))
r3 = openat$procfs(0xffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x0, 0xc2, 0x7, &(0x7f00000000c0)="3044c5e1e097ea049c0bfb2543102f4e6b5dc99335e642e9ba2c3a29289faf7e30278f5bedc51678c9a1967c3daaa7711026f15fdd7f8dfc5ef74503d89298a8e725ca636889be5545b1f8f6b44e2e922cebdfe69ace1b18c087c868378a493110025b8785461e2e8bcd770e35cbf275fb640a679101bf806253ea33bdf03874c0cfa2211c55915462784e0e5891f3407c17cd59548eb6f70d386ec613593fdff0145deeb459c3def81137fabed0258808d0fdbafc7095aa4a5d1c4155defd77610c", &(0x7f00000001c0)=""/7, 0x2, 0x0, 0xc8, 0x1b, &(0x7f0000000200)="6e43da0a71f2f3c6f5b7c739351315a71ee75c3eadd62f37d9c536ad64df174d3467b04acdd036c03ad8ca0b7a58f8f04aadb7ec89de9658e1e9dddd925744e80107ffcc315e43efaf2443074e98edc8e22595fcd7df11a7792ada4131848a10d8443b2d2b56f2e82cc70659833b1803b0c3e28cc0ad63d0baa9c48841bcd1544b5648848ead35b34a344d91cd08dd3617fb7f87a8f2440506d474506b7db0befcb68c0f48f7807efe826504446686ad99f6648cf58505b49091ccbbcc5bd0bee4d6bfe3a8e0efeb", &(0x7f0000000300)="2aeba355fc6a6b32149cfb631310480746dcc63a0975fa16da824f", 0x6, 0x0, 0xcda}, 0x4c)

1.678807563s ago: executing program 0 (id=616):
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, &(0x7f0000000200)={0x80000000, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x104)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r2, &(0x7f0000000000)='2\x00', 0x2)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r0)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000400)={0x144, r3, 0x8, 0x4, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x3}, {0xc, 0x8f, 0x2783}, {0xc, 0x90, 0x7fffffffffffffff}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0xd7}, {0xc, 0x90, 0x41}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x4}, {0xc, 0x90, 0x200}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0x9}, {0xc, 0x90, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0x11b3}, {0xc, 0x90, 0xe}}]}, 0x144}, 0x1, 0x0, 0x0, 0x20000000}, 0x3)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="3800000010000800"/20, @ANYRES32=0x0, @ANYBLOB="00000000020100001800128008000100707070000c00028008000100", @ANYRES32=r1, @ANYBLOB="eb9683fc2fa345079c6b5acb9f7df14603397510125371808da7ccd342511a9ae63a9155d2e4340d44f476e23228358c46d5fd906c03c6ba85f27b250f18a47da919994dcd7a2a4de8239de763455ddfeed0ede7c6de9f7d9de3311501b1"], 0x38}}, 0x0)

1.610762211s ago: executing program 0 (id=617):
socket$inet6_udp(0xa, 0x2, 0x0) (async)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f00000000c0)={0x0, 0x8}, 0x0)
dup(r0) (async)
r1 = dup(r0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket(0x80000000000000a, 0x80c, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000340)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108) (async)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000340)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141101)
dup(r3) (async)
r4 = dup(r3)
socket$key(0xf, 0x3, 0x2) (async)
r5 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r5, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000004700)={'team0\x00', <r6=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)={0x60, 0x0, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r6}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084) (async)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)={0x60, 0x0, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r6}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000180)={'team0\x00', <r7=>0x0})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f00000001c0)={'gretap0\x00', &(0x7f00000004c0)={'erspan0\x00', <r8=>0x0, 0x40, 0x20, 0x9, 0x6, {{0x19, 0x4, 0x3, 0x7, 0x64, 0x68, 0x0, 0x5, 0x2f, 0x0, @broadcast, @rand_addr=0x64010100, {[@ra={0x94, 0x4}, @timestamp={0x44, 0x18, 0x66, 0x0, 0x1, [0xebd7, 0x9, 0x80000001, 0x50, 0x9]}, @cipso={0x86, 0xf, 0x2, [{0x6, 0x9, "ac9d3652863b46"}]}, @timestamp={0x44, 0xc, 0xf1, 0x0, 0x5, [0x2, 0x1]}, @timestamp={0x44, 0x8, 0x9a, 0x0, 0x2, [0x4]}, @noop, @generic={0x89, 0xd, "29333d4f00b2a1f8ad9ad0"}]}}}}})
getsockopt$PNPIPE_IFINDEX(r4, 0x113, 0x2, &(0x7f0000000300), &(0x7f0000000580)=0x4) (async)
getsockopt$PNPIPE_IFINDEX(r4, 0x113, 0x2, &(0x7f0000000300)=<r9=>0x0, &(0x7f0000000580)=0x4)
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000000600)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000bc0)={0x188, 0x0, 0x300, 0x70bd2c, 0x25dfdbfb, {}, [{{0x8, 0x1, r7}, {0x16c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xfffffff9}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x10001}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x2b49}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}]}}]}, 0x188}, 0x1, 0x0, 0x0, 0x4001}, 0x4000000)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f0000000000)=0x281d, 0x4) (async)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f0000000000)=0x281d, 0x4)
r10 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0)
ioctl$SNDCTL_TMR_CONTINUE(r10, 0x5404)
ioctl$SNDCTL_TMR_CONTINUE(r10, 0x5404)
sendmsg$key(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="0208000002"], 0x10}}, 0x0)
iopl(0x3)
syslog(0x4, &(0x7f0000000bc0), 0x0) (async)
syslog(0x4, &(0x7f0000000bc0), 0x0)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$TIOCMGET(r1, 0x5415, &(0x7f0000000040)) (async)
ioctl$TIOCMGET(r1, 0x5415, &(0x7f0000000040))
syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x7079, 0x0, 0x4, 0x288}, &(0x7f0000000340)=<r11=>0x0, &(0x7f0000000280)=<r12=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r11, r12, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000640)=@mangle={'mangle\x00', 0x2, 0x6, 0x500, 0x268, 0xc8, 0x1a0, 0x0, 0x34c, 0x45c, 0x45c, 0x45c, 0x45c, 0x45c, 0x6, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private1, [0xff000000], [0x0, 0x0, 0xff], 'sit0\x00', 'erspan0\x00', {}, {}, 0x0, 0x0, 0x0, 0x41}, 0x0, 0xa4, 0xc8, 0x0, {0x7a00000000000000}}, @common=@unspec=@NFQUEUE1={0x24, 'NFQUEUE\x00', 0x1, {0xdb, 0xc}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, [0xffffffff], [0x0, 0xff000000, 0x0, 0xffffff00], 'syzkaller0\x00', 'team_slave_1\x00', {}, {}, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xa4, 0xd8}, @common=@inet=@SET3={0x34, 'SET\x00', 0x3, {{0xffffffffffffffff}, {0xffffffffffffffff}, {}, 0x3}}}, {{@uncond, 0x0, 0xa4, 0xc8}, @unspec=@CHECKSUM={0x24}}, {{@uncond, 0x0, 0xa4, 0xe4}, @common=@inet=@TCPOPTSTRIP={0x40}}, {{@uncond, 0x0, 0xc8, 0xec, 0x0, {}, [@inet=@rpfilter={{0x24}}]}, @unspec=@CHECKSUM={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x55c)

1.501110488s ago: executing program 4 (id=618):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a00)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_aout(r2, &(0x7f0000001640)=ANY=[], 0x1a3)
write$P9_RSTATu(r0, &(0x7f0000000040)=ANY=[], 0x65)
write$binfmt_misc(r2, &(0x7f0000000000), 0xe09)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2000, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x6]}})

1.500747322s ago: executing program 1 (id=619):
r0 = socket(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b7080000000200007b8af0", @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000", @ANYRES64=r0], &(0x7f0000000000)='GPL\x00', 0x8, 0xb8, &(0x7f0000000140)=""/184, 0x41000, 0xf, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x40000004, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x5, 0x3, 0x7}, 0x10, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ff9000/0x4000)=nil)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000300)={'batadv_slave_1\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="440000001000010800"/20, @ANYRES32=r6, @ANYBLOB="00000000000000001c002b8008000100", @ANYRES32, @ANYBLOB="0800030019000000080008"], 0x44}}, 0x0)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r7, 0x84, 0xf, &(0x7f0000000680)={0x0, @in={{0x2, 0x4e20, @broadcast}}, 0x7, 0x2, 0x3, 0x4, 0x7}, &(0x7f0000000100)=0x98)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000079e02200850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r8, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
timer_settime(0x0, 0x1, &(0x7f0000000580)={{}, {0x0, 0x989680}}, &(0x7f00000005c0))
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, 0x0, 0x0)
setsockopt$sock_int(r9, 0x1, 0x8, &(0x7f00000001c0)=0xff, 0x4)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
socket$unix(0x1, 0x2, 0x0)

1.161169194s ago: executing program 4 (id=620):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x3, 0x4, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0xe0, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffffa0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x43, 0xfffffffffffffee1, &(0x7f0000000000)="b9ff060000000000000014f086dde3359859cbce2d8e29ab0300e7b96ba2ccc052089a337015644230b2ec8ba1e12b3000fbf5a0a2b413c060e1f9acbd5059272a916a", 0x0, 0x8, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x4c)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x4, 0x3)
syz_open_dev$ttys(0xc, 0x2, 0x0)

1.031965747s ago: executing program 4 (id=621):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0xa8}}, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, 0x0, 0x0)
syz_io_uring_setup(0xb9e, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000004002, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r3, 0x2000)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xb0, 0x3ff, 0x34325241, 0x0, [], [0x2b8, 0x200000], [0x0, 0x9, 0x0, 0x3]})
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000180)={0x1, 0xaa4, 0x0, &(0x7f0000000340)})
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000024000/0x18000)=nil, &(0x7f0000000680)=[@text16={0x10, &(0x7f0000000280)="66b9800000c00f326635010000000f3064660f38828e4258660f086766c744240012e93bf96766c7442402010000006766c744240600000000670f011c2466b9800000c00f326635002000000f300f01df66b80500000066b900200000a90a000f01c40f019f09000f01c2", 0x6b}], 0x1, 0x7d, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000300)={[0xbb5, 0xffffffffffffffca, 0x100, 0xfffffffffffffff6, 0x6, 0x401, 0x6, 0x2, 0x0, 0x8, 0x100000001, 0xba25, 0x1000, 0x3, 0xfffffffffffffe00, 0x4], 0xeeef0000, 0x40080})
ioctl$KVM_RUN(r6, 0xae80, 0x2000200)

1.031370542s ago: executing program 3 (id=622):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x55, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000003d00090000000000000000000100000004000000100001800c001080060009000a010100080002"], 0x30}}, 0x0)
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x9, 0x8240)
read$hidraw(r1, &(0x7f0000000040)=""/118, 0x76)
fcntl$dupfd(r0, 0x406, r0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x55, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000003d00090000000000000000000100000004000000100001800c001080060009000a010100080002"], 0x30}}, 0x0) (async)
syz_open_dev$hidraw(&(0x7f0000000000), 0x9, 0x8240) (async)
read$hidraw(r1, &(0x7f0000000040)=""/118, 0x76) (async)
fcntl$dupfd(r0, 0x406, r0) (async)

890.86004ms ago: executing program 3 (id=623):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @sliced={0x0, [0x2, 0x0, 0x0, 0x7ff, 0x1951, 0x51d5, 0x7ff, 0x60f4, 0x100, 0x7, 0x8, 0x404, 0x1006, 0x8, 0xfffa, 0x0, 0x1, 0x9, 0x4, 0x71, 0x6, 0x1, 0x7, 0x7fff, 0xfffa, 0x5, 0x5, 0x8000, 0x40, 0xfd7d, 0x80, 0x3b, 0x401, 0xe, 0x7, 0xa, 0xfb, 0x5, 0x7, 0x0, 0x1, 0x9, 0x6, 0x7, 0x10, 0x0, 0x2, 0x5], 0x80000000}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0xb00000000000000, &(0x7f0000000240)=ANY=[], 0x48)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0x4)
ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000380))
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000300)={0x0, 0x80000001, 0x0, &(0x7f0000000600)=""/42, 0x0, 0xffff1000})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/236, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/66})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)
munmap(&(0x7f0000004000/0x2000)=nil, 0x2000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$packet_int(r0, 0x107, 0x14, 0x0, &(0x7f0000000040))

790.486925ms ago: executing program 4 (id=624):
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="00008d5b7099300000040000000000000000000067ec088aa8cefcbbeb506b055b54a2e6d79342ff116f8467dcb9e006287ea4f8f9a14fd799f9be5ffd1bcc7413e2341d0293c1e99db29447bc6fb8d82783ceb45c0e56d3bc8f30f80ef0a1d7dc3b612c354caf31e329e0ff1eda19c27b", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socket(0x1, 0x803, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x800, 0x70bd2c, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x784e, &(0x7f0000000180)={0x0, 0x20, 0x13100, 0x0, 0xfffffffc}, 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4}, &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000000c0)=@IORING_OP_TIMEOUT={0xb, 0x7d, 0x0, 0x0, 0x4, &(0x7f00000003c0)})
io_uring_enter(r5, 0x47f6, 0x0, 0x0, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
r8 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r8, 0x1, 0xf, 0x0, 0x0)
bind$inet6(r8, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r8, 0x50)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000fee000)=0x3fa, 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)

650.5436ms ago: executing program 0 (id=625):
syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'essiv(cbc(aes),sha256)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
accept4(r0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f00000004c0)='./file0/../file0\x00', 0x0, 0x1000, 0x0)
mount$bind(0x0, &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x0, 0x0)
mount$bind(&(0x7f0000000300)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x9101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x3041008, 0x0)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffd, 0x200, 0x0, 0x18b, 0x0, r2}, &(0x7f0000000140)=<r4=>0x0, &(0x7f0000000400)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
r6 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r6, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random="d2c651b101fa"}, 0x10)
r7 = syz_io_uring_setup(0xd6, &(0x7f0000000400)={0x0, 0xe, 0x20}, &(0x7f0000000040)=<r8=>0x0, &(0x7f0000000300)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000580)="8e663d346c4236b5e0f7c32b5c62abad371c90249878f185698f2bda2a6bb95584b9b022e08c47095d34a9ff554b66d37dadef24db4403831f3037b4e3f318ff0cf68759dd5c90c0045ee888aa867550a9b5af1068227cb49bc3a0a55902b6d9f9dfa5042d706688cf33dc8babd3758501e503", 0x73, 0x2000})
io_uring_enter(r7, 0x47ba, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r10, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
gettid()
gettid()

118.703437ms ago: executing program 1 (id=626):
r0 = fsopen(&(0x7f0000000040)='ntfs3\x00', 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000440)={0x53, 0x33, 0x10, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="851666ce20db", 0x0, 0x10, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x87ff, 0x900})
close_range(r0, 0xffffffffffffffff, 0x0)

70.295514ms ago: executing program 3 (id=627):
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
listen(r0, 0xc)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="6c000000130005030000000003000000270034080000000000000000000000000000000000000000000000000000000000000000000000004a1815d8e13e099ba2b81584637e"], 0x6c}}, 0x0)

356.612µs ago: executing program 1 (id=628):
socket$packet(0x11, 0x2, 0x300)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
pipe(0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r0 = syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
r3 = socket$caif_stream(0x25, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r3, 0x0, 0x0})
io_uring_enter(r0, 0x7f5f, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00f3ffffffff21e8ae"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000", @ANYRES32=r4, @ANYBLOB="00cf0000ecff0000b702000014000000b70300000000000085000000830000ffbf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b553850000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r5}, 0x18)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x68, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x2c, 0x11, 0x0, 0x1, @match={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_MATCH_INFO={0x4}, @NFTA_MATCH_NAME={0xa, 0x1, 'quota\x00'}]}}}]}], {0x14, 0x10}}, 0xb0}}, 0x0)
read$msr(r6, &(0x7f0000032680)=""/102392, 0x18ff8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r8 = userfaultfd(0x801)
sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="a463e714e3a827e7b4f58a83c475f451c996aa8d9c0884714117a88b", @ANYRESHEX, @ANYBLOB="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"], 0x2a4}}, 0x0)
r9 = syz_open_dev$evdev(&(0x7f0000000100), 0x1, 0x822b01)
write$char_usb(r9, &(0x7f0000000040)="e2", 0x1068)
r10 = socket$netlink(0x10, 0x3, 0x0)
writev(r10, &(0x7f0000000140)=[{&(0x7f00000000c0)="39000000130003470fbb65e1c3e4ffff06006000160000005600000025000000190004000400000007fd17e5ff8e0606040020000000000000", 0x39}], 0x1)
ioctl$UFFDIO_API(r8, 0xc018aa3f, &(0x7f0000000140))
ioctl$UFFDIO_COPY(r8, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f000076e000/0x4000)=nil, 0x400000, 0x0, 0x2})
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, 0x0, 0x20000000)

0s ago: executing program 3 (id=629):
r0 = socket(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b7080000000200007b8af0", @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x7}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000340)=[{0x4, 0x1, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x7}, {0x4, 0x2, 0x13, 0x2}, {0x0, 0x5, 0x4005, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r4, 0x84, 0xf, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e22, 0x101, @remote, 0x140}}, 0x7, 0x2, 0x3, 0x4, 0x7}, &(0x7f0000000100)=0x98)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000079e02200850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r5, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
timer_settime(0x0, 0x1, &(0x7f0000000580)={{}, {0x0, 0x989680}}, &(0x7f00000005c0))
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, 0x0, 0x0)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f00000001c0), 0x4)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r8 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x164f42)
ioctl$LOOP_CONFIGURE(r8, 0x4c0a, &(0x7f0000001ac0)={r7, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1c, "339f020bbe78b39843d601010000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323695c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200"}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route_sched(r0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

: unable to read RDB block 7
[  115.509608][ T6546]  loop2: unable to read partition table
[  115.511627][ T6546] loop2: partition table beyond EOD, truncated
[  115.514070][ T6546] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  115.657816][ T6557] loop9: detected capacity change from 0 to 7
[  115.660127][ T6557] Dev loop9: unable to read RDB block 7
[  115.661665][ T6557]  loop9: AHDI p2
[  115.662743][ T6557] loop9: partition table partially beyond EOD, truncated
[  115.698735][ T6556] XFS (nullb0): Invalid superblock magic number
[  115.856635][ T6568] random: crng reseeded on system resumption
[  115.902687][ T5959] Bluetooth: hci1: command 0x0406 tx timeout
[  116.675794][ T6583] fuse: Unknown parameter '{…'
[  116.689054][ T6583] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2
[  116.692527][ T1201] Bluetooth: hci4: Frame reassembly failed (-84)
[  116.697803][ T1201] Bluetooth: hci4: Frame reassembly failed (-84)
[  116.699528][   T60] Bluetooth: hci4: Frame reassembly failed (-84)
[  116.802954][  T834] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  116.962963][  T834] usb 8-1: Using ep0 maxpacket: 16
[  116.969492][  T834] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  116.972472][  T834] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.976266][  T834] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  116.981175][  T834] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  116.986046][  T834] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.996144][  T834] usb 8-1: config 0 descriptor??
[  117.431310][  T834] input: HID 0955:7214 Haptics as /devices/virtual/input/input5
[  117.455954][  T834] shield 0003:0955:7214.0002: Registered Thunderstrike controller
[  117.458230][  T834] shield 0003:0955:7214.0002: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.3-1/input0
[  117.613068][ T6573] random: crng reseeded on system resumption
[  117.634095][ T6573] netlink: 'syz.3.127': attribute type 4 has an invalid length.
[  117.653327][ T6573] program syz.3.127 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  117.776794][ T6600] loop9: detected capacity change from 0 to 7
[  117.779724][ T6600] Dev loop9: unable to read RDB block 7
[  117.781713][ T6600]  loop9: AHDI p2
[  117.783264][ T6600] loop9: partition table partially beyond EOD, truncated
[  117.851510][ T6604] XFS (nullb0): Invalid superblock magic number
[  117.964438][  T835] usb 8-1: USB disconnect, device number 2
[  117.964602][   T58] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  117.969126][   T58] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  117.972156][   T58] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  117.976781][   T58] shield 0003:0955:7214.0002: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  117.993837][ T6614] random: crng reseeded on system resumption
[  118.070569][ T6616] netlink: 4 bytes leftover after parsing attributes in process `syz.2.137'.
[  118.225273][ T6618] loop2: detected capacity change from 0 to 7
[  118.227991][ T6618] Dev loop2: unable to read RDB block 7
[  118.230067][ T6618]  loop2: unable to read partition table
[  118.232230][ T6618] loop2: partition table beyond EOD, truncated
[  118.235461][ T6618] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  118.694207][ T5959] Bluetooth: hci4: command 0x1003 tx timeout
[  118.759074][ T5964] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  118.818626][ T6629] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  118.818626][ T6629]    program syz.0.142 not setting count and/or reply_len properly
[  118.922097][ T6634] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  118.922097][ T6634]    program syz.2.143 not setting count and/or reply_len properly
[  119.526260][ T6652] loop2: detected capacity change from 0 to 7
[  119.528389][ T6652] Dev loop2: unable to read RDB block 7
[  119.529910][ T6652]  loop2: unable to read partition table
[  119.531493][ T6652] loop2: partition table beyond EOD, truncated
[  119.533212][ T6652] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  120.844546][ T6676] loop9: detected capacity change from 0 to 7
[  120.846589][ T6676] Dev loop9: unable to read RDB block 7
[  120.848217][ T6676]  loop9: AHDI p2
[  120.849351][ T6676] loop9: partition table partially beyond EOD, truncated
[  121.076431][ T6685] xt_time: invalid argument - start or stop time greater than 23:59:59
[  121.573322][ T5959] Bluetooth: hci0: command 0x0406 tx timeout
[  122.014255][ T6695] netlink: 24 bytes leftover after parsing attributes in process `syz.0.161'.
[  122.042804][ T6695] netlink: 12 bytes leftover after parsing attributes in process `syz.0.161'.
[  122.142949][ T6698] loop6: detected capacity change from 0 to 524287999
[  122.146275][    C0] blk_print_req_error: 94 callbacks suppressed
[  122.146285][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  122.150310][    C0] buffer_io_error: 93 callbacks suppressed
[  122.150316][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  122.156674][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  122.159099][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  122.161906][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  122.164326][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  122.166895][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  122.169294][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  122.171637][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  122.175402][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  122.182463][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  122.184878][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  122.187734][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  122.190091][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  122.192550][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  122.194953][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  122.199916][ T6698] ldm_validate_partition_table(): Disk read failed.
[  122.202032][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  122.206762][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  122.210030][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  122.212442][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  122.215502][ T6698] Dev loop6: unable to read RDB block 0
[  122.218020][ T6698]  loop6: unable to read partition table
[  122.219879][ T6698] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  122.449251][ T6704] netlink: 'syz.0.162': attribute type 4 has an invalid length.
[  122.451350][ T6704] netlink: 17 bytes leftover after parsing attributes in process `syz.0.162'.
[  123.242181][ T6680] Set syz1 is full, maxelem 65536 reached
[  123.258020][ T6714] lo speed is unknown, defaulting to 1000
[  123.699470][ T6727] loop6: detected capacity change from 0 to 524287999
[  123.708945][ T6727] ldm_validate_partition_table(): Disk read failed.
[  123.712155][ T6727] Dev loop6: unable to read RDB block 0
[  123.719420][ T6727]  loop6: unable to read partition table
[  123.721303][ T6727] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  124.331603][ T6742] loop2: detected capacity change from 0 to 7
[  124.334707][ T6742] Dev loop2: unable to read RDB block 7
[  124.336205][ T6742]  loop2: unable to read partition table
[  124.337801][ T6742] loop2: partition table beyond EOD, truncated
[  124.339420][ T6742] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  124.580031][ T6755] loop6: detected capacity change from 0 to 524287999
[  124.598786][ T6755] ldm_validate_partition_table(): Disk read failed.
[  124.601246][ T6755] Dev loop6: unable to read RDB block 0
[  124.603736][ T6755]  loop6: unable to read partition table
[  124.605597][ T6755] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  124.637306][ T6754] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  124.637306][ T6754]    program syz.0.177 not setting count and/or reply_len properly
[  125.443387][ T5355] ldm_validate_partition_table(): Disk read failed.
[  125.445922][ T5355] Dev loop6: unable to read RDB block 0
[  125.447702][ T5355]  loop6: unable to read partition table
[  125.457458][ T5355] ldm_validate_partition_table(): Disk read failed.
[  125.459612][ T5355] Dev loop6: unable to read RDB block 0
[  125.461664][ T5355]  loop6: unable to read partition table
[  125.990692][ T6793] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  126.080215][ T6794] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  126.569259][ T6807] loop2: detected capacity change from 0 to 7
[  126.571227][ T6807] Dev loop2: unable to read RDB block 7
[  126.573240][ T6807]  loop2: unable to read partition table
[  126.574819][ T6807] loop2: partition table beyond EOD, truncated
[  126.576496][ T6807] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  126.658869][ T6810] program syz.2.193 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  127.056989][ T6822] netlink: 1316 bytes leftover after parsing attributes in process `syz.3.197'.
[  127.121412][ T6825] loop6: detected capacity change from 0 to 524287999
[  127.132217][ T6827] FAULT_INJECTION: forcing a failure.
[  127.132217][ T6827] name failslab, interval 1, probability 0, space 0, times 0
[  127.135863][ T6827] CPU: 2 UID: 0 PID: 6827 Comm: syz.0.199 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  127.138599][ T6827] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.141350][ T6827] Call Trace:
[  127.142230][ T6827]  <TASK>
[  127.143005][ T6827]  dump_stack_lvl+0x16c/0x1f0
[  127.144259][ T6827]  should_fail_ex+0x497/0x5b0
[  127.145503][ T6827]  ? fs_reclaim_acquire+0xae/0x150
[  127.146955][ T6827]  should_failslab+0xc2/0x120
[  127.148262][ T6827]  __kmalloc_cache_noprof+0x68/0x420
[  127.149672][ T6827]  __inet_diag_dump_start+0x8f/0x7f0
[  127.151090][ T6827]  __netlink_dump_start+0x615/0x980
[  127.152481][ T6827]  inet_diag_rcv_msg_compat+0x277/0x2d0
[  127.153927][ T6827]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  127.155565][ T6827]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  127.157206][ T6827]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  127.158746][ T6827]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  127.160224][ T6827]  sock_diag_rcv_msg+0x36f/0x790
[  127.161531][ T6827]  netlink_rcv_skb+0x165/0x410
[  127.162790][ T6827]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  127.164226][ T6827]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  127.165607][ T6827]  ? netlink_deliver_tap+0x1ae/0xca0
[  127.166989][ T6827]  netlink_unicast+0x53c/0x7f0
[  127.168250][ T6827]  ? __pfx_netlink_unicast+0x10/0x10
[  127.169623][ T6827]  ? __phys_addr_symbol+0x30/0x80
[  127.170934][ T6827]  ? __check_object_size+0x488/0x710
[  127.172317][ T6827]  netlink_sendmsg+0x8b8/0xd70
[  127.173575][ T6827]  ? __pfx_netlink_sendmsg+0x10/0x10
[  127.174978][ T6827]  ____sys_sendmsg+0x9ae/0xb40
[  127.176249][ T6827]  ? __pfx_____sys_sendmsg+0x10/0x10
[  127.177642][ T6827]  ? get_compat_msghdr+0x11b/0x170
[  127.178991][ T6827]  ___sys_sendmsg+0x135/0x1e0
[  127.180191][ T6827]  ? __pfx____sys_sendmsg+0x10/0x10
[  127.181540][ T6827]  ? __pfx_lock_release+0x10/0x10
[  127.182856][ T6827]  ? trace_lock_acquire+0x14e/0x1f0
[  127.184230][ T6827]  ? __fget_files+0x206/0x3a0
[  127.185465][ T6827]  __sys_sendmsg+0x16e/0x220
[  127.186674][ T6827]  ? __pfx___sys_sendmsg+0x10/0x10
[  127.188023][ T6827]  __do_fast_syscall_32+0x73/0x120
[  127.189356][ T6827]  do_fast_syscall_32+0x32/0x80
[  127.190626][ T6827]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  127.192277][ T6827] RIP: 0023:0xf7f88579
[  127.193336][ T6827] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  127.198289][ T6827] RSP: 002b:00000000f50f657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  127.199098][    C1] blk_print_req_error: 78 callbacks suppressed
[  127.199109][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.200438][ T6827] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200000c0
[  127.202085][    C1] buffer_io_error: 77 callbacks suppressed
[  127.202097][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.204456][ T6827] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  127.204473][ T6827] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  127.204479][ T6827] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  127.204485][ T6827] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  127.204499][ T6827]  </TASK>
[  127.249585][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.252323][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.254886][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.257278][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.259677][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.262145][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.265436][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.267852][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.270283][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.270614][ T6830] loop9: detected capacity change from 0 to 7
[  127.272735][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.273111][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.277261][ T6830] Dev loop9: unable to read RDB block 7
[  127.278949][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.282695][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.283755][ T6830]  loop9: AHDI p2
[  127.285174][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.286302][ T6830] loop9: partition table partially beyond EOD, 
[  127.288190][ T6825] ldm_validate_partition_table(): Disk read failed.
[  127.288248][ T6830] truncated
[  127.292537][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.294938][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.302676][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  127.305084][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  127.311398][ T6825] Dev loop6: unable to read RDB block 0
[  127.315312][ T6825]  loop6: unable to read partition table
[  127.317033][ T6825] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  127.416150][ T5959] Bluetooth: hci1: unexpected event for opcode 0x202a
[  127.451965][ T6836] netlink: 20 bytes leftover after parsing attributes in process `syz.3.197'.
[  127.455621][ T6836] nbd: must specify at least one socket
[  127.810720][ T6837] dccp_close: ABORT with 242 bytes unread
[  127.857741][ T6840] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  127.893107][ T6844] netlink: 4 bytes leftover after parsing attributes in process `syz.1.205'.
[  128.406712][ T6866] loop2: detected capacity change from 0 to 7
[  128.411228][ T6866] Dev loop2: unable to read RDB block 7
[  128.412878][ T6866]  loop2: unable to read partition table
[  128.414418][ T6866] loop2: partition table beyond EOD, truncated
[  128.416538][ T6866] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  128.622726][ T5959] Bluetooth: hci2: command 0x0406 tx timeout
[  128.648828][ T6873] loop6: detected capacity change from 0 to 524287999
[  128.807887][ T6875] netlink: 'syz.1.214': attribute type 4 has an invalid length.
[  128.821949][ T6873] ldm_validate_partition_table(): Disk read failed.
[  128.824651][ T6875] infiniband s
z1: set down
[  128.826486][ T6873] Dev loop6: unable to read RDB block 0
[  128.827721][   T58] lo speed is unknown, defaulting to 1000
[  128.830159][   T58] lo speed is unknown, defaulting to 1000
[  128.832326][ T6875] netlink: 'syz.1.214': attribute type 4 has an invalid length.
[  128.839468][ T6875] infiniband s
z1: set active
[  128.841495][   T57] lo speed is unknown, defaulting to 1000
[  128.841635][ T6873]  loop6: unable to read partition table
[  128.843099][   T57] lo speed is unknown, defaulting to 1000
[  128.844583][ T6873] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  129.009014][ T6878] capability: warning: `syz.3.215' uses deprecated v2 capabilities in a way that may be insecure
[  129.039010][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.040922][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.042919][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.044874][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.046918][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.048904][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.050886][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.053771][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.055790][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.057814][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.059835][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.061785][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.063980][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.065904][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.067820][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.069879][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.071816][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.074137][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.076083][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.078024][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.080078][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.082002][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.084259][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.086185][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.088115][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.090053][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.092072][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.096047][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.098582][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.101218][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.104204][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.112487][   T57] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  129.119871][   T57] hid-generic 0000:0000:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  129.194133][ T6875] syz.1.214 (6875) used greatest stack depth: 21072 bytes left
[  129.266934][ T6888] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  129.266934][ T6888]    program syz.2.217 not setting count and/or reply_len properly
[  129.292671][ T5740] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  129.444073][ T5740] usb 8-1: config 0 has no interfaces?
[  129.445604][ T5740] usb 8-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  129.449498][ T5740] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.456910][ T5740] usb 8-1: config 0 descriptor??
[  129.672004][ T5740] usb 8-1: USB disconnect, device number 3
[  130.344427][ T6912] FAULT_INJECTION: forcing a failure.
[  130.344427][ T6912] name failslab, interval 1, probability 0, space 0, times 0
[  130.352857][ T6912] CPU: 3 UID: 0 PID: 6912 Comm: syz.0.225 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  130.355665][ T6912] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.358484][ T6912] Call Trace:
[  130.359364][ T6912]  <TASK>
[  130.360137][ T6912]  dump_stack_lvl+0x16c/0x1f0
[  130.361487][ T6912]  should_fail_ex+0x497/0x5b0
[  130.362758][ T6912]  should_failslab+0xc2/0x120
[  130.363997][ T6912]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  130.365405][ T6912]  ? skb_clone+0x190/0x3f0
[  130.366587][ T6912]  skb_clone+0x190/0x3f0
[  130.367731][ T6912]  netlink_deliver_tap+0xafd/0xca0
[  130.369047][ T6912]  netlink_dump+0x639/0xd00
[  130.370215][ T6912]  ? __pfx_netlink_dump+0x10/0x10
[  130.371550][ T6912]  ? __inet_diag_dump_start+0x42c/0x7f0
[  130.372989][ T6912]  __netlink_dump_start+0x6d9/0x980
[  130.374352][ T6912]  inet_diag_rcv_msg_compat+0x277/0x2d0
[  130.375793][ T6912]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  130.377312][ T6912]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  130.378953][ T6912]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  130.380459][ T6912]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  130.381959][ T6912]  sock_diag_rcv_msg+0x36f/0x790
[  130.383291][ T6912]  netlink_rcv_skb+0x165/0x410
[  130.384523][ T6912]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  130.385936][ T6912]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  130.387354][ T6912]  ? netlink_deliver_tap+0x1ae/0xca0
[  130.388721][ T6912]  netlink_unicast+0x53c/0x7f0
[  130.389967][ T6912]  ? __pfx_netlink_unicast+0x10/0x10
[  130.391377][ T6912]  ? __phys_addr_symbol+0x30/0x80
[  130.392656][ T6912]  ? __check_object_size+0x488/0x710
[  130.394048][ T6912]  netlink_sendmsg+0x8b8/0xd70
[  130.395333][ T6912]  ? __pfx_netlink_sendmsg+0x10/0x10
[  130.396747][ T6912]  ____sys_sendmsg+0x9ae/0xb40
[  130.398021][ T6912]  ? __pfx_____sys_sendmsg+0x10/0x10
[  130.399427][ T6912]  ? get_compat_msghdr+0x11b/0x170
[  130.400806][ T6912]  ___sys_sendmsg+0x135/0x1e0
[  130.402102][ T6912]  ? __pfx____sys_sendmsg+0x10/0x10
[  130.403512][ T6912]  ? __pfx_lock_release+0x10/0x10
[  130.404830][ T6912]  ? trace_lock_acquire+0x14e/0x1f0
[  130.406221][ T6912]  ? __fget_files+0x206/0x3a0
[  130.407490][ T6912]  __sys_sendmsg+0x16e/0x220
[  130.408823][ T6912]  ? __pfx___sys_sendmsg+0x10/0x10
[  130.410205][ T6912]  __do_fast_syscall_32+0x73/0x120
[  130.411618][ T6912]  do_fast_syscall_32+0x32/0x80
[  130.412881][ T6912]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  130.414534][ T6912] RIP: 0023:0xf7f88579
[  130.415644][ T6912] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  130.420415][ T6912] RSP: 002b:00000000f50f657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  130.422559][ T6912] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200000c0
[  130.424650][ T6912] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  130.426731][ T6912] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  130.428811][ T6912] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  130.430857][ T6912] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  130.432958][ T6912]  </TASK>
[  130.528511][ T6922] loop6: detected capacity change from 0 to 524287999
[  130.533531][ T6922] ldm_validate_partition_table(): Disk read failed.
[  130.536570][ T6922] Dev loop6: unable to read RDB block 0
[  130.539561][ T6922]  loop6: unable to read partition table
[  130.541906][ T6922] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  130.542812][ T6917] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.722520][ T6917] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.779732][ T6917] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.836601][ T6917] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.932098][ T6917] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  130.949570][ T6917] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  130.966401][ T6917] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  130.983064][ T6917] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.364129][ T6941] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  131.364129][ T6941]    program syz.1.232 not setting count and/or reply_len properly
[  131.485697][ T6947] netlink: 12 bytes leftover after parsing attributes in process `syz.0.234'.
[  131.607007][ T6957] loop2: detected capacity change from 0 to 7
[  131.608957][ T6957] Dev loop2: unable to read RDB block 7
[  131.610400][ T6957]  loop2: unable to read partition table
[  131.611951][ T6957] loop2: partition table beyond EOD, truncated
[  131.625132][ T6957] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  131.680936][ T6962] dccp_close: ABORT with 242 bytes unread
[  131.825945][ T6966] Illegal XDP return value 2592942442 on prog  (id 62) dev N/A, expect packet loss!
[  131.832509][ T6969] loop6: detected capacity change from 0 to 524287999
[  131.837341][ T6969] ldm_validate_partition_table(): Disk read failed.
[  131.840636][ T6969] Dev loop6: unable to read RDB block 0
[  131.843972][ T6969]  loop6: unable to read partition table
[  131.846175][ T6969] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  132.014779][ T6970] lo speed is unknown, defaulting to 1000
[  132.749497][ T6999] loop2: detected capacity change from 0 to 7
[  132.751525][ T6999] Dev loop2: unable to read RDB block 7
[  132.763393][ T6999]  loop2: unable to read partition table
[  132.765698][ T6999] loop2: partition table beyond EOD, truncated
[  132.767999][ T6999] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  132.802868][ T5355] Dev loop2: unable to read RDB block 7
[  132.804395][ T5355]  loop2: unable to read partition table
[  132.806470][ T5355] loop2: partition table beyond EOD, truncated
[  133.005583][ T7007] loop6: detected capacity change from 0 to 524287999
[  133.008426][    C0] blk_print_req_error: 58 callbacks suppressed
[  133.008438][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  133.012486][    C0] buffer_io_error: 58 callbacks suppressed
[  133.012494][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  133.017662][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  133.020159][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  133.022689][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  133.024952][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  133.027585][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  133.030002][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  133.032310][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  133.034879][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  133.037493][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  133.039940][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  133.042225][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  133.044670][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  133.047298][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  133.049763][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  133.051981][ T7007] ldm_validate_partition_table(): Disk read failed.
[  133.055707][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  133.058179][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  133.060519][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  133.062945][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  133.071836][ T7007] Dev loop6: unable to read RDB block 0
[  133.074481][ T7007]  loop6: unable to read partition table
[  133.076328][ T7007] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  133.797251][ T7029] loop2: detected capacity change from 0 to 7
[  133.803987][ T7029] Dev loop2: unable to read RDB block 7
[  133.805425][ T7029]  loop2: unable to read partition table
[  133.806949][ T7029] loop2: partition table beyond EOD, truncated
[  133.808346][ T7029] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  134.684098][ T7043] FAULT_INJECTION: forcing a failure.
[  134.684098][ T7043] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  134.689742][ T7043] CPU: 3 UID: 0 PID: 7043 Comm: syz.3.265 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  134.693440][ T7043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.697089][ T7043] Call Trace:
[  134.698252][ T7043]  <TASK>
[  134.699290][ T7043]  dump_stack_lvl+0x16c/0x1f0
[  134.700907][ T7043]  should_fail_ex+0x497/0x5b0
[  134.702529][ T7043]  _copy_from_iter+0x29b/0x1400
[  134.704207][ T7043]  ? trace_lock_acquire+0x14e/0x1f0
[  134.706010][ T7043]  ? __pfx__copy_from_iter+0x10/0x10
[  134.707938][ T7043]  ? __virt_addr_valid+0x1a4/0x590
[  134.709791][ T7043]  ? __virt_addr_valid+0x5e/0x590
[  134.711505][ T7043]  ? __phys_addr_symbol+0x30/0x80
[  134.713185][ T7043]  ? __check_object_size+0x488/0x710
[  134.714986][ T7043]  file_tty_write.constprop.0+0x48d/0x9a0
[  134.716536][ T7043]  vfs_write+0x5ae/0x1150
[  134.717895][ T7043]  ? __pfx_tty_write+0x10/0x10
[  134.719181][ T7043]  ? __pfx_vfs_write+0x10/0x10
[  134.720452][ T7043]  ? __fget_files+0x40/0x3a0
[  134.722060][ T7043]  ksys_write+0x12b/0x250
[  134.723563][ T7043]  ? __pfx_ksys_write+0x10/0x10
[  134.724876][ T7043]  __do_fast_syscall_32+0x73/0x120
[  134.726235][ T7043]  do_fast_syscall_32+0x32/0x80
[  134.727558][ T7043]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  134.729230][ T7043] RIP: 0023:0xf740e579
[  134.730321][ T7043] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  134.735652][ T7043] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  134.737980][ T7043] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001040
[  134.740079][ T7043] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000
[  134.742140][ T7043] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  134.744338][ T7043] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  134.746455][ T7043] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.748578][ T7043]  </TASK>
[  134.781884][ T7049] 9pnet_fd: Insufficient options for proto=fd
[  134.782133][ T7050] 9pnet_fd: Insufficient options for proto=fd
[  136.194326][ T7057] Set syz1 is full, maxelem 65536 reached
[  136.695102][ T7033] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  136.702802][ T5964] Bluetooth: hci0: command 0x0406 tx timeout
[  136.706766][ T7033] Bluetooth: hci0: Opcode 0x0406 failed: -110
[  136.868297][ T7033] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  136.870073][ T7033] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  136.874343][ T7033] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  136.876404][ T7033] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  136.880667][ T7033] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  136.883187][ T7033] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  136.963392][ T7064] warning: `syz.0.271' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  136.999451][ T7065] netlink: 12 bytes leftover after parsing attributes in process `syz.2.270'.
[  137.142726][   T36] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  137.262748][   T58] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  137.292724][   T36] usb 6-1: Using ep0 maxpacket: 16
[  137.297362][   T36] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 54, changing to 9
[  137.300133][   T36] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8447, setting to 1024
[  137.302967][   T36] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  137.306764][   T36] usb 6-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  137.310479][   T36] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.315062][   T36] usb 6-1: config 0 descriptor??
[  137.319552][   T36] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input6
[  137.412781][   T58] usb 5-1: Using ep0 maxpacket: 8
[  137.424191][   T58] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  137.426943][   T58] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  137.429313][   T58] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  137.432066][   T58] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  137.435278][   T58] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  137.438197][   T58] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.451661][   T58] hub 5-1:1.0: bad descriptor, ignoring hub
[  137.453751][   T58] hub 5-1:1.0: probe with driver hub failed with error -5
[  137.455955][   T58] cdc_wdm 5-1:1.0: skipping garbage
[  137.457823][   T58] cdc_wdm 5-1:1.0: skipping garbage
[  137.467223][   T58] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  137.469424][   T58] cdc_wdm 5-1:1.0: Unknown control protocol
[  137.521262][   T57] usb 6-1: USB disconnect, device number 2
[  137.658570][ T7071] netlink: 132 bytes leftover after parsing attributes in process `syz.0.271'.
[  137.716187][ T7089] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  137.718635][ T7089] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  137.835378][ T7091] netlink: 8 bytes leftover after parsing attributes in process `syz.2.277'.
[  137.838135][ T7091] netlink: 24 bytes leftover after parsing attributes in process `syz.2.277'.
[  137.880702][ T7097] netlink: 8 bytes leftover after parsing attributes in process `syz.2.278'.
[  138.067847][ T7106] overlayfs: missing 'lowerdir'
[  138.078515][   T40] audit: type=1326 audit(1733861709.868:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7108 comm="syz.3.283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  138.084642][   T40] audit: type=1326 audit(1733861709.868:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7108 comm="syz.3.283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  138.089875][   T40] audit: type=1326 audit(1733861709.868:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7108 comm="syz.3.283" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf740e579 code=0x7ffc0000
[  138.095955][   T40] audit: type=1326 audit(1733861709.868:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7108 comm="syz.3.283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  138.101167][   T40] audit: type=1326 audit(1733861709.868:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7108 comm="syz.3.283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  138.106575][   T40] audit: type=1326 audit(1733861709.878:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7108 comm="syz.3.283" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf740e579 code=0x7ffc0000
[  138.111761][   T40] audit: type=1326 audit(1733861709.878:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7108 comm="syz.3.283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  138.117096][   T40] audit: type=1326 audit(1733861709.878:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7108 comm="syz.3.283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  138.122424][   T40] audit: type=1326 audit(1733861709.898:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7108 comm="syz.3.283" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf740e579 code=0x7ffc0000
[  138.127769][   T40] audit: type=1326 audit(1733861709.898:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7108 comm="syz.3.283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  138.254832][ T7110] block nbd3: shutting down sockets
[  138.557942][ T7124] loop6: detected capacity change from 0 to 524287999
[  138.560644][    C0] blk_print_req_error: 7 callbacks suppressed
[  138.560655][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  138.564649][    C0] buffer_io_error: 7 callbacks suppressed
[  138.564657][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  138.568529][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  138.570746][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  138.573086][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  138.575953][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  138.578727][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  138.581702][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  138.584788][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  138.587282][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  138.589972][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  138.592487][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  138.594925][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  138.597429][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  138.599769][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  138.602650][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  138.604976][ T7124] ldm_validate_partition_table(): Disk read failed.
[  138.613162][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  138.616326][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  138.619414][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  138.622265][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  138.625470][ T7125] Zero length message leads to an empty skb
[  138.625550][ T7124] Dev loop6: unable to read RDB block 0
[  138.629610][ T7124]  loop6: unable to read partition table
[  138.631609][ T7124] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  138.772809][ T5964] Bluetooth: hci1: command 0x0406 tx timeout
[  138.772837][ T5959] Bluetooth: hci0: command 0x0406 tx timeout
[  138.932823][ T5959] Bluetooth: hci3: command 0x0406 tx timeout
[  138.933062][ T5964] Bluetooth: hci2: command 0x0406 tx timeout
[  139.010919][ T7138] netlink: 20 bytes leftover after parsing attributes in process `syz.2.292'.
[  139.013404][ T7142] FAULT_INJECTION: forcing a failure.
[  139.013404][ T7142] name failslab, interval 1, probability 0, space 0, times 0
[  139.017262][ T7142] CPU: 2 UID: 0 PID: 7142 Comm: syz.3.293 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  139.020130][ T7142] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.023023][ T7142] Call Trace:
[  139.024190][ T7142]  <TASK>
[  139.025260][ T7142]  dump_stack_lvl+0x16c/0x1f0
[  139.026916][ T7142]  should_fail_ex+0x497/0x5b0
[  139.028578][ T7142]  ? fs_reclaim_acquire+0xae/0x150
[  139.030423][ T7142]  should_failslab+0xc2/0x120
[  139.032071][ T7142]  __kmalloc_noprof+0xce/0x4f0
[  139.033792][ T7142]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  139.035764][ T7142]  ? tomoyo_realpath_from_path+0xbf/0x710
[  139.037778][ T7142]  tomoyo_realpath_from_path+0xbf/0x710
[  139.039740][ T7142]  ? tomoyo_path_number_perm+0x235/0x5b0
[  139.041721][ T7142]  tomoyo_path_number_perm+0x248/0x5b0
[  139.043661][ T7142]  ? tomoyo_path_number_perm+0x235/0x5b0
[  139.045666][ T7142]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  139.048324][ T7142]  ? __pfx_lock_release+0x10/0x10
[  139.050232][ T7142]  ? trace_lock_acquire+0x14e/0x1f0
[  139.052247][ T7142]  ? lock_acquire+0x2f/0xb0
[  139.053894][ T7142]  ? __fget_files+0x40/0x3a0
[  139.055953][ T7142]  ? __fget_files+0x206/0x3a0
[  139.057693][ T7142]  security_file_ioctl_compat+0x9b/0x240
[  139.059701][ T7142]  __do_compat_sys_ioctl+0x4e/0x2c0
[  139.061537][ T7142]  __do_fast_syscall_32+0x73/0x120
[  139.063493][ T7142]  do_fast_syscall_32+0x32/0x80
[  139.065332][ T7142]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  139.067626][ T7142] RIP: 0023:0xf740e579
[  139.069117][ T7142] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  139.075480][ T7142] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  139.078336][ T7142] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000001277
[  139.081124][ T7142] RDX: 0000000020000200 RSI: 0000000000000000 RDI: 0000000000000000
[  139.083636][ T7142] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  139.086351][ T7142] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  139.088800][ T7142] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  139.091387][ T7142]  </TASK>
[  139.092385][ T7142] ERROR: Out of memory at tomoyo_realpath_from_path.
[  139.229503][ T7152] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  139.229503][ T7152]    program syz.2.295 not setting count and/or reply_len properly
[  139.510940][ T7170] FAULT_INJECTION: forcing a failure.
[  139.510940][ T7170] name failslab, interval 1, probability 0, space 0, times 0
[  139.514926][ T7170] CPU: 1 UID: 0 PID: 7170 Comm: syz.3.303 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  139.518290][ T7170] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.521726][ T7170] Call Trace:
[  139.522794][ T7170]  <TASK>
[  139.523863][ T7170]  dump_stack_lvl+0x16c/0x1f0
[  139.525237][ T7170]  should_fail_ex+0x497/0x5b0
[  139.526474][ T7170]  ? fs_reclaim_acquire+0xae/0x150
[  139.527823][ T7170]  should_failslab+0xc2/0x120
[  139.529055][ T7170]  __kmalloc_noprof+0xce/0x4f0
[  139.530298][ T7170]  ? d_absolute_path+0x137/0x1b0
[  139.531607][ T7170]  ? tomoyo_encode2+0x100/0x3e0
[  139.532878][ T7170]  tomoyo_encode2+0x100/0x3e0
[  139.534073][ T7170]  tomoyo_realpath_from_path+0x1a7/0x710
[  139.535524][ T7170]  tomoyo_path_number_perm+0x248/0x5b0
[  139.536895][ T7170]  ? tomoyo_path_number_perm+0x235/0x5b0
[  139.538361][ T7170]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  139.540013][ T7170]  ? __pfx_lock_release+0x10/0x10
[  139.541729][ T7170]  ? trace_lock_acquire+0x14e/0x1f0
[  139.543495][ T7170]  ? lock_acquire+0x2f/0xb0
[  139.544724][ T7170]  ? __fget_files+0x40/0x3a0
[  139.545940][ T7170]  ? __fget_files+0x206/0x3a0
[  139.547172][ T7170]  security_file_ioctl_compat+0x9b/0x240
[  139.549032][ T7170]  __do_compat_sys_ioctl+0x4e/0x2c0
[  139.550612][ T7170]  __do_fast_syscall_32+0x73/0x120
[  139.551950][ T7170]  do_fast_syscall_32+0x32/0x80
[  139.553219][ T7170]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  139.554826][ T7170] RIP: 0023:0xf740e579
[  139.555878][ T7170] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  139.560753][ T7170] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  139.562832][ T7170] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000001277
[  139.564851][ T7170] RDX: 0000000020000200 RSI: 0000000000000000 RDI: 0000000000000000
[  139.566889][ T7170] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  139.569511][ T7170] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  139.572126][ T7170] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  139.574446][ T7170]  </TASK>
[  139.575366][    C1] vkms_vblank_simulate: vblank timer overrun
[  139.578836][ T7170] ERROR: Out of memory at tomoyo_realpath_from_path.
[  139.750446][ T7184] lo speed is unknown, defaulting to 1000
[  139.852673][ T7187] loop6: detected capacity change from 0 to 524287999
[  139.856357][ T7187] ldm_validate_partition_table(): Disk read failed.
[  139.858820][ T7187] Dev loop6: unable to read RDB block 0
[  140.039089][ T7187]  loop6: unable to read partition table
[  140.040926][ T7187] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  140.162422][ T7192] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  140.168496][   T36] usb 5-1: USB disconnect, device number 3
[  140.270379][ T7195] overlayfs: missing 'lowerdir'
[  140.315440][ T7197] netlink: 4 bytes leftover after parsing attributes in process `syz.0.310'.
[  140.319965][ T7197] netlink: 16 bytes leftover after parsing attributes in process `syz.0.310'.
[  140.563737][ T7204] loop2: detected capacity change from 0 to 7
[  140.568834][ T7204] Dev loop2: unable to read RDB block 7
[  140.570360][ T7204]  loop2: unable to read partition table
[  140.571911][ T7204] loop2: partition table beyond EOD, truncated
[  140.573673][ T7204] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  140.625525][ T5964] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  140.729725][ T7208] syz.1.315 (7208) used obsolete PPPIOCDETACH ioctl
[  140.862808][ T5964] Bluetooth: hci1: command 0x0406 tx timeout
[  140.912453][ T7216] kvm: kvm [7213]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x11e) = 0xfffffff600000003
[  140.937921][ T7216] kvm: kvm [7213]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x186) = 0xfffffff600000003
[  140.941002][ T7216] kvm: kvm [7213]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x187) = 0xfffffff600000003
[  140.961698][ T7216] kvm_intel: kvm [7213]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x1d9) = 0xfffffff600000003
[  141.012817][ T5964] Bluetooth: hci2: command 0x0406 tx timeout
[  141.015115][ T5964] Bluetooth: hci3: command 0x0406 tx timeout
[  141.026652][ T7218] FAULT_INJECTION: forcing a failure.
[  141.026652][ T7218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  141.030700][ T7218] CPU: 1 UID: 0 PID: 7218 Comm: syz.2.319 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  141.033451][ T7218] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  141.036385][ T7218] Call Trace:
[  141.037268][ T7218]  <TASK>
[  141.038062][ T7218]  dump_stack_lvl+0x16c/0x1f0
[  141.039038][ T7220] overlayfs: missing 'workdir'
[  141.039282][ T7218]  should_fail_ex+0x497/0x5b0
[  141.042088][ T7218]  _copy_to_user+0x32/0xd0
[  141.043459][ T7218]  simple_read_from_buffer+0xd0/0x160
[  141.044945][ T7218]  proc_fail_nth_read+0x198/0x270
[  141.046259][ T7218]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  141.047972][ T7218]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  141.049802][ T7218]  vfs_read+0x1df/0xbe0
[  141.050881][ T7218]  ? __fget_files+0x1fc/0x3a0
[  141.052124][ T7218]  ? __pfx___mutex_lock+0x10/0x10
[  141.053406][ T7218]  ? __pfx_vfs_read+0x10/0x10
[  141.054575][ T7218]  ? __fget_files+0x206/0x3a0
[  141.055817][ T7218]  ksys_read+0x12b/0x250
[  141.056909][ T7218]  ? __pfx_ksys_read+0x10/0x10
[  141.058170][ T7218]  __do_fast_syscall_32+0x73/0x120
[  141.059517][ T7218]  do_fast_syscall_32+0x32/0x80
[  141.060782][ T7218]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  141.062412][ T7218] RIP: 0023:0xf7f66579
[  141.063452][ T7218] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  141.068111][ T7218] RSP: 002b:00000000f50d65b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  141.070198][ T7218] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50d6620
[  141.072140][ T7218] RDX: 000000000000000f RSI: 00000000f73ebff4 RDI: 0000000000000000
[  141.074105][ T7218] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  141.076120][ T7218] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  141.078130][ T7218] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  141.080100][ T7218]  </TASK>
[  141.081008][    C1] vkms_vblank_simulate: vblank timer overrun
[  141.117223][ T7222] netlink: 20 bytes leftover after parsing attributes in process `syz.2.321'.
[  141.226063][ T7236] loop9: detected capacity change from 0 to 7
[  141.235418][ T7236] Dev loop9: unable to read RDB block 7
[  141.242103][ T7236]  loop9: AHDI p2
[  141.243189][ T7236] loop9: partition table partially beyond EOD, truncated
[  141.263244][ T7238] loop2: detected capacity change from 0 to 7
[  141.275578][ T7238] Dev loop2: unable to read RDB block 7
[  141.277143][ T7238]  loop2: unable to read partition table
[  141.278686][ T7238] loop2: partition table beyond EOD, truncated
[  141.280245][ T7238] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  141.323469][ T7245] overlayfs: missing 'workdir'
[  141.871549][ T7273] loop9: detected capacity change from 0 to 7
[  141.874501][ T7273] Dev loop9: unable to read RDB block 7
[  141.875988][ T7273]  loop9: AHDI p2
[  141.877324][ T7273] loop9: partition table partially beyond EOD, truncated
[  141.912393][ T7275] loop2: detected capacity change from 0 to 7
[  141.918217][ T7275] Dev loop2: unable to read RDB block 7
[  141.920132][ T7275]  loop2: unable to read partition table
[  141.922080][ T7275] loop2: partition table beyond EOD, truncated
[  141.924520][ T7275] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  141.975567][ T7278] fuse: Unknown parameter 'dˆŽ—b¡XæìO]Ç'
[  141.978858][ T7277] xt_nat: multiple ranges no longer supported
[  142.045416][ T7279] syz.3.337 (7279) used greatest stack depth: 20688 bytes left
[  142.120953][ T7282] overlayfs: missing 'workdir'
[  142.384328][ T7285] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  142.384328][ T7285]    program syz.1.338 not setting count and/or reply_len properly
[  142.721210][ T7302] loop9: detected capacity change from 0 to 7
[  142.723523][ T7302] Dev loop9: unable to read RDB block 7
[  142.725473][ T7302]  loop9: AHDI p2
[  142.726849][ T7302] loop9: partition table partially beyond EOD, truncated
[  142.891134][ T7313] overlayfs: missing 'lowerdir'
[  143.072978][ T6587] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  143.232874][ T6587] usb 8-1: Using ep0 maxpacket: 8
[  143.236565][ T6587] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.239427][ T6587] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.241995][ T6587] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  143.244749][ T6587] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  143.247410][ T6587] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  143.249906][ T6587] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  143.254178][ T6587] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  143.256783][ T6587] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.258971][ T6587] usb 8-1: Product: syz
[  143.260172][ T6587] usb 8-1: Manufacturer: syz
[  143.261503][ T6587] usb 8-1: SerialNumber: syz
[  143.373904][ T7334] loop9: detected capacity change from 0 to 7
[  143.376021][ T7334] Dev loop9: unable to read RDB block 7
[  143.378128][ T7334]  loop9: AHDI p2
[  143.379506][ T7334] loop9: partition table partially beyond EOD, truncated
[  143.468401][ T7294] netlink: 'syz.3.340': attribute type 4 has an invalid length.
[  143.528165][ T7340] netlink: 12 bytes leftover after parsing attributes in process `syz.1.357'.
[  143.531686][ T7340] netlink: 12 bytes leftover after parsing attributes in process `syz.1.357'.
[  143.901513][ T7346] loop6: detected capacity change from 0 to 524287999
[  143.904239][    C3] blk_print_req_error: 24 callbacks suppressed
[  143.904274][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.908619][    C3] buffer_io_error: 24 callbacks suppressed
[  143.908627][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  143.912479][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.914830][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  143.917819][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.920465][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  143.923125][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.925389][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  143.927538][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.929892][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  143.932163][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.934585][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  143.937631][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.939859][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  143.942122][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.944447][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  143.946422][ T7346] ldm_validate_partition_table(): Disk read failed.
[  143.948413][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.950861][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  143.954128][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.957068][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  143.961482][ T7346] Dev loop6: unable to read RDB block 0
[  143.970507][ T7346]  loop6: unable to read partition table
[  143.972314][ T7346] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  144.145261][ T1411] ieee802154 phy0 wpan0: encryption failed: -22
[  144.295212][ T7352] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  144.295212][ T7352]    program syz.2.360 not setting count and/or reply_len properly
[  144.636466][ T7358] block device autoloading is deprecated and will be removed.
[  144.643329][ T7357] md: md2 stopped.
[  144.703748][ T7362] usb usb7: usbfs: process 7362 (syz.0.363) did not claim interface 0 before use
[  144.799791][ T7369] loop2: detected capacity change from 0 to 7
[  144.802520][ T7369] Dev loop2: unable to read RDB block 7
[  144.804477][ T7369]  loop2: unable to read partition table
[  144.806148][ T7369] loop2: partition table beyond EOD, truncated
[  144.807809][ T7369] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  144.975291][ T7373] netlink: 16 bytes leftover after parsing attributes in process `syz.1.368'.
[  145.125031][ T7378] kvm: kvm [7377]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x11e) = 0xfffffff600000003
[  145.145487][ T7378] kvm: kvm [7377]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x186) = 0xfffffff600000003
[  145.148454][ T7378] kvm: kvm [7377]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x187) = 0xfffffff600000003
[  145.165251][ T7378] kvm_intel: kvm [7377]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x1d9) = 0xfffffff600000003
[  145.388824][ T6587] cdc_ncm 8-1:1.0: bind() failure
[  145.407623][ T6587] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  145.420345][ T6587] cdc_ncm 8-1:1.1: bind() failure
[  145.435673][ T6587] usb 8-1: USB disconnect, device number 4
[  145.517666][ T7385] loop9: detected capacity change from 0 to 7
[  145.520167][ T7385] Dev loop9: unable to read RDB block 7
[  145.522176][ T7385]  loop9: AHDI p2
[  145.524360][ T7385] loop9: partition table partially beyond EOD, truncated
[  145.834223][ T7391] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117
[  145.836029][ T7391] PKCS7: Only support pkcs7_signedData type
[  146.184287][ T7393] kvm: kvm [7392]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x11e) = 0xfffffff600000003
[  146.206283][ T7393] kvm: kvm [7392]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x186) = 0xfffffff600000003
[  146.209206][ T7393] kvm: kvm [7392]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x187) = 0xfffffff600000003
[  146.227264][ T7393] kvm_intel: kvm [7392]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x1d9) = 0xfffffff600000003
[  146.234914][ T7401] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  146.234914][ T7401]    program syz.1.377 not setting count and/or reply_len properly
[  146.552746][ T5633] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  146.714758][ T5633] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  146.717024][ T5633] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  146.719616][ T5633] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  146.722320][ T5633] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  146.725907][ T5633] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  146.737114][ T5633] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  146.739776][ T5633] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  146.741847][ T5633] usb 8-1: Product: syz
[  146.743205][ T5633] usb 8-1: Manufacturer: syz
[  146.747314][ T5633] cdc_wdm 8-1:1.0: skipping garbage
[  146.748935][ T5633] cdc_wdm 8-1:1.0: skipping garbage
[  146.750930][ T5633] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  146.757405][ T5633] cdc_wdm 8-1:1.0: Unknown control protocol
[  146.929248][ T7414] loop2: detected capacity change from 0 to 7
[  146.931916][ T7414] Dev loop2: unable to read RDB block 7
[  146.935049][ T7414]  loop2: unable to read partition table
[  146.936699][ T7414] loop2: partition table beyond EOD, truncated
[  146.938266][ T7414] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  147.116975][ T7422] loop9: detected capacity change from 0 to 7
[  147.120627][ T7422] Dev loop9: unable to read RDB block 7
[  147.122848][ T7422]  loop9: AHDI p2
[  147.124252][ T7422] loop9: partition table partially beyond EOD, truncated
[  147.632691][ T5633] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  147.792728][ T5633] usb 6-1: Using ep0 maxpacket: 8
[  147.795716][ T5633] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0
[  147.801139][ T5633] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  147.804561][ T5633] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  147.806704][ T5633] usb 6-1: SerialNumber: syz
[  147.811324][ T5633] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -22
[  148.015362][ T5633] usb 6-1: USB disconnect, device number 3
[  148.213045][ T7439] loop6: detected capacity change from 0 to 524287999
[  148.217480][ T7439] ldm_validate_partition_table(): Disk read failed.
[  148.220145][ T7439] Dev loop6: unable to read RDB block 0
[  148.225017][ T7439]  loop6: unable to read partition table
[  148.227268][ T7439] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  148.500157][ T7443] program syz.2.391 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  148.541470][ T7445] loop2: detected capacity change from 0 to 7
[  148.543635][ T7445] Dev loop2: unable to read RDB block 7
[  148.545122][ T7445]  loop2: unable to read partition table
[  148.546703][ T7445] loop2: partition table beyond EOD, truncated
[  148.548334][ T7445] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  148.621517][ T7447] netlink: 'syz.1.393': attribute type 5 has an invalid length.
[  148.652828][ T7453] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  148.652828][ T7453]    program syz.2.394 not setting count and/or reply_len properly
[  148.712107][ T7458] loop9: detected capacity change from 0 to 7
[  148.714563][ T7458] Dev loop9: unable to read RDB block 7
[  148.716193][ T7458]  loop9: AHDI p2
[  148.717226][ T7458] loop9: partition table partially beyond EOD, truncated
[  149.012774][ T5959] Bluetooth: hci3: command 0x0406 tx timeout
[  149.115739][ T7484] loop6: detected capacity change from 0 to 524287999
[  149.118201][    C3] blk_print_req_error: 24 callbacks suppressed
[  149.118220][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  149.123563][    C3] buffer_io_error: 24 callbacks suppressed
[  149.123576][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.128914][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  149.132193][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.135318][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  149.138600][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.141505][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  149.144610][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.147685][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  149.150810][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.155136][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  149.158291][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.161225][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  149.164595][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.172037][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  149.175421][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.178241][ T7484] ldm_validate_partition_table(): Disk read failed.
[  149.181838][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  149.186167][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.189980][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  149.193084][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  149.203229][ T7484] Dev loop6: unable to read RDB block 0
[  149.205742][ T7484]  loop6: unable to read partition table
[  149.207478][ T7484] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  149.231631][   T57] usb 8-1: USB disconnect, device number 5
[  149.663467][ T7490] kvm: kvm [7489]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x11e) = 0xfffffff600000003
[  149.680792][ T7490] kvm: kvm [7489]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x186) = 0xfffffff600000003
[  149.683932][ T7490] kvm: kvm [7489]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x187) = 0xfffffff600000003
[  149.705687][ T7490] kvm_intel: kvm [7489]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x1d9) = 0xfffffff600000003
[  149.838026][ T7496] overlayfs: failed to set uuid (89/file1, err=-1); falling back to uuid=null.
[  149.840499][ T7496] overlayfs: failed to verify upper root origin
[  150.031328][ T7509] loop9: detected capacity change from 0 to 7
[  150.037575][ T7509] Dev loop9: unable to read RDB block 7
[  150.039239][ T7509]  loop9: AHDI p2
[  150.042187][ T7509] loop9: partition table partially beyond EOD, truncated
[  150.501550][ T7547] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  150.501550][ T7547]    program syz.3.412 not setting count and/or reply_len properly
[  150.616811][ T7563] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  150.620336][ T7563] overlay: Unknown parameter 'euid>00000000000000060929'
[  150.865533][ T7577] FAULT_INJECTION: forcing a failure.
[  150.865533][ T7577] name failslab, interval 1, probability 0, space 0, times 0
[  150.868871][ T7577] CPU: 1 UID: 0 PID: 7577 Comm: syz.2.415 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  150.871616][ T7577] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.874319][ T7577] Call Trace:
[  150.875217][ T7577]  <TASK>
[  150.876014][ T7577]  dump_stack_lvl+0x16c/0x1f0
[  150.877262][ T7577]  should_fail_ex+0x497/0x5b0
[  150.878512][ T7577]  ? fs_reclaim_acquire+0xae/0x150
[  150.879867][ T7577]  should_failslab+0xc2/0x120
[  150.881106][ T7577]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  150.882509][ T7577]  ? __kernfs_new_node+0xd3/0x890
[  150.883837][ T7577]  __kernfs_new_node+0xd3/0x890
[  150.885116][ T7577]  ? submit_bio_wait+0x1a7/0x240
[  150.886415][ T7577]  ? __pfx___kernfs_new_node+0x10/0x10
[  150.887846][ T7577]  kernfs_new_node+0x186/0x240
[  150.889103][ T7577]  kernfs_create_dir_ns+0x4c/0x150
[  150.890436][ T7577]  internal_create_group+0x34e/0xf10
[  150.891798][ T7577]  ? __pfx_internal_create_group+0x10/0x10
[  150.893260][ T7577]  ? blkdev_fsync+0xa1/0xd0
[  150.894449][ T7577]  loop_configure+0x8b1/0x11f0
[  150.895720][ T7577]  lo_ioctl+0xa5d/0x18a0
[  150.896830][ T7577]  ? __pfx_lo_ioctl+0x10/0x10
[  150.898073][ T7577]  ? __pfx___schedule+0x10/0x10
[  150.899356][ T7577]  ? tomoyo_path_number_perm+0x298/0x5b0
[  150.900825][ T7577]  ? irqentry_exit+0x3b/0x90
[  150.902028][ T7577]  ? lockdep_hardirqs_on+0x7c/0x110
[  150.903390][ T7577]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  150.904934][ T7577]  lo_compat_ioctl+0xb9/0x170
[  150.906150][ T7577]  ? __pfx_lo_compat_ioctl+0x10/0x10
[  150.907665][ T7577]  compat_blkdev_ioctl+0x2f7/0x750
[  150.909034][ T7577]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  150.910507][ T7577]  ? __fget_files+0x206/0x3a0
[  150.911773][ T7577]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  150.913285][ T7577]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  150.914724][ T7577]  __do_fast_syscall_32+0x73/0x120
[  150.916170][ T7577]  do_fast_syscall_32+0x32/0x80
[  150.917685][ T7577]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  150.919633][ T7577] RIP: 0023:0xf7f66579
[  150.920814][ T7577] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  150.925975][ T7577] RSP: 002b:00000000f509457c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  150.928178][ T7577] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000000004c0a
[  150.930146][ T7577] RDX: 0000000020001ac0 RSI: 0000000000000000 RDI: 0000000000000000
[  150.932200][ T7577] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.934219][ T7577] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  150.936178][ T7577] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.938210][ T7577]  </TASK>
[  150.939614][ T7577] loop6: detected capacity change from 0 to 524287999
[  151.092144][ T7589] FAULT_INJECTION: forcing a failure.
[  151.092144][ T7589] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.095871][ T7589] CPU: 2 UID: 0 PID: 7589 Comm: syz.2.419 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  151.099512][ T7589] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.103283][ T7589] Call Trace:
[  151.104523][ T7589]  <TASK>
[  151.105630][ T7589]  dump_stack_lvl+0x16c/0x1f0
[  151.107423][ T7589]  should_fail_ex+0x497/0x5b0
[  151.109090][ T7589]  _copy_from_user+0x2e/0xd0
[  151.110696][ T7589]  memdup_user+0x71/0xd0
[  151.112180][ T7589]  strndup_user+0x78/0xe0
[  151.113351][ T7589]  __ia32_sys_mount+0x138/0x310
[  151.114665][ T7589]  ? __pfx___ia32_sys_mount+0x10/0x10
[  151.116185][ T7589]  __do_fast_syscall_32+0x73/0x120
[  151.117552][ T7589]  do_fast_syscall_32+0x32/0x80
[  151.118810][ T7589]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.120436][ T7589] RIP: 0023:0xf7f66579
[  151.121528][ T7589] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.126857][ T7589] RSP: 002b:00000000f50d657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  151.129274][ T7589] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  151.131477][ T7589] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  151.133527][ T7589] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  151.135557][ T7589] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  151.137582][ T7589] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.139641][ T7589]  </TASK>
[  151.207155][ T7595] loop9: detected capacity change from 0 to 7
[  151.209095][ T7595] Dev loop9: unable to read RDB block 7
[  151.210551][ T7595]  loop9: AHDI p2
[  151.211625][ T7595] loop9: partition table partially beyond EOD, truncated
[  151.474407][ T7611] loop6: detected capacity change from 0 to 524287999
[  151.478071][ T7611] ldm_validate_partition_table(): Disk read failed.
[  151.480755][ T7611] Dev loop6: unable to read RDB block 0
[  151.484147][ T7611]  loop6: unable to read partition table
[  151.485891][ T7611] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  151.516011][ T7614] netlink: 4 bytes leftover after parsing attributes in process `syz.1.428'.
[  151.555542][ T7616] overlayfs: failed to set uuid (130/file1, err=-1); falling back to uuid=null.
[  151.558074][ T7616] overlayfs: failed to verify upper root origin
[  151.592104][ T7618] loop2: detected capacity change from 0 to 7
[  151.595824][ T7618] Dev loop2: unable to read RDB block 7
[  151.597410][ T7618]  loop2: unable to read partition table
[  151.599142][ T7618] loop2: partition table beyond EOD, truncated
[  151.601134][ T7618] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  151.806717][ T7626] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  151.806717][ T7626]    program syz.0.433 not setting count and/or reply_len properly
[  152.629541][ T7640] loop9: detected capacity change from 0 to 7
[  152.632415][ T7640] Dev loop9: unable to read RDB block 7
[  152.642522][ T7640]  loop9: AHDI p2
[  152.644111][ T7640] loop9: partition table partially beyond EOD, truncated
[  152.933859][ T7661] Invalid logical block size (19)
[  153.638333][ T7674] netlink: 80 bytes leftover after parsing attributes in process `syz.1.446'.
[  153.659852][ T7677] netlink: 'syz.0.445': attribute type 16 has an invalid length.
[  153.662521][ T7677] netlink: 40714 bytes leftover after parsing attributes in process `syz.0.445'.
[  153.857731][ T7679] loop2: detected capacity change from 0 to 7
[  153.859887][ T7679] Dev loop2: unable to read RDB block 7
[  153.861680][ T7679]  loop2: unable to read partition table
[  153.863538][ T7679] loop2: partition table beyond EOD, truncated
[  153.865797][ T7679] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  153.923294][ T7683] loop9: detected capacity change from 0 to 7
[  153.926164][ T7683] Dev loop9: unable to read RDB block 7
[  153.927930][ T7683]  loop9: AHDI p2
[  153.928953][ T7683] loop9: partition table partially beyond EOD, truncated
[  153.975375][ T7686] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  153.975375][ T7686]    program syz.1.448 not setting count and/or reply_len properly
[  154.177318][ T7691] can0: slcan on ttyS3.
[  154.747404][   T31] hid-generic 0000:0000:0000.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  154.808118][ T7703] input: syz1 as /devices/virtual/input/input7
[  154.884601][ T7684] can0 (unregistered): slcan off ttyS3.
[  154.977891][ T7713] capability: warning: `syz.1.452' uses 32-bit capabilities (legacy support in use)
[  155.224095][ T7721] overlayfs: missing 'workdir'
[  155.366553][ T7727] FAULT_INJECTION: forcing a failure.
[  155.366553][ T7727] name failslab, interval 1, probability 0, space 0, times 0
[  155.371782][ T7727] CPU: 2 UID: 0 PID: 7727 Comm: syz.3.456 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  155.375286][ T7727] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.378058][ T7727] Call Trace:
[  155.378965][ T7727]  <TASK>
[  155.379753][ T7727]  dump_stack_lvl+0x16c/0x1f0
[  155.381016][ T7727]  should_fail_ex+0x497/0x5b0
[  155.382413][ T7727]  ? fs_reclaim_acquire+0xae/0x150
[  155.383808][ T7727]  should_failslab+0xc2/0x120
[  155.385048][ T7727]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  155.386448][ T7727]  ? getname_flags.part.0+0x4c/0x550
[  155.387843][ T7727]  getname_flags.part.0+0x4c/0x550
[  155.389217][ T7727]  getname_flags+0x93/0xf0
[  155.390519][ T7727]  user_path_at+0x24/0x60
[  155.391979][ T7727]  __ia32_sys_mount+0x1fb/0x310
[  155.393756][ T7727]  ? __pfx___ia32_sys_mount+0x10/0x10
[  155.395870][ T7727]  __do_fast_syscall_32+0x73/0x120
[  155.397756][ T7727]  do_fast_syscall_32+0x32/0x80
[  155.399441][ T7727]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  155.401818][ T7727] RIP: 0023:0xf740e579
[  155.403120][ T7727] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  155.408269][ T7727] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  155.410551][ T7727] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  155.413276][ T7727] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  155.415633][ T7727] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  155.417712][ T7727] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  155.419817][ T7727] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  155.422027][ T7727]  </TASK>
[  155.422902][    C2] vkms_vblank_simulate: vblank timer overrun
[  156.000353][ T7735] lo speed is unknown, defaulting to 1000
[  156.035848][ T7736] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  156.227247][ T7742] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  156.227247][ T7742]    program syz.1.460 not setting count and/or reply_len properly
[  156.518253][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.529171][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.532060][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.538040][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.540422][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.542425][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.547010][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.549054][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.551145][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.553493][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.556219][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.558283][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.560286][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.562285][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.566040][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.568067][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.570096][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.572109][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.574288][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.576568][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.578831][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.581576][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.585365][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.587400][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.589523][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.591531][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.593963][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.596104][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.598426][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.601153][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.605691][  T835] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  156.610519][  T835] hid-generic 0000:0000:0000.0005: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  156.774299][ T5633] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  156.924207][ T5633] usb 8-1: config 0 has no interfaces?
[  156.925768][ T5633] usb 8-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  156.928234][ T5633] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.931682][ T5633] usb 8-1: config 0 descriptor??
[  157.139282][ T5740] usb 8-1: USB disconnect, device number 6
[  157.567814][ T7764] kvm: kvm [7763]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x11e) = 0xfffffff600000003
[  157.586269][ T7764] kvm: kvm [7763]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x186) = 0xfffffff600000003
[  157.589262][ T7764] kvm: kvm [7763]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x187) = 0xfffffff600000003
[  157.602374][ T7764] kvm_intel: kvm [7763]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x1d9) = 0xfffffff600000003
[  157.670316][ T7767] loop9: detected capacity change from 0 to 7
[  157.672330][ T7767] Dev loop9: unable to read RDB block 7
[  157.673886][ T7767]  loop9: AHDI p2
[  157.674848][ T7767] loop9: partition table partially beyond EOD, truncated
[  158.196585][ T7777] loop2: detected capacity change from 0 to 7
[  158.198749][ T7777] Dev loop2: unable to read RDB block 7
[  158.200260][ T7777]  loop2: unable to read partition table
[  158.201917][ T7777] loop2: partition table beyond EOD, truncated
[  158.204860][ T7777] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  158.239263][ T7779] loop2: detected capacity change from 0 to 7
[  158.242161][ T7779]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  158.246283][ T7779] loop2: partition table partially beyond EOD, truncated
[  158.250145][ T7779] loop2: p1 size 276741282 extends beyond EOD, truncated
[  158.253577][ T7779] loop2: p2 start 579963744 is beyond EOD, truncated
[  158.312892][ T7779] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-16)
[  158.320701][ T7779] @: renamed from vlan0 (while UP)
[  158.588769][ T7787] vivid-003: disconnect
[  159.204883][ T7781] vivid-003: reconnect
[  159.409163][ T7797] netlink: 24 bytes leftover after parsing attributes in process `syz.0.480'.
[  159.481763][   T58] kernel read not supported for file /sequencer (pid: 58 comm: kworker/3:1)
[  159.627936][ T7808] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  160.046124][ T7809] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  160.046124][ T7809]    program syz.1.484 not setting count and/or reply_len properly
[  160.670015][ T7818] kvm: kvm [7817]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0x11e) = 0xfffff20000000003
[  161.001283][ T7826] FAULT_INJECTION: forcing a failure.
[  161.001283][ T7826] name failslab, interval 1, probability 0, space 0, times 0
[  161.004870][ T7826] CPU: 3 UID: 0 PID: 7826 Comm: syz.3.489 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  161.008406][ T7826] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.011959][ T7826] Call Trace:
[  161.013104][ T7826]  <TASK>
[  161.014109][ T7826]  dump_stack_lvl+0x16c/0x1f0
[  161.015716][ T7826]  should_fail_ex+0x497/0x5b0
[  161.017304][ T7826]  ? fs_reclaim_acquire+0xae/0x150
[  161.019141][ T7826]  should_failslab+0xc2/0x120
[  161.020385][ T7826]  __kmalloc_noprof+0xce/0x4f0
[  161.021643][ T7826]  ? lock_acquire+0x2f/0xb0
[  161.022857][ T7826]  ? __get_fs_type+0x21/0x170
[  161.024095][ T7826]  ? tomoyo_encode2+0x100/0x3e0
[  161.025354][ T7826]  tomoyo_encode2+0x100/0x3e0
[  161.026649][ T7826]  tomoyo_encode+0x2c/0x40
[  161.027814][ T7826]  tomoyo_mount_acl+0x314/0x880
[  161.029075][ T7826]  ? hlock_class+0x4e/0x130
[  161.030247][ T7826]  ? __lock_acquire+0x15a9/0x3c40
[  161.031562][ T7826]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  161.032946][ T7826]  ? __pfx___lock_acquire+0x10/0x10
[  161.034283][ T7826]  ? stack_trace_save+0x95/0xd0
[  161.035556][ T7826]  ? __pfx_lock_release+0x10/0x10
[  161.036955][ T7826]  ? trace_lock_acquire+0x14e/0x1f0
[  161.038420][ T7826]  ? tomoyo_mount_permission+0x149/0x420
[  161.039923][ T7826]  ? lock_acquire+0x2f/0xb0
[  161.041100][ T7826]  ? tomoyo_mount_permission+0x149/0x420
[  161.042548][ T7826]  tomoyo_mount_permission+0x16e/0x420
[  161.043964][ T7826]  ? tomoyo_mount_permission+0x149/0x420
[  161.045411][ T7826]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  161.046965][ T7826]  ? get_current_fs_domain+0x184/0x1f0
[  161.048370][ T7826]  security_sb_mount+0x9b/0x260
[  161.049656][ T7826]  path_mount+0x129/0x1f10
[  161.050821][ T7826]  ? kmem_cache_free+0x152/0x4c0
[  161.052119][ T7826]  ? __pfx_path_mount+0x10/0x10
[  161.053384][ T7826]  ? putname+0x13c/0x180
[  161.054486][ T7826]  __ia32_sys_mount+0x292/0x310
[  161.055754][ T7826]  ? __pfx___ia32_sys_mount+0x10/0x10
[  161.057132][ T7826]  __do_fast_syscall_32+0x73/0x120
[  161.058469][ T7826]  do_fast_syscall_32+0x32/0x80
[  161.059732][ T7826]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  161.061354][ T7826] RIP: 0023:0xf740e579
[  161.062413][ T7826] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  161.067585][ T7826] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  161.069729][ T7826] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  161.071777][ T7826] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  161.073809][ T7826] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  161.075856][ T7826] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  161.077895][ T7826] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  161.079895][ T7826]  </TASK>
[  161.140266][ T7829] pim6reg1: entered promiscuous mode
[  161.143189][ T7829] pim6reg1: entered allmulticast mode
[  161.595647][ T7834] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.747801][ T7834] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.945179][ T7834] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.116057][ T7834] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.242235][ T7834] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  162.247963][ T7834] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  162.255186][ T7834] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  162.261002][ T7834] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  162.267385][ T7849] bridge_slave_0: left allmulticast mode
[  162.268913][ T7849] bridge_slave_0: left promiscuous mode
[  162.271368][ T7849] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.283079][ T7849] bridge_slave_1: left allmulticast mode
[  162.284611][ T7849] bridge_slave_1: left promiscuous mode
[  162.286143][ T7849] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.291577][ T7849] bond0: (slave bond_slave_0): Releasing backup interface
[  162.297957][ T7849] bond0: (slave bond_slave_1): Releasing backup interface
[  162.308564][ T7849] team0: Port device team_slave_0 removed
[  162.314794][ T7849] team0: Port device team_slave_1 removed
[  162.329511][ T7851] team0: Mode changed to "broadcast"
[  162.812699][  T835] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  162.952691][  T835] usb 6-1: device descriptor read/64, error -71
[  163.045885][ T7868] loop2: detected capacity change from 0 to 7
[  163.047880][ T7868] Dev loop2: unable to read RDB block 7
[  163.049348][ T7868]  loop2: unable to read partition table
[  163.051016][ T7868] loop2: partition table beyond EOD, truncated
[  163.052731][ T7868] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  163.147724][ T7874] FAULT_INJECTION: forcing a failure.
[  163.147724][ T7874] name failslab, interval 1, probability 0, space 0, times 0
[  163.151088][ T7874] CPU: 2 UID: 0 PID: 7874 Comm: syz.3.504 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  163.153836][ T7874] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.156624][ T7874] Call Trace:
[  163.157516][ T7874]  <TASK>
[  163.158307][ T7874]  dump_stack_lvl+0x16c/0x1f0
[  163.159564][ T7874]  should_fail_ex+0x497/0x5b0
[  163.160798][ T7874]  ? fs_reclaim_acquire+0xae/0x150
[  163.162136][ T7874]  should_failslab+0xc2/0x120
[  163.163391][ T7874]  __kmalloc_cache_noprof+0x68/0x420
[  163.164779][ T7874]  ? lockdep_init_map_type+0x16d/0x7d0
[  163.166228][ T7874]  ovl_init_fs_context+0x52/0x5d0
[  163.167553][ T7874]  ? __pfx_ovl_init_fs_context+0x10/0x10
[  163.169018][ T7874]  alloc_fs_context+0x54a/0x9c0
[  163.170297][ T7874]  path_mount+0xbfb/0x1f10
[  163.171486][ T7874]  ? kmem_cache_free+0x152/0x4c0
[  163.172782][ T7874]  ? __pfx_path_mount+0x10/0x10
[  163.174055][ T7874]  ? putname+0x13c/0x180
[  163.175158][ T7874]  __ia32_sys_mount+0x292/0x310
[  163.176425][ T7874]  ? __pfx___ia32_sys_mount+0x10/0x10
[  163.177835][ T7874]  __do_fast_syscall_32+0x73/0x120
[  163.179412][ T7874]  do_fast_syscall_32+0x32/0x80
[  163.180719][ T7874]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.182430][ T7874] RIP: 0023:0xf740e579
[  163.183516][ T7874] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.188373][ T7874] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  163.190521][ T7874] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  163.192570][ T7874] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  163.194590][ T7874] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  163.196648][ T7874] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  163.198692][ T7874] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  163.200759][ T7874]  </TASK>
[  163.203027][  T835] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  163.340828][ T7880] overlayfs: failed to set uuid (113/file1, err=-1); falling back to uuid=null.
[  163.344131][ T7880] overlayfs: failed to verify upper root origin
[  163.352754][  T835] usb 6-1: device descriptor read/64, error -71
[  163.442288][ T7883] Invalid logical block size (3328)
[  163.492869][  T835] usb usb6-port1: attempt power cycle
[  163.842726][  T835] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  163.856736][ T7895] loop2: detected capacity change from 0 to 7
[  163.858834][ T7895] Dev loop2: unable to read RDB block 7
[  163.860452][ T7895]  loop2: unable to read partition table
[  163.862149][ T7895] loop2: partition table beyond EOD, truncated
[  163.864381][ T7895] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  163.873893][  T835] usb 6-1: device descriptor read/8, error -71
[  164.122991][  T835] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  164.143144][  T835] usb 6-1: device descriptor read/8, error -71
[  164.252901][  T835] usb usb6-port1: unable to enumerate USB device
[  164.746195][ T5964] Bluetooth: hci3: unexpected event for opcode 0x1005
[  164.876242][ T7921] bridge0: entered allmulticast mode
[  165.113165][   T57] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  165.578285][ T7928] loop2: detected capacity change from 0 to 7
[  165.580299][ T7928] Dev loop2: unable to read RDB block 7
[  165.581762][ T7928]  loop2: unable to read partition table
[  165.583693][ T7928] loop2: partition table beyond EOD, truncated
[  165.585401][ T7928] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  165.623102][ T7930] netlink: 4 bytes leftover after parsing attributes in process `syz.3.524'.
[  165.627151][ T7930] netlink: 12 bytes leftover after parsing attributes in process `syz.3.524'.
[  165.647273][ T7930] netlink: 12 bytes leftover after parsing attributes in process `syz.3.524'.
[  165.649917][ T7930] A link change request failed with some changes committed already. Interface macvlan0 may have been left with an inconsistent configuration, please check.
[  165.958976][ T7949] ata1.00: non-matching transfer count (1530558389/0)
[  166.115920][ T7951] FAULT_INJECTION: forcing a failure.
[  166.115920][ T7951] name failslab, interval 1, probability 0, space 0, times 0
[  166.119204][ T7951] CPU: 3 UID: 0 PID: 7951 Comm: syz.1.531 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  166.121908][ T7951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.124754][ T7951] Call Trace:
[  166.125638][ T7951]  <TASK>
[  166.126421][ T7951]  dump_stack_lvl+0x16c/0x1f0
[  166.127673][ T7951]  should_fail_ex+0x497/0x5b0
[  166.128906][ T7951]  ? fs_reclaim_acquire+0xae/0x150
[  166.130234][ T7951]  should_failslab+0xc2/0x120
[  166.131485][ T7951]  __kmalloc_cache_noprof+0x68/0x420
[  166.132856][ T7951]  ? kasan_save_track+0x14/0x30
[  166.134135][ T7951]  ovl_init_fs_context+0x11f/0x5d0
[  166.135480][ T7951]  ? __pfx_ovl_init_fs_context+0x10/0x10
[  166.136945][ T7951]  alloc_fs_context+0x54a/0x9c0
[  166.138226][ T7951]  path_mount+0xbfb/0x1f10
[  166.139409][ T7951]  ? kmem_cache_free+0x152/0x4c0
[  166.140708][ T7951]  ? __pfx_path_mount+0x10/0x10
[  166.141983][ T7951]  ? putname+0x13c/0x180
[  166.143109][ T7951]  __ia32_sys_mount+0x292/0x310
[  166.144387][ T7951]  ? __pfx___ia32_sys_mount+0x10/0x10
[  166.145795][ T7951]  __do_fast_syscall_32+0x73/0x120
[  166.147150][ T7951]  do_fast_syscall_32+0x32/0x80
[  166.148424][ T7951]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  166.150067][ T7951] RIP: 0023:0xf7f76579
[  166.151137][ T7951] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  166.156288][ T7951] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  166.158462][ T7951] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  166.160542][ T7951] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  166.162589][ T7951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  166.164648][ T7951] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  166.166725][ T7951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  166.168813][ T7951]  </TASK>
[  166.625742][ T5959] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  166.629260][ T5959] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  166.631613][ T5959] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  166.635006][ T5959] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  166.637406][ T5959] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  166.639360][ T5959] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  166.689069][ T7968] netlink: 4 bytes leftover after parsing attributes in process `syz.3.536'.
[  166.693610][ T7968] netlink: 12 bytes leftover after parsing attributes in process `syz.3.536'.
[  166.694890][ T7964] lo speed is unknown, defaulting to 1000
[  166.758327][ T7972] Invalid logical block size (4608)
[  166.799772][ T7964] chnl_net:caif_netlink_parms(): no params data found
[  167.005586][ T7964] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.007523][ T7964] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.009489][ T7964] bridge_slave_0: entered allmulticast mode
[  167.011548][ T7964] bridge_slave_0: entered promiscuous mode
[  167.014992][ T7964] bridge0: port 2(bridge_slave_1) entered blocking state
[  167.016871][ T7964] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.018799][ T7964] bridge_slave_1: entered allmulticast mode
[  167.020825][ T7964] bridge_slave_1: entered promiscuous mode
[  167.052435][ T7964] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  167.056799][ T7964] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  167.108062][ T7964] team0: Port device team_slave_0 added
[  167.110932][ T7964] team0: Port device team_slave_1 added
[  167.179695][ T7964] batman_adv: batadv0: Adding interface: batadv_slave_0
[  167.182078][ T7964] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  167.189556][ T7964] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  167.215260][   T75] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.232730][ T7964] batman_adv: batadv0: Adding interface: batadv_slave_1
[  167.234986][ T7964] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  167.242210][ T7964] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  167.313733][   T75] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.331833][ T7964] hsr_slave_0: entered promiscuous mode
[  167.336906][ T7964] hsr_slave_1: entered promiscuous mode
[  167.339791][ T7964] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  167.343872][ T7964] Cannot create hsr debugfs directory
[  167.407793][   T75] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.479752][   T75] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.495218][ T7964] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  167.500514][ T7964] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  167.505564][ T7964] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  167.510936][ T7964] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  167.527525][ T7964] bridge0: port 2(bridge_slave_1) entered blocking state
[  167.529316][ T7964] bridge0: port 2(bridge_slave_1) entered forwarding state
[  167.531133][ T7964] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.532922][ T7964] bridge0: port 1(bridge_slave_0) entered forwarding state
[  167.606256][   T75] bridge_slave_1: left allmulticast mode
[  167.608048][   T75] bridge_slave_1: left promiscuous mode
[  167.611145][   T75] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.625390][   T75] bridge_slave_0: left allmulticast mode
[  167.626914][   T75] bridge_slave_0: left promiscuous mode
[  167.629038][   T75] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.694656][ T7987] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  167.694656][ T7987]    program syz.1.538 not setting count and/or reply_len properly
[  168.019636][   T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  168.026609][   T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  168.031929][   T75] bond0 (unregistering): Released all slaves
[  168.041144][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.046975][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.063050][ T7964] 8021q: adding VLAN 0 to HW filter on device bond0
[  168.079292][ T7964] 8021q: adding VLAN 0 to HW filter on device team0
[  168.091867][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.093819][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.096792][ T1146] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.098701][ T1146] bridge0: port 2(bridge_slave_1) entered forwarding state
[  168.268537][ T7964] 8021q: adding VLAN 0 to HW filter on device batadv0
[  168.379831][ T7964] veth0_vlan: entered promiscuous mode
[  168.386281][ T7964] veth1_vlan: entered promiscuous mode
[  168.402381][ T7964] veth0_macvtap: entered promiscuous mode
[  168.408692][ T7964] veth1_macvtap: entered promiscuous mode
[  168.427913][ T7964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  168.430623][ T7964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.434040][ T7964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  168.436944][ T7964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.439432][ T7964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  168.441988][ T7964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.447632][ T7964] batman_adv: batadv0: Interface activated: batadv_slave_0
[  168.454500][ T7964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  168.459263][ T7964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.461838][ T7964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  168.466955][ T7964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.469452][ T7964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  168.472074][ T7964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.476902][ T7964] batman_adv: batadv0: Interface activated: batadv_slave_1
[  168.484207][   T75] hsr_slave_0: left promiscuous mode
[  168.486099][   T75] hsr_slave_1: left promiscuous mode
[  168.488071][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  168.490122][   T75] batman_adv: batadv0: Removing interface: batadv_slave_0
[  168.492552][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  168.503312][   T75] batman_adv: batadv0: Removing interface: batadv_slave_1
[  168.527807][   T75] veth1_macvtap: left promiscuous mode
[  168.529669][   T75] veth0_macvtap: left promiscuous mode
[  168.531237][   T75] veth1_vlan: left promiscuous mode
[  168.532871][   T75] veth0_vlan: left promiscuous mode
[  168.589106][ T8034] netlink: 8 bytes leftover after parsing attributes in process `syz.1.545'.
[  168.706288][ T5964] Bluetooth: hci4: command tx timeout
[  168.767357][ T8043] FAULT_INJECTION: forcing a failure.
[  168.767357][ T8043] name failslab, interval 1, probability 0, space 0, times 0
[  168.770638][ T8043] CPU: 1 UID: 0 PID: 8043 Comm: syz.1.548 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  168.774212][ T8043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.776970][ T8043] Call Trace:
[  168.777859][ T8043]  <TASK>
[  168.778673][ T8043]  dump_stack_lvl+0x16c/0x1f0
[  168.779926][ T8043]  should_fail_ex+0x497/0x5b0
[  168.781211][ T8043]  ? fs_reclaim_acquire+0xae/0x150
[  168.782551][ T8043]  should_failslab+0xc2/0x120
[  168.783812][ T8043]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  168.785250][ T8043]  ? rcu_is_watching+0x12/0xc0
[  168.786492][ T8043]  ? getname_kernel+0x52/0x370
[  168.787762][ T8043]  getname_kernel+0x52/0x370
[  168.788987][ T8043]  kern_path+0x1d/0x50
[  168.790062][ T8043]  ovl_mount_dir+0x13e/0x1f0
[  168.791461][ T8043]  ovl_parse_param+0xf33/0x13d0
[  168.792850][ T8043]  ? __pfx_ovl_parse_param+0x10/0x10
[  168.794282][ T8043]  ? trace_kmalloc+0x2d/0xd0
[  168.795549][ T8043]  ? static_key_count+0x5a/0x70
[  168.796849][ T8043]  ? __pfx_ovl_parse_param+0x10/0x10
[  168.798267][ T8043]  vfs_parse_fs_param+0x208/0x3c0
[  168.799685][ T8043]  vfs_parse_fs_string+0xea/0x150
[  168.801098][ T8043]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  168.803173][ T8043]  ? ovl_next_opt+0x143/0x1c0
[  168.804475][ T8043]  ? __pfx_ovl_next_opt+0x10/0x10
[  168.805819][ T8043]  vfs_parse_monolithic_sep+0x171/0x1f0
[  168.807307][ T8043]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  168.808899][ T8043]  ? alloc_fs_context+0x59b/0x9c0
[  168.810479][ T8043]  path_mount+0x69a/0x1f10
[  168.811752][ T8043]  ? kmem_cache_free+0x152/0x4c0
[  168.813361][ T8043]  ? __pfx_path_mount+0x10/0x10
[  168.815131][ T8043]  ? putname+0x13c/0x180
[  168.816674][ T8043]  __ia32_sys_mount+0x292/0x310
[  168.818304][ T8043]  ? __pfx___ia32_sys_mount+0x10/0x10
[  168.819803][ T8043]  __do_fast_syscall_32+0x73/0x120
[  168.821337][ T8043]  do_fast_syscall_32+0x32/0x80
[  168.822914][ T8043]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  168.824571][ T8043] RIP: 0023:0xf7f76579
[  168.825660][ T8043] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  168.830688][ T8043] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  168.832865][ T8043] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  168.834929][ T8043] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  168.836974][ T8043] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  168.839090][ T8043] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  168.841238][ T8043] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  168.843648][ T8043]  </TASK>
[  168.845022][ T8043] overlayfs: failed to resolve './file1': -12
[  169.299175][ T8052] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  169.569416][   T75] team0 (unregistering): Port device team_slave_1 removed
[  169.694094][   T75] team0 (unregistering): Port device team_slave_0 removed
[  170.292543][ T8055] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  170.292543][ T8055]    program syz.3.551 not setting count and/or reply_len properly
[  170.523354][ T7964] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  170.526495][ T7964] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.529686][ T7964] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  170.533190][ T7964] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  170.635017][ T1201] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.637088][ T1201] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.675151][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.677254][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.721844][ T8073] program syz.0.554 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  170.737987][ T8079] loop2: detected capacity change from 0 to 7
[  170.740762][ T8079] Dev loop2: unable to read RDB block 7
[  170.742442][ T8079]  loop2: unable to read partition table
[  170.744640][ T8079] loop2: partition table beyond EOD, truncated
[  170.746414][ T8079] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  170.772784][ T5964] Bluetooth: hci4: command tx timeout
[  171.082661][ T8103] Invalid logical block size (4864)
[  171.409253][ T8118] FAULT_INJECTION: forcing a failure.
[  171.409253][ T8118] name failslab, interval 1, probability 0, space 0, times 0
[  171.412563][ T8118] CPU: 1 UID: 0 PID: 8118 Comm: syz.3.559 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  171.415271][ T8118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  171.418013][ T8118] Call Trace:
[  171.418889][ T8118]  <TASK>
[  171.419660][ T8118]  dump_stack_lvl+0x16c/0x1f0
[  171.420885][ T8118]  should_fail_ex+0x497/0x5b0
[  171.422106][ T8118]  ? fs_reclaim_acquire+0xae/0x150
[  171.423472][ T8118]  should_failslab+0xc2/0x120
[  171.424751][ T8118]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  171.426483][ T8118]  ? vfs_parse_fs_string+0xc4/0x150
[  171.427865][ T8118]  ? vfs_parse_fs_string+0xf6/0x150
[  171.429206][ T8118]  kmemdup_nul+0x34/0xa0
[  171.430331][ T8118]  vfs_parse_fs_string+0xc4/0x150
[  171.431665][ T8118]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  171.433125][ T8118]  ? ovl_next_opt+0x143/0x1c0
[  171.434335][ T8118]  ? __pfx_ovl_next_opt+0x10/0x10
[  171.435679][ T8118]  vfs_parse_monolithic_sep+0x171/0x1f0
[  171.437118][ T8118]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  171.438726][ T8118]  ? alloc_fs_context+0x59b/0x9c0
[  171.440074][ T8118]  path_mount+0x69a/0x1f10
[  171.441250][ T8118]  ? kmem_cache_free+0x152/0x4c0
[  171.442552][ T8118]  ? __pfx_path_mount+0x10/0x10
[  171.443853][ T8118]  ? putname+0x13c/0x180
[  171.444970][ T8118]  __ia32_sys_mount+0x292/0x310
[  171.446250][ T8118]  ? __pfx___ia32_sys_mount+0x10/0x10
[  171.447675][ T8118]  __do_fast_syscall_32+0x73/0x120
[  171.449012][ T8118]  do_fast_syscall_32+0x32/0x80
[  171.450292][ T8118]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  171.451952][ T8118] RIP: 0023:0xf740e579
[  171.453025][ T8118] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  171.458016][ T8118] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  171.460179][ T8118] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  171.462256][ T8118] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  171.464636][ T8118] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  171.466750][ T8118] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  171.468848][ T8118] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  171.470935][ T8118]  </TASK>
[  171.827039][ T8140] Invalid logical block size (8192)
[  172.028587][ T8147] overlayfs: failed to set uuid (3/file1, err=-1); falling back to uuid=null.
[  172.031781][ T8147] overlayfs: failed to verify upper root origin
[  172.046031][ T8149] loop2: detected capacity change from 0 to 7
[  172.055977][ T8149] Dev loop2: unable to read RDB block 7
[  172.057935][ T8149]  loop2: unable to read partition table
[  172.059927][ T8149] loop2: partition table beyond EOD, truncated
[  172.062138][ T8149] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  172.149426][ T8157] FAULT_INJECTION: forcing a failure.
[  172.149426][ T8157] name failslab, interval 1, probability 0, space 0, times 0
[  172.154038][ T8157] CPU: 0 UID: 0 PID: 8157 Comm: syz.1.568 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  172.156813][ T8157] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.159917][ T8157] Call Trace:
[  172.160797][ T8157]  <TASK>
[  172.161600][ T8157]  dump_stack_lvl+0x16c/0x1f0
[  172.162870][ T8157]  should_fail_ex+0x497/0x5b0
[  172.164150][ T8157]  ? fs_reclaim_acquire+0xae/0x150
[  172.165508][ T8157]  should_failslab+0xc2/0x120
[  172.166769][ T8157]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  172.168502][ T8157]  ? rcu_is_watching+0x12/0xc0
[  172.169909][ T8157]  ? ovl_parse_param+0x4c9/0x13d0
[  172.171274][ T8157]  kstrdup+0x42/0xb0
[  172.172362][ T8157]  ovl_parse_param+0x4c9/0x13d0
[  172.173684][ T8157]  ? __pfx_ovl_parse_param+0x10/0x10
[  172.175100][ T8157]  ? trace_kmalloc+0x2d/0xd0
[  172.176364][ T8157]  ? __kmalloc_node_track_caller_noprof+0x23b/0x520
[  172.178298][ T8157]  ? static_key_count+0x5a/0x70
[  172.179821][ T8157]  ? __pfx_ovl_parse_param+0x10/0x10
[  172.181362][ T8157]  vfs_parse_fs_param+0x208/0x3c0
[  172.182834][ T8157]  vfs_parse_fs_string+0xea/0x150
[  172.184329][ T8157]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  172.185980][ T8157]  ? ovl_next_opt+0x143/0x1c0
[  172.187292][ T8157]  ? __pfx_ovl_next_opt+0x10/0x10
[  172.188678][ T8157]  vfs_parse_monolithic_sep+0x171/0x1f0
[  172.190157][ T8157]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  172.191747][ T8157]  ? alloc_fs_context+0x59b/0x9c0
[  172.193120][ T8157]  path_mount+0x69a/0x1f10
[  172.194333][ T8157]  ? kmem_cache_free+0x152/0x4c0
[  172.195695][ T8157]  ? __pfx_path_mount+0x10/0x10
[  172.196997][ T8157]  ? putname+0x13c/0x180
[  172.198163][ T8157]  __ia32_sys_mount+0x292/0x310
[  172.199532][ T8157]  ? __pfx___ia32_sys_mount+0x10/0x10
[  172.201036][ T8157]  __do_fast_syscall_32+0x73/0x120
[  172.202628][ T8157]  do_fast_syscall_32+0x32/0x80
[  172.204424][ T8157]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  172.206241][ T8157] RIP: 0023:0xf7f76579
[  172.207539][ T8157] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  172.213061][   T31] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  172.213228][ T8157] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  172.217601][ T8157] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  172.219716][ T8157] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  172.221819][ T8157] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  172.223899][ T8157] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  172.225970][ T8157] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  172.228122][ T8157]  </TASK>
[  172.247813][ T8158] syzkaller0: tun_chr_ioctl cmd 1074025677
[  172.250354][ T8158] syzkaller0: linktype set to 0
[  172.260404][ T8158] netlink: 8 bytes leftover after parsing attributes in process `syz.4.566'.
[  172.264026][ T8158] netlink: 8 bytes leftover after parsing attributes in process `syz.4.566'.
[  172.273486][  T835] IPVS: starting estimator thread 0...
[  172.383091][ T8161] IPVS: using max 37 ests per chain, 88800 per kthread
[  172.387234][   T31] usb 5-1: device descriptor read/64, error -71
[  172.761627][   T31] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  172.863179][ T5964] Bluetooth: hci4: command tx timeout
[  172.893784][   T31] usb 5-1: device descriptor read/64, error -71
[  173.003005][   T31] usb usb5-port1: attempt power cycle
[  173.220843][ T8196] loop2: detected capacity change from 0 to 7
[  173.224423][ T8196] Dev loop2: unable to read RDB block 7
[  173.226453][ T8196]  loop2: unable to read partition table
[  173.228326][ T8196] loop2: partition table beyond EOD, truncated
[  173.230563][ T8196] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  173.304067][ T8204] Invalid logical block size (4864)
[  173.338965][ T8206] FAULT_INJECTION: forcing a failure.
[  173.338965][ T8206] name failslab, interval 1, probability 0, space 0, times 0
[  173.342260][ T8206] CPU: 0 UID: 0 PID: 8206 Comm: syz.4.581 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  173.342918][   T31] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  173.344972][ T8206] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.344984][ T8206] Call Trace:
[  173.344989][ T8206]  <TASK>
[  173.344993][ T8206]  dump_stack_lvl+0x16c/0x1f0
[  173.352438][ T8206]  should_fail_ex+0x497/0x5b0
[  173.353634][ T8206]  ? fs_reclaim_acquire+0xae/0x150
[  173.354956][ T8206]  should_failslab+0xc2/0x120
[  173.356182][ T8206]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  173.357786][ T8206]  ? rcu_is_watching+0x12/0xc0
[  173.359026][ T8206]  ? ovl_mount_dir+0x26/0x1f0
[  173.360247][ T8206]  kstrdup+0x42/0xb0
[  173.361228][ T8206]  ovl_mount_dir+0x26/0x1f0
[  173.362391][ T8206]  ovl_parse_param+0xc48/0x13d0
[  173.363651][ T8206]  ? __pfx_ovl_parse_param+0x10/0x10
[  173.364982][ T8206]  ? trace_kmalloc+0x2d/0xd0
[  173.366153][ T8206]  ? static_key_count+0x5a/0x70
[  173.367389][ T8206]  ? __pfx_ovl_parse_param+0x10/0x10
[  173.368786][ T8206]  vfs_parse_fs_param+0x208/0x3c0
[  173.370074][ T8206]  vfs_parse_fs_string+0xea/0x150
[  173.371359][ T8206]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  173.372792][ T8206]  ? ovl_next_opt+0x143/0x1c0
[  173.374314][ T8206]  ? __pfx_ovl_next_opt+0x10/0x10
[  173.375625][ T8206]  vfs_parse_monolithic_sep+0x171/0x1f0
[  173.377326][ T8206]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  173.378899][ T8206]  ? alloc_fs_context+0x59b/0x9c0
[  173.380186][ T8206]  path_mount+0x69a/0x1f10
[  173.381327][ T8206]  ? kmem_cache_free+0x152/0x4c0
[  173.382603][ T8206]  ? __pfx_path_mount+0x10/0x10
[  173.383928][ T8206]  ? putname+0x13c/0x180
[  173.385141][ T8206]  __ia32_sys_mount+0x292/0x310
[  173.386496][ T8206]  ? __pfx___ia32_sys_mount+0x10/0x10
[  173.388027][ T8206]  __do_fast_syscall_32+0x73/0x120
[  173.389364][ T8206]  do_fast_syscall_32+0x32/0x80
[  173.390606][ T8206]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.392211][ T8206] RIP: 0023:0xf7fef579
[  173.393240][ T8206] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  173.398105][ T8206] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  173.400178][ T8206] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  173.402234][ T8206] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  173.404283][ T8206] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  173.406343][ T8206] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  173.408397][ T8206] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  173.410453][ T8206]  </TASK>
[  173.417282][   T31] usb 5-1: device descriptor read/8, error -71
[  173.465728][ T8210] netlink: 12 bytes leftover after parsing attributes in process `syz.4.583'.
[  173.469131][ T8210] team0: Device wg2 is of different type
[  173.658145][   T31] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  173.693612][   T31] usb 5-1: device descriptor read/8, error -71
[  173.858955][   T31] usb usb5-port1: unable to enumerate USB device
[  174.116143][ T8233] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  174.299698][ T8244] infiniband s
z1: set active
[  174.310822][ T8244] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  174.318915][ T8245] infiniband s
z1: set active
[  174.342702][ T8245] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  174.347725][ T6587] lo speed is unknown, defaulting to 1000
[  174.349543][   T59] lo speed is unknown, defaulting to 1000
[  174.526231][ T8251] loop6: detected capacity change from 0 to 524287999
[  174.528321][    C1] blk_print_req_error: 24 callbacks suppressed
[  174.528332][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  174.532560][    C1] buffer_io_error: 24 callbacks suppressed
[  174.532568][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  174.538334][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  174.541614][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  174.544580][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  174.547068][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  174.549316][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  174.551607][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  174.554063][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  174.556442][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  174.558688][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  174.561155][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  174.563811][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  174.566127][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  174.568518][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  174.571011][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  174.573623][ T8251] ldm_validate_partition_table(): Disk read failed.
[  174.575866][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  174.578596][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  174.581365][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  174.583879][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  174.586233][ T8251] Dev loop6: unable to read RDB block 0
[  174.588188][ T8251]  loop6: unable to read partition table
[  174.589739][ T8251] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  174.741621][ T8263] FAULT_INJECTION: forcing a failure.
[  174.741621][ T8263] name failslab, interval 1, probability 0, space 0, times 0
[  174.746602][ T8263] CPU: 1 UID: 0 PID: 8263 Comm: syz.1.600 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  174.750320][ T8263] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.753531][ T8263] Call Trace:
[  174.754750][ T8263]  <TASK>
[  174.755760][ T8263]  dump_stack_lvl+0x16c/0x1f0
[  174.757422][ T8263]  should_fail_ex+0x497/0x5b0
[  174.759016][ T8263]  ? fs_reclaim_acquire+0xae/0x150
[  174.760825][ T8263]  should_failslab+0xc2/0x120
[  174.762423][ T8263]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  174.764579][ T8263]  ? lockdep_hardirqs_on+0x7c/0x110
[  174.766415][ T8263]  ? ovl_do_parse_layer+0x2f/0x10f0
[  174.768305][ T8263]  kstrdup+0x42/0xb0
[  174.769467][ T8263]  ovl_do_parse_layer+0x2f/0x10f0
[  174.770782][ T8263]  ? ovl_mount_dir+0x15f/0x1f0
[  174.772160][ T8263]  ovl_parse_param+0xc72/0x13d0
[  174.773537][ T8263]  ? __pfx_ovl_parse_param+0x10/0x10
[  174.774973][ T8263]  ? trace_kmalloc+0x2d/0xd0
[  174.776227][ T8263]  ? static_key_count+0x5a/0x70
[  174.777524][ T8263]  ? __pfx_ovl_parse_param+0x10/0x10
[  174.778904][ T8263]  vfs_parse_fs_param+0x208/0x3c0
[  174.780596][ T8263]  vfs_parse_fs_string+0xea/0x150
[  174.782397][ T8263]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  174.784433][ T8263]  ? ovl_next_opt+0x143/0x1c0
[  174.786191][ T8263]  ? __pfx_ovl_next_opt+0x10/0x10
[  174.788071][ T8263]  vfs_parse_monolithic_sep+0x171/0x1f0
[  174.790110][ T8263]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  174.792173][ T8263]  ? alloc_fs_context+0x59b/0x9c0
[  174.794004][ T8263]  path_mount+0x69a/0x1f10
[  174.795657][ T8263]  ? kmem_cache_free+0x152/0x4c0
[  174.797501][ T8263]  ? __pfx_path_mount+0x10/0x10
[  174.799304][ T8263]  ? putname+0x13c/0x180
[  174.800841][ T8263]  __ia32_sys_mount+0x292/0x310
[  174.802572][ T8263]  ? __pfx___ia32_sys_mount+0x10/0x10
[  174.804561][ T8263]  __do_fast_syscall_32+0x73/0x120
[  174.806320][ T8263]  do_fast_syscall_32+0x32/0x80
[  174.807982][ T8263]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  174.810062][ T8263] RIP: 0023:0xf7f76579
[  174.811240][ T8263] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  174.818754][ T8263] RSP: 002b:00000000f50e657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  174.821800][ T8263] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  174.824660][ T8263] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  174.827497][ T8263] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  174.830090][ T8263] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  174.832182][ T8263] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  174.834167][ T8263]  </TASK>
[  174.932740][ T5964] Bluetooth: hci4: command tx timeout
[  174.976440][ T8268] fuse: Unknown parameter '0x0000000000000007ÿ'
[  174.995001][ T8268] Process accounting resumed
[  175.288373][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  175.288388][   T40] audit: type=1326 audit(1733861747.078:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7fc00000
[  175.297729][   T40] audit: type=1326 audit(1733861747.078:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7fc00000
[  175.304662][   T40] audit: type=1326 audit(1733861747.078:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7fc00000
[  175.313587][   T40] audit: type=1326 audit(1733861747.078:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7fc00000
[  175.321073][   T40] audit: type=1326 audit(1733861747.078:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7fc00000
[  175.328597][   T40] audit: type=1326 audit(1733861747.078:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7fc00000
[  175.336613][   T40] audit: type=1326 audit(1733861747.088:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7fc00000
[  175.343938][   T40] audit: type=1326 audit(1733861747.088:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7fc00000
[  175.349490][   T40] audit: type=1326 audit(1733861747.088:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7fc00000
[  175.355824][   T40] audit: type=1326 audit(1733861747.108:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8283 comm="syz.4.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fef579 code=0x7fc00000
[  175.367381][ T8296] loop2: detected capacity change from 0 to 7
[  175.369829][ T8296] Dev loop2: unable to read RDB block 7
[  175.371647][ T8296]  loop2: unable to read partition table
[  175.373798][ T8296] loop2: partition table beyond EOD, truncated
[  175.375668][ T8296] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  175.509939][ T8306] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  175.517675][ T8305] netlink: 224 bytes leftover after parsing attributes in process `syz.4.614'.
[  176.046085][ T8309] sg_write: data in/out 1836477195/60 bytes for SCSI command 0x0-- guessing data in;
[  176.046085][ T8309]    program syz.3.613 not setting count and/or reply_len properly
[  176.727618][ T8325] netlink: 8 bytes leftover after parsing attributes in process `syz.1.619'.
[  176.959264][ T8341] openvswitch: netlink: IP tunnel dst address not specified
[  176.963207][ T8342] openvswitch: netlink: IP tunnel dst address not specified
[  178.063082][  T110] 
[  178.063913][  T110] ======================================================
[  178.065734][  T110] WARNING: possible circular locking dependency detected
[  178.067633][  T110] 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0 Not tainted
[  178.070348][  T110] ------------------------------------------------------
[  178.073909][  T110] kswapd0/110 is trying to acquire lock:
[  178.075704][  T110] ffff888044223b58 (&q->q_usage_counter(io)#68){++++}-{0:0}, at: blk_mq_submit_bio+0x7ca/0x24c0
[  178.079082][  T110] 
[  178.079082][  T110] but task is already holding lock:
[  178.081320][  T110] ffffffff8df4d660 (fs_reclaim){+.+.}-{0:0}, at: balance_pgdat+0xcd9/0x18f0
[  178.083680][  T110] 
[  178.083680][  T110] which lock already depends on the new lock.
[  178.083680][  T110] 
[  178.087249][  T110] 
[  178.087249][  T110] the existing dependency chain (in reverse order) is:
[  178.090041][  T110] 
[  178.090041][  T110] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  178.092198][  T110]        fs_reclaim_acquire+0x102/0x150
[  178.093696][  T110]        __kmalloc_node_noprof+0xb7/0x520
[  178.095210][  T110]        __kvmalloc_node_noprof+0xad/0x1a0
[  178.096793][  T110]        sbitmap_init_node+0x1ca/0x770
[  178.098270][  T110]        scsi_realloc_sdev_budget_map+0x2c7/0x610
[  178.100174][  T110]        scsi_add_lun+0x11b4/0x1fd0
[  178.101779][  T110]        scsi_probe_and_add_lun+0x4fa/0xda0
[  178.103969][  T110]        __scsi_add_device+0x24b/0x290
[  178.105415][  T110]        ata_scsi_scan_host+0x215/0x780
[  178.106980][  T110]        async_run_entry_fn+0x9c/0x530
[  178.108546][  T110]        process_one_work+0x958/0x1b30
[  178.110004][  T110]        worker_thread+0x6c8/0xf00
[  178.111428][  T110]        kthread+0x2c1/0x3a0
[  178.112653][  T110]        ret_from_fork+0x45/0x80
[  178.113992][  T110]        ret_from_fork_asm+0x1a/0x30
[  178.115423][  T110] 
[  178.115423][  T110] -> #0 (&q->q_usage_counter(io)#68){++++}-{0:0}:
[  178.117702][  T110]        __lock_acquire+0x249e/0x3c40
[  178.119193][  T110]        lock_acquire.part.0+0x11b/0x380
[  178.120671][  T110]        __bio_queue_enter+0x4c6/0x740
[  178.122267][  T110]        blk_mq_submit_bio+0x7ca/0x24c0
[  178.122943][ T8380] netlink: 'syz.1.628': attribute type 4 has an invalid length.
[  178.123774][  T110]        __submit_bio+0x384/0x540
[  178.127763][  T110]        submit_bio_noacct_nocheck+0x698/0xd70
[  178.129777][  T110]        submit_bio_noacct+0x93a/0x1e20
[  178.131602][  T110]        __swap_writepage+0x3a3/0xf50
[  178.133513][  T110]        swap_writepage+0x403/0x1120
[  178.135253][  T110]        pageout+0x3b2/0xaa0
[  178.136533][  T110]        shrink_folio_list+0x3025/0x42d0
[  178.138096][  T110]        evict_folios+0x6e3/0x19c0
[  178.140019][  T110]        try_to_shrink_lruvec+0x61e/0xa80
[  178.142343][  T110]        shrink_one+0x3e3/0x7b0
[  178.144174][  T110]        shrink_node+0xbf0/0x3f20
[  178.145923][  T110]        balance_pgdat+0xc1f/0x18f0
[  178.147805][  T110]        kswapd+0x605/0xc00
[  178.149383][  T110]        kthread+0x2c1/0x3a0
[  178.150966][  T110]        ret_from_fork+0x45/0x80
[  178.152632][  T110]        ret_from_fork_asm+0x1a/0x30
[  178.154437][  T110] 
[  178.154437][  T110] other info that might help us debug this:
[  178.154437][  T110] 
[  178.157851][  T110]  Possible unsafe locking scenario:
[  178.157851][  T110] 
[  178.160487][  T110]        CPU0                    CPU1
[  178.162319][  T110]        ----                    ----
[  178.164132][  T110]   lock(fs_reclaim);
[  178.165834][  T110]                                lock(&q->q_usage_counter(io)#68);
[  178.169388][  T110]                                lock(fs_reclaim);
[  178.172256][  T110]   rlock(&q->q_usage_counter(io)#68);
[  178.174750][  T110] 
[  178.174750][  T110]  *** DEADLOCK ***
[  178.174750][  T110] 
[  178.177686][  T110] 1 lock held by kswapd0/110:
[  178.179293][  T110]  #0: ffffffff8df4d660 (fs_reclaim){+.+.}-{0:0}, at: balance_pgdat+0xcd9/0x18f0
[  178.182361][  T110] 
[  178.182361][  T110] stack backtrace:
[  178.184364][  T110] CPU: 2 UID: 0 PID: 110 Comm: kswapd0 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[  178.187846][  T110] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.191428][  T110] Call Trace:
[  178.192555][  T110]  <TASK>
[  178.193577][  T110]  dump_stack_lvl+0x116/0x1f0
[  178.195173][  T110]  print_circular_bug+0x41c/0x610
[  178.196872][  T110]  check_noncircular+0x31a/0x400
[  178.198538][  T110]  ? __pfx_check_noncircular+0x10/0x10
[  178.200376][  T110]  ? lockdep_lock+0xc6/0x200
[  178.201935][  T110]  ? __pfx_lockdep_lock+0x10/0x10
[  178.203680][  T110]  __lock_acquire+0x249e/0x3c40
[  178.205327][  T110]  ? __pfx___lock_acquire+0x10/0x10
[  178.207096][  T110]  lock_acquire.part.0+0x11b/0x380
[  178.208930][  T110]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  178.210820][  T110]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  178.212825][  T110]  ? rcu_is_watching+0x12/0xc0
[  178.214473][  T110]  ? trace_lock_acquire+0x14e/0x1f0
[  178.216267][  T110]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  178.218044][  T110]  ? lock_acquire+0x2f/0xb0
[  178.219589][  T110]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  178.221345][  T110]  __bio_queue_enter+0x4c6/0x740
[  178.223077][  T110]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  178.225040][  T110]  ? __pfx___bio_queue_enter+0x10/0x10
[  178.227126][  T110]  ? blk_mq_submit_bio+0x7b5/0x24c0
[  178.228882][  T110]  ? __pfx_autoremove_wake_function+0x10/0x10
[  178.231164][  T110]  blk_mq_submit_bio+0x7ca/0x24c0
[  178.233013][  T110]  ? __pfx_blk_mq_submit_bio+0x10/0x10
[  178.234836][  T110]  ? __pfx___lock_acquire+0x10/0x10
[  178.236539][  T110]  ? __pfx_mark_lock+0x10/0x10
[  178.238131][  T110]  ? lock_acquire.part.0+0x11b/0x380
[  178.239851][  T110]  __submit_bio+0x384/0x540
[  178.241373][  T110]  ? __pfx___submit_bio+0x10/0x10
[  178.243123][  T110]  ? submit_bio_noacct_nocheck+0x698/0xd70
[  178.245112][  T110]  submit_bio_noacct_nocheck+0x698/0xd70
[  178.247025][  T110]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[  178.249090][  T110]  ? __pfx___might_resched+0x10/0x10
[  178.250862][  T110]  ? __pfx___folio_start_writeback+0x10/0x10
[  178.252899][  T110]  submit_bio_noacct+0x93a/0x1e20
[  178.254577][  T110]  __swap_writepage+0x3a3/0xf50
[  178.256237][  T110]  swap_writepage+0x403/0x1120
[  178.257882][  T110]  ? folio_clear_dirty_for_io+0x112/0x800
[  178.259813][  T110]  pageout+0x3b2/0xaa0
[  178.261195][  T110]  ? __pfx_pageout+0x10/0x10
[  178.262817][  T110]  ? __pfx_try_to_unmap_one+0x10/0x10
[  178.264630][  T110]  ? __pfx_folio_not_mapped+0x10/0x10
[  178.266439][  T110]  ? __pfx_folio_lock_anon_vma_read+0x10/0x10
[  178.268444][  T110]  ? folio_mark_dirty+0xd8/0x150
[  178.270034][  T110]  shrink_folio_list+0x3025/0x42d0
[  178.271772][  T110]  ? __pfx_shrink_folio_list+0x10/0x10
[  178.273567][  T110]  ? isolate_folios+0x1c57/0x3830
[  178.275243][  T110]  ? hlock_class+0x4e/0x130
[  178.276700][  T110]  ? mark_lock+0xb5/0xc60
[  178.278160][  T110]  ? mark_held_locks+0x9f/0xe0
[  178.279714][  T110]  evict_folios+0x6e3/0x19c0
[  178.281178][  T110]  ? __pfx_evict_folios+0x10/0x10
[  178.282805][  T110]  ? __pfx___might_resched+0x10/0x10
[  178.284494][  T110]  try_to_shrink_lruvec+0x61e/0xa80
[  178.286146][  T110]  ? find_held_lock+0x2d/0x110
[  178.287756][  T110]  ? __pfx_try_to_shrink_lruvec+0x10/0x10
[  178.289570][  T110]  ? shrink_node+0xbd0/0x3f20
[  178.291103][  T110]  shrink_one+0x3e3/0x7b0
[  178.292502][  T110]  ? shrink_node+0xbd0/0x3f20
[  178.294072][  T110]  shrink_node+0xbf0/0x3f20
[  178.295541][  T110]  ? shrink_node+0x93e/0x3f20
[  178.297034][  T110]  ? __pfx_shrink_node+0x10/0x10
[  178.298626][  T110]  ? __pfx_lock_release+0x10/0x10
[  178.300265][  T110]  ? percpu_ref_put_many.constprop.0+0x1b/0x150
[  178.302276][  T110]  ? balance_pgdat+0xc1f/0x18f0
[  178.303869][  T110]  balance_pgdat+0xc1f/0x18f0
[  178.305415][  T110]  ? __pfx_balance_pgdat+0x10/0x10
[  178.307066][  T110]  ? __switch_to+0x749/0x1190
[  178.308606][  T110]  ? __schedule+0xe60/0x5ad0
[  178.310106][  T110]  ? __pfx___lock_acquire+0x10/0x10
[  178.311822][  T110]  ? __pfx___might_resched+0x10/0x10
[  178.313516][  T110]  ? set_pgdat_percpu_threshold+0xc3/0x330
[  178.315388][  T110]  kswapd+0x605/0xc00
[  178.316680][  T110]  ? __pfx_kswapd+0x10/0x10
[  178.318154][  T110]  ? __pfx_autoremove_wake_function+0x10/0x10
[  178.320115][  T110]  ? lockdep_hardirqs_on+0x7c/0x110
[  178.321779][  T110]  ? __kthread_parkme+0x148/0x220
[  178.323421][  T110]  ? __pfx_kswapd+0x10/0x10
[  178.324858][  T110]  kthread+0x2c1/0x3a0
[  178.326179][  T110]  ? _raw_spin_unlock_irq+0x23/0x50
[  178.327877][  T110]  ? __pfx_kthread+0x10/0x10
[  178.329361][  T110]  ret_from_fork+0x45/0x80
[  178.330809][  T110]  ? __pfx_kthread+0x10/0x10
[  178.332311][  T110]  ret_from_fork_asm+0x1a/0x30
[  178.333851][  T110]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  178.344607][ T8382] netlink: 20 bytes leftover after parsing attributes in process `syz.4.630'.
[  178.644054][ T8372] caif:caif_disconnect_client(): nothing to disconnect
[  178.650670][   T16] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.705563][   T16] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.766998][   T16] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.824728][   T16] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.880730][   T16] bridge_slave_1: left allmulticast mode
[  178.882709][   T16] bridge_slave_1: left promiscuous mode
[  178.884397][   T16] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.887533][   T16] bridge_slave_0: left allmulticast mode
[  178.889043][   T16] bridge_slave_0: left promiscuous mode
[  178.892821][   T16] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.993523][   T16] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  178.998652][   T16] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  179.002888][   T16] bond0 (unregistering): Released all slaves
[  179.314452][   T16] hsr_slave_0: left promiscuous mode
[  179.316696][   T16] hsr_slave_1: left promiscuous mode
[  179.318695][   T16] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  179.320654][   T16] batman_adv: batadv0: Removing interface: batadv_slave_0
[  179.323982][   T16] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  179.325969][   T16] batman_adv: batadv0: Removing interface: batadv_slave_1
[  179.329186][   T16] veth1_macvtap: left promiscuous mode
[  179.330648][   T16] veth0_macvtap: left promiscuous mode
[  179.332131][   T16] veth1_vlan: left promiscuous mode
[  179.334431][   T16] veth0_vlan: left promiscuous mode
[  179.501063][   T16] team0 (unregistering): Port device team_slave_1 removed
[  179.544617][   T16] team0 (unregistering): Port device team_slave_0 removed
[  180.025743][   T16] IPVS: stop unused estimator thread 0...
[  180.086368][   T16] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.145081][   T16] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.190028][   T16] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.266351][   T16] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.444247][   T16] bond0 (unregistering): Released all slaves
[  180.715820][   T16] hsr_slave_0: left promiscuous mode
[  180.717962][   T16] hsr_slave_1: left promiscuous mode
[  180.721590][   T16] veth1_macvtap: left promiscuous mode
[  180.723655][   T16] veth0_macvtap: left promiscuous mode
[  180.725332][   T16] veth1_vlan: left promiscuous mode
[  180.726732][   T16] veth0_vlan: left promiscuous mode
[  181.727505][   T16] IPVS: stop unused estimator thread 0...

VM DIAGNOSIS:
20:15:50  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffc900043a7b60 RCX=0000000000000000 RDX=0000000000000000
RSI=ffffffff84c8e4c4 RDI=ffffc900043a7b60 RBP=ffffc900043a7b20 RSP=ffffc900043a7a80
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000000 R13=ffffc900043a7b60 R14=ffffc900043a7b28 R15=0000000000000000
RIP=ffffffff84c8e4ed RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020035000 CR3=000000001f690000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=ffff88806c6257c0 RCX=ffffc90032389000 RDX=1ffff1100d8c4af8
RSI=ffffffff8163d94d RDI=ffff88806c6257c4 RBP=0000000000000000 RSP=ffffc900061f77c8
R8 =0000000000000001 R9 =0000000000000000 R10=ffffc900061f78f8 R11=0000000000000000
R12=0000000000000002 R13=0000000000000000 R14=0000000000000000 R15=ffff888067ceaea8
RIP=ffffffff8163d962 RFL=00000a03 [-O----C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020fee000 CR3=000000001f3c8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85142c90 RDI=ffffffff9a662300 RBP=ffffffff9a6622c0 RSP=ffffc900014fe1a8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff34cc4b2 R15=dffffc0000000000
RIP=ffffffff85142cb7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fc0123f93b0 CR3=0000000024cfc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000080000000 RBX=dffffc0000000000 RCX=ffffffff82053876 RDX=ffff88800069c880
RSI=000000000000001f RDI=0000000000000003 RBP=ffff888041cc9090 RSP=ffffc90002f46f68
R8 =0000000000000003 R9 =000000000000001f R10=0000000000000000 R11=000000000000e15b
R12=0000000000000001 R13=0000000000000000 R14=0000000000000001 R15=0000000000140cca
RIP=ffffffff81993e08 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020000200 CR3=000000002196e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000