last executing test programs:

3m24.233077032s ago: executing program 0 (id=27):
mkdir(&(0x7f0000000580)='./file0\x00', 0x65)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x2b, 0x0, 0x20, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x80}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x0, 0x1, 0x4, 0x0, 0xd98, 0x0, {0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x8}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
creat(&(0x7f0000000380)='./file0/file0\x00', 0x120)
open(&(0x7f00000001c0)='./file0/file0\x00', 0x20002, 0x8)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$int_in(r2, 0x5452, &(0x7f00000000c0)=0x81)
sendmsg$sock(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000040)=@phonet={0x23, 0x0, 0x0, 0x27}, 0x80, 0x0}, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0xc7}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_128={{0x303}, "cfc86a00", "4617a9f6040839230fb7fead776dd8dc", "c6db0872", "a44a883fca4400"}, 0x28)
recvmmsg(r3, &(0x7f0000000b00)=[{{0x0, 0x0, &(0x7f00000000c0), 0x1}, 0xa}, {{0x0, 0x0, 0x0}, 0x8}], 0x47, 0x0, 0x0)
ioctl$int_in(r3, 0x5452, &(0x7f0000000000)=0x8)
shutdown(r3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000080)={'gre0\x00', &(0x7f0000000040)=@ethtool_eee={0x44, 0x2, 0x0, 0x3, 0x6, 0x2, 0xbb, 0x80, [0x4, 0x2]}})

3m23.372711855s ago: executing program 0 (id=42):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x10000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffd}, {0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @private}, 0x2, 0x33}, 0x0, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x3, 0x0, 0xb7}}, 0xe8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_int(r2, 0x29, 0x35, 0x0, &(0x7f0000003240))
sendto$inet(r1, 0x0, 0x0, 0x20004800, 0x0, 0x0)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)

3m22.812218023s ago: executing program 0 (id=45):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB="820000000000000005010040"])
readv(0xffffffffffffffff, 0x0, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205647, &(0x7f0000000080)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f90e, 0x1ff, '\x00', @value64=0xfffffffffffffffe}})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r6, &(0x7f0000000000)=[{&(0x7f00000000c0)="14", 0x1f68}], 0x2)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x1], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r7, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
r8 = open$dir(&(0x7f0000000080)='./file0\x00', 0x4182, 0x48)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r8, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02001c00004a"})

3m22.642705297s ago: executing program 0 (id=47):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000000)='./file0\x00', &(0x7f0000000240)='vxfs\x00', 0x0, 0x0)

3m22.571515683s ago: executing program 0 (id=48):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00000e7000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, 0x0}], 0x1, 0x60, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events.local\x00', 0x275a, 0x0)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
dup2(r4, r3)
close_range(r0, r4, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000b, 0x12, r3, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3m22.322782068s ago: executing program 0 (id=51):
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xf0dd, 0x8}}, './file0\x00'})
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_VLAN(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r1, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x3}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xef9}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc845}, 0x40080d1)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_LIST(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x34, r3, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @remote}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0xc0)
r4 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='siox_set_data\x00', r4, 0x0, 0x81}, 0x18)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000380)={'wlan1\x00'})
r5 = getpid()
process_vm_writev(r5, &(0x7f0000000480)=[{&(0x7f00000003c0)=""/143, 0x8f}], 0x1, &(0x7f0000000780)=[{&(0x7f00000004c0)=""/225, 0xe1}, {&(0x7f00000005c0)=""/16, 0x10}, {&(0x7f0000000600)=""/6, 0x6}, {&(0x7f0000000640)=""/156, 0x9c}, {&(0x7f0000000700)=""/65, 0x41}], 0x5, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(r2, &(0x7f00000008c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x30, r3, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @rand_addr=0x64010101}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @local}]}, 0x30}, 0x1, 0x0, 0x0, 0x40084}, 0x4008081)
getsockopt(r4, 0x36d, 0x6, &(0x7f0000000900)=""/205, &(0x7f0000000a00)=0xcd)
sendmsg$nl_route_sched(r4, &(0x7f0000000c40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000c00)={&(0x7f0000000a80)=@delqdisc={0x154, 0x25, 0x100, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xffff, 0x8}, {0x3, 0xf}, {0xffff, 0xf}}, [@TCA_STAB={0x34, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x2, 0x0, 0x4, 0x4, 0x0, 0x7, 0x0, 0x8}}, {0x14, 0x2, [0x4, 0x2, 0xf, 0x3, 0x9863, 0x1, 0x40, 0x200]}}]}, @TCA_STAB={0xec, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0xfb, 0xff, 0xff6e, 0x7, 0x2, 0x5, 0x7, 0x1}}, {0x6, 0x2, [0x0]}}, {{0x1c, 0x1, {0x6, 0x8, 0x800, 0x7fff, 0x2, 0x5, 0xc, 0x2}}, {0x8, 0x2, [0x7, 0x2]}}, {{0x1c, 0x1, {0x40, 0x8, 0x40, 0x100, 0x1, 0x0, 0x5, 0x5}}, {0xe, 0x2, [0x9, 0x3, 0x8, 0xf1, 0x7]}}, {{0x1c, 0x1, {0x8, 0x15, 0x4, 0x677, 0x0, 0x52, 0x5, 0x4}}, {0xc, 0x2, [0x4, 0x7, 0x5, 0x8]}}, {{0x1c, 0x1, {0x8b, 0x4, 0x96, 0xffffff86, 0x0, 0x2, 0x2, 0x2}}, {0x8, 0x2, [0x1, 0x57f]}}, {{0x1c, 0x1, {0x40, 0x5, 0x3, 0x1, 0x1, 0xc05d7fd9, 0x0, 0x4}}, {0xc, 0x2, [0x3, 0x1, 0x1, 0x1]}}]}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x1}, @TCA_RATE={0x6, 0x5, {0x22, 0x9}}]}, 0x154}, 0x1, 0x0, 0x0, 0x8041}, 0x2008000)
pipe2$watch_queue(&(0x7f0000000c80)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x80)
setsockopt$inet6_MCAST_MSFILTER(r6, 0x29, 0x30, &(0x7f0000000cc0)={0x7, {{0xa, 0x4e22, 0x3, @mcast2, 0x6}}, 0x0, 0x8, [{{0xa, 0x4e24, 0xfffffffb, @local, 0x6}}, {{0xa, 0x4e22, 0xd425, @loopback, 0x7}}, {{0xa, 0x4e21, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x800}}, {{0xa, 0x4e21, 0xc, @empty, 0x6}}, {{0xa, 0x4e23, 0x5, @dev={0xfe, 0x80, '\x00', 0x38}, 0x80}}, {{0xa, 0x4e22, 0x5, @local, 0x2}}, {{0xa, 0x4e20, 0x10001, @private1={0xfc, 0x1, '\x00', 0x1}, 0x486}}, {{0xa, 0x4e21, 0x8000, @empty, 0x9}}]}, 0x490)
recvmsg$can_raw(r4, &(0x7f0000001500)={&(0x7f0000001180)=@hci, 0x80, &(0x7f0000001400)=[{&(0x7f0000001200)=""/214, 0xd6}, {&(0x7f0000001300)=""/247, 0xf7}], 0x2, &(0x7f0000001440)=""/175, 0xaf}, 0x2002)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r6, 0x8982, &(0x7f0000001540))
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000001580)='dctcp\x00', 0x6)
syz_emit_vhci(&(0x7f00000015c0)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001640), r2)
sendmsg$IEEE802154_LLSEC_LIST_DEV(r2, &(0x7f0000001700)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000016c0)={&(0x7f0000001680)={0x14, r7, 0x1, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x2000c850)
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000001740)={0x0, 0x1})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000002740)='./cgroup/syz1\x00', 0x1ff)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000027c0), r4)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r4, &(0x7f0000002880)={&(0x7f0000002780)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000002840)={&(0x7f0000002800)={0x30, r8, 0x200, 0x70bd27, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x9, 0x4c}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5f8b}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xd}]}, 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
r9 = syz_genetlink_get_family_id$nbd(&(0x7f0000002900), r2)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f0000002a00)={&(0x7f00000028c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000029c0)={&(0x7f0000002940)={0x68, r9, 0x10, 0x70bd26, 0x25dfdbfe, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0xffff}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x8000}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xe}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7fff}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xada0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x22e}]}, 0x68}, 0x1, 0x0, 0x0, 0x410c0}, 0x4040050)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_OPTIONS_GET(r10, &(0x7f0000002cc0)={&(0x7f0000002a40)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000002c80)={&(0x7f0000002b40)={0x108, 0x0, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [{{0x8}, {0x74, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xfffffc01}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}]}}, {{0x8}, {0x70, 0x2, 0x0, 0x1, [{0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0x7, 0x80, 0xf, 0x4}, {0x9, 0x9, 0x3, 0x7}, {0x2, 0xd8, 0x1, 0x80000001}, {0x401, 0xd, 0xea, 0x8}, {0x9, 0x4, 0xd, 0x1}, {0xb5, 0x9, 0xf8}, {0x0, 0xff, 0xcf}]}}}]}}]}, 0x108}, 0x1, 0x0, 0x0, 0x20048841}, 0x4000000)

3m22.263090809s ago: executing program 32 (id=51):
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xf0dd, 0x8}}, './file0\x00'})
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_VLAN(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r1, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x3}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xef9}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc845}, 0x40080d1)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_LIST(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x34, r3, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @remote}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0xc0)
r4 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='siox_set_data\x00', r4, 0x0, 0x81}, 0x18)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000380)={'wlan1\x00'})
r5 = getpid()
process_vm_writev(r5, &(0x7f0000000480)=[{&(0x7f00000003c0)=""/143, 0x8f}], 0x1, &(0x7f0000000780)=[{&(0x7f00000004c0)=""/225, 0xe1}, {&(0x7f00000005c0)=""/16, 0x10}, {&(0x7f0000000600)=""/6, 0x6}, {&(0x7f0000000640)=""/156, 0x9c}, {&(0x7f0000000700)=""/65, 0x41}], 0x5, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(r2, &(0x7f00000008c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x30, r3, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @rand_addr=0x64010101}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @local}]}, 0x30}, 0x1, 0x0, 0x0, 0x40084}, 0x4008081)
getsockopt(r4, 0x36d, 0x6, &(0x7f0000000900)=""/205, &(0x7f0000000a00)=0xcd)
sendmsg$nl_route_sched(r4, &(0x7f0000000c40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000c00)={&(0x7f0000000a80)=@delqdisc={0x154, 0x25, 0x100, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xffff, 0x8}, {0x3, 0xf}, {0xffff, 0xf}}, [@TCA_STAB={0x34, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x2, 0x0, 0x4, 0x4, 0x0, 0x7, 0x0, 0x8}}, {0x14, 0x2, [0x4, 0x2, 0xf, 0x3, 0x9863, 0x1, 0x40, 0x200]}}]}, @TCA_STAB={0xec, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0xfb, 0xff, 0xff6e, 0x7, 0x2, 0x5, 0x7, 0x1}}, {0x6, 0x2, [0x0]}}, {{0x1c, 0x1, {0x6, 0x8, 0x800, 0x7fff, 0x2, 0x5, 0xc, 0x2}}, {0x8, 0x2, [0x7, 0x2]}}, {{0x1c, 0x1, {0x40, 0x8, 0x40, 0x100, 0x1, 0x0, 0x5, 0x5}}, {0xe, 0x2, [0x9, 0x3, 0x8, 0xf1, 0x7]}}, {{0x1c, 0x1, {0x8, 0x15, 0x4, 0x677, 0x0, 0x52, 0x5, 0x4}}, {0xc, 0x2, [0x4, 0x7, 0x5, 0x8]}}, {{0x1c, 0x1, {0x8b, 0x4, 0x96, 0xffffff86, 0x0, 0x2, 0x2, 0x2}}, {0x8, 0x2, [0x1, 0x57f]}}, {{0x1c, 0x1, {0x40, 0x5, 0x3, 0x1, 0x1, 0xc05d7fd9, 0x0, 0x4}}, {0xc, 0x2, [0x3, 0x1, 0x1, 0x1]}}]}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x1}, @TCA_RATE={0x6, 0x5, {0x22, 0x9}}]}, 0x154}, 0x1, 0x0, 0x0, 0x8041}, 0x2008000)
pipe2$watch_queue(&(0x7f0000000c80)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x80)
setsockopt$inet6_MCAST_MSFILTER(r6, 0x29, 0x30, &(0x7f0000000cc0)={0x7, {{0xa, 0x4e22, 0x3, @mcast2, 0x6}}, 0x0, 0x8, [{{0xa, 0x4e24, 0xfffffffb, @local, 0x6}}, {{0xa, 0x4e22, 0xd425, @loopback, 0x7}}, {{0xa, 0x4e21, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x800}}, {{0xa, 0x4e21, 0xc, @empty, 0x6}}, {{0xa, 0x4e23, 0x5, @dev={0xfe, 0x80, '\x00', 0x38}, 0x80}}, {{0xa, 0x4e22, 0x5, @local, 0x2}}, {{0xa, 0x4e20, 0x10001, @private1={0xfc, 0x1, '\x00', 0x1}, 0x486}}, {{0xa, 0x4e21, 0x8000, @empty, 0x9}}]}, 0x490)
recvmsg$can_raw(r4, &(0x7f0000001500)={&(0x7f0000001180)=@hci, 0x80, &(0x7f0000001400)=[{&(0x7f0000001200)=""/214, 0xd6}, {&(0x7f0000001300)=""/247, 0xf7}], 0x2, &(0x7f0000001440)=""/175, 0xaf}, 0x2002)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r6, 0x8982, &(0x7f0000001540))
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000001580)='dctcp\x00', 0x6)
syz_emit_vhci(&(0x7f00000015c0)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001640), r2)
sendmsg$IEEE802154_LLSEC_LIST_DEV(r2, &(0x7f0000001700)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000016c0)={&(0x7f0000001680)={0x14, r7, 0x1, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x2000c850)
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000001740)={0x0, 0x1})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000002740)='./cgroup/syz1\x00', 0x1ff)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000027c0), r4)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r4, &(0x7f0000002880)={&(0x7f0000002780)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000002840)={&(0x7f0000002800)={0x30, r8, 0x200, 0x70bd27, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x9, 0x4c}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5f8b}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xd}]}, 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
r9 = syz_genetlink_get_family_id$nbd(&(0x7f0000002900), r2)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f0000002a00)={&(0x7f00000028c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000029c0)={&(0x7f0000002940)={0x68, r9, 0x10, 0x70bd26, 0x25dfdbfe, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0xffff}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x8000}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xe}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7fff}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xada0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x22e}]}, 0x68}, 0x1, 0x0, 0x0, 0x410c0}, 0x4040050)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_OPTIONS_GET(r10, &(0x7f0000002cc0)={&(0x7f0000002a40)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000002c80)={&(0x7f0000002b40)={0x108, 0x0, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [{{0x8}, {0x74, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xfffffc01}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}]}}, {{0x8}, {0x70, 0x2, 0x0, 0x1, [{0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0x7, 0x80, 0xf, 0x4}, {0x9, 0x9, 0x3, 0x7}, {0x2, 0xd8, 0x1, 0x80000001}, {0x401, 0xd, 0xea, 0x8}, {0x9, 0x4, 0xd, 0x1}, {0xb5, 0x9, 0xf8}, {0x0, 0xff, 0xcf}]}}}]}}]}, 0x108}, 0x1, 0x0, 0x0, 0x20048841}, 0x4000000)

2m45.321518185s ago: executing program 1 (id=684):
r0 = socket$netlink(0x10, 0x3, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'ip6erspan0\x00', <r1=>0x0})
r2 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f00000000c0))
r4 = syz_genetlink_get_family_id$nl80211(0x0, r3)
r5 = openat$cgroup_subtree(r3, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu '], 0x5)
write$cgroup_subtree(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="2b72646d61205176aecabb7fbfeb3c1aaa863cd9addbe23ca67b6683cc955e11b1a96845c5dac1fc11"], 0x6)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000001d00070f030000000100000007000000", @ANYRES32=r1, @ANYBLOB="80000e"], 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x4004814)
r6 = io_uring_setup(0xf08, &(0x7f000000c480)={0x0, 0x826e, 0x10000, 0x3, 0x6})
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f0000000300)=[{&(0x7f0000000080)=""/36, 0x24}], 0x1)
syz_clone3(&(0x7f0000000000)={0x285002400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x46)
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000000440)={0x4e4, r4, 0x4, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x0, 0x48}}}}, [@fils_params=[@NL80211_ATTR_FILS_ERP_USERNAME={0x5, 0xf9, "e4"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x2}, @NL80211_ATTR_FILS_ERP_USERNAME={0xb, 0xf9, "ce0e80e8d66ee6"}, @NL80211_ATTR_FILS_ERP_RRK={0x95, 0xfc, "33a93abf59360aff0a46ea84f05706e92c40ce291995eb1ace246ca408140ae40e955449ead15e4923b5c613ad59206aef3e7bf4022d45dae9b591b0b7196756f6043ff9b5876885b901b9c8373b9adb978da796217d9e892938fe296c796ea752c77d269100faea05fcd01fab50569da742088672510bab2bf42d2651766cb993ef8e46b8ecbe88b9ee24c4df548d170f"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x12, 0xf9, "2cd14dc0d069a8282a2946ea2e40"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x9, 0xf9, "625ca06472"}, @NL80211_ATTR_FILS_ERP_RRK={0x77, 0xfc, "fb756e234cccacfe9087764c3597d72c7fd4c79e3aff1dc8267f28848eb30627143d924808699020309330fd641e83aae9c53c1cf3ec571cb7c120999d387981e5933caabcdaf2fa9ed51cb2bc6deb6cfc79d0a4ad16dfe7e9bf226e8365af4723ba4a1875b2cc884934357695c4f610d687bf"}], @fils_params=[@NL80211_ATTR_FILS_ERP_USERNAME={0xf, 0xf9, "e78f88e6a745d358aadb08"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x9, 0xf9, "b148c29c55"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x6, 0xf9, "fd0d"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x6, 0xf9, "34d4"}, @NL80211_ATTR_FILS_ERP_REALM={0x15, 0xfa, "31ec09122f4e7945c890926b1efdba9fc7"}, @NL80211_ATTR_FILS_ERP_RRK={0xbd, 0xfc, "6709387ff10318e4b57e307b47b92c0f21669fa300fbd8d57d391110994b4783519033eeadcaeee4a565b2bcec54ea7500f1c7e34ff4d82094252f0d0a4b6f9822b55e8829e298bc72664f9cfb60a57d047c048b2950c6a7fb08ddaf2356b998cce100801b80e5613ca1d0aebd073cd3e90a7a08c841655d13f454d976e858a453908081b37269c93ab861dec24ac458a81164b77dae3ef099e49049720bcde883e20bd6d913fa9d5cf12cfe1c113c4ba1175102f8e356a642"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x1}, @NL80211_ATTR_FILS_ERP_USERNAME={0x14, 0xf9, "b62fb34a6e5968fc665c60637814fc40"}], @fils_params=[@NL80211_ATTR_FILS_ERP_USERNAME={0xf, 0xf9, "c1edf53133c022a4564380"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xb, 0xf9, "dafb9ed264bf2a"}, @NL80211_ATTR_FILS_ERP_REALM={0xbe, 0xfa, "1d4edc9b767ab351048998714b8d4d18cc156359e9e14294d9b8ab7656306fbebfd87f06faf60017ce32c17a95534c014c88cccdc94557957ac6e35045168ce89f6c6a358aa2bc5646252529f810473fb7cd05b425d024a043e4b75a472755d2a355f37045bc3f55edb4f59b37dd44dd5dab358d982bf5807de976d6e9ead98a93ba742330f26bab474134a148bd3cd711fcf2dd2118e456295a708352bdc0337bf5dd10b50e35b53dce7c6775f2e09586bde1289e00932222eb"}, @NL80211_ATTR_FILS_ERP_REALM={0xd3, 0xfa, "93aa81e123297787a3a6b61151db90afd67dcd7e402f29eb4754672dcb53eca4a72336525d17ea18f29a00cbb3f299ff83efd7cddc1af3e29027bbf2c8a9b216f98088586344d308da55efbde8fa68147ce3cd0b9c274c6051eb192158f2d2207077f16b4662f0c6f338d75dbe18cdc4d80777801de2dbfd2445b9aeff8bda3236209a3e605fdb68c767cff580948fd1b030fed654885d5b1d5a278fc04ac9af48ef4cf7b73eb5da1e7360fe147436763943f9f36c1d91bc8fffc48ee77f60966e9099e357860f9ae52fa5632ad360"}, @NL80211_ATTR_FILS_ERP_REALM={0x1c, 0xfa, "0813ffd1764f3fecb7555e8c6f851cbfb9d557bc78f76ce4"}, @NL80211_ATTR_FILS_ERP_RRK={0x84, 0xfc, "06617cb531be1a7da0bd2f8bac76863efda88462d0c4f2996239630438da0eb24a2388868a7bf7802cf9aa7fe34057ff81f0a9f963a4a9322a788fac95b60bdab4019c0784fd82e373d781da1ce18ec5b1e0d7b74fd4bc26d80405f5532e4a82803cb9eb15a068fce1875bb4f2f5a307457366d5028f0535877ac1ee397cd0db"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x100}]]}, 0x4e4}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
r7 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000000c0), 0x400c2, 0x0)
r8 = openat$dsp(0xffffffffffffff9c, &(0x7f00000003c0), 0x101a02, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r9, 0x25, &(0x7f00000000c0))
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r10, 0x26, &(0x7f0000000000)={0x1})
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r11, 0x26, &(0x7f0000000000)={0x1})
close_range(r8, 0xffffffffffffffff, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0xcc71c1df3616f123, 0x0)
r12 = openat$fb1(0xffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r12, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x3f, 0x0, 0x1, 0x3e, 0x0, 0x0, {}, {0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3})
openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$SNAPSHOT_GET_IMAGE_SIZE(r7, 0x8008330e, &(0x7f0000000180))
io_uring_register$IORING_REGISTER_FILES(r6, 0x1e, &(0x7f0000000000)=[r6], 0x1)

2m42.392432184s ago: executing program 1 (id=706):
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000140)={0x1, 0x3, 0x7109, 0x918, 0xffffffffffffffff})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0x1000400, @mcast2, 0x6}}, 0x80, 0x0}, 0x0)
r0 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x84, &(0x7f0000000000), 0x90)
sendmsg$inet(r0, &(0x7f0000001780)={&(0x7f00000000c0)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000180)="4b40eb982bce8a03ca3e54866ba0cd969db17075b926bbb2c3adf9281d48f910b747d3d25f2cbf1ca3eb17defd40d4879b3df8c4ee2d741f25b01ba236fdf3be77b90eba05522a7992350bb25299140e643ad4a57c738cbc6d30af7bfe731a11f894f3cbe6b04baeb5981a7c583fba05f6859596b913924c29c3b19b6599e40ce812df0f1352d59780150007701da3b1", 0x90}], 0x1}, 0x4044841)
r1 = getpgid(0xffffffffffffffff)
syz_open_procfs(r1, &(0x7f0000000240)='net/vlan/vlan1\x00')

2m42.3915651s ago: executing program 1 (id=707):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', <r3=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000600)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd70fbfddbdf251700000008000100", @ANYRES32=r3, @ANYBLOB="04000280"], 0x20}, 0x1, 0x0, 0x0, 0x24004008}, 0x8000)

2m42.332031352s ago: executing program 1 (id=708):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000400000045"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sched_kthread_stop\x00', r2}, 0x10)
r3 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1, 0x0, 0x2})
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000000)={0x6, 0x1, 0x1, 0x0, 0x3})
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffe, 0x6, 0x2, @scatter={0x0, 0xcc, &(0x7f0000000700)}, &(0x7f0000000080)="0000501ef663", 0x0, 0x800004, 0x10030, 0x0, 0x0})
ioctl$vim2m_VIDIOC_STREAMOFF(r3, 0x40045612, &(0x7f0000000040)=0x1)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r5, 0x6, 0x24, 0x0, &(0x7f0000000340))
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r7 = accept4(r6, 0x0, 0x0, 0x800)
sendmmsg$alg(r7, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}, {&(0x7f0000000640)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aa", 0x21}], 0x2}], 0x1, 0x40800)
recvmsg(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000000c0)=""/45, 0x2d}, {&(0x7f0000000540)=""/193, 0xc1}], 0x2}, 0x400020e0)
ioctl$vim2m_VIDIOC_QBUF(r3, 0xc058560f, &(0x7f0000000180)=@mmap={0x1, 0x1, 0x4, 0x0, 0x81, {}, {0x4, 0x0, 0x8, 0x5, 0x29, 0x9, "0adb3fb8"}, 0x5})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000000300)=ANY=[@ANYBLOB="34000000f4ff000027bd7000ff26e2dbdf2501000400", @ANYRES32=0x0, @ANYBLOB="c0000000001400001400350077673200"/28], 0x34}, 0x1, 0x0, 0x0, 0x40000100}, 0x40004)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1d, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000fcff74aa0000000000f77249b13837bf4e42825bcd2e8300000085000000ae0000009500000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @lsm=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x801, 0x0, 0x0, {0x3, 0x0, 0x3}, @NFT_OBJECT_CONNLIMIT=@NFTA_OBJ_TYPE={0x8}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x44}}, 0x0)
syz_open_dev$dri(&(0x7f0000000040), 0x20, 0x0)

2m42.050360723s ago: executing program 1 (id=713):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x8, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000500)={0x1, 0x2, 0x2, "4449f8e1b0faa9b0071c937f7f57002e0c0000c39b000000000000003200", 0x34324948}) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0) (async)
syz_usb_connect(0x0, 0x3d, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
writev(r4, &(0x7f00000004c0)=[{&(0x7f00000003c0)="8c", 0x1}], 0x1) (async)
r5 = socket(0x10, 0x3, 0x0) (async)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_ECN={0x8}]}}]}, 0x40}}, 0x0) (async)
dup3(r3, r4, 0x0) (async)
prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='(\x00')
r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r8, &(0x7f0000fdf000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0x1, 0x40, &(0x7f0000000100)=[@cr4={0x1, 0x140182}], 0x1) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, 0x0}], 0x1, 0x2, 0x0, 0x0)

2m38.212735156s ago: executing program 1 (id=722):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x8003, 'dh\x00', 0x20, 0x7, 0x49}, 0x2c)
preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000240)=""/71, 0x47}, {&(0x7f0000000480)=""/139, 0x8b}], 0x2, 0x7, 0x5, 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f00000000c0), &(0x7f0000000180)=0x14)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x300)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x4, 0x0}, 0x4e21, 0x3, 'lc\x00', 0x2, 0x81, 0x19}, {@remote, 0x4e20, 0x4, 0xc3, 0x12d5c, 0x12d5c}}, 0x44)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x11, 0x10, 0x0, 0x1, 0x40, 0x6, @remote}, 0x14)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYRES8, @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYRES16=r1], 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000100)='0.::/', 0x0)
r3 = add_key$user(&(0x7f00000001c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f00000005c0)="bc5df31247f7812dc08fcba298026fd06d6f47107c53441f1d637c75a09d2cc64d65b5c6a6154f2f2d647ed8106ba89cf9a7a2ed62051d21e5babe5e8beebc1e9f2b16c3a1191621abb518ec8ac0cfdba8bac381936ff269254468a03375b1aa13f6617ef4157cc1f243f69f5b82e9cec81b87e8f661810c624f2a8d642fa9c5a690b21b8fad5e7bb4debf97865aec6a4024c092578c5b639ba926147d72697625bfe6fbfa7e76db6f4170a3ad33ce464e671aa6d26aa7675a60d45b", 0xbc, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="4000000000010600000040e58024001c80927b1e61a979050090fa394d94d231b9f8530100fe6f0000080002400000000508000240000000020000034000"/76], 0x40}}, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r3, 0x0, r3}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000440), r5)
sendmsg$NFC_CMD_FW_DOWNLOAD(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002abd7000fddbdf251500000008000100", @ANYRES32=0x0, @ANYBLOB="0200149c94000000"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x8804)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r8 = dup(r7)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2)
r10 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x8602, 0x0)
ioctl$SNDCTL_DSP_GETOSPACE(r10, 0x8010500c, &(0x7f0000000400))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r7, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)

2m38.152887322s ago: executing program 33 (id=722):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x8003, 'dh\x00', 0x20, 0x7, 0x49}, 0x2c)
preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000240)=""/71, 0x47}, {&(0x7f0000000480)=""/139, 0x8b}], 0x2, 0x7, 0x5, 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f00000000c0), &(0x7f0000000180)=0x14)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x300)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x4, 0x0}, 0x4e21, 0x3, 'lc\x00', 0x2, 0x81, 0x19}, {@remote, 0x4e20, 0x4, 0xc3, 0x12d5c, 0x12d5c}}, 0x44)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x11, 0x10, 0x0, 0x1, 0x40, 0x6, @remote}, 0x14)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYRES8, @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYRES16=r1], 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000100)='0.::/', 0x0)
r3 = add_key$user(&(0x7f00000001c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f00000005c0)="bc5df31247f7812dc08fcba298026fd06d6f47107c53441f1d637c75a09d2cc64d65b5c6a6154f2f2d647ed8106ba89cf9a7a2ed62051d21e5babe5e8beebc1e9f2b16c3a1191621abb518ec8ac0cfdba8bac381936ff269254468a03375b1aa13f6617ef4157cc1f243f69f5b82e9cec81b87e8f661810c624f2a8d642fa9c5a690b21b8fad5e7bb4debf97865aec6a4024c092578c5b639ba926147d72697625bfe6fbfa7e76db6f4170a3ad33ce464e671aa6d26aa7675a60d45b", 0xbc, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="4000000000010600000040e58024001c80927b1e61a979050090fa394d94d231b9f8530100fe6f0000080002400000000508000240000000020000034000"/76], 0x40}}, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r3, 0x0, r3}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000440), r5)
sendmsg$NFC_CMD_FW_DOWNLOAD(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002abd7000fddbdf251500000008000100", @ANYRES32=0x0, @ANYBLOB="0200149c94000000"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x8804)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r8 = dup(r7)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2)
r10 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x8602, 0x0)
ioctl$SNDCTL_DSP_GETOSPACE(r10, 0x8010500c, &(0x7f0000000400))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r7, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)

2m0.639938895s ago: executing program 4 (id=1267):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @broadcast}}) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20b03, 0x0) (async)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_G_FMT(r2, 0xc0285628, &(0x7f0000000080)={0x3, @win={{0x2}, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0, 0x40}})
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000040)="3e0f38f0a0e7a3640f320fc7a80d00650f01df642e65660f384179862e0fc730f2260f30360f01c4f3d93af3f30f0159f7", 0x31}], 0x1, 0x43, 0x0, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
r5 = syz_kvm_add_vcpu$x86(0x0, &(0x7f00000007c0)={0x0, &(0x7f0000000100)=[@uexit={0x0, 0x18, 0x1}, @uexit={0x0, 0x18}, @uexit={0x0, 0x18, 0x7fffffff}, @uexit={0x0, 0x18, 0x3}, @code={0x1, 0x55, {"3e460f7831410f56587b0f01c966b80b008ee80f79628c48b8f7000000000000000f23c80f21f8350800a0000f23f8400f01b008000000f6a700000080f342ad44c1f87c"}}, @code={0x1, 0x8e, {"b968030000b8f7150000ba000000000f3066470f38808500000000c744240021000000c744240202000000c7442406000000000f011424b9130400000f32420f01bb00000000b805000000b9e00000000f01d9660f754d00c4c1f1641e420f0119c744240059240000c7442402b5a742b4c7442406000000000f011424"}}, @uexit={0x0, 0x18, 0x7}, @uexit={0x0, 0x18, 0xf9e}, @code={0x1, 0x59, {"b9800000c00f3235004000000f30b9800000c00f3235000100000f30672e26440f01c3450fc77b0d2e400f011a660f388077a6c4a355480673430f23ecc481b162ecc4a131fa518a"}}, @code={0x1, 0x83, {"48b8cdb33df6000000000f23c00f21f835030001000f23f8b9800000c00f3235002000000f3048b8781a0000000000000f23d80f21f835800000100f23f866b8d3000f00d066baf80cb89c340986ef66bafc0cb849a00000ef0f00990000000036e000c462dd999600500000c402210c0ff4"}}, @uexit={0x0, 0x18, 0xfabb}, @code={0x1, 0x56, {"dfbb22fd09e63ef3440fc7340a66baa00066b8f44f66ef660f3881560846d9e12667642e440f380869180faa650f0866baf80cb8dccee980ef66bafc0ced66b8bc000f00d0"}}, @code={0x1, 0x44, {"400f302667f4c463a92269eb16c4411d66c0f20f1b24ac3e0f06b8010000000f01c1f3f3644285ce66b8f2008ec02e440f01c5"}}, @uexit={0x0, 0x18, 0xffffffffffffffff}, @code={0x1, 0x6e, {"c74424000a000000c74424020e5d2f01ff2c24470f013fc461256c7e000f2383d9fc66ba2100b038ee0f3acca87f00000004c744240078e1f7c9c74424020f000000c7442406000000000f01142466b81f018ed8660f3880b9d0000000"}}, @code={0x1, 0x4d, {"66b8c0008ed066bad004ec470f0090f4fa11d066ba2100ec66b811000f00d0660f3a172bf60f20d835200000000f22d80f01f80fc7690264430fc718"}}, @uexit={0x0, 0x18, 0x1ff}, @code={0x1, 0x67, {"c7442400ea000000c7442402b0a20000ff1c2448b800000000010000000f23c80f21f8350400a0000f23f8f3460fa7e8f36e66ba4200edc4a2fd2133b8010000000f01c1f30fc7b08a7b4938c4e37d497900d5420f35"}}, @code={0x1, 0x6e, {"0f20d835080000000f22d8420f07c7442400de000000c7442402f5e50000ff1c24b805000000b987d600000f01c12e3e460f01c266410f2b18b805000000b95b1800000f01d9c42261ba7d08c482c99c890b000000660fd98901000000"}}, @uexit={0x0, 0x18, 0x4}, @uexit={0x0, 0x18, 0x3}, @uexit={0x0, 0x18, 0xf66}, @uexit={0x0, 0x18, 0xfff}, @code={0x1, 0x59, {"66420f5a6fc366b89e000f00d86666460fde68f2f346af3666450f63bdf4ce73fd6666660f1ef40f20e035200000000f22e066ba2000b81900c0feeff30f2b648400c4a2f12b780d"}}, @code={0x1, 0x43, {"0f01c366470f6de2c4e17a2c6df5660fc7b10600000066bad104edc4435144d9e466ba2000edf243d0772866ba4000ec0f32"}}, @code={0x1, 0x66, {"44ad66460f38808e49000000c4410dd17800460fba2fdf66b88c008ec0c482797881040000003ed0b507000000c74424009c460000c7442402131c0000c7442406000000000f011c240f0f7acd90c4032141143902"}}, @uexit={0x0, 0x18, 0xe98c}], 0x63b})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000800)={[0x2, 0x9, 0x0, 0x5, 0xfffffffffffffff7, 0x0, 0xfff, 0x3, 0x4, 0x9, 0x100000000, 0xf, 0x2, 0x1, 0x8, 0xff], 0xd000}) (async)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x891c, &(0x7f0000000080)={'vlan0\x00', {0x2, 0x4000, @empty=0xfe000000}})
ioctl$sock_ifreq(r0, 0x8926, &(0x7f0000000000)={'pim6reg1\x00', @ifru_mtu})

2m0.57011124s ago: executing program 4 (id=1269):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0xc})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000100)={{&(0x7f000003c000/0x2000)=nil, 0x2000}, 0x1})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x4)
readv(r0, &(0x7f0000003180)=[{&(0x7f0000000040)=""/32, 0x20}], 0x1)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25GCAUSEDIAG(r1, 0x89e6, &(0x7f0000000000)={0x7, 0x3})
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB(r2, 0xc01c64ae, &(0x7f00000002c0)={0x0, 0x400, 0x0, 0x6, 0x8, 0x8, 0xfffffffc})
ioctl$sock_ifreq(r1, 0x8947, &(0x7f0000000040)={'bond0\x00', @ifru_names='bridge_slave_0\x00'})
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000080)={0x3, <r3=>r1, 0x1})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bind$inet6(r3, &(0x7f0000000280)={0xa, 0x4e24, 0x4b8f1e3a, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3}, 0x1c)
ioctl$SIOCGETVIFCNT(r3, 0x89e0, &(0x7f0000000300))
mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x3000000)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001440), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000001500)=ANY=[@ANYBLOB, @ANYRES16=r5, @ANYBLOB="0100004000000000000014000000180001801400020073797a5f74756e000000000000000000080003000000000a"], 0x34}}, 0x0)
r6 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r7 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x108})
close_range(r0, r1, 0x0)
ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000000)="0900bf65653f47f4020000008bd458d1e7cbdaf300000f34e7e4165f081ae36850f6d15c3e681411f7a496c0da04003c242f5bedaf6bec340dee49474362b24cb800edc500", 0x0, 0x48)
syz_memcpy_off$KVM_EXIT_MMIO(r6, 0x20, &(0x7f0000000240)="6f7350de54c92267e8d6c0b626d2393917646639b0bb946d", 0x0, 0x18)
ioctl$UFFDIO_ZEROPAGE(r7, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000ffb000/0x1000)=nil, 0x1000}})
sendmsg$ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000227bd7000fedbdf251400000008000200000000000800040000fcffff080004000400000032b06e6485108c0f362a776e6add628aa4ed4d028460d6ae713619e01d6473456076bc1490f96e367ed4cc4a8a617b41e1a2d3eadeeaa234976597e8f48d60165d824a3b65aca7ac5578f8b92b8c43f194d115b6023a2f6e1f4767223102f9ae"], 0x2c}}, 0x10000)

1m59.425631641s ago: executing program 4 (id=1274):
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0) (async)
pipe(0x0) (async)
read$alg(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write(r0, 0x0, 0x0) (async)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x800000000ff, 0x0) (async)
timer_create(0x0, &(0x7f0000000040)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000500)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) (async)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x10, 0xda, 0x8, 0x9}, {0x8000, 0x1, 0xb, 0xea6e}]}) (rerun: 32)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) (async)
close(r1)

1m56.391956016s ago: executing program 4 (id=1321):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@newtaction={0x70, 0x30, 0xb, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_skbedit={0x58, 0x1, 0x0, 0x0, {{0xc}, {0x48, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_MARK={0x8, 0x3}, @TCA_SKBEDIT_PTYPE={0x6, 0x4}, @TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc, 0xa}, {0xc, 0x9, {0xf5}}}}]}]}, 0x70}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c6761636865040bed45d36782a72d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='freezer.parent_freezing\x00', 0x275a, 0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r3, 0xc2604110, &(0x7f0000000280)={0x0, [[0x7ff], [0x400, 0x2], [0xfff]], '\x00', [{0x0, 0x1, 0x1}]})
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000003c000703fcffff324a0000de03"], 0x24}, 0x1, 0x0, 0x0, 0x400c0}, 0xc084)
r4 = getuid()
r5 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r5, 0x6, 0x12, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r7 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r7, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r7, 0x8)
r8 = accept4(r7, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r8, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r8, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x6000}, &(0x7f00000001c0)=0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000001300)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0xfffffffffffffeab, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000007, 0x4000010, r2, 0x8000000)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f0000000580)={'veth0_vlan\x00', &(0x7f0000000540)=@ethtool_pauseparam={0x12, 0x6, 0x8, 0xe}})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x0, &(0x7f0000000500)=0x2, 0x0, 0x4)
read$FUSE(r6, &(0x7f000000c3c0)={0x2020, 0x0, <r10=>0x0, <r11=>0x0, <r12=>0x0}, 0x2020)
write$FUSE_INIT(r6, &(0x7f0000000040)={0x50, 0x0, r10, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r6, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000f60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1997e358660e994000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000056087d7200000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r6, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x78, 0x0, 0x6, {0x0, 0x0, 0x0, {0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x81, 0x3966, 0x6, 0x8000, 0x4, r11, r12, 0xe, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
lchown(&(0x7f0000000080)='./file0\x00', r4, r12)

1m55.496349464s ago: executing program 4 (id=1333):
creat(&(0x7f0000000040)='./file0\x00', 0x140)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
write$P9_RLERRORu(r1, &(0x7f0000000100)=ANY=[@ANYBLOB="5300000007000046009d40ed", @ANYRES64], 0x53)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6b}})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="300000003e000701fcfffffffddbdf25017c0000100036800c00020007000200000000000c000180060006008e"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
mkdirat(r2, &(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000100)=@nullb, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='minix\x00', 0x80081f, 0x0)

1m55.2406186s ago: executing program 4 (id=1340):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50) (async)
write$sndseq(0xffffffffffffffff, &(0x7f00000006c0)=[{0xe, 0x7e, 0xe, 0xfd, @time={0x2, 0x100001}, {}, {0xe1, 0xfd}, @connect={{0x81, 0x2}, {0xd, 0x10}}}], 0x1c) (async)
r0 = fanotify_init(0x8, 0x80000)
write$binfmt_elf64(r0, &(0x7f00000006c0)=ANY=[@ANYBLOB="7f454c4622"], 0x18) (async)
r1 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timer_settime(r2, 0x1, &(0x7f0000000080)={{0x77359400}}, &(0x7f00000000c0)) (async)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0) (async)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000), 0x4) (async)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r4 = dup(r3)
sendmsg$inet(r4, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x31}}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000140)="be38", 0x2}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}, @ip_retopts={{0x18, 0x0, 0x7, {[@timestamp={0x44, 0x4, 0x73}, @noop]}}}], 0x38}, 0x0) (async)
read$FUSE(r4, &(0x7f0000006d00)={0x2020}, 0x2020)

1m55.183024041s ago: executing program 34 (id=1340):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50) (async)
write$sndseq(0xffffffffffffffff, &(0x7f00000006c0)=[{0xe, 0x7e, 0xe, 0xfd, @time={0x2, 0x100001}, {}, {0xe1, 0xfd}, @connect={{0x81, 0x2}, {0xd, 0x10}}}], 0x1c) (async)
r0 = fanotify_init(0x8, 0x80000)
write$binfmt_elf64(r0, &(0x7f00000006c0)=ANY=[@ANYBLOB="7f454c4622"], 0x18) (async)
r1 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timer_settime(r2, 0x1, &(0x7f0000000080)={{0x77359400}}, &(0x7f00000000c0)) (async)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0) (async)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000), 0x4) (async)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r4 = dup(r3)
sendmsg$inet(r4, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x31}}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000140)="be38", 0x2}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}, @ip_retopts={{0x18, 0x0, 0x7, {[@timestamp={0x44, 0x4, 0x73}, @noop]}}}], 0x38}, 0x0) (async)
read$FUSE(r4, &(0x7f0000006d00)={0x2020}, 0x2020)

47.850620845s ago: executing program 5 (id=724):
mmap(&(0x7f0000065000/0x3000)=nil, 0x3000, 0x2, 0x30, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c591", 0x5)
r2 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2)
r3 = syz_clone3(&(0x7f00000012c0)={0x920000, &(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000140), {0x34}, &(0x7f0000000180)=""/4096, 0x1000, &(0x7f0000001180)=""/202, &(0x7f0000001280)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x7}, 0x58)
syz_open_procfs(r3, &(0x7f0000001340)='map_files\x00')
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000995000/0x2000)=nil, 0x800000})

47.118627489s ago: executing program 6 (id=1341):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000200)={0x0, 0x2}, 0x8)
sendto$inet6(r0, &(0x7f0000001080)='\x00', 0x1, 0xc090, &(0x7f0000000100)={0xa, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4}, 0x1c)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_notify={{0x3b, 0xa}, {@any, 0x3ff}}}, 0xd)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0x2, 0x1a1}, 0x87674a396ee1bb89) (async)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r1, &(0x7f0000001480)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote, 0x9}, 0x1c, &(0x7f0000019880)=[{&(0x7f0000000140)="79ef7ca5029811e78ea6dce2f7034f7998430f21880804822ef849375a5913efd95b6732fb4c2a5c157bfafa5e02335a3de243d745056bfddeccbf8db0b17093270cf2377568df4a957b48173215c61a465c0c0c51", 0x55}], 0x1, &(0x7f00000020c0)=ANY=[@ANYBLOB="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"], 0x590}}], 0x1, 0x8008801) (async)
syz_emit_ethernet(0x68, &(0x7f0000001240)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaabb020000000000000000656f21ef37ba2bffff0100000000000000000000000000012001000000000000000000000000000097c700"/76], 0x0) (async)
r2 = socket$inet6(0xa, 0x2, 0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000002a00), r3)
sendmsg$NFC_CMD_START_POLL(r3, &(0x7f0000002b40)={0x0, 0x0, &(0x7f0000002b00)={&(0x7f0000002ac0)={0x2c, r4, 0x401, 0x70bd2a, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x80}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x14}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x20000800) (async, rerun: 64)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000040)=0x3, 0xe4) (rerun: 64)
sendmmsg$inet6(r2, &(0x7f0000000ac0)=[{{&(0x7f0000000140)={0xa, 0x4e22, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x0) (async, rerun: 64)
r5 = socket$kcm(0x2d, 0x2, 0x0) (rerun: 64)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000340)={<r6=>r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000000040)={r5}) (async, rerun: 64)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x13, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x54, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8001c00180081064e81f782db44b9b545c7910006007c09", 0x18}], 0x1}, 0x0) (async)
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e3, &(0x7f0000000180)={r5, r7})
sendmmsg$inet6(r1, &(0x7f0000000040)=[{{0x0, 0xb, 0x0}}], 0xbc, 0x404000c)

40.41061644s ago: executing program 5 (id=724):
mmap(&(0x7f0000065000/0x3000)=nil, 0x3000, 0x2, 0x30, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c591", 0x5)
r2 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2)
r3 = syz_clone3(&(0x7f00000012c0)={0x920000, &(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000140), {0x34}, &(0x7f0000000180)=""/4096, 0x1000, &(0x7f0000001180)=""/202, &(0x7f0000001280)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x7}, 0x58)
syz_open_procfs(r3, &(0x7f0000001340)='map_files\x00')
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000995000/0x2000)=nil, 0x800000})

38.995521161s ago: executing program 6 (id=1341):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000200)={0x0, 0x2}, 0x8)
sendto$inet6(r0, &(0x7f0000001080)='\x00', 0x1, 0xc090, &(0x7f0000000100)={0xa, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4}, 0x1c)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_notify={{0x3b, 0xa}, {@any, 0x3ff}}}, 0xd)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0x2, 0x1a1}, 0x87674a396ee1bb89) (async)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r1, &(0x7f0000001480)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote, 0x9}, 0x1c, &(0x7f0000019880)=[{&(0x7f0000000140)="79ef7ca5029811e78ea6dce2f7034f7998430f21880804822ef849375a5913efd95b6732fb4c2a5c157bfafa5e02335a3de243d745056bfddeccbf8db0b17093270cf2377568df4a957b48173215c61a465c0c0c51", 0x55}], 0x1, &(0x7f00000020c0)=ANY=[@ANYBLOB="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"], 0x590}}], 0x1, 0x8008801) (async)
syz_emit_ethernet(0x68, &(0x7f0000001240)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaabb020000000000000000656f21ef37ba2bffff0100000000000000000000000000012001000000000000000000000000000097c700"/76], 0x0) (async)
r2 = socket$inet6(0xa, 0x2, 0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000002a00), r3)
sendmsg$NFC_CMD_START_POLL(r3, &(0x7f0000002b40)={0x0, 0x0, &(0x7f0000002b00)={&(0x7f0000002ac0)={0x2c, r4, 0x401, 0x70bd2a, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x80}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x14}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x20000800) (async, rerun: 64)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000040)=0x3, 0xe4) (rerun: 64)
sendmmsg$inet6(r2, &(0x7f0000000ac0)=[{{&(0x7f0000000140)={0xa, 0x4e22, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x0) (async, rerun: 64)
r5 = socket$kcm(0x2d, 0x2, 0x0) (rerun: 64)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000340)={<r6=>r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000000040)={r5}) (async, rerun: 64)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x13, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x54, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8001c00180081064e81f782db44b9b545c7910006007c09", 0x18}], 0x1}, 0x0) (async)
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e3, &(0x7f0000000180)={r5, r7})
sendmmsg$inet6(r1, &(0x7f0000000040)=[{{0x0, 0xb, 0x0}}], 0xbc, 0x404000c)

31.867050677s ago: executing program 5 (id=724):
mmap(&(0x7f0000065000/0x3000)=nil, 0x3000, 0x2, 0x30, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c591", 0x5)
r2 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2)
r3 = syz_clone3(&(0x7f00000012c0)={0x920000, &(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000140), {0x34}, &(0x7f0000000180)=""/4096, 0x1000, &(0x7f0000001180)=""/202, &(0x7f0000001280)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x7}, 0x58)
syz_open_procfs(r3, &(0x7f0000001340)='map_files\x00')
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000995000/0x2000)=nil, 0x800000})

30.427696855s ago: executing program 6 (id=1341):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000200)={0x0, 0x2}, 0x8)
sendto$inet6(r0, &(0x7f0000001080)='\x00', 0x1, 0xc090, &(0x7f0000000100)={0xa, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4}, 0x1c)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_notify={{0x3b, 0xa}, {@any, 0x3ff}}}, 0xd)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0x2, 0x1a1}, 0x87674a396ee1bb89) (async)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r1, &(0x7f0000001480)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote, 0x9}, 0x1c, &(0x7f0000019880)=[{&(0x7f0000000140)="79ef7ca5029811e78ea6dce2f7034f7998430f21880804822ef849375a5913efd95b6732fb4c2a5c157bfafa5e02335a3de243d745056bfddeccbf8db0b17093270cf2377568df4a957b48173215c61a465c0c0c51", 0x55}], 0x1, &(0x7f00000020c0)=ANY=[@ANYBLOB="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"], 0x590}}], 0x1, 0x8008801) (async)
syz_emit_ethernet(0x68, &(0x7f0000001240)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaabb020000000000000000656f21ef37ba2bffff0100000000000000000000000000012001000000000000000000000000000097c700"/76], 0x0) (async)
r2 = socket$inet6(0xa, 0x2, 0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000002a00), r3)
sendmsg$NFC_CMD_START_POLL(r3, &(0x7f0000002b40)={0x0, 0x0, &(0x7f0000002b00)={&(0x7f0000002ac0)={0x2c, r4, 0x401, 0x70bd2a, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x80}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x14}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x20000800) (async, rerun: 64)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000040)=0x3, 0xe4) (rerun: 64)
sendmmsg$inet6(r2, &(0x7f0000000ac0)=[{{&(0x7f0000000140)={0xa, 0x4e22, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x0) (async, rerun: 64)
r5 = socket$kcm(0x2d, 0x2, 0x0) (rerun: 64)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000340)={<r6=>r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000000040)={r5}) (async, rerun: 64)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x13, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x54, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8001c00180081064e81f782db44b9b545c7910006007c09", 0x18}], 0x1}, 0x0) (async)
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e3, &(0x7f0000000180)={r5, r7})
sendmmsg$inet6(r1, &(0x7f0000000040)=[{{0x0, 0xb, 0x0}}], 0xbc, 0x404000c)

22.850990111s ago: executing program 5 (id=724):
mmap(&(0x7f0000065000/0x3000)=nil, 0x3000, 0x2, 0x30, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c591", 0x5)
r2 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2)
r3 = syz_clone3(&(0x7f00000012c0)={0x920000, &(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000140), {0x34}, &(0x7f0000000180)=""/4096, 0x1000, &(0x7f0000001180)=""/202, &(0x7f0000001280)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x7}, 0x58)
syz_open_procfs(r3, &(0x7f0000001340)='map_files\x00')
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000995000/0x2000)=nil, 0x800000})

21.121279303s ago: executing program 6 (id=1341):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000200)={0x0, 0x2}, 0x8)
sendto$inet6(r0, &(0x7f0000001080)='\x00', 0x1, 0xc090, &(0x7f0000000100)={0xa, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4}, 0x1c)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_notify={{0x3b, 0xa}, {@any, 0x3ff}}}, 0xd)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0x2, 0x1a1}, 0x87674a396ee1bb89) (async)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r1, &(0x7f0000001480)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote, 0x9}, 0x1c, &(0x7f0000019880)=[{&(0x7f0000000140)="79ef7ca5029811e78ea6dce2f7034f7998430f21880804822ef849375a5913efd95b6732fb4c2a5c157bfafa5e02335a3de243d745056bfddeccbf8db0b17093270cf2377568df4a957b48173215c61a465c0c0c51", 0x55}], 0x1, &(0x7f00000020c0)=ANY=[@ANYBLOB="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"], 0x590}}], 0x1, 0x8008801) (async)
syz_emit_ethernet(0x68, &(0x7f0000001240)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaabb020000000000000000656f21ef37ba2bffff0100000000000000000000000000012001000000000000000000000000000097c700"/76], 0x0) (async)
r2 = socket$inet6(0xa, 0x2, 0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000002a00), r3)
sendmsg$NFC_CMD_START_POLL(r3, &(0x7f0000002b40)={0x0, 0x0, &(0x7f0000002b00)={&(0x7f0000002ac0)={0x2c, r4, 0x401, 0x70bd2a, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x80}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x14}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x20000800) (async, rerun: 64)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000040)=0x3, 0xe4) (rerun: 64)
sendmmsg$inet6(r2, &(0x7f0000000ac0)=[{{&(0x7f0000000140)={0xa, 0x4e22, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x0) (async, rerun: 64)
r5 = socket$kcm(0x2d, 0x2, 0x0) (rerun: 64)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000340)={<r6=>r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000000040)={r5}) (async, rerun: 64)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x13, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x54, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8001c00180081064e81f782db44b9b545c7910006007c09", 0x18}], 0x1}, 0x0) (async)
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e3, &(0x7f0000000180)={r5, r7})
sendmmsg$inet6(r1, &(0x7f0000000040)=[{{0x0, 0xb, 0x0}}], 0xbc, 0x404000c)

14.679558013s ago: executing program 5 (id=724):
mmap(&(0x7f0000065000/0x3000)=nil, 0x3000, 0x2, 0x30, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c591", 0x5)
r2 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2)
r3 = syz_clone3(&(0x7f00000012c0)={0x920000, &(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000140), {0x34}, &(0x7f0000000180)=""/4096, 0x1000, &(0x7f0000001180)=""/202, &(0x7f0000001280)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x7}, 0x58)
syz_open_procfs(r3, &(0x7f0000001340)='map_files\x00')
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000995000/0x2000)=nil, 0x800000})

12.811522487s ago: executing program 6 (id=1341):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000200)={0x0, 0x2}, 0x8)
sendto$inet6(r0, &(0x7f0000001080)='\x00', 0x1, 0xc090, &(0x7f0000000100)={0xa, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4}, 0x1c)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_notify={{0x3b, 0xa}, {@any, 0x3ff}}}, 0xd)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0x2, 0x1a1}, 0x87674a396ee1bb89) (async)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r1, &(0x7f0000001480)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote, 0x9}, 0x1c, &(0x7f0000019880)=[{&(0x7f0000000140)="79ef7ca5029811e78ea6dce2f7034f7998430f21880804822ef849375a5913efd95b6732fb4c2a5c157bfafa5e02335a3de243d745056bfddeccbf8db0b17093270cf2377568df4a957b48173215c61a465c0c0c51", 0x55}], 0x1, &(0x7f00000020c0)=ANY=[@ANYBLOB="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"], 0x590}}], 0x1, 0x8008801) (async)
syz_emit_ethernet(0x68, &(0x7f0000001240)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaabb020000000000000000656f21ef37ba2bffff0100000000000000000000000000012001000000000000000000000000000097c700"/76], 0x0) (async)
r2 = socket$inet6(0xa, 0x2, 0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000002a00), r3)
sendmsg$NFC_CMD_START_POLL(r3, &(0x7f0000002b40)={0x0, 0x0, &(0x7f0000002b00)={&(0x7f0000002ac0)={0x2c, r4, 0x401, 0x70bd2a, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x80}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x14}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x20000800) (async, rerun: 64)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000040)=0x3, 0xe4) (rerun: 64)
sendmmsg$inet6(r2, &(0x7f0000000ac0)=[{{&(0x7f0000000140)={0xa, 0x4e22, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x0) (async, rerun: 64)
r5 = socket$kcm(0x2d, 0x2, 0x0) (rerun: 64)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000340)={<r6=>r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000000040)={r5}) (async, rerun: 64)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x13, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x54, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8001c00180081064e81f782db44b9b545c7910006007c09", 0x18}], 0x1}, 0x0) (async)
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e3, &(0x7f0000000180)={r5, r7})
sendmmsg$inet6(r1, &(0x7f0000000040)=[{{0x0, 0xb, 0x0}}], 0xbc, 0x404000c)

6.329074129s ago: executing program 5 (id=724):
mmap(&(0x7f0000065000/0x3000)=nil, 0x3000, 0x2, 0x30, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c591", 0x5)
r2 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2)
r3 = syz_clone3(&(0x7f00000012c0)={0x920000, &(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000140), {0x34}, &(0x7f0000000180)=""/4096, 0x1000, &(0x7f0000001180)=""/202, &(0x7f0000001280)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x7}, 0x58)
syz_open_procfs(r3, &(0x7f0000001340)='map_files\x00')
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000995000/0x2000)=nil, 0x800000})

4.83261516s ago: executing program 6 (id=1341):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000200)={0x0, 0x2}, 0x8)
sendto$inet6(r0, &(0x7f0000001080)='\x00', 0x1, 0xc090, &(0x7f0000000100)={0xa, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4}, 0x1c)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_notify={{0x3b, 0xa}, {@any, 0x3ff}}}, 0xd)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0x2, 0x1a1}, 0x87674a396ee1bb89) (async)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r1, &(0x7f0000001480)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote, 0x9}, 0x1c, &(0x7f0000019880)=[{&(0x7f0000000140)="79ef7ca5029811e78ea6dce2f7034f7998430f21880804822ef849375a5913efd95b6732fb4c2a5c157bfafa5e02335a3de243d745056bfddeccbf8db0b17093270cf2377568df4a957b48173215c61a465c0c0c51", 0x55}], 0x1, &(0x7f00000020c0)=ANY=[@ANYBLOB="38020000000000002900000036000000004300000000000004013f040100c910ff010000000000000000000000000001c910fc0000000000000000000000000000000001000740000000000e07010101000000010000000200000000000000000000000000000001000000010000002000000000000000ffffffff00000000ffffffffffffff7f06aeb07c1c192077cc9e7c45705803ad5588ca8b194d23f748fe792cfa3d32221f25d73b8ffe64a4ddda6efcfb7483b588194d29c7a04395d8500965a9a1d07879040c44db1d5d6f618d2ab920f0bf168ddc9acc6a51edd1230760d4ae8bf30f5f82a78e8114849ee8e37364560400000035bfa8197ef2ba99103ee5f5aae28ec5c8e2675db11530f5c466d55f2244d479dc653c854406155eada3eaeb90d39149b8d13bab75a9bd1452c8c76284b9ddfbeff41344e64f1771d78a706e1c5a6d63f1c954e24a1e73f75c26e9f09ec9b606cc3470f11c4842db651926bd2263a4a0a8fe80de8b2f9cb176e51819d5f4d10a5d1f0488d5e46953fbfd750f6137fbebe89a8d462158a87f9622355104b4f68d7a6d3ad85c373ea52a25afad37ffb743a5c361158087904b09fcc806d032bac00ee0e0251fc032446e45a3e12417ff4703526ffc45f71567857777927903799e0ba453334186009d22e38099c67b5350c7e82136bba947a18fb61d36fcba1f9efe3d79485d06252702833dc8ee417f40bb9064878fb89dd75a49135e5df148c4ad1e1d5626b44c8112d822f4c9a05e693fd5ae5595627f8684016b37a2bf6d0040030000000000002900000037000000006500000000000000fb1a63687c244e6df3aecb13d6eb957495b669cc032f6d0a11a5e16eed9937b046c9dc1a61dcf9754b767df4735c3f8c37b4d5cd15a99c5a19cc62c921ad4e90d6e3695ec1891223a53600d5031b5735acafb556e22279975f958ad437c76573e544506e58455772eb11493af933099a5dc7e9e0c8b907e68e23e59d7b94bc774309e2047132758b60955301f277a9032b0bc47e660b243e9e2126733f13ab99055a0999068ada35a38d105a5efe6c7115774effe28695ecae3944413b7764eefde26ed571d857b2cb2dd1b2a4a84c1fec0799cf90f57f7a6d35e2b60cd425b9372ae4a27f453e5d7da2eacd3b98cdb10cec9152d5829c2511eb0f9600a0cd280f3d08849b6cd43d25e3dcd62f7c7dee6123a2682daf4aa9a856b31e9204c5c2b80b84dbeec05d93a64a550f1ebc326488cd620c6fe1aa266a0ce5b24be03b5037786e037cc85ed61f362e081fb694e12e54fcb9eb0f86d6d91fd159023a073278f84d6ada8f9aa25ec223d268f3291b25392c941740932bd1a82f40a8fc586db23d2f6240ce883e3c1dc1e0d07fc3aa73a9ac82a1538d129c9e66cb6a8100abe95bc4064581e8c01ce65ba3ea751db5d8c0a1173fe62b2fd2d415042a97ade4d274a466b6d997eed6bf5d7a305ead804c36b9e1c314b26676ed83412417610d3cf4d07e5b24cf3de9c790ae93850e0f8bba047b710cf340c78a80cef5f6665a647681ff5f7b6ecce8ab65e26406b6a6e0e72ff8501c545bffc00f034dc3a5b251390ae68bb61d936dc9a24e6f66c72e7911c51c716dfd4304566fb32e6c2745d232f990d0bbe0ddf9dc58398dda292c07b16da766a37c60bd9993b4f21e641036a8afa2ccdb47d7990d5a007faccb2f86664179f2e229723bce870aec3f7f4e529c92add713590ce6c0ea1a0499fb76d32636cfd18b6b39fb48f1a6d46f6ae8f45c47ee8260f9531070d170ab92739be0bdf5b76f8a9b93a5e550dfecab79d2e46085a67024b6be883c79ade2873458fda5a7f4eb62b05634356ee3b45723f4cff19c654ad441ff5b8792df7f18d841c351e195151b1b3532e742a6525c86efdb29653f35ce8e0a41c8c6d39f39531e13aeb1172893eeedd83b6afb939f8e6abc5482696aa48918000000000000002900000037"], 0x590}}], 0x1, 0x8008801) (async)
syz_emit_ethernet(0x68, &(0x7f0000001240)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaabb020000000000000000656f21ef37ba2bffff0100000000000000000000000000012001000000000000000000000000000097c700"/76], 0x0) (async)
r2 = socket$inet6(0xa, 0x2, 0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000002a00), r3)
sendmsg$NFC_CMD_START_POLL(r3, &(0x7f0000002b40)={0x0, 0x0, &(0x7f0000002b00)={&(0x7f0000002ac0)={0x2c, r4, 0x401, 0x70bd2a, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x80}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x14}]}, 0x2c}, 0x1, 0x0, 0x0, 0x51}, 0x20000800) (async, rerun: 64)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000040)=0x3, 0xe4) (rerun: 64)
sendmmsg$inet6(r2, &(0x7f0000000ac0)=[{{&(0x7f0000000140)={0xa, 0x4e22, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x0) (async, rerun: 64)
r5 = socket$kcm(0x2d, 0x2, 0x0) (rerun: 64)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000340)={<r6=>r5})
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f0000000040)={r5}) (async, rerun: 64)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x13, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x54, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8001c00180081064e81f782db44b9b545c7910006007c09", 0x18}], 0x1}, 0x0) (async)
ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e3, &(0x7f0000000180)={r5, r7})
sendmmsg$inet6(r1, &(0x7f0000000040)=[{{0x0, 0xb, 0x0}}], 0xbc, 0x404000c)

1.796851625s ago: executing program 3 (id=2039):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x0, 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) (async)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10) (async, rerun: 64)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
r1 = syz_open_dev$vim2m(&(0x7f0000001440), 0x2, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000040)={0x1, 0x1, 0x1, 0x0, 0x3})
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000000)=0x1)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000200)=@filter={'filter\x00', 0xe, 0x4, 0x318, 0xffffffff, 0xe0, 0xe0, 0xe0, 0xffffffff, 0xffffffff, 0x280, 0x280, 0x280, 0xffffffff, 0x4, 0x0, {[{{@ip={@rand_addr=0x64010102, @broadcast, 0x0, 0x0, 'geneve0\x00', 'syz_tun\x00', {}, {0xff}, 0x62, 0x2, 0x49}, 0x0, 0x70, 0xe0}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x8, 0x0, 0x0, "330626973ce77065a5b24a05f58005c82d52a56b65dceff56d4c34b034349d765403e2b68c16ff6f48baed93ae7515f7e18cb2cbc912787eaeaa257c2be329eb"}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, 0xff000000, 0x0, 'rose0\x00', 'veth1_vlan\x00', {0xff}, {}, 0x5e, 0x1, 0x11}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x3, [0x4, 0x3, 0x4, 0x3, 0x6, 0x2], 0x1, 0x3}, {0x3, [0x1, 0x0, 0x7, 0x1, 0x0, 0x5], 0x1, 0x2}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, 0x4000, 0xf, [0x1, 0x25, 0x19, 0x31, 0x22, 0x33, 0x30, 0x37, 0x3d, 0x2a, 0x16, 0x1, 0x807, 0x3a, 0x0, 0x21], 0x2, 0xfffffffa, 0x7}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x378) (async)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r2 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000600)={'team0\x00', <r3=>0x0}) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0xa0, 0x24, 0xf0b, 0x0, 0x1000000, {0x0, 0x0, 0x12, r3, {0x0, 0x300}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x70, 0x2, [@TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x1}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x3, 0x0, 0x48d2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x1], [0x0, 0x0, 0x0, 0x0, 0xd645, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffff]}}, @TCA_TAPRIO_ATTR_SCHED_BASE_TIME={0xc, 0x3, 0x15}]}}]}, 0xa0}, 0x1, 0x7a00}, 0x0) (async, rerun: 64)
syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x8042) (async, rerun: 64)
r5 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x822b01)
write$char_usb(r5, &(0x7f0000000040)="e2", 0x12d8) (async)
syz_emit_ethernet(0xf87, &(0x7f0000002140)=ANY=[@ANYBLOB="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"], 0x0)

1.796118749s ago: executing program 3 (id=2041):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)={0x1c, 0x2, 0x6, 0x202, 0x0, 0x0, {0x7, 0x0, 0x7}, [@IPSET_ATTR_REVISION={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4040)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x1)
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r4, &(0x7f0000000300)="ca0e808bb35bdabb", 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], &(0x7f0000000240)=[0x2], 0x0, 0x1}}, 0x40)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1f, 0x12, r3, 0x0) (async)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1f, 0x12, r3, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000200)=ANY=[@ANYBLOB="01000000000000000d"]) (async)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000200)=ANY=[@ANYBLOB="01000000000000000d"])

1.501304706s ago: executing program 3 (id=2043):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000280)={0x0, 0xcc}, 0x1, 0x0, 0x0, 0x81}, 0x800)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="420fc7bc4898580000640f01c50f01c566baf80cb864c95782ef66bafc0cec67670f1b0166b8fb008ec046d9c3c442b90a2c81c442812852fcc744240012000000c74424020b000000ff1c24", 0x4c}], 0x1, 0x0, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0x5]}, 0x0, 0x8)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000005c0)={[0x583a, 0x5, 0x9, 0xe55, 0x6, 0x2, 0x103f, 0x4, 0xfffffffffffff801, 0x32a, 0xfffffffffffffffe, 0xffffffff, 0x1, 0x9, 0x5, 0x99a9], 0x1, 0x1000d6})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000600)=ANY=[@ANYBLOB="1c0000f5"], 0xfdef)

1.220880014s ago: executing program 2 (id=2045):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYRES16=r0], 0x24}}, 0x80)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000023c0)={{0x1, 0x1, 0x18, <r2=>r0}, './file1\x00'})
syz_kvm_setup_cpu$x86(r2, r0, &(0x7f00002df000/0x18000)=nil, &(0x7f0000002480)=[@textreal={0x8, &(0x7f0000002400)="f30f1efb66b9de0b00000f32650fc79c000066b9400200000f32660f38373e9d000f788c02a466b9b00b000066b80080000066ba000000000f30f2ab673e0fc76c6d00440f20c0663508000000440f22c0", 0x51}], 0x1, 0x41, &(0x7f00000025c0)=[@vmwrite={0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3}, @dstype3={0x7, 0xa}], 0x2)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
close(0x3)
fstat(r0, &(0x7f0000002600)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$overlay(0x0, &(0x7f0000002340)='./file0\x00', &(0x7f0000002380), 0x421, &(0x7f00000024c0)={[{@uuid_on}, {@uuid_off}, {@redirect_dir_nofollow}, {@uuid_off}, {@index_on}, {@redirect_dir_off}, {@metacopy_off}, {@xino_off}, {@metacopy_off}, {@default_permissions}], [{@dont_appraise}, {@obj_type={'obj_type', 0x3d, '/dev/bus/usb/00#/00#\x00'}}, {@context={'context', 0x3d, 'staff_u'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'context'}}, {@subj_type={'subj_type', 0x3d, 'redirect_dir=nofollow'}}]})
read$FUSE(0xffffffffffffffff, &(0x7f00000001c0)={0x2020, 0x0, 0x0, 0x0, <r4=>0x0}, 0x2020)
syz_clone(0x8000, &(0x7f0000002200)="b265229d55a65bcbf8be6be807fc0a3f34f7d9ae5ae9174ec4d7e9dd0510633ec8effdd4455b3302fb002824a421c88d751888e11ebd19d3cc64128b1499bb12034bc76febc139d4f247f13771667efa4b732d296b380c0985c6ac91abe935e9e6e8aab5adcaef10345035d4b00033cf677f6127ebd698c56883989da2188d801a8ab924feea46abf6a2514b1edd549dda3b131590b91b", 0x97, &(0x7f0000000000), &(0x7f0000000140), &(0x7f00000022c0)="c9785483288790e73c2990ff5eda60055f98336b213430ec69c9d337f5541d8d41824f76a7ecdc03e58b4b5a51caf0004c24cd1ef8a6ded967fe0b503eb1f77e39f6de8fab45136a235c700fda1a77332d626c162acc61")
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000000)="05000806", 0x4, 0x0, &(0x7f0000000080)={0x11, 0x8100, r6}, 0x14)
setresgid(0xee01, r3, r4)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r2, &(0x7f0000002700)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000026c0)={&(0x7f0000002680)={0x28, 0x2, 0x7, 0x204, 0x0, 0x0, {0x5, 0x0, 0x9}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x5}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4040021)

1.118573215s ago: executing program 3 (id=2046):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r1=>0x0})
r2 = socket(0x840000000002, 0x3, 0x100)
sendmmsg$inet(r2, &(0x7f0000001740)=[{{&(0x7f0000000000)={0x2, 0x4e20, @empty}, 0x10, 0x0, 0x0, &(0x7f0000001640)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x80}}], 0x18}}], 0x4a, 0x0)
keyctl$join(0x1, &(0x7f0000000280)={'syz', 0x1})
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote, r1}, 0x14)
r3 = socket$packet(0x11, 0x2, 0x300)
r4 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000280)={'virt_wifi0\x00', <r5=>0x0})
getgid()
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r7 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$VIDIOC_SUBDEV_S_SELECTION(r4, 0xc040563e, &(0x7f00000000c0)={0x1, 0x0, 0x101, 0x0, {0xd57e, 0x6, 0x0, 0x8000}})
ioctl$DRM_IOCTL_MODE_ATOMIC(r7, 0xc03864bc, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0})
getsockopt$inet6_IPV6_IPSEC_POLICY(r6, 0x29, 0x22, &(0x7f0000000180)={{{@in6=@empty, @in=@dev}}, {{@in6=@private0}, 0x0, @in=@multicast1}}, &(0x7f0000004e00)=0xe8)
r8 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000040)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa010100, @dev={0xac, 0x14, 0x14, 0xff}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r9, 0x29, 0x40, &(0x7f0000000680)=@raw={'raw\x00', 0x8, 0x3, 0x460, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x390, 0xffffffff, 0xffffffff, 0x390, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [0xffffff00], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@uncond, 0x0, 0x290, 0x2c0, 0x0, {}, [@common=@srh1={{0x90}, {0x1, 0x10, 0x7, 0x9, 0x5, @private1, @dev={0xfe, 0x80, '\x00', 0x22}, @private1={0xfc, 0x1, '\x00', 0x1}, [0xffffff00, 0xff, 0xff], [0x0, 0xff000000, 0xff, 0xffffff00], [0x0, 0xff000000, 0xff, 0xffffffff], 0x213, 0x20}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1004, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x80}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x4c0)
r10 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSW(r10, 0x5403, &(0x7f0000000000)={0x7fff, 0x9, 0x0, 0x7fffffff, 0x7, "afc53c85e0946db06c125108647a5a2672cb51"})
ioctl$TIOCL_GETMOUSEREPORTING(r10, 0x5412, &(0x7f0000000040)=0xd)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100000000020000000000000000", @ANYRES32=r5], 0x20}}, 0x0)

1.041294395s ago: executing program 3 (id=2047):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r2, &(0x7f00000093c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x2066012}}, 0x50)
r4 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0x40045532, &(0x7f0000000040))
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r6 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r6, 0xc0884113, &(0x7f0000000240)={0x1, 0x80, 0x10003, 0x10001, 0xf, 0xb, 0x4000000000c, 0x1001, 0x7, 0x28, 0x3be40, 0x2})
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT32(r6, 0xc06c4124, &(0x7f0000006500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})
syz_fuse_handle_req(r2, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20, 0x0, 0x0, {0x0, 0x14}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x40)
ioctl$NS_GET_PARENT(r7, 0xb702, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'veth1_macvtap\x00', <r8=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@getqdisc={0x24, 0x26, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r8, {0xfff2, 0x10}, {0x0, 0x5}, {0x5, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x10000000}, 0x4008080)

1.039683299s ago: executing program 2 (id=2048):
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)=<r0=>0x0) (async)
clock_gettime(0x0, &(0x7f0000000000)) (async)
clock_gettime(0x0, &(0x7f0000000040)={<r1=>0x0, <r2=>0x0})
timer_settime(r0, 0x0, &(0x7f000006b000)={{}, {r1, r2+60000000}}, 0x0) (async)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff})
read$FUSE(r3, &(0x7f0000001f80)={0x2020}, 0x2020)

170.286425ms ago: executing program 3 (id=2049):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r0, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xa)
getpeername(r0, 0x0, &(0x7f00000002c0))
r1 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, r1)
keyctl$KEYCTL_MOVE(0x1e, r1, r1, r2, 0x0)
add_key(&(0x7f00000013c0)='big_key\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000000)="54635a03ae58", 0x6, r2)

169.282733ms ago: executing program 2 (id=2050):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000004100)={0x2020}, 0x2020)
r1 = socket(0x3, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002880)='.\x00', &(0x7f00000028c0), 0x4001, &(0x7f0000000180)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
write$FUSE_NOTIFY_STORE(r3, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x1, 0x2}}, 0x28)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000000600), &(0x7f0000001380)=@udp=r1}, 0x20)
recvmsg(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000440)=""/101, 0x65}], 0x1}, 0x40000162)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETGEN(r6, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000d40)={0x14, 0x10, 0xa, 0x801, 0x0, 0x0, {0x0, 0x0, 0xa}}, 0x14}}, 0x24000004)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r7=>0x0})
r8 = socket$kcm(0x11, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
write$P9_RCREATE(r0, &(0x7f0000000380)={0x18, 0x73, 0x2, {{0x10, 0x3, 0x2}, 0x1}}, 0x18)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r9, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x4})
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="64000000100001002abd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="8221000008200200140003006e657464657673696d30000000000000300016802400018014000a0002"], 0x64}}, 0x0)
ioctl$sock_netdev_private(r9, 0x89f0, &(0x7f0000000000))
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000240)={'ip6tnl0\x00', r7, 0x29, 0x5, 0xd6, 0x2, 0x26, @rand_addr=' \x01\x00', @dev={0xfe, 0x80, '\x00', 0x35}, 0x1, 0x7, 0x8ca, 0x4}})
sendmsg$sock(r8, &(0x7f00000000c0)={&(0x7f0000000040)=@phonet={0x23, 0x0, 0x0, 0x27}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@timestamping={{0x14, 0x1, 0x25, 0x2}}], 0x18}, 0x0)
recvmsg$kcm(r8, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x2000)
ioctl$sock_inet_SIOCADDRT(r5, 0x890b, &(0x7f0000000040)={0x0, {0x2, 0x4e21, @rand_addr=0x64010102}, {0x2, 0x4e24, @empty}, {0x2, 0x4e20, @multicast2}, 0x200, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000000)='bond_slave_0\x00', 0x3a, 0x6, 0x401})
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000100)={0x4b69603d0bd4e0ad, 0x1d, &(0x7f00000000c0)="028f30705146470800127dc4be152137f377eaf6b8b1923f2cb5298719"})
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
setsockopt$TIPC_CONN_TIMEOUT(r11, 0x10f, 0x82, &(0x7f00000000c0)=0xa, 0x4)
sendmsg$nl_route(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000140)=@RTM_DELMDB={0x38, 0x54, 0x93d, 0x1000, 0x0, {0x7, r7}, [@MDBA_SET_ENTRY={0x20, 0x1, {r7, 0x1, 0x0, 0x3, {@ip4=@empty, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x8000)

167.649249ms ago: executing program 2 (id=2051):
r0 = socket$kcm(0x10, 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x25dfdbfb, {}, [@IFLA_MTU={0x8, 0x4, 0x9b69}, @IFLA_GROUP={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x600}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000580)={&(0x7f0000000080)=@nfc={0x27, r1, 0x0, 0x3}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000100)="12714443352b9cb8b699eedd73f5342cfb1fa1834607fc159b7b4b00a2d4992b4555faeb2627673ee01b8bcf6fe2d16c9521962e7b660e6012eff84259c18913c87ae329a043f76337f3dc0cff71659ab01f2e5b5c41e03fab38132c47744253544ecf690e99bc0eedb743648de7fe5619e666f7594d094a0b80a832bf6662cd92e7bb1dd882fefe06bf8819c8cc4d8a1f21767b9a9967fe569ed3286f141cc96ff21837c7a4ae89fc71d99e6b733a0fb3e975e691d777d75168f2b48204ae75187bf8a60f2d94afd2e6439773c51497", 0xd0}, {&(0x7f0000000300)="be8cb8a04e6aa5a3b6a3f856dcdf50ec38105725d41a69586de799b4a4896253135c360d6f64331a6914fff4dc50aca7feebb6ca31c8ca615e92fe89c7237409319d3074761d1416ab0a0e2c0657b3da0b44cd2168e45fef8cb08f5691406536dc38bea1ff211f8149a3dabbd7d74d264f6f71d4dcb9dd460aec2bf064321aba0c93492ce2e8ab89529cd0ba6b3d9b3af20a00ec07ed0ea90599cffdca9f2fc98eeb5c0fc1f22aa0d9fda75fe0782b8eb7b27609972c771aa2bb18f1477972eb380d5344120ffebbdfc506ebaf503bafce45d2f7a5fcd17a1ee6fab7dc9202e70c1791a0ff2bd006b05ee737e1025369f8a1265f", 0xf4}, {&(0x7f0000000400)="382fd15fa718a441987d7a0893f886e0b1a05eeb9f1d928bd9b3cdd281758d9c674303e254e88bd68b9913aa403a81c382ad7c5e907d89c9ede3e4efc2dc6ab7db26732ec4e89618d9c678be091e1550037b7530d275fe7e6fc592063e94880a585f081438ef5b8eeb79b7588dbdf36f2074e303869d9ff121f529c7e14bbc2b2cf54b11008eae30d629c113bb5116d3832fedbcfc03d5775eef373002e37cd689fd48d0fcb68ade1f81f907158883390e4bd933fb4320991bf0b6539befdc7efa10bbce13f4020f59091dc0d61b8625b973", 0xd2}, {&(0x7f0000000200)="b9c25d9c8c7b05b67c05ec0bbb502ba09ccf7e970c0f2611a3dd0ffec293294d0b2b616cf5a6d49f8eb66e34", 0x2c}, {&(0x7f00000009c0)="3d51c7694bc246aa716b92d104f896342c3aff605e7000790799b70ef97a6dab76be3f0807744d34d0d81460c4d65820abc3dba30d533dc2343cac5b62ee20b76e4367ffaf7fbb5bc614445c6c5d2a21a4dd638fbfe9f30c6ddc0458e7", 0x5d}], 0x5, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x2f0}, 0x4004011)
r3 = syz_open_procfs(0x0, &(0x7f00000005c0)='net/dev_mcast\x00')
bind$inet6(r3, &(0x7f0000000940)={0xa, 0x4e21, 0x7, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}, 0x1c)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000002c0)="2e00000010008188040f80ec59acbc0413a181000f0000000001000000001f000e000a000f000000028002002d1f8dd3e458f805", 0x34}], 0x1}, 0x80)
chdir(&(0x7f0000000980)='./file0\x00')

111.857912ms ago: executing program 2 (id=2052):
getpeername$qrtr(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0xc)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x181904}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r1, 0x300, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000082}, 0x40)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r2, 0x800, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0xc810}, 0xc001)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x25, &(0x7f0000000300)=0xffffffff, 0x4)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)=@flushsa={0x68, 0x1c, 0x100, 0x70bd28, 0x25dfdbff, {0x33}, [@mark={0xc, 0x15, {0x35075b, 0xd}}, @proto={0x5, 0x19, 0x2b}, @replay_val={0x10, 0xa, {0x70bd2c, 0x70bd2a, 0x7}}, @encap={0x1c, 0x4, {0x1, 0x4e20, 0x4e23, @in6=@dev={0xfe, 0x80, '\x00', 0x10}}}, @mark={0xc, 0x15, {0x35075c, 0x101}}, @XFRMA_SET_MARK_MASK={0x8, 0x1e, 0x2e2}]}, 0x68}, 0x1, 0x0, 0x0, 0x800}, 0x20040000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f00000004c0), r0)
sendmsg$DEVLINK_CMD_SB_POOL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000680)={&(0x7f0000000500)={0x15c, r4, 0x400, 0x70bd29, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x14}, {0x6, 0x11, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0x6, 0x11, 0x7}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3ff}, {0x6, 0x11, 0x7}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7}, {0x6, 0x11, 0xf0a9}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0x8000}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x5}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x1}, {0x6, 0x11, 0x3}}]}, 0x15c}}, 0x0)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000740), r0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r3, &(0x7f0000000800)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x1001002}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x34, r5, 0x10, 0x70bd2a, 0x25dfdbfd, {{}, {}, {0x18, 0x17, {0xe, 0x8, @udp='udp:syz2\x00'}}}, ["", "", "", ""]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x804)
r6 = socket$inet_sctp(0x2, 0x0, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000840)={0x6, [0x0, 0x0, 0x0, 0x0, <r7=>0x0, 0x0]}, &(0x7f0000000880)=0x1c)
sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x10009}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x34, r1, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x7}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x8014}, 0x844)
bind$inet6(0xffffffffffffffff, &(0x7f00000009c0)={0xa, 0x4e20, 0x200, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8d4}, 0x1c)
r8 = signalfd(r3, &(0x7f0000000a00)={[0x7]}, 0x8)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000c80)={0x6, 0x3, &(0x7f0000000a80)=@raw=[@generic={0xff, 0x5, 0x2, 0x882, 0x787}, @map_fd={0x18, 0x2}], &(0x7f0000000ac0)='syzkaller\x00', 0x400, 0xcd, &(0x7f0000000b00)=""/205, 0x40f00, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000c00)={0x2, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000c40)=[0x1, 0x1, 0x1, 0x1], 0x0, 0x10, 0xf5d, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000d80)={{r8}, &(0x7f0000000a40), &(0x7f0000000d40)=r9}, 0x20)
ioctl$PTP_EXTTS_REQUEST2(r8, 0x40103d0b, &(0x7f0000000dc0)={0x646})
syz_emit_ethernet(0xf8, &(0x7f0000000e00)={@random="fefce22cd5f8", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x19}, @void, {@generic={0x22f0, "c89a120a519fce0f3f864a59e0d718055b7ac96fb0664545cf06233aae9ad644744631c581bb2293b9e94ba5cd50f07693529750d712161a592400cd8a8a05ac0e111ade991627e98ecb9767a071d644de4417b2add275dc23cecf7c0e2445e3848760d9ea9b2f68b694a2ba306cb811ba2ad98a4079f2e7abf63fa89a5ae691dc31f78fbcd37b8c8b81249574615321687d177466fd2a67c0e2ecb5b955930aee6d0bfb13bb52057c998478e50a05a185615af2b6bb2ffd79b7b72329117a7203a6f664fb1e331f36b095744ab93826fe11fc2830a6580c262a33ed7a654f053320ee7f60c3a7221c23"}}}, &(0x7f0000000f00)={0x0, 0x2, [0xe52, 0x81c, 0xc78, 0x67b]})
r10 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000f40), 0x101000, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r8, 0x84, 0x17, &(0x7f0000000f80)={r7, 0xf, 0x68, "ac934d687ba9230e7bc17fd6c5049c832a3b95fe43a47c73e8dc028c7b9bd8d125ec22e90dcf369f910a508548476b4f8cd9a0391f4bf06348a1296666f104d133279a63f64cecf312ae3afaa092483555e581c94b7574b7244c09d873d0f0b7a8fa4f6ca053e1fc"}, 0x70)
socket$inet_sctp(0x2, 0x1, 0x84)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r11, 0x8983, &(0x7f0000001000)={0x3, 'macvlan1\x00', {0xb}, 0x4})
ioctl$IOCTL_GET_NCIDEV_IDX(r8, 0x0, &(0x7f0000001180)=<r12=>0x0)
sendmmsg$sock(r10, &(0x7f0000001900)=[{{0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000001040)="727a935950d6accb13e2e9d9f1e03ddd77152f2c8230ed0c08b7b4e83c23c7a546e4a6295fe618089bd2d515cea966cf309c984496f29098947d45497ed10bc3257dfd6333342a2c2af3708bedf435c016f006fc72aea8a428a06013b167d7d2e779c94d8e3294bea7cc24958261af7c80b3912bf2ccc6087ba38cefc60203e593c7da518f744ce97081650467de2a0ebf2176d3ac60598c477fdbd3587403ef", 0xa0}], 0x1, &(0x7f0000001140)=[@txtime={{0x18, 0x1, 0x3d, 0xffffffffffffffff}}, @timestamping={{0x14, 0x1, 0x25, 0x7429}}], 0x30}}, {{&(0x7f00000011c0)=@nfc={0x27, r12, 0x1, 0x2}, 0x80, &(0x7f0000001400)=[{&(0x7f0000001240)="906bb0262956222a8abd5147d6adc94269f9a23b4fa856fa8d7a4fa93eed90b64f3c4c4d227a6960d49c337d6901654be9681e195f835e69c647e3199a908775e6a83c06316ba05f4cd820b9e74d20c3e1373bba0885aa43f42008579baa40bf2336f1a1a36f7c6b4b71132ab11e51b394eed44c0f935e8150095bd4a89929bf2ffcb5d341bbfe8fab4e30b68d6bb2a3a6f398ad8501018a6256df24a3f3c5ef9d3f6fa757fea0", 0xa7}, {&(0x7f0000001300)="fd77204415fd9a967a04300a86df221a9d6f4fcdabfc24faf179046db2c7048e44ce2920c2bca07e3b99f4085f3cb444b7df2efaede87d3235c38cd2529c2f4ee5bfb81edb3b70319dc90648138eda5fdef6aa2938a5cfc774c270d536e19e1bba324d544598336a0cea46754686722be7b8adc8b19b76919406329c954a0d3bb5494ad136c60c35bd159897ef218420a60cf03af21cf4e4b78ab9b2645a5eba9a9188b7e1793324279be9", 0xab}, {&(0x7f00000013c0)}], 0x3, &(0x7f0000001440)=[@timestamping={{0x14, 0x1, 0x25, 0x8}}], 0x18}}, {{0x0, 0x0, &(0x7f0000001880)=[{&(0x7f0000001480)="9fc43e7cf678d0dd937fe10998891e4e8ac20cbeeca78401f4fe7ea7d1bd2601749b5ec71f8b002ac917cb38b469bc7ddec535f232d7e0ec51cbac42c56ec254ab675a93f278683ae6568832bcb4f0d5cfacc37129fbda54784029c489ea8f1dffbca0390ba46bc17b54a14c9b52", 0x6e}, {&(0x7f0000001500)="899aec070e1bb753567b484b602f77690fb935f7480a21c6b3f1f8d5c1b252d45682c316c01147922825e0b202cd6d273e9c998055c9578a913217475096c84a39d1219c9d0a2ded88fad65e0648668dc173c0791f302e985083d1a2bd35c05022b0f52ecf8801172cced6f762adb38972fcef4f356cc4e4cd6fcd47bd8afcc075c40ac0a76bd05e71e4e44b51f20cdde5c01b4aa94955dd643f8dcc4b0b43682c3f8e2635666094e2bc2d56ba0388af5e5f403b55a8ea4dde679dc13040846b3ae341e1ba1c889fafbf073fe6d55cdd2b9e55ab1a", 0xd5}, {&(0x7f0000001600)="3302e8fccdf46d97a08762eb8d22a9fa098d79d460246c411b1dd69bda192c070d2efd11997ded9e4fc5fc0db33d9580ab51571fdc0e8a4580d8caa29479ce5bfa4913f5d0613001cc6598599b3cd01164f2619f2dbf53512002803b360427452cbe9fe4e30d544d4a593909d0227553ae8c23904cbe48904ec815efc6becce98d073670520ea8a342052b9fa8191d161682b8952e8f885d807195b5e7ed643d875d6c9ffeabc14163d2dbe5fa5fa569", 0xb0}, {&(0x7f00000016c0)="8fb893c1de5f917e3c0efcb06992dcf1ce91c638924f11a8d3f771fbf054f5d393ffe7a18e7668f4d870069c26a0187943ef52f2a9347e054d2b8f9b0642c21e277ae3a4dfc9f47dd36971fd01d3d4e7a328993160a72d71f137b51f469ac5fd4be93b9331d61c7edabb6bb629db122502f3afaf2f4ed9097e20dc0e2b86b500bb379af188fd16e5870ede07ac4ce405c0db5aed507b720aa18281cb99083c0e82b7240c985b605710c1d522269996af1590028eff14912b7b168a7d676ff1488974000c10ed8364dd75919ec9f4fb27761d0293d12a3bcf230a7e122365d552979fc978", 0xe4}, {&(0x7f00000017c0)="fd74aac9e0d0080e5879478164dfe0448755c72e808c6268106f6d6cd2ffdefd5330ae51ea369cccdd342581defab0802d1c463bea3964693af817f754fa06108bc70425094b73269891c9c038c43f6c97c360721ec9f47710dbf0a2db64a623ce3ab9f07468760f0adcb277a41aa3d3b5253f3ad06fe6", 0x77}, {&(0x7f0000001840)="9534761721c3781a3a8d938386289149572da4bf706443b3401bff99e50969e0067b5e0d8e8e145e260a2aec92237631fbbb052b6c3ff79f", 0x38}], 0x6}}], 0x3, 0x20004850)

0s ago: executing program 2 (id=2053):
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000e00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x8010)
sendmsg$NFT_BATCH(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)={{0x14}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}, 0x1, 0x0, 0x0, 0x4000001}, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28031, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f000000d000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="260f01cfbaf80c66b835b9ca8166efbafc0cec66640f32baf80c66b83065cd8966efbafc0c66b88f9b000066efbaf80c66b8a8a86e8866efbafc0c66b80100000066efbaf80c66b8983d448366efbafc0cb000eeea012b5d00660ff96700c4e2bddfdd0f01c2", 0x66}], 0x1, 0x74, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x1, 0x6e, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x10801, 0x0)
close_range(r5, r0, 0x0)
sendmsg$rds(r0, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

kernel console output (not intermixed with test programs):

2524] R13: 0000000000000000 R14: 00007f45a49b5fa0 R15: 00007ffe49642858
[  219.270835][T12524]  </TASK>
[  219.270846][T12524] ERROR: Out of memory at tomoyo_realpath_from_path.
[  219.475748][   T40] audit: type=1400 audit(2000000391.850:2720): avc:  denied  { mounton } for  pid=12525 comm="syz.2.1893" path="/700/file0/file0" dev="9p" ino=35913961 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  220.204410][T12536] overlayfs: empty lowerdir
[  220.271469][T12537] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  220.275527][T12536] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  220.581616][   T29] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  220.731593][   T29] usb 7-1: Using ep0 maxpacket: 32
[  220.734557][   T29] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  220.739424][   T29] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  220.742721][   T29] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  220.745264][   T29] usb 7-1: Product: syz
[  220.746577][   T29] usb 7-1: Manufacturer: syz
[  220.748079][   T29] usb 7-1: SerialNumber: syz
[  220.750878][   T29] usb 7-1: config 0 descriptor??
[  220.753026][T12552] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  220.756376][   T29] hub 7-1:0.0: bad descriptor, ignoring hub
[  220.758286][   T29] hub 7-1:0.0: probe with driver hub failed with error -5
[  221.061764][   T10] usb 7-1: USB disconnect, device number 24
[  221.134430][T12560] FAULT_INJECTION: forcing a failure.
[  221.134430][T12560] name failslab, interval 1, probability 0, space 0, times 0
[  221.138808][T12560] CPU: 3 UID: 0 PID: 12560 Comm: syz.3.1901 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  221.138822][T12560] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.138829][T12560] Call Trace:
[  221.138833][T12560]  <TASK>
[  221.138837][T12560]  dump_stack_lvl+0x16c/0x1f0
[  221.138855][T12560]  should_fail_ex+0x512/0x640
[  221.138872][T12560]  ? fs_reclaim_acquire+0xae/0x150
[  221.138893][T12560]  ? tomoyo_encode2+0x100/0x3e0
[  221.138913][T12560]  should_failslab+0xc2/0x120
[  221.138933][T12560]  __kmalloc_noprof+0xd2/0x510
[  221.138983][T12560]  tomoyo_encode2+0x100/0x3e0
[  221.139011][T12560]  tomoyo_encode+0x29/0x50
[  221.139032][T12560]  tomoyo_mount_acl+0x314/0x850
[  221.139054][T12560]  ? kernel_text_address+0x8d/0x100
[  221.139073][T12560]  ? __kernel_text_address+0xd/0x40
[  221.139097][T12560]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  221.139142][T12560]  ? tomoyo_domain+0xbb/0x150
[  221.139153][T12560]  ? tomoyo_profile+0x47/0x60
[  221.139171][T12560]  tomoyo_mount_permission+0x16d/0x420
[  221.139184][T12560]  ? tomoyo_mount_permission+0x14f/0x420
[  221.139198][T12560]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  221.139222][T12560]  security_sb_mount+0x9b/0x260
[  221.139236][T12560]  path_mount+0x128/0x1f20
[  221.139248][T12560]  ? kmem_cache_free+0x2d4/0x4d0
[  221.139264][T12560]  ? __pfx_path_mount+0x10/0x10
[  221.139276][T12560]  ? putname+0x154/0x1a0
[  221.139289][T12560]  __x64_sys_mount+0x28d/0x310
[  221.139300][T12560]  ? __pfx___x64_sys_mount+0x10/0x10
[  221.139315][T12560]  do_syscall_64+0xcd/0x260
[  221.139330][T12560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.139340][T12560] RIP: 0033:0x7f6e69d8e969
[  221.139349][T12560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.139359][T12560] RSP: 002b:00007f6e6ab87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  221.139370][T12560] RAX: ffffffffffffffda RBX: 00007f6e69fb5fa0 RCX: 00007f6e69d8e969
[  221.139376][T12560] RDX: 0000200000002140 RSI: 0000200000002100 RDI: 00002000000020c0
[  221.139383][T12560] RBP: 00007f6e6ab87090 R08: 0000200000002180 R09: 0000000000000000
[  221.139389][T12560] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002
[  221.139395][T12560] R13: 0000000000000000 R14: 00007f6e69fb5fa0 R15: 00007fffff35a0e8
[  221.139408][T12560]  </TASK>
[  221.236375][T12562] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1902'.
[  221.510286][T12570] netlink: 'syz.3.1905': attribute type 11 has an invalid length.
[  221.537104][T12573] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1906'.
[  221.540461][   T40] audit: type=1400 audit(2000000393.910:2721): avc:  denied  { bind } for  pid=12572 comm="syz.3.1906" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  221.547697][   T40] audit: type=1400 audit(2000000393.910:2722): avc:  denied  { setopt } for  pid=12572 comm="syz.3.1906" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  221.753916][T12577] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  221.756727][T12577] overlayfs: missing 'lowerdir'
[  221.783367][T12577] ISOFS: Unable to identify CD-ROM format.
[  221.788558][T12577] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  221.838446][T12582] FAULT_INJECTION: forcing a failure.
[  221.838446][T12582] name failslab, interval 1, probability 0, space 0, times 0
[  221.843692][T12582] CPU: 3 UID: 0 PID: 12582 Comm: syz.3.1910 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  221.843707][T12582] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.843713][T12582] Call Trace:
[  221.843717][T12582]  <TASK>
[  221.843721][T12582]  dump_stack_lvl+0x16c/0x1f0
[  221.843737][T12582]  should_fail_ex+0x512/0x640
[  221.843751][T12582]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  221.843768][T12582]  should_failslab+0xc2/0x120
[  221.843779][T12582]  __kmalloc_cache_noprof+0x6a/0x3e0
[  221.843794][T12582]  ? alloc_fs_context+0x57/0x9c0
[  221.843806][T12582]  alloc_fs_context+0x57/0x9c0
[  221.843818][T12582]  path_mount+0xb06/0x1f20
[  221.843830][T12582]  ? kmem_cache_free+0x2d4/0x4d0
[  221.843846][T12582]  ? __pfx_path_mount+0x10/0x10
[  221.843858][T12582]  ? putname+0x154/0x1a0
[  221.843871][T12582]  __x64_sys_mount+0x28d/0x310
[  221.843882][T12582]  ? __pfx___x64_sys_mount+0x10/0x10
[  221.843896][T12582]  do_syscall_64+0xcd/0x260
[  221.843911][T12582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.843922][T12582] RIP: 0033:0x7f6e69d8e969
[  221.843931][T12582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.843941][T12582] RSP: 002b:00007f6e6ab87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  221.843952][T12582] RAX: ffffffffffffffda RBX: 00007f6e69fb5fa0 RCX: 00007f6e69d8e969
[  221.843958][T12582] RDX: 0000200000002140 RSI: 0000200000002100 RDI: 00002000000020c0
[  221.843965][T12582] RBP: 00007f6e6ab87090 R08: 0000200000002180 R09: 0000000000000000
[  221.843971][T12582] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002
[  221.843977][T12582] R13: 0000000000000000 R14: 00007f6e69fb5fa0 R15: 00007fffff35a0e8
[  221.843990][T12582]  </TASK>
[  222.190759][   T40] audit: type=1400 audit(2000000394.560:2723): avc:  denied  { map } for  pid=12600 comm="syz.2.1916" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  222.198079][   T40] audit: type=1400 audit(2000000394.560:2724): avc:  denied  { execute } for  pid=12600 comm="syz.2.1916" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  222.255725][T12605] 9pnet_virtio: no channels available for device syz
[  222.523292][   T40] audit: type=1400 audit(2000000394.900:2725): avc:  denied  { getopt } for  pid=12615 comm="syz.3.1920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  222.596506][T12620] kvm: emulating exchange as write
[  223.098017][   T40] audit: type=1400 audit(2000000395.470:2726): avc:  denied  { write } for  pid=12627 comm="syz.3.1922" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  223.108954][T12630] overlayfs: missing 'lowerdir'
[  223.290412][T12634] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2322 sclass=netlink_route_socket pid=12634 comm=syz.2.1924
[  224.854915][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  224.858751][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  224.862976][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  224.866319][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  224.870654][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  224.880764][T12638] Failed to initialize the IGMP autojoin socket (err -2)
[  225.529943][T12638] netdevsim netdevsim5 netdevsim0: renamed from eth14
[  225.546462][T12638] netdevsim netdevsim5 netdevsim1: renamed from eth15
[  225.561423][T12638] netdevsim netdevsim5 netdevsim2: renamed from eth16
[  225.575104][T12638] netdevsim netdevsim5 netdevsim3: renamed from eth17
[  225.866245][T12638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.869196][T12638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.872837][T12638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.875759][T12638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.879909][T12638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  225.883803][T12638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.886549][T12638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  225.889567][T12638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.895912][T12638] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  225.904627][T12638] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  225.910194][T12638] wireguard: wg0: Could not create IPv4 socket
[  225.913469][T12638] wireguard: wg1: Could not create IPv4 socket
[  225.916302][T12638] wireguard: wg2: Could not create IPv4 socket
[  226.257100][T12655] FAULT_INJECTION: forcing a failure.
[  226.257100][T12655] name failslab, interval 1, probability 0, space 0, times 0
[  226.260685][T12655] CPU: 0 UID: 0 PID: 12655 Comm: syz.2.1925 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  226.260700][T12655] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  226.260706][T12655] Call Trace:
[  226.260710][T12655]  <TASK>
[  226.260714][T12655]  dump_stack_lvl+0x16c/0x1f0
[  226.260731][T12655]  should_fail_ex+0x512/0x640
[  226.260745][T12655]  ? fs_reclaim_acquire+0xae/0x150
[  226.260760][T12655]  ? tomoyo_encode2+0x100/0x3e0
[  226.260774][T12655]  should_failslab+0xc2/0x120
[  226.260786][T12655]  __kmalloc_noprof+0xd2/0x510
[  226.260806][T12655]  tomoyo_encode2+0x100/0x3e0
[  226.260819][T12655]  ? kmem_cache_free+0x1e1/0x4d0
[  226.260836][T12655]  tomoyo_encode+0x29/0x50
[  226.260849][T12655]  tomoyo_realpath_from_path+0x18f/0x6e0
[  226.260868][T12655]  tomoyo_realpath_nofollow+0xdb/0xf0
[  226.260883][T12655]  ? __pfx_tomoyo_realpath_nofollow+0x10/0x10
[  226.260897][T12655]  ? tomoyo_domain+0xbb/0x150
[  226.260907][T12655]  ? tomoyo_init_request_info+0x101/0x370
[  226.260920][T12655]  tomoyo_find_next_domain+0x2a8/0x20b0
[  226.260932][T12655]  ? __pfx___kernel_read+0x10/0x10
[  226.260951][T12655]  ? __pfx_tomoyo_find_next_domain+0x10/0x10
[  226.260967][T12655]  tomoyo_bprm_check_security+0x12e/0x1d0
[  226.260977][T12655]  ? tomoyo_bprm_check_security+0x120/0x1d0
[  226.260987][T12655]  security_bprm_check+0x1b9/0x1e0
[  226.260999][T12655]  bprm_execve+0x810/0x1650
[  226.261017][T12655]  ? __pfx_bprm_execve+0x10/0x10
[  226.261030][T12655]  ? __asan_memcpy+0x3c/0x60
[  226.261044][T12655]  ? copy_string_kernel+0x404/0x4a0
[  226.261061][T12655]  do_execveat_common.isra.0+0x4a5/0x610
[  226.261079][T12655]  __x64_sys_execveat+0xda/0x120
[  226.261096][T12655]  do_syscall_64+0xcd/0x260
[  226.261110][T12655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.261125][T12655] RIP: 0033:0x7f45a478e969
[  226.261134][T12655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.261144][T12655] RSP: 002b:00007f45a5663038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  226.261154][T12655] RAX: ffffffffffffffda RBX: 00007f45a49b5fa0 RCX: 00007f45a478e969
[  226.261161][T12655] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  226.261167][T12655] RBP: 00007f45a5663090 R08: 0000000000001000 R09: 0000000000000000
[  226.261173][T12655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  226.261179][T12655] R13: 0000000000000000 R14: 00007f45a49b5fa0 R15: 00007ffe49642858
[  226.261192][T12655]  </TASK>
[  226.261203][T12655] ERROR: Out of memory at tomoyo_realpath_from_path.
[  226.304487][T12659] FAULT_INJECTION: forcing a failure.
[  226.304487][T12659] name failslab, interval 1, probability 0, space 0, times 0
[  226.347835][T12659] CPU: 1 UID: 0 PID: 12659 Comm: syz.3.1928 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  226.347851][T12659] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  226.347858][T12659] Call Trace:
[  226.347862][T12659]  <TASK>
[  226.347866][T12659]  dump_stack_lvl+0x16c/0x1f0
[  226.347885][T12659]  should_fail_ex+0x512/0x640
[  226.347898][T12659]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  226.347911][T12659]  should_failslab+0xc2/0x120
[  226.347922][T12659]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  226.347933][T12659]  ? vfs_parse_fs_string+0xc3/0x150
[  226.347946][T12659]  kmemdup_nul+0x49/0xf0
[  226.347958][T12659]  vfs_parse_fs_string+0xc3/0x150
[  226.347968][T12659]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  226.347978][T12659]  ? kasan_save_track+0x14/0x30
[  226.347995][T12659]  ? legacy_init_fs_context+0x96/0xe0
[  226.348005][T12659]  ? alloc_fs_context+0x59b/0x9c0
[  226.348017][T12659]  path_mount+0x675/0x1f20
[  226.348029][T12659]  ? kmem_cache_free+0x2d4/0x4d0
[  226.348044][T12659]  ? __pfx_path_mount+0x10/0x10
[  226.348056][T12659]  ? putname+0x154/0x1a0
[  226.348069][T12659]  __x64_sys_mount+0x28d/0x310
[  226.348080][T12659]  ? __pfx___x64_sys_mount+0x10/0x10
[  226.348095][T12659]  do_syscall_64+0xcd/0x260
[  226.348109][T12659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.348120][T12659] RIP: 0033:0x7f6e69d8e969
[  226.348129][T12659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.348139][T12659] RSP: 002b:00007f6e6ab87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  226.348149][T12659] RAX: ffffffffffffffda RBX: 00007f6e69fb5fa0 RCX: 00007f6e69d8e969
[  226.348156][T12659] RDX: 0000200000002140 RSI: 0000200000002100 RDI: 00002000000020c0
[  226.348162][T12659] RBP: 00007f6e6ab87090 R08: 0000200000002180 R09: 0000000000000000
[  226.348168][T12659] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000002
[  226.348173][T12659] R13: 0000000000000000 R14: 00007f6e69fb5fa0 R15: 00007fffff35a0e8
[  226.348186][T12659]  </TASK>
[  226.370757][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  226.440048][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  226.444567][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  226.453334][T12664] cgroup: fork rejected by pids controller in /syz3
[  226.460367][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  226.474508][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  226.503433][T12660] Failed to initialize the IGMP autojoin socket (err -2)
[  226.550232][T12709] bridge0: port 3(veth0_to_bridge) entered blocking state
[  226.558209][T12709] bridge0: port 3(veth0_to_bridge) entered disabled state
[  226.563561][T12709] veth0_to_bridge: entered allmulticast mode
[  226.569018][T12709] veth0_to_bridge: entered promiscuous mode
[  227.443380][T12741] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  227.445601][T12741] overlayfs: failed to set xattr on upper
[  227.447373][T12741] overlayfs: ...falling back to redirect_dir=nofollow.
[  227.449471][T12741] overlayfs: ...falling back to index=off.
[  227.451267][T12741] overlayfs: ...falling back to uuid=null.
[  227.587238][T12746] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1935'.
[  227.594205][T12746] ipvlan2: entered promiscuous mode
[  227.596665][T12746] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  227.599000][T12746] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  227.850891][T12749] 9pnet_fd: p9_fd_create_tcp (12749): problem creating socket
[  228.140637][T12755] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1931'.
[  228.568122][   T67] Bluetooth: hci0: command tx timeout
[  228.771378][ T7214] Bluetooth: hci1: Frame reassembly failed (-84)
[  228.836374][T12672] syz.3.1930 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  228.839890][T12672] CPU: 0 UID: 0 PID: 12672 Comm: syz.3.1930 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  228.839905][T12672] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  228.839911][T12672] Call Trace:
[  228.839916][T12672]  <TASK>
[  228.839920][T12672]  dump_stack_lvl+0x16c/0x1f0
[  228.839937][T12672]  dump_header+0x101/0x930
[  228.839964][T12672]  oom_kill_process+0x270/0xa60
[  228.839975][T12672]  ? __lock_acquire+0x5ca/0x1ba0
[  228.839992][T12672]  out_of_memory+0x350/0x1700
[  228.840007][T12672]  ? __pfx_out_of_memory+0x10/0x10
[  228.840022][T12672]  mem_cgroup_out_of_memory+0x205/0x270
[  228.840037][T12672]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  228.840054][T12672]  ? do_raw_spin_unlock+0x172/0x230
[  228.840067][T12672]  try_charge_memcg+0xa07/0x10c0
[  228.840085][T12672]  ? __pfx_try_charge_memcg+0x10/0x10
[  228.840096][T12672]  ? find_held_lock+0x11/0x80
[  228.840108][T12672]  ? rcu_read_unlock+0x17/0x60
[  228.840122][T12672]  charge_memcg+0x8a/0x230
[  228.840133][T12672]  __mem_cgroup_charge+0x2b/0x1e0
[  228.840146][T12672]  shmem_alloc_and_add_folio+0x514/0xc20
[  228.840167][T12672]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  228.840185][T12672]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  228.840198][T12672]  shmem_get_folio_gfp+0x687/0x1530
[  228.840212][T12672]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  228.840222][T12672]  ? timestamp_truncate+0x21e/0x2d0
[  228.840236][T12672]  shmem_write_begin+0x160/0x300
[  228.840248][T12672]  ? __pfx_shmem_write_begin+0x10/0x10
[  228.840259][T12672]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  228.840277][T12672]  generic_perform_write+0x3cd/0x930
[  228.840299][T12672]  ? __pfx_generic_perform_write+0x10/0x10
[  228.840318][T12672]  ? generic_update_time+0xcf/0xf0
[  228.840328][T12672]  ? mnt_put_write_access_file+0x45/0xf0
[  228.840347][T12672]  shmem_file_write_iter+0x10e/0x140
[  228.840360][T12672]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  228.840372][T12672]  __kernel_write_iter+0x317/0xa90
[  228.840389][T12672]  ? __pfx___kernel_write_iter+0x10/0x10
[  228.840403][T12672]  ? __up_read+0x1f8/0x750
[  228.840416][T12672]  ? dump_user_range+0x73d/0xb30
[  228.840433][T12672]  dump_user_range+0x418/0xb30
[  228.840452][T12672]  ? __pfx_dump_user_range+0x10/0x10
[  228.840467][T12672]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  228.840482][T12672]  ? __pfx_writenote+0x10/0x10
[  228.840501][T12672]  elf_core_dump+0x288a/0x3a90
[  228.840524][T12672]  ? __pfx_elf_core_dump+0x10/0x10
[  228.840539][T12672]  ? kasan_save_stack+0x42/0x60
[  228.840554][T12672]  ? kasan_save_stack+0x33/0x60
[  228.840569][T12672]  ? kasan_save_track+0x14/0x30
[  228.840583][T12672]  ? __kasan_kmalloc+0xaa/0xb0
[  228.840598][T12672]  ? do_coredump+0x17aa/0x4480
[  228.840611][T12672]  ? get_signal+0x22e3/0x26d0
[  228.840622][T12672]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  228.840640][T12672]  ? 0xffffffffff600000
[  228.840672][T12672]  ? do_coredump+0x3183/0x4480
[  228.840685][T12672]  do_coredump+0x3183/0x4480
[  228.840705][T12672]  ? __pfx_do_coredump+0x10/0x10
[  228.840720][T12672]  ? stack_trace_save+0x8e/0xc0
[  228.840733][T12672]  ? __pfx_stack_trace_save+0x10/0x10
[  228.840745][T12672]  ? stack_depot_save_flags+0x28/0xa50
[  228.840761][T12672]  ? __lock_acquire+0xaa4/0x1ba0
[  228.840779][T12672]  ? __kasan_slab_free+0x51/0x70
[  228.840787][T12672]  ? kmem_cache_free+0x2d4/0x4d0
[  228.840802][T12672]  ? __sigqueue_free+0xba/0x2a0
[  228.840816][T12672]  ? get_signal+0xcba/0x26d0
[  228.840827][T12672]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  228.840861][T12672]  ? proc_coredump_connector+0x2d1/0x4f0
[  228.840875][T12672]  ? __pfx_proc_coredump_connector+0x10/0x10
[  228.840893][T12672]  ? rcu_is_watching+0x12/0xc0
[  228.840907][T12672]  get_signal+0x22e3/0x26d0
[  228.840922][T12672]  ? force_sig_fault+0xc4/0x100
[  228.840936][T12672]  ? __pfx_get_signal+0x10/0x10
[  228.840952][T12672]  arch_do_signal_or_restart+0x8f/0x7d0
[  228.840966][T12672]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  228.840977][T12672]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  228.841000][T12672]  irqentry_exit_to_user_mode+0x13f/0x280
[  228.841015][T12672]  asm_exc_page_fault+0x26/0x30
[  228.841025][T12672] RIP: 0033:0x7f6e69d8e969
[  228.841038][T12672] Code: Unable to access opcode bytes at 0x7f6e69d8e93f.
[  228.841042][T12672] RSP: 002b:00007f6e6ab65fe8 EFLAGS: 00010246
[  228.841051][T12672] RAX: 0000000000000000 RBX: 00007f6e69fb6080 RCX: 00007f6e69d8e969
[  228.841057][T12672] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  228.841062][T12672] RBP: 00007f6e69e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  228.841068][T12672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  228.841074][T12672] R13: 0000000000000000 R14: 00007f6e69fb6080 R15: 00007fffff35a0e8
[  228.841104][T12672]  </TASK>
[  228.841108][T12672] memory: usage 307200kB, limit 307200kB, failcnt 16096
[  228.996387][T12672] memory+swap: usage 414276kB, limit 9007199254740988kB, failcnt 0
[  228.998825][T12672] kmem: usage 7220kB, limit 9007199254740988kB, failcnt 0
[  229.001061][T12672] Memory cgroup stats for /syz3:
[  229.001200][T12672] cache 307027968
[  229.017340][T12660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.021408][T12660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.024587][T12672] rss 122880
[  229.026253][T12672] rss_huge 0
[  229.027365][T12672] shmem 306851840
[  229.028538][T12672] mapped_file 36864
[  229.029750][T12672] dirty 0
[  229.030696][T12672] writeback 0
[  229.031490][T12660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.035820][T12660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.039906][T12672] workingset_refault_anon 167
[  229.041440][T12672] workingset_refault_file 7916
[  229.044911][T12672] swap 109662208
[  229.046088][T12672] swapcached 4096
[  229.047279][T12672] pgpgin 287959
[  229.048398][T12672] pgpgout 213986
[  229.049553][T12672] pgfault 158793
[  229.050699][T12672] pgmajfault 819
[  229.061540][T12672] inactive_anon 99749888
[  229.062943][T12672] active_anon 207220736
[  229.064321][T12672] inactive_file 0
[  229.065579][T12672] active_file 0
[  229.066698][T12672] unevictable 0
[  229.067856][T12672] hierarchical_memory_limit 314572800
[  229.068079][T12660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  229.069558][T12672] hierarchical_memsw_limit 9223372036854771712
[  229.069566][T12672] total_cache 307027968
[  229.069570][T12672] total_rss 122880
[  229.069574][T12672] total_rss_huge 0
[  229.069578][T12672] total_shmem 306851840
[  229.085333][T12660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.086736][T12672] total_mapped_file 36864
[  229.089142][T12660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  229.090489][T12672] total_dirty 0
[  229.090496][T12672] total_writeback 0
[  229.095036][T12660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.108776][T12672] total_workingset_refault_anon 167
[  229.110463][T12672] total_workingset_refault_file 7916
[  229.112401][T12672] total_swap 109662208
[  229.113702][T12672] total_swapcached 4096
[  229.115022][T12672] total_pgpgin 287960
[  229.116351][T12672] total_pgpgout 213987
[  229.117930][T12672] total_pgfault 158793
[  229.119241][T12672] total_pgmajfault 820
[  229.120544][T12672] total_inactive_anon 94367744
[  229.122681][T12672] total_active_anon 212602880
[  229.124196][T12672] total_inactive_file 135168
[  229.125657][T12672] total_active_file 0
[  229.126991][T12672] total_unevictable 0
[  229.128261][T12672] anon_cost 0
[  229.129332][T12672] file_cost 0
[  229.130401][T12672] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1939,pid=12771,uid=0
[  229.132027][T12660] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  229.136703][T12672] Memory cgroup out of memory: Killed process 12771 (syz.3.1939) total-vm:98104kB, anon-rss:128kB, file-rss:21676kB, shmem-rss:0kB, UID:0 pgtables:116kB oom_score_adj:1000
[  229.156479][T12667] syz.3.1930 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  229.156531][T12660] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  229.156567][T12667] CPU: 1 UID: 0 PID: 12667 Comm: syz.3.1930 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  229.156580][T12667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  229.156587][T12667] Call Trace:
[  229.156591][T12667]  <TASK>
[  229.156595][T12667]  dump_stack_lvl+0x16c/0x1f0
[  229.156612][T12667]  dump_header+0x101/0x930
[  229.156626][T12667]  oom_kill_process+0x270/0xa60
[  229.156638][T12667]  ? __lock_acquire+0x4e1/0x1ba0
[  229.156655][T12667]  out_of_memory+0x350/0x1700
[  229.156670][T12667]  ? __pfx_out_of_memory+0x10/0x10
[  229.156685][T12667]  mem_cgroup_out_of_memory+0x205/0x270
[  229.156699][T12667]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  229.156716][T12667]  ? do_raw_spin_unlock+0x172/0x230
[  229.156729][T12667]  try_charge_memcg+0xa07/0x10c0
[  229.156743][T12667]  ? __pfx_try_charge_memcg+0x10/0x10
[  229.156754][T12667]  ? find_held_lock+0x10/0x80
[  229.156766][T12667]  ? rcu_read_unlock+0x17/0x60
[  229.156781][T12667]  charge_memcg+0x8a/0x230
[  229.156791][T12667]  __mem_cgroup_charge+0x2b/0x1e0
[  229.156804][T12667]  shmem_alloc_and_add_folio+0x514/0xc20
[  229.156825][T12667]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  229.156844][T12667]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  229.156857][T12667]  shmem_get_folio_gfp+0x687/0x1530
[  229.156870][T12667]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  229.156881][T12667]  ? timestamp_truncate+0x21e/0x2d0
[  229.156894][T12667]  shmem_write_begin+0x160/0x300
[  229.156906][T12667]  ? __pfx_shmem_write_begin+0x10/0x10
[  229.156917][T12667]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  229.156935][T12667]  generic_perform_write+0x3cd/0x930
[  229.156957][T12667]  ? __pfx_generic_perform_write+0x10/0x10
[  229.156976][T12667]  ? generic_update_time+0xcf/0xf0
[  229.156986][T12667]  ? mnt_put_write_access_file+0x45/0xf0
[  229.157004][T12667]  shmem_file_write_iter+0x10e/0x140
[  229.157018][T12667]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  229.157029][T12667]  __kernel_write_iter+0x317/0xa90
[  229.157046][T12667]  ? __pfx___kernel_write_iter+0x10/0x10
[  229.157061][T12667]  ? __up_read+0x1f8/0x750
[  229.157073][T12667]  ? dump_user_range+0x73d/0xb30
[  229.157088][T12667]  ? copy_mc_enhanced_fast_string+0x6/0xf
[  229.157107][T12667]  dump_user_range+0x418/0xb30
[  229.157125][T12667]  ? __pfx_dump_user_range+0x10/0x10
[  229.157140][T12667]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  229.157155][T12667]  ? __pfx_writenote+0x10/0x10
[  229.157174][T12667]  elf_core_dump+0x288a/0x3a90
[  229.157197][T12667]  ? __pfx_elf_core_dump+0x10/0x10
[  229.157212][T12667]  ? kasan_save_stack+0x42/0x60
[  229.157228][T12667]  ? kasan_save_stack+0x33/0x60
[  229.157242][T12667]  ? kasan_save_track+0x14/0x30
[  229.157256][T12667]  ? __kasan_kmalloc+0xaa/0xb0
[  229.157271][T12667]  ? do_coredump+0x17aa/0x4480
[  229.157284][T12667]  ? get_signal+0x22e3/0x26d0
[  229.157296][T12667]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  229.157314][T12667]  ? 0xffffffffff600000
[  229.157346][T12667]  ? do_coredump+0x3183/0x4480
[  229.157359][T12667]  do_coredump+0x3183/0x4480
[  229.157378][T12667]  ? __pfx_do_coredump+0x10/0x10
[  229.157394][T12667]  ? stack_trace_save+0x8e/0xc0
[  229.157407][T12667]  ? __pfx_stack_trace_save+0x10/0x10
[  229.157419][T12667]  ? stack_depot_save_flags+0x28/0xa50
[  229.157434][T12667]  ? __lock_acquire+0xaa4/0x1ba0
[  229.157452][T12667]  ? __kasan_slab_free+0x51/0x70
[  229.157461][T12667]  ? kmem_cache_free+0x2d4/0x4d0
[  229.157476][T12667]  ? __sigqueue_free+0xba/0x2a0
[  229.157491][T12667]  ? get_signal+0xcba/0x26d0
[  229.157502][T12667]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  229.157535][T12667]  ? proc_coredump_connector+0x2d1/0x4f0
[  229.157550][T12667]  ? __pfx_proc_coredump_connector+0x10/0x10
[  229.157567][T12667]  ? rcu_is_watching+0x12/0xc0
[  229.157582][T12667]  get_signal+0x22e3/0x26d0
[  229.157597][T12667]  ? force_sig_fault+0xc4/0x100
[  229.157610][T12667]  ? __pfx_get_signal+0x10/0x10
[  229.157627][T12667]  arch_do_signal_or_restart+0x8f/0x7d0
[  229.157657][T12667]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  229.157668][T12667]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  229.157692][T12667]  irqentry_exit_to_user_mode+0x13f/0x280
[  229.157707][T12667]  asm_exc_page_fault+0x26/0x30
[  229.157716][T12667] RIP: 0033:0x7f6e69d8e969
[  229.157728][T12667] Code: Unable to access opcode bytes at 0x7f6e69d8e93f.
[  229.157734][T12667] RSP: 002b:00007f6e6ab65fe8 EFLAGS: 00010246
[  229.157742][T12667] RAX: 0000000000000000 RBX: 00007f6e69fb6080 RCX: 00007f6e69d8e969
[  229.157749][T12667] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  229.157755][T12667] RBP: 00007f6e69e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  229.157761][T12667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  229.157767][T12667] R13: 0000000000000000 R14: 00007f6e69fb6080 R15: 00007fffff35a0e8
[  229.157781][T12667]  </TASK>
[  229.157796][T12667] memory: usage 307180kB, limit 307200kB, failcnt 18634
[  229.161651][T12660] wireguard: wg0: Could not create IPv4 socket
[  229.186387][T12667] memory+swap: usage 414292kB, limit 9007199254740988kB, failcnt 0
[  229.227413][T12660] wireguard: wg1: Could not create IPv4 socket
[  229.254942][T12667] kmem: usage 7144kB, limit 9007199254740988kB, failcnt 0
[  229.258631][T12660] wireguard: wg2: Could not create IPv4 socket
[  229.259457][T12667] Memory cgroup stats for /syz3
[  229.272168][T12667] :
[  229.346371][T12667] cache 307220480
[  229.348439][T12667] rss 36864
[  229.349492][T12667] rss_huge 0
[  229.350575][T12667] shmem 307179520
[  229.353900][T12667] mapped_file 0
[  229.355118][T12667] dirty 0
[  229.356076][T12667] writeback 0
[  229.357159][T12667] workingset_refault_anon 167
[  229.358660][T12667] workingset_refault_file 8427
[  229.360460][T12667] swap 109662208
[  229.362284][T12667] swapcached 4096
[  229.363856][T12667] pgpgin 288553
[  229.365259][T12667] pgpgout 214561
[  229.366419][T12667] pgfault 158882
[  229.367613][T12667] pgmajfault 900
[  229.368820][T12667] inactive_anon 99827712
[  229.370208][T12667] active_anon 207388672
[  229.371615][T12667] inactive_file 40960
[  229.373144][T12667] active_file 0
[  229.374559][T12667] unevictable 0
[  229.375944][T12667] hierarchical_memory_limit 314572800
[  229.378092][T12667] hierarchical_memsw_limit 9223372036854771712
[  229.380612][T12667] total_cache 307220480
[  229.382303][T12667] total_rss 36864
[  229.383791][T12667] total_rss_huge 0
[  229.385254][T12667] total_shmem 307179520
[  229.386863][T12667] total_mapped_file 0
[  229.389109][T12667] total_dirty 0
[  229.390475][T12667] total_writeback 0
[  229.392088][T12667] total_workingset_refault_anon 167
[  229.393981][T12667] total_workingset_refault_file 8427
[  229.396091][T12667] total_swap 109662208
[  229.397694][T12667] total_swapcached 4096
[  229.399404][T12667] total_pgpgin 288553
[  229.400845][T12667] total_pgpgout 214561
[  229.402595][T12667] total_pgfault 158882
[  229.404197][T12667] total_pgmajfault 900
[  229.405492][T12667] total_inactive_anon 99827712
[  229.406992][T12667] total_active_anon 207388672
[  229.408466][T12667] total_inactive_file 40960
[  229.409891][T12667] total_active_file 0
[  229.411167][T12667] total_unevictable 0
[  229.412425][T12667] anon_cost 0
[  229.413424][T12667] file_cost 0
[  229.414478][T12667] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.732,pid=8603,uid=0
[  229.419243][T12667] Memory cgroup out of memory: Killed process 8603 (syz.3.732) total-vm:101812kB, anon-rss:156kB, file-rss:20608kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  229.435497][T12667] syz.3.1930 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  229.439611][T12667] CPU: 3 UID: 0 PID: 12667 Comm: syz.3.1930 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  229.439625][T12667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  229.439632][T12667] Call Trace:
[  229.439636][T12667]  <TASK>
[  229.439640][T12667]  dump_stack_lvl+0x16c/0x1f0
[  229.439657][T12667]  dump_header+0x101/0x930
[  229.439671][T12667]  oom_kill_process+0x270/0xa60
[  229.439681][T12667]  ? __lock_acquire+0x5ca/0x1ba0
[  229.439699][T12667]  out_of_memory+0x350/0x1700
[  229.439713][T12667]  ? __pfx_out_of_memory+0x10/0x10
[  229.439728][T12667]  mem_cgroup_out_of_memory+0x205/0x270
[  229.439743][T12667]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  229.439759][T12667]  ? do_raw_spin_unlock+0x172/0x230
[  229.439773][T12667]  try_charge_memcg+0xa07/0x10c0
[  229.439787][T12667]  ? __pfx_try_charge_memcg+0x10/0x10
[  229.439798][T12667]  ? find_held_lock+0x10/0x80
[  229.439810][T12667]  ? rcu_read_unlock+0x17/0x60
[  229.439825][T12667]  charge_memcg+0x8a/0x230
[  229.439835][T12667]  __mem_cgroup_charge+0x2b/0x1e0
[  229.439848][T12667]  filemap_add_folio+0x88/0x220
[  229.439860][T12667]  ? __pfx_filemap_add_folio+0x10/0x10
[  229.439876][T12667]  __filemap_get_folio+0x518/0xc10
[  229.439892][T12667]  filemap_fault+0x669/0x2740
[  229.439907][T12667]  ? __pfx_filemap_fault+0x10/0x10
[  229.439927][T12667]  __do_fault+0x10a/0x490
[  229.439939][T12667]  do_pte_missing+0x1031/0x3fb0
[  229.439970][T12667]  ? __handle_mm_fault+0x1010/0x2a40
[  229.439987][T12667]  __handle_mm_fault+0x103d/0x2a40
[  229.440006][T12667]  ? __pfx___handle_mm_fault+0x10/0x10
[  229.440020][T12667]  ? __pte_offset_map_lock+0x155/0x2f0
[  229.440033][T12667]  ? find_held_lock+0x2b/0x80
[  229.440044][T12667]  ? find_held_lock+0x2b/0x80
[  229.440065][T12667]  handle_mm_fault+0x3fe/0xad0
[  229.440083][T12667]  __get_user_pages+0x771/0x36f0
[  229.440103][T12667]  ? __pfx___get_user_pages+0x10/0x10
[  229.440118][T12667]  ? __kernel_write_iter+0x5a5/0xa90
[  229.440137][T12667]  get_dump_page+0x257/0x3d0
[  229.440151][T12667]  ? __pfx_get_dump_page+0x10/0x10
[  229.440166][T12667]  ? dump_user_range+0x73d/0xb30
[  229.440180][T12667]  ? copy_mc_enhanced_fast_string+0x6/0xf
[  229.440193][T12667]  dump_user_range+0x1c3/0xb30
[  229.440211][T12667]  ? __pfx_dump_user_range+0x10/0x10
[  229.440226][T12667]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  229.440241][T12667]  ? __pfx_writenote+0x10/0x10
[  229.440261][T12667]  elf_core_dump+0x288a/0x3a90
[  229.440284][T12667]  ? __pfx_elf_core_dump+0x10/0x10
[  229.440299][T12667]  ? kasan_save_stack+0x42/0x60
[  229.440314][T12667]  ? kasan_save_stack+0x33/0x60
[  229.440329][T12667]  ? kasan_save_track+0x14/0x30
[  229.440348][T12667]  ? __kasan_kmalloc+0xaa/0xb0
[  229.440363][T12667]  ? do_coredump+0x17aa/0x4480
[  229.440376][T12667]  ? get_signal+0x22e3/0x26d0
[  229.440388][T12667]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  229.440406][T12667]  ? 0xffffffffff600000
[  229.440438][T12667]  ? do_coredump+0x3183/0x4480
[  229.440451][T12667]  do_coredump+0x3183/0x4480
[  229.440470][T12667]  ? __pfx_do_coredump+0x10/0x10
[  229.440486][T12667]  ? stack_trace_save+0x8e/0xc0
[  229.440499][T12667]  ? __pfx_stack_trace_save+0x10/0x10
[  229.440511][T12667]  ? stack_depot_save_flags+0x28/0xa50
[  229.440525][T12667]  ? __lock_acquire+0xaa4/0x1ba0
[  229.440544][T12667]  ? __kasan_slab_free+0x51/0x70
[  229.440553][T12667]  ? kmem_cache_free+0x2d4/0x4d0
[  229.440568][T12667]  ? __sigqueue_free+0xba/0x2a0
[  229.440582][T12667]  ? get_signal+0xcba/0x26d0
[  229.440594][T12667]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  229.440627][T12667]  ? proc_coredump_connector+0x2d1/0x4f0
[  229.440642][T12667]  ? __pfx_proc_coredump_connector+0x10/0x10
[  229.440660][T12667]  ? rcu_is_watching+0x12/0xc0
[  229.440687][T12667]  get_signal+0x22e3/0x26d0
[  229.440703][T12667]  ? force_sig_fault+0xc4/0x100
[  229.440716][T12667]  ? __pfx_get_signal+0x10/0x10
[  229.440733][T12667]  arch_do_signal_or_restart+0x8f/0x7d0
[  229.440747][T12667]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  229.440758][T12667]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  229.440781][T12667]  irqentry_exit_to_user_mode+0x13f/0x280
[  229.440796][T12667]  asm_exc_page_fault+0x26/0x30
[  229.440805][T12667] RIP: 0033:0x7f6e69d8e969
[  229.440817][T12667] Code: Unable to access opcode bytes at 0x7f6e69d8e93f.
[  229.440822][T12667] RSP: 002b:00007f6e6ab65fe8 EFLAGS: 00010246
[  229.440830][T12667] RAX: 0000000000000000 RBX: 00007f6e69fb6080 RCX: 00007f6e69d8e969
[  229.440837][T12667] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  229.440842][T12667] RBP: 00007f6e69e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  229.440848][T12667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  229.440854][T12667] R13: 0000000000000000 R14: 00007f6e69fb6080 R15: 00007fffff35a0e8
[  229.440868][T12667]  </TASK>
[  229.440883][T12667] memory: usage 307168kB, limit 307200kB, failcnt 19543
[  229.606154][T12667] memory+swap: usage 414144kB, limit 9007199254740988kB, failcnt 0
[  229.608819][T12667] kmem: usage 6928kB, limit 9007199254740988kB, failcnt 0
[  229.611062][T12667] Memory cgroup stats for /syz3:
[  229.611246][T12667] cache 307441664
[  229.614467][T12667] rss 36864
[  229.615531][T12667] rss_huge 0
[  229.616660][T12667] shmem 307400704
[  229.617836][T12667] mapped_file 0
[  229.619046][T12667] dirty 0
[  229.620002][T12667] writeback 0
[  229.621061][T12667] workingset_refault_anon 167
[  229.623352][T12667] workingset_refault_file 8895
[  229.624828][T12667] swap 109510656
[  229.625968][T12667] swapcached 4096
[  229.627215][T12667] pgpgin 289075
[  229.628349][T12667] pgpgout 215029
[  229.629701][T12667] pgfault 158922
[  229.630839][T12667] pgmajfault 936
[  229.632061][T12667] inactive_anon 212803584
[  229.633429][T12667] active_anon 94633984
[  229.634749][T12667] inactive_file 40960
[  229.636017][T12667] active_file 0
[  229.637147][T12667] unevictable 0
[  229.638256][T12667] hierarchical_memory_limit 314572800
[  229.639934][T12667] hierarchical_memsw_limit 9223372036854771712
[  229.642154][T12667] total_cache 307441664
[  229.643480][T12667] total_rss 36864
[  229.644927][T12667] total_rss_huge 0
[  229.646125][T12667] total_shmem 307400704
[  229.647502][T12667] total_mapped_file 0
[  229.648794][T12667] total_dirty 0
[  229.649894][T12667] total_writeback 0
[  229.651101][T12667] total_workingset_refault_anon 167
[  229.652797][T12667] total_workingset_refault_file 8895
[  229.654363][T12667] total_swap 109510656
[  229.655658][T12667] total_swapcached 4096
[  229.656986][T12667] total_pgpgin 289075
[  229.658281][T12667] total_pgpgout 215029
[  229.659565][T12667] total_pgfault 158922
[  229.660847][T12667] total_pgmajfault 936
[  229.662196][T12667] total_inactive_anon 212803584
[  229.663713][T12667] total_active_anon 94633984
[  229.665091][T12667] total_inactive_file 40960
[  229.666493][T12667] total_active_file 0
[  229.667778][T12667] total_unevictable 0
[  229.669031][T12667] anon_cost 0
[  229.670090][T12667] file_cost 0
[  229.671195][T12667] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1465,pid=10967,uid=0
[  229.676980][T12667] Memory cgroup out of memory: Killed process 10967 (syz.3.1465) total-vm:100408kB, anon-rss:204kB, file-rss:20608kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  229.697432][ T5932] syz-executor invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=0
[  229.704384][ T5932] CPU: 2 UID: 0 PID: 5932 Comm: syz-executor Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  229.704400][ T5932] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  229.704412][ T5932] Call Trace:
[  229.704416][ T5932]  <TASK>
[  229.704420][ T5932]  dump_stack_lvl+0x16c/0x1f0
[  229.704442][ T5932]  dump_header+0x101/0x930
[  229.704462][ T5932]  oom_kill_process+0x270/0xa60
[  229.704480][ T5932]  ? mem_cgroup_out_of_memory+0x8c/0x270
[  229.704506][ T5932]  out_of_memory+0x350/0x1700
[  229.704523][ T5932]  ? __lock_acquire+0xaa4/0x1ba0
[  229.704551][ T5932]  ? __pfx_out_of_memory+0x10/0x10
[  229.704577][ T5932]  mem_cgroup_out_of_memory+0x205/0x270
[  229.704597][ T5932]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  229.704626][ T5932]  ? do_raw_spin_unlock+0x172/0x230
[  229.704642][ T5932]  try_charge_memcg+0xa07/0x10c0
[  229.704656][ T5932]  ? __pfx_try_charge_memcg+0x10/0x10
[  229.704666][ T5932]  ? peak_open+0x11/0x50
[  229.704679][ T5932]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  229.704695][ T5932]  obj_cgroup_charge+0x298/0x640
[  229.704708][ T5932]  __memcg_slab_post_alloc_hook+0x18a/0x940
[  229.704720][ T5932]  ? __pfx___might_resched+0x10/0x10
[  229.704737][ T5932]  __kvmalloc_node_noprof+0x4ec/0x600
[  229.704754][ T5932]  ? alloc_fdtable+0xee/0x2b0
[  229.704772][ T5932]  ? alloc_fdtable+0xee/0x2b0
[  229.704786][ T5932]  alloc_fdtable+0xee/0x2b0
[  229.704801][ T5932]  dup_fd+0x83b/0xb90
[  229.704817][ T5932]  ? __pfx_audit_alloc+0x10/0x10
[  229.704833][ T5932]  copy_process+0x25c1/0x91a0
[  229.704847][ T5932]  ? ptep_set_access_flags+0x103/0x160
[  229.704860][ T5932]  ? find_held_lock+0x2b/0x80
[  229.704871][ T5932]  ? find_held_lock+0x2b/0x80
[  229.704883][ T5932]  ? wp_page_reuse+0x287/0x900
[  229.704901][ T5932]  ? __pfx_copy_process+0x10/0x10
[  229.704918][ T5932]  ? __pfx_do_wp_page+0x10/0x10
[  229.704930][ T5932]  ? do_raw_spin_lock+0x12c/0x2b0
[  229.704947][ T5932]  kernel_clone+0xfc/0x960
[  229.704962][ T5932]  ? __pfx_kernel_clone+0x10/0x10
[  229.704979][ T5932]  ? cgroup_rstat_updated+0x2a/0xb20
[  229.704995][ T5932]  __do_sys_clone+0xce/0x120
[  229.705008][ T5932]  ? __pfx___do_sys_clone+0x10/0x10
[  229.705029][ T5932]  ? do_user_addr_fault+0x843/0x1370
[  229.705043][ T5932]  do_syscall_64+0xcd/0x260
[  229.705058][ T5932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.705068][ T5932] RIP: 0033:0x7f6e69d851d3
[  229.705078][ T5932] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00
[  229.705088][ T5932] RSP: 002b:00007fffff35a368 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  229.705098][ T5932] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f6e69d851d3
[  229.705104][ T5932] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  229.705110][ T5932] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001
[  229.705116][ T5932] R10: 0000555587ae47d0 R11: 0000000000000246 R12: 0000000000000000
[  229.705122][ T5932] R13: 00000000000927c0 R14: 0000000000037d85 R15: 00007fffff35a500
[  229.705136][ T5932]  </TASK>
[  229.705140][ T5932] memory: usage 307120kB, limit 307200kB, failcnt 20414
[  229.813103][ T5932] memory+swap: usage 414268kB, limit 9007199254740988kB, failcnt 0
[  229.815625][ T5932] kmem: usage 6792kB, limit 9007199254740988kB, failcnt 0
[  229.818084][ T5932] Memory cgroup stats for /syz3:
[  229.818415][ T5932] cache 307580928
[  229.822905][ T5932] rss 36864
[  229.824019][ T5932] rss_huge 0
[  229.825117][ T5932] shmem 307519488
[  229.826319][ T5932] mapped_file 0
[  229.827573][ T5932] dirty 0
[  229.828693][ T5932] writeback 0
[  229.829726][ T5932] workingset_refault_anon 167
[  229.831358][ T5932] workingset_refault_file 9612
[  229.833215][ T5932] swap 109662208
[  229.834775][ T5932] swapcached 4096
[  229.836128][ T5932] pgpgin 289903
[  229.837318][ T5932] pgpgout 215823
[  229.838509][ T5932] pgfault 158998
[  229.839684][ T5932] pgmajfault 994
[  229.840928][ T5932] inactive_anon 91287552
[  229.842534][ T5932] active_anon 216268800
[  229.843988][ T5932] inactive_file 57344
[  229.845314][ T5932] active_file 0
[  229.846548][ T5932] unevictable 0
[  229.847757][ T5932] hierarchical_memory_limit 314572800
[  229.849464][ T5932] hierarchical_memsw_limit 9223372036854771712
[  229.851559][ T5932] total_cache 307580928
[  229.852872][ T5932] total_rss 36864
[  229.854049][ T5932] total_rss_huge 0
[  229.855260][ T5932] total_shmem 307519488
[  229.856588][ T5932] total_mapped_file 0
[  229.857885][ T5932] total_dirty 0
[  229.859061][ T5932] total_writeback 0
[  229.860299][ T5932] total_workingset_refault_anon 167
[  229.862108][ T5932] total_workingset_refault_file 9612
[  229.863803][ T5932] total_swap 109662208
[  229.865096][ T5932] total_swapcached 4096
[  229.866416][ T5932] total_pgpgin 289903
[  229.867702][ T5932] total_pgpgout 215823
[  229.869011][ T5932] total_pgfault 158998
[  229.870304][ T5932] total_pgmajfault 994
[  229.872207][ T5932] total_inactive_anon 91287552
[  229.873744][ T5932] total_active_anon 216268800
[  229.875229][ T5932] total_inactive_file 57344
[  229.876658][ T5932] total_active_file 0
[  229.877906][ T5932] total_unevictable 0
[  229.879128][ T5932] anon_cost 0
[  229.880187][ T5932] file_cost 0
[  229.881258][ T5932] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.315,pid=7274,uid=0
[  229.887774][ T5932] Memory cgroup out of memory: Killed process 7274 (syz.3.315) total-vm:101812kB, anon-rss:72kB, file-rss:20608kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[  229.901065][T12684] syz.3.1930 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  229.908418][T12684] CPU: 2 UID: 0 PID: 12684 Comm: syz.3.1930 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  229.908435][T12684] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  229.908441][T12684] Call Trace:
[  229.908446][T12684]  <TASK>
[  229.908450][T12684]  dump_stack_lvl+0x16c/0x1f0
[  229.908469][T12684]  dump_header+0x101/0x930
[  229.908483][T12684]  oom_kill_process+0x270/0xa60
[  229.908493][T12684]  ? __lock_acquire+0x4e1/0x1ba0
[  229.908511][T12684]  out_of_memory+0x350/0x1700
[  229.908526][T12684]  ? __pfx_out_of_memory+0x10/0x10
[  229.908541][T12684]  mem_cgroup_out_of_memory+0x205/0x270
[  229.908556][T12684]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  229.908573][T12684]  ? do_raw_spin_unlock+0x172/0x230
[  229.908586][T12684]  try_charge_memcg+0xa07/0x10c0
[  229.908600][T12684]  ? __pfx_try_charge_memcg+0x10/0x10
[  229.908611][T12684]  ? find_held_lock+0x10/0x80
[  229.908624][T12684]  ? rcu_read_unlock+0x17/0x60
[  229.908639][T12684]  charge_memcg+0x8a/0x230
[  229.908649][T12684]  __mem_cgroup_charge+0x2b/0x1e0
[  229.908663][T12684]  shmem_alloc_and_add_folio+0x514/0xc20
[  229.908683][T12684]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  229.908702][T12684]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  229.908716][T12684]  shmem_get_folio_gfp+0x687/0x1530
[  229.908728][T12684]  ? __lock_acquire+0xaa4/0x1ba0
[  229.908743][T12684]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  229.908754][T12684]  ? __pte_offset_map_lock+0x155/0x2f0
[  229.908769][T12684]  shmem_write_begin+0x160/0x300
[  229.908781][T12684]  ? __pfx_shmem_write_begin+0x10/0x10
[  229.908793][T12684]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  229.908808][T12684]  ? __pfx_timestamp_truncate+0x10/0x10
[  229.908821][T12684]  generic_perform_write+0x3cd/0x930
[  229.908843][T12684]  ? __pfx_generic_perform_write+0x10/0x10
[  229.908861][T12684]  ? inode_needs_update_time.part.0+0x191/0x270
[  229.908876][T12684]  shmem_file_write_iter+0x10e/0x140
[  229.908903][T12684]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  229.908916][T12684]  __kernel_write_iter+0x317/0xa90
[  229.908933][T12684]  ? __pfx___kernel_write_iter+0x10/0x10
[  229.908948][T12684]  ? __up_read+0x1f8/0x750
[  229.908960][T12684]  ? dump_user_range+0x73d/0xb30
[  229.908979][T12684]  dump_user_range+0x418/0xb30
[  229.908997][T12684]  ? __pfx_dump_user_range+0x10/0x10
[  229.909012][T12684]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  229.909027][T12684]  ? __pfx_writenote+0x10/0x10
[  229.909047][T12684]  elf_core_dump+0x288a/0x3a90
[  229.909070][T12684]  ? __pfx_elf_core_dump+0x10/0x10
[  229.909085][T12684]  ? kasan_save_stack+0x42/0x60
[  229.909103][T12684]  ? kasan_save_stack+0x33/0x60
[  229.909117][T12684]  ? kasan_save_track+0x14/0x30
[  229.909132][T12684]  ? __kasan_kmalloc+0xaa/0xb0
[  229.909147][T12684]  ? do_coredump+0x17aa/0x4480
[  229.909160][T12684]  ? get_signal+0x22e3/0x26d0
[  229.909173][T12684]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  229.909191][T12684]  ? 0xffffffffff600000
[  229.909224][T12684]  ? do_coredump+0x3183/0x4480
[  229.909237][T12684]  do_coredump+0x3183/0x4480
[  229.909257][T12684]  ? __pfx_do_coredump+0x10/0x10
[  229.909273][T12684]  ? stack_trace_save+0x8e/0xc0
[  229.909286][T12684]  ? __pfx_stack_trace_save+0x10/0x10
[  229.909298][T12684]  ? stack_depot_save_flags+0x28/0xa50
[  229.909313][T12684]  ? __lock_acquire+0xaa4/0x1ba0
[  229.909332][T12684]  ? __kasan_slab_free+0x51/0x70
[  229.909346][T12684]  ? kmem_cache_free+0x2d4/0x4d0
[  229.909361][T12684]  ? __sigqueue_free+0xba/0x2a0
[  229.909376][T12684]  ? get_signal+0xcba/0x26d0
[  229.909387][T12684]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  229.909420][T12684]  ? proc_coredump_connector+0x2d1/0x4f0
[  229.909435][T12684]  ? __pfx_proc_coredump_connector+0x10/0x10
[  229.909453][T12684]  ? rcu_is_watching+0x12/0xc0
[  229.909467][T12684]  get_signal+0x22e3/0x26d0
[  229.909483][T12684]  ? force_sig_fault+0xc4/0x100
[  229.909497][T12684]  ? __pfx_get_signal+0x10/0x10
[  229.909514][T12684]  arch_do_signal_or_restart+0x8f/0x7d0
[  229.909528][T12684]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  229.909540][T12684]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  229.909563][T12684]  irqentry_exit_to_user_mode+0x13f/0x280
[  229.909578][T12684]  asm_exc_page_fault+0x26/0x30
[  229.909588][T12684] RIP: 0033:0x7f6e69d8e969
[  229.909600][T12684] Code: Unable to access opcode bytes at 0x7f6e69d8e93f.
[  229.909605][T12684] RSP: 002b:00007f6e6ab65fe8 EFLAGS: 00010246
[  229.909614][T12684] RAX: 0000000000000000 RBX: 00007f6e69fb6080 RCX: 00007f6e69d8e969
[  229.909621][T12684] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  229.909627][T12684] RBP: 00007f6e69e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  229.909633][T12684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  229.909639][T12684] R13: 0000000000000000 R14: 00007f6e69fb6080 R15: 00007fffff35a0e8
[  229.909653][T12684]  </TASK>
[  229.909668][T12684] memory: usage 307200kB, limit 307200kB, failcnt 22068
[  230.061755][T12684] memory+swap: usage 414140kB, limit 9007199254740988kB, failcnt 0
[  230.064369][T12684] kmem: usage 6596kB, limit 9007199254740988kB, failcnt 0
[  230.066636][T12684] Memory cgroup stats for /syz3:
[  230.066707][T12684] cache 307781632
[  230.069530][T12684] rss 36864
[  230.070565][T12684] rss_huge 0
[  230.071672][T12684] shmem 307748864
[  230.072907][T12684] mapped_file 0
[  230.074017][T12684] dirty 0
[  230.074971][T12684] writeback 0
[  230.076034][T12684] workingset_refault_anon 167
[  230.077629][T12684] workingset_refault_file 9897
[  230.079139][T12684] swap 109506560
[  230.080283][T12684] swapcached 4096
[  230.081481][T12684] pgpgin 290244
[  230.083664][T12684] pgpgout 216115
[  230.084819][T12684] pgfault 159042
[  230.085952][T12684] pgmajfault 1035
[  230.087242][T12684] inactive_anon 104701952
[  230.088555][T12684] active_anon 203083776
[  230.089919][T12684] inactive_file 32768
[  230.091338][T12684] active_file 0
[  230.092561][T12684] unevictable 0
[  230.093682][T12684] hierarchical_memory_limit 314572800
[  230.095428][T12684] hierarchical_memsw_limit 9223372036854771712
[  230.097346][T12684] total_cache 307781632
[  230.098677][T12684] total_rss 36864
[  230.099931][T12684] total_rss_huge 0
[  230.101414][T12684] total_shmem 307748864
[  230.103121][T12684] total_mapped_file 0
[  230.104457][T12684] total_dirty 0
[  230.105576][T12684] total_writeback 0
[  230.106790][T12684] total_workingset_refault_anon 167
[  230.108424][T12684] total_workingset_refault_file 9897
[  230.110152][T12684] total_swap 109506560
[  230.111561][T12684] total_swapcached 4096
[  230.112854][T12684] total_pgpgin 290244
[  230.114259][T12684] total_pgpgout 216115
[  230.115552][T12684] total_pgfault 159042
[  230.116829][T12684] total_pgmajfault 1035
[  230.118155][T12684] total_inactive_anon 104701952
[  230.119730][T12684] total_active_anon 203083776
[  230.121237][T12684] total_inactive_file 32768
[  230.122943][T12684] total_active_file 0
[  230.124212][T12684] total_unevictable 0
[  230.125460][T12684] anon_cost 0
[  230.126513][T12684] file_cost 0
[  230.127642][T12684] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.44,pid=6162,uid=0
[  230.134418][T12684] Memory cgroup out of memory: Killed process 6162 (syz.3.44) total-vm:97900kB, anon-rss:176kB, file-rss:20608kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  230.150347][T12682] syz.3.1930 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  230.155875][T12682] CPU: 0 UID: 0 PID: 12682 Comm: syz.3.1930 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  230.155898][T12682] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  230.155909][T12682] Call Trace:
[  230.155915][T12682]  <TASK>
[  230.155922][T12682]  dump_stack_lvl+0x16c/0x1f0
[  230.155948][T12682]  dump_header+0x101/0x930
[  230.155971][T12682]  oom_kill_process+0x270/0xa60
[  230.155988][T12682]  ? __lock_acquire+0x4e1/0x1ba0
[  230.156017][T12682]  out_of_memory+0x350/0x1700
[  230.156042][T12682]  ? __pfx_out_of_memory+0x10/0x10
[  230.156069][T12682]  mem_cgroup_out_of_memory+0x205/0x270
[  230.156093][T12682]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  230.156122][T12682]  ? do_raw_spin_unlock+0x172/0x230
[  230.156152][T12682]  try_charge_memcg+0xa07/0x10c0
[  230.156176][T12682]  ? __pfx_try_charge_memcg+0x10/0x10
[  230.156194][T12682]  ? find_held_lock+0x10/0x80
[  230.156214][T12682]  ? rcu_read_unlock+0x17/0x60
[  230.156235][T12682]  charge_memcg+0x8a/0x230
[  230.156253][T12682]  __mem_cgroup_charge+0x2b/0x1e0
[  230.156275][T12682]  filemap_add_folio+0x88/0x220
[  230.156295][T12682]  ? __pfx_filemap_add_folio+0x10/0x10
[  230.156322][T12682]  __filemap_get_folio+0x518/0xc10
[  230.156348][T12682]  filemap_fault+0x669/0x2740
[  230.156368][T12682]  ? __pfx_filemap_fault+0x10/0x10
[  230.156396][T12682]  __do_fault+0x10a/0x490
[  230.156416][T12682]  do_pte_missing+0x1031/0x3fb0
[  230.156443][T12682]  ? __handle_mm_fault+0x1010/0x2a40
[  230.156471][T12682]  __handle_mm_fault+0x103d/0x2a40
[  230.156503][T12682]  ? __pfx___handle_mm_fault+0x10/0x10
[  230.156526][T12682]  ? __pte_offset_map_lock+0x155/0x2f0
[  230.156547][T12682]  ? find_held_lock+0x2b/0x80
[  230.156565][T12682]  ? find_held_lock+0x2b/0x80
[  230.156602][T12682]  handle_mm_fault+0x3fe/0xad0
[  230.156631][T12682]  __get_user_pages+0x771/0x36f0
[  230.156660][T12682]  ? __pfx___get_user_pages+0x10/0x10
[  230.156685][T12682]  ? __kernel_write_iter+0x5a5/0xa90
[  230.156715][T12682]  get_dump_page+0x257/0x3d0
[  230.156738][T12682]  ? __pfx_get_dump_page+0x10/0x10
[  230.156761][T12682]  ? dump_user_range+0x73d/0xb30
[  230.156783][T12682]  ? copy_mc_enhanced_fast_string+0x6/0xf
[  230.156804][T12682]  dump_user_range+0x1c3/0xb30
[  230.156833][T12682]  ? __pfx_dump_user_range+0x10/0x10
[  230.156856][T12682]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  230.156880][T12682]  ? __pfx_writenote+0x10/0x10
[  230.156912][T12682]  elf_core_dump+0x288a/0x3a90
[  230.156952][T12682]  ? __pfx_elf_core_dump+0x10/0x10
[  230.156976][T12682]  ? kasan_save_stack+0x42/0x60
[  230.157000][T12682]  ? kasan_save_stack+0x33/0x60
[  230.157022][T12682]  ? kasan_save_track+0x14/0x30
[  230.157045][T12682]  ? __kasan_kmalloc+0xaa/0xb0
[  230.157067][T12682]  ? do_coredump+0x17aa/0x4480
[  230.157089][T12682]  ? get_signal+0x22e3/0x26d0
[  230.157109][T12682]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  230.157143][T12682]  ? 0xffffffffff600000
[  230.157204][T12682]  ? do_coredump+0x3183/0x4480
[  230.157225][T12682]  do_coredump+0x3183/0x4480
[  230.157258][T12682]  ? __pfx_do_coredump+0x10/0x10
[  230.157284][T12682]  ? stack_trace_save+0x8e/0xc0
[  230.157304][T12682]  ? __pfx_stack_trace_save+0x10/0x10
[  230.157323][T12682]  ? stack_depot_save_flags+0x28/0xa50
[  230.157346][T12682]  ? __lock_acquire+0xaa4/0x1ba0
[  230.157377][T12682]  ? __kasan_slab_free+0x51/0x70
[  230.157391][T12682]  ? kmem_cache_free+0x2d4/0x4d0
[  230.157414][T12682]  ? __sigqueue_free+0xba/0x2a0
[  230.157436][T12682]  ? get_signal+0xcba/0x26d0
[  230.157455][T12682]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  230.157515][T12682]  ? proc_coredump_connector+0x2d1/0x4f0
[  230.157540][T12682]  ? __pfx_proc_coredump_connector+0x10/0x10
[  230.157568][T12682]  ? rcu_is_watching+0x12/0xc0
[  230.157592][T12682]  get_signal+0x22e3/0x26d0
[  230.157618][T12682]  ? force_sig_fault+0xc4/0x100
[  230.157641][T12682]  ? __pfx_get_signal+0x10/0x10
[  230.157671][T12682]  arch_do_signal_or_restart+0x8f/0x7d0
[  230.157693][T12682]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  230.157711][T12682]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  230.157749][T12682]  irqentry_exit_to_user_mode+0x13f/0x280
[  230.157773][T12682]  asm_exc_page_fault+0x26/0x30
[  230.157789][T12682] RIP: 0033:0x7f6e69d8e969
[  230.157808][T12682] Code: Unable to access opcode bytes at 0x7f6e69d8e93f.
[  230.157814][T12682] RSP: 002b:00007f6e6ab65fe8 EFLAGS: 00010246
[  230.157825][T12682] RAX: 0000000000000000 RBX: 00007f6e69fb6080 RCX: 00007f6e69d8e969
[  230.157834][T12682] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  230.157841][T12682] RBP: 00007f6e69e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  230.157849][T12682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  230.157857][T12682] R13: 0000000000000000 R14: 00007f6e69fb6080 R15: 00007fffff35a0e8
[  230.157879][T12682]  </TASK>
[  230.157885][T12682] memory: usage 307200kB, limit 307200kB, failcnt 22514
[  230.325117][T12682] memory+swap: usage 414044kB, limit 9007199254740988kB, failcnt 0
[  230.327583][T12682] kmem: usage 6400kB, limit 9007199254740988kB, failcnt 0
[  230.329753][T12682] Memory cgroup stats for /syz3:
[  230.329822][T12682] cache 307982336
[  230.332627][T12682] rss 36864
[  230.333653][T12682] rss_huge 0
[  230.334706][T12682] shmem 307953664
[  230.335850][T12682] mapped_file 0
[  230.336953][T12682] dirty 0
[  230.337874][T12682] writeback 0
[  230.338898][T12682] workingset_refault_anon 167
[  230.340288][T12682] workingset_refault_file 10432
[  230.342491][T12682] swap 109408256
[  230.343593][T12682] swapcached 4096
[  230.344696][T12682] pgpgin 290829
[  230.345742][T12682] pgpgout 216651
[  230.346826][T12682] pgfault 159089
[  230.347944][T12682] pgmajfault 1080
[  230.349109][T12682] inactive_anon 91508736
[  230.350453][T12682] active_anon 216481792
[  230.351855][T12682] inactive_file 28672
[  230.353106][T12682] active_file 0
[  230.354208][T12682] unevictable 0
[  230.355331][T12682] hierarchical_memory_limit 314572800
[  230.356990][T12682] hierarchical_memsw_limit 9223372036854771712
[  230.358833][T12682] total_cache 307982336
[  230.360084][T12682] total_rss 36864
[  230.361217][T12682] total_rss_huge 0
[  230.362725][T12682] total_shmem 307953664
[  230.364015][T12682] total_mapped_file 0
[  230.365237][T12682] total_dirty 0
[  230.366305][T12682] total_writeback 0
[  230.367486][T12682] total_workingset_refault_anon 167
[  230.369036][T12682] total_workingset_refault_file 10432
[  230.370616][T12682] total_swap 109408256
[  230.371939][T12682] total_swapcached 4096
[  230.373159][T12682] total_pgpgin 290829
[  230.374349][T12682] total_pgpgout 216651
[  230.375577][T12682] total_pgfault 159089
[  230.376803][T12682] total_pgmajfault 1080
[  230.378044][T12682] total_inactive_anon 91508736
[  230.379472][T12682] total_active_anon 216481792
[  230.380893][T12682] total_inactive_file 28672
[  230.382336][T12682] total_active_file 0
[  230.383550][T12682] total_unevictable 0
[  230.384770][T12682] anon_cost 0
[  230.385830][T12682] file_cost 0
[  230.386912][T12682] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.744,pid=8649,uid=0
[  230.391328][T12682] Memory cgroup out of memory: Killed process 8649 (syz.3.744) total-vm:101812kB, anon-rss:148kB, file-rss:20608kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  230.411639][T12667] syz.3.1930 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  230.414956][T12667] CPU: 3 UID: 0 PID: 12667 Comm: syz.3.1930 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  230.414970][T12667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  230.414978][T12667] Call Trace:
[  230.414982][T12667]  <TASK>
[  230.414986][T12667]  dump_stack_lvl+0x16c/0x1f0
[  230.415004][T12667]  dump_header+0x101/0x930
[  230.415018][T12667]  oom_kill_process+0x270/0xa60
[  230.415029][T12667]  ? __lock_acquire+0x4e1/0x1ba0
[  230.415047][T12667]  out_of_memory+0x350/0x1700
[  230.415062][T12667]  ? __pfx_out_of_memory+0x10/0x10
[  230.415078][T12667]  mem_cgroup_out_of_memory+0x205/0x270
[  230.415093][T12667]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  230.415110][T12667]  ? do_raw_spin_unlock+0x172/0x230
[  230.415123][T12667]  try_charge_memcg+0xa07/0x10c0
[  230.415137][T12667]  ? __pfx_try_charge_memcg+0x10/0x10
[  230.415148][T12667]  ? find_held_lock+0x10/0x80
[  230.415161][T12667]  ? rcu_read_unlock+0x17/0x60
[  230.415176][T12667]  charge_memcg+0x8a/0x230
[  230.415187][T12667]  __mem_cgroup_charge+0x2b/0x1e0
[  230.415200][T12667]  filemap_add_folio+0x88/0x220
[  230.415212][T12667]  ? __pfx_filemap_add_folio+0x10/0x10
[  230.415229][T12667]  __filemap_get_folio+0x518/0xc10
[  230.415244][T12667]  filemap_fault+0x669/0x2740
[  230.415260][T12667]  ? __pfx_filemap_fault+0x10/0x10
[  230.415280][T12667]  __do_fault+0x10a/0x490
[  230.415292][T12667]  do_pte_missing+0x1031/0x3fb0
[  230.415310][T12667]  ? __handle_mm_fault+0x1010/0x2a40
[  230.415327][T12667]  __handle_mm_fault+0x103d/0x2a40
[  230.415351][T12667]  ? __pfx___handle_mm_fault+0x10/0x10
[  230.415366][T12667]  ? __pte_offset_map_lock+0x155/0x2f0
[  230.415379][T12667]  ? find_held_lock+0x2b/0x80
[  230.415390][T12667]  ? find_held_lock+0x2b/0x80
[  230.415411][T12667]  handle_mm_fault+0x3fe/0xad0
[  230.415430][T12667]  __get_user_pages+0x771/0x36f0
[  230.415449][T12667]  ? __pfx___get_user_pages+0x10/0x10
[  230.415465][T12667]  ? __kernel_write_iter+0x5a5/0xa90
[  230.415484][T12667]  get_dump_page+0x257/0x3d0
[  230.415499][T12667]  ? __pfx_get_dump_page+0x10/0x10
[  230.415514][T12667]  ? dump_user_range+0x73d/0xb30
[  230.415529][T12667]  ? copy_mc_enhanced_fast_string+0x6/0xf
[  230.415541][T12667]  dump_user_range+0x1c3/0xb30
[  230.415560][T12667]  ? __pfx_dump_user_range+0x10/0x10
[  230.415575][T12667]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  230.415591][T12667]  ? __pfx_writenote+0x10/0x10
[  230.415611][T12667]  elf_core_dump+0x288a/0x3a90
[  230.415634][T12667]  ? __pfx_elf_core_dump+0x10/0x10
[  230.415649][T12667]  ? kasan_save_stack+0x42/0x60
[  230.415664][T12667]  ? kasan_save_stack+0x33/0x60
[  230.415679][T12667]  ? kasan_save_track+0x14/0x30
[  230.415694][T12667]  ? __kasan_kmalloc+0xaa/0xb0
[  230.415709][T12667]  ? do_coredump+0x17aa/0x4480
[  230.415722][T12667]  ? get_signal+0x22e3/0x26d0
[  230.415735][T12667]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  230.415752][T12667]  ? 0xffffffffff600000
[  230.415798][T12667]  ? do_coredump+0x3183/0x4480
[  230.415812][T12667]  do_coredump+0x3183/0x4480
[  230.415831][T12667]  ? __pfx_do_coredump+0x10/0x10
[  230.415847][T12667]  ? stack_trace_save+0x8e/0xc0
[  230.415860][T12667]  ? __pfx_stack_trace_save+0x10/0x10
[  230.415873][T12667]  ? stack_depot_save_flags+0x28/0xa50
[  230.415888][T12667]  ? __lock_acquire+0xaa4/0x1ba0
[  230.415906][T12667]  ? __kasan_slab_free+0x51/0x70
[  230.415915][T12667]  ? kmem_cache_free+0x2d4/0x4d0
[  230.415930][T12667]  ? __sigqueue_free+0xba/0x2a0
[  230.415945][T12667]  ? get_signal+0xcba/0x26d0
[  230.415956][T12667]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  230.415990][T12667]  ? proc_coredump_connector+0x2d1/0x4f0
[  230.416004][T12667]  ? __pfx_proc_coredump_connector+0x10/0x10
[  230.416022][T12667]  ? rcu_is_watching+0x12/0xc0
[  230.416036][T12667]  get_signal+0x22e3/0x26d0
[  230.416053][T12667]  ? force_sig_fault+0xc4/0x100
[  230.416066][T12667]  ? __pfx_get_signal+0x10/0x10
[  230.416083][T12667]  arch_do_signal_or_restart+0x8f/0x7d0
[  230.416097][T12667]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  230.416108][T12667]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  230.416131][T12667]  irqentry_exit_to_user_mode+0x13f/0x280
[  230.416146][T12667]  asm_exc_page_fault+0x26/0x30
[  230.416156][T12667] RIP: 0033:0x7f6e69d8e969
[  230.416168][T12667] Code: Unable to access opcode bytes at 0x7f6e69d8e93f.
[  230.416173][T12667] RSP: 002b:00007f6e6ab65fe8 EFLAGS: 00010246
[  230.416181][T12667] RAX: 0000000000000000 RBX: 00007f6e69fb6080 RCX: 00007f6e69d8e969
[  230.416188][T12667] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  230.416194][T12667] RBP: 00007f6e69e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  230.416200][T12667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  230.416206][T12667] R13: 0000000000000000 R14: 00007f6e69fb6080 R15: 00007fffff35a0e8
[  230.416220][T12667]  </TASK>
[  230.416235][T12667] memory: usage 307200kB, limit 307200kB, failcnt 23785
[  230.564384][T12667] memory+swap: usage 414296kB, limit 9007199254740988kB, failcnt 0
[  230.567151][T12667] kmem: usage 6240kB, limit 9007199254740988kB, failcnt 0
[  230.569336][T12667] Memory cgroup stats for /syz3:
[  230.569405][T12667] cache 308146176
[  230.572223][T12667] rss 36864
[  230.573245][T12667] rss_huge 0
[  230.574287][T12667] shmem 308117504
[  230.575458][T12667] mapped_file 0
[  230.576574][T12667] dirty 0
[  230.577522][T12667] writeback 0
[  230.578683][T12667] workingset_refault_anon 167
[  230.580190][T12667] workingset_refault_file 11395
[  230.581822][T12667] swap 109666304
[  230.582963][T12667] swapcached 4096
[  230.584133][T12667] pgpgin 291933
[  230.585245][T12667] pgpgout 217715
[  230.586372][T12667] pgfault 159176
[  230.587522][T12667] pgmajfault 1152
[  230.588704][T12667] inactive_anon 216702976
[  230.590061][T12667] active_anon 91451392
[  230.591358][T12667] inactive_file 28672
[  230.592689][T12667] active_file 0
[  230.593797][T12667] unevictable 0
[  230.594910][T12667] hierarchical_memory_limit 314572800
[  230.596577][T12667] hierarchical_memsw_limit 9223372036854771712
[  230.598495][T12667] total_cache 308146176
[  230.599801][T12667] total_rss 36864
[  230.600960][T12667] total_rss_huge 0
[  230.602264][T12667] total_shmem 308117504
[  230.603578][T12667] total_mapped_file 0
[  230.604829][T12667] total_dirty 0
[  230.605935][T12667] total_writeback 0
[  230.607148][T12667] total_workingset_refault_anon 167
[  230.608773][T12667] total_workingset_refault_file 11395
[  230.610436][T12667] total_swap 109666304
[  230.611830][T12667] total_swapcached 4096
[  230.613133][T12667] total_pgpgin 291933
[  230.614380][T12667] total_pgpgout 217715
[  230.615664][T12667] total_pgfault 159176
[  230.616938][T12667] total_pgmajfault 1152
[  230.618227][T12667] total_inactive_anon 216702976
[  230.619734][T12667] total_active_anon 91451392
[  230.621186][T12667] total_inactive_file 28672
[  230.622714][T12667] total_active_file 0
[  230.623981][T12667] total_unevictable 0
[  230.625236][T12667] anon_cost 0
[  230.626449][T12667] file_cost 0
[  230.627588][T12667] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.712,pid=8535,uid=0
[  230.633009][T12667] Memory cgroup out of memory: Killed process 8535 (syz.3.712) total-vm:101812kB, anon-rss:188kB, file-rss:20608kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[  230.657431][T12677] syz.3.1930 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  230.660757][T12677] CPU: 1 UID: 0 PID: 12677 Comm: syz.3.1930 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  230.660771][T12677] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  230.660778][T12677] Call Trace:
[  230.660782][T12677]  <TASK>
[  230.660787][T12677]  dump_stack_lvl+0x16c/0x1f0
[  230.660804][T12677]  dump_header+0x101/0x930
[  230.660818][T12677]  oom_kill_process+0x270/0xa60
[  230.660829][T12677]  ? __lock_acquire+0x5ca/0x1ba0
[  230.660847][T12677]  out_of_memory+0x350/0x1700
[  230.660861][T12677]  ? __pfx_out_of_memory+0x10/0x10
[  230.660877][T12677]  mem_cgroup_out_of_memory+0x205/0x270
[  230.660892][T12677]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  230.660909][T12677]  ? do_raw_spin_unlock+0x172/0x230
[  230.660923][T12677]  try_charge_memcg+0xa07/0x10c0
[  230.660936][T12677]  ? __pfx_try_charge_memcg+0x10/0x10
[  230.660947][T12677]  ? find_held_lock+0x10/0x80
[  230.660960][T12677]  ? rcu_read_unlock+0x17/0x60
[  230.660975][T12677]  charge_memcg+0x8a/0x230
[  230.660986][T12677]  __mem_cgroup_charge+0x2b/0x1e0
[  230.660999][T12677]  filemap_add_folio+0x88/0x220
[  230.661011][T12677]  ? __pfx_filemap_add_folio+0x10/0x10
[  230.661028][T12677]  __filemap_get_folio+0x518/0xc10
[  230.661044][T12677]  filemap_fault+0x669/0x2740
[  230.661059][T12677]  ? __pfx_filemap_fault+0x10/0x10
[  230.661079][T12677]  __do_fault+0x10a/0x490
[  230.661099][T12677]  do_pte_missing+0x1031/0x3fb0
[  230.661118][T12677]  ? __handle_mm_fault+0x1010/0x2a40
[  230.661136][T12677]  __handle_mm_fault+0x103d/0x2a40
[  230.661155][T12677]  ? __pfx___handle_mm_fault+0x10/0x10
[  230.661170][T12677]  ? __pte_offset_map_lock+0x155/0x2f0
[  230.661187][T12677]  ? find_held_lock+0x2b/0x80
[  230.661199][T12677]  ? find_held_lock+0x2b/0x80
[  230.661220][T12677]  handle_mm_fault+0x3fe/0xad0
[  230.661238][T12677]  __get_user_pages+0x771/0x36f0
[  230.661258][T12677]  ? __pfx___get_user_pages+0x10/0x10
[  230.661273][T12677]  ? __kernel_write_iter+0x5a5/0xa90
[  230.661293][T12677]  get_dump_page+0x257/0x3d0
[  230.661307][T12677]  ? __pfx_get_dump_page+0x10/0x10
[  230.661322][T12677]  ? dump_user_range+0x73d/0xb30
[  230.661340][T12677]  dump_user_range+0x1c3/0xb30
[  230.661358][T12677]  ? __pfx_dump_user_range+0x10/0x10
[  230.661374][T12677]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  230.661389][T12677]  ? __pfx_writenote+0x10/0x10
[  230.661408][T12677]  elf_core_dump+0x288a/0x3a90
[  230.661432][T12677]  ? __pfx_elf_core_dump+0x10/0x10
[  230.661447][T12677]  ? kasan_save_stack+0x42/0x60
[  230.661463][T12677]  ? kasan_save_stack+0x33/0x60
[  230.661478][T12677]  ? kasan_save_track+0x14/0x30
[  230.661492][T12677]  ? __kasan_kmalloc+0xaa/0xb0
[  230.661521][T12677]  ? do_coredump+0x17aa/0x4480
[  230.661534][T12677]  ? get_signal+0x22e3/0x26d0
[  230.661546][T12677]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  230.661564][T12677]  ? 0xffffffffff600000
[  230.661597][T12677]  ? do_coredump+0x3183/0x4480
[  230.661611][T12677]  do_coredump+0x3183/0x4480
[  230.661630][T12677]  ? __pfx_do_coredump+0x10/0x10
[  230.661646][T12677]  ? stack_trace_save+0x8e/0xc0
[  230.661659][T12677]  ? __pfx_stack_trace_save+0x10/0x10
[  230.661672][T12677]  ? stack_depot_save_flags+0x28/0xa50
[  230.661686][T12677]  ? __lock_acquire+0xaa4/0x1ba0
[  230.661705][T12677]  ? __kasan_slab_free+0x51/0x70
[  230.661714][T12677]  ? kmem_cache_free+0x2d4/0x4d0
[  230.661729][T12677]  ? __sigqueue_free+0xba/0x2a0
[  230.661744][T12677]  ? get_signal+0xcba/0x26d0
[  230.661755][T12677]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  230.661789][T12677]  ? proc_coredump_connector+0x2d1/0x4f0
[  230.661805][T12677]  ? __pfx_proc_coredump_connector+0x10/0x10
[  230.661822][T12677]  ? rcu_is_watching+0x12/0xc0
[  230.661837][T12677]  get_signal+0x22e3/0x26d0
[  230.661853][T12677]  ? force_sig_fault+0xc4/0x100
[  230.661866][T12677]  ? __pfx_get_signal+0x10/0x10
[  230.661883][T12677]  arch_do_signal_or_restart+0x8f/0x7d0
[  230.661897][T12677]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  230.661908][T12677]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  230.661931][T12677]  irqentry_exit_to_user_mode+0x13f/0x280
[  230.661946][T12677]  asm_exc_page_fault+0x26/0x30
[  230.661956][T12677] RIP: 0033:0x7f6e69d8e969
[  230.661969][T12677] Code: Unable to access opcode bytes at 0x7f6e69d8e93f.
[  230.661974][T12677] RSP: 002b:00007f6e6ab65fe8 EFLAGS: 00010246
[  230.661983][T12677] RAX: 0000000000000000 RBX: 00007f6e69fb6080 RCX: 00007f6e69d8e969
[  230.661989][T12677] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  230.661995][T12677] RBP: 00007f6e69e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  230.662001][T12677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  230.662008][T12677] R13: 0000000000000000 R14: 00007f6e69fb6080 R15: 00007fffff35a0e8
[  230.662021][T12677]  </TASK>
[  230.804221][T12677] memory: usage 307200kB, limit 307200kB, failcnt 25382
[  230.806315][T12677] memory+swap: usage 414216kB, limit 9007199254740988kB, failcnt 0
[  230.808701][T12677] kmem: usage 6084kB, limit 9007199254740988kB, failcnt 0
[  230.810797][T12677] Memory cgroup stats for /syz3:
[  230.810891][T12677] cache 308305920
[  230.811610][   T67] Bluetooth: hci1: Entering manufacturer mode failed (-110)
[  230.811696][ T5939] Bluetooth: hci1: command 0xfc11 tx timeout
[  230.812615][T12677] rss 36864
[  230.819035][T12677] rss_huge 0
[  230.820065][T12677] shmem 308211712
[  230.821200][T12677] mapped_file 0
[  230.822579][T12677] dirty 0
[  230.823515][T12677] writeback 0
[  230.824551][T12677] workingset_refault_anon 167
[  230.826002][T12677] workingset_refault_file 11624
[  230.827518][T12677] swap 109584384
[  230.828665][T12677] swapcached 0
[  230.829758][T12677] pgpgin 292185
[  230.830895][T12677] pgpgout 217928
[  230.832245][T12677] pgfault 159199
[  230.833336][T12677] pgmajfault 1175
[  230.834426][T12677] inactive_anon 203497472
[  230.835727][T12677] active_anon 104751104
[  230.836977][T12677] inactive_file 94208
[  230.838229][T12677] active_file 0
[  230.839297][T12677] unevictable 0
[  230.840359][T12677] hierarchical_memory_limit 314572800
[  230.842281][T12677] hierarchical_memsw_limit 9223372036854771712
[  230.844125][T12677] total_cache 308305920
[  230.845400][T12677] total_rss 36864
[  230.846537][T12677] total_rss_huge 0
[  230.847707][T12677] total_shmem 308211712
[  230.849000][T12677] total_mapped_file 0
[  230.850215][T12677] total_dirty 0
[  230.851318][T12677] total_writeback 0
[  230.852776][T12677] total_workingset_refault_anon 167
[  230.854362][T12677] total_workingset_refault_file 11624
[  230.856019][T12677] total_swap 109584384
[  230.857286][T12677] total_swapcached 0
[  230.858584][T12677] total_pgpgin 292185
[  230.859791][T12677] total_pgpgout 217928
[  230.861074][T12677] total_pgfault 159199
[  230.862580][T12677] total_pgmajfault 1175
[  230.864094][T12677] total_inactive_anon 216743936
[  230.865751][T12677] total_active_anon 91504640
[  230.867358][T12677] total_inactive_file 94208
[  230.869029][T12677] total_active_file 0
[  230.870533][T12677] total_unevictable 0
[  230.872259][T12677] anon_cost 0
[  230.873469][T12677] file_cost 0
[  230.874660][T12677] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1930,pid=12672,uid=0
[  230.879576][T12677] Memory cgroup out of memory: Killed process 12672 (syz.3.1930) total-vm:45304kB, anon-rss:0kB, file-rss:1488kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:1000
[  230.914088][T12779] support for cryptoloop has been removed.  Use dm-crypt instead.
[  230.970133][T12672] syz.3.1930 (12672) used greatest stack depth: 19000 bytes left
[  231.219646][T12670] syz.3.1930 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  231.266096][T12670] CPU: 1 UID: 0 PID: 12670 Comm: syz.3.1930 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  231.266113][T12670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.266120][T12670] Call Trace:
[  231.266124][T12670]  <TASK>
[  231.266128][T12670]  dump_stack_lvl+0x16c/0x1f0
[  231.266147][T12670]  dump_header+0x101/0x930
[  231.266161][T12670]  oom_kill_process+0x270/0xa60
[  231.266177][T12670]  ? __lock_acquire+0x5ca/0x1ba0
[  231.266195][T12670]  out_of_memory+0x350/0x1700
[  231.266210][T12670]  ? __pfx_out_of_memory+0x10/0x10
[  231.266226][T12670]  mem_cgroup_out_of_memory+0x205/0x270
[  231.266240][T12670]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  231.266257][T12670]  ? do_raw_spin_unlock+0x172/0x230
[  231.266271][T12670]  try_charge_memcg+0xa07/0x10c0
[  231.266285][T12670]  ? __pfx_try_charge_memcg+0x10/0x10
[  231.266296][T12670]  ? find_held_lock+0x11/0x80
[  231.266309][T12670]  ? rcu_read_unlock+0x17/0x60
[  231.266324][T12670]  charge_memcg+0x8a/0x230
[  231.266335][T12670]  __mem_cgroup_charge+0x2b/0x1e0
[  231.266348][T12670]  filemap_add_folio+0x88/0x220
[  231.266361][T12670]  ? __pfx_filemap_add_folio+0x10/0x10
[  231.266378][T12670]  __filemap_get_folio+0x518/0xc10
[  231.266394][T12670]  filemap_fault+0x669/0x2740
[  231.266409][T12670]  ? __pfx_filemap_fault+0x10/0x10
[  231.266429][T12670]  __do_fault+0x10a/0x490
[  231.266441][T12670]  do_pte_missing+0x1031/0x3fb0
[  231.266459][T12670]  ? __handle_mm_fault+0x1010/0x2a40
[  231.266476][T12670]  __handle_mm_fault+0x103d/0x2a40
[  231.266496][T12670]  ? __pfx___handle_mm_fault+0x10/0x10
[  231.266511][T12670]  ? __pte_offset_map_lock+0x155/0x2f0
[  231.266524][T12670]  ? find_held_lock+0x2b/0x80
[  231.266535][T12670]  ? find_held_lock+0x2b/0x80
[  231.266557][T12670]  handle_mm_fault+0x3fe/0xad0
[  231.266575][T12670]  __get_user_pages+0x771/0x36f0
[  231.266594][T12670]  ? __pfx___get_user_pages+0x10/0x10
[  231.266610][T12670]  ? __kernel_write_iter+0x5a5/0xa90
[  231.266644][T12670]  get_dump_page+0x257/0x3d0
[  231.266659][T12670]  ? __pfx_get_dump_page+0x10/0x10
[  231.266674][T12670]  ? dump_user_range+0x73d/0xb30
[  231.266692][T12670]  dump_user_range+0x1c3/0xb30
[  231.266710][T12670]  ? __pfx_dump_user_range+0x10/0x10
[  231.266726][T12670]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  231.266741][T12670]  ? __pfx_writenote+0x10/0x10
[  231.266761][T12670]  elf_core_dump+0x288a/0x3a90
[  231.266785][T12670]  ? __pfx_elf_core_dump+0x10/0x10
[  231.266800][T12670]  ? kasan_save_stack+0x42/0x60
[  231.266815][T12670]  ? kasan_save_stack+0x33/0x60
[  231.266830][T12670]  ? kasan_save_track+0x14/0x30
[  231.266845][T12670]  ? __kasan_kmalloc+0xaa/0xb0
[  231.266860][T12670]  ? do_coredump+0x17aa/0x4480
[  231.266889][T12670]  ? get_signal+0x22e3/0x26d0
[  231.266902][T12670]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  231.266920][T12670]  ? 0xffffffffff600000
[  231.266953][T12670]  ? do_coredump+0x3183/0x4480
[  231.266966][T12670]  do_coredump+0x3183/0x4480
[  231.266987][T12670]  ? __pfx_do_coredump+0x10/0x10
[  231.267002][T12670]  ? stack_trace_save+0x8e/0xc0
[  231.267017][T12670]  ? __pfx_stack_trace_save+0x10/0x10
[  231.267041][T12670]  ? stack_depot_save_flags+0x28/0xa50
[  231.267056][T12670]  ? __lock_acquire+0xaa4/0x1ba0
[  231.267075][T12670]  ? __kasan_slab_free+0x51/0x70
[  231.267084][T12670]  ? kmem_cache_free+0x2d4/0x4d0
[  231.267100][T12670]  ? __sigqueue_free+0xba/0x2a0
[  231.267114][T12670]  ? get_signal+0xcba/0x26d0
[  231.267126][T12670]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  231.267160][T12670]  ? proc_coredump_connector+0x2d1/0x4f0
[  231.267179][T12670]  ? __pfx_proc_coredump_connector+0x10/0x10
[  231.267197][T12670]  ? rcu_is_watching+0x12/0xc0
[  231.267211][T12670]  get_signal+0x22e3/0x26d0
[  231.267228][T12670]  ? force_sig_fault+0xc4/0x100
[  231.267241][T12670]  ? __pfx_get_signal+0x10/0x10
[  231.267258][T12670]  arch_do_signal_or_restart+0x8f/0x7d0
[  231.267272][T12670]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  231.267284][T12670]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  231.267307][T12670]  irqentry_exit_to_user_mode+0x13f/0x280
[  231.267322][T12670]  asm_exc_page_fault+0x26/0x30
[  231.267332][T12670] RIP: 0033:0x7f6e69d8e969
[  231.267344][T12670] Code: Unable to access opcode bytes at 0x7f6e69d8e93f.
[  231.267349][T12670] RSP: 002b:00007f6e6ab65fe8 EFLAGS: 00010246
[  231.267359][T12670] RAX: 0000000000000000 RBX: 00007f6e69fb6080 RCX: 00007f6e69d8e969
[  231.267366][T12670] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  231.267372][T12670] RBP: 00007f6e69e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  231.267378][T12670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  231.267384][T12670] R13: 0000000000000000 R14: 00007f6e69fb6080 R15: 00007fffff35a0e8
[  231.267398][T12670]  </TASK>
[  231.267610][T12670] memory: usage 307200kB, limit 307200kB, failcnt 30767
[  231.418443][T12670] memory+swap: usage 414300kB, limit 9007199254740988kB, failcnt 0
[  231.421666][T12670] kmem: usage 6064kB, limit 9007199254740988kB, failcnt 0
[  231.424437][T12670] Memory cgroup stats for /syz3:
[  231.424624][T12670] cache 308264960
[  231.428052][T12670] rss 98304
[  231.429328][T12670] rss_huge 0
[  231.430623][T12670] shmem 308228096
[  231.432191][T12670] mapped_file 0
[  231.433584][T12670] dirty 0
[  231.434758][T12670] writeback 0
[  231.435860][T12670] workingset_refault_anon 169
[  231.437724][T12670] workingset_refault_file 18030
[  231.439291][T12670] swap 109670400
[  231.440453][T12670] swapcached 0
[  231.441626][T12670] pgpgin 304223
[  231.442756][T12670] pgpgout 229961
[  231.444033][T12670] pgfault 160033
[  231.445394][T12670] pgmajfault 1344
[  231.446850][T12670] inactive_anon 112115712
[  231.448262][T12670] active_anon 196210688
[  231.449571][T12670] inactive_file 36864
[  231.450831][T12670] active_file 0
[  231.452031][T12670] unevictable 0
[  231.453146][T12670] hierarchical_memory_limit 314572800
[  231.454836][T12670] hierarchical_memsw_limit 9223372036854771712
[  231.456767][T12670] total_cache 308264960
[  231.458080][T12670] total_rss 98304
[  231.459272][T12670] total_rss_huge 0
[  231.460471][T12670] total_shmem 308228096
[  231.461858][T12670] total_mapped_file 0
[  231.463308][T12670] total_dirty 0
[  231.464426][T12670] total_writeback 0
[  231.465699][T12670] total_workingset_refault_anon 169
[  231.467420][T12670] total_workingset_refault_file 18030
[  231.469218][T12670] total_swap 109670400
[  231.470562][T12670] total_swapcached 0
[  231.472266][T12670] total_pgpgin 304223
[  231.473691][T12670] total_pgpgout 229961
[  231.475076][T12670] total_pgfault 160033
[  231.476461][T12670] total_pgmajfault 1344
[  231.477311][T12783] FAULT_INJECTION: forcing a failure.
[  231.477311][T12783] name failslab, interval 1, probability 0, space 0, times 0
[  231.477898][T12670] total_inactive_anon 112115712
[  231.482233][T12783] CPU: 2 UID: 0 PID: 12783 Comm: syz.2.1943 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  231.482249][T12783] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.482257][T12783] Call Trace:
[  231.482261][T12783]  <TASK>
[  231.482266][T12783]  dump_stack_lvl+0x16c/0x1f0
[  231.482284][T12783]  should_fail_ex+0x512/0x640
[  231.482297][T12783]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  231.482314][T12783]  should_failslab+0xc2/0x120
[  231.482326][T12783]  __kmalloc_cache_noprof+0x6a/0x3e0
[  231.482341][T12783]  ? ima_calc_file_hash_tfm+0x29f/0x3d0
[  231.482365][T12783]  ima_calc_file_hash_tfm+0x29f/0x3d0
[  231.482381][T12783]  ? __pfx_ima_calc_file_hash_tfm+0x10/0x10
[  231.482412][T12783]  ? shmem_huge_global_enabled+0x173/0x5b0
[  231.482430][T12783]  ? ima_alloc_tfm+0x21a/0x2e0
[  231.482444][T12783]  ? shmem_getattr+0x397/0x450
[  231.482460][T12783]  ima_calc_file_hash+0x1ba/0x490
[  231.482478][T12783]  ima_collect_measurement+0x897/0xa40
[  231.482498][T12783]  ? __pfx_ima_collect_measurement+0x10/0x10
[  231.482524][T12783]  ? do_raw_read_unlock+0x44/0xe0
[  231.482535][T12783]  ? _raw_read_unlock+0x28/0x50
[  231.482550][T12783]  ? vfs_getxattr_alloc+0xec/0x340
[  231.482569][T12783]  ? ima_get_hash_algo+0x27c/0x400
[  231.482582][T12783]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  231.482599][T12783]  ? process_measurement+0x11fa/0x23e0
[  231.482615][T12783]  process_measurement+0x11fa/0x23e0
[  231.482641][T12783]  ? __pfx_process_measurement+0x10/0x10
[  231.482672][T12783]  ? kasan_quarantine_put+0x10a/0x240
[  231.482722][T12783]  ima_bprm_check+0xde/0x200
[  231.482745][T12783]  ? __pfx_ima_bprm_check+0x10/0x10
[  231.482773][T12783]  security_bprm_check+0xa5/0x1e0
[  231.482793][T12783]  bprm_execve+0x810/0x1650
[  231.482822][T12783]  ? __pfx_bprm_execve+0x10/0x10
[  231.482844][T12783]  ? __asan_memcpy+0x3c/0x60
[  231.482864][T12783]  ? copy_string_kernel+0x404/0x4a0
[  231.482911][T12783]  do_execveat_common.isra.0+0x4a5/0x610
[  231.482930][T12783]  __x64_sys_execveat+0xda/0x120
[  231.482947][T12783]  do_syscall_64+0xcd/0x260
[  231.482962][T12783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.482974][T12783] RIP: 0033:0x7f45a478e969
[  231.482983][T12783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.482993][T12783] RSP: 002b:00007f45a5663038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  231.483005][T12783] RAX: ffffffffffffffda RBX: 00007f45a49b5fa0 RCX: 00007f45a478e969
[  231.483012][T12783] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  231.483018][T12783] RBP: 00007f45a5663090 R08: 0000000000001000 R09: 0000000000000000
[  231.483024][T12783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  231.483030][T12783] R13: 0000000000000000 R14: 00007f45a49b5fa0 R15: 00007ffe49642858
[  231.483044][T12783]  </TASK>
[  231.483264][   T40] audit: type=1800 audit(2000000403.860:2727): pid=12783 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.1943" name=6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0 dev="tmpfs" ino=2165 res=0 errno=0
[  231.484540][T12670] total_active_anon 196210688
[  231.587661][T12670] total_inactive_file 36864
[  231.591188][T12670] total_active_file 0
[  231.592649][T12670] total_unevictable 0
[  231.594101][T12670] anon_cost 0
[  231.595466][T12670] file_cost 0
[  231.596812][T12670] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1942,pid=12780,uid=0
[  231.604038][T12670] Memory cgroup out of memory: Killed process 12780 (syz.3.1942) total-vm:97972kB, anon-rss:0kB, file-rss:21548kB, shmem-rss:0kB, UID:0 pgtables:116kB oom_score_adj:1000
[  231.631652][T12666] syz.3.1930 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  231.635143][T12666] CPU: 0 UID: 0 PID: 12666 Comm: syz.3.1930 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  231.635158][T12666] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.635165][T12666] Call Trace:
[  231.635169][T12666]  <TASK>
[  231.635174][T12666]  dump_stack_lvl+0x16c/0x1f0
[  231.635191][T12666]  dump_header+0x101/0x930
[  231.635205][T12666]  oom_kill_process+0x270/0xa60
[  231.635216][T12666]  ? __lock_acquire+0x4e1/0x1ba0
[  231.635234][T12666]  out_of_memory+0x350/0x1700
[  231.635248][T12666]  ? __pfx_out_of_memory+0x10/0x10
[  231.635264][T12666]  mem_cgroup_out_of_memory+0x205/0x270
[  231.635278][T12666]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  231.635309][T12666]  ? do_raw_spin_unlock+0x172/0x230
[  231.635322][T12666]  try_charge_memcg+0xa07/0x10c0
[  231.635336][T12666]  ? __pfx_try_charge_memcg+0x10/0x10
[  231.635347][T12666]  ? find_held_lock+0x10/0x80
[  231.635360][T12666]  ? rcu_read_unlock+0x17/0x60
[  231.635380][T12666]  charge_memcg+0x8a/0x230
[  231.635391][T12666]  __mem_cgroup_charge+0x2b/0x1e0
[  231.635404][T12666]  filemap_add_folio+0x88/0x220
[  231.635416][T12666]  ? __pfx_filemap_add_folio+0x10/0x10
[  231.635433][T12666]  __filemap_get_folio+0x518/0xc10
[  231.635449][T12666]  filemap_fault+0x669/0x2740
[  231.635465][T12666]  ? __pfx_filemap_fault+0x10/0x10
[  231.635484][T12666]  __do_fault+0x10a/0x490
[  231.635497][T12666]  do_pte_missing+0x1031/0x3fb0
[  231.635514][T12666]  ? __handle_mm_fault+0x1010/0x2a40
[  231.635531][T12666]  __handle_mm_fault+0x103d/0x2a40
[  231.635551][T12666]  ? __pfx___handle_mm_fault+0x10/0x10
[  231.635566][T12666]  ? __pte_offset_map_lock+0x155/0x2f0
[  231.635580][T12666]  ? find_held_lock+0x2b/0x80
[  231.635591][T12666]  ? find_held_lock+0x2b/0x80
[  231.635612][T12666]  handle_mm_fault+0x3fe/0xad0
[  231.635631][T12666]  __get_user_pages+0x771/0x36f0
[  231.635650][T12666]  ? __pfx___get_user_pages+0x10/0x10
[  231.635666][T12666]  ? __kernel_write_iter+0x5a5/0xa90
[  231.635685][T12666]  get_dump_page+0x257/0x3d0
[  231.635699][T12666]  ? __pfx_get_dump_page+0x10/0x10
[  231.635714][T12666]  ? dump_user_range+0x73d/0xb30
[  231.635733][T12666]  dump_user_range+0x1c3/0xb30
[  231.635751][T12666]  ? __pfx_dump_user_range+0x10/0x10
[  231.635767][T12666]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  231.635782][T12666]  ? __pfx_writenote+0x10/0x10
[  231.635802][T12666]  elf_core_dump+0x288a/0x3a90
[  231.635825][T12666]  ? __pfx_elf_core_dump+0x10/0x10
[  231.635840][T12666]  ? kasan_save_stack+0x42/0x60
[  231.635856][T12666]  ? kasan_save_stack+0x33/0x60
[  231.635871][T12666]  ? kasan_save_track+0x14/0x30
[  231.635886][T12666]  ? __kasan_kmalloc+0xaa/0xb0
[  231.635900][T12666]  ? do_coredump+0x17aa/0x4480
[  231.635914][T12666]  ? get_signal+0x22e3/0x26d0
[  231.635926][T12666]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  231.635944][T12666]  ? 0xffffffffff600000
[  231.635977][T12666]  ? do_coredump+0x3183/0x4480
[  231.635990][T12666]  do_coredump+0x3183/0x4480
[  231.636010][T12666]  ? __pfx_do_coredump+0x10/0x10
[  231.636025][T12666]  ? stack_trace_save+0x8e/0xc0
[  231.636039][T12666]  ? __pfx_stack_trace_save+0x10/0x10
[  231.636051][T12666]  ? stack_depot_save_flags+0x28/0xa50
[  231.636066][T12666]  ? __lock_acquire+0xaa4/0x1ba0
[  231.636085][T12666]  ? __kasan_slab_free+0x51/0x70
[  231.636093][T12666]  ? kmem_cache_free+0x2d4/0x4d0
[  231.636109][T12666]  ? __sigqueue_free+0xba/0x2a0
[  231.636123][T12666]  ? get_signal+0xcba/0x26d0
[  231.636135][T12666]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  231.636169][T12666]  ? proc_coredump_connector+0x2d1/0x4f0
[  231.636184][T12666]  ? __pfx_proc_coredump_connector+0x10/0x10
[  231.636202][T12666]  ? rcu_is_watching+0x12/0xc0
[  231.636216][T12666]  get_signal+0x22e3/0x26d0
[  231.636232][T12666]  ? force_sig_fault+0xc4/0x100
[  231.636246][T12666]  ? __pfx_get_signal+0x10/0x10
[  231.636263][T12666]  arch_do_signal_or_restart+0x8f/0x7d0
[  231.636277][T12666]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  231.636288][T12666]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  231.636312][T12666]  irqentry_exit_to_user_mode+0x13f/0x280
[  231.636327][T12666]  asm_exc_page_fault+0x26/0x30
[  231.636337][T12666] RIP: 0033:0x7f6e69d8e969
[  231.636349][T12666] Code: Unable to access opcode bytes at 0x7f6e69d8e93f.
[  231.636354][T12666] RSP: 002b:00007f6e6ab65fe8 EFLAGS: 00010246
[  231.636363][T12666] RAX: 0000000000000000 RBX: 00007f6e69fb6080 RCX: 00007f6e69d8e969
[  231.636373][T12666] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  231.636379][T12666] RBP: 00007f6e69e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  231.636386][T12666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  231.636392][T12666] R13: 0000000000000000 R14: 00007f6e69fb6080 R15: 00007fffff35a0e8
[  231.636406][T12666]  </TASK>
[  231.636421][T12666] memory: usage 307200kB, limit 307200kB, failcnt 31351
[  231.789116][T12666] memory+swap: usage 414300kB, limit 9007199254740988kB, failcnt 0
[  231.791576][T12666] kmem: usage 6020kB, limit 9007199254740988kB, failcnt 0
[  231.793737][T12666] Memory cgroup stats for /syz3:
[  231.793806][T12666] cache 308355072
[  231.796487][T12666] rss 36864
[  231.797504][T12666] rss_huge 0
[  231.798546][T12666] shmem 308326400
[  231.799686][T12666] mapped_file 0
[  231.800774][T12666] dirty 0
[  231.801796][T12666] writeback 0
[  231.802831][T12666] workingset_refault_anon 169
[  231.804236][T12666] workingset_refault_file 18252
[  231.805698][T12666] swap 109670400
[  231.806788][T12666] swapcached 0
[  231.807849][T12666] pgpgin 304470
[  231.808946][T12666] pgpgout 230201
[  231.810060][T12666] pgfault 160063
[  231.811260][T12666] pgmajfault 1368
[  231.812604][T12666] inactive_anon 100122624
[  231.813987][T12666] active_anon 208240640
[  231.815434][T12666] inactive_file 28672
[  231.816852][T12666] active_file 0
[  231.818172][T12666] unevictable 0
[  231.819495][T12666] hierarchical_memory_limit 314572800
[  231.821289][T12666] hierarchical_memsw_limit 9223372036854771712
[  231.823660][T12666] total_cache 308355072
[  231.825329][T12666] total_rss 36864
[  231.826792][T12666] total_rss_huge 0
[  231.828025][T12666] total_shmem 308326400
[  231.829358][T12666] total_mapped_file 0
[  231.830797][T12666] total_dirty 0
[  231.832176][T12666] total_writeback 0
[  231.833534][T12666] total_workingset_refault_anon 169
[  231.835267][T12666] total_workingset_refault_file 18252
[  231.836947][T12666] total_swap 109670400
[  231.838274][T12666] total_swapcached 0
[  231.839504][T12666] total_pgpgin 304470
[  231.840784][T12666] total_pgpgout 230201
[  231.842153][T12666] total_pgfault 160063
[  231.843468][T12666] total_pgmajfault 1368
[  231.844787][T12666] total_inactive_anon 100122624
[  231.846323][T12666] total_active_anon 208240640
[  231.847813][T12666] total_inactive_file 28672
[  231.849412][T12666] total_active_file 0
[  231.850014][T12787] Failed to initialize the IGMP autojoin socket (err -2)
[  231.850688][T12666] total_unevictable 0
[  231.850695][T12666] anon_cost 0
[  231.857336][T12666] file_cost 0
[  231.858427][T12666] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1930,pid=12680,uid=0
[  231.863136][T12666] Memory cgroup out of memory: Killed process 12680 (syz.3.1930) total-vm:45304kB, anon-rss:0kB, file-rss:1536kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[  232.003526][T12788] netlink: 'syz.2.1946': attribute type 1 has an invalid length.
[  232.005983][T12788] netlink: 228 bytes leftover after parsing attributes in process `syz.2.1946'.
[  232.027027][T12788] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  232.028818][T12793] netlink: 'syz.3.1945': attribute type 1 has an invalid length.
[  232.032892][T12793] netlink: 'syz.3.1945': attribute type 3 has an invalid length.
[  232.035871][T12793] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1945'.
[  232.039376][T12793] NCSI netlink: No device for ifindex 0
[  232.271679][   T34] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  232.297242][T12673] Memory cgroup out of memory: Killed process 12791 (syz.3.1945) total-vm:102076kB, anon-rss:128kB, file-rss:23332kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[  232.341590][T12667] Memory cgroup out of memory: Killed process 12674 (syz.3.1930) total-vm:45304kB, anon-rss:0kB, file-rss:1508kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[  232.411585][   T34] usb 7-1: device descriptor read/64, error -71
[  232.667113][T12666] Memory cgroup out of memory: Killed process 12673 (syz.3.1930) total-vm:45304kB, anon-rss:0kB, file-rss:1460kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  232.671690][   T34] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  232.822790][   T34] usb 7-1: device descriptor read/64, error -71
[  232.933222][   T34] usb usb7-port1: attempt power cycle
[  233.202084][T12683] syz.3.1930 (12683) used greatest stack depth: 18248 bytes left
[  233.281695][   T34] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  233.314392][   T34] usb 7-1: device descriptor read/8, error -71
[  233.393836][T12677] syz.3.1930 (12677) used greatest stack depth: 18168 bytes left
[  233.571659][   T34] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  233.595178][   T34] usb 7-1: device descriptor read/8, error -71
[  233.703409][   T34] usb usb7-port1: unable to enumerate USB device
[  234.152733][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  234.158018][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  234.165755][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  234.170798][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  234.174434][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  234.190086][T12797] Failed to initialize the IGMP autojoin socket (err -2)
[  234.786813][T12797] netdevsim netdevsim5 netdevsim0: renamed from eth14
[  234.806210][T12797] netdevsim netdevsim5 netdevsim1: renamed from eth15
[  234.822835][T12797] netdevsim netdevsim5 netdevsim2: renamed from eth16
[  234.839308][T12797] netdevsim netdevsim5 netdevsim3: renamed from eth17
[  235.152313][T12797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  235.156454][T12797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.160094][T12797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  235.168440][T12797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.175757][T12797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  235.180132][T12797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.184269][T12797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  235.187480][T12797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  235.192402][T12797] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  235.198466][T12797] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  235.204901][T12797] wireguard: wg0: Could not create IPv4 socket
[  235.208028][T12797] wireguard: wg1: Could not create IPv4 socket
[  235.211081][T12797] wireguard: wg2: Could not create IPv4 socket
[  235.708264][T12820] netlink: 'syz.3.1949': attribute type 10 has an invalid length.
[  235.711161][T12820] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1949'.
[  235.715109][T12820] dummy0: entered promiscuous mode
[  235.718314][T12820] bridge0: port 3(dummy0) entered blocking state
[  235.721216][T12820] bridge0: port 3(dummy0) entered disabled state
[  235.724427][T12820] dummy0: entered allmulticast mode
[  235.729800][T12820] bridge0: port 3(dummy0) entered blocking state
[  235.732551][T12820] bridge0: port 3(dummy0) entered forwarding state
[  235.771221][   T40] audit: type=1400 audit(2000000408.140:2728): avc:  denied  { read } for  pid=12823 comm="syz.3.1950" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  235.778568][   T40] audit: type=1400 audit(2000000408.150:2729): avc:  denied  { bind } for  pid=12823 comm="syz.3.1950" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  235.806310][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  235.810136][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  235.815046][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  235.819809][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  235.822797][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  235.823267][   T40] audit: type=1400 audit(2000000408.200:2730): avc:  denied  { read } for  pid=5331 comm="acpid" name="mouse4" dev="devtmpfs" ino=2985 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  235.838006][T12825] Failed to initialize the IGMP autojoin socket (err -2)
[  235.838983][T12828] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  235.845897][   T40] audit: type=1400 audit(2000000408.200:2731): avc:  denied  { open } for  pid=5331 comm="acpid" path="/dev/input/mouse4" dev="devtmpfs" ino=2985 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  235.856662][   T40] audit: type=1400 audit(2000000408.200:2732): avc:  denied  { ioctl } for  pid=5331 comm="acpid" path="/dev/input/mouse4" dev="devtmpfs" ino=2985 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1
[  236.394506][T12833] IPv4: Oversized IP packet from 127.202.26.0
[  236.426918][T12837] tmpfs: Unknown parameter '0x0000000000000003'
[  236.543671][T12845] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=12845 comm=syz.2.1957
[  236.549051][T12846] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1957'.
[  236.550009][T12845] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2574 sclass=netlink_route_socket pid=12845 comm=syz.2.1957
[  236.555729][T12846] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1957'.
[  236.562528][T12846] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1957'.
[  236.565951][T12846] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1957'.
[  236.567755][T12852] rdma_rxe: rxe_newlink: failed to add bond_slave_1
[  236.569026][T12846] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1957'.
[  236.575690][T12846] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1957'.
[  236.580935][T12846] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1957'.
[  236.593949][T12846] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1957'.
[  236.597723][T12846] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1957'.
[  236.647560][T12852] infiniband syz1: set active
[  236.649139][T12852] infiniband syz1: added syz_tun
[  236.651327][T12852] syz1: rxe_create_qp: returned err = -2
[  236.653514][T12852] infiniband syz1: Couldn't create ib_mad QP1
[  236.655819][T12852] infiniband syz1: Couldn't open port 1
[  236.684873][T12852] RDS/IB: syz1: added
[  236.686602][T12852] smc: adding ib device syz1 with port count 1
[  236.688713][T12852] smc:    ib device syz1 port 1 has pnetid 
[  236.725032][T12825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.728351][T12825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.731394][T12825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.737220][T12825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.744605][T12825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.747844][T12825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.750975][T12825] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.754483][T12825] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.759210][T12825] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  236.769044][T12825] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  236.777966][T12825] wireguard: wg0: Could not create IPv4 socket
[  236.781310][T12825] wireguard: wg1: Could not create IPv4 socket
[  236.785739][T12825] wireguard: wg2: Could not create IPv4 socket
[  236.808283][T12866] rtc_cmos 00:05: Alarms can be up to one day in the future
[  237.179850][T12887] syz.2.1970: attempt to access beyond end of device
[  237.179850][T12887] nbd2: rw=0, sector=64, nr_sectors = 1 limit=0
[  237.184973][T12887] syz.2.1970: attempt to access beyond end of device
[  237.184973][T12887] nbd2: rw=0, sector=256, nr_sectors = 1 limit=0
[  237.189688][T12887] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  237.193805][T12887] syz.2.1970: attempt to access beyond end of device
[  237.193805][T12887] nbd2: rw=0, sector=512, nr_sectors = 1 limit=0
[  237.198169][T12887] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  237.201929][T12887] syz.2.1970: attempt to access beyond end of device
[  237.201929][T12887] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0
[  237.206602][T12887] syz.2.1970: attempt to access beyond end of device
[  237.206602][T12887] nbd2: rw=0, sector=512, nr_sectors = 2 limit=0
[  237.210603][T12887] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  237.214016][T12887] syz.2.1970: attempt to access beyond end of device
[  237.214016][T12887] nbd2: rw=0, sector=1024, nr_sectors = 2 limit=0
[  237.217990][T12887] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  237.221600][T12887] syz.2.1970: attempt to access beyond end of device
[  237.221600][T12887] nbd2: rw=0, sector=64, nr_sectors = 4 limit=0
[  237.225624][T12887] syz.2.1970: attempt to access beyond end of device
[  237.225624][T12887] nbd2: rw=0, sector=1024, nr_sectors = 4 limit=0
[  237.229620][T12887] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  237.233707][T12887] syz.2.1970: attempt to access beyond end of device
[  237.233707][T12887] nbd2: rw=0, sector=2048, nr_sectors = 4 limit=0
[  237.237856][T12887] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  237.240973][T12887] syz.2.1970: attempt to access beyond end of device
[  237.240973][T12887] nbd2: rw=0, sector=64, nr_sectors = 8 limit=0
[  237.246019][T12887] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  237.249025][T12887] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  237.252631][T12887] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  237.304922][T12894] FAULT_INJECTION: forcing a failure.
[  237.304922][T12894] name failslab, interval 1, probability 0, space 0, times 0
[  237.309264][T12894] CPU: 2 UID: 0 PID: 12894 Comm: syz.2.1972 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  237.309289][T12894] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  237.309300][T12894] Call Trace:
[  237.309306][T12894]  <TASK>
[  237.309314][T12894]  dump_stack_lvl+0x16c/0x1f0
[  237.309339][T12894]  should_fail_ex+0x512/0x640
[  237.309361][T12894]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  237.309389][T12894]  should_failslab+0xc2/0x120
[  237.309402][T12894]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  237.309418][T12894]  ? arch_stack_walk+0xa6/0x100
[  237.309431][T12894]  ? alloc_empty_file+0x55/0x1e0
[  237.309446][T12894]  alloc_empty_file+0x55/0x1e0
[  237.309459][T12894]  path_openat+0xe0/0x2d40
[  237.309475][T12894]  ? stack_trace_save+0x8e/0xc0
[  237.309489][T12894]  ? __pfx_stack_trace_save+0x10/0x10
[  237.309501][T12894]  ? stack_depot_save_flags+0x28/0xa50
[  237.309518][T12894]  ? __pfx_path_openat+0x10/0x10
[  237.309533][T12894]  ? kasan_save_stack+0x42/0x60
[  237.309548][T12894]  ? kasan_save_stack+0x33/0x60
[  237.309562][T12894]  ? kasan_save_track+0x14/0x30
[  237.309577][T12894]  ? __kasan_slab_alloc+0x89/0x90
[  237.309586][T12894]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[  237.309602][T12894]  ? getname_kernel+0x52/0x370
[  237.309612][T12894]  ? open_exec+0x16/0x80
[  237.309624][T12894]  ? load_script+0x51d/0x790
[  237.309642][T12894]  do_filp_open+0x20b/0x470
[  237.309658][T12894]  ? __pfx_do_filp_open+0x10/0x10
[  237.309690][T12894]  do_open_execat+0xf9/0x450
[  237.309704][T12894]  ? __pfx_do_open_execat+0x10/0x10
[  237.309720][T12894]  ? __asan_memcpy+0x3c/0x60
[  237.309736][T12894]  open_exec+0x45/0x80
[  237.309750][T12894]  load_script+0x51d/0x790
[  237.309767][T12894]  bprm_execve+0x8c0/0x1650
[  237.309784][T12894]  ? __pfx_bprm_execve+0x10/0x10
[  237.309798][T12894]  ? __asan_memcpy+0x3c/0x60
[  237.309812][T12894]  ? copy_string_kernel+0x404/0x4a0
[  237.309829][T12894]  do_execveat_common.isra.0+0x4a5/0x610
[  237.309847][T12894]  __x64_sys_execveat+0xda/0x120
[  237.309864][T12894]  do_syscall_64+0xcd/0x260
[  237.309879][T12894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.309890][T12894] RIP: 0033:0x7f45a478e969
[  237.309899][T12894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.309909][T12894] RSP: 002b:00007f45a5663038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  237.309919][T12894] RAX: ffffffffffffffda RBX: 00007f45a49b5fa0 RCX: 00007f45a478e969
[  237.309926][T12894] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  237.309932][T12894] RBP: 00007f45a5663090 R08: 0000000000001000 R09: 0000000000000000
[  237.309939][T12894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  237.309945][T12894] R13: 0000000000000000 R14: 00007f45a49b5fa0 R15: 00007ffe49642858
[  237.309958][T12894]  </TASK>
[  237.514995][   T40] audit: type=1400 audit(2000000409.890:2733): avc:  denied  { nlmsg_tty_audit } for  pid=12895 comm="syz.2.1973" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  237.545969][T12899] IPv6: sit1: Disabled Multicast RS
[  237.730375][T12904] overlayfs: conflicting options: nfs_export=on,metacopy=on
[  237.760240][   T40] audit: type=1400 audit(2000000410.130:2734): avc:  denied  { connect } for  pid=12905 comm="syz.2.1977" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  238.076996][T12928] 9pnet_fd: p9_fd_create_tcp (12928): problem creating socket
[  238.331656][ T5977] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  238.485881][ T5977] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  238.489540][ T5977] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.493071][ T5977] usb 7-1: Product: syz
[  238.494793][ T5977] usb 7-1: Manufacturer: syz
[  238.496574][ T5977] usb 7-1: SerialNumber: syz
[  238.503336][ T5977] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  238.515045][ T6134] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  238.722573][   T40] audit: type=1400 audit(2000000411.100:2735): avc:  denied  { setattr } for  pid=12932 comm="syz.2.1984" name="" dev="pipefs" ino=64124 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  238.741613][ T9341] usb 7-1: USB disconnect, device number 29
[  239.591580][ T6134] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[  239.594459][ T6134] ath9k_htc: Failed to initialize the device
[  239.597061][ T9341] usb 7-1: ath9k_htc: USB layer deinitialized
[  239.901637][ T9341] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  240.051744][ T9341] usb 7-1: Using ep0 maxpacket: 8
[  240.054852][ T9341] usb 7-1: config 16 has an invalid descriptor of length 199, skipping remainder of the config
[  240.058022][ T9341] usb 7-1: config 16 has 0 interfaces, different from the descriptor's value: 1
[  240.061344][ T9341] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  240.064936][ T9341] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.280820][ T9341] usb 7-1: string descriptor 0 read error: -71
[  240.285446][ T9341] usb 7-1: USB disconnect, device number 30
[  242.463396][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  242.466640][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  242.469542][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  242.475220][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  242.478404][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  242.490677][T12947] Failed to initialize the IGMP autojoin socket (err -2)
[  243.132028][T12947] netdevsim netdevsim5 netdevsim0: renamed from eth14
[  243.141627][T12947] netdevsim netdevsim5 netdevsim1: renamed from eth15
[  243.152309][T12947] netdevsim netdevsim5 netdevsim2: renamed from eth16
[  243.165781][T12947] netdevsim netdevsim5 netdevsim3: renamed from eth17
[  243.447635][T12947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  243.452544][T12947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.455828][T12947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  243.459082][T12947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.464043][T12947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  243.467274][T12947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.470372][T12947] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  243.475310][T12947] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.480351][T12947] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  243.486964][T12947] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  243.493960][T12947] wireguard: wg0: Could not create IPv4 socket
[  243.498311][T12947] wireguard: wg1: Could not create IPv4 socket
[  243.502971][T12947] wireguard: wg2: Could not create IPv4 socket
[  244.168244][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  244.173517][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  244.176853][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  244.181143][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  244.185147][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  244.209029][T12969] Failed to initialize the IGMP autojoin socket (err -2)
[  245.070404][T12969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.076344][T12969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.079753][T12969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.084887][T12969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.090795][T12969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  245.095465][T12969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.099463][T12969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  245.104592][T12969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.111565][T12969] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  245.121251][T12969] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  245.129722][T12969] wireguard: wg0: Could not create IPv4 socket
[  245.134628][T12969] wireguard: wg1: Could not create IPv4 socket
[  245.138385][T12969] wireguard: wg2: Could not create IPv4 socket
[  245.179227][T12998] __nla_validate_parse: 28 callbacks suppressed
[  245.179238][T12998] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1998'.
[  245.355717][   T40] audit: type=1326 audit(2000000417.730:2736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13001 comm="syz.2.2000" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45a478e969 code=0x7fc00000
[  245.591032][T13007] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  245.724450][T13009] kvm: Disabled LAPIC found during irq injection
[  245.763019][T13009] team_slave_0: entered allmulticast mode
[  246.118045][T13017] syz.2.2005 (13017): /proc/13016/oom_adj is deprecated, please use /proc/13016/oom_score_adj instead.
[  246.160977][T13019] bio_check_eod: 2 callbacks suppressed
[  246.160996][T13019] syz.2.2006: attempt to access beyond end of device
[  246.160996][T13019] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  246.169409][T13019] FAT-fs (nbd2): unable to read boot sector
[  246.376350][T13032] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2018'.
[  247.260715][T13037] netlink: 'syz.2.2020': attribute type 1 has an invalid length.
[  247.464031][   T40] audit: type=1400 audit(2000000419.840:2737): avc:  denied  { mounton } for  pid=13052 comm="syz.2.2015" path="/" dev="configfs" ino=1122 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  247.473750][   T40] audit: type=1400 audit(2000000419.850:2738): avc:  denied  { bind } for  pid=13052 comm="syz.2.2015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  247.483307][   T40] audit: type=1400 audit(2000000419.850:2739): avc:  denied  { listen } for  pid=13052 comm="syz.2.2015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  247.757964][T13064] netlink: 200 bytes leftover after parsing attributes in process `syz.2.2017'.
[  247.876318][T13067] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2019'.
[  248.201653][   T10] usb 7-1: new full-speed USB device number 31 using dummy_hcd
[  248.354119][   T10] usb 7-1: not running at top speed; connect to a high speed hub
[  248.358262][   T10] usb 7-1: config 14 has an invalid interface number: 90 but max is 0
[  248.361063][   T10] usb 7-1: config 14 has an invalid descriptor of length 0, skipping remainder of the config
[  248.364311][   T10] usb 7-1: config 14 has no interface number 0
[  248.366258][   T10] usb 7-1: config 14 interface 90 altsetting 249 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  248.370775][   T10] usb 7-1: config 14 interface 90 has no altsetting 0
[  248.376184][   T10] usb 7-1: New USB device found, idVendor=0572, idProduct=c689, bcdDevice=67.2e
[  248.379843][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.382546][   T10] usb 7-1: Product: syz
[  248.383875][   T10] usb 7-1: Manufacturer: syz
[  248.385390][   T10] usb 7-1: SerialNumber: syz
[  248.677794][   T10] usb 7-1: USB disconnect, device number 31
[  250.444081][   T67] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  250.448127][   T67] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  250.451709][   T67] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  250.455276][   T67] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  250.458346][   T67] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  250.472355][T13083] Failed to initialize the IGMP autojoin socket (err -2)
[  251.040747][T13083] netdevsim netdevsim5 netdevsim0: renamed from eth14
[  251.052588][T13083] netdevsim netdevsim5 netdevsim1: renamed from eth15
[  251.075524][T13083] netdevsim netdevsim5 netdevsim2: renamed from eth16
[  251.087097][T13083] netdevsim netdevsim5 netdevsim3: renamed from eth17
[  251.322455][T13083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.326571][T13083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.329449][T13083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.333668][T13083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.338636][T13083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.345120][T13083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.348144][T13083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.351303][T13083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.356683][T13083] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  251.364028][T13083] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  251.370153][T13083] wireguard: wg0: Could not create IPv4 socket
[  251.373537][T13083] wireguard: wg1: Could not create IPv4 socket
[  251.376998][T13083] wireguard: wg2: Could not create IPv4 socket
[  252.154048][T13100] Failed to initialize the IGMP autojoin socket (err -2)
[  252.271585][   T67] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  252.275313][   T67] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  252.279561][   T67] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  252.285452][   T67] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  252.287943][   T67] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  252.299389][T13104] Failed to initialize the IGMP autojoin socket (err -2)
[  252.803359][T13123] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2034'.
[  252.938784][   T40] audit: type=1400 audit(2000000425.310:2740): avc:  denied  { bind } for  pid=13129 comm="syz.2.2035" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  252.946631][   T40] audit: type=1400 audit(2000000425.310:2741): avc:  denied  { listen } for  pid=13129 comm="syz.2.2035" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  253.055509][T13104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  253.058947][T13104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.065366][T13104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  253.068618][T13104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.074643][T13104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.077975][T13104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.081196][T13104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.086549][T13104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.091847][T13104] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  253.101374][T13104] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  253.107487][T13140] syzkaller1: entered promiscuous mode
[  253.109256][T13140] syzkaller1: entered allmulticast mode
[  253.123117][T13104] wireguard: wg0: Could not create IPv4 socket
[  253.126533][T13104] wireguard: wg1: Could not create IPv4 socket
[  253.129750][T13104] wireguard: wg2: Could not create IPv4 socket
[  253.184152][T13142] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2038'.
[  253.188378][T13142] netlink: 92 bytes leftover after parsing attributes in process `syz.2.2038'.
[  253.373305][   T40] audit: type=1804 audit(2000000425.750:2742): pid=13153 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2041" name="/newroot/739/file0" dev="tmpfs" ino=4153 res=1 errno=0
[  253.374047][T13153] ref_ctr going negative. vaddr: 0x200000ffc002, curr val: -29824, delta: 1
[  253.384551][T13153] ref_ctr increment failed for inode: 0x1039 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff8880312c4600
[  253.933521][   T40] audit: type=1400 audit(2000000426.310:2743): avc:  denied  { map } for  pid=13165 comm="syz.2.2045" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=748 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  254.030237][T13166] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[  254.955017][   T40] audit: type=1400 audit(2000000427.330:2744): avc:  denied  { connect } for  pid=13184 comm="syz.3.2049" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  254.965107][T13187] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2050'.
[  254.995319][T13189] tipc: Resetting bearer <eth:gre0>
[  255.001711][T13189] wlan1: mtu greater than device maximum
[  255.027104][T13189] netlink: 'syz.2.2051': attribute type 10 has an invalid length.
[  255.302699][ T7207] INFO: trying to register non-static key.
[  255.304468][ T7207] The code is fine but needs lockdep annotation, or maybe
[  255.306867][ T7207] you didn't initialize this object before use?
[  255.310098][ T7207] turning off the locking correctness validator.
[  255.312276][ T7207] CPU: 2 UID: 0 PID: 7207 Comm: kworker/u32:17 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  255.312291][ T7207] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  255.312298][ T7207] Workqueue: rdma_cm cma_work_handler
[  255.312324][ T7207] Call Trace:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  255.312328][ T7207]  <TASK>
[  255.312333][ T7207]  dump_stack_lvl+0x116/0x1f0
[  255.312348][ T7207]  register_lock_class+0x4a3/0x4c0
[  255.312364][ T7207]  ? save_trace+0x4e/0x380
[  255.312378][ T7207]  __lock_acquire+0x99/0x1ba0
[  255.312395][ T7207]  lock_acquire+0x179/0x350
[  255.312410][ T7207]  ? __timer_delete_sync+0x145/0x1b0
[  255.312425][ T7207]  ? __timer_delete_sync+0x145/0x1b0
[  255.312439][ T7207]  __timer_delete_sync+0x152/0x1b0
[  255.312452][ T7207]  ? __timer_delete_sync+0x145/0x1b0
[  255.312465][ T7207]  rxe_qp_do_cleanup+0x5c3/0x7e0
[  255.312480][ T7207]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  255.312493][ T7207]  ? __pfx_rxe_qp_do_cleanup+0x10/0x10
[  255.312507][ T7207]  execute_in_process_context+0x3a/0x160
[  255.312519][ T7207]  ? __pfx_rxe_qp_cleanup+0x10/0x10
[  255.312534][ T7207]  __rxe_cleanup+0x267/0x3c0
[  255.312545][ T7207]  ? __pfx___rxe_cleanup+0x10/0x10
[  255.312555][ T7207]  ? _raw_spin_unlock+0x28/0x50
[  255.312565][ T7207]  ? __rxe_add_to_pool+0xa9/0x340
[  255.312576][ T7207]  rxe_create_qp+0x3f7/0x5f0
[  255.312588][ T7207]  create_qp+0x62d/0xa80
[  255.312601][ T7207]  ? __pfx_create_qp+0x10/0x10
[  255.312613][ T7207]  ib_create_qp_kernel+0x9f/0x310
[  255.312626][ T7207]  rdma_create_qp+0x10c/0x340
[  255.312641][ T7207]  rds_ib_setup_qp+0xc86/0x19a0
[  255.312657][ T7207]  ? __pfx_rds_ib_setup_qp+0x10/0x10
[  255.312672][ T7207]  ? __pfx_rds_ib_qp_event_handler+0x10/0x10
[  255.312688][ T7207]  ? rcu_is_watching+0x12/0xc0
[  255.312699][ T7207]  ? trace_contention_end+0xdd/0x130
[  255.312716][ T7207]  rds_ib_cm_initiate_connect+0x1e8/0x3d0
[  255.312732][ T7207]  ? __pfx_rds_ib_cm_initiate_connect+0x10/0x10
[  255.312747][ T7207]  ? lockdep_unlock+0x64/0xe0
[  255.312762][ T7207]  rds_rdma_cm_event_handler_cmn+0x61f/0x8c0
[  255.312775][ T7207]  ? __pfx_rds_rdma_cm_event_handler_cmn+0x10/0x10
[  255.312789][ T7207]  ? mark_lock+0x570/0x610
[  255.312804][ T7207]  cma_cm_event_handler+0x94/0x300
[  255.312819][ T7207]  cma_work_handler+0x15b/0x230
[  255.312829][ T7207]  process_one_work+0x9cc/0x1b70
[  255.312841][ T7207]  ? __pfx_process_one_req+0x10/0x10
[  255.312856][ T7207]  ? __pfx_process_one_work+0x10/0x10
[  255.312868][ T7207]  ? assign_work+0x1a0/0x250
[  255.312878][ T7207]  worker_thread+0x6c8/0xf10
[  255.312894][ T7207]  ? __kthread_parkme+0x19e/0x250
[  255.312909][ T7207]  ? __pfx_worker_thread+0x10/0x10
[  255.312919][ T7207]  kthread+0x3c2/0x780
[  255.312928][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.312936][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.312945][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.312954][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.312962][ T7207]  ? rcu_is_watching+0x12/0xc0
[  255.312974][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.312983][ T7207]  ret_from_fork+0x45/0x80
[  255.312993][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.313002][ T7207]  ret_from_fork_asm+0x1a/0x30
[  255.313020][ T7207]  </TASK>
[  255.407641][   T40] audit: type=1400 audit(2000000427.690:2745): avc:  denied  { write } for  pid=5851 comm="syz-executor" path="pipe:[5712]" dev="pipefs" ino=5712 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  255.473816][ T7207] ------------[ cut here ]------------
[  255.475539][ T7207] ODEBUG: assert_init not available (active state 0) object: ffff88805ca68a58 object type: timer_list hint: 0x0
[  255.491603][ T7207] WARNING: CPU: 2 PID: 7207 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0
[  255.494539][ T7207] Modules linked in:
[  255.495782][ T7207] CPU: 2 UID: 0 PID: 7207 Comm: kworker/u32:17 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  255.499534][ T7207] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  255.503044][ T7207] Workqueue: rdma_cm cma_work_handler
[  255.504715][ T7207] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  255.506541][ T7207] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 00 8f f4 8b 4c 89 e6 48 c7 c7 80 83 f4 8b e8 0f b7 a4 fc 90 <0f> 0b 90 90 58 83 05 46 25 af 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  255.512752][ T7207] RSP: 0018:ffffc90003e8f3e8 EFLAGS: 00010282
[  255.514636][ T7207] RAX: 0000000000000000 RBX: 0000000000000005 RCX: ffffffff817ac018
[  255.517092][ T7207] RDX: ffff888012e62440 RSI: ffffffff817ac025 RDI: 0000000000000001
[  255.519557][ T7207] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  255.522099][ T7207] R10: 0000000000000001 R11: 203a47554245444f R12: ffffffff8bf48a60
[  255.524509][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  255.524588][ T7207] R13: ffffffff8b8fc780 R14: 0000000000000000 R15: ffffc90003e8f4a8
[  255.524598][ T7207] FS:  0000000000000000(0000) GS:ffff8880d6be2000(0000) knlGS:0000000000000000
[  255.524620][ T7207] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  255.526570][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  255.529017][ T7207] CR2: 00007f45a4951640 CR3: 000000000e180000 CR4: 0000000000352ef0
[  255.538623][ T7207] DR0: 0000000000000000 DR1: 0000000000000097 DR2: 0000000000000000
[  255.541220][ T7207] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  255.543752][ T7207] Call Trace:
[  255.544824][ T7207]  <TASK>
[  255.545769][ T7207]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  255.547943][ T7207]  debug_object_assert_init+0x1ec/0x2f0
[  255.549687][ T7207]  ? __pfx_debug_object_assert_init+0x10/0x10
[  255.551805][ T7207]  ? __lock_acquire+0x99/0x1ba0
[  255.553328][ T7207]  ? rcu_is_watching+0x12/0xc0
[  255.554796][ T7207]  __try_to_del_timer_sync+0x7f/0x170
[  255.556474][ T7207]  ? __pfx___try_to_del_timer_sync+0x10/0x10
[  255.558332][ T7207]  ? __timer_delete_sync+0x174/0x1b0
[  255.559993][ T7207]  ? __timer_delete_sync+0x17f/0x1b0
[  255.561792][ T7207]  __timer_delete_sync+0xf4/0x1b0
[  255.563625][ T7207]  rxe_qp_do_cleanup+0x5c3/0x7e0
[  255.565355][ T7207]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  255.567415][ T7207]  ? __pfx_rxe_qp_do_cleanup+0x10/0x10
[  255.569295][ T7207]  execute_in_process_context+0x3a/0x160
[  255.571271][ T7207]  ? __pfx_rxe_qp_cleanup+0x10/0x10
[  255.573151][ T7207]  __rxe_cleanup+0x267/0x3c0
[  255.574769][ T7207]  ? __pfx___rxe_cleanup+0x10/0x10
[  255.576560][ T7207]  ? _raw_spin_unlock+0x28/0x50
[  255.578309][ T7207]  ? __rxe_add_to_pool+0xa9/0x340
[  255.580162][ T7207]  rxe_create_qp+0x3f7/0x5f0
[  255.581967][ T7207]  create_qp+0x62d/0xa80
[  255.583300][ T7207]  ? __pfx_create_qp+0x10/0x10
[  255.584785][ T7207]  ib_create_qp_kernel+0x9f/0x310
[  255.586366][ T7207]  rdma_create_qp+0x10c/0x340
[  255.587840][ T7207]  rds_ib_setup_qp+0xc86/0x19a0
[  255.589365][ T7207]  ? __pfx_rds_ib_setup_qp+0x10/0x10
[  255.591016][ T7207]  ? __pfx_rds_ib_qp_event_handler+0x10/0x10
[  255.592997][ T7207]  ? rcu_is_watching+0x12/0xc0
[  255.594785][ T7207]  ? trace_contention_end+0xdd/0x130
[  255.596642][ T7207]  rds_ib_cm_initiate_connect+0x1e8/0x3d0
[  255.598615][ T7207]  ? __pfx_rds_ib_cm_initiate_connect+0x10/0x10
[  255.600764][ T7207]  ? lockdep_unlock+0x64/0xe0
[  255.602527][ T7207]  rds_rdma_cm_event_handler_cmn+0x61f/0x8c0
[  255.604700][ T7207]  ? __pfx_rds_rdma_cm_event_handler_cmn+0x10/0x10
[  255.606724][ T7207]  ? mark_lock+0x570/0x610
[  255.608123][ T7207]  cma_cm_event_handler+0x94/0x300
[  255.609717][ T7207]  cma_work_handler+0x15b/0x230
[  255.611248][ T7207]  process_one_work+0x9cc/0x1b70
[  255.612949][ T7207]  ? __pfx_process_one_req+0x10/0x10
[  255.614822][ T7207]  ? __pfx_process_one_work+0x10/0x10
[  255.616703][ T7207]  ? assign_work+0x1a0/0x250
[  255.618341][ T7207]  worker_thread+0x6c8/0xf10
[  255.619994][ T7207]  ? __kthread_parkme+0x19e/0x250
[  255.621823][ T7207]  ? __pfx_worker_thread+0x10/0x10
[  255.623419][ T7207]  kthread+0x3c2/0x780
[  255.624696][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.626160][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.627613][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.629091][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.630530][ T7207]  ? rcu_is_watching+0x12/0xc0
[  255.632213][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.633866][ T7207]  ret_from_fork+0x45/0x80
[  255.635466][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.637138][ T7207]  ret_from_fork_asm+0x1a/0x30
[  255.638923][ T7207]  </TASK>
[  255.639919][ T7207] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  255.642179][ T7207] CPU: 2 UID: 0 PID: 7207 Comm: kworker/u32:17 Not tainted 6.15.0-rc4-syzkaller-00051-g7a13c14ee59d #0 PREEMPT(full) 
[  255.645902][ T7207] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  255.649043][ T7207] Workqueue: rdma_cm cma_work_handler
[  255.650690][ T7207] Call Trace:
[  255.651745][ T7207]  <TASK>
[  255.652680][ T7207]  dump_stack_lvl+0x3d/0x1f0
[  255.654131][ T7207]  panic+0x71c/0x800
[  255.655372][ T7207]  ? __pfx_panic+0x10/0x10
[  255.656782][ T7207]  ? show_trace_log_lvl+0x29b/0x3e0
[  255.658401][ T7207]  ? check_panic_on_warn+0x1f/0xb0
[  255.660024][ T7207]  ? debug_print_object+0x1a2/0x2b0
[  255.661672][ T7207]  check_panic_on_warn+0xab/0xb0
[  255.663237][ T7207]  __warn+0xf6/0x3c0
[  255.664464][ T7207]  ? debug_print_object+0x1a2/0x2b0
[  255.666096][ T7207]  report_bug+0x3c3/0x580
[  255.667458][ T7207]  ? debug_print_object+0x1a2/0x2b0
[  255.669104][ T7207]  handle_bug+0x184/0x210
[  255.670455][ T7207]  exc_invalid_op+0x17/0x50
[  255.671880][ T7207]  asm_exc_invalid_op+0x1a/0x20
[  255.673337][ T7207] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  255.675126][ T7207] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 00 8f f4 8b 4c 89 e6 48 c7 c7 80 83 f4 8b e8 0f b7 a4 fc 90 <0f> 0b 90 90 58 83 05 46 25 af 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  255.680822][ T7207] RSP: 0018:ffffc90003e8f3e8 EFLAGS: 00010282
[  255.682645][ T7207] RAX: 0000000000000000 RBX: 0000000000000005 RCX: ffffffff817ac018
[  255.685056][ T7207] RDX: ffff888012e62440 RSI: ffffffff817ac025 RDI: 0000000000000001
[  255.687506][ T7207] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  255.689933][ T7207] R10: 0000000000000001 R11: 203a47554245444f R12: ffffffff8bf48a60
[  255.692368][ T7207] R13: ffffffff8b8fc780 R14: 0000000000000000 R15: ffffc90003e8f4a8
[  255.694797][ T7207]  ? __warn_printk+0x198/0x350
[  255.696308][ T7207]  ? __warn_printk+0x1a5/0x350
[  255.697821][ T7207]  ? debug_print_object+0x1a1/0x2b0
[  255.699478][ T7207]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  255.701345][ T7207]  debug_object_assert_init+0x1ec/0x2f0
[  255.703061][ T7207]  ? __pfx_debug_object_assert_init+0x10/0x10
[  255.704937][ T7207]  ? __lock_acquire+0x99/0x1ba0
[  255.706464][ T7207]  ? rcu_is_watching+0x12/0xc0
[  255.707981][ T7207]  __try_to_del_timer_sync+0x7f/0x170
[  255.709667][ T7207]  ? __pfx___try_to_del_timer_sync+0x10/0x10
[  255.711530][ T7207]  ? __timer_delete_sync+0x174/0x1b0
[  255.713170][ T7207]  ? __timer_delete_sync+0x17f/0x1b0
[  255.714812][ T7207]  __timer_delete_sync+0xf4/0x1b0
[  255.716392][ T7207]  rxe_qp_do_cleanup+0x5c3/0x7e0
[  255.717954][ T7207]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  255.719794][ T7207]  ? __pfx_rxe_qp_do_cleanup+0x10/0x10
[  255.721487][ T7207]  execute_in_process_context+0x3a/0x160
[  255.723235][ T7207]  ? __pfx_rxe_qp_cleanup+0x10/0x10
[  255.724855][ T7207]  __rxe_cleanup+0x267/0x3c0
[  255.726313][ T7207]  ? __pfx___rxe_cleanup+0x10/0x10
[  255.727913][ T7207]  ? _raw_spin_unlock+0x28/0x50
[  255.729430][ T7207]  ? __rxe_add_to_pool+0xa9/0x340
[  255.731007][ T7207]  rxe_create_qp+0x3f7/0x5f0
[  255.732477][ T7207]  create_qp+0x62d/0xa80
[  255.733803][ T7207]  ? __pfx_create_qp+0x10/0x10
[  255.735306][ T7207]  ib_create_qp_kernel+0x9f/0x310
[  255.736892][ T7207]  rdma_create_qp+0x10c/0x340
[  255.738370][ T7207]  rds_ib_setup_qp+0xc86/0x19a0
[  255.739911][ T7207]  ? __pfx_rds_ib_setup_qp+0x10/0x10
[  255.741547][ T7207]  ? __pfx_rds_ib_qp_event_handler+0x10/0x10
[  255.743413][ T7207]  ? rcu_is_watching+0x12/0xc0
[  255.744908][ T7207]  ? trace_contention_end+0xdd/0x130
[  255.746574][ T7207]  rds_ib_cm_initiate_connect+0x1e8/0x3d0
[  255.748371][ T7207]  ? __pfx_rds_ib_cm_initiate_connect+0x10/0x10
[  255.750312][ T7207]  ? lockdep_unlock+0x64/0xe0
[  255.751791][ T7207]  rds_rdma_cm_event_handler_cmn+0x61f/0x8c0
[  255.753669][ T7207]  ? __pfx_rds_rdma_cm_event_handler_cmn+0x10/0x10
[  255.755683][ T7207]  ? mark_lock+0x570/0x610
[  255.757102][ T7207]  cma_cm_event_handler+0x94/0x300
[  255.758727][ T7207]  cma_work_handler+0x15b/0x230
[  255.760255][ T7207]  process_one_work+0x9cc/0x1b70
[  255.761800][ T7207]  ? __pfx_process_one_req+0x10/0x10
[  255.763452][ T7207]  ? __pfx_process_one_work+0x10/0x10
[  255.765123][ T7207]  ? assign_work+0x1a0/0x250
[  255.766580][ T7207]  worker_thread+0x6c8/0xf10
[  255.768057][ T7207]  ? __kthread_parkme+0x19e/0x250
[  255.769619][ T7207]  ? __pfx_worker_thread+0x10/0x10
[  255.771220][ T7207]  kthread+0x3c2/0x780
[  255.772498][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.773941][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.775386][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.776839][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.778286][ T7207]  ? rcu_is_watching+0x12/0xc0
[  255.779794][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.781239][ T7207]  ret_from_fork+0x45/0x80
[  255.782631][ T7207]  ? __pfx_kthread+0x10/0x10
[  255.784095][ T7207]  ret_from_fork_asm+0x1a/0x30
[  255.785594][ T7207]  </TASK>
[  255.787202][ T7207] Kernel Offset: disabled
[  255.788564][ T7207] Rebooting in 86400 seconds..

VM DIAGNOSIS:
05:20:52  Registers:
info registers vcpu 0

CPU#0
RAX=000000000019987c RBX=0000000000000000 RCX=ffffffff8b6c8419 RDX=ffffed100d4865be
RSI=ffffffff8bf47da0 RDI=ffffffff81919901 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e10
R8 =0000000000000000 R9 =ffffed100d4865bd R10=ffff88806a432deb R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff9084fd10 R15=0000000000000000
RIP=ffffffff8b6c6caf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
GS =0000 ffff8880d69e2000 ffffffff 00c09300 DPL=0 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000056dca000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000010000 0000000000030000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000004 RCX=ffffffff84d7333b RDX=ffff88802792a440
RSI=ffffffff8bf4cb40 RDI=0000000000000004 RBP=ffffc900036ff328 RSP=ffffc900036ff1e8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000012
R12=1ffff920006dfe47 R13=ffffc900036ff448 R14=0000000000000000 R15=0000000000000004
RIP=ffffffff81bb2e90 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f92ecaddd00 ffffffff 00c01300
GS =0000 ffff8880d6ae2000 ffffffff 00c01300
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000563779bf6000 CR3=0000000029577000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000c 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=7bf9360a7bf9360a 7bf9360a7bf9360a 7bf9360a7bf9360a 7bf9360a7bf9360a 7bf9360a7bf9360a 7bf9360a7bf9360a 7bf9360a7bf9360a 7bf9360a7bf9360a
ZMM22=eae372afeae372af eae372afeae372af eae372afeae372af eae372afeae372af eae372afeae372af eae372afeae372af eae372afeae372af eae372afeae372af
ZMM23=e4a7618de4a7618d e4a7618de4a7618d e4a7618de4a7618d e4a7618de4a7618d e4a7618de4a7618d e4a7618de4a7618d e4a7618de4a7618d e4a7618de4a7618d
ZMM24=2eacb6bc2eacb6bc 2eacb6bc2eacb6bc 2eacb6bc2eacb6bc 2eacb6bc2eacb6bc 2eacb6bc2eacb6bc 2eacb6bc2eacb6bc 2eacb6bc2eacb6bc 2eacb6bc2eacb6bc
ZMM25=4a9142fc4a9142fc 4a9142fc4a9142fc 4a9142fc4a9142fc 4a9142fc4a9142fc 4a9142fc4a9142fc 4a9142fc4a9142fc 4a9142fc4a9142fc 4a9142fc4a9142fc
ZMM26=d2c40424d2c40424 d2c40424d2c40424 d2c40424d2c40424 d2c40424d2c40424 d2c40424d2c40424 d2c40424d2c40424 d2c40424d2c40424 d2c40424d2c40424
ZMM27=cc1931f8cc1931f8 cc1931f8cc1931f8 cc1931f8cc1931f8 cc1931f8cc1931f8 cc1931f8cc1931f8 cc1931f8cc1931f8 cc1931f8cc1931f8 cc1931f8cc1931f8
ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=b8090000b8090000 b8090000b8090000 b8090000b8090000 b8090000b8090000 b8090000b8090000 b8090000b8090000 b8090000b8090000 b8090000b8090000
info registers vcpu 2

CPU#2
RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854f27b5 RDI=ffffffff9adf64e0 RBP=ffffffff9adf64a0 RSP=ffffc90003e8ef90
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6e64696420756f79
R12=0000000000000000 R13=0000000000000064 R14=ffffffff9adf64a0 R15=ffffffff854f2750
RIP=ffffffff854f27df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6be2000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f45a4951640 CR3=0000000056dca000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000097 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 006563726f666e65 2f78756e696c6573
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f45a4811c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001b8660cfcba ef66886ea8a8b866 0cf8baef6600009b 8fb8660cfcbaef66
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c2010fdddfbde2c4 0067f90f66005d2b 01eaee00b00c0004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0cf8baef66000000 01b8660cfcbaef66 886ea8a8b8660cf8 baef6600009b8fb8
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000019a594 RBX=0000000000000003 RCX=ffffffff8b6c8419 RDX=ffffed100d4e65be
RSI=ffffffff8bf47da0 RDI=ffffffff81919901 RBP=ffffed1003bdc000 RSP=ffffc90000197df8
R8 =0000000000000000 R9 =ffffed100d4e65bd R10=ffff88806a732deb R11=0000000000000000
R12=0000000000000003 R13=ffff88801dee0000 R14=ffffffff9084fd10 R15=0000000000000000
RIP=ffffffff8b6c6caf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6ce2000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f45a5661568 CR3=00000000346cc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e69e11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e69e11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e69e11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e69e11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e69e11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e69e11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e69f83488 00007f6e69f83480 00007f6e69f83478 00007f6e69f83450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e6aaed100 00007f6e69f83440 00007f6e69f80004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6e69f83498 00007f6e69f83490 00007f6e69f83488 00007f6e69f83480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000