last executing test programs:

28m21.098518534s ago: executing program 32 (id=334):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, 0x0, 0x0)
listen(r0, 0x101)
socket$inet_dccp(0x2, 0x6, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000040), 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet(r2, &(0x7f0000000300), 0x0, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
sendmsg$NFT_BATCH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000fdff01000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000048000000090a010400000000000000000100000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000300c0009800800014044"], 0x90}}, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)

28m15.28880763s ago: executing program 33 (id=346):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, 0x0, 0x0)
listen(r0, 0x101)
socket$inet_dccp(0x2, 0x6, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000040), 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet(r2, &(0x7f0000000300), 0x0, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
sendmsg$NFT_BATCH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000fdff01000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000048000000090a010400000000000000000100000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000300c0009800800014044"], 0x90}}, 0x0)

28m4.914271541s ago: executing program 34 (id=363):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, 0x0, 0x0)
listen(r0, 0x101)
socket$inet_dccp(0x2, 0x6, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000040), 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f0000000300), 0x0, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r4, &(0x7f0000001280)={&(0x7f0000001140)={0x24, @short}, 0x8, &(0x7f0000001240)={0x0}}, 0x0)

22m46.700196751s ago: executing program 35 (id=815):
openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
chdir(&(0x7f0000000080)='./file1\x00')
r0 = inotify_init1(0x0)
open(0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(0xffffffffffffffff, 0x40045730, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r3 = socket(0x1e, 0x4, 0x0)
recvmsg(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/101, 0x65}], 0x1}, 0x1)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000180))
fcntl$getownex(r0, 0x10, 0x0)
setpgid(0x0, 0x0)

22m46.207288736s ago: executing program 36 (id=825):
r0 = socket(0x2, 0x80805, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'veth1_macvtap\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="44000000100003052bbd7000fddbdf", @ANYRES32=0x0, @ANYBLOB="9573732a6bbae2b4140012800b0001006d616373656300000400028008000500", @ANYRES32=r2], 0x44}}, 0x0)
syz_io_uring_setup(0x1fd1, &(0x7f0000000080)={0x0, 0x3, 0x400, 0x4}, &(0x7f0000000040), 0xfffffffffffffffc)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x0, 0x0, {0x0, 0x0, 0x0, r2}}, 0x24}}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, 0x0)
mkdir(0x0, 0x100)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r8}, 0x10)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
shmctl$IPC_SET(0x0, 0x1, 0x0)
quotactl_fd$Q_QUOTAOFF(0xffffffffffffffff, 0xffffffff80000302, 0x0, 0x0)
write$bt_hci(r4, &(0x7f0000000000)=ANY=[@ANYBLOB='X'], 0x6)

22m31.183021904s ago: executing program 37 (id=832):
openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
chdir(&(0x7f0000000080)='./file1\x00')
inotify_init1(0x0)
r0 = open(0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(0xffffffffffffffff, 0x40045730, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r3 = socket(0x1e, 0x4, 0x0)
recvmsg(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000680)=""/101, 0x65}], 0x1}, 0x1)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r3, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000180))
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))
setpgid(0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)

20m53.480973684s ago: executing program 38 (id=1009):
r0 = socket(0x80000000000000a, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='contention_end\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
geteuid()
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000340)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)

20m37.108375005s ago: executing program 39 (id=1025):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB], 0x3}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpu.stat\x00', 0x26e1, 0x0)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x29, 0x1f, &(0x7f0000000040)='\x00\x00\x00\x00', 0x4)
close(r0)
symlink(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file0/file0\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = syz_open_dev$video4linux(&(0x7f0000001380), 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r4, 0xc008561b, &(0x7f0000000000))
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='debugfs\x00', 0x0, 0x0)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r5, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000002180)=[{{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f00000027c0)=';', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002740)=[{&(0x7f0000000140)='W', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000180)="dcd47a81698aabcb7c00bd82ecf1834db3b005de6b83226625a9441ed445159f49b68d8d2097c52234357d4f61fb6414e9cfdd3ac5bfd09564aed8bcbb8109c7370059d14b973294d7084f1623bcf425e94f0303abd075ce7e0b5233e7c969098c35b05a1c000ccc62e264b990312580fcdb1eb7a7ea2cf3c2e97f3f56d2a1f9ff13e87ba69bee9784e32f143141f620d6a3313ce220f55843df03", 0x9b}, {&(0x7f0000000240)="ab56b03bd51ea142a4a42379e4d527be6bdef1d725c4d6403409da7b1932b071d637c75c444f48b683b0e14cf07febc565c39e2d53ce0f33070252ad53db8cba32ea9158dd68e8b8b32b7218780bf82cf0a51242259781059e9403fecbe60ef43677c98b32e60a354714a0c100c3fe24eea1101c24a7fb8c3129a45b5f2b5fdae7d50ce5a8f28d871606239106bd7a", 0x8f}, {&(0x7f0000000300)="3e8d8b7706d44a969e0fc22d1ffc3d6c4ffe47a637cff0377b8d18c3c6d83bb30effb3ac586cb69f7c3658ef89d9259ec7bc2d0cce3619ee41af409d4e53fc83f89a2938fc28719c9e02d7772dcff71d3abd0384454f31df7fb79e893871de73be4c5bbb768f136d27267c19b6c338c1a39e942d45c903", 0x77}, {&(0x7f0000000100)="3f3227c48628652c5b15d0507a7a6d063a6d31db340e9eafe2997f5f3eb1", 0x1e}, {0x0}], 0x5}}, {{0x0, 0x0, &(0x7f0000001a00)=[{0x0}, {&(0x7f0000000900)}], 0x2}}], 0x4, 0x0)
shutdown(r5, 0x2)
inotify_init1(0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff})
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x8923, &(0x7f0000000040)={'wlan1\x00'})

20m1.52529934s ago: executing program 40 (id=1091):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
io_setup(0xa, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$RTC_UIE_ON(r1, 0x7003)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r2, 0x0, 0x1}, 0x18)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r4, 0x0)
syz_emit_ethernet(0x56, &(0x7f00000000c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x20, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0xc2, 0x0, 0x0, 0x0, {[@mptcp=@capable={0x1e, 0xc, 0x5, 0x3}]}}}}}}}}, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000040)={0x0, 0x2e, 0x0, 0x4, 0x0, 0x89, 0x3, 0x200000f1, 0x1})
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r5, r6, 0x0, 0x20000023896)

19m27.764141281s ago: executing program 1 (id=1226):
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
setxattr$incfs_metadata(0x0, &(0x7f0000000380), 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
removexattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=@known='user.incfs.size\x00')
socket$inet_sctp(0x2, 0x5, 0x84)
shmget(0xffffffffffffffff, 0x1000, 0x800, &(0x7f0000ffe000/0x1000)=nil)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)

19m27.582619985s ago: executing program 1 (id=1228):
r0 = memfd_create(&(0x7f0000000040)='\x00\x00\x00\x00\x00\x00z\x9b\xb6\xe8t%\xfc\x02\x00\x00\x009\xa0\x8b\x14d\xa2\xa1\xa8!\xe8\xd1\xa0\x8a\xce0\x1c\xb7\xf1\xccm\xce\xd4\xdb\x89\xe5\x8f\xe2\xb6\xd6\x9cF\xbd\xff\x14\x05\x00\x00\x00\x00\x00\x00\x00\xf3\xdc\x91\'\x06\\8\r\xfc\xeeG\xbe\x90C\x1c\x87\x1e|C\xd8\x01\xd0\xf5\xbb}\xeb\x86P=\xe51\x9d,\xb7\xe6_M\xbe\x19\xea#\xff[\xd1\xc3\x9a\xa3\x1b\xf9\xe9\x1d \xce1\xc9\x9f\xb0\x14\xc2\xeb\xf9\xceE\xad\xa4\x92\f\xef\x87g\xb6\xabW\xac\rP\xf42\xb7\xc8\xaajnW\n\r\x802\xd7\x1b$\x95tO*\xf4\xae\xb8\xb8m\xbf\r\xd5\xbf*\xfd\xc7\x85\x1b\x8b\xe5\x97j`c\xe0\x88?\xda\x8a#t>r\xae\xe8\xc9)', 0x0)
r1 = memfd_create(&(0x7f00000009c0)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x84\xcdN\xf7\xf6\b~\xed_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xadNaC\xa6\xf9\xa7>c\x84\xd8\xfa\xf1\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8g8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\xea\x82\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\x0f\x8eS\xaeX\x93\x7f\xd3\xb9a\xe4\xe0\xbd\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x84\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1#\xe7N\x89\xf8\xe8+\xa1\x82\x13\xb2\xa9\xef\xa5\xf8\x8b \x00\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)2\xe2\xd6\x81\x00b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|&k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc2Ru2Ht\re\xa1\xf6\xbd\xaa\xb0\x83}i\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xed\xc8\xccH\xd1=\x81\x00\x00\x00\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xd6\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\x86C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17U\xf0\x16K\xf9&@\xb1[\xe2j$F1n@\xde\n%t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5#\x7f\xa8\x1f\x14\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebk\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x850\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96\x87\xc0e\xab\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!\xec\xf7$\xc2\xbaU \x98\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\"k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xec\x01\'\t\x89(\xf9\x98B\xaf\xde*\x91\xd5k\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\xdfC\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xc9\xcfw\xf3\x02\x1b\xde\xc3\x86\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x13\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcdQ\xdf\x83\xbdjp,\xe8\xbb\xe6\xc6Db\xb8\xd6\xcd\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd4k7L\x8a\xa3Z\xf9%{\xfax\x9a\x04\'/\x90\xe6\xe2\xe9\xf1@o\x0ez\xb8\xce\xbeF\x0fkE\xf4ry\x92n\xff\xcb\xf8e\xf3j\xc5[wK\x91\xdb\xf7-r\xd3\x1bx\x9b$\x91\x03q\x9e@\xd8R\x11\x05|\x8f\xb4\xc9\x16\x87C\xab\x96\xc4\xef\xea\xb9\r\xf5\xf3\xbe\x8a\t\xc7\x88\xc0sL;.\xcf\x1d\xc4^\xb0l\xbb\x97\xc5\xf6n\xca\x18M\xb8\x81\xff\xa9~\xf7\xa3\xa6\xd3\x15I\xecXG\x89\xa8\b\x8b\xcc\xe8\x88\xa07Z\x03\xa8.\x7f\x16qlk\xf1\xf1y\x8c\xde\xd6|\xa1(\xf4\x12O\xca3\xf8%1\x8d\xd7\a\xfeJ\xe6\x8bc\xb3\x1bKC.\xafB\x8d\xdd\xf9\x1e\x9d\xa7\x13\x00\x14\xc7\xa1\xf3\x1e\xcb\x19\x13z`\xac\xf3\xd1x\x1b#}\xfaYR\xc5#Zoag@\x18\xfa*\xb4\xc4\x04\x03V\x87\xc5\xe7\xb5\x9bJ\x85-\x7f\xfe\xc0\xb7g\xe8\'`\x96q\x88[\xf8\xe8L\x12\x85\xf5t\x99\x0e}\xd3H\xed\xda\xf3>\xd8\x12\x8cXc5%\x03\x8d`\xdayC\x9b\x9a\xd9c\xe9\xb4\v\x99\x87\xe4\x00\x8a\x8eS\x8e\f\x05ZH\xa2\x0e\xbc\x9c\x95\b2Cf6\x9a\xe7\xb9\x86\xbe\xd0\xda\x91\xc1sl\x11PA\x93\xa5\x93\xc8\xf1w\x7fp6z\xbf\xe8[\'u\xb8\xd2$K\x12\rt\x87\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00r\xe2`\xdf\xd2\xb3\xaf\xe9\xc4!Z\xb4&\xa2\x12\xe2i\x91kC$A\xafR\xb3\xff\x1d=\xec\x10\xb4+\x13\'\x92>\x14\x00\a\xb6R\x8b\xdcz\xc3\xd1Y\xd6\xd9;s \xb0\x938\xb7D9\xdcN\xbd\xdbn\xe35\xa7\x02\x9c\xc1\xd9\x13?\xc9\xd7\xab\x9c\xf3\x82\xd1\xee^kk\xce\xdbn\x02\x1f\x80\t\xdbr\xa9\xcc\xf1\xcb\x9f@\x8c\xfc\x02W/p\x97\xb0\xbd\x8f\xdb|n2a\xee\x95u\x83\xca\x8a>}\xd3\xd0\xff6.pa\x17\xe3e\xd2\x7f\xf6\xbc\x9d\x112\x1b\x14<B\x91\xc0{{\x9d@\xb3a\xad\x14\xe9\xcc|\xd7\xa1\xc6\xb9F\x04\xce]\xb9Y\xbd\xbd\f\xa4F;q\xec\x83\x9bM\x93\xa4\x9c\xdd\x93\xa0\x82E\x02d\xd4RAI\xd9O\x17\xa6P#\xa35\a\xf6\xbb\t>p\xa1\xd6u\xefn\xb4\xa3\x05D\x8c\xc5l\xcc\b\xeb\xf42\xe9\xf15\xf3\xf2\xee\xd6\xed\t\xb3\xf7\x1a\x7f\xe6\xb4z\x19\xe1\xb4w\xf7\xa6\xd7\\\xfa\x96\xe2\xf9\xb1\x81\xba\xdfg\xadI\x1c\xde*_\xd5\xdf\xeeA\xcd \x91\xc9\xd4\xd1\xcd*.t\x80]', 0x7)
r2 = syz_open_procfs(0x0, &(0x7f0000000980)='fd\x00')
r3 = memfd_create(&(0x7f00000002c0)='D\xa3\xd5Wj\x00\x00\x8b\x14\xc2\xac\x1a\x1a\vG\xa9~vB\xbc\t\x00\x00\x00VoA\xaa\xbc\xee[\xe1\xa2\xe0\xff\x04\x00\x9b\x12\x0eW\xcf\t\xb0\xa9 +H/\xfd\xa4\xcaN\x84\xadS\x8bqE\x99\x01t\xb1\x1f|\x99PL\x92\x8f\xc2y\xcd\x8cj\x03X\x05\x17mwI\xf0\x01\xe5z\xcdJ)\xc7\xfa)\xaa}\xef\xde\xf5\xcd\xb1o5\x18\xd6\v\x85q\x98\x9bB\xb9\xea\xe7\xff\x7f\x00\x00T\xc0\xd2\t?\bpBl\xf4\x86\xd4\xc9\xe3\x8f\xd9\x9f\x15\x1e\xf2\x18\r\xad\b\xe0\x96NH\x85\r+\xfc\xb3\xdd\xddhg(\x03\xa7\x92\xe5\x00+h\xb7@#K\x9cMY\xd3\x9b\b-G\xb1\xdaS\x81\xb2\x93\xb83\x8a\x94*\x8d\\\b\xff/\xf8A\xaf\\\xaa\xf5u\xde\xfa\xa1\xc0\xf9&gR\x81.\xff\x83k\xe6\rDa\x16\xbd\x1a\xb2w\b\x00'/244, 0x0)
write(r3, &(0x7f00000000c0)="6963e64243ea486da3a74e3deec6fc5bb9650b5de56946c568f95d22467190ba406d59a5958d6f156c9c8a2ac4677b00000000000000000000200000f8bf54da33", 0x41)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x10, 0xffffffffffffffff, 0xcc58000)
r4 = dup3(r2, r3, 0x0)
fchdir(r4)
r5 = inotify_init1(0x0)
inotify_add_watch(r5, &(0x7f0000000040)='.\x00', 0x201)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000002, 0x10812, r1, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000580)={0x10, 0x0, &(0x7f0000000700)=[@request_death={0x400c630e, 0x0, 0xffffff7f00000000}], 0x3, 0x1000000000000, 0x0})
write$binfmt_elf64(r0, &(0x7f0000000540)=ANY=[@ANYBLOB="7f454c46020000000d0200aa1e1c170003003e000839a59434d90a2742a24e000000000000000000deef14b40028e27ebdfd74dafc20380003"], 0xfebe)
open$dir(&(0x7f0000000140)='./file0\x00', 0x305000, 0x110)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000869000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x100010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r10 = socket(0x840000000002, 0x3, 0xff)
setsockopt$IPT_SO_SET_REPLACE(r10, 0x0, 0x40, &(0x7f00000018c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x478, 0x178, 0x0, 0x318, 0xd8, 0x178, 0x3e0, 0x3e0, 0x3e0, 0x3e0, 0x3e0, 0x6, 0x0, {[{{@uncond, 0x5e02, 0xb0, 0xd8, 0x0, {0xa803, 0xd003000000000000}, [@common=@unspec=@connlimit={{0x40}, {[0x0, 0x0, 0xff], 0x4}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}, {{@ip={@dev, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'vlan1\x00', 'wg1\x00'}, 0x0, 0x70, 0xa0, 0x0, {0x0, 0x6000}}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x1, @private}}}, {{@uncond, 0x0, 0x98, 0xc8, 0x0, {}, [@common=@ttl={{0x28}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @dev}}}, {{@ip={@rand_addr, @multicast2, 0x0, 0x0, 'veth0_macvtap\x00', 'bond0\x00'}, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@set={{0x40}, {{0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}}}]}, @ECN={0x28}}, {{@ip={@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CLASSIFY={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4d8)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1201000000000008050bc618000000000001090224000100000000094400000103000000092104000001220500090581030000000000"], 0x0)

19m22.465509295s ago: executing program 1 (id=1240):
socket$nl_route(0x10, 0x3, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x1010c0, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xd, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x6, r1, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8})
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000003380))
r3 = eventfd2(0x0, 0x0)
ioctl$VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f00000001c0)={0x0, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f00000016c0)=""/175, 0x0})
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000000)={0x0, r3})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f00000000c0)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x5a, &(0x7f0000000100)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f0000000000), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
pwritev(0xffffffffffffffff, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000380)="b93eee4149", 0x5}], 0x2, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x24002de8)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
r5 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r5, 0xc0285700, &(0x7f0000000100)={0x1b, "5660359c3245d1c42317afad7d48ed51000000000000000100", <r6=>0xffffffffffffffff})
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f0000000100))

19m20.705182111s ago: executing program 1 (id=1244):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x23)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
exit(0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}, {0x3, &(0x7f0000000040)=0x3, 0x2}], 0x2, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, &(0x7f0000000000), 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d4136000000000000029", 0x29)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3000000013000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="000000000000000010000c800c0022"], 0x30}}, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
acct(&(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00')
acct(0x0)

19m17.623344262s ago: executing program 1 (id=1253):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea048500000050000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair(0x1e, 0x1, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_int(r4, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
setsockopt$inet6_int(r4, 0x29, 0x24, &(0x7f0000000100)=0x40, 0x4)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000000)={@local, 0x10000, 0x0, 0x1, 0x1, 0x0, 0x2}, 0x20)
r5 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000040)={0xf0f024})
r6 = syz_open_dev$vim2m(&(0x7f0000000080), 0x8, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r6, 0xc0d05605, &(0x7f00000000c0)={0x2, @pix={0x6, 0x8, 0x50313459, 0x3, 0x5, 0x9, 0x3, 0x6, 0x0, 0x4, 0x1, 0x7}})
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)
sendmsg$inet6(r4, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[], 0xf}, 0x6b87bd76ddbcbbe)
socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)

19m16.428031016s ago: executing program 1 (id=1259):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB], 0x3}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpu.stat\x00', 0x26e1, 0x0)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x29, 0x1f, &(0x7f0000000040)='\x00\x00\x00\x00', 0x4)
close(r0)
symlink(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file0/file0\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = syz_open_dev$video4linux(&(0x7f0000001380), 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r4, 0xc008561b, &(0x7f0000000000))
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='debugfs\x00', 0x0, 0x0)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r5, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000002180)=[{{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f00000027c0)=';', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002740)=[{&(0x7f0000000140)='W', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000180)="dcd47a81698aabcb7c00bd82ecf1834db3b005de6b83226625a9441ed445159f49b68d8d2097c52234357d4f61fb6414e9cfdd3ac5bfd09564aed8bcbb8109c7370059d14b973294d7084f1623bcf425e94f0303abd075ce7e0b5233e7c969098c35b05a1c000ccc62e264b990312580fcdb1eb7a7ea2cf3c2e97f3f56d2a1f9ff13e87ba69bee9784e32f143141f620d6a3313ce220f55843df03", 0x9b}, {&(0x7f0000000240)="ab56b03bd51ea142a4a42379e4d527be6bdef1d725c4d6403409da7b1932b071d637c75c444f48b683b0e14cf07febc565c39e2d53ce0f33070252ad53db8cba32ea9158dd68e8b8b32b7218780bf82cf0a51242259781059e9403fecbe60ef43677c98b32e60a354714a0c100c3fe24eea1101c24a7fb8c3129a45b5f2b5fdae7d50ce5a8f28d871606239106bd7a", 0x8f}, {&(0x7f0000000300)="3e8d8b7706d44a969e0fc22d1ffc3d6c4ffe47a637cff0377b8d18c3c6d83bb30effb3ac586cb69f7c3658ef89d9259ec7bc2d0cce3619ee41af409d4e53fc83f89a2938fc28719c9e02d7772dcff71d3abd0384454f31df7fb79e893871de73be4c5bbb768f136d27267c19b6c338c1a39e942d45c903", 0x77}, {&(0x7f0000000100)="3f3227c48628652c5b15d0507a7a6d063a6d31db340e9eafe2997f5f3eb1", 0x1e}, {0x0}], 0x5}}, {{0x0, 0x0, &(0x7f0000001a00)=[{0x0}], 0x1}}], 0x4, 0x0)
shutdown(r5, 0x2)
inotify_init1(0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff})
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x8923, &(0x7f0000000040)={'wlan1\x00'})

19m15.464192095s ago: executing program 41 (id=1259):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB], 0x3}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpu.stat\x00', 0x26e1, 0x0)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x29, 0x1f, &(0x7f0000000040)='\x00\x00\x00\x00', 0x4)
close(r0)
symlink(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file0/file0\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = syz_open_dev$video4linux(&(0x7f0000001380), 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r4, 0xc008561b, &(0x7f0000000000))
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='debugfs\x00', 0x0, 0x0)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r5, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000002180)=[{{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f00000027c0)=';', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002740)=[{&(0x7f0000000140)='W', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000180)="dcd47a81698aabcb7c00bd82ecf1834db3b005de6b83226625a9441ed445159f49b68d8d2097c52234357d4f61fb6414e9cfdd3ac5bfd09564aed8bcbb8109c7370059d14b973294d7084f1623bcf425e94f0303abd075ce7e0b5233e7c969098c35b05a1c000ccc62e264b990312580fcdb1eb7a7ea2cf3c2e97f3f56d2a1f9ff13e87ba69bee9784e32f143141f620d6a3313ce220f55843df03", 0x9b}, {&(0x7f0000000240)="ab56b03bd51ea142a4a42379e4d527be6bdef1d725c4d6403409da7b1932b071d637c75c444f48b683b0e14cf07febc565c39e2d53ce0f33070252ad53db8cba32ea9158dd68e8b8b32b7218780bf82cf0a51242259781059e9403fecbe60ef43677c98b32e60a354714a0c100c3fe24eea1101c24a7fb8c3129a45b5f2b5fdae7d50ce5a8f28d871606239106bd7a", 0x8f}, {&(0x7f0000000300)="3e8d8b7706d44a969e0fc22d1ffc3d6c4ffe47a637cff0377b8d18c3c6d83bb30effb3ac586cb69f7c3658ef89d9259ec7bc2d0cce3619ee41af409d4e53fc83f89a2938fc28719c9e02d7772dcff71d3abd0384454f31df7fb79e893871de73be4c5bbb768f136d27267c19b6c338c1a39e942d45c903", 0x77}, {&(0x7f0000000100)="3f3227c48628652c5b15d0507a7a6d063a6d31db340e9eafe2997f5f3eb1", 0x1e}, {0x0}], 0x5}}, {{0x0, 0x0, &(0x7f0000001a00)=[{0x0}], 0x1}}], 0x4, 0x0)
shutdown(r5, 0x2)
inotify_init1(0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff})
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x8923, &(0x7f0000000040)={'wlan1\x00'})

16m19.393945354s ago: executing program 7 (id=1666):
socket$nl_route(0x10, 0x3, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x1010c0, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xd, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x6, r1, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8})
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000003380))
r3 = eventfd2(0x0, 0x0)
ioctl$VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f00000001c0)={0x0, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f00000016c0)=""/175, 0x0})
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000000)={0x0, r3})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f00000000c0)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x5a, &(0x7f0000000100)=0x400000bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
pwritev(0xffffffffffffffff, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000380)="b93eee4149", 0x5}], 0x2, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x24002de8)
r4 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000000100)={0x1b, "5660359c3245d1c42317afad7d48ed51000000000000000100"})
epoll_create1(0x0)

16m17.555399098s ago: executing program 7 (id=1673):
sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x4014)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r4, 0x0, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000080)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0xfffffffffffffffd, 0x0, 0x0, 0xed, 0x0, 0xfffffffffffffffc, 0x80000000000}, {0x4}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3}, {{@in6=@local, 0x0, 0x32}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0xff}, 0x0, 0x0, 0x3f213ef2de85820a, 0x6, 0xae, 0xffffffff}}, 0xe8)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)="3c75c2015e8724b5a4c586f2ae924b27", 0x10)
r5 = accept$alg(r0, 0x0, 0x0)
r6 = dup(r5)
sendmmsg$alg(r6, &(0x7f00000042c0)=[{0x0, 0x0, &(0x7f0000001000)=[{&(0x7f0000000c80)="d0e8aae45597b31edd817fddb8da23863260feba96f07bc2d696fcf4c0547f845f43bb236c2adad75274e86a8af5f61d9054f40add4bf2070c554c35cf5947e1c60a93ef90d256b655f75c66", 0x4c}, {&(0x7f0000000d00)="0ff72a74c3b410519a1f09da23abc637d8f70ab1ab7db039f9576ada18b9b34adbf8e362447e0a8933db55dd43108ef68fa6e2fb53b3eb215ba7aa81efa41d25e31eba1d3421202ef2ec17f59a9352978f2e834165a5d6e9b630b154d9b53852212e45babb25066b4a5b47dedbf12988eb98cfbbd36a751827562effe576bf81aef9fafe4874a1e92b38d60f4ca00ab9f48f7d3395cacd762c4b2e1fa46b016115a8dc144344", 0xa6}, {&(0x7f0000000dc0)="7c33a1e7c75f2d3ba82db0a793401718acb27d593148f95a139e4fa3d88158c91c6f7b7104242148a6e5ecc3ba7597f464bb9a4d44dee8c4d9aed7f9b48644f23a82666f3966b68ea9bfecd9a59a2648ac4cbe868c139cffbde5949777fb7c7553e5c2183ef7f55448276546e0da23c9", 0x70}], 0x3, &(0x7f0000001080)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)
recvmsg(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000180)=""/163, 0xa3}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kmem_cache_free\x00', r7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, 0x0, 0x0)

16m12.695618657s ago: executing program 7 (id=1678):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
stat(&(0x7f0000000f40)='./file0\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="340000001c00070c000000000000000007000000", @ANYRES32=r2, @ANYBLOB="410100000c000f80ff000100030000000a0002000002"], 0x34}}, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="03c90000cf47d16331aef6ee13ff7f266e13da7be839b35e9ae1a333f2d8fd8e1983903166f4d8f3d5e043b8eb3a4dd0a04b39df97c82009b793cd734558a268aac6cea0ca6aa40899810bc164d8ad6b2ce23bf4b88d9b72991218c6c68e9a992582d217f639c8ad76405b511163edb9ca95e8123830003ab82fc86a517ac2aff77866914ebb9aca4a6e530d80f19ee31eeb1e5b8139b72264f8fceb54ee9980e771c5f11155b69e12e65e6a3699d1b80648dd949081f1a612b7b5950f41554c9b832f7cf9efa4987bd88887917199318d28808204e7638ca5932c066d2a662e600ac0a8f27b86c066f2bceabd1b3af66c12fefa311c5afe0821a14432925187a05476e0a972e85f26a24832c357d70d354ade966e6963234e4956658ac9ece3780485fcb3decb69a029ffbeda1c7b27bb020f4137624286d8a2d22221028b3efd3433e7fd3ba291446947a274a748f45bb347fa49e295cfa305f5dd46b662afde61cfee33ea823d23f46a662146886c6e3c30e660d765f46dcc14914b3e342e44436410fedeb6594f37ac94cd336dea463e0541daadbe70b5b925741db16240afc85f391539569ac14e5dccb9ca5790c33f8a6cdd7abc1cb762972634968ecb9f1dff8b6b6cd6f5f56db31c24ac5b2b1bed2efea1f4e67f686a8abfa41f297a165b9fcb4800230ed07af34727fe6c2cc6daf796cc38e8f03ee4fb786a92fabfbded442086d657dec598edb21ba428d4bb28ac974c38218bcf08ad3b4f6698ae05855769dbe5693eac83a223b76a5f452195795d3d485e5c0a18caf2315c3a21acb4bb661082b1c4fccfff8f0c52c353dedd3b9e575b800cfec557e43527228abf820e16411b45c77e99f308dcc5dcd1c3b8ddb828e6481c1fc6275c3e1ed4a1f0fe6d97db39cb3ad5b08400cc990ed5797e23fcd81ee76eed1caaf2ec709c18b014dfcfac7eb658f1c07a894dca1d8e23ebbc18c7b0acefacd915235a54637d13965681a6a527325d13b4a88a21505860873038bc6ca68e25bed80496e65b53a4817e7dba3cbe31eebb770ab04202486634b7210500238707cd664735c07e539e8ccb09ec82d7fad69c4f31113b4a01089a81d4a1787d69957a2dfcf371f0c357eba5a587f0d09d64588f3fade99726d786085b513e720fd1d889104e1d98bf4fe23d6bd8c408c44fc702880e6c53a733aaafec836a80b9e69d1432225dda63a755bde5103fbba7af46f81b3b0c3457d49e187c7fa53e9410d4ff7dd1c9a954d549b49197f350e8451e850279ba4690a4ff3fa4f91ebfa4dda7d2a60257d70c09ad6520387baf2cd734bf1f993565f7ccf80f29b1414e595de79ec03faf7afbeff3daf0034aeecfe41640366ae3c1d1b9437cb7580b9a94fe71a5ffe7be4f959cc5972e1672c5f5c5d252a63804d1a292aac2582b78ac73ea143095bc1283b210c66ecc5b5b9be4d6649920118d51429328f8a983a89f8f5d6ec383c89f07e91e0726ed40776d72d7499652a84f9d0bb086e9479a6d703907ee17345ed763ae817751515c744d428ac51fb10eba495f9a477809a4c1b447a94a3f6d1a092b109478ca36c3da494552d34f30d74a32958c53ec091e32ca8aaf5c814881d4bb3add2b07f362e9e4ea17b3f8b6e7310fcbea4ea6f2d9f5505b011011b75eb4dbf2455f665027abe2bb73dd37dff9c6aab6e9454bbd7bb887aef12f19f446bcbf257ada0e5144f708ccf350f07b861b813eb4cdab02d74b660d960c737f553f84b2d027da58f02345704583717199f693c913bfc2704cfde1b31270c43f17d51c82b672796fd6e1d09e34659d7e5fd9a1a69dcdde367c074b47beeb88f374740a64d9e9a99f4fabdbfca311174da518f868704e3fe259e6069330b04d2d3804a3428d2e04a483599f5ff47ff8c877601fcae33999575180fb540ff00c55728d0ee8eb6550658c7cbc8be4f87b50a9650a33aa164c6bae4044dfc080cf43a1c80e8a8132f973faefcf2ee23f9c2f3119fa93c0e5875832d4f8b6c2a1c347d480f15ead27ba7fb6e2ba9f2204982023b15b0f9df44ce9bba765c9598810593dd32a520ba72a5bfc375f36f4ea4a55017b1494c392568ef6828c18a1f2cec1442f705687695e42f62734ac2c1b0fed399ccf29b20fccd476afc72217182a73c970029c7679dffaebfc2ab9e8d18f5e757ccde87ac69b2bb0243b2e86d225dd2edad4919977bde1806bd6305eff22f2d63646c3a856a002aaea40d96e4811fe0cf5ad942e087c55551fdccc65835686320aa635ec50872f1c30cd8a732515b4dbfa132f905205f4b2ec64d1b9a9101ee2c3d0a110e40fd40d2c0b19f9a77b43f0b14e283ad1038de31cb21c2857d278933fd4bf106a7a93e16b28d71dfa73fa0695c77c0b1236e4cc7f17837be252d1011edf8ba626315e416b2963e96172b3294ec1f087672b0fc404edb79ca9b8e7a46f69b7a6f8b0488ec6c10f937632cc29bdb6f2c0ca86b978db6ca3cb9aa9b5f253fb5ba52e5b3738468236bd3ed26da1158e14881860f37f586b3b004ff7233a7427ece1c1365bb273aa1ce801c6d61b35a247c38917df23b9f12f7e764dabf9af18885e447a952de7796c3dd27e77325be816eb82ae9026ef5a855ddfb9aaf4a0bfc153f079c95337d2ee3c2ac36e5b4e8c5da765bf5d11edcf01ef11a3748d7ca0b1fd6f8882fbfd3423bd429c8592ec28a98bba845e7fe829ae2b11f5215ce819bf777ab45d73e9afe3cc76840b7d368161ee140efdec81ca1d5716c2ea5b255fabb5a4698864c8d427738837c45f1006cbf1f68bbedbfdf70e5b65b21b1934826c06d4d3da4f08e3ad376cec5aafb2f9eae9a06cab375ef5a44f30a563e5245077d84823b88d71912f458fe17d36e4b2a88260ad121af2e5a43a555ef61ffd242c09d5011b9be422c4c310a834f664c732930c1d329212aa9f063356c85130c965d919180e62afd193224d3792db6a069ff2bc8770bd6294a6884cbfb71301859a26b7572440ee12719e8753831bf73d353a33ea64c57df0bac0cc8938ea28370724439170824d1b55d415eed14f620d3a28bb5009edd12e9322df3573bbd9b0d0ff2cbd2e48c0c297f63c100116097c48c8f4cf0a7c4fb5156723fcb615236b6db175442b2db90c3e426cca9de56f55effdbb981c75c99a8dd084a619882fb216b000cb99eae616f0b5d7a8a2cc675cbd3e0a61b6f602250b040ae57f998471095563334e165f35139ec22aabf8ada15b890e2cf038a4f40d129760e39b166f58cfb4bfee7d4455ce06ad098745e0edac9434e4c61f889cbe6d7cf74da35f1b6d2b4455abf954223d1638ff808508228a3060d390e9ce539d2dcb032ae5d6c5abcd4df4bfb63f9851e45bb961cca2150eb386abd67dab2a12c096aa8df742e41ff7718f9dd77099d9bc87a2a46d8d6ffb903b23b429747c9acb21c0e88067eb6c7fa2507ef0673e6b65a15767cfa4ef9b52adbce41ea3461f77b0e705a2d5cbcf3841bd22414f3ef2402a915705a18113d370d35619fdbbfb4fe6e1581a8520525e863d931aaaed58d06d093905b0d83dd1345f4b8213954102abf8048be627d437f267d4a0a6e6f181891562b61be55f1e646120cfe17d8d2961ad86d1575856fff39791b90ccc6895495cc0f3a1e2604f5b729aec7452b133b9c822bbc74df480670f34cf0335d42b5ad6a7009c49050d97ef8c09eff8716dbb9ce5a5d67ffad2541860017bfe982c0e48390f987f470c7b600fb29be4d3a74251d85ef1cf1fe3b5a146bb9f6fee2369cba1f2be75782b14a422b0820fa00c1250f4d437f24914a94a8564fa079fe803b39c528707dd2906120d53020000b725596b68553f1653aad2fdd23114e4a7ca3402fcdf0b060323a683a03109ffbec9627c803da8a55665e156a335528f113eb730bb28c0480daf8f2b65483d0f3805e1c512b680d8698e63a80b45aa8c7e12ad0f0e072eefc806fde42455bc4d157e402a86218896d5638f8fdadb1fbffaf4fe92f526475612980f0c5a539a9cec3c63e4efa5b893611af45c8003650888dc5b958a18848cffe11e0636f40e3ade10da702b71a69e6941e506ec3f0297349867949246310909ff445005f68910308df1e44f7ef04efbcb6ade53086aeb80b0ca96b94c9e6353c77bc1ce575edd6a1ab76e000d2ca0bc80c09d76d2bf25d90c93d5fcf6c123a9e83a3354b798356aeb2e99721732d52b1ec6c84d79d6f1237186260e7e63f29cfe8050a8fd44d57b52582b45e1fe027792c07ef33a0ac686606dd009ef3839e179190aca20d01db1d2263898a6953feb5d2e8093a4b4a2b18f6cb06a0251d3862672814b5165213c65174fe5dad7673186293e336348fc77a6d545cc07355c07a8b9a98c95d76fa5dc4c19181578a6dc4f2b29b647ab6a09f6756994c8e389c7c165766f154468b380e1e67cb2edbc7f67b6bfad1de690c3f472908b11d1c502ca61b5e869cd2cf8e11e39eceb9d31fca090fd5dd15e1f5a8c4de58531df3fa96d655653a5b99ea449d3865e07401ecb63fb4ac4042c893841c2b70b4a133937ac0dca8d6f442de175f138ab7cf19477c2483caf524fc443b3243d31f15f3f518b2d7964314d7d34754ae417dd9d46a83e443cef18eb673f46f34aeaba592a171bb4710002da17d9d6554208fc384de22bff7e05d2bfb821656e78bfa084be46fe6b0f04a06c6bc80afbd406a918a57d582345b260360cec7168142ef0e0da8ad70ac9703d6206c6da23558374ad8bc1e8fe5cdede25e8ad5d0d0741d85e86566b7b9172f457e36feabb881f14a04d182b6971bb1aa1c37a608ff0eeaba1b6c37c4bdb15696afb0e031ef8b214a7a72892593c910829c820f773135f3441afc90cadeb50f76d4a5bbd713c8b3dc441599dcae659b9ad417affde5d9ee3933f00ea69323fd33e0b9a12b1ee29b2e97c7b1db3fa0a900678c6490a847fdd85fa93bb134e3239638052359774bc22405a0abb698081ce1dce2dfe0c0430b641f00d230013944df65581f6b5f458165b16aad8b92b44bf28b3236cac5239c91fe2351c5f53359d072aa34ffee18ff275afdc0dc7b889da928fdd4e300a52699cb5a4fea8cc42f636b15e449daef52df3586d4b55fd047b04e96734aa2c45bcad8f05dbf3c97daefcd6bad396a6aed71849e484eb0e3526970973db9b268b71e726748aacb5c2203cde2992af74cac612d33cecba7f3e5d66e2a2e449eb00e770af4fe13be6d16877cfa46c108c29d8db1efff5356433fc627741d12605056ec78c02bf143afc9e2161c15ce65a0f8c9f13a6b7a9164f256301ff0ca23dfffb77ec46ddd29b63d7bcfe5ae482f76f1c0e819b24b970209058bd0c"], 0x1004)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r4 = socket$kcm(0x10, 0x3, 0x10)
recvmsg$kcm(r4, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000033000b0fd25a806c8c6f94f90e24fc60", 0x14}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r5=>0x0})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0100000003000000610200000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r5], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r6, &(0x7f0000000340)="9b", &(0x7f0000000080)=@udp}, 0x20)
pipe2$watch_queue(&(0x7f0000000300)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r7, 0x5761, &(0x7f0000000680)=ANY=[@ANYBLOB="02000000000000000008"])
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r6, <r8=>0xffffffffffffffff}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20)
r9 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x42000)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r9, 0xc0f85403, &(0x7f00000000c0)={{0x3, 0x3, 0x1, 0x2, 0x8}, 0x8, 0x8, 'id1\x00', 'timer0\x00', 0x0, 0x3, 0x5, 0x7})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000400)={r8, &(0x7f0000000200), &(0x7f0000000080)=@udp, 0x1}, 0x20)

16m6.819168639s ago: executing program 7 (id=1698):
socket(0x80000000000000a, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='contention_end\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f0000004200)={0x2020, 0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r2, &(0x7f0000008bc0)="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", 0x2000, &(0x7f0000000e80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000}}}, 0x0, 0x0, 0x0, 0x0})
statx(0xffffffffffffff9c, &(0x7f0000000380)='./file0/file0\x00', 0x4000, 0x0, 0x0)
write$FUSE_INIT(r2, &(0x7f0000000240)={0x50, 0x0, r3}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x610000, 0x0)
ioctl$DRM_IOCTL_GET_CAP(0xffffffffffffffff, 0xc010640c, &(0x7f0000000180)={0x11})
syz_fuse_handle_req(r2, &(0x7f000000abc0)="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", 0x2000, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()

16m2.366602528s ago: executing program 7 (id=1706):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000540)={{0x12, 0x1, 0x0, 0xe7, 0x19, 0x87, 0x40, 0xeb1, 0x7007, 0x205, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xff, 0x0, 0xff}}]}}]}}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_usb_connect(0x3, 0x24, &(0x7f0000000600)=ANY=[@ANYBLOB="12010000dc3f6e4013080100083e000000010902120001000000000904"], 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
unshare(0x10000000)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
sched_setaffinity(r0, 0x8, &(0x7f0000000480)=0x4)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x11, 0x3, 0x10)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001e0081064e81f782db44b9040a02080006007c09e8fe04a10a0015c00200142603600e120800080024000000a86286cf6c00014003000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db701000000400ad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1d, 0xf, &(0x7f0000000280)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x80000000}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000040)='GPL\x00', 0x5, 0x6b, &(0x7f00000001c0)=""/107, 0x41100, 0x78, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
r4 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a00)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_misc(r5, &(0x7f0000000000), 0xe09)
ioctl$LOOP_CONFIGURE(r4, 0x4c0a, &(0x7f00000002c0)={r5, 0x0, {0x2a00, 0x80010000, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x6]}})

15m56.753311285s ago: executing program 7 (id=1720):
memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x1)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xa8)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000080)=r1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000000)={0x1, r1})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000b40)={0xa, 0x0, [{0x2000, 0x1000, &(0x7f0000001600)=""/4096}, {0x0, 0x12, &(0x7f0000000100)=""/18}, {0xdddd0000, 0xaa, &(0x7f00000003c0)=""/170}, {0x0, 0x14, &(0x7f0000000200)=""/20}, {0x6000, 0x86, &(0x7f00000009c0)=""/134}, {0xffff1000, 0x83, &(0x7f0000000a80)=""/131}, {0x2, 0x20, &(0x7f0000000240)=""/32}, {0xddccf000, 0x1000, &(0x7f0000002600)=""/4096}, {0x3000, 0x26, &(0x7f00000002c0)=""/38}, {0x100000, 0x21, &(0x7f0000000340)=""/33}]})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000005c0)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f0000004c80)=""/83, &(0x7f0000000880)=""/72})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000001040)=0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000300)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000040000000000000e03000000000000000300000000000008000000000000000000000002040000000c00000000e7ff09020000000000006161000000000000"], 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
socket$inet(0x2, 0x2, 0x0)

15m41.616300336s ago: executing program 42 (id=1720):
memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x1)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xa8)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000080)=r1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000000)={0x1, r1})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000b40)={0xa, 0x0, [{0x2000, 0x1000, &(0x7f0000001600)=""/4096}, {0x0, 0x12, &(0x7f0000000100)=""/18}, {0xdddd0000, 0xaa, &(0x7f00000003c0)=""/170}, {0x0, 0x14, &(0x7f0000000200)=""/20}, {0x6000, 0x86, &(0x7f00000009c0)=""/134}, {0xffff1000, 0x83, &(0x7f0000000a80)=""/131}, {0x2, 0x20, &(0x7f0000000240)=""/32}, {0xddccf000, 0x1000, &(0x7f0000002600)=""/4096}, {0x3000, 0x26, &(0x7f00000002c0)=""/38}, {0x100000, 0x21, &(0x7f0000000340)=""/33}]})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000005c0)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f0000004c80)=""/83, &(0x7f0000000880)=""/72})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000001040)=0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000300)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000040000000000000e03000000000000000300000000000008000000000000000000000002040000000c00000000e7ff09020000000000006161000000000000"], 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
socket$inet(0x2, 0x2, 0x0)

8m51.917987558s ago: executing program 9 (id=3061):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0x13, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000400bf09000000000000550901000000000095000000000000000500000000000000852000000000000018600000000000000000000000000000bf910000fc000000b7020000000000008500000001000000b70000040000000095000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0xe}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000aeb000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f00002a0000/0x4000)=nil)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000040)={0x0, <r3=>0x0})
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r4, 0x4601, &(0x7f0000000940)={0x60, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x10000000}})
sched_setscheduler(r3, 0x6, &(0x7f0000000080)=0x7)
r5 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r5, 0xc0d05605, &(0x7f00000000c0)={0x1, @raw_data="08e8bc5493401a5a7bc14292be32249b4db3cdeb76e5f41bcefea241e628a74363b66e4f03c202a45922d4d8a5ba84e356d0f50bf3dc702819fcebb8f68d77a8cfb176f9674d1ef370678769315f1072cc937d563e0da8f2fd024b662627183332f7c194bc964fc18911d635e6cb782bf9e6bc917e558073e9a888b7e8308b4ca382b3c5ccffbf851423403995c5c8439885b37fc68a1f836112d2397b9d5d7e05d325b6c9633b6412a31e0828a044e10c1e7eb6d6bd7561466934bb0d532fd5e8d476e955a3ec22"})
r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc)
ioctl$vim2m_VIDIOC_S_FMT(r6, 0xc0d05605, &(0x7f00000000c0)={0x0, @raw_data="4ca29d6e0904d30aa1ec6516b2ee73e7ad5a6552ccc5f76e20e390ca85dbf021bb6efbf31898636bc5e4a8d103bf4c34698c41ea60dca30fa35fe374c8e82367ad0acb22be5295dfa62ee78a71f1c1ad2d01a072b5c89a2c2860d57e3a15c57fad0c7272d1d710a9840653b016af9aa464f9118058422a027ae83964bdcab8e412ae616c5355d9bf5155487f1e17e581ae4cca31c1e9b3b58b9879382f7d8c55d8849f188d905a93fb880e1e08fa44a8f6844dc49da156d97297a5af5f4f3ce52a895425818e088d"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="0100000010000104000000030000000000002000", @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100626f6e640000000018000280140008800800030001"], 0x48}}, 0x4000841)
sendmmsg$inet(r1, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)

8m48.733510185s ago: executing program 9 (id=3064):
r0 = msgget(0x1, 0x401)
msgsnd(r0, &(0x7f0000000d00)={0x0, "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"}, 0x1008, 0x800)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f00000001c0)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$media(&(0x7f00000006c0), 0x4007, 0x0)

8m46.964247581s ago: executing program 9 (id=3069):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0xe, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000000)=0x2eda)
listen(r1, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r0, &(0x7f0000000140), &(0x7f0000000040)=@tcp6=r1}, 0x20)
r2 = fanotify_init(0x0, 0x0)
fanotify_mark(r2, 0x455, 0x8000001, 0xffffffffffffffff, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r2, 0x455, 0x8000001, r3, 0x0)
recvmmsg(r1, &(0x7f0000001700)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000340)=""/188, 0xbc}], 0x1}}], 0x2, 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
fsopen(&(0x7f0000000000)='devtmpfs\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = open(&(0x7f0000000140)='.\x00', 0x0, 0x0)
flock(r4, 0x2)
r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r5, 0x1)
r6 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r6, 0x1)
flock(r4, 0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$IOMMU_IOAS_COPY(0xffffffffffffffff, 0x3b83, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x28, &(0x7f0000000080)={@broadcast, @broadcast, @empty}, 0xc)
setsockopt(r8, 0x84, 0x81, 0x0, 0x0)

8m38.510290337s ago: executing program 9 (id=3089):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x204, 0x10, 0x100, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in=@broadcast, 0x0, 0x32}, @in=@dev, {}, {}, {}, 0x70bd2c, 0x0, 0xa}, [@algo_aead={0x113, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0x638, 0x60, "25edc521070000000000000027475459000000ffaafeb3035786c0da8d3add3e2d6c6a3ef75fc955f975bb1b637b1044ed1979b0e15c19284103bcbe325a7a0f021ca5f66b688ac1d121ae9e82225ee9f5c0790f17952902ca4c54d8dfc82a5be97e50ce7c2265cf4558cff67aa750e37619b634667213cd35584c1b65e3c74b7b26fcc8c037fbda72eb001da78a0f8a9d35ada57a6d5cd9f50f2b78d384cfeec3134bef7a65ddd7ddee3fac666558b769c58d8588475f20cb715bb63f18f1693c1bdec31f006f"}}]}, 0x204}}, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
r3 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f0000000180)={'fscrypt:', @desc2}, &(0x7f00000001c0)={0x0, "2f01c4fd8eabb5611b655e5f65991c3e1e6f89550928b713582f37d43e4b35a9f7a5b12d01438c9c419900b0e3001000"}, 0x48, r2)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000640)='asymmetric\x00', &(0x7f00000003c0)=@chain)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000140)='./file1\x00')
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x6ad085a78214bb71, 0x0)
quotactl_fd$Q_SYNC(r4, 0xffffffff80000100, 0x0, 0x0)
keyctl$link(0x8, r3, r2)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "00000100ebffffff", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', "006e34e400"}, 0x28)
sendto$inet6(r0, &(0x7f00000001c0), 0xfffffffffffffede, 0x0, 0x0, 0x3000137)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_pidfd_open(r5, 0x0)
process_madvise(r6, 0x0, 0x0, 0x15, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x24, &(0x7f0000000440)=0x4, 0x4)

8m37.755156784s ago: executing program 9 (id=3090):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x4, r0, 0x0, r0, 0x1)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
munmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mlock2(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0)
msync(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3)
socket$nl_rdma(0x10, 0x3, 0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000080b2745aa00c28e080cc5b5305e151b27dcbcd4a3805003a0c9f16503edc494627e882b6f06d5066222c4bcf2f32489ee079c3aa125cce7f95a48a5310c305f99b7491", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x18)
r4 = socket$inet(0x2, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
connect$inet(r4, 0x0, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x1001)
r5 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000180))
ioctl$PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f0000000200)={0x60, 0x2, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x10000, &(0x7f00000001c0)=[{0x7, 0xff, 0x5}], 0x1, 0x7fffffff, 0x15, 0xf, 0x8, 0x8})
socket$inet6(0xa, 0x3, 0x8000000003c)

8m37.310359232s ago: executing program 9 (id=3092):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x29, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x401}}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x5}, @func, @generic={0x2, 0x7, 0xb, 0x6, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x700369c385a36d01}}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x6}, @jmp={0x5, 0x0, 0xf1481bf61cfe7dd7, 0x1, 0x1, 0x4, 0x10}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x10000}}, @jmp={0x5, 0x1, 0x4, 0x3, 0x6, 0xffffffffffffffb4, 0xffffffffffffffff}]}, &(0x7f00000001c0)='GPL\x00', 0x8, 0x63, &(0x7f0000000200)=""/99, 0x41000, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000002c0)={0x5, 0x0, 0x8, 0x401}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000300)=[0xffffffffffffffff], &(0x7f0000000340)=[{0x5, 0x4, 0x9, 0x1}, {0x5, 0x1, 0xe, 0x3}, {0x5, 0x1, 0x6, 0xc}, {0x5, 0x1, 0x7, 0x5}], 0x10, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000000)='cq_modify\x00', r0, 0x0, 0x1}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x15, 0x8, 0x5, 0x81, 0x20, 0xffffffffffffffff, 0x401, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000005c0)={'tunl0\x00', &(0x7f0000000500)={'syztnl2\x00', <r2=>0x0, 0x8000, 0x10, 0x8, 0x8797, {{0x19, 0x4, 0x0, 0x13, 0x64, 0x68, 0x0, 0x5, 0x2f, 0x0, @local, @loopback, {[@noop, @end, @timestamp={0x44, 0x8, 0x9b, 0x0, 0x3, [0x80]}, @cipso={0x86, 0x10, 0x2, [{0x1, 0xa, "1ec218c513396d2b"}]}, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x2c, 0xffffffffffffffff, [{0x1, 0x6, "6f099f11"}, {0x6, 0x5, "b710a0"}, {0x7, 0x8, "b8ae761b0970"}, {0x7, 0x9, "31ea07f7856e68"}, {0x5, 0xa, "d823f8f64cdc8789"}]}, @ra={0x94, 0x4}]}}}}})
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000600)={0x3, 0x4, 0x4, 0xa, 0x0, r1, 0xe, '\x00', r2, 0xffffffffffffffff, 0x3, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
r4 = open(&(0x7f0000000680)='./file0\x00', 0x58080, 0x8)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000006c0)={0x5, [0x0, 0x0, <r5=>0x0, 0x0, <r6=>0x0]}, &(0x7f0000000700)=0x18)
setsockopt$inet_sctp_SCTP_RESET_ASSOC(r4, 0x84, 0x78, &(0x7f0000000740)=r5, 0x4)
ioctl$sock_rose_SIOCRSCLRRT(r4, 0x89e4)
mkdirat$cgroup(r4, &(0x7f0000000780)='syz0\x00', 0x1ff)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000c80)=@broute={'broute\x00', 0x20, 0x3, 0x46a, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000800], 0x0, &(0x7f00000007c0), &(0x7f0000000800)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{0x3, 0x33, 0x88be, 'wg1\x00', 'syzkaller0\x00', 'ip_vti0\x00', 'team0\x00', @broadcast, [0x1fe, 0xff, 0x0, 0xff], @remote, [0xff, 0x0, 0x0, 0xff, 0xff], 0xae, 0x126, 0x156, [@time={{'time\x00', 0x0, 0x18}, {{0x6, 0x9, 0x1c28, 0xa196, 0x7, 0x6, 0x2}}}], [@common=@NFLOG={'NFLOG\x00', 0x50, {{0x2, 0x10, 0x2, 0x0, 0x0, "637fb64e21a35e7bdd749d7d52ad08c11c92646df70f858b803f063834035fe9866257fdd024d724ab3ce40c648972215c1f8f452504a86405aebff6908b2a0f"}}}], @common=@AUDIT={'AUDIT\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffc, 0x2, [{0x5, 0x54, 0xf7, 'dvmrp0\x00', 'veth0_virt_wifi\x00', 'ip6_vti0\x00', 'veth0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, [0xff, 0xff, 0x0, 0xff, 0x0, 0xff], @broadcast, [0x0, 0x0, 0x0, 0x0, 0xff], 0xee, 0xee, 0x166, [@connbytes={{'connbytes\x00', 0x0, 0x18}, {{[{0xf612}], 0x0, 0x2}}}, @connbytes={{'connbytes\x00', 0x0, 0x18}, {{[{0x8001}, {0x3}], 0x1, 0x2}}}], [], @common=@nflog={'nflog\x00', 0x50, {{0x9, 0x8, 0x8, 0x0, 0x0, "556864499901827bd356c95511d2644388f75b799f5b6e676b30449b16ed1d3b52ce0795f9ae360bde8b4648f7dfa95a7a305b63d10606626cfc08f5a9a7e9f3"}}}}, {0x5, 0x60, 0xe3e4, 'veth0_to_team\x00', 'batadv_slave_1\x00', 'veth1_to_team\x00', '\x00', @broadcast, [0xff, 0x0, 0x0, 0xff, 0xff, 0xff], @multicast, [0xff, 0xff, 0x0, 0xff], 0xce, 0xce, 0x11e, [@arp={{'arp\x00', 0x0, 0x38}, {{0x30f, 0x6006, 0x4, @multicast1, 0x0, @dev={0xac, 0x14, 0x14, 0x3a}, 0xff, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, [0xff, 0x0, 0x0, 0xff, 0x0, 0xff], @remote, [0x0, 0x0, 0xff, 0xff, 0x0, 0xff], 0x4c, 0x4}}}], [], @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x0, 'syz0\x00', {0x9}}}}}]}]}, 0x4e2)
setsockopt$inet6_udp_encap(r4, 0x11, 0x64, &(0x7f0000000d00)=0x5, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000d40)={r6, @in6={{0xa, 0x4e23, 0x1, @remote, 0x2}}, 0x4, 0x6, 0xc08b, 0x401, 0x3d, 0x8, 0xa}, 0x9c)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r4, 0x404c534a, &(0x7f0000000e00)={0x10000, 0x2, 0x2})
setxattr$security_ima(&(0x7f0000000e80)='./file0\x00', &(0x7f0000000ec0), &(0x7f0000000f00)=@v1={0x2, "9081065b469add9a0a063d7e1a9ccfefe004ea9c"}, 0x15, 0x1)
r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000f40)={r4}, 0x8)
sendmsg$can_bcm(r7, &(0x7f0000001080)={&(0x7f0000000f80), 0x10, &(0x7f0000001040)={&(0x7f0000000fc0)={0x6, 0x61, 0x2, {0x0, 0x2710}, {0x77359400}, {0x3}, 0x1, @can={{0x0, 0x0, 0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, "5910190f5b7e91a1"}}, 0x48}, 0x1, 0x0, 0x0, 0x8005}, 0x40000)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000010c0), 0x468042, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r7, 0x84, 0x22, &(0x7f0000001100)={0x17, 0x1, 0x35, 0x2, r6}, 0x10)
write$smackfs_cipsonum(r7, &(0x7f0000001140)=0x67, 0x14)
ioctl$SG_GET_TIMEOUT(r4, 0x2202, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x50, r1, 0xd95d1000)
bind$bt_hci(r7, &(0x7f0000001180)={0x1f, 0x2, 0x3}, 0x6)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r7, 0x6, 0x1d, &(0x7f00000011c0), &(0x7f0000001200)=0x14)
ioctl$SG_BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000001240)={'\x00', 0x8, 0xae, 0xf, 0x8, 0x2})
r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='spi_setup\x00', r4, 0x0, 0x5}, 0x18)
sendfile(r9, r8, 0x0, 0xb)
ioctl$sock_SIOCBRDELBR(r3, 0x89a1, &(0x7f0000001340)='pimreg1\x00')
recvmsg$can_bcm(r4, &(0x7f00000019c0)={&(0x7f0000001380)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000001940)=[{&(0x7f0000001400)=""/44, 0x2c}, {&(0x7f0000001440)=""/137, 0x89}, {&(0x7f0000001500)=""/142, 0x8e}, {&(0x7f00000015c0)=""/92, 0x5c}, {&(0x7f0000001640)=""/167, 0xa7}, {&(0x7f0000001700)=""/117, 0x75}, {&(0x7f0000001780)=""/224, 0xe0}, {&(0x7f0000001880)=""/180, 0xb4}], 0x8}, 0x40002000)

8m36.148590982s ago: executing program 43 (id=3092):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x29, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x401}}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x5}, @func, @generic={0x2, 0x7, 0xb, 0x6, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x700369c385a36d01}}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x6}, @jmp={0x5, 0x0, 0xf1481bf61cfe7dd7, 0x1, 0x1, 0x4, 0x10}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x10000}}, @jmp={0x5, 0x1, 0x4, 0x3, 0x6, 0xffffffffffffffb4, 0xffffffffffffffff}]}, &(0x7f00000001c0)='GPL\x00', 0x8, 0x63, &(0x7f0000000200)=""/99, 0x41000, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000002c0)={0x5, 0x0, 0x8, 0x401}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000300)=[0xffffffffffffffff], &(0x7f0000000340)=[{0x5, 0x4, 0x9, 0x1}, {0x5, 0x1, 0xe, 0x3}, {0x5, 0x1, 0x6, 0xc}, {0x5, 0x1, 0x7, 0x5}], 0x10, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000000)='cq_modify\x00', r0, 0x0, 0x1}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x15, 0x8, 0x5, 0x81, 0x20, 0xffffffffffffffff, 0x401, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000005c0)={'tunl0\x00', &(0x7f0000000500)={'syztnl2\x00', <r2=>0x0, 0x8000, 0x10, 0x8, 0x8797, {{0x19, 0x4, 0x0, 0x13, 0x64, 0x68, 0x0, 0x5, 0x2f, 0x0, @local, @loopback, {[@noop, @end, @timestamp={0x44, 0x8, 0x9b, 0x0, 0x3, [0x80]}, @cipso={0x86, 0x10, 0x2, [{0x1, 0xa, "1ec218c513396d2b"}]}, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x2c, 0xffffffffffffffff, [{0x1, 0x6, "6f099f11"}, {0x6, 0x5, "b710a0"}, {0x7, 0x8, "b8ae761b0970"}, {0x7, 0x9, "31ea07f7856e68"}, {0x5, 0xa, "d823f8f64cdc8789"}]}, @ra={0x94, 0x4}]}}}}})
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000600)={0x3, 0x4, 0x4, 0xa, 0x0, r1, 0xe, '\x00', r2, 0xffffffffffffffff, 0x3, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
r4 = open(&(0x7f0000000680)='./file0\x00', 0x58080, 0x8)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000006c0)={0x5, [0x0, 0x0, <r5=>0x0, 0x0, <r6=>0x0]}, &(0x7f0000000700)=0x18)
setsockopt$inet_sctp_SCTP_RESET_ASSOC(r4, 0x84, 0x78, &(0x7f0000000740)=r5, 0x4)
ioctl$sock_rose_SIOCRSCLRRT(r4, 0x89e4)
mkdirat$cgroup(r4, &(0x7f0000000780)='syz0\x00', 0x1ff)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000c80)=@broute={'broute\x00', 0x20, 0x3, 0x46a, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000800], 0x0, &(0x7f00000007c0), &(0x7f0000000800)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{0x3, 0x33, 0x88be, 'wg1\x00', 'syzkaller0\x00', 'ip_vti0\x00', 'team0\x00', @broadcast, [0x1fe, 0xff, 0x0, 0xff], @remote, [0xff, 0x0, 0x0, 0xff, 0xff], 0xae, 0x126, 0x156, [@time={{'time\x00', 0x0, 0x18}, {{0x6, 0x9, 0x1c28, 0xa196, 0x7, 0x6, 0x2}}}], [@common=@NFLOG={'NFLOG\x00', 0x50, {{0x2, 0x10, 0x2, 0x0, 0x0, "637fb64e21a35e7bdd749d7d52ad08c11c92646df70f858b803f063834035fe9866257fdd024d724ab3ce40c648972215c1f8f452504a86405aebff6908b2a0f"}}}], @common=@AUDIT={'AUDIT\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffc, 0x2, [{0x5, 0x54, 0xf7, 'dvmrp0\x00', 'veth0_virt_wifi\x00', 'ip6_vti0\x00', 'veth0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, [0xff, 0xff, 0x0, 0xff, 0x0, 0xff], @broadcast, [0x0, 0x0, 0x0, 0x0, 0xff], 0xee, 0xee, 0x166, [@connbytes={{'connbytes\x00', 0x0, 0x18}, {{[{0xf612}], 0x0, 0x2}}}, @connbytes={{'connbytes\x00', 0x0, 0x18}, {{[{0x8001}, {0x3}], 0x1, 0x2}}}], [], @common=@nflog={'nflog\x00', 0x50, {{0x9, 0x8, 0x8, 0x0, 0x0, "556864499901827bd356c95511d2644388f75b799f5b6e676b30449b16ed1d3b52ce0795f9ae360bde8b4648f7dfa95a7a305b63d10606626cfc08f5a9a7e9f3"}}}}, {0x5, 0x60, 0xe3e4, 'veth0_to_team\x00', 'batadv_slave_1\x00', 'veth1_to_team\x00', '\x00', @broadcast, [0xff, 0x0, 0x0, 0xff, 0xff, 0xff], @multicast, [0xff, 0xff, 0x0, 0xff], 0xce, 0xce, 0x11e, [@arp={{'arp\x00', 0x0, 0x38}, {{0x30f, 0x6006, 0x4, @multicast1, 0x0, @dev={0xac, 0x14, 0x14, 0x3a}, 0xff, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, [0xff, 0x0, 0x0, 0xff, 0x0, 0xff], @remote, [0x0, 0x0, 0xff, 0xff, 0x0, 0xff], 0x4c, 0x4}}}], [], @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x0, 'syz0\x00', {0x9}}}}}]}]}, 0x4e2)
setsockopt$inet6_udp_encap(r4, 0x11, 0x64, &(0x7f0000000d00)=0x5, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000d40)={r6, @in6={{0xa, 0x4e23, 0x1, @remote, 0x2}}, 0x4, 0x6, 0xc08b, 0x401, 0x3d, 0x8, 0xa}, 0x9c)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r4, 0x404c534a, &(0x7f0000000e00)={0x10000, 0x2, 0x2})
setxattr$security_ima(&(0x7f0000000e80)='./file0\x00', &(0x7f0000000ec0), &(0x7f0000000f00)=@v1={0x2, "9081065b469add9a0a063d7e1a9ccfefe004ea9c"}, 0x15, 0x1)
r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000f40)={r4}, 0x8)
sendmsg$can_bcm(r7, &(0x7f0000001080)={&(0x7f0000000f80), 0x10, &(0x7f0000001040)={&(0x7f0000000fc0)={0x6, 0x61, 0x2, {0x0, 0x2710}, {0x77359400}, {0x3}, 0x1, @can={{0x0, 0x0, 0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, "5910190f5b7e91a1"}}, 0x48}, 0x1, 0x0, 0x0, 0x8005}, 0x40000)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000010c0), 0x468042, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r7, 0x84, 0x22, &(0x7f0000001100)={0x17, 0x1, 0x35, 0x2, r6}, 0x10)
write$smackfs_cipsonum(r7, &(0x7f0000001140)=0x67, 0x14)
ioctl$SG_GET_TIMEOUT(r4, 0x2202, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x50, r1, 0xd95d1000)
bind$bt_hci(r7, &(0x7f0000001180)={0x1f, 0x2, 0x3}, 0x6)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r7, 0x6, 0x1d, &(0x7f00000011c0), &(0x7f0000001200)=0x14)
ioctl$SG_BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000001240)={'\x00', 0x8, 0xae, 0xf, 0x8, 0x2})
r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='spi_setup\x00', r4, 0x0, 0x5}, 0x18)
sendfile(r9, r8, 0x0, 0xb)
ioctl$sock_SIOCBRDELBR(r3, 0x89a1, &(0x7f0000001340)='pimreg1\x00')
recvmsg$can_bcm(r4, &(0x7f00000019c0)={&(0x7f0000001380)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000001940)=[{&(0x7f0000001400)=""/44, 0x2c}, {&(0x7f0000001440)=""/137, 0x89}, {&(0x7f0000001500)=""/142, 0x8e}, {&(0x7f00000015c0)=""/92, 0x5c}, {&(0x7f0000001640)=""/167, 0xa7}, {&(0x7f0000001700)=""/117, 0x75}, {&(0x7f0000001780)=""/224, 0xe0}, {&(0x7f0000001880)=""/180, 0xb4}], 0x8}, 0x40002000)

7m50.472642232s ago: executing program 6 (id=3208):
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
pipe2$9p(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x80, &(0x7f0000000280)=ANY=[@ANYBLOB="74721000000066642c7266646e6f3d", @ANYRESHEX, @ANYBLOB="bfa425dfa29e4f990a314bc888171889eaac6a696f0257afe01953ef2edde9511c2165c7730cf31209b28e47923a6d7439fa", @ANYRESHEX, @ANYBLOB=',\x00'])
openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000100), 0x0, 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x2, 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000080)={0x2000, 0xddddd001, 0xa, 0x2, 0x2})
write(r1, &(0x7f0000000180)="010101", 0x3)
close(r1)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f00000001c0), &(0x7f0000000200), 0x0)
close(0xffffffffffffffff)
r3 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$inet(r3, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=[@ip_pktinfo={{0x1c, 0x110, 0xd, {0x0, @loopback=0x7f000300, @dev}}}], 0x6d}, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x1ff)
ioctl$SNDCTL_DSP_SETTRIGGER(r2, 0x40045010, &(0x7f0000000140)=0x5)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r2, 0x0, 0x44, 0x39, &(0x7f0000000380)="f588f7a05fb80b6a739f8c65c24decc466e6894e9e59f0ecb0a140a0b23c8393a4f80ac8d9c2d016873b4983d3628cd437474551f53d941bfe9198b37686559a1b62d8b5", &(0x7f00000000c0)=""/57, 0x6dec, 0x0, 0x7e, 0x97, &(0x7f0000000400)="f50297574de967ab70aa6254991b186579950a64f4a17560bf0bcc36df7ded81c8eb35916f8ef3b6f296c03e2479197ec33244c68c3f7b5b7dc028dde9b5ae14ef5dff9792a9ac5b68aae19d0ddb75e50f956c9f42487fdd5b7af216ab69424d5a44a851a26f6dc5f95890dc26ebe4a752db5fd0b3131a3a71bb5452f385", &(0x7f0000000480)="f44a584849bdd9d5d0551978ecd663b03b3ee452936f6495cc45ae088039e31fdf67453a4300f576561e38c3f9b2e9c1ff9d8ff780a15d26f1a88ba2afc9cb4cdb36cdde782d68f4f33ab87872877dd368e03fcc38492b8e90b9d56dab5f1f882f526a787d9642a1ada9655590c62b4158d1a68935470f7dded5472f232fe055c1c5e597aff03f065084f7dca894bd7b45f10cf4237bb8", 0x4, 0x0, 0x9dbc}, 0x50)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000340), 0x0, 0x0)

7m49.360030979s ago: executing program 6 (id=3213):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, 0x0, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x3, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="180000000000000000"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r1, 0xffffffffffffffff, 0x22, 0x0, @val=@uprobe_multi={0x0, 0x0}}, 0x40)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r2, 0x111, 0x1, 0x8, 0x4)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$swradio(0x0, 0x0, 0x2)
sendmmsg$sock(r4, &(0x7f0000003bc0)=[{{0x0, 0xfe3d, 0x0}}, {{0x0, 0x0, 0x0}}], 0x4000000000002ca, 0x4040014)
dup3(r1, r4, 0x80000)
socket$pppl2tp(0x18, 0x1, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
sendmmsg(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)=@l2tp6={0xa, 0x0, 0xb20c, @private1, 0x2, 0x4}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000540)="f970a45d13ece473fe4148ce04f0531bfa0b4ceb18eb84d66e807c86c860c0b719bf4cadd6b47d7f737b14a1e8ccb6b0047e27945f61d96b4556f474c12455fc0468fa8640b02bade2cf69aeeb789e5aa4dfdf86998cfe7b010c8ad813e3cb5f27b25942aa960b50b3eb711a46903fc2a7c964", 0x73}, {&(0x7f00000005c0)="b81b01271526277aa99a63be81e1789782c37c4102319e157652914649dd22fae513c2a9c028dff5d0bd31c6267d4c4d9ddf574debcf1c2aacc46fe18c49623f5ef97d1f1623985d20f9e909080f098b1cad9a65b5395eaa74a1b943cc0e5db9dd069e02fdc152741b686ef13eb5873272f1ba06abd46166c89f0dc87f879022ee804480dd3106f46a0d945d2e8cd0c3da6148fd6bd6608e69df260fee84ee7c5481604a8f8b2059a85ba815fa780baa2c80a6f355117a1b8e6be9ceb477e220c76d578fae13793302dd39e565e204ebb60078da403573c8e445ed4f7d24a21549ea5725409b01484d", 0xe9}], 0x2, &(0x7f0000006c40)=ANY=[@ANYBLOB="a8000000000000000a0100000500000091481019053ff1516cf22624a113c05ec058b9cd5a04ceedd4604ad6cdc6fccc83329e62c77966abc6109997dfc960e2c5733fd4b4a315196566e7498ee581b8deea81fc56ecd9e4eeb622a0ddfe4f1e193f65f88f32845d4386d900cd5cf2ede798435a7968c8c32788b006c13b6a0e7897f2dec4f2d7f581452d252c2b4b235983b71e04e5faf093c9ce54712ce44e7afc000000000000500000000000000017010000520000003a7e9612310321db2d5e70ed0751fb3f32e0c3cbc46ffaf0b2b4a474d9d68aa9be51b8ff742c5a10ff4949ee096089f494bbeb53df757f97651fb0c600000000580000000000000001000000ff00000066dae811688acf1fb355d01c3cddb692ac90108688482ba0f3448c54634721a1d953ae03173d58bdf1f7f3520029d951ecc806e9729a9fb5b4a92a7708bd4c81982d4fadcc900000d800000000000000ff00000001000000ffa65bf2bd7c6749784b5b64cee3b49429aea663e1e95618bd959caa49a8afb02f837afa06d58c4e1996af59020cc2f37a4f47fca2da27e2821a679133a719fa49415aa94b2d48c46d0823eee984240ecff9f06758f0ceec532a192940e8e42b62463e30a925a15dfb007926c08a6e3c184dec78b787632e5fd2dcb60b1b0c29ea36ea8d9aa1b7b079908b386d7db2c7ff0f6e827a77d8876a11c6d468e21e98c5877cbbdfc36734c8f522b4f2ec3eff1ef6419f464deb668b16a75c8f1bd553d20000000000000000010000000000001101000072bf0000a4169b0c6508e893ba2b139e34b00b5d1c1ae4fddb84be31aecf6b1281bde9f78dc9cfe8cd57c9294ec92edc2d5441a3b1639d1905ae446a6df7ae86d41d1df248e5a1bca5dc15a1a7e47a94a87a23d1ee57a9f0753b215485ab4edeacc34fe8a1019b75a11ea8e84cacdaee68265c1190e04fb091d26fa123ae054d06f3fb2080a51051f4412af6a9a6327c63c39e273928345fd8b1e6d550a432159a2597d5be0f51fc60d18624f07b153fde1f4fbdf29a5cd3c57884e3561b476a20118483d5ed11bf9b935cdd22bff1277e1631708abd80549ca7a7a223abc3947df26cc7188858504a1051ef4b8343f23c000000101000000000000013210000070000008a25e52129d95fb0f703b24323a4146df0ba1cb9dfa8a8f6539f59bb10e63b9292510ce31312610a1c5c6563d2073b0db2c669bbbef1f73c815dac7a95f238e0223a02bab064a57988098b4bae81907e631dc2c7cac2b2d4af9fd8f62745ed08b595ec70cef8ef9cc5aa4105ad07b393df457d9fa0ded69ca0d4690785e83cbe5d9cf5d751f62573ddaabd30fc7c21ff31dce19edd7ca9bfbc202601020f71a8736ef501974b46773351e8ce9841c108ff93e641dc5f43d54704428a4b02355dd53d862a6e42ebe1433842e15876a09f66667083d89dc72b7fcc1647bb0ac8dc204a2be3e011023b404084ade8ac8c7694f64ec5edd566d7972a5ec789fa70b1afeb4bfc6ab2c7afdfd37598b06cd2478ceaf8c1d834f46bdae13a9dd0be46cc1e694ba7f24d255abe52aec73d8b5e141afc62d3b87bf57fa2e1e3e21fb2caa3427bbc8c6fb1de353ca053ee19dc3f2447ae50aa163f7f7bcd5b40290e213218b95831a600c6249f79c53be55c2f2d81c3e0a98aa57f034db8df8f3fe031c6e542aeb190205ec8ce2a6aa452d5dcb1650d26cbd204a638c9244147d735aac18b6c288a6773fb999b07a2c1e3a6df24134f58e989a9116e17668afad844d462158daae2c5eda0ae2b7649a0b82b69aa1ea981177592959efc722387f2732be641c3156cbe89cc98e8ab25dc673cfc35bf85c67da746a4b029746875e385999362c739296360136d3c95a67b5a275a8094a22a008bdb890285a2792f495e29f0b69da73162e2e9b97740c7f3f938641a23eede5b7225097f96e47bd30363e5320037c6c0f750abe8bd972b3a342c2f04baeec6bfaec8b154995ee8d80839fd3aca4a2ccf7a8375f0777f809f64ce238e22d3d512114ea9bc783fd3814bcc97c2bfd2d0c4bd9d068920aa1e4361461c3f79abac697082189b492bd7e43a440ebcd49f0fe17b36aa1fc0d3b08cf658c52924a92fef552926d0483be099e92894e8daa83cc9b78199ad33c2a78fa7e0f868425a0b4982a4c33d4f00e05125a0672708bb9f59696bb8087ca62f53836f952a171da5b44a3a328c5508d126df77ada4a92e7bc714f28d1ce37b5d370d2547a193f5ad7a05c3a3e8b541d730c65d5db855d129556fcdc66b45bde45b87bffec9571c0e2a0a00aa143944560fae0400413b6e19c13c842744bfd66829bbb0f05bc6f7868baecdb7827fe7f6f2c32e9de1b3a63ac229609060346cd38189740c45c6b442eea7ae77e0ca58b91d702214efad8c1e7d045e74037bcbee9abed62aabdcbc35a37d3992852b028d00621411bf82f56738d921604dd7e97fc6fe1684330382f0b9f8bbb626ed1c13d99b178adee27ddbd5f01b4ec64a0e76c6f5195615abba52c66e3785e6661251e76fd9a7ddaaf00c9b6ae16c9268b9a532270251cd352f86725e0fa3812dbdee07892e30219740a80c2745d3ce93f8cab5cdbf9bc0f4021704712661a4826d76367ce2875c2f3ed77367a671cf5ffee18f5c2f087c62d7e99ee8046cc2dd6945d6cfb3a63f8c6c89ccb4d79992bf5e20be4bab3abfc702ecc108e03451b9274b4caf55445322ff20eaebc13af3182662501a1eaf3184dda7c59eb3631502ae9b1ddfb265c3e26ee6a5d09168ef21924cb355d43d38dd8ce891a20ddd0be8f69ef1fea3092be3a27d2df428214f1d573cc22d9218ccae48b415018a76f9abc0c28700fb514e7e30526a3c6eab2da56ebb78a8bea6adb1b88fed2499d8c7051d8fc1928ddb16e87b7f0f6475c0a5908455b22e8c182088565a7c1e827cb6bd3f9edf7636bf256d441101a9082f6455dd4ae45f4e5854cbc62ffd364d161c097492b3dd62a7766930cbcf860ad495662afc1d16744ac9b73a875a182be3c1cf3f50072fc457103701305209a00de9690dbdc94565ddbd5d3220d307e763ef9b91850035f84fe3ed42ca01b495fc18cc165f5971f6f6d749d07926ad8faaf034f05728ad78d60403ad331693641ea9d3e60923dddd7bbce0f199f1a67aa5a13377a1fbb7561679a7f74d2516ca519de1512059a2efffcf22692e2bfaababa037134900f1ca74cb73e90ade7691ebaa657f414bfc0c401703c01efa19b44f76865e8b2b9abcad543ad036944b999d5392f3b84e98bd39b8d21d1ffc48f7fbeca71e84b8c7404c9a16ef8e339e7ed0539f3d069cf6fa69c2a75efd09bd5f2f1d8068b7e5fcea2d3bd2a69c20198513602a7f3b87cd33785331bbf63a060bf13aa7b8116cf7bd51f4bac3d6f23b84bd4b7b7471770981918c40bd738e62ad223aa6571446f7758674fd063f4819dab5f7e7654652bfd1b943e505473b2716397f85424cdb3bf95225152144e1cc1f5e09ee1680b358b6f438dcec4c1b1b0027fb1318bdd9d6831d082969be4dc83f0d65005335eca6f116de7b93b856064b1b0bc42d9ecfafe64222cf435319ed359fc3c79964641ea0fbf8a91aafa891d9a7ed58019d21fe61cf2386e966ef8b82a37008d311e100d8f58be02261d8a129a4854a30e5b6f2a1e81c5b504b13256a461843e4e1b14bdf0dfae2cb058fbd14787c1462c406974749e7f3fac93a77688dd48b3ce05fa4a297def36293c0b9f14d197dba41ce15a94a61ceb0cb5bafc6b181befd6b3ff90fdeda4a143ff475b83b7b8b1954e7adc8a6fed051bf1c9791127717f13b74954fca513b2d0476962ff7bf6c7a1924b567472273b1d4cd45fbaba0a98260634f85c30a609d7c5c0cb0e02e483e1db077afc62b3a0c3f56bb28e99009d0e1023fb3417b3a4a3cc5342c2ea8f685546be5f6d5042045946deb0363e821248710c6a5bd8cf2496900a99725d4b41ec112dcf5a5fea6dc31420daf837bd462247aff791eb0151fda0c693024d6e7a9cfc93816519c822e4877a3f3c686d76a8a88a5f2710b85897c45bfd00a7e2c8de4d27bbfaa80e4eda97b20a8bfdefb55adc113d85f4ca811f4e2eec6de143316687b1b51f6d2ae29f6df5a5645df0d3509da8b4e611c7feead1452aab358a042b6327f45aaf5cad848de73450bdbb891b54be2168b4e5cce5a7d7cc6ae93e0ced6385ec28b9cf8d74d1dfbaa90213fa702e7582dba78de6aebdad836355359baef5821a17a7ecd368fb8e0cafc5ba3bab62731083c06e9ae9ba203de6290e81d17d978c5283f82799255a0ea23160e3dd8143c9e39ba096781bc832582e82b6effc30a19cbd3ad362a361f08a014ea34d119c8d02e81ebf2f74c4334ab9693913cfafe1c824719d36da34b7796242a1d9576ba4ef4cd303b844ec2bffe8bb3763a396ee814414ed9a3697b5e93d21790f1037376b8549a93963a55c89617df9876ab22e3fce6360e007f659236e7e745f8685411dcd7f510029708fedc8f10f2ecfc7c746abc6dca01d27e99c3f63c81f302118c408dc0cf6706f2ebc1203d7d984d922cfe7e482609d2e50a9b3acfc12e7adaf6a17efe8b98060f48c30ddc80751790a28e8929a9c59aa189b8f451c4fae868007bc4930d2b05701c458874f7a163efd8070d58a9ca323416567a812491ad294217636c86f0298597aa8f9028618d7b83c0ac6bdd34c7b72ec62b6b8cd24e49ce232c70299237e70037e95307e449c98ffc688e2a48b3742cc5b46775947bae4098bd915699a2cf7a1f8ca97e887a6c8f521513c4a86f5126a720af3b8701df2c74068ab8da4c00a03247f0d9a3cdf919755e30ccd6a4ead8436b7a0313752540931105101a6ab089681e90b70e307fa6ad5f063d87a58acf84b4fa9b7b92eeed7ff045e90fc1a28917ef8321546fc1bc0d247b6a4a88aeb2c9bd75ea3eab25f278a6903d09f898c41ece50383d4accd1c84fa8f46af25d5528d143e55a0165f1bf0d77d6bd174554e2593607f67a2d12f5459cdbeb9e4b7cf7fe1a2a43847a7b2664dcb22647f9e3a93749585cf070b4df0f3bbaa4ebd315b9e937920fbabb35fc9f1757b70dfded811fe65ae4f3f0c34cf16200e17302e35bdaa3092e16520596e51629cd4c92d6bdadd27e4e0d40d67f1a3724ab398df2902eca8192c419a54a5b7d94812b95d30fd38eaefe911babff223db5eefa55a1b51d7cc2f36b9e279a6050271819d8956ed7fcb6fd1292a787ace473b466e146ae923b262dc97e7474de9a8a8b4a65885a382a35d5ea7b022fcdcae9538b20365b2e807525c8e67a10a8b712a59f5145c9a956ec96618e21d8aeb591bc6e8acfab061349a0915ba9a9bd60ab8c73f039e538c430e1d675d0ae2cd878a93cb0084a1fdb2a0908076ea0b61504e1de890d9c347bb277d5b078fa6f8ae5840c52951d79f877d236e61133de9bd3c1b3349723956aada9a05c49be2548dcf15997b6e1d2e3e0434cf46c87e0ff8e05528f476bd0d2456c1eee5a13ee8ee15c0163e8503ed1642c784f583aeca1274d31d1378221572b0f0e48da52b639b25b385a5bff7a5f61fd48603ed7704bd0ecd5fa8c8a0824600bbcfa9b8f288b99db8c469e4ad54c9131ab522b6419027d1583e001d35811c3a19959d18987a243fadc700ca80a74b136b516f008ba85a435532c537e4c0723431ee15bd840748db68f7894b044ac6a62bba12133debfcffb6d0080ed3cbe217920370908affbe851174275eddfd43fc2d0c4f4c1f416e73a4cc5c8f8ce412f99cbc414921b21608c909053ca121fba5d9dc8291f8aac93dd1dd070636eb235c19f08af61dcd206c51e095d68677bc5ae0f911c5736fc06f437ad7a0f18dad95a705feab124bbea2c51ce874685fa15c9e79a14beefa0b42956e40d1f9a962d559c2d2f6875a6451320468a20bab367e5ca444579690df1c05926db7ae5d54355ed0bac303a702d43eeb956672d1153765dc29080a65258e66d63034b1d549b9e7282d1469c3daeb7a27671309dd9a488ba3ea32d071c236e8fb07fe037b9724351601612466f749e8bf4e170fa0efa8fe2457cbb29688ca78f25e66badfaaa7cf56329ce17517336ddb3a6852962ebebf894ace7a33a8632b6a09dad1815a9293ed2f4c28bdd69735a8221f6794466f77f45d5bc4a2dc6ffddd55afc21feb51bebbfa1d8d41b690267ec7c7777b752c71c48b16cc1875f79b558ee962c975d9c23e03f492fafa643a540f89aea42e4e161deffa1c7289dc9b65e6abbc13772eb7a60948449d425c07beb0186181169643bae600d034968f848b86a208a675d074214026bc145ff4a571008ae5dc51890495a938d2fc8767fd336242639727e7264b7d57e0f87ae594956b4411d828013eecbbdbde7c38ae088d9f99287c9e9b2d194915966b9785cc9eaaffa3f99b6bba39038865e165c4a98177ee9955a19b78a7dd5a547c24419ed2d70bcb83e2c56ce21c843d09567f617de87fe96ed038444c91e338ae63563a3c349a821c94c5e402edbae473013bd9fad006dfe9d8784d9da1e1630d8e4567872869ea98b6171bd0df27f97a417d6fa5adab935983172ff25516167aad876bc2a46ce6a6c592d6118a2345f17e9f2086d38c7db1adcafa676711bc227b52d5909297cda7c950fb4a37f1f30ddb14291ec4e6f384dd2086dea0f3ce0090e8601a521d19b50156c995e6c3967c83a36f7d2202088372089ef330cb8481af4c74e5b7caa214f3c660d7976c41fc4b0043d56754ed84bd71c401e3333642cd6ab2713fab346efafb3f6160dfa675779d283a56594cf83eea4c650c172f78b5a4a03ee7fabfbe9d177791bfe7cf79fa9b27cf0798d1053dd9fd9a06764807f4d0a6d880e24d83b76bdc3e7f7254fae55c51323a38061940d9ebf5640211ebc8a3ac0d2131ee0ccc39442a4e1ab4061152edf6535128177513e7b77b14de333826a308ebe5df1383fb1733b20d1874ce7769d7ab468b5b4e8d764a8dcad1cf53b14672c9a7b15d87183caeac8132f085cc894dffcd2d68f987894268e9c56a7f46aac1222568de76641248bd6a53cf65f964dd17a2c546b85a50bfef2dcf0888ebc7dc3f9c9"], 0x1338}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f00000006c0)="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", 0xfb}, {&(0x7f0000003c40)="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", 0x1000}, {&(0x7f00000007c0)="1fe0bb112db0129e5fb7344c77315ca48284c627e3be77e0340c4444ed4e9b343bc530a5019f4ba956c2ae34f0f77e977fa7a437a1aec5ebede296df0dbbfb53aab958ce258be1973a2c423c37", 0x4d}, {&(0x7f0000000180)}, {&(0x7f0000000840)="14cda6016d9fd4520c60f07e7c43fac76afc510cc8ffadd2d21b82fb6c30d187b254aee02b272b99c3d84bd9387412391353a0f452c14f8e1fc325f4eef74928927aa0a9b3ec93269921faffa4c4d1c6f031fa11fc144f10725964ef17", 0x5d}, {&(0x7f0000000980)="9c1cbd85ab0b63104318209e7709edd74e770add52eeb18c07111b579d9eee98ae18ba84a8af6956743e54c75ccabe6f367ea55e1d9f4501441e3100ba45c139866da3be6481b710ef10e83fab4aa0e46ffc2603c6139419040583566c5a54f49ce28edcf58f4f2bd1ab8a3bd1abb8df4d1598d6db13f1dedfd1e87102f1297d44b800e301eea5f91b0fdbfc4776c9b73e11203b6f0a4fbe4e5eb0d13a86ab043ed66db5fe16956e6f72b633268cb47cad3e1f7ff938ed98b5", 0xb9}, {&(0x7f0000004c40)="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", 0x1000}, {&(0x7f00000002c0)="dd63a62f7fcc2a8bebdb28f5642d9215abfa6b624f5f890ca0a2ead337b358266559883964865f4ebe", 0x29}, {&(0x7f0000000a40)="79b71983f5496fca29e0e35d8ef0be558419c33679dc0fc4c57427419d21ab5018ab82e6b0b99d58e17d6786aeb79fda85ad4cd85619b8ab366337e19084e31532a44af5d305fbb32955bdae6b69da2465f72203cdd3ca9bbab02645553d30400541950a9686a2ca29c29990eb916a06cf446392ae302013b1ff44692cbd89fa5fb9806ef31a2d383f045b3b79e1842bdfbfcb6dd7da8b635163c80bf20fe959ba9255d18742dc231bd0c849b3607a6df71e4bd98ecb4965abefc9a7ea3d87294b04857b832af595fd8633190beb25e210b4618e2bce14b3efb2", 0xda}], 0x9}}, {{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000005c40)="c1638221fb9b32adb9d0b1e77f94d4367d6fe2119eb2d4e830589ff819c33babacf2fa86e5c90b15d797756f059a4420aae7d75029213f6dd27d4ce54dac664806058633745812a4320e3837d25a36feab35be9f9efd22158b18ad68f616b4fa7ed73f96f37e2f93b1b3b9a8a1aabec1ddd61d95daed8584d7bc111429013024ec02a4fab0104aff441380ed0c224db835f963e2b9e389e090159bfcc4d3b8bdf5d2560db48c0a0c211019cd77263a952dbd3b414621d952030862155905c6732f11e8b9c9c7f8912216199f17563e048e7cc92a631af21ba94435ba98eceaf2cf08a73ceb3b76eba192698597e4a4e81560159513955a3aa4d6edd6079edbc8b4be989d5469e0b4c3e7895cace1d363df34afd6f58c533495a9ef8175d9facc3b845ef3eaa7eda082ea70fdc68a03507e9859fb3a98013ebeb73b9793f70ad0381768354c753060cbec522f063cd5af4e2fe2eadaa3d8decfbdfa145fc7be6391c1e1b80a004d829e97b85052c94d6853a43d981e2de3b5f20071a9627c2376da61cc6604a5166667354a01d27e864ae8237c800974d5bf2785b0a1985d3af83b1baa1d8011c5064717c3529c9e596609cd296fc65fc26e4402a09db08c58dfdf2290413dfa4b2e0fb273ccf07e6bbe9633dfbc836482a9b8686c56cf585c809998134fcc2d44b4b43a2fc6249fbb2f5562b7d85cffec752f0bbf260e92445d69835330c34bd55f95e050ce5a327d9a9421957229b8ba437ccfd99845059c66b8b0bcf2b218a723fdde5d50fce3d019171513293d5052dc692ad4ad84efd507d5fa1c84f1d0968871d8c326bc7607bf32c7433749ff65e31ca6a62f5404089713d150de850c5191af80a479a833fe3cd273d27f6bdfe97eda3e8fd2138e75f95a4d2a22622a42bb4c67707744a69ccd5db2b1f6884412e9e3b41b98ae39c68c4f6f57f0d91c1907ce60bc83fbce5ce62ef9ba481aa226501ef57fba685199d73d49641deef5f37421fdaa42476f4d36b5fcb86b2ec27e23eb21c69dce21a358c03a2d90cccd64c6bc385579791d109179fd7bcc33560ed5ca4f37f399dd5cb002ac706b64670c0d8649d8364d4927711aa4c59a519c9ed967f8f5a9d421a6adac7dda5e3a2149dd5a956ef0ee84092be381da1f0ca53350683298f53ce7d5a022bf51ff64b43bf46fd3af6c9229d8eb67eb8f2f1a4b0b3a5f5faecac5983ebc7dcb6597a02ab428caa50252112867e7cbc2a8456ad941e63b9f021a52a20039c03167bd27587f6b684b3b565c16dff392b44865ba6368017288fe036e4e77d5e5c6e7fe6cb9a5ded635e322d484e915bb32593194b2fae8c4c8741b4aba32eda710b2c5496824c5e8d745d284b5b9ec7c7ae1834ad1abe67492a60dbe6be527978263bd104428e6583522991b546b8b7b3cbb3704a28d8b4b6dd9edd6b4164bac231afbdef95d56ec8da1d492f243667e2b1c36cb27d5501026e689c2a6280694aae502949dcbae8bdbc4e5283fdf3ce08b395ec2bdcb0145c7ec3e494a04a3c3f6d1a74d515ae88b98f9bd95f8162b02d997aefe512a6bff2efabefed686426ebb1b537befaba01aaf2e08fc4233d3de123e8e4f5b6d30f7a33e4858ae8f209888b45b5e12fd3fc599effffe23bb184fd35ba50e7a35e9953df9c046321db5edae38393651ecdad935aebb79760ea99d28fd31fed19cc1847c653826dd1bfce70b11df3de544aa6869411c4f49f605617a901da532e6ff0377a95960f9af143aa79d43ad8d8cf84ee409eab45a3843d94978ec02222e0c9b74cdd1d3e1e1bafbd22d95531daa5beb08f0d5bc329b4445676c359d04497b4b6c480a252cca81afe3490a2cbf9bf64dbb692ef90fdcde034c1614c513c0b6cf52789307cb979f760d1b062c2783873a9a40655c5adc7ea13ec305fd5b262437c28c939af2a818d77344fc150b5fb0b4d86447072547a1e634556def19c912980f590229a2efdf50b87078b09938c7c666942dcc62d972a273a8c100926365725e8f2be6d3c3ddd7a1d2c05a496ea5bc44a98be91e1e85a07ddd5285418b4b3988ff7453b8328b7402bf9e5bb2f9676787cf77608ec5e7be8f517cb87fcc80496a8493bf4f83b636c938b776249d4f4b3fcd066f40ec41c8830c58a7158fff804de877392b301e09c147e5a5a70004417f96a255bcf79ced5404c1474e056f2360233b90ee1f4255f72db59ec2ca3153913eccc0de1947fc916694dcd8a50f88f4c82799de367360660a2659edfa19ecf2ec94e7725713dc324420a9b9b2cff51488161a72a689a2bc39a1fe5ab113b2d9961f86de582744f4aa1023ea5c70d79b6126ee2f2cdb4ccc37ea0bbbc855ee5df5814208dfcf6a891633367b9b7e8eb2a5de78d1069c69741af5135a7aeefd6b1b2423fdfec6b76f4fd11184b56ed3b602a8616f608d40bcd0594230e1a5fb6790fcb6878b109db2910ff9c9e3f10ba6cf2725efaf5d6f73ebaf8eb5be9119386982b77b68d28a916e4631ac0e338c44ff13398df5daf000bd42a994f068342f0962ee47d5cd4607f346b642698580a7b7bd8071b8dea8ff3442a68cf86ed9657d728486f380bde515d3e784c2cea9fdea9fc56ff353ee99d4142168d0f3f492df7c81d22210bcd9520c4987f9958ebac3c075c82d53e609c8973e53149ed8e5ea4449b5b6ebf10ef2d7a648d6fd7ffae3bb4b5160080b8efed6cfbee0aa2b40ca5a36ca0d2f2862e0fcfdcb7297a767f0fc4ddaa855dd8690435bba03d518cf180138544fa7db2c7918503a7eb2b08affb616cc15d639fc6c64dc71356a4638fe0acda81047c19629c0730c437ab5546aba9fa666dcc90e2b41a83290a9589fd39c89fe6251d01835ec42f11b31efa86450567a5940735c51c9909f51ca7836cfe83257129658ce53428334e02af034a35d1b21d249cf06a54ef8b0a9d10c501e184c4558776efa7becc1720c42d95df93cc2073d2a49f59c8bf785d30d0d77035adfb2b1bbd6faf17c2ab0685040dc0a19a7b1f02bd204bef8b3498b3b14245c197c6c651aa8eaca10e644c338fefb217a3268f80ce31ec3909a717a2a8ebdc6a49a64985c997122dbae74ce699ef36763396d3e6e95328839eaf7e55e8a94fbd86fa5ed848822a639fc0e8af9e9a1e53273deddf26315ce7873014d308c46a985956ff45acae30c904e39e10d06a85fec39f9845c13f880357c3b6132d7abd6adc37e76d166e04262bd44b01f5cfd7e4b6d8f9bcbc5eb0d4846bcdf199c0bcd884d554010b0c22d634d460d25817bde315893e452532927967365dadb9181315ae4a73170fc60169f18dca1b477dc774408fba3c8ea59aa09a28004257a43e0b0b72bdac7bbb83ccd3805b860510d8b3de7d58da1bc933d9b101a199d80493ff8607c7e3733c54b753a1dcf0ce3cce2dd8a354b0e19dc2c719cdeb29c9d7b6ea50026e9b5f1f8f1aa155c3f2427795d8c138db886f56e8544447f68c2fb7e6fe9355b7efb48e83ed2c0e38d73184e5471a19cf8d48e51bae58d10ac62ded4e52ee72acacf0055ec74c14affcd2b6f02f4d6f578ffe8c9badc4f2fe30d4dd00295b74729acbff3f57d01eed3099ac8a723876bd45457f6239d1cc119c9ee74ffb69fbd3776f83e045e82c56e90a39cc2e454632b7a0c1d260ad583b0545d7f85abd969daa6e87cea9aa3b7e08f30fc3bd1014a83fb7f28a2bed1a985fa544a7801426a4c74e01f45ecfbbdb1f3cddf93372a106b4d240d81cc6d89d0309621f5be95f96ce66f10d6c1cff1440ad123a75a1933c64e3ed9144325e3eedb5c01e42e22e2adb90895c9ede4a8208bfa96b831ad3e5033ab8e84e92fe9694d9b2bd33c3ec5498f81e7ebaff5acd0a99f0697179b2687500006e0f21c4c1fa1987567d1de06b6a0be5961a0295049ab5dff4e1897df36aeedc3e686e53b748d8af1149d596f5112710ba469511d998200b5333c02f5b5bede482cdf75e64c5d9d95a016c975f05d76fe2f1faba6ba036ad4a772957daf9a8cc6b77760d0f6fad64c22575449bef65d19ad7543b790b6fcbc6bbea55ec6ed9f68b266d604e9b83a06a9fe4f771be9dbc18a600282c8e1f7d295e591de36115fee688ca8dbd64eff9b67e18c6b211c105271cf127bae51ab74524e517a4bbf0f97a74a27a9ccd68b037e8b014ba4c2af54782c20c79865b7d446ec29c6ab9712b29e6b6ee8cd9bcfdb46705c87060cece75bbcefe849bb5b2668ba12cc670622bf83fcca0e4950f3defef8931a5dbb154b7c1a0feb58026d7a52f1072915d07ceacbfd7fdcece627cca54f3e819528a6df6efbe3255f9b06e77e282b11f54780f64fe8e8b9e094006f9e699880f1fea71d1aedc2025a65abf10741b2c1497fae30e4bc30580899d74f038f9d5f4caff0783a78c15f9d216ad941f94dcc48a6bf17f5fca527c4de87fe512306ce0a85e194e6b355a90d8380e22a316a24cb73dfff5fa6221c4bb756f68935a3c8542e50644cea51176b7aeac17fbc44b8e52d39375c4753c3cf0cd131202cb72c20343cfa324a010739fcd2c7d47fd5854623eb52134ad5a5c1edaf30d68857763a8cb7589e9a291fdc9b7b62127081c8d52a196eb4c946c019dfdc50e4fdb37eb2d716f98052ed0e191b749a39182b5a689c942a8fa1fefdc7b50452a975d4b4e21d6546d8afa6a068e77ce0fd538d8fb540b62bc99ee44c73fbc6da24bded74a0762f6ba64495b8627f9b97873a9020d0f20587103639e2a4f3db13c3e548696207d80fd10d0d7904669926689a6fd40d3a73d7ff20b435ec27137e769a689fdeb9b16481461a3ea9c493bb3b5419bc8de9cd0e735c99a107aa1921f8f3a75b8142720f1f0b4cdc20b58bfd691eb35263e0f408dbacba481242c60c19d30503ae4246e6aca0fee37accc83df0c58a7d1abf9dee61084eebbf73037cc624f6f16e22e575b216cc9e87b9c0451667668d889a7a20e44775006ddb36e2439edca2e4e57c8b3dc744f412c5542e9f3678ff3ec26ebd43a8fcb9e5a41ef2253b63d01d18f00c57af6997637f894a3fd33b804cf5d004b24698733b37c2c2505ada949ba12812e7b9862e07ce222f943789547ac336b2677053de09565e998f1a54eedbe63d81a2202292e4126e2e05ca0f5d3adef2a30d50e9fa602c323f75a71c04fcb41ae2d2e24514d1f30f91a7a1ab5de65fb0014d69fffad3a9343225d3d50aba3406e8fb365ef407b39c2063abb5f0da2f7356cc50635576f8058e8c077e000254592f809d0b586a7d1b0706669f4da96e5a3ce352c7c2c201cb1a60f6949403fb5383a1b6b25c6e40552dae3048c2654e22441bd4321855ddb0497ab930bbbcd8fec70a365fe07b589db69e8856c1d01d1cd9d2908a1401e3f6745a576298347abca00845af35b6b86bf272fbc0aaf3086a03572d552a8412af5fd39649750c034d6f9edb65740fb69ad433d122b0bfb50fdcdb2d799f0de31f062d48b53b2b91bdb605557f6cfa7df097b2bb75bd8a6f11cd23a01ee947e96417a3d97ef17b9f25ca53b3f052e1dc0c2f920336d145b3dfe480b72fb90f98ce344e94164cd416cb5745e222627a6e41bc6db5f3a6fcbfbc171e351802e7e2c76006ab1517f8b33f4463d9ca67bb0f1e6e29fbdb8b3b762b594f35d3f87f7dfc92a26e057e075bd2db82fd90718756bd066f79b2217ed109c7df3b58ba0688614e20558cc905d75d414f68b153cde1db19672e0c949cb0e0da73c57f71234165b689a38b05041704c97ad17405e0ca21e63ae5d57c58d1", 0x1000}, {&(0x7f0000000c00)="56306fa9b935311669ed2eccd97d1c1924cbdde44457c5c73a24d210872332b614dcd3504699de73107406953c414da320228c656212be3da548f4fd9a4f005f020f6411187016d2158b92d57a7c687c8c388169d134a3ebde5acae74ba4d710eb272c89a39f5c8a6d97d2726dc5c79d07e5368731c7636bd8e9900f0ac933c799c12bb9d808d1d6c1a3ce8d3a405e3740c7fd145510cc2a15094ff6eb574d954dd32a93ed4e931545", 0xa9}, {&(0x7f00000003c0)="5658fe3b9549a4ec8f0fa3334dccecddb85c204582f8641abc89e2d944846c5684b905fd3e2f5f6ea3a9c4fad64666f9792d2a91b3bd274bd3706821e52e0fe8", 0x40}, {&(0x7f0000000cc0)}], 0x4, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0x240}}], 0x3, 0x20048001)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

7m47.306071586s ago: executing program 6 (id=3219):
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000000)={'tunl0\x00', &(0x7f0000000100)={'syztnl0\x00', <r0=>0x0, 0x8000, 0x80, 0x7, 0xfffffff9, {{0x3b, 0x4, 0x2, 0x3d, 0xec, 0x65, 0x0, 0xa, 0x4, 0x0, @remote, @empty, {[@ssrr={0x89, 0xf, 0xc1, [@private=0xa010101, @private=0xa010102, @local]}, @timestamp_prespec={0x44, 0x4c, 0x13, 0x3, 0x7, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7d4}, {@private=0xa010101, 0xb}, {@multicast2, 0x7fffffff}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x39}, {@remote, 0x7}, {@local, 0x7}, {@private=0xa010100, 0x832}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4}, {@broadcast, 0xd2e3}]}, @rr={0x7, 0x23, 0x52, [@local, @loopback, @empty, @multicast2, @broadcast, @dev={0xac, 0x14, 0x14, 0x19}, @broadcast, @private=0xa010101]}, @ra={0x94, 0x4}, @ra={0x94, 0x4, 0x1}, @generic={0x44, 0x11, "fe84abae056753f6f2520cde43fc74"}, @noop, @rr={0x7, 0xb, 0x9, [@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast]}, @rr={0x7, 0x17, 0x65, [@initdev={0xac, 0x1e, 0x1, 0x0}, @remote, @private=0xa010102, @local, @private=0xa010100]}, @ssrr={0x89, 0x1b, 0x69, [@loopback, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast, @private=0xa010101, @broadcast]}]}}}}})
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x7, 0x4, 0x10000008, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', r0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r1, r1)
memfd_create(&(0x7f0000000000)='\xff\x00l\x1e\xa0</\x00\x8e._\x14zC\x9a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-\xe2\xc7\xd3\xe6M^\x98\x85x\x14\t\xe9Q1\x1dK\x9a\x045\xd3\x17\xb22\x00D(\xd2\xdd\xa0\xff\x1f\x00\x00\n\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xe36g\xfd\xd2\xd4\xe3\x1f\xa6\xc6\xe2\xa6!\x9aE<2`]<\xf2R?8\xb8\xa3\xbf\xc3\x18s\xf7!~0\xc7y\xe2\xb2VP\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\xf4\xd0[\x12\xf5+\x1aS\x02/Yxm\x96\xbfS\x97\x9c/\x1f5i\xc6\x861\x8a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd26<Z|U6\r\xd7\x18\xad\x1d`\x06\xcfN\a\xf9\xd7 \x1a\xd8\xef\xb6\x9e8Z\t:#r\xa2\xb1h\xc0\xc0a\xa9\xc46A\x01\xac\xe6\xbf !5I\xc9<\x19{)\xa4\xad\v\x923\b\x9d\xbd>,\xc1\x8d\\Rxt\'\xb6\xbf\xc8*\n\xaf\x1b\xec\xfd\xbbY\x99\xb3\x06c\xd6\xf6\xb0\xcd=\xf3\x03`\x93\xff\x05e\xaa$\x00\xeaw\xd9\x10\x0f\x1d\x888\x8cS\x12?R\x99\xda7\xce)\x8f\xcc\x87\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xd32J\xd7\x9f\xea:=\xcc\x17(|L\xda\xc3\x1ca\xe8s\xb6\xebw\xc7\xabS\xd7pJ\xd2\xa1\xcf\xae\x1f2\x9f\x98\xa80\r\x85\xb4\x86\xbc\xd0\xea\xbf\xb1Z\xb7e$\xcf<\ra\x9b\xa5\xdc\v\x1e\xfd\xc7\x91\xf22\xcf\x96\x99\xc1\xbb\xa1j\xe5\xa8\x7f\a\xa9\xa7G\xad\xa3\x8b\xf1\xdb\\]R\x8cf\xac1\xd7V\xaf\xb5\x8e\x10\x95\x9f=2\xd0-\xe1K:\xc3b\x89\x15OS\xa5\x98Ky\x12\xe7Qt#\xeb\x99\a\x10\x1c\xb3N\x85\xeb\x80\x05\x82_\x15\xdc\xbc\xf93\xdd\xf5g\x98\xd4\x8az\xe4`\xa5\x00\x00\x00\x00\xcd\x13\xfc+\xac\xe5\x8bI\f\xd6\x89\xc7HY\xcf\x00O\x88\xe6\x8b\x8bF/\x82u\xffCnG\x02\x82\xfc\xe9Od\x92\x06\xdeg@y\xa6=4\xb1}\xa8Yr\xad9\xb9b)\xec}\x87=\x91:IV\xab\xdf\xa2\xba+6D\x1fuf\xdeJYw$L\xa1\x83NH\xe3\xf2\x91\x8cW\xb7\b\x04\x12\x8b\x8bV\x19\xf1\r\xcb\x94\xa3\xf4\xe4\x97$\x99c\rG\xd7#\xe2\xfd\x80\xadR\x83\xdc\xb8d\x15|\xac\xb8g$\x0f@\xca3\x9f\xb1\xea\xc6vQ\x1b\xdb#\xa3\"\x9f\x9e\xd8\xba\x13d\x9bx\x9a\xbf\xee\xf2kQ\xe0\xc4/~7\xcd\xd1\x06\xe5\x17\x9b\bW|\xbc\x86D\x05\xaf<\xdfy,I2f\xa7G\xe3Qp<\'6 x\n\x94f\xf8\xa2\xea\xf4\xa5\x9eY\xf80C\x91\x7f\x16u\x8c(Xl\x90\xd2\x9f\xa9\xb9kJy[\x93\xfe{\xe5\x1a\xe9\xb7T\x19;\xb9\t\xe7\x0ei\xfaZ\xfbS:\x9b\xc1r\xcbM.\xf8\xb8wR\xb3p~b\xcb\v1-\a-\x8a#\xaa1\xa9\x9a\x88\a\xc5\xb9*\xd3?\xac\n\x9c\xcd\xe2\xc9\xbd\xeb\xb3\xf65\xbdaP\t\xd6\x06\x1c\xeeNg\x92>\x92>\xaf\b3\x05\xfdM\xd2F\v\xbd\xeb\x83 \x9d\x90S\x11w\xefg\\\xca\xe2\xfc~w\xbe\xefh#\x96\xa5h\xec\xbfr\xc8Bi\x90\"(\xf2\xc6\xcc\xfbX\x14{\x9e5\x87\x91\xe2\x9b\xd4\xc6\xc2whk+\x0f\x82\xca\xc1@\xcb~P\xe4\x18\xf9E\'\xab\xc7z\xd7\x05V{\xa1X\xa3\x10\x13.]tlz\x12\xde\xf2\xa43\xee#\x92J~\xda \x9b\xc4\xc0V\xb3\x9dCO\x1fu\x1c4\x1d\v}\x1b\xe5>w\xfbsm\xa3\fI|\x96-p\x86\xd3O\xfa\x9a\x8f\xb2\x8e\x88qGEG', 0x5)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
preadv(r3, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffe61)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a000000000000000000000002001000000000000000000008000100ac1414aa"], 0x24}}, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue1\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000d312264624a64ec6905d35bd5f177b05d004319bb58594b27aef247d256d159996559b4e90ba07e82f1129fb96bcfba62683cf865caaf1d118bffc807943b07e811eea71f3d675c673530da4a1dabbe02e853042973044f1abd844b542472a270c6c6be1243eea1d1b53e92f25c729f57fa3dee8000000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socket$inet_udp(0x2, 0x2, 0x0)
write$sndseq(r4, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)

7m46.747910038s ago: executing program 6 (id=3221):
r0 = syz_open_procfs$userns(0x0, &(0x7f0000002140))
fremovexattr(r0, &(0x7f0000002500)=@known='system.posix_acl_access\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
cachestat(r1, &(0x7f0000000040), 0x0, 0x2000000)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000040)={0xc})
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000002c0)={0xc})
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x21, 0x2, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = memfd_create(&(0x7f0000000180)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xac\xbe\xe1}knh#\xcf)\x0f\xc8\xc0\"\x9cc\x10d\xee\xa9\x8b\x06\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\xcf~\xb90a\xa9\xb2\x04\x1d\xa1\xce\x8b\x19\xea\xef\xe3\x00\x00\x00\x00\x00\x00\x00\x00', 0x0)
dup(r3)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
write$RDMA_USER_CM_CMD_BIND_IP(r4, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @mcast2, 0x4}}}, 0x4)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x44, 0x2, 0x6, 0x301, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x44}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x34, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x2}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x80}]}]}, 0x34}}, 0x0)
sendmsg$IPSET_CMD_SAVE(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x8, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4084)

7m45.484821188s ago: executing program 6 (id=3223):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB], 0x3}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpu.stat\x00', 0x26e1, 0x0)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x29, 0x1f, &(0x7f0000000040)='\x00\x00\x00\x00', 0x4)
close(r0)
symlink(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file0/file0\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = syz_open_dev$video4linux(&(0x7f0000001380), 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r4, 0xc008561b, &(0x7f0000000000))
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='debugfs\x00', 0x0, 0x0)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r5, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r5, &(0x7f0000002180)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002740)=[{0x0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000180)="dcd47a81698aabcb7c00bd82ecf1834db3b005de6b83226625a9441ed445159f49b68d8d2097c52234357d4f61fb6414e9cfdd3ac5bfd09564aed8bcbb8109c7370059d14b973294d7084f1623bcf425e94f0303abd075ce7e0b5233e7c969098c35b05a1c000ccc62e264b990312580fcdb1eb7a7ea2cf3c2e97f3f56d2a1f9ff13e87ba69bee9784e32f143141f620d6a3313ce220f55843df", 0x9a}, {&(0x7f0000000240)="ab56b03bd51ea142a4a42379e4d527be6bdef1d725c4d6403409da7b1932b071d637c75c444f48b683b0e14cf07febc565c39e2d53ce0f33070252ad53db8cba32ea9158dd68e8b8b32b7218780bf82cf0a51242259781059e9403fecbe60ef43677c98b32e60a354714a0c100c3fe24eea1101c24a7fb8c3129a45b5f2b5fdae7d50ce5a8f28d871606239106bd7a", 0x8f}, {&(0x7f0000000100)="3f3227c48628652c5b15d0507a7a6d063a6d31db340e9eafe2997f5f3eb1", 0x1e}, {0x0}], 0x4}}, {{0x0, 0x0, &(0x7f0000001a00)=[{0x0}, {&(0x7f0000000900)}], 0x2}}], 0x4, 0x0)
inotify_init1(0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff})
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x8923, &(0x7f0000000040)={'wlan1\x00'})

7m44.357430086s ago: executing program 6 (id=3226):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_clone3(0x0, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x338, 0x0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x268, 0xffffffff, 0xffffffff, 0x268, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@mcast1, @local, [], [], 'gretap0\x00', 'nr0\x00'}, 0x0, 0xa8, 0xf0, 0x60030000, {0x0, 0xff000000}}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@loopback, 'macvlan1\x00'}}}, {{@uncond, 0x0, 0x138, 0x178, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0xffffffff, 0xfffffe00}}, @common=@hbh={{0x48}}]}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x398)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
quotactl_fd$Q_SETQUOTA(0xffffffffffffffff, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x2, 0x3, 0x0, 0x6, 0x7fffffff})
ioctl$EVIOCGSND(0xffffffffffffffff, 0x8040451a, &(0x7f0000000940)=""/4096)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)

7m29.258268413s ago: executing program 44 (id=3226):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_clone3(0x0, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x338, 0x0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x268, 0xffffffff, 0xffffffff, 0x268, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@mcast1, @local, [], [], 'gretap0\x00', 'nr0\x00'}, 0x0, 0xa8, 0xf0, 0x60030000, {0x0, 0xff000000}}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@loopback, 'macvlan1\x00'}}}, {{@uncond, 0x0, 0x138, 0x178, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0xffffffff, 0xfffffe00}}, @common=@hbh={{0x48}}]}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x398)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
quotactl_fd$Q_SETQUOTA(0xffffffffffffffff, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x2, 0x3, 0x0, 0x6, 0x7fffffff})
ioctl$EVIOCGSND(0xffffffffffffffff, 0x8040451a, &(0x7f0000000940)=""/4096)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)

59.677923936s ago: executing program 3 (id=4287):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x2004cb], 0x0, 0x200})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

59.361312601s ago: executing program 3 (id=4290):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000005c0)='mm_migrate_pages\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000005c0)='mm_migrate_pages\x00', r0}, 0x10)
mbind(&(0x7f0000126000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x2)

58.752041371s ago: executing program 3 (id=4294):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_tcp(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000004e22'])

58.660874195s ago: executing program 3 (id=4297):
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
chdir(0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r3 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r3, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
linkat(r3, &(0x7f0000000100)='./file1\x00', r3, &(0x7f0000000240)='./file0\x00', 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap}], [], 0x6b}})

58.501929222s ago: executing program 3 (id=4302):
r0 = socket(0x22, 0x2, 0x1)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000140)={0x3, 0x7, 0x3, 0x2, 0xde, 0xd, 0x3}, 0xc)

57.972782696s ago: executing program 3 (id=4314):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000180))
eventfd2(0xc, 0x1)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f00000002c0)={0x170001, 0x0, [0x10, 0x6, 0x6, 0x3, 0xb813, 0x808, 0x543, 0x7950a4da]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text64={0x40, &(0x7f0000000100)="440f20c0350f000000440f22c0b8010000004f0801aab8d9d920c0350f000000440f22c066ba4100b8002c20000000f30f012e430f001fb9bd0a00000f3226d2a4470f01c8", 0x45}], 0x1, 0x40, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

57.703809293s ago: executing program 45 (id=4314):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000180))
eventfd2(0xc, 0x1)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f00000002c0)={0x170001, 0x0, [0x10, 0x6, 0x6, 0x3, 0xb813, 0x808, 0x543, 0x7950a4da]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text64={0x40, &(0x7f0000000100)="440f20c0350f000000440f22c0b8010000004f0801aab8d9d920c0350f000000440f22c066ba4100b8002c20000000f30f012e430f001fb9bd0a00000f3226d2a4470f01c8", 0x45}], 0x1, 0x40, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6.383997676s ago: executing program 5 (id=4617):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r0, 0x9)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x28, r4, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)
accept(r1, 0x0, 0x0)

6.276351979s ago: executing program 8 (id=4618):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000300)=0xffffffffffffffff, 0x4)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mount$fuseblk(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000380)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x2000}})
r5 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
read$FUSE(r5, &(0x7f0000000200)={0x2020}, 0x2020)

5.241879691s ago: executing program 8 (id=4620):
bind$inet(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000d00)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xa}, {0xffff, 0xffff}, {0xfff3, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x3, 0x2, 0xffff, 0x0, 0x7, 0x8}, {0x12, 0x3, 0x0, 0xe0, 0x8001, 0x10000400}, 0xa5, 0x4, 0x90000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000d80)=@newqdisc={0x30, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r6, {}, {0xfff2, 0xa}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}}, 0x4000)
sendto$inet(r0, &(0x7f0000000300)="ab", 0x34000, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)

5.176161219s ago: executing program 5 (id=4621):
openat$tun(0xffffffffffffff9c, 0x0, 0x280000, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r1, 0x8b2a, &(0x7f0000000040))
ioctl(r0, 0x8b1a, &(0x7f0000000040))

4.878995413s ago: executing program 5 (id=4626):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0xffffffff, 0x0, 0x4, 0x81, 0xfffffffffffffffe, 0x3, 0x9}, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x1000000000000000}, 0x0)
munmap(&(0x7f00001a2000/0x1000)=nil, 0x1000)

4.652136837s ago: executing program 4 (id=4629):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1c}, 0x1, 0x0, 0x0, 0x4008001}, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000380), 0x1, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000003c0))

4.296139295s ago: executing program 4 (id=4632):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000006c04000008000300", @ANYRES32=r2, @ANYBLOB="0800b7000400000008002600940900000800a00002000000050019010800000005"], 0x4c}}, 0x0)

4.274034294s ago: executing program 8 (id=4633):
socket$alg(0x26, 0x5, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

4.162617663s ago: executing program 4 (id=4634):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000300)=0xffffffffffffffff, 0x4)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mount$fuseblk(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000380)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x2000}})
r5 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
read$FUSE(r5, &(0x7f0000000200)={0x2020}, 0x2020)

4.130269643s ago: executing program 2 (id=4635):
mremap(&(0x7f0000ff6000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000fff000/0x1000)=nil)

3.256029585s ago: executing program 4 (id=4636):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x1c}}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x2f)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000300)={0x78, 0x0, 0x10, 0x70bd2c, 0x25dfdbfd, {}, [@HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x8000}, 0x10)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
shmat(0x0, &(0x7f0000ff8000/0x4000)=nil, 0x4000)

2.580769025s ago: executing program 2 (id=4638):
r0 = io_uring_setup(0x5, &(0x7f00000002c0))
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x20, 0x10, 0x1}, 0x20}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_INTERFACE(r4, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
listen(r2, 0x0)
accept4$vsock_stream(r2, 0x0, 0x58, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="820000000000000099000040"])
close_range(r0, 0xffffffffffffffff, 0x0)

2.580364511s ago: executing program 0 (id=4639):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x2513, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, &(0x7f00000006c0)="66b81aca3da90f23c00f21f86635000007000f23f80f2295f20ff04eba66660f38828722000f320f3807950300640f79e6b4009d66b80f0000000f23d80f21f86635000000c00f23f8", 0x49}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2.542859484s ago: executing program 4 (id=4640):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000005c0)='mm_migrate_pages\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000005c0)='mm_migrate_pages\x00', r0}, 0x10)
mbind(&(0x7f0000126000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x2)

2.415020768s ago: executing program 8 (id=4641):
socket$alg(0x26, 0x5, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000440)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000071120b00000000009500"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$igmp6(0xa, 0x3, 0x2)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2)
rmdir(&(0x7f0000000040)='./file0\x00')
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x0, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)

2.315853056s ago: executing program 2 (id=4642):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_test', 0x169a82, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189378, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x7}}, './file0\x00'})

2.151907289s ago: executing program 2 (id=4643):
ioctl$sock_proto_private(0xffffffffffffffff, 0x8b20, 0x0)
r0 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000240)='wlan0\x00', 0x10)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)

2.086359998s ago: executing program 0 (id=4644):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000006c04000008000300", @ANYRES32=r2, @ANYBLOB="0800b7000400000008002600940900000800a00002000000050019010800000005"], 0x4c}}, 0x0)

1.315264959s ago: executing program 8 (id=4645):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x99d35000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r4, 0x800448f0, &(0x7f00000000c0)={0xffffffffffffffff, 0x375, "d9e67b", 0x7, 0xd3})
bind$bt_hci(r4, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r4, &(0x7f0000000000)="2e000400010001", 0x7)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x0, 0x0)

1.196591601s ago: executing program 0 (id=4646):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000340), 0x4)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mount$fuseblk(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000380)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x2000}})
r5 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
read$FUSE(r5, &(0x7f0000000200)={0x2020}, 0x2020)

593.099726ms ago: executing program 5 (id=4647):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r0)
socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}})

358.893275ms ago: executing program 5 (id=4648):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100))
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000540)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000480)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x70, 0x18, &(0x7f0000000580)={@ptr={0x70742a85, 0x0, 0x0}, @ptr={0x70742a85, 0x0, 0x0}, @fda={0x66646185, 0x1, 0x0, 0x3a}}, &(0x7f0000000240)={0x0, 0x28, 0x50}}, 0x1000}], 0x0, 0x0, 0x0})

296.928279ms ago: executing program 0 (id=4649):
mremap(&(0x7f0000ff6000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000fff000/0x1000)=nil)

236.49601ms ago: executing program 8 (id=4650):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x80801)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r3}, &(0x7f0000000240), &(0x7f00000002c0)=r4}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000000)="1eb3bf65654102f4af4d221c8bd458d1e7cbdaf3657d0f34e790c85bdba7931791f6d15c3e681411f7a496c0dace6a3c242f5b016f64b4ef8a9cedaf6bec340dee49474360b24cb8", 0x0, 0x48)

159.820016ms ago: executing program 2 (id=4651):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000001c0)={0x30, r1, 0x1, 0x0, 0x1000000, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x8, 0x8, 0x0, 0x1, [{0x4}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x4, 0x4}]}, 0x30}}, 0x0)

149.60003ms ago: executing program 4 (id=4652):
socket$alg(0x26, 0x5, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

118.322703ms ago: executing program 0 (id=4653):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000240)={0xc})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000400)={0x48, 0x5, r2, 0x0, <r3=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000680)={0x48, 0x7, r3, 0x0, 0x10000, 0x0, 0x1000, 0x0, 0x749bc})
ioctl$IOMMU_TEST_OP_ACCESS_RW(r1, 0x3ba0, &(0x7f0000000080)={0x48, 0x8, r3, 0x0, 0x81, 0xf80, &(0x7f0000000700)="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", 0x4})

524.923µs ago: executing program 5 (id=4654):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x2513, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, &(0x7f00000006c0)="66b81aca3da90f23c00f21f86635000007000f23f80f2295f20ff04eba66660f38828722000f320f3807950300640f79e6b4009d66b80f0000000f23d80f21f86635000000c00f23f8", 0x49}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

270.23µs ago: executing program 2 (id=4655):
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000940)={0x8, {"85f080a4933d55266e07e799aa0cc421388242df2a3c6b631b65b1c061edd2aa108c3528fe9b0bb3a53ab1200f5d01a68a4acdec8fee09648222f908c1fedc3000342e6139de28366c13509306d00ebcc67497181ac916db98af9d366b76e427d9ab5bb68095f0fb246df32b8af0783653136f8a04c03690312125b2ded6a24fda8685340c575ead69519e3583f89d467ec232d6a1ffd0463ba4ea3cbae5dae6654b5547b5458f02ac307729e57b09e134f68be44f88d72517b230b066f6315b5fb80206397bbff8cbc2a36e01c2e7b3aadb03bd3dd5288a69a991d9c674717e3abba7167280b2db3b1b8502afa4f3f296c532510c9d2dd79bb5eeb25adb5edddbdd069c09d14d15c2e7e1e2bb22e97d6992236d2273c8bb95536f7118d007965008b125c7daac2814e6bbe1adbfa3572ad0b7ad5c26c8014118d8374ca9f285779dfee7715a403908146a74de61b3853914c89f444c12e7a38bdd46c4ed36eb806ea598f44d1dec9eff9e2476f43802211f0762b66673b45d236b2391ce322e30fb9c69fe0d514dc1f8b6e3979c1205fd5224b07d18a44fec4f6f1a6f65158bb6adcc295bf2dd7dea107f59d7e03c61fe5822292e45968956b931bdc4d6445ff1631e0b98e4b4448774dd4b9cd53a45896fdb3f03702778741ae2b45a25bf9a23fc02fb97a630f132bf9def6c6d4a7baeb62972f1a814f6f2377bcfc78e2e86368c138510a04cedf7175af8c2033aae7413e3ace8c71ab9a0af1ca7042011a6ed028e205648535dabf3b2f85196ae18d36b839e3cd54ae4933ad529888fdac7bb8a70c72bc0fc81ba06506f2d5bc7686e219bbe5283959cbef9950e071cb6d9f341fc624a5110341f26cebd7100599a06e61f66fae120c7fc2b34c6221200eba75bd1277114671a3fa8f058b27fd897b052f4a52afcea814df526181c75c4497210a2b85b7b26601561e78735387cf123654b0295d1d60556956b36d96dd038866c4b4db31ebdcddd6929bbc2850cd4901389e6ea6e86041e0efa1111c2fb0e6df6364cb95659f506d5c7e63fb67c8116577d15e4a4b1fc4c27de2e52586cb1f52be9c3601f5066549de8bdc3ec07d1a84caf1961323ec2487a37b751aeabafcd647ce2dae5d9499c0f969467e6cabad198669ac96bd1488954eff0854ee0c83d7b596d273625bdb16270782321071fda5d980ded78ffa9dc2b56037d7cbf942547f48a5131f1991f6c17ae1ed5120ca6878f98e68e7997a9a2b70be640a70a34adb80de286c669bb5f092e4e3a15a83217e03d02a4054f34af3a65ff6b36f395b76a0579cffafd5d3bb0e704c935caecf3a7ab756c23fd60c9fe3f4fb2be7504f5bae22b116ff1588dcf02b327d31bf0488dba8af5b33ccf2d7d87f43bbc48fcd4f191ad6af9313ad38b8b2967cbfabd6651bc1f6ce5abb4a2f1413194f96b26d7d6edc4e013fba549075c97eef508af5ca7873664b058b7bcf455a8a04b591d29fab6366c844bb75576bac2d52323e747303d00a5736c9812922b0e17bcec9135550736b54cf6407d61e22e62d7bb75f62935b665acf33e75f688c36ef416f1b890d0f0c8ad1df00e02ec45967834d5649c8e7143978622fa3704672970b7993a87e97d3d926a14265647bc8b8c9e6f83e29572608d24b42c2635ef4abbd0af83860e99c90d7471cf6e8ce99507f5ec2bc572212fa9ee3f5a9dfa3815fe55f0bbb119acce062ae37f2ff921707abba139bcddf42bfd174d29b540161b4113c4e1a13f3a628c638ec4d3a884dfbc093e23ec0d0671b46b41dc8b42d950c8615ba5ee87f49b5d0910ffa4871207995001920db05a95199967f097ba7b55bbd271d818690c4238406b40a3dfc42fa56a67173b53a96b543326c56738b6d043195934018696f5ab49347e5148a78f2d1369a71afab8330273d46ecfba4ee05802a5385649851db949dbfb39e290941641c50b1ac20fb3102754a760b097f464ddb0b83f8168badfa71db6621dcf22fb081e3403f3bac5c7e65905aca52885c807f8ddab18bb2f12ef952c50483c0e251968bc70ff0d42a638ca744dea4c7ebb4fea777cf663bb4f1505ed79730c45bc86e488a13f924377a8e2ee6670a02ca52874ae1c42a35d55b9765757047b2cc3742aa51fa3e43fb2c113c92ad213bad252c1a82966dd016f12a7f1c3900c0f1ab455035163f31899bdd30f3ff43ad17d9e45bb7438c1c986712736f24be14f71ab1bfe92a25ec07f086ee8c7971b8077a13e58a8e8bea39c8e06b251909f02cb0080abf020f27ca160eb26c082dda1fa54ea4094dfdbcb2fa7bddccb67a844e8075f4cc08dad35757006d051e183dced336bc0c2502f93ffc87dca622286ba174c24e1f53f27dc2777baafe170348b0e8d3e743b3aa906bc0764bbe7da08ff403efe2212627d6748c2ce5bb513b7312517d1f88c61c7ba5f9647cd619281c5b390b48606ee39fb4171103df2e09d7cfd56c06c721f7c24ad8cce383623fc2dcb73f7b1b3b86df1b42490815513681aafbf7e871b4b9686efae6c45ecfca60a640a6f071dfd31f9437c3d03086164b48c1ed802986864bfe0d49bdd7709662262368dbc3ecc05eb240ecc41904c76d78ab5c52b66af5a720fdd6a92f52be0676427a56e32e5bc5085b25f90add28a76f2fce6f8f0ef74f4658098549646bd63175adf77b5cdcf102946554ba6136cbc83c6268ee40318f3c9d4718025688b35d2265bf60bf889ff629f7834586ef46eab7a9176337536bb6001e676546b987f36b1fe4baea02fa76fb4830aebbb9c14d8e2b43ea77ef887e5a26448f4086fa819a25e27725ac10298851c8bc45f2ce4430b07917ade5ea8c434c3f2576effbeb521173736e5c9557450643068b0c0fb132a7e99de6ca292246a9937fa7d7e06e59cf59ce5b9f8426a9049931146af40a8a1256ba373a88d09dc00cdf4453cc6ba78572bf3e1f2352a978cdbad60220cb8ac37d7f614a306492a4b5eee9244b0ca84b6cf2e23013bfb1cb92bf6d126fe550e58c19f84e7a4081437b75b31b2b9fb658dcd8ba077962e0f3359721a148d4fefe5c97941ca9688cb85adf38fd10f5811cdd8e074a21abfc9541c71465b08d7321281b68ed52bfab789b9c83849c09d52376d419b1e7ba367603236e119cdf4a7b7cf9d81f2229601deace53cea2f14a05f7fa0ca04b39e31c6453e332f4bd0915c0e09e28f4d1125c390c6ff0833a04b6fc37855e65de90333e505b9eb66e0068607000000fb7b8b215dbdc9787b5baa724cfa71ee6745b41e203de8b7794757ac328ec5567540b951b50530c3d4ee34705ea1c66fd6591e88561083e86d48c45ef3b83a3029319d8f3d8e65ce14c1dc3cb92d0a7dbeb609a8d2793928caa079f0fbbb2bc90b9fb4000000f4032041d14c5bca00e99b3027ec3a50c4957199cf016a4594069af8659df0973f20ffb15dbc265ac5b8a2203e90b114a3e9441e357c60ce0b550a7fe66fc34f5702ac8e8992a22e89194c1df69e81a9b7ad3d2634ea8c0388588192fd47d8e803b10044d558617fb2921b69eb4d85c051f86ef63a2f4382b9becd870fb2ecadca6902712b88680792e2f2ec89591cfebb6db3ad31c2a339af10465fcf7988519d382218df52261234f26a6f66ad0d1859de505d0fe819caf2f8d30aa9fd1228ac91d11ca67f1f8d50c8eefa5c441514321507dff6c6ea3cff6f340a1c11e0c40f419e8e60fc94d8828fa47a96cdf7ee4f61e23f40751b25cf9ca1295041a350f83f0e679515d6b4b46e2c9ce8999e07f835abc1663cefcf728df37831f4e17f8c8a4feaf1fbf44c38c9313284404a50ba4cd8abe835b33bfecb02cd6c9d7f435853b4c8d505ab83cf46512739116694765658bae64b3127152d216055aef9b25c70a8a3b302752d7b1e8791c657b9f3fc9001ef299fd1a349491ae6ee9940149160507fc4130fb825d47d97dc2c243209d2403583ac3ef6ddbedcaa76432255487c0a06e59e043e572ab3aec002afea6b6a2dc9cfaeefa70557886c4d12924a0388f2f1bc8e89e4cfa69705d1ef3c4658f8616278b588011d9dd914beec0b151d65b6524fba3e3f235d58373e021699b07622a51504eade747e0b2f9cf38bc167cabc8cb18c708d1337e25648707e8c0872876514c7a49c0b2aaee5ed9e9ecfcbcc23e032c4deb63e48e7120188056468fad31448e4b46e7d62fbcfc1c2cfb01fcf0db5e8a162bdb9bd820c763f17b96c23f32db9d1c1d74ddbe657b4f9595a9796982a0742153111b15e484d8ffebe47ce0a78a41e470a341616ec2eb6eef813fb415fab50fa965bec6a5977a0ade4fed67f86fc24e11b0e2f5364079f7c7c35b560cac726dbc80f29dbd248f7ecda0286a23ef172a28c96d9bdb1f598eab31c6baf0321312da23920c074b9d2d2e442717f2c21001142a39c2da6b8bd9d06b05a6a8deae1bd1be4108a636ddbebc682d113e715f2f3ee506abc28b1c654b3d2d28e02f73b171ed0deed71dda90ce4a0b728cc75cb576385e7418b545b992b1dd98e2ee53355f464f9250a2a03b3d1e4d2ac1aa71d01de2573530324e14d15a507883411ddbd37be21dc929db9b11f11010e4d2a04c7325a5ae6d24d19900ff97a8a89438f8676457a78cff05201528f4358fe67f61288bf042a8f3c2e0f8b4997b8fb74996b80d465489b2d7807a945eba72a945e8cf8625dbad6f6f6e30537b29e558ca8a8b0625f578c766d34f2d28d704715f94df1f6318a308042aa494baa295640679f1eab1e6a8308af8ce6441d5ad8a2f3d477eb5307af0dfae66444a8f1434030b8361621340ad3dcefa6d8f090ed3929d89ad9c0ba01a6903033428dd8f98619304b1803187d2a6130bf1e009b5eb0e7e21c75594b3b8470f3106c92a9e55bfeb026091ced127a90a1f1247f3c07e36d3572923e0de3f73518d0369a25fcd4e65d243b7eab91063a7bfd8bc8ac9e39fbbb32b5c9517886287a18eacd8dbfda9b91db693cb12e42cba5988280e09e51e72b91a0f360656d8f21cc1eb3248ac345ad51d1a6172b18419277851dab01e028c7e8e2cf34095efd28267852a08fccf61c45b5e46930160daf50282be058274e7ff58c48b60b86d0c8cc886ab8778a2a2b5fa2557ad7bf7f01f2175523ce758871d334c20a9839f7a89fe2867c06289c8a2f6456ac7e4fbadee53ac41aee68214bc76669853baa4f58255b39ba581414f2e8c4b49303f8936a33bae5cbc96b29a5c724d5b50e1614144c2acd03bd90de891c3d36ce040d57543682ecbfcae66c4153c337c3a5d01896524c8e0c27e9a08919821ca27bbfe3fc9ba24a823aeec8d4ad8ef8a65c585bee4dcf1acaa3da501a8c11a23b2e22920c1ad0129a038b31fe16c2abc80589dbf7c37211afc5d1a6db908bc5fe8a692060069fcbcdcba7c523d3c424aa3b0c6556387e0e51bcde9e5f850abf62d2c2101c3a2786a0cb94932877a09cb6b64aa61da8cab3b423e7adc4c4700418a65e87225710e1691f6d9cb2eb63cce5b605ce0a4a89cf519767e00845397c5e381141a0ed8a89b01064b495ec8d1e2da37433bf1597d919a69610d2ad26bdf6fca8de422bb2cb80d0516206e8194ee51445a3dcb5dee33c0c310b4751e68e58bebda2fb586985a5a5b06456756f44e6dbfef4bb99ca732f00fb9ea35775f7419681bfbe6f43dc7c4650c13b63d93c1d490bf0173f287a4309531f13ecb1a775d0bd881a00", 0x1000}}, 0x1006)
r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0x0, 0x18}, 0xc)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x8)
socket$nl_route(0x10, 0x3, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140), 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)=ANY=[])
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @loopback, 0xfffffffd}, 0x1c)
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='rpcgss_svc_accept_upcall\x00'}, 0x10)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000000))
connect$bt_sco(r5, &(0x7f0000000040), 0x8)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000080)={0x1f, @none}, 0x8)
shutdown(r5, 0x1)
connect$bt_sco(0xffffffffffffffff, &(0x7f00000000c0)={0x1f, @none}, 0x8)
connect$bt_sco(r5, &(0x7f0000000100), 0x8)

0s ago: executing program 0 (id=4656):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
r3 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000240)={0xf0f080, 0x19})
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_NMI(r5, 0xae9a)
getsockopt$inet6_mptcp_buf(r4, 0x11c, 0x2, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x61637876)
r6 = socket(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x0, @multicast2, 0x0, 0x0, 'lblcr\x00', 0x3, 0x7, 0xfffffffe}, 0x2c)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0)

kernel console output (not intermixed with test programs):

ommand 0x0406 tx timeout
[ 1608.281980][ T5835] Bluetooth: hci4: command 0x0405 tx timeout
[ 1608.358649][ T5835] Bluetooth: hci3: command 0x0406 tx timeout
[ 1609.227026][    C1] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[ 1609.454710][   T25] usb 3-1: USB disconnect, device number 45
[ 1609.678643][T21916] 9pnet_fd: Insufficient options for proto=fd
[ 1610.027137][ T5835] Bluetooth: hci1: command 0x0406 tx timeout
[ 1610.267036][    C1] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[ 1610.420150][ T5835] Bluetooth: hci4: command 0x0405 tx timeout
[ 1610.426395][ T5835] Bluetooth: hci2: command 0x0406 tx timeout
[ 1610.432736][ T5835] Bluetooth: hci3: command 0x0406 tx timeout
[ 1610.548619][T21930] xt_hashlimit: size too large, truncated to 1048576
[ 1610.735886][   T29] audit: type=1400 audit(1730272927.960:82): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=21925 comm="syz.0.3600" dest=20004
[ 1611.307011][    C1] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[ 1612.248611][T21941] netlink: 'syz.4.3604': attribute type 1 has an invalid length.
[ 1612.258864][T21941] netlink: 'syz.4.3604': attribute type 2 has an invalid length.
[ 1612.271074][T21939] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3603'.
[ 1612.347666][    C1] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[ 1612.389289][T21943] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1612.809478][T21939] netlink: 104 bytes leftover after parsing attributes in process `syz.2.3603'.
[ 1612.958926][T21950] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3608'.
[ 1613.397023][    C1] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[ 1613.592923][T21961] openvswitch: netlink: Actions may not be safe on all matching packets
[ 1613.623124][T21961] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3610'.
[ 1613.758281][   T29] audit: type=1326 audit(1730272930.990:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21969 comm="syz.5.3613" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffa26f7e719 code=0x0
[ 1613.907157][T10886] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[ 1614.025078][T21980] pimreg: entered allmulticast mode
[ 1614.737064][T10886] usb 3-1: Using ep0 maxpacket: 32
[ 1614.752974][T10886] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1614.790138][T10886] usb 3-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1614.858822][T10886] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1614.942179][T10886] usb 3-1: config 0 descriptor??
[ 1615.777486][T21958] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1617.533395][T22024] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3630'.
[ 1618.623884][T17002] usb 3-1: USB disconnect, device number 46
[ 1618.813261][T22052] netlink: 'syz.2.3642': attribute type 3 has an invalid length.
[ 1618.828548][T22052] netlink: 201372 bytes leftover after parsing attributes in process `syz.2.3642'.
[ 1619.583404][T22079] FAULT_INJECTION: forcing a failure.
[ 1619.583404][T22079] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1619.596582][T22079] CPU: 1 UID: 0 PID: 22079 Comm: syz.4.3640 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1619.607336][T22079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1619.617409][T22079] Call Trace:
[ 1619.620706][T22079]  <TASK>
[ 1619.623642][T22079]  dump_stack_lvl+0x241/0x360
[ 1619.628322][T22079]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1619.633522][T22079]  ? __pfx__printk+0x10/0x10
[ 1619.638128][T22079]  should_fail_ex+0x3b0/0x4e0
[ 1619.642803][T22079]  strncpy_from_user+0x36/0x260
[ 1619.647650][T22079]  getname_flags+0xf1/0x540
[ 1619.652181][T22079]  do_sys_openat2+0xd2/0x1d0
[ 1619.656766][T22079]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1619.661981][T22079]  __x64_sys_openat+0x247/0x2a0
[ 1619.666912][T22079]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1619.672288][T22079]  ? do_syscall_64+0x100/0x230
[ 1619.677047][T22079]  ? do_syscall_64+0xb6/0x230
[ 1619.681727][T22079]  do_syscall_64+0xf3/0x230
[ 1619.686220][T22079]  ? clear_bhb_loop+0x35/0x90
[ 1619.690894][T22079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1619.696801][T22079] RIP: 0033:0x7f1ab457d0b0
[ 1619.701209][T22079] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[ 1619.720811][T22079] RSP: 002b:00007f1ab5295b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 1619.729245][T22079] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1ab457d0b0
[ 1619.737213][T22079] RDX: 0000000000000000 RSI: 00007f1ab5295c10 RDI: 00000000ffffff9c
[ 1619.745176][T22079] RBP: 00007f1ab5295c10 R08: 0000000000000000 R09: 0023616964656d2f
[ 1619.753144][T22079] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1619.761106][T22079] R13: 0000000000000001 R14: 00007f1ab4736130 R15: 00007fff1368d008
[ 1619.769072][T22079]  </TASK>
[ 1621.117155][T10886] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[ 1621.305265][T10886] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1621.342381][T10886] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1621.391804][T10886] usb 4-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[ 1621.407214][T22101] x_tables: unsorted entry at hook 1
[ 1621.439510][T10886] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1622.329658][T10886] usb 4-1: config 0 descriptor??
[ 1622.338277][T22101] netlink: 'syz.0.3657': attribute type 1 has an invalid length.
[ 1622.346065][T22101] netlink: 'syz.0.3657': attribute type 2 has an invalid length.
[ 1622.392666][T22110] xt_hashlimit: max too large, truncated to 1048576
[ 1622.782199][T10886] isku 0003:1E7D:319C.0011: item fetching failed at offset 3/7
[ 1622.794630][T10886] isku 0003:1E7D:319C.0011: parse failed
[ 1622.801076][T10886] isku 0003:1E7D:319C.0011: probe with driver isku failed with error -22
[ 1622.893169][T22127] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3666'.
[ 1623.004409][T10886] usb 4-1: USB disconnect, device number 30
[ 1624.473555][T22144] netlink: 'syz.5.3671': attribute type 21 has an invalid length.
[ 1624.523031][T22144] netlink: 128 bytes leftover after parsing attributes in process `syz.5.3671'.
[ 1624.609334][T22144] netlink: 'syz.5.3671': attribute type 4 has an invalid length.
[ 1624.624752][T22144] netlink: 3 bytes leftover after parsing attributes in process `syz.5.3671'.
[ 1624.764968][T22157] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1624.769788][T22156] x_tables: unsorted entry at hook 1
[ 1625.812249][T22166] ./bus: Can't lookup blockdev
[ 1626.249701][T22156] netlink: 'syz.4.3674': attribute type 1 has an invalid length.
[ 1626.257724][T22156] netlink: 'syz.4.3674': attribute type 2 has an invalid length.
[ 1626.367799][T10886] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[ 1627.118902][T10886] usb 4-1: config 0 has an invalid interface number: 16 but max is 0
[ 1627.127346][T10886] usb 4-1: config 0 has no interface number 0
[ 1627.133633][T10886] usb 4-1: config 0 interface 16 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1627.145188][T10886] usb 4-1: config 0 interface 16 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1627.155636][T10886] usb 4-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1627.227663][T10886] usb 4-1: New USB device found, idVendor=28bd, idProduct=0905, bcdDevice= 0.00
[ 1627.247972][T10886] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1627.272672][T10886] usb 4-1: config 0 descriptor??
[ 1627.699861][T10886] uclogic 0003:28BD:0905.0012: interface is invalid, ignoring
[ 1627.940561][T10886] usb 4-1: USB disconnect, device number 31
[ 1629.177934][T22193] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3683'.
[ 1629.942112][T22205] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3686'.
[ 1630.998981][T22213] x_tables: unsorted entry at hook 1
[ 1631.135196][T22213] netlink: 'syz.0.3691': attribute type 1 has an invalid length.
[ 1631.143250][T22213] netlink: 'syz.0.3691': attribute type 2 has an invalid length.
[ 1631.278330][T22223] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3694'.
[ 1632.260530][T22240] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1632.582839][T22254] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1633.098542][T22262] x_tables: unsorted entry at hook 1
[ 1633.232954][T22262] netlink: 'syz.0.3707': attribute type 1 has an invalid length.
[ 1633.241141][T22262] netlink: 'syz.0.3707': attribute type 2 has an invalid length.
[ 1633.723093][T22274] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3709'.
[ 1634.640494][T22286] FAULT_INJECTION: forcing a failure.
[ 1634.640494][T22286] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1634.692082][T22286] CPU: 0 UID: 0 PID: 22286 Comm: syz.3.3714 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1634.702871][T22286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1634.712928][T22286] Call Trace:
[ 1634.716201][T22286]  <TASK>
[ 1634.719129][T22286]  dump_stack_lvl+0x241/0x360
[ 1634.723821][T22286]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1634.729023][T22286]  ? __pfx__printk+0x10/0x10
[ 1634.733617][T22286]  ? snprintf+0xda/0x120
[ 1634.737852][T22286]  should_fail_ex+0x3b0/0x4e0
[ 1634.742533][T22286]  _copy_to_user+0x31/0xb0
[ 1634.746943][T22286]  simple_read_from_buffer+0xca/0x150
[ 1634.752309][T22286]  proc_fail_nth_read+0x1e9/0x250
[ 1634.757337][T22286]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1634.762869][T22286]  ? rw_verify_area+0x55e/0x6f0
[ 1634.767709][T22286]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1634.773252][T22286]  vfs_read+0x1fc/0xb70
[ 1634.777421][T22286]  ? do_sys_openat2+0x17a/0x1d0
[ 1634.782264][T22286]  ? __pfx_vfs_read+0x10/0x10
[ 1634.786944][T22286]  ? do_sys_openat2+0x17a/0x1d0
[ 1634.791860][T22286]  ? fdget+0x149/0x1e0
[ 1634.795939][T22286]  ? __sys_bind+0x108/0x2d0
[ 1634.800467][T22286]  ? __pfx___sys_bind+0x10/0x10
[ 1634.805414][T22286]  ? fdget_pos+0x265/0x320
[ 1634.809830][T22286]  ksys_read+0x183/0x2b0
[ 1634.814071][T22286]  ? __pfx_ksys_read+0x10/0x10
[ 1634.818825][T22286]  ? do_syscall_64+0x100/0x230
[ 1634.823598][T22286]  ? do_syscall_64+0xb6/0x230
[ 1634.828294][T22286]  do_syscall_64+0xf3/0x230
[ 1634.832801][T22286]  ? clear_bhb_loop+0x35/0x90
[ 1634.837469][T22286]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1634.843347][T22286] RIP: 0033:0x7f18df17d15c
[ 1634.847801][T22286] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1634.867406][T22286] RSP: 002b:00007f18dff75030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1634.875813][T22286] RAX: ffffffffffffffda RBX: 00007f18df335f80 RCX: 00007f18df17d15c
[ 1634.883776][T22286] RDX: 000000000000000f RSI: 00007f18dff750a0 RDI: 0000000000000004
[ 1634.891760][T22286] RBP: 00007f18dff75090 R08: 0000000000000000 R09: 0000000000000000
[ 1634.899716][T22286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1634.907708][T22286] R13: 0000000000000000 R14: 00007f18df335f80 R15: 00007ffff5b30038
[ 1634.915690][T22286]  </TASK>
[ 1635.148907][T22293] ptrace attach of ""[22294] was attempted by "./syz-executor exec"[22293]
[ 1635.331215][T22295] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1635.836267][T22300] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1635.975379][T22300] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1636.029841][T22306] x_tables: unsorted entry at hook 1
[ 1636.112724][T10886] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[ 1636.135191][T22306] netlink: 'syz.0.3719': attribute type 1 has an invalid length.
[ 1636.143025][T22306] netlink: 'syz.0.3719': attribute type 2 has an invalid length.
[ 1636.273604][T10886] usb 3-1: Using ep0 maxpacket: 8
[ 1636.293114][   T29] audit: type=1326 audit(1730272953.520:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22307 comm="syz.0.3720" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb2acd7e719 code=0x0
[ 1636.377423][T10886] usb 3-1: config index 0 descriptor too short (expected 62499, got 36)
[ 1636.385824][T10886] usb 3-1: config 0 has an invalid interface number: 52 but max is 0
[ 1636.395658][T10886] usb 3-1: config 0 has an invalid descriptor of length 87, skipping remainder of the config
[ 1636.407237][T10886] usb 3-1: config 0 has no interface number 0
[ 1636.446389][T10886] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 19, changing to 8
[ 1636.463248][T10886] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid maxpacket 42060, setting to 1024
[ 1636.481959][T10886] usb 3-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1636.518879][T10886] usb 3-1: config 0 interface 52 has no altsetting 0
[ 1636.531354][T10886] usb 3-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[ 1636.547062][T10886] usb 3-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0
[ 1636.584514][T10886] usb 3-1: Manufacturer: syz
[ 1636.586470][T22311] tipc: Started in network mode
[ 1636.594459][T22311] tipc: Node identity fffffff4, cluster identity 4711
[ 1636.601726][T22311] tipc: Node number set to 4294967284
[ 1636.623517][T10886] usb 3-1: config 0 descriptor??
[ 1636.853468][T10886] input: syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.52/input/input18
[ 1637.039690][T17002] usb 3-1: USB disconnect, device number 47
[ 1637.039784][    C1] synaptics_usb 3-1:0.52: synusb_irq - usb_submit_urb failed with result: -19
[ 1638.363512][T22338] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1638.457567][T22339] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1638.501378][T22338] overlayfs: workdir and upperdir must reside under the same mount
[ 1638.956841][T22348] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1639.283005][T22350] netlink: 'syz.2.3734': attribute type 39 has an invalid length.
[ 1639.297527][T22350] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3734'.
[ 1639.569578][T17002] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[ 1639.616256][T22352] 9pnet_fd: Insufficient options for proto=fd
[ 1639.663667][   T29] audit: type=1326 audit(1730272956.890:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22362 comm="syz.0.3737" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb2acd7e719 code=0x0
[ 1639.733171][T17002] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1639.746359][T17002] usb 3-1: config 0 has no interfaces?
[ 1639.794236][T17002] usb 3-1: New USB device found, idVendor=066b, idProduct=20f9, bcdDevice=ff.94
[ 1639.819817][T17002] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1639.845927][T17002] usb 3-1: Product: syz
[ 1639.917869][T17002] usb 3-1: Manufacturer: syz
[ 1639.923778][T17002] usb 3-1: SerialNumber: syz
[ 1639.970928][T17002] usb 3-1: config 0 descriptor??
[ 1640.286219][T17002] usb 3-1: USB disconnect, device number 48
[ 1640.802321][T22386] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3744'.
[ 1641.875510][T22404] xt_hashlimit: max too large, truncated to 1048576
[ 1643.031118][   T29] audit: type=1326 audit(1730272960.260:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22418 comm="syz.0.3753" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb2acd7e719 code=0x0
[ 1643.048110][T19707] Bluetooth: hci1: unexpected event for opcode 0x040d
[ 1643.762658][T22432] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3755'.
[ 1644.277379][T10886] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[ 1645.084224][T10886] usb 3-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1645.100845][T10886] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1645.157858][T10886] usb 3-1: config 0 descriptor??
[ 1645.238011][T22455] ptrace attach of ""[22456] was attempted by "./syz-executor exec"[22455]
[ 1645.381679][   T25] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[ 1645.393432][T10886] [drm] vendor descriptor length:e0 data:00 00 00 00 00 00 00 00 00 00 00
[ 1645.402217][T10886] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[ 1645.430928][T10886] [drm] Initialized udl 0.0.1 for 3-1:0.0 on minor 2
[ 1645.437843][T10886] [drm] Initialized udl on minor 2
[ 1645.507139][ T5882] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[ 1645.550395][   T25] usb 1-1: Using ep0 maxpacket: 32
[ 1645.559952][   T25] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[ 1645.576196][   T25] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1645.590538][   T25] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1645.604213][   T25] usb 1-1: Product: syz
[ 1645.611007][   T25] usb 1-1: Manufacturer: syz
[ 1645.615833][   T25] usb 1-1: SerialNumber: syz
[ 1645.636385][   T25] usb 1-1: config 0 descriptor??
[ 1645.648326][T22451] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[ 1645.662147][T10886] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 0 failed
[ 1645.676833][   T25] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1645.686506][ T5882] usb 4-1: Using ep0 maxpacket: 8
[ 1645.692727][T10886] udl 3-1:0.0: [drm] Cannot find any crtc or sizes
[ 1645.715459][ T5882] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[ 1645.723913][ T5882] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1645.793326][ T5882] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1645.811454][ T5882] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1645.835220][ T5882] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1645.896796][ T5882] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1645.908675][ T5882] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1646.011221][ T5936] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1646.016086][T12219] usb 3-1: USB disconnect, device number 49
[ 1646.028251][ T5936] udl 3-1:0.0: [drm] Cannot find any crtc or sizes
[ 1646.788915][ T3025] usb 1-1: Failed to submit usb control message: -110
[ 1646.814248][ T3025] usb 1-1: unable to send the bmi data to the device: -110
[ 1646.824692][ T3025] usb 1-1: unable to get target info from device
[ 1646.839448][ T3025] usb 1-1: could not get target info (-110)
[ 1646.845569][ T3025] usb 1-1: could not probe fw (-110)
[ 1646.996674][T22473] overlayfs: failed to resolve './file0': -2
[ 1647.446418][ T5882] usb 1-1: USB disconnect, device number 13
[ 1647.627046][   T29] audit: type=1326 audit(1730272964.840:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22480 comm="syz.2.3769" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f17c417e719 code=0x0
[ 1648.482280][ T5936] usb 4-1: USB disconnect, device number 32
[ 1648.581801][T22499] xt_hashlimit: size too large, truncated to 1048576
[ 1648.782381][   T29] audit: type=1400 audit(1730272966.010:88): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=22485 comm="syz.0.3772" dest=20004
[ 1648.867856][T22508] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3777'.
[ 1648.972007][T22505] ptrace attach of ""[22510] was attempted by "./syz-executor exec"[22505]
[ 1649.608137][T22514] overlayfs: failed to resolve './file0': -2
[ 1650.834992][T22520] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3780'.
[ 1650.997560][ T5936] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[ 1651.760453][ T5936] usb 3-1: Using ep0 maxpacket: 32
[ 1652.036663][ T5936] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1652.087173][ T5936] usb 3-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1652.121418][ T5936] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1652.158308][ T5936] usb 3-1: config 0 descriptor??
[ 1652.747145][T22517] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1652.757886][ T5936] usb 3-1: USB disconnect, device number 50
[ 1653.955033][   T29] audit: type=1326 audit(1730272971.060:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22542 comm="syz.3.3787" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f18df17e719 code=0x0
[ 1654.927219][ T5936] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[ 1655.137479][ T5936] usb 6-1: Using ep0 maxpacket: 16
[ 1655.168815][ T5936] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 30768, setting to 1024
[ 1655.192083][T10886] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[ 1655.250120][ T5936] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1024
[ 1655.376493][ T5936] usb 6-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[ 1655.392313][ T5936] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1655.406285][ T5936] usb 6-1: Product: syz
[ 1655.415886][ T5936] usb 6-1: Manufacturer: syz
[ 1655.431368][ T5936] usb 6-1: SerialNumber: syz
[ 1655.437263][T10886] usb 3-1: Using ep0 maxpacket: 32
[ 1655.451902][T10886] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[ 1655.511915][T10886] usb 3-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1655.524487][T10886] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1655.625511][ T5936] usb 6-1: config 0 descriptor??
[ 1655.633207][T10886] usb 3-1: Product: syz
[ 1655.638449][T10886] usb 3-1: Manufacturer: syz
[ 1655.643658][T22554] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1655.651553][T10886] usb 3-1: SerialNumber: syz
[ 1655.675723][T10886] usb 3-1: config 0 descriptor??
[ 1655.682824][T22560] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1655.841027][T10886] usb 3-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1655.925850][T22554] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1655.935945][T22554] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1655.980302][ T5936] usb 6-1: Limiting number of CPorts to U8_MAX
[ 1655.991577][ T5936] usb 6-1: Not enough endpoints found in device, aborting!
[ 1656.243449][T22568] x_tables: unsorted entry at hook 1
[ 1656.356687][T22570] pimreg: entered allmulticast mode
[ 1656.369094][ T5936] usb 6-1: USB disconnect, device number 5
[ 1656.385933][T22573] xt_hashlimit: max too large, truncated to 1048576
[ 1656.752678][T22579] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3796'.
[ 1656.787170][T12219] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[ 1656.926269][   T53] usb 3-1: Failed to submit usb control message: -110
[ 1657.224379][   T53] usb 3-1: unable to send the bmi data to the device: -110
[ 1657.449512][   T53] usb 3-1: unable to get target info from device
[ 1657.514787][T12219] usb 1-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice=80.99
[ 1657.540054][T12219] usb 1-1: New USB device strings: Mfr=8, Product=0, SerialNumber=3
[ 1657.547010][   T53] usb 3-1: could not get target info (-110)
[ 1657.550267][T12219] usb 1-1: Manufacturer: syz
[ 1657.553980][   T53] usb 3-1: could not probe fw (-110)
[ 1657.558695][T12219] usb 1-1: SerialNumber: syz
[ 1657.568406][T12219] usb 1-1: config 0 descriptor??
[ 1657.647711][ T5936] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[ 1657.837166][ T5936] usb 4-1: Using ep0 maxpacket: 32
[ 1657.852485][ T5936] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[ 1657.905949][ T5936] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1658.157198][ T5936] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1658.165255][ T5936] usb 4-1: Product: syz
[ 1658.171816][ T5936] usb 4-1: Manufacturer: syz
[ 1658.176463][ T5936] usb 4-1: SerialNumber: syz
[ 1658.198745][ T5936] usb 4-1: config 0 descriptor??
[ 1658.210445][T10886] usb 3-1: USB disconnect, device number 51
[ 1658.217998][T22577] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[ 1658.239810][ T5882] usb 1-1: USB disconnect, device number 14
[ 1659.150438][ T5936] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1659.294458][T22602] x_tables: unsorted entry at hook 1
[ 1660.262510][T11325] usb 4-1: Failed to submit usb control message: -110
[ 1660.272598][T11325] usb 4-1: unable to send the bmi data to the device: -110
[ 1660.279945][T11325] usb 4-1: unable to get target info from device
[ 1660.286303][T11325] usb 4-1: could not get target info (-110)
[ 1660.315257][T11325] usb 4-1: could not probe fw (-110)
[ 1662.020334][   T29] audit: type=1326 audit(1730272979.250:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22614 comm="syz.2.3804" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f17c417e719 code=0x0
[ 1662.115075][T22620] openvswitch: netlink: Actions may not be safe on all matching packets
[ 1662.131839][T22622] xt_hashlimit: max too large, truncated to 1048576
[ 1662.159207][T22620] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3806'.
[ 1662.170238][T10886] usb 4-1: USB disconnect, device number 33
[ 1665.380958][T12219] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[ 1667.315113][T10869] IPVS: starting estimator thread 0...
[ 1668.535417][T22682] IPVS: using max 22 ests per chain, 52800 per kthread
[ 1668.547850][T22676] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1668.714878][T22672] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1668.726362][T22672] overlayfs: workdir and upperdir must reside under the same mount
[ 1668.807272][T12219] usb 6-1: device descriptor read/64, error -71
[ 1669.780891][   T29] audit: type=1326 audit(1730272987.000:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22696 comm="syz.2.3825" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f17c417e719 code=0x0
[ 1669.781623][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1669.809203][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1670.247388][T22681] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1671.037677][T12219] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[ 1673.768667][T10886] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[ 1674.073604][T22742] xt_hashlimit: size too large, truncated to 1048576
[ 1674.130816][   T29] audit: type=1400 audit(1730272991.360:92): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=22737 comm="syz.2.3832" dest=20004
[ 1674.153396][ T5882] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[ 1674.238713][T10886] usb 6-1: Using ep0 maxpacket: 32
[ 1674.247545][T10886] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[ 1674.317473][ T5882] usb 1-1: Using ep0 maxpacket: 16
[ 1674.329890][ T5882] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1674.346533][T10886] usb 6-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1674.405738][T10886] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1674.434507][ T5882] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1674.446732][T10886] usb 6-1: Product: syz
[ 1674.456671][ T5882] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1674.472254][T10886] usb 6-1: Manufacturer: syz
[ 1674.516810][T10886] usb 6-1: SerialNumber: syz
[ 1674.542256][ T5882] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1675.091797][T10886] usb 6-1: config 0 descriptor??
[ 1675.709507][T22749] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1679.089763][T10886] usb 6-1: can't set config #0, error -71
[ 1679.098214][T10886] usb 6-1: USB disconnect, device number 8
[ 1679.117199][ T5882] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1679.126597][ T5882] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1679.167345][ T5882] usb 1-1: can't set config #1, error -71
[ 1679.174030][ T5882] usb 1-1: USB disconnect, device number 15
[ 1679.291068][   T29] audit: type=1326 audit(1730272996.520:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22775 comm="syz.5.3842" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffa26f7e719 code=0x0
[ 1679.527318][T22461] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[ 1679.737425][T22461] usb 4-1: Using ep0 maxpacket: 32
[ 1679.757939][T22461] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1679.781062][T22461] usb 4-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1679.820001][T22461] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1679.985182][T22461] usb 4-1: config 0 descriptor??
[ 1680.004715][   T29] audit: type=1326 audit(1730272997.230:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22790 comm="syz.4.3843" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1ab457e719 code=0x0
[ 1680.087133][T22778] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3839'.
[ 1681.637773][T22774] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1681.663784][ T5882] usb 4-1: USB disconnect, device number 34
[ 1682.934101][T22461] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[ 1683.107326][T22461] usb 1-1: Using ep0 maxpacket: 16
[ 1683.121802][T22461] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1683.509820][T22461] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1683.524331][T22461] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1683.534848][T22461] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1683.548653][T22461] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1683.558228][T22461] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1683.569579][T22461] usb 1-1: Product: syz
[ 1683.578668][T22461] usb 1-1: Manufacturer: syz
[ 1683.583698][T22461] usb 1-1: SerialNumber: syz
[ 1683.805592][T22827] xt_hashlimit: size too large, truncated to 1048576
[ 1683.947669][   T29] audit: type=1400 audit(1730273001.100:95): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=22822 comm="syz.3.3851" dest=20004
[ 1685.145994][T22836] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3852'.
[ 1685.372881][T22836] xt_ipcomp: unknown flags 12
[ 1687.752919][T22461] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[ 1687.760865][T22461] usb 1-1: found format II with max.bitrate = 0, frame size=0
[ 1687.927608][   T29] audit: type=1326 audit(1730273005.060:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22852 comm="syz.0.3857" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb2acd7e719 code=0x0
[ 1688.350984][T22461] usb 1-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[ 1688.402370][T22461] usb 1-1: USB disconnect, device number 16
[ 1688.461447][T22782] udevd[22782]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1689.187005][T22461] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[ 1689.237140][T10869] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[ 1689.387324][T10869] usb 6-1: Using ep0 maxpacket: 32
[ 1689.446498][T10869] usb 6-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[ 1689.458843][T22461] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[ 1689.467853][T22461] usb 3-1: config 0 has no interface number 0
[ 1689.468625][T10869] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1690.232705][T10869] usb 6-1: config 0 descriptor??
[ 1690.261414][T10869] gspca_main: sq930x-2.14.0 probing 041e:403c
[ 1690.326522][T22461] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1690.336273][T22461] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1690.353407][T22461] usb 3-1: Product: syz
[ 1690.357858][T22461] usb 3-1: Manufacturer: syz
[ 1690.362492][T22461] usb 3-1: SerialNumber: syz
[ 1690.379733][T22461] usb 3-1: config 0 descriptor??
[ 1690.767029][ T5882] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[ 1690.840695][T10869] gspca_sq930x: reg_r 001f failed -110
[ 1690.846265][T10869] sq930x 6-1:0.0: probe with driver sq930x failed with error -110
[ 1690.946385][T22870] can0: slcan on pts0.
[ 1690.997504][ T5882] usb 4-1: Using ep0 maxpacket: 16
[ 1691.005059][ T5882] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1691.021101][T22870] can0 (unregistered): slcan off pts0.
[ 1691.026862][ T5882] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1691.045480][ T5882] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1691.055473][T22461] dvb_usb_ec168 3-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[ 1691.069455][ T5882] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1691.088112][T22461] usb 3-1: USB disconnect, device number 52
[ 1691.237598][ T5882] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1691.252074][ T5882] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1691.261610][ T5882] usb 4-1: Product: syz
[ 1691.265766][ T5882] usb 4-1: Manufacturer: syz
[ 1691.270677][ T5882] usb 4-1: SerialNumber: syz
[ 1691.529952][T22895] ./bus: Can't lookup blockdev
[ 1693.357740][T10869] usb 6-1: USB disconnect, device number 9
[ 1693.820420][ T5882] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor
[ 1693.936153][ T5882] usb 4-1: found format II with max.bitrate = 0, frame size=0
[ 1693.950568][ T5882] usb 4-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[ 1694.012424][   T29] audit: type=1326 audit(1730273011.240:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22920 comm="syz.5.3872" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffa26f7e719 code=0x0
[ 1694.141023][ T5882] usb 4-1: USB disconnect, device number 35
[ 1694.647077][T10869] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[ 1694.960678][T10869] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[ 1695.062174][T10869] usb 3-1: config 0 has no interface number 0
[ 1695.169186][T10869] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1695.252614][T10869] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1695.425907][T10869] usb 3-1: Product: syz
[ 1695.471600][T10869] usb 3-1: Manufacturer: syz
[ 1695.547107][T10869] usb 3-1: SerialNumber: syz
[ 1695.574226][T10869] usb 3-1: config 0 descriptor??
[ 1697.682575][T10869] dvb_usb_ec168 3-1:0.1: probe with driver dvb_usb_ec168 failed with error -110
[ 1698.631691][ T5882] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[ 1698.726245][T22461] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[ 1698.910518][ T5882] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1698.918781][ T5882] usb 4-1: config 0 has no interface number 0
[ 1698.928111][ T5882] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1698.937602][ T5882] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1698.945778][ T5882] usb 4-1: Product: syz
[ 1698.950071][ T5882] usb 4-1: Manufacturer: syz
[ 1698.954835][ T5882] usb 4-1: SerialNumber: syz
[ 1698.961538][ T5882] usb 4-1: config 0 descriptor??
[ 1699.032382][T22461] usb 6-1: Using ep0 maxpacket: 16
[ 1699.041450][T22461] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1699.616992][T22461] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1699.628090][T22461] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1699.637962][T22461] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1699.655858][T12219] usb 3-1: USB disconnect, device number 53
[ 1699.690603][ T5882] dvb_usb_ec168 4-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[ 1699.725149][ T5882] usb 4-1: USB disconnect, device number 36
[ 1699.737325][T22461] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1699.741635][   T29] audit: type=1326 audit(1730273016.960:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22967 comm="syz.4.3885" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1ab457e719 code=0x0
[ 1699.746386][T22461] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1699.746412][T22461] usb 6-1: Product: syz
[ 1699.746430][T22461] usb 6-1: Manufacturer: syz
[ 1699.784521][T22461] usb 6-1: SerialNumber: syz
[ 1699.821235][T22969] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3884'.
[ 1700.002496][T22461] usb 6-1: 2:1 : no or invalid class specific endpoint descriptor
[ 1700.014641][T22461] usb 6-1: found format II with max.bitrate = 0, frame size=0
[ 1700.043803][T22461] usb 6-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[ 1700.086084][T22461] usb 6-1: USB disconnect, device number 10
[ 1700.397096][ T5882] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[ 1700.589087][ T5882] usb 3-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.05
[ 1700.648814][ T5882] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1700.735410][ T5882] usb 3-1: Product: syz
[ 1700.748229][T22985] netlink: 48 bytes leftover after parsing attributes in process `syz.3.3888'.
[ 1700.821057][ T5882] usb 3-1: Manufacturer: syz
[ 1700.909293][ T5882] usb 3-1: SerialNumber: syz
[ 1701.020497][ T5882] usb 3-1: config 0 descriptor??
[ 1701.035752][ T5882] go7007 3-1:0.0: probe with driver go7007 failed with error -12
[ 1701.237678][T22976] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1701.257297][T22976] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1701.571345][T23000] netlink: 168 bytes leftover after parsing attributes in process `syz.2.3886'.
[ 1702.463690][T23003] xt_hashlimit: size too large, truncated to 1048576
[ 1702.517528][   T29] audit: type=1400 audit(1730273019.740:99): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=22999 comm="syz.5.3893" dest=20004
[ 1703.339209][T22461] usb 3-1: USB disconnect, device number 54
[ 1703.764524][T23013] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3895'.
[ 1703.879931][ T5882] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[ 1704.735546][ T5882] usb 1-1: Using ep0 maxpacket: 16
[ 1704.743871][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 30768, setting to 1024
[ 1704.755718][ T5882] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1024
[ 1704.771484][ T5882] usb 1-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[ 1704.782900][ T5882] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1704.813407][ T5882] usb 1-1: Product: syz
[ 1704.825289][ T5882] usb 1-1: Manufacturer: syz
[ 1704.835685][ T5882] usb 1-1: SerialNumber: syz
[ 1704.925003][ T5882] usb 1-1: config 0 descriptor??
[ 1704.946241][T23008] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1705.216041][T23008] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1705.400883][T23008] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1705.423060][ T5882] usb 1-1: Cannot retrieve CPort count: -71
[ 1705.442627][ T5882] usb 1-1: Cannot retrieve CPort count: -71
[ 1705.464323][ T5882] es2_ap_driver 1-1:0.0: probe with driver es2_ap_driver failed with error -71
[ 1705.505344][ T5882] usb 1-1: USB disconnect, device number 17
[ 1706.793187][T23029] x_tables: unsorted entry at hook 1
[ 1707.515349][T23038] x_tables: unsorted entry at hook 1
[ 1707.887026][T12219] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[ 1707.997176][ T5882] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[ 1708.038548][T12219] usb 4-1: Using ep0 maxpacket: 32
[ 1708.052578][T12219] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1708.070374][T12219] usb 4-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1708.083018][T12219] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1708.113393][T12219] usb 4-1: config 0 descriptor??
[ 1708.152030][ T5882] usb 6-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.05
[ 1708.161582][ T5882] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1708.180256][ T5882] usb 6-1: Product: syz
[ 1708.192763][ T5882] usb 6-1: Manufacturer: syz
[ 1708.199489][ T5882] usb 6-1: SerialNumber: syz
[ 1708.232106][ T5882] usb 6-1: config 0 descriptor??
[ 1708.255955][ T5882] go7007 6-1:0.0: probe with driver go7007 failed with error -12
[ 1708.447151][T23040] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1708.455959][T23040] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1708.779800][T23049] netlink: 168 bytes leftover after parsing attributes in process `syz.5.3904'.
[ 1709.627313][T23035] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1710.384435][T22461] usb 4-1: USB disconnect, device number 37
[ 1710.653453][ T5882] usb 6-1: USB disconnect, device number 11
[ 1711.690189][T23066] xt_hashlimit: size too large, truncated to 1048576
[ 1711.743638][   T29] audit: type=1400 audit(1730273028.970:100): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=23062 comm="syz.5.3910" dest=20004
[ 1712.031892][T23072] x_tables: unsorted entry at hook 1
[ 1714.043337][T23089] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1714.052719][T23089] overlayfs: missing 'lowerdir'
[ 1714.908003][T23092] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3916'.
[ 1716.018778][T23106] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1716.397096][ T5882] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[ 1717.142424][ T5882] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1717.151126][ T5882] usb 4-1: config 0 has no interface number 0
[ 1717.169939][ T5882] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1717.192173][ T5882] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1717.215386][ T5882] usb 4-1: Product: syz
[ 1717.224289][ T5882] usb 4-1: Manufacturer: syz
[ 1717.239698][ T5882] usb 4-1: SerialNumber: syz
[ 1717.285322][ T5882] usb 4-1: config 0 descriptor??
[ 1717.357433][T22461] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[ 1717.517074][T22461] usb 6-1: Using ep0 maxpacket: 8
[ 1717.523974][T22461] usb 6-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[ 1717.534988][T22461] usb 6-1: config 128 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 1717.553615][ T5882] dvb_usb_ec168 4-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[ 1717.583261][ T5882] usb 4-1: USB disconnect, device number 38
[ 1717.610221][T22461] usb 6-1: New USB device found, idVendor=07c9, idProduct=0012, bcdDevice=f6.82
[ 1717.624099][T22461] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1717.649926][T22461] usb 6-1: Product: syz
[ 1717.674370][T22461] usb 6-1: Manufacturer: syz
[ 1717.694716][T22461] usb 6-1: SerialNumber: syz
[ 1718.857164][T12219] usb 6-1: USB disconnect, device number 12
[ 1719.126375][T23140] xt_hashlimit: size too large, truncated to 1048576
[ 1719.185072][   T29] audit: type=1400 audit(1730273036.410:101): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=23137 comm="syz.5.3929" dest=20004
[ 1720.020986][T23144] x_tables: unsorted entry at hook 1
[ 1722.767436][T23161] x_tables: unsorted entry at hook 1
[ 1727.006465][T23203] xt_hashlimit: size too large, truncated to 1048576
[ 1727.639658][   T29] audit: type=1400 audit(1730273044.290:102): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=23198 comm="syz.3.3944" dest=20004
[ 1730.667488][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.673814][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1730.917002][T12219] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[ 1731.085905][T12219] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[ 1731.847265][T12219] usb 6-1: config 0 has no interface number 0
[ 1732.093824][T23239] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3951'.
[ 1732.124118][T23239] xt_ipcomp: unknown flags 12
[ 1732.184707][T12219] usb 6-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1732.213897][T12219] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1732.318391][T12219] usb 6-1: Product: syz
[ 1732.335937][T12219] usb 6-1: Manufacturer: syz
[ 1732.343396][T12219] usb 6-1: SerialNumber: syz
[ 1732.362385][T12219] usb 6-1: config 0 descriptor??
[ 1733.242129][T12219] dvb_usb_ec168 6-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[ 1733.253848][T12219] usb 6-1: USB disconnect, device number 13
[ 1734.385024][ T5882] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[ 1735.159299][T23270] xt_hashlimit: size too large, truncated to 1048576
[ 1735.343812][   T29] audit: type=1400 audit(1730273052.570:103): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=23266 comm="syz.2.3961" dest=20004
[ 1735.443992][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1735.458524][ T5882] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1735.530901][ T5882] usb 1-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[ 1735.546783][ T5882] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1735.648272][ T5882] usb 1-1: config 0 descriptor??
[ 1736.164997][ T5882] usbhid 1-1:0.0: can't add hid device: -71
[ 1736.195941][ T5882] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1736.397301][ T5882] usb 1-1: USB disconnect, device number 18
[ 1736.561072][T23280] netlink: 52 bytes leftover after parsing attributes in process `syz.4.3964'.
[ 1737.907879][T12219] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[ 1739.978986][T23307] overlayfs: missing 'lowerdir'
[ 1741.167515][T23298] overlayfs: missing 'lowerdir'
[ 1741.290802][T23319] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3973'.
[ 1741.315804][T23319] xt_ipcomp: unknown flags 12
[ 1741.579626][T19707] Bluetooth: hci1: unexpected event for opcode 0x040d
[ 1741.617776][T23328] FAULT_INJECTION: forcing a failure.
[ 1741.617776][T23328] name failslab, interval 1, probability 0, space 0, times 0
[ 1741.641455][T23328] CPU: 0 UID: 0 PID: 23328 Comm: syz.5.3975 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1741.652260][T23328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1741.662327][T23328] Call Trace:
[ 1741.665633][T23328]  <TASK>
[ 1741.668609][T23328]  dump_stack_lvl+0x241/0x360
[ 1741.673326][T23328]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1741.678570][T23328]  ? __pfx__printk+0x10/0x10
[ 1741.683185][T23328]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[ 1741.688763][T23328]  ? __pfx___might_resched+0x10/0x10
[ 1741.694071][T23328]  ? unwind_get_return_address+0x4d/0x90
[ 1741.699725][T23328]  should_fail_ex+0x3b0/0x4e0
[ 1741.704404][T23328]  ? radix_tree_node_alloc+0x8b/0x3c0
[ 1741.709875][T23328]  should_failslab+0xac/0x100
[ 1741.714575][T23328]  ? radix_tree_node_alloc+0x8b/0x3c0
[ 1741.719958][T23328]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1741.725341][T23328]  radix_tree_node_alloc+0x8b/0x3c0
[ 1741.730550][T23328]  radix_tree_extend+0x148/0x5c0
[ 1741.735494][T23328]  idr_get_free+0x1af/0xab0
[ 1741.740006][T23328]  idr_alloc_u32+0x195/0x330
[ 1741.744601][T23328]  ? __pfx_idr_alloc_u32+0x10/0x10
[ 1741.749711][T23328]  ? __mutex_lock+0x2ef/0xd70
[ 1741.754399][T23328]  idr_alloc+0xdf/0x1b0
[ 1741.758556][T23328]  ? __pfx_idr_alloc+0x10/0x10
[ 1741.763316][T23328]  ? __kasan_kmalloc+0x98/0xb0
[ 1741.768098][T23328]  ? shrinker_alloc+0x5a/0x9d0
[ 1741.772886][T23328]  shrinker_alloc+0x121/0x9d0
[ 1741.777657][T23328]  ? __raw_spin_lock_init+0x45/0x100
[ 1741.782973][T23328]  alloc_super+0x6c0/0x9d0
[ 1741.787414][T23328]  sget_fc+0x34c/0x9c0
[ 1741.791490][T23328]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1741.796953][T23328]  ? __pfx_ovl_fill_super+0x10/0x10
[ 1741.802159][T23328]  get_tree_nodev+0x2a/0x140
[ 1741.806754][T23328]  vfs_get_tree+0x90/0x2b0
[ 1741.811179][T23328]  do_new_mount+0x2be/0xb40
[ 1741.815694][T23328]  ? __pfx_do_new_mount+0x10/0x10
[ 1741.820725][T23328]  __se_sys_mount+0x2d6/0x3c0
[ 1741.825409][T23328]  ? __pfx___se_sys_mount+0x10/0x10
[ 1741.830616][T23328]  ? do_syscall_64+0x100/0x230
[ 1741.835381][T23328]  ? __x64_sys_mount+0x20/0xc0
[ 1741.840146][T23328]  do_syscall_64+0xf3/0x230
[ 1741.844650][T23328]  ? clear_bhb_loop+0x35/0x90
[ 1741.849328][T23328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1741.855217][T23328] RIP: 0033:0x7ffa26f7e719
[ 1741.859631][T23328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1741.879239][T23328] RSP: 002b:00007ffa27d3f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1741.887762][T23328] RAX: ffffffffffffffda RBX: 00007ffa27135f80 RCX: 00007ffa26f7e719
[ 1741.895733][T23328] RDX: 0000000020000340 RSI: 00000000200000c0 RDI: 0000000000000000
[ 1741.903704][T23328] RBP: 00007ffa27d3f090 R08: 0000000020000100 R09: 0000000000000000
[ 1741.911675][T23328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1741.919645][T23328] R13: 0000000000000000 R14: 00007ffa27135f80 R15: 00007ffc16415298
[ 1741.927632][T23328]  </TASK>
[ 1742.097059][T12219] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[ 1742.247108][T12219] usb 4-1: Using ep0 maxpacket: 8
[ 1742.387297][T12219] usb 4-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[ 1742.407175][T12219] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1742.415175][T12219] usb 4-1: Product: syz
[ 1742.429742][T12219] usb 4-1: Manufacturer: syz
[ 1742.437205][T12219] usb 4-1: SerialNumber: syz
[ 1742.463664][T12219] usb 4-1: config 0 descriptor??
[ 1742.488395][T12219] gspca_main: se401-2.14.0 probing 047d:5003
[ 1742.514915][   T29] audit: type=1400 audit(1730273059.740:104): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=23337 comm="syz.5.3979" dest=20004
[ 1742.895467][T12219] gspca_se401: Bayer format not supported!
[ 1743.256164][T22461] usb 4-1: USB disconnect, device number 40
[ 1746.174927][T23376] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1746.728453][   T29] audit: type=1326 audit(1730273063.960:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23380 comm="syz.5.3988" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffa26f7e719 code=0x0
[ 1752.037324][T10869] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[ 1752.500775][T10869] usb 4-1: Using ep0 maxpacket: 32
[ 1752.529833][T10869] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[ 1752.562336][T10869] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1752.575346][T10869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1752.583818][T10869] usb 4-1: Product: syz
[ 1752.588523][T10869] usb 4-1: Manufacturer: syz
[ 1752.593150][T10869] usb 4-1: SerialNumber: syz
[ 1752.702336][T10869] usb 4-1: config 0 descriptor??
[ 1752.730084][T23434] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1752.807229][T22461] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[ 1753.001977][T22461] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1753.014165][T22461] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1753.158850][T22461] usb 3-1: Product: syz
[ 1753.163278][T22461] usb 3-1: Manufacturer: syz
[ 1753.186134][T22461] usb 3-1: SerialNumber: syz
[ 1753.227172][T22461] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1753.230983][T10869] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1753.277171][T12219] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[ 1753.313612][ T5882] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1753.470716][T12219] usb 6-1: config 190 has an invalid interface number: 68 but max is 3
[ 1753.870970][T12219] usb 6-1: config 190 contains an unexpected descriptor of type 0x2, skipping
[ 1753.998332][T12219] usb 6-1: config 190 has an invalid interface number: 77 but max is 3
[ 1754.032804][T12219] usb 6-1: config 190 has an invalid descriptor of length 113, skipping remainder of the config
[ 1754.075206][T12219] usb 6-1: config 190 has 2 interfaces, different from the descriptor's value: 4
[ 1754.095158][T12219] usb 6-1: config 190 has no interface number 0
[ 1754.101887][T12219] usb 6-1: config 190 has no interface number 1
[ 1754.109669][T12219] usb 6-1: config 190 interface 77 altsetting 4 endpoint 0x6 has an invalid bInterval 237, changing to 7
[ 1754.140586][T12219] usb 6-1: config 190 interface 77 altsetting 4 endpoint 0x6 has invalid maxpacket 42897, setting to 1024
[ 1754.154526][T12219] usb 6-1: config 190 interface 77 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[ 1754.173163][T12219] usb 6-1: config 190 interface 68 has no altsetting 0
[ 1754.181553][T12219] usb 6-1: config 190 interface 77 has no altsetting 0
[ 1754.201097][T12219] usb 6-1: New USB device found, idVendor=1114, idProduct=0006, bcdDevice=6d.80
[ 1754.210333][T12219] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1754.218431][T12219] usb 6-1: Product: Т
[ 1754.225305][T12219] usb 6-1: Manufacturer: פֿ빲屖ꕟ㐲씥䯳꣭㨡㝎䆄籦茦쁛첿攪椿⡽뎲ꔡ鴂壠굄퇣嶠ꓺ㈈꽈澬ᮚ်膇渜ዪ쯋窩㱗┐蝳蓷䠣ೲ♯抢錋䦓ꁼ瞧꽵躒橍㯦ⲝ簱ꐌ蠐䉵쭹걗ﾞ懗瓐ᵦᐌ涒䏮ꆷឍ盢揍宽ޔ뭙᩾䟜ៈ坶騯衫ჶ謟ᮡ퓩⸳ﳵ饾ˏ舅漴ￜ弛
[ 1754.282209][T12219] usb 6-1: SerialNumber: ¾ℂ䐹㪥㣫헙ꜳ蝃켫椂됒㙦쀸麋쨇惦ꔮ䶯妅鍷⟿ױỿ탭辴奘榭졚ᤀ饋싫뙁ᚧ礰읛泼턀콭咘⋓쉵濊錊ଭⒷ䞳渋幔ీ뚛ꂐ샧鿅薰캿፫篩뫭퓘ä킼鴾ᠸ콄ȅత
[ 1754.294683][T22461] usb 3-1: USB disconnect, device number 55
[ 1754.317011][ T2130] usb 4-1: Failed to submit usb control message: -110
[ 1754.330810][ T2130] usb 4-1: unable to send the bmi data to the device: -110
[ 1754.346977][ T2130] usb 4-1: unable to get target info from device
[ 1754.353354][ T2130] usb 4-1: could not get target info (-110)
[ 1754.359718][ T2130] usb 4-1: could not probe fw (-110)
[ 1754.372253][ T5882] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[ 1754.379923][ T5882] ath9k_htc: Failed to initialize the device
[ 1754.390571][T22461] usb 3-1: ath9k_htc: USB layer deinitialized
[ 1754.445609][T17002] usb 4-1: USB disconnect, device number 41
[ 1756.967023][T17002] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[ 1757.613403][T23483] ./bus: Can't lookup blockdev
[ 1760.357445][T22461] usb 6-1: USB disconnect, device number 14
[ 1761.957803][T17002] usb 1-1: unable to read config index 0 descriptor/start: -71
[ 1761.965422][T17002] usb 1-1: can't read configurations, error -71
[ 1762.767289][T12219] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1762.938723][T12219] usb 3-1: Using ep0 maxpacket: 16
[ 1762.983414][T12219] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 30768, setting to 1024
[ 1763.017237][T12219] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1024
[ 1763.077015][T12219] usb 3-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[ 1763.087547][T12219] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1763.732326][T12219] usb 3-1: Product: syz
[ 1763.736503][T12219] usb 3-1: Manufacturer: syz
[ 1763.741180][T12219] usb 3-1: SerialNumber: syz
[ 1763.748854][T12219] usb 3-1: config 0 descriptor??
[ 1763.817319][T23502] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1763.860165][T23513] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[ 1763.866726][T23513] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1763.897078][T23513] vhci_hcd vhci_hcd.0: Device attached
[ 1764.047244][T23502] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1764.253409][T23502] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1764.277443][T22461] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1764.281244][T12219] usb 3-1: Limiting number of CPorts to U8_MAX
[ 1764.307049][T10869] usb 39-1: new high-speed USB device number 4 using vhci_hcd
[ 1764.359609][T12219] usb 3-1: Not enough endpoints found in device, aborting!
[ 1764.467589][T22461] usb 4-1: Using ep0 maxpacket: 8
[ 1764.566476][T22461] usb 4-1: config 32 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[ 1764.616953][T12219] usb 3-1: USB disconnect, device number 56
[ 1764.640470][T22461] usb 4-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[ 1764.651943][T22461] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1764.893301][T23525] x_tables: unsorted entry at hook 1
[ 1764.900373][T23513] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1764.942604][T23513] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1765.432784][T23514] vhci_hcd: connection reset by peer
[ 1765.445134][T22461] usb 4-1: string descriptor 0 read error: -71
[ 1765.447219][T21960] vhci_hcd: stop threads
[ 1765.451700][T22461] hub 4-1:32.0: USB hub found
[ 1765.455805][T21960] vhci_hcd: release socket
[ 1765.469677][T22461] hub 4-1:32.0: config failed, can't read hub descriptor (err -22)
[ 1765.508068][T22461] usb 4-1: USB disconnect, device number 42
[ 1765.524011][T21960] vhci_hcd: disconnect device
[ 1767.767256][T22461] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[ 1768.437317][T22461] usb 1-1: Using ep0 maxpacket: 32
[ 1769.096654][T22461] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[ 1769.434510][T22461] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1769.444763][T22461] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1769.468212][T22461] usb 1-1: Product: syz
[ 1769.472378][T22461] usb 1-1: Manufacturer: syz
[ 1769.491357][T22461] usb 1-1: SerialNumber: syz
[ 1769.502511][T22461] usb 1-1: config 0 descriptor??
[ 1769.557374][T23548] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1769.564161][T23567] x_tables: unsorted entry at hook 1
[ 1769.579252][T10869] vhci_hcd: vhci_device speed not set
[ 1770.026648][T22461] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1771.067512][ T7753] usb 1-1: Failed to submit usb control message: -110
[ 1771.074723][ T7753] usb 1-1: unable to send the bmi data to the device: -110
[ 1771.257154][ T7753] usb 1-1: unable to get target info from device
[ 1771.487983][T22461] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[ 1771.800622][ T7753] usb 1-1: could not get target info (-110)
[ 1771.806598][ T7753] usb 1-1: could not probe fw (-110)
[ 1772.082753][T23591] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1772.198282][T23591] overlay: ./file0 is not a directory
[ 1772.220821][T22461] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[ 1772.236575][T22461] usb 3-1: config 0 has no interface number 0
[ 1772.271298][T22461] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1772.318082][T22461] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1772.372236][T22461] usb 3-1: Product: syz
[ 1772.381599][T10886] usb 1-1: USB disconnect, device number 21
[ 1772.423370][T22461] usb 3-1: Manufacturer: syz
[ 1772.446529][T22461] usb 3-1: SerialNumber: syz
[ 1772.553146][T22461] usb 3-1: config 0 descriptor??
[ 1773.123269][T23585] can0: slcan on pts0.
[ 1773.166248][T23602] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4046'.
[ 1773.714726][T22461] dvb_usb_ec168 3-1:0.1: probe with driver dvb_usb_ec168 failed with error -110
[ 1773.968564][T23585] can0 (unregistered): slcan off pts0.
[ 1774.031144][T22461] usb 3-1: USB disconnect, device number 57
[ 1774.119684][T23613] ptrace attach of ""[23614] was attempted by "./syz-executor exec"[23613]
[ 1775.175282][T10869] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[ 1775.361615][T10869] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1775.427917][T10869] usb 4-1: config 0 has no interface number 0
[ 1775.766983][T10869] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1775.778076][T10869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1775.786134][T10869] usb 4-1: Product: syz
[ 1775.791123][T10869] usb 4-1: Manufacturer: syz
[ 1775.795750][T10869] usb 4-1: SerialNumber: syz
[ 1775.802535][T10869] usb 4-1: config 0 descriptor??
[ 1775.934293][T23626] x_tables: unsorted entry at hook 1
[ 1776.060744][T10869] dvb_usb_ec168 4-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[ 1776.089313][T10869] usb 4-1: USB disconnect, device number 43
[ 1776.617562][T22461] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1776.628901][T23635] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4055'.
[ 1776.836969][T22461] usb 3-1: Using ep0 maxpacket: 32
[ 1776.856984][T22461] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[ 1776.876457][T22461] usb 3-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1776.885977][T22461] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1776.903107][T22461] usb 3-1: Product: syz
[ 1776.924775][T22461] usb 3-1: Manufacturer: syz
[ 1776.970026][T22461] usb 3-1: SerialNumber: syz
[ 1777.601056][T22461] usb 3-1: config 0 descriptor??
[ 1777.607208][T23632] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1777.647772][T22461] usb 3-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1777.857150][T23656] overlayfs: missing 'lowerdir'
[ 1779.037674][T23669] ./bus: Can't lookup blockdev
[ 1779.101534][   T53] usb 3-1: Failed to submit usb control message: -110
[ 1779.131481][   T53] usb 3-1: unable to send the bmi data to the device: -110
[ 1779.206482][   T53] usb 3-1: unable to get target info from device
[ 1779.228178][   T53] usb 3-1: could not get target info (-110)
[ 1779.260437][   T53] usb 3-1: could not probe fw (-110)
[ 1779.307346][T12356] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[ 1779.487362][T12356] usb 6-1: Using ep0 maxpacket: 16
[ 1779.495589][T12356] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 30768, setting to 1024
[ 1779.513040][T12356] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1024
[ 1779.536307][T12356] usb 6-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79
[ 1779.546791][T12356] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1779.564689][T12356] usb 6-1: Product: syz
[ 1779.570923][T12356] usb 6-1: Manufacturer: syz
[ 1779.575622][T12356] usb 6-1: SerialNumber: syz
[ 1779.584042][T12356] usb 6-1: config 0 descriptor??
[ 1779.593190][T23671] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1779.914061][T23681] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4065'.
[ 1780.014515][T23671] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1780.250860][T12356] usb 6-1: Cannot retrieve CPort count: -110
[ 1780.257035][T12356] usb 6-1: Cannot retrieve CPort count: -110
[ 1780.263093][T12356] es2_ap_driver 6-1:0.0: probe with driver es2_ap_driver failed with error -110
[ 1780.307309][T23671] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1780.394056][T22461] usb 3-1: USB disconnect, device number 58
[ 1783.379712][T10886] usb 6-1: USB disconnect, device number 15
[ 1784.101832][T23721] x_tables: unsorted entry at hook 1
[ 1784.586277][T23723] overlayfs: failed to resolve './file0': -2
[ 1788.655026][T23769] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1789.010814][T10869] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[ 1789.064624][T23777] netlink: 'syz.0.4088': attribute type 1 has an invalid length.
[ 1789.081416][T23777] netlink: 'syz.0.4088': attribute type 2 has an invalid length.
[ 1789.241999][T10869] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[ 1789.277223][T10869] usb 3-1: config 0 has no interface number 0
[ 1789.327832][T10869] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1789.346936][T10869] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1789.354960][T10869] usb 3-1: Product: syz
[ 1789.380086][T10869] usb 3-1: Manufacturer: syz
[ 1789.384721][T10869] usb 3-1: SerialNumber: syz
[ 1789.587729][T10869] usb 3-1: config 0 descriptor??
[ 1789.649688][T23783] xt_hashlimit: size too large, truncated to 1048576
[ 1790.652610][   T29] audit: type=1326 audit(1730273107.880:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23785 comm="syz.5.4090" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffa26f7e719 code=0x0
[ 1791.609534][T10869] dvb_usb_ec168 3-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[ 1791.890516][T10869] usb 3-1: USB disconnect, device number 59
[ 1792.030343][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1792.037105][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1794.053269][T19707] Bluetooth: hci2: unexpected event for opcode 0x040d
[ 1794.689928][T23817] overlay: Unknown parameter 'defcontext'
[ 1795.926528][T23828] ./bus: Can't lookup blockdev
[ 1796.599480][T23831] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4098'.
[ 1797.757047][T12219] usb 3-1: new high-speed USB device number 60 using dummy_hcd
[ 1798.262335][T12219] usb 3-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice=c6.98
[ 1798.287189][T12219] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1798.325759][T12219] usb 3-1: config 0 descriptor??
[ 1798.349803][T12219] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[ 1798.370760][T12219] ftdi_sio ttyUSB0: unknown device type: 0xc698
[ 1799.108490][T23836] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1799.147121][T23836] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1799.207649][T23836] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1799.232388][T23836] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1799.248078][T23836] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1799.258851][T23836] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1799.287801][T12219] usb 3-1: USB disconnect, device number 60
[ 1799.300404][T12219] ftdi_sio 3-1:0.0: device disconnected
[ 1800.704966][T23862] xt_hashlimit: size too large, truncated to 1048576
[ 1805.342472][T23884] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1805.374740][T23884] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1807.074709][T23904] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1807.083509][T23904] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1808.736388][T23935] xt_hashlimit: size too large, truncated to 1048576
[ 1813.247659][T23971] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4138'.
[ 1813.262686][T23971] xt_ipcomp: unknown flags 12
[ 1814.033163][T23982] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4142'.
[ 1814.207768][T19707] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1814.246968][T10886] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[ 1814.897084][ T5936] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1814.988986][T10886] usb 1-1: Using ep0 maxpacket: 32
[ 1815.046309][T10886] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[ 1815.067254][ T5936] usb 4-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d
[ 1815.076523][ T5936] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1815.095518][ T5936] usb 4-1: config 0 descriptor??
[ 1815.102486][T10886] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1815.114718][T10886] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1815.123738][T10886] usb 1-1: Product: syz
[ 1815.128286][T10886] usb 1-1: Manufacturer: syz
[ 1815.132967][T10886] usb 1-1: SerialNumber: syz
[ 1815.248642][T10886] usb 1-1: config 0 descriptor??
[ 1815.255384][T23979] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1815.323556][T10886] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1815.335565][T23982] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1815.349371][T23982] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1815.380313][ T5936] hackrf 4-1:0.0: usb_control_msg() failed -71 request 0e
[ 1815.387849][ T5936] hackrf 4-1:0.0: Could not detect board
[ 1815.393691][ T5936] hackrf 4-1:0.0: probe with driver hackrf failed with error -71
[ 1815.426525][ T5936] usb 4-1: USB disconnect, device number 44
[ 1815.437013][T12219] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[ 1815.659369][T12219] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[ 1815.668062][T12219] usb 6-1: config 0 has no interface number 0
[ 1815.677333][T12219] usb 6-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1815.687436][T12219] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1815.695599][T12219] usb 6-1: Product: syz
[ 1815.700483][T12219] usb 6-1: Manufacturer: syz
[ 1815.705208][T12219] usb 6-1: SerialNumber: syz
[ 1815.714202][T12219] usb 6-1: config 0 descriptor??
[ 1816.524183][ T7753] usb 1-1: Failed to submit usb control message: -110
[ 1816.557238][ T7753] usb 1-1: unable to send the bmi data to the device: -110
[ 1816.584876][ T7753] usb 1-1: unable to get target info from device
[ 1816.615250][ T7753] usb 1-1: could not get target info (-110)
[ 1816.654928][ T7753] usb 1-1: could not probe fw (-110)
[ 1816.747296][T12219] dvb_usb_ec168 6-1:0.1: probe with driver dvb_usb_ec168 failed with error -110
[ 1816.892397][T12219] usb 1-1: USB disconnect, device number 22
[ 1817.545976][T24014] vivid-000: kernel_thread() failed
[ 1818.004030][T24025] xt_hashlimit: size too large, truncated to 1048576
[ 1818.790454][   T29] audit: type=1400 audit(1730273135.310:107): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=24019 comm="syz.4.4149" dest=20004
[ 1819.062505][T10886] usb 6-1: USB disconnect, device number 16
[ 1820.252978][   T29] audit: type=1326 audit(1730273137.480:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24031 comm="syz.2.4151" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f17c417e719 code=0x0
[ 1820.330317][T24034] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4153'.
[ 1820.459680][T24039] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4152'.
[ 1820.909485][T24039] xt_ipcomp: unknown flags 12
[ 1821.026106][   T29] audit: type=1326 audit(1730273138.250:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24045 comm="syz.0.4158" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb2acd7e719 code=0x0
[ 1822.016493][T10886] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 1822.207351][T10886] usb 4-1: Using ep0 maxpacket: 16
[ 1822.221696][T10886] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1822.447784][T10886] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 1822.494882][T10886] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1822.533153][T10886] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1822.575955][T10886] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1822.601664][T10886] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1822.627005][T10886] usb 4-1: Product: syz
[ 1822.637316][T10886] usb 4-1: Manufacturer: syz
[ 1822.647612][T10886] usb 4-1: SerialNumber: syz
[ 1822.878788][ T5936] usb 1-1: new full-speed USB device number 23 using dummy_hcd
[ 1823.053039][ T5936] usb 1-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[ 1823.062640][ T5936] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1823.081637][ T5936] usb 1-1: Product: syz
[ 1823.098904][ T5936] usb 1-1: Manufacturer: syz
[ 1823.114409][ T5936] usb 1-1: SerialNumber: syz
[ 1823.137926][ T5936] usb 1-1: config 0 descriptor??
[ 1823.382688][ T5936] dvb_usb_dtv5100 1-1:0.0: probe with driver dvb_usb_dtv5100 failed with error -71
[ 1823.410797][ T5936] usb 1-1: USB disconnect, device number 23
[ 1824.592239][T24079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4166'.
[ 1824.603951][T10886] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor
[ 1824.611905][T24080] FAULT_INJECTION: forcing a failure.
[ 1824.611905][T24080] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1824.611937][T24080] CPU: 0 UID: 0 PID: 24080 Comm: syz.5.4163 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1824.611960][T24080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1824.611974][T24080] Call Trace:
[ 1824.611982][T24080]  <TASK>
[ 1824.611992][T24080]  dump_stack_lvl+0x241/0x360
[ 1824.612022][T24080]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1824.612044][T24080]  ? __pfx__printk+0x10/0x10
[ 1824.612074][T24080]  should_fail_ex+0x3b0/0x4e0
[ 1824.626095][T10886] usb 4-1: found format II with max.bitrate = 0, frame size=0
[ 1824.635818][T24080]  _copy_from_user+0x31/0xe0
[ 1824.635856][T24080]  copy_msghdr_from_user+0xae/0x680
[ 1824.635885][T24080]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1824.635918][T24080]  __sys_sendmmsg+0x36d/0x730
[ 1824.635945][T24080]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1824.635973][T24080]  ? __pfx_lock_release+0x10/0x10
[ 1824.635996][T24080]  ? kstrtouint_from_user+0x128/0x190
[ 1824.636036][T24080]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1824.636056][T24080]  ? ksys_write+0x229/0x2b0
[ 1824.636077][T24080]  ? __pfx_lock_release+0x10/0x10
[ 1824.636108][T24080]  ? vfs_write+0x730/0xd30
[ 1824.636135][T24080]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1824.636165][T24080]  ? __fget_files+0x3f3/0x470
[ 1824.636201][T24080]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1824.636229][T24080]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1824.636256][T24080]  ? do_syscall_64+0x100/0x230
[ 1824.636281][T24080]  __x64_sys_sendmmsg+0xa0/0xb0
[ 1824.636304][T24080]  do_syscall_64+0xf3/0x230
[ 1824.636324][T24080]  ? clear_bhb_loop+0x35/0x90
[ 1824.636346][T24080]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1824.646439][T10886] usb 4-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[ 1824.649665][T24080] RIP: 0033:0x7ffa26f7e719
[ 1824.649689][T24080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1824.649706][T24080] RSP: 002b:00007ffa27d1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1824.669123][T10886] usb 4-1: USB disconnect, device number 45
[ 1824.671738][T24080] RAX: ffffffffffffffda RBX: 00007ffa27136058 RCX: 00007ffa26f7e719
[ 1824.729463][T23985] udevd[23985]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1824.730431][T24080] RDX: 0000000000000002 RSI: 0000000020004900 RDI: 0000000000000003
[ 1824.858705][T24080] RBP: 00007ffa27d1e090 R08: 0000000000000000 R09: 0000000000000000
[ 1824.866680][T24080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1824.874649][T24080] R13: 0000000000000001 R14: 00007ffa27136058 R15: 00007ffc16415298
[ 1824.882650][T24080]  </TASK>
[ 1825.336923][T24086] FAULT_INJECTION: forcing a failure.
[ 1825.336923][T24086] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1825.355776][T24086] CPU: 1 UID: 0 PID: 24086 Comm: syz.4.4167 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1825.366585][T24086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1825.376665][T24086] Call Trace:
[ 1825.379960][T24086]  <TASK>
[ 1825.382909][T24086]  dump_stack_lvl+0x241/0x360
[ 1825.387615][T24086]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1825.392824][T24086]  ? __pfx__printk+0x10/0x10
[ 1825.397411][T24086]  ? snprintf+0xda/0x120
[ 1825.401645][T24086]  should_fail_ex+0x3b0/0x4e0
[ 1825.406308][T24086]  _copy_to_user+0x31/0xb0
[ 1825.410720][T24086]  simple_read_from_buffer+0xca/0x150
[ 1825.416096][T24086]  proc_fail_nth_read+0x1e9/0x250
[ 1825.421122][T24086]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1825.426668][T24086]  ? rw_verify_area+0x55e/0x6f0
[ 1825.431519][T24086]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1825.437167][T24086]  vfs_read+0x1fc/0xb70
[ 1825.441336][T24086]  ? fdget_pos+0x24e/0x320
[ 1825.445775][T24086]  ? __pfx_vfs_read+0x10/0x10
[ 1825.450462][T24086]  ? __fget_files+0x3f3/0x470
[ 1825.455155][T24086]  ? fdget_pos+0x24e/0x320
[ 1825.459577][T24086]  ksys_read+0x183/0x2b0
[ 1825.463819][T24086]  ? __pfx_ksys_read+0x10/0x10
[ 1825.468697][T24086]  ? do_syscall_64+0x100/0x230
[ 1825.473466][T24086]  ? do_syscall_64+0xb6/0x230
[ 1825.478174][T24086]  do_syscall_64+0xf3/0x230
[ 1825.482697][T24086]  ? clear_bhb_loop+0x35/0x90
[ 1825.487397][T24086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1825.493288][T24086] RIP: 0033:0x7f1ab457d15c
[ 1825.497706][T24086] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1825.517310][T24086] RSP: 002b:00007f1ab52d8030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1825.525721][T24086] RAX: ffffffffffffffda RBX: 00007f1ab4735f80 RCX: 00007f1ab457d15c
[ 1825.533709][T24086] RDX: 000000000000000f RSI: 00007f1ab52d80a0 RDI: 0000000000000005
[ 1825.541686][T24086] RBP: 00007f1ab52d8090 R08: 0000000000000000 R09: 0000000000000000
[ 1825.549668][T24086] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[ 1825.557645][T24086] R13: 0000000000000000 R14: 00007f1ab4735f80 R15: 00007fff1368d008
[ 1825.565657][T24086]  </TASK>
[ 1825.636328][T24088] xt_hashlimit: size too large, truncated to 1048576
[ 1846.777315][   T29] audit: type=1326 audit(1730273164.010:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24094 comm="syz.5.4169" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffa26f7e719 code=0x0
[ 1847.062673][   T29] audit: type=1326 audit(1730273164.010:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24091 comm="syz.0.4172" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb2acd7e719 code=0x0
[ 1847.277893][T19707] Bluetooth: hci1: unexpected event for opcode 0x040d
[ 1848.281809][T24121] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1848.506942][T24134] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1848.873347][T24143] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4180'.
[ 1848.897049][T10886] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[ 1848.921479][T24143] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4180'.
[ 1849.458768][T10886] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[ 1849.900723][T10886] usb 1-1: config 0 has no interface number 0
[ 1850.447141][ T5936] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[ 1850.512541][T10886] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1850.521689][T10886] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1850.530098][T10886] usb 1-1: Product: syz
[ 1850.534290][T10886] usb 1-1: Manufacturer: syz
[ 1850.539260][T10886] usb 1-1: SerialNumber: syz
[ 1850.581759][T10886] usb 1-1: config 0 descriptor??
[ 1850.591157][T19707] Bluetooth: hci1: unexpected event for opcode 0x040d
[ 1851.308268][   T29] audit: type=1326 audit(1730273168.540:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24163 comm="syz.0.4187" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb2acd7e719 code=0x0
[ 1851.546353][T10886] dvb_usb_ec168 1-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[ 1851.576756][T10886] usb 1-1: USB disconnect, device number 24
[ 1851.833465][ T5936] usb 3-1: config index 0 descriptor too short (expected 39186, got 18)
[ 1851.855359][ T5936] usb 3-1: config 34 has an invalid descriptor of length 55, skipping remainder of the config
[ 1851.884550][ T5936] usb 3-1: config 34 has no interfaces?
[ 1851.892313][ T5936] usb 3-1: New USB device found, idVendor=0c45, idProduct=8001, bcdDevice=90.0a
[ 1851.906555][ T5936] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1851.924331][T24174] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4188'.
[ 1852.001114][T24174] A link change request failed with some changes committed already. Interface wg0 may have been left with an inconsistent configuration, please check.
[ 1852.427118][ T5936] usb 3-1: USB disconnect, device number 61
[ 1852.499052][   T29] audit: type=1326 audit(1730273169.720:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24183 comm="syz.5.4190" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffa26f7e719 code=0x0
[ 1852.552333][T24186] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4192'.
[ 1852.572961][T24186] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4192'.
[ 1853.493398][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1853.500872][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1855.467668][T12219] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[ 1855.627264][T12219] usb 1-1: Using ep0 maxpacket: 32
[ 1855.638902][T12219] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[ 1855.672286][T12219] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1855.698189][T12219] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1855.726764][T12219] usb 1-1: Product: syz
[ 1855.742742][T12219] usb 1-1: Manufacturer: syz
[ 1855.779573][T12219] usb 1-1: SerialNumber: syz
[ 1855.832053][T12219] usb 1-1: config 0 descriptor??
[ 1855.865343][T24216] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1855.891651][T12219] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1856.452971][   T62] usb 1-1: Failed to submit usb control message: -71
[ 1856.556243][T12219] usb 1-1: USB disconnect, device number 25
[ 1856.732282][   T62] usb 1-1: unable to send the bmi data to the device: -71
[ 1856.766989][   T62] usb 1-1: unable to get target info from device
[ 1856.792778][   T62] usb 1-1: could not get target info (-71)
[ 1856.816994][   T62] usb 1-1: could not probe fw (-71)
[ 1857.010570][T24247] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4205'.
[ 1857.035485][T24247] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4205'.
[ 1857.403080][T24251] xt_hashlimit: size too large, truncated to 1048576
[ 1860.950468][T24274] x_tables: unsorted entry at hook 1
[ 1861.423717][T24278] xt_limit: Overflow, try lower: 4294967295/4294966784
[ 1863.923534][T10886] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[ 1864.147423][T10886] usb 1-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.05
[ 1864.228243][T10886] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1864.321080][T10886] usb 1-1: Product: syz
[ 1864.345038][T10886] usb 1-1: Manufacturer: syz
[ 1864.366045][T10886] usb 1-1: SerialNumber: syz
[ 1864.813026][T10886] usb 1-1: config 0 descriptor??
[ 1864.930515][T10886] go7007 1-1:0.0: probe with driver go7007 failed with error -12
[ 1865.132674][T24293] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1865.185161][T24293] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1865.426029][T24293] netlink: 168 bytes leftover after parsing attributes in process `syz.0.4217'.
[ 1865.456318][T22461] usb 1-1: USB disconnect, device number 26
[ 1866.076955][T10869] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1866.737004][   T29] audit: type=1326 audit(1730273183.940:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24339 comm="syz.2.4229" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f17c417e719 code=0x0
[ 1866.853492][T10869] usb 4-1: Using ep0 maxpacket: 32
[ 1866.867781][T10869] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175
[ 1866.887751][T10869] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1866.897760][T10869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1866.914085][T10869] usb 4-1: Product: syz
[ 1866.924280][T10869] usb 4-1: Manufacturer: syz
[ 1866.938805][T10869] usb 4-1: SerialNumber: syz
[ 1866.962862][T10869] usb 4-1: config 0 descriptor??
[ 1866.991612][T24329] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1867.018592][T10869] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1867.042356][T24351] 9pnet_virtio: no channels available for device syz
[ 1868.032718][T19707] Bluetooth: hci0: unexpected event for opcode 0x1004
[ 1868.108512][ T6093] usb 4-1: Failed to submit usb control message: -110
[ 1868.124354][ T6093] usb 4-1: unable to send the bmi data to the device: -110
[ 1868.142489][ T6093] usb 4-1: unable to get target info from device
[ 1868.157178][ T6093] usb 4-1: could not get target info (-110)
[ 1868.167911][ T6093] usb 4-1: could not probe fw (-110)
[ 1868.219457][T19707] Bluetooth: hci2: unexpected event for opcode 0x040e
[ 1868.286775][T24387] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4246'.
[ 1868.491161][ T5835] Bluetooth: hci2: unexpected event 0x09 length: 10 > 3
[ 1868.605614][T24410] 9pnet_virtio: no channels available for device syz
[ 1868.650581][T22461] usb 4-1: USB disconnect, device number 46
[ 1869.185529][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1869.234724][T23988] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1869.246542][T23988] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1869.258478][T23988] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1869.287057][T23988] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1869.300272][T23988] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1869.315302][T23988] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1869.487523][T23988] Bluetooth: hci3: ACL packet for unknown connection handle 0
[ 1869.623337][T11325] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1869.767527][T23988] Bluetooth: hci1: ACL packet for unknown connection handle 201
[ 1869.788874][T11325] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1869.986687][T11325] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1870.084173][T24430] chnl_net:caif_netlink_parms(): no params data found
[ 1870.237508][T24457] block nbd5: shutting down sockets
[ 1870.248957][T11325] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1870.317990][T24473] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4276'.
[ 1870.568547][T24430] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1870.581392][T24430] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1870.589396][T24430] bridge_slave_0: entered allmulticast mode
[ 1870.597463][T24430] bridge_slave_0: entered promiscuous mode
[ 1870.630326][T24430] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1870.643618][T24430] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1870.652232][T24430] bridge_slave_1: entered allmulticast mode
[ 1870.659685][T24430] bridge_slave_1: entered promiscuous mode
[ 1870.757923][T24430] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1870.769909][T11325] bridge_slave_1: left allmulticast mode
[ 1870.775632][T11325] bridge_slave_1: left promiscuous mode
[ 1870.785242][T11325] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1870.800127][T11325] bridge_slave_0: left allmulticast mode
[ 1870.806772][T11325] bridge_slave_0: left promiscuous mode
[ 1870.820831][T11325] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1871.202288][T24505] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1871.227709][T24505] kvm: pic: non byte read
[ 1871.239064][T24505] kvm: pic: level sensitive irq not supported
[ 1871.239280][T24505] kvm: pic: non byte read
[ 1871.252362][T24505] kvm: pic: level sensitive irq not supported
[ 1871.252517][T24505] kvm: pic: non byte read
[ 1871.388046][T23988] Bluetooth: hci2: command tx timeout
[ 1871.659566][T24513] overlayfs: failed to clone lowerpath
[ 1871.712349][T11325] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1871.737974][T11325] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1871.753927][T11325] bond0 (unregistering): Released all slaves
[ 1871.777312][T11325] bond1 (unregistering): Released all slaves
[ 1871.800219][T24516] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4292'.
[ 1871.808686][T24430] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1871.826234][T24504] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4288'.
[ 1871.854524][T24504] bridge_slave_1: left allmulticast mode
[ 1871.866510][T24504] bridge_slave_1: left promiscuous mode
[ 1871.895858][T24504] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1871.937718][T24504] bridge_slave_0: left allmulticast mode
[ 1871.943425][T24504] bridge_slave_0: left promiscuous mode
[ 1871.958586][T24504] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1872.031354][T24523] 9pnet_fd: p9_fd_create_tcp (24523): problem connecting socket to 127.0.0.1
[ 1872.089542][T24525] IPVS: length: 184 != 24
[ 1872.185714][T11325] tipc: Disabling bearer <udp:s>
[ 1872.200698][T11325] tipc: Left network mode
[ 1872.214040][T24430] team0: Port device team_slave_0 added
[ 1872.259682][T24430] team0: Port device team_slave_1 added
[ 1872.322714][T24532] binder_alloc: 24529: binder_alloc_buf size 69360 failed, no address space
[ 1872.332420][T24532] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 12288 (num: 1 largest: 12288)
[ 1872.510003][T24430] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1872.517439][T24430] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1872.538744][T24546] 9pnet_fd: p9_fd_create_tcp (24546): problem connecting socket to 127.0.0.1
[ 1872.548554][T24430] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1872.693240][T24430] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1872.718408][T24430] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1872.772430][T24430] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1872.905843][T11325] hsr_slave_0: left promiscuous mode
[ 1872.921818][T11325] hsr_slave_1: left promiscuous mode
[ 1872.935080][T11325] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1872.959831][T11325] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1872.973883][T11325] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1872.983932][T11325] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1873.030435][T11325] veth1_vlan: left promiscuous mode
[ 1873.059326][T11325] veth0_vlan: left promiscuous mode
[ 1873.393316][ T5835] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1873.412738][ T5835] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1873.422378][ T5835] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1873.436755][ T5835] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1873.461615][ T5835] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1873.467415][T19707] Bluetooth: hci2: command tx timeout
[ 1873.474441][ T5835] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1874.051356][T11325] team0 (unregistering): Port device team_slave_1 removed
[ 1874.142372][T11325] team0 (unregistering): Port device team_slave_0 removed
[ 1874.864236][T24430] hsr_slave_0: entered promiscuous mode
[ 1874.876572][T24430] hsr_slave_1: entered promiscuous mode
[ 1874.893088][T24430] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1874.914524][T24430] Cannot create hsr debugfs directory
[ 1875.558919][T23988] Bluetooth: hci4: command tx timeout
[ 1875.566063][T23988] Bluetooth: hci2: command tx timeout
[ 1875.921706][T11325] IPVS: stop unused estimator thread 0...
[ 1876.044799][T24615] netlink: 'syz.0.4335': attribute type 11 has an invalid length.
[ 1876.099924][T24611] netlink: 'syz.0.4335': attribute type 11 has an invalid length.
[ 1876.116797][T24611] debugfs: Directory 'netdev:' with parent 'phy42' already present!
[ 1876.230887][T24567] chnl_net:caif_netlink_parms(): no params data found
[ 1876.344095][T11325] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1876.492284][T11325] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1876.599754][T24567] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1876.619594][T24567] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1876.631936][T24567] bridge_slave_0: entered allmulticast mode
[ 1876.639375][T24567] bridge_slave_0: entered promiscuous mode
[ 1876.680908][T11325] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1876.710272][T24567] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1876.729383][T24567] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1876.736774][T24567] bridge_slave_1: entered allmulticast mode
[ 1876.744958][T24567] bridge_slave_1: entered promiscuous mode
[ 1876.866507][T11325] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1876.908244][T24567] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1876.936157][T24567] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1877.020211][T24567] team0: Port device team_slave_0 added
[ 1877.069100][T24567] team0: Port device team_slave_1 added
[ 1877.127995][T24567] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1877.135809][T24567] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1877.165261][T24567] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1877.181092][T24567] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1877.188578][T24567] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1877.220358][T24567] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1877.317018][T24430] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1877.340833][T24567] hsr_slave_0: entered promiscuous mode
[ 1877.350201][T24567] hsr_slave_1: entered promiscuous mode
[ 1877.356492][T24567] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1877.365402][T24567] Cannot create hsr debugfs directory
[ 1877.379024][T24430] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1877.391558][T24430] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1877.436364][T24430] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1877.454810][T11325] bridge_slave_1: left allmulticast mode
[ 1877.466412][T11325] bridge_slave_1: left promiscuous mode
[ 1877.480588][T11325] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1877.494638][T11325] bridge_slave_0: left allmulticast mode
[ 1877.505750][T11325] bridge_slave_0: left promiscuous mode
[ 1877.511886][T11325] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1877.645013][T23988] Bluetooth: hci2: command tx timeout
[ 1877.650605][T23988] Bluetooth: hci4: command tx timeout
[ 1878.066260][T11325] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1878.079338][T11325] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1878.090840][T11325] bond0 (unregistering): Released all slaves
[ 1878.284785][T11325] bond1 (unregistering): Released all slaves
[ 1878.363423][T24672] cgroup: Unknown subsys name 'cpuset'
[ 1878.462709][T11325] tipc: Left network mode
[ 1878.628949][T24679] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4361'.
[ 1878.994536][T11325] hsr_slave_0: left promiscuous mode
[ 1879.031817][T11325] hsr_slave_1: left promiscuous mode
[ 1879.039956][T11325] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1879.049570][T11325] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1879.563357][T11325] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1879.590797][T11325] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1879.700174][T11325] veth1_macvtap: left promiscuous mode
[ 1879.705756][T11325] veth0_macvtap: left promiscuous mode
[ 1879.711724][T23988] Bluetooth: hci4: command tx timeout
[ 1879.741177][T11325] veth1_vlan: left promiscuous mode
[ 1879.771236][T11325] veth0_vlan: left promiscuous mode
[ 1879.909973][T24695] netlink: 'syz.4.4368': attribute type 11 has an invalid length.
[ 1880.032687][T11325] pimreg (unregistering): left allmulticast mode
[ 1880.649685][T11325] team0 (unregistering): Port device team_slave_1 removed
[ 1880.713597][T11325] team0 (unregistering): Port device team_slave_0 removed
[ 1881.606267][T24703] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4373'.
[ 1881.626677][T24430] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1881.645823][T24430] 8021q: adding VLAN 0 to HW filter on device team0
[ 1881.658042][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1881.665205][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1881.714994][T24430] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1881.736265][T24430] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1881.758472][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1881.765644][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1881.787110][T23988] Bluetooth: hci4: command tx timeout
[ 1882.177172][T24567] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1882.220465][T24718] netlink: 'syz.5.4378': attribute type 11 has an invalid length.
[ 1882.261807][T24567] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1882.276422][T24567] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1882.435210][T24567] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1882.684379][T24430] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1882.704115][T11325] IPVS: stop unused estimator thread 0...
[ 1882.711799][   T29] audit: type=1400 audit(1730273199.940:115): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=24729 comm="syz.5.4383" dest=2
[ 1882.725697][T24430] veth0_vlan: entered promiscuous mode
[ 1882.849520][T24732] 9pnet_fd: p9_fd_create_tcp (24732): problem connecting socket to 127.0.0.1
[ 1882.984148][T24430] veth1_vlan: entered promiscuous mode
[ 1883.279680][T24567] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1883.300976][T24430] veth0_macvtap: entered promiscuous mode
[ 1883.318244][T24430] veth1_macvtap: entered promiscuous mode
[ 1883.333569][T24430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1883.344139][T24430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1883.354356][T24430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1883.365231][T24430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1883.375342][T24430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1883.386023][T24430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1883.397888][T24430] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1883.409834][T24430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1883.421635][T24430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1883.431528][T24430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1883.441997][T24430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1883.451892][T24430] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1883.462412][T24430] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1883.473384][T24430] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1883.510569][T24430] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1883.520095][T24430] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1883.543032][T24430] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1883.564616][T24430] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1883.603556][T24567] 8021q: adding VLAN 0 to HW filter on device team0
[ 1883.643374][T11325] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1883.650497][T11325] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1883.666718][T11325] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1883.673897][T11325] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1883.850522][T22964] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1883.874851][T22964] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1883.896279][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1883.931186][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1884.176643][T24567] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1884.398072][T24779] netlink: 60 bytes leftover after parsing attributes in process `syz.4.4400'.
[ 1884.429325][T24777] block nbd0: Device being setup by another task
[ 1884.444503][T24779] unsupported nlmsg_type 40
[ 1884.488545][T24782] block nbd0: shutting down sockets
[ 1885.509396][T24567] veth0_vlan: entered promiscuous mode
[ 1885.520195][T24567] veth1_vlan: entered promiscuous mode
[ 1885.541243][T24567] veth0_macvtap: entered promiscuous mode
[ 1885.551276][T24567] veth1_macvtap: entered promiscuous mode
[ 1885.582693][T24567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1885.595004][T24567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1885.605311][T24567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1885.615874][T24567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1885.625932][T24567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1885.636994][T24567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1886.549900][T24567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1886.592226][T24567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1886.616486][T24567] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1886.639405][T24567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1886.654602][T24567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1886.664833][T24567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1886.675623][T24567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1886.686137][T24567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1886.697558][T24567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1886.707492][T24567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1886.718032][T24567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1886.729647][T24567] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1886.739702][T24567] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1886.748678][T24567] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1886.757723][T24567] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1886.766443][T24567] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1887.841742][T11325] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1887.869100][T11325] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1887.895623][T23988] Bluetooth: hci2: Malformed LE Event: 0x1d
[ 1887.952534][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1887.998437][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1888.307184][T24844] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4421'.
[ 1888.737359][   T29] audit: type=1400 audit(1730273205.960:116): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=24854 comm="syz.0.4426"
[ 1888.753497][T12356] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1888.854750][ T5835] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1888.864605][ T5835] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1888.877160][ T5835] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1888.886792][ T5835] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1888.894925][ T5835] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1888.903969][ T5835] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1888.927185][T12356] usb 9-1: Using ep0 maxpacket: 32
[ 1888.997758][T12356] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1889.040774][T12356] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1889.083805][T12356] usb 9-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 1889.090056][T24867] input: syz1 as /devices/virtual/input/input20
[ 1889.099526][T12356] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1889.110360][T12356] usb 9-1: config 0 descriptor??
[ 1889.447136][ T2959] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1889.543046][T12356] savu 0003:1E7D:2D5A.0013: hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.8-1/input0
[ 1889.580695][ T2959] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1889.616607][T24856] chnl_net:caif_netlink_parms(): no params data found
[ 1889.647310][T10869] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[ 1889.683019][ T2959] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1889.740860][T12356] usb 9-1: USB disconnect, device number 2
[ 1889.792263][ T2959] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1889.823231][T10869] usb 1-1: Using ep0 maxpacket: 16
[ 1889.843273][T10869] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1889.844283][T24856] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1889.861937][T24856] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1889.877352][T10869] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1889.914478][T24856] bridge_slave_0: entered allmulticast mode
[ 1889.923619][T24856] bridge_slave_0: entered promiscuous mode
[ 1889.932406][T24856] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1889.945315][T10869] usb 1-1: New USB device found, idVendor=1294, idProduct=1320, bcdDevice= 0.00
[ 1889.957108][T24856] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1889.964473][T24856] bridge_slave_1: entered allmulticast mode
[ 1889.975736][T10869] usb 1-1: New USB device strings: Mfr=252, Product=0, SerialNumber=0
[ 1889.977922][T24856] bridge_slave_1: entered promiscuous mode
[ 1889.985774][T10869] usb 1-1: Manufacturer: syz
[ 1890.005583][T10869] usb 1-1: config 0 descriptor??
[ 1890.035047][T10869] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1890.083117][T24856] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1890.120540][T24856] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1890.219098][T24890] 9pnet_fd: p9_fd_create_tcp (24890): problem connecting socket to 127.0.0.1
[ 1890.252402][T24856] team0: Port device team_slave_0 added
[ 1890.276576][T12356] usb 1-1: USB disconnect, device number 27
[ 1890.830019][T24915] 9pnet_fd: p9_fd_create_tcp (24915): problem connecting socket to 127.0.0.1
[ 1890.999853][ T5835] Bluetooth: hci5: command tx timeout
[ 1891.397449][ T2959] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1891.424696][ T2959] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1891.446012][ T2959] bond0 (unregistering): Released all slaves
[ 1891.475862][T24856] team0: Port device team_slave_1 added
[ 1891.617400][ T2959] tipc: Left network mode
[ 1891.662528][T24856] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1891.694757][T24856] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1891.747214][T24856] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1891.762782][T24856] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1891.805464][T24856] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1891.883554][T24856] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1892.215575][T24956] overlayfs: failed to resolve './file1': -2
[ 1892.966411][T24856] hsr_slave_0: entered promiscuous mode
[ 1893.067143][ T5835] Bluetooth: hci5: command 0x041b tx timeout
[ 1893.101246][T24856] hsr_slave_1: entered promiscuous mode
[ 1893.115434][T24856] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1893.123474][T24856] Cannot create hsr debugfs directory
[ 1893.236192][   T29] audit: type=1326 audit(1730273210.460:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24972 comm="syz.8.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2124b7e719 code=0x7ffc0000
[ 1893.277884][   T29] audit: type=1326 audit(1730273210.500:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24972 comm="syz.8.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2124b7e719 code=0x7ffc0000
[ 1893.303127][   T29] audit: type=1326 audit(1730273210.520:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24972 comm="syz.8.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f2124b7e719 code=0x7ffc0000
[ 1893.328336][   T29] audit: type=1326 audit(1730273210.520:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24972 comm="syz.8.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2124b7e719 code=0x7ffc0000
[ 1893.359610][   T29] audit: type=1326 audit(1730273210.520:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24972 comm="syz.8.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2124b7e719 code=0x7ffc0000
[ 1893.388103][   T29] audit: type=1326 audit(1730273210.530:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24972 comm="syz.8.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f2124b7e719 code=0x7ffc0000
[ 1893.409688][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1893.418466][   T29] audit: type=1326 audit(1730273210.530:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24972 comm="syz.8.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2124b7e719 code=0x7ffc0000
[ 1893.442051][   T29] audit: type=1326 audit(1730273210.530:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24972 comm="syz.8.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2124b7e719 code=0x7ffc0000
[ 1893.469433][   T29] audit: type=1326 audit(1730273210.560:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24972 comm="syz.8.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f2124b7e719 code=0x7ffc0000
[ 1893.487194][ T2959] hsr_slave_0: left promiscuous mode
[ 1893.500241][ T2959] hsr_slave_1: left promiscuous mode
[ 1893.539851][ T2959] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1893.548223][T24979] overlayfs: failed to resolve './file1': -2
[ 1893.555075][ T2959] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1893.842428][ T2959] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1893.955969][ T2959] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1894.101680][ T2959] veth1_vlan: left promiscuous mode
[ 1895.217249][T23988] Bluetooth: hci5: command 0x041b tx timeout
[ 1895.265059][ T2959] veth0_vlan: left promiscuous mode
[ 1895.426672][ T2959] pimreg (unregistering): left allmulticast mode
[ 1896.592992][ T2959] team0 (unregistering): Port device team_slave_1 removed
[ 1896.686578][ T2959] team0 (unregistering): Port device team_slave_0 removed
[ 1896.711765][T25009] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4488'.
[ 1897.236980][ T5835] Bluetooth: hci5: command 0x041b tx timeout
[ 1899.274934][ T2959] IPVS: stop unused estimator thread 0...
[ 1899.306993][ T5835] Bluetooth: hci5: command 0x041b tx timeout
[ 1899.740934][T24856] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1899.795949][T24856] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1899.879719][T24856] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1899.922255][T24856] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1900.021173][T24856] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1900.037638][T24856] 8021q: adding VLAN 0 to HW filter on device team0
[ 1900.069613][T24856] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1900.080175][T24856] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1900.160594][ T2959] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1900.167822][ T2959] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1900.287907][ T5882] usb 6-1: new full-speed USB device number 17 using dummy_hcd
[ 1900.642568][ T5882] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1900.818961][ T2959] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1900.826105][ T2959] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1900.850848][ T5882] usb 6-1: config 0 has no interfaces?
[ 1900.856391][ T5882] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1900.952623][ T5882] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1901.054772][ T5882] usb 6-1: config 0 descriptor??
[ 1902.361400][T10869] usb 6-1: USB disconnect, device number 17
[ 1902.563777][T24856] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1902.949184][T24856] veth0_vlan: entered promiscuous mode
[ 1902.972393][T24856] veth1_vlan: entered promiscuous mode
[ 1903.010749][T24856] veth0_macvtap: entered promiscuous mode
[ 1903.023909][T24856] veth1_macvtap: entered promiscuous mode
[ 1903.061893][T24856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1903.068771][T24821] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1903.082105][T24856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1903.100190][T24856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1903.117174][T24856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1903.133847][T24856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1903.150982][T24856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1903.164019][T24856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1903.179379][T24856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1903.194544][T24856] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1903.215554][T24856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1903.237022][T24821] usb 9-1: Using ep0 maxpacket: 8
[ 1903.246850][T24856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1903.248607][T24821] usb 9-1: config 0 has no interfaces?
[ 1903.272568][T24856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1903.286320][T24856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1903.293300][T24821] usb 9-1: New USB device found, idVendor=2833, idProduct=0201, bcdDevice=2a.d5
[ 1903.298550][T24856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1903.315801][T24821] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1903.317705][T24821] usb 9-1: config 0 descriptor??
[ 1903.356967][T24856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1903.390941][T24856] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1903.430398][T24856] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1903.454335][T24856] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1903.537595][T24856] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1903.575066][T24856] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1903.626509][T24856] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1903.665161][T24856] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1903.849371][ T2959] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1903.857655][ T2959] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1903.889037][ T2959] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1903.903368][ T2959] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1904.020514][T12356] usb 9-1: USB disconnect, device number 3
[ 1904.032666][T25112] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3832186367 (7664372734 ns) > initial count (4194304 ns). Using initial count to start timer.
[ 1904.196990][ T5882] usb 3-1: new high-speed USB device number 62 using dummy_hcd
[ 1904.273462][T25130] binder: 25129:25130 ioctl c0306201 20000080 returned -14
[ 1904.370664][ T5882] usb 3-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1904.383019][ T5882] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1904.396273][ T5882] usb 3-1: config 0 descriptor??
[ 1904.577025][T10886] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[ 1904.707115][T22461] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[ 1904.747306][T10886] usb 6-1: Using ep0 maxpacket: 32
[ 1904.755375][T10886] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1904.767080][T10886] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1904.779285][T10886] usb 6-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1904.792310][T10886] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1904.805027][T10886] usb 6-1: config 0 descriptor??
[ 1904.811213][T25136] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1904.820583][T10886] hub 6-1:0.0: USB hub found
[ 1904.835365][ T5882] [drm] Initialized udl 0.0.1 for 3-1:0.0 on minor 2
[ 1904.855660][ T5882] [drm] Initialized udl on minor 2
[ 1904.877078][T22461] usb 1-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[ 1904.890155][T22461] usb 1-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[ 1904.905269][T22461] usb 1-1: Manufacturer: syz
[ 1904.914945][T22461] usb 1-1: config 0 descriptor??
[ 1905.070698][ T5882] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1905.113292][ T5882] udl 3-1:0.0: [drm] Cannot find any crtc or sizes
[ 1905.172819][ T5882] usb 3-1: USB disconnect, device number 62
[ 1905.227114][T10886] hub 6-1:0.0: config failed, hub doesn't have any ports! (err -19)
[ 1905.395248][T22461] gs_usb 1-1:0.0: Configuring for 1 interfaces
[ 1905.738626][T10886] hid-generic 0003:046D:C314.0014: item fetching failed at offset 0/3
[ 1906.038395][T10886] hid-generic 0003:046D:C314.0014: probe with driver hid-generic failed with error -22
[ 1907.040709][T22461] gs_usb 1-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[ 1907.057596][T10886] usb 6-1: USB disconnect, device number 18
[ 1907.066546][T22461] usb 1-1: USB disconnect, device number 28
[ 1907.308919][T25162] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4545'.
[ 1909.197975][T25198] input: syz0 as /devices/virtual/input/input21
[ 1913.347385][T25230] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1913.354387][T25230] overlayfs: failed to set xattr on upper
[ 1913.386116][T25230] overlayfs: ...falling back to redirect_dir=nofollow.
[ 1913.396301][T25230] overlayfs: ...falling back to index=off.
[ 1913.418035][T25230] overlayfs: ...falling back to uuid=null.
[ 1913.672849][T25239] netlink: 'syz.0.4568': attribute type 2 has an invalid length.
[ 1914.242241][T25248] input: syz0 as /devices/virtual/input/input22
[ 1915.002918][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 1915.009297][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1916.383132][T10886] IPVS: starting estimator thread 0...
[ 1918.139252][T24821] usb 3-1: new high-speed USB device number 63 using dummy_hcd
[ 1918.163042][T25264] IPVS: using max 16 ests per chain, 38400 per kthread
[ 1918.307007][T24821] usb 3-1: Using ep0 maxpacket: 16
[ 1918.313816][T24821] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1918.325512][T24821] usb 3-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[ 1918.342147][T24821] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1918.423713][T24821] usb 3-1: config 0 descriptor??
[ 1918.444973][T24821] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input23
[ 1918.469695][T25289] syz_tun: entered promiscuous mode
[ 1918.475741][T25289] macsec1: entered promiscuous mode
[ 1918.481412][T25289] macsec1: entered allmulticast mode
[ 1918.486956][T25289] syz_tun: entered allmulticast mode
[ 1918.629494][T25289] syz_tun: left allmulticast mode
[ 1918.634877][T25289] syz_tun: left promiscuous mode
[ 1918.732920][   T29] kauditd_printk_skb: 2 callbacks suppressed
[ 1918.732961][   T29] audit: type=1400 audit(1730273235.950:128): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=25284 comm="syz.8.4580"
[ 1918.975292][T25275] input: syz0 as /devices/virtual/input/input24
[ 1918.987237][   T29] audit: type=1400 audit(1730273235.950:129): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="#!" requested=w pid=25284 comm="syz.8.4580"
[ 1919.262128][T10886] usb 3-1: USB disconnect, device number 63
[ 1919.268284][ T5189] bcm5974 3-1:0.0: could not read from device
[ 1919.279081][ T5189] bcm5974 3-1:0.0: could not read from device
[ 1919.316432][T24817] bcm5974 3-1:0.0: could not read from device
[ 1925.638929][T25404] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[ 1926.474831][T25437] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4632'.
[ 1928.197965][ T2959] wlan0: Trigger new scan to find an IBSS to join
[ 1928.726179][T25470] xt_hashlimit: invalid rate
[ 1929.504144][T25473] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4644'.
[ 1929.979721][T25482] Bluetooth: MGMT ver 1.23
[ 1930.348403][T25486] 9pnet_fd: Insufficient options for proto=fd
[ 1930.785298][T25501] BUG: Bad page state in process syz.4.4652  pfn:11d4d
[ 1930.792923][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888011d4d000 pfn:0x11d4d
[ 1930.803147][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1930.810354][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1930.819057][T25501] raw: ffff888011d4d000 0000000000000001 00000000ffffffff 0000000000000000
[ 1930.827717][T25501] page dumped because: page_pool leak
[ 1930.833107][T25501] page_owner tracks the page as allocated
[ 1930.838894][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749270350, free_ts 1928766114926
[ 1930.856350][T25501]  post_alloc_hook+0x1f3/0x230
[ 1930.861222][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1930.866845][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1930.872071][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1930.877611][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1930.883532][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1930.888804][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1930.894207][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1930.899628][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1930.904623][T25501]  __sys_bpf+0x48d/0x810
[ 1930.908961][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1930.913405][T25501]  do_syscall_64+0xf3/0x230
[ 1930.917995][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1930.923913][T25501] page last free pid 25470 tgid 25463 stack trace:
[ 1930.930479][T25501]  free_unref_page+0xcd0/0xf00
[ 1930.935273][T25501]  vfree+0x186/0x2e0
[ 1930.939258][T25501]  translate_table+0x1ca3/0x2330
[ 1930.944229][T25501]  do_ip6t_set_ctl+0xe4c/0x1270
[ 1930.949156][T25501]  nf_setsockopt+0x295/0x2c0
[ 1930.953768][T25501]  rawv6_setsockopt+0x327/0x740
[ 1930.958671][T25501]  do_sock_setsockopt+0x3af/0x720
[ 1930.963716][T25501]  __sys_setsockopt+0x1a2/0x250
[ 1930.968652][T25501]  __x64_sys_setsockopt+0xb5/0xd0
[ 1930.973707][T25501]  do_syscall_64+0xf3/0x230
[ 1930.978278][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1930.984194][T25501] Modules linked in:
[ 1930.988158][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Not tainted 6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1930.998959][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1931.009021][T25501] Call Trace:
[ 1931.012302][T25501]  <TASK>
[ 1931.015231][T25501]  dump_stack_lvl+0x241/0x360
[ 1931.019925][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1931.025124][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1931.030239][T25501]  ? pcpu_memcg_post_alloc_hook+0x12a/0x720
[ 1931.036132][T25501]  ? __pfx_pcpu_memcg_post_alloc_hook+0x10/0x10
[ 1931.042373][T25501]  bad_page+0x166/0x1b0
[ 1931.046527][T25501]  free_unref_page+0xe9c/0xf00
[ 1931.051300][T25501]  skb_release_data+0x6dc/0x8a0
[ 1931.056192][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1931.061220][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1931.066948][T25501]  ? mark_lock+0x9a/0x360
[ 1931.071278][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1931.076316][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1931.082389][T25501]  ? mark_lock+0x9a/0x360
[ 1931.086722][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1931.091763][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1931.097749][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1931.104336][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1931.110839][T25501]  ? read_tsc+0x9/0x20
[ 1931.114907][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1931.120111][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1931.126440][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1931.132606][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1931.138940][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1931.145617][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1931.150841][T25501]  ? __phys_addr+0xba/0x170
[ 1931.155343][T25501]  ? build_skb_around+0x111/0x260
[ 1931.160369][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1931.166266][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1931.171554][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1931.177012][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1931.182942][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1931.188493][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1931.194295][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1931.199235][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1931.204532][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1931.210785][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1931.216685][T25501]  ? _copy_from_user+0xab/0xe0
[ 1931.221454][T25501]  ? bpf_test_init+0x15a/0x180
[ 1931.226214][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1931.231675][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1931.237067][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1931.242117][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1931.247952][T25501]  ? __fget_files+0x29/0x470
[ 1931.252566][T25501]  ? fput+0x1a8/0x230
[ 1931.256556][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1931.262376][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1931.267362][T25501]  __sys_bpf+0x48d/0x810
[ 1931.271611][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1931.276418][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1931.282404][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1931.288738][T25501]  ? do_syscall_64+0x100/0x230
[ 1931.293503][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1931.297922][T25501]  do_syscall_64+0xf3/0x230
[ 1931.302424][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1931.307101][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1931.313004][T25501] RIP: 0033:0x7ffa5637e719
[ 1931.317419][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1931.337038][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1931.345460][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1931.353460][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1931.361432][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1931.369403][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1931.377372][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1931.385439][T25501]  </TASK>
[ 1931.388527][T25501] Disabling lock debugging due to kernel taint
[ 1931.394712][T25501] BUG: Bad page state in process syz.4.4652  pfn:3de44
[ 1931.401614][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88803de443c0 pfn:0x3de44
[ 1931.411730][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1931.418884][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1931.427523][T25501] raw: ffff88803de443c0 0000000000000001 00000000ffffffff 0000000000000000
[ 1931.436113][T25501] page dumped because: page_pool leak
[ 1931.441537][T25501] page_owner tracks the page as allocated
[ 1931.447286][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749259425, free_ts 1928944258998
[ 1931.464716][T25501]  post_alloc_hook+0x1f3/0x230
[ 1931.469533][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1931.475096][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1931.480328][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1931.485785][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1931.491721][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1931.496968][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1931.502349][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1931.508200][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1931.513164][T25501]  __sys_bpf+0x48d/0x810
[ 1931.517472][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1931.521906][T25501]  do_syscall_64+0xf3/0x230
[ 1931.526402][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1931.532349][T25501] page last free pid 20034 tgid 20034 stack trace:
[ 1931.538872][T25501]  free_unref_page+0xcd0/0xf00
[ 1931.543630][T25501]  vfree+0x186/0x2e0
[ 1931.547593][T25501]  do_ip6t_get_ctl+0x11eb/0x1820
[ 1931.552542][T25501]  nf_getsockopt+0x299/0x2c0
[ 1931.557177][T25501]  ipv6_getsockopt+0x23e/0x360
[ 1931.561959][T25501]  tcp_getsockopt+0x163/0x1c0
[ 1931.566658][T25501]  do_sock_getsockopt+0x3c4/0x7e0
[ 1931.571713][T25501]  __sys_getsockopt+0x267/0x330
[ 1931.576571][T25501]  __x64_sys_getsockopt+0xb5/0xd0
[ 1931.581682][T25501]  do_syscall_64+0xf3/0x230
[ 1931.586199][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1931.592183][T25501] Modules linked in:
[ 1931.596108][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1931.608353][T25501] Tainted: [B]=BAD_PAGE
[ 1931.612524][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1931.622575][T25501] Call Trace:
[ 1931.625849][T25501]  <TASK>
[ 1931.628774][T25501]  dump_stack_lvl+0x241/0x360
[ 1931.633456][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1931.638656][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1931.643768][T25501]  bad_page+0x166/0x1b0
[ 1931.647926][T25501]  free_unref_page+0xe9c/0xf00
[ 1931.652691][T25501]  skb_release_data+0x6dc/0x8a0
[ 1931.657543][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1931.662559][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1931.668277][T25501]  ? mark_lock+0x9a/0x360
[ 1931.672599][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1931.677621][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1931.683684][T25501]  ? mark_lock+0x9a/0x360
[ 1931.688014][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1931.693039][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1931.699017][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1931.705597][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1931.712093][T25501]  ? read_tsc+0x9/0x20
[ 1931.716158][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1931.721353][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1931.727678][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1931.733830][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1931.740159][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1931.746839][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1931.752036][T25501]  ? __phys_addr+0xba/0x170
[ 1931.756531][T25501]  ? build_skb_around+0x111/0x260
[ 1931.761557][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1931.767446][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1931.772728][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1931.778199][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1931.784100][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1931.789648][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1931.795455][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1931.800396][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1931.805693][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1931.811937][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1931.817828][T25501]  ? _copy_from_user+0xab/0xe0
[ 1931.822586][T25501]  ? bpf_test_init+0x15a/0x180
[ 1931.827428][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1931.832878][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1931.838249][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1931.843275][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1931.849074][T25501]  ? __fget_files+0x29/0x470
[ 1931.853663][T25501]  ? fput+0x1a8/0x230
[ 1931.857643][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1931.863442][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1931.868375][T25501]  __sys_bpf+0x48d/0x810
[ 1931.872611][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1931.877372][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1931.883345][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1931.889668][T25501]  ? do_syscall_64+0x100/0x230
[ 1931.894425][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1931.898834][T25501]  do_syscall_64+0xf3/0x230
[ 1931.903358][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1931.908147][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1931.914045][T25501] RIP: 0033:0x7ffa5637e719
[ 1931.918459][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1931.938064][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1931.946476][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1931.954440][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1931.962429][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1931.970417][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1931.978379][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1931.986348][T25501]  </TASK>
[ 1931.989467][T25501] BUG: Bad page state in process syz.4.4652  pfn:3d5f8
[ 1931.996331][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88803d5f8a20 pfn:0x3d5f8
[ 1932.006446][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1932.013620][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1932.022234][T25501] raw: ffff88803d5f8a20 0000000000000001 00000000ffffffff 0000000000000000
[ 1932.030837][T25501] page dumped because: page_pool leak
[ 1932.036207][T25501] page_owner tracks the page as allocated
[ 1932.041953][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749247390, free_ts 1929388683745
[ 1932.059354][T25501]  post_alloc_hook+0x1f3/0x230
[ 1932.064175][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1932.069785][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1932.075018][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1932.080560][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1932.086462][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1932.091722][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1932.097132][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1932.102495][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1932.107478][T25501]  __sys_bpf+0x48d/0x810
[ 1932.111753][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1932.116177][T25501]  do_syscall_64+0xf3/0x230
[ 1932.120726][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1932.126643][T25501] page last free pid 25468 tgid 25468 stack trace:
[ 1932.133195][T25501]  free_unref_page+0xcd0/0xf00
[ 1932.138005][T25501]  __put_partials+0xeb/0x130
[ 1932.142611][T25501]  put_cpu_partial+0x17c/0x250
[ 1932.147431][T25501]  __slab_free+0x2ea/0x3d0
[ 1932.151854][T25501]  qlist_free_all+0x9a/0x140
[ 1932.156442][T25501]  kasan_quarantine_reduce+0x14f/0x170
[ 1932.161941][T25501]  __kasan_slab_alloc+0x23/0x80
[ 1932.166849][T25501]  kmem_cache_alloc_noprof+0x135/0x2a0
[ 1932.172321][T25501]  jbd2__journal_start+0x14d/0x5d0
[ 1932.177471][T25501]  __ext4_journal_start_sb+0x239/0x600
[ 1932.182949][T25501]  ext4_dirty_inode+0x92/0x110
[ 1932.187836][T25501]  __mark_inode_dirty+0x2ee/0xe90
[ 1932.192875][T25501]  file_update_time+0x3b3/0x430
[ 1932.197776][T25501]  ext4_page_mkwrite+0x206/0xdf0
[ 1932.199014][ T2130] wlan0: Trigger new scan to find an IBSS to join
[ 1932.202715][T25501]  do_page_mkwrite+0x198/0x480
[ 1932.213923][T25501]  handle_pte_fault+0x11fa/0x6800
[ 1932.219004][T25501] Modules linked in:
[ 1932.222935][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1932.235164][T25501] Tainted: [B]=BAD_PAGE
[ 1932.239300][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1932.249361][T25501] Call Trace:
[ 1932.252660][T25501]  <TASK>
[ 1932.255578][T25501]  dump_stack_lvl+0x241/0x360
[ 1932.260255][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1932.265476][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1932.270592][T25501]  bad_page+0x166/0x1b0
[ 1932.275000][T25501]  free_unref_page+0xe9c/0xf00
[ 1932.279769][T25501]  skb_release_data+0x6dc/0x8a0
[ 1932.284643][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1932.289687][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1932.295421][T25501]  ? mark_lock+0x9a/0x360
[ 1932.299752][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1932.304802][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1932.310892][T25501]  ? mark_lock+0x9a/0x360
[ 1932.315225][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1932.320257][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1932.326256][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1932.332872][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1932.339383][T25501]  ? read_tsc+0x9/0x20
[ 1932.343460][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1932.348665][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1932.354995][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1932.361238][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1932.367573][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1932.374247][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1932.379440][T25501]  ? __phys_addr+0xba/0x170
[ 1932.384031][T25501]  ? build_skb_around+0x111/0x260
[ 1932.389053][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1932.394943][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1932.400230][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1932.405685][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1932.411592][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1932.417145][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1932.423033][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1932.427968][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1932.433253][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1932.439491][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1932.445380][T25501]  ? _copy_from_user+0xab/0xe0
[ 1932.450145][T25501]  ? bpf_test_init+0x15a/0x180
[ 1932.454901][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1932.460367][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1932.465734][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1932.470762][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1932.476912][T25501]  ? __fget_files+0x29/0x470
[ 1932.481500][T25501]  ? fput+0x1a8/0x230
[ 1932.485471][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1932.491276][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1932.496212][T25501]  __sys_bpf+0x48d/0x810
[ 1932.500448][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1932.505205][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1932.511183][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1932.517504][T25501]  ? do_syscall_64+0x100/0x230
[ 1932.522268][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1932.526676][T25501]  do_syscall_64+0xf3/0x230
[ 1932.531173][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1932.535842][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1932.541723][T25501] RIP: 0033:0x7ffa5637e719
[ 1932.546135][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1932.565741][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1932.574154][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1932.582139][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1932.590101][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1932.598063][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1932.606024][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1932.614020][T25501]  </TASK>
[ 1932.617156][T25501] BUG: Bad page state in process syz.4.4652  pfn:69a0d
[ 1932.624021][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x3eb pfn:0x69a0d
[ 1932.633018][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1932.640180][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1932.648807][T25501] raw: 00000000000003eb 0000000000000001 00000000ffffffff 0000000000000000
[ 1932.657459][T25501] page dumped because: page_pool leak
[ 1932.662834][T25501] page_owner tracks the page as allocated
[ 1932.668589][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749235599, free_ts 1925710391573
[ 1932.686284][T25501]  post_alloc_hook+0x1f3/0x230
[ 1932.691102][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1932.696663][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1932.701900][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1932.707391][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1932.713276][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1932.718502][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1932.723904][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1932.729335][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1932.734289][T25501]  __sys_bpf+0x48d/0x810
[ 1932.738594][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1932.743028][T25501]  do_syscall_64+0xf3/0x230
[ 1932.747658][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1932.753595][T25501] page last free pid 25346 tgid 25339 stack trace:
[ 1932.760156][T25501]  free_unref_folios+0xee2/0x18a0
[ 1932.765227][T25501]  folios_put_refs+0x76c/0x860
[ 1932.770223][T25501]  truncate_inode_pages_range+0x47b/0xfc0
[ 1932.775971][T25501]  blkdev_flush_mapping+0x108/0x270
[ 1932.781253][T25501]  bdev_release+0x460/0x700
[ 1932.785794][T25501]  blkdev_release+0x15/0x20
[ 1932.790358][T25501]  __fput+0x23f/0x880
[ 1932.794368][T25501]  task_work_run+0x24f/0x310
[ 1932.799020][T25501]  do_exit+0xa2f/0x28e0
[ 1932.803192][T25501]  do_group_exit+0x207/0x2c0
[ 1932.808093][T25501]  get_signal+0x16a3/0x1740
[ 1932.812617][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1932.818229][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1932.823805][T25501]  do_syscall_64+0x100/0x230
[ 1932.828442][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1932.834346][T25501] Modules linked in:
[ 1932.838302][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1932.850622][T25501] Tainted: [B]=BAD_PAGE
[ 1932.854767][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1932.864833][T25501] Call Trace:
[ 1932.868120][T25501]  <TASK>
[ 1932.871051][T25501]  dump_stack_lvl+0x241/0x360
[ 1932.875728][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1932.880936][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1932.886041][T25501]  bad_page+0x166/0x1b0
[ 1932.890203][T25501]  free_unref_page+0xe9c/0xf00
[ 1932.895038][T25501]  skb_release_data+0x6dc/0x8a0
[ 1932.899895][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1932.904915][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1932.910633][T25501]  ? mark_lock+0x9a/0x360
[ 1932.915039][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1932.920238][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1932.926301][T25501]  ? mark_lock+0x9a/0x360
[ 1932.930627][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1932.935657][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1932.941643][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1932.948243][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1932.954772][T25501]  ? read_tsc+0x9/0x20
[ 1932.958848][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1932.964049][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1932.970381][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1932.976550][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1932.982889][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1932.989574][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1932.994772][T25501]  ? __phys_addr+0xba/0x170
[ 1932.999273][T25501]  ? build_skb_around+0x111/0x260
[ 1933.004377][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1933.010616][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1933.015903][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1933.021371][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1933.027277][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1933.032839][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1933.038650][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1933.043591][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1933.048888][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1933.055137][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1933.061034][T25501]  ? _copy_from_user+0xab/0xe0
[ 1933.065803][T25501]  ? bpf_test_init+0x15a/0x180
[ 1933.070569][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1933.076022][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1933.081388][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1933.086411][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1933.092214][T25501]  ? __fget_files+0x29/0x470
[ 1933.096810][T25501]  ? fput+0x1a8/0x230
[ 1933.100790][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1933.106588][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1933.111953][T25501]  __sys_bpf+0x48d/0x810
[ 1933.116198][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1933.120964][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1933.126958][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1933.133281][T25501]  ? do_syscall_64+0x100/0x230
[ 1933.138038][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1933.142445][T25501]  do_syscall_64+0xf3/0x230
[ 1933.146967][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1933.151639][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1933.157524][T25501] RIP: 0033:0x7ffa5637e719
[ 1933.161930][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1933.181628][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1933.190042][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1933.198005][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1933.205967][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1933.213930][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1933.221894][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1933.229862][T25501]  </TASK>
[ 1933.232988][T25501] BUG: Bad page state in process syz.4.4652  pfn:5f25c
[ 1933.239878][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88805f25cdc0 pfn:0x5f25c
[ 1933.249995][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1933.257151][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1933.265747][T25501] raw: ffff88805f25cdc0 0000000000000001 00000000ffffffff 0000000000000000
[ 1933.274386][T25501] page dumped because: page_pool leak
[ 1933.279793][T25501] page_owner tracks the page as allocated
[ 1933.285503][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749223378, free_ts 1928341935496
[ 1933.302905][T25501]  post_alloc_hook+0x1f3/0x230
[ 1933.307726][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1933.313303][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1933.318538][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1933.324010][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1933.329943][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1933.335148][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1933.340557][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1933.345944][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1933.350924][T25501]  __sys_bpf+0x48d/0x810
[ 1933.355190][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1933.359647][T25501]  do_syscall_64+0xf3/0x230
[ 1933.364164][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1933.370126][T25501] page last free pid 25438 tgid 25438 stack trace:
[ 1933.376629][T25501]  free_unref_folios+0xee2/0x18a0
[ 1933.381696][T25501]  folios_put_refs+0x76c/0x860
[ 1933.386468][T25501]  free_pages_and_swap_cache+0x2ea/0x690
[ 1933.392141][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1933.396772][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1933.401429][T25501]  exit_mmap+0x496/0xc40
[ 1933.405692][T25501]  __mmput+0x115/0x380
[ 1933.409810][T25501]  exit_mm+0x220/0x310
[ 1933.413887][T25501]  do_exit+0x9b2/0x28e0
[ 1933.418088][T25501]  do_group_exit+0x207/0x2c0
[ 1933.422706][T25501]  __x64_sys_exit_group+0x3f/0x40
[ 1933.427780][T25501]  x64_sys_call+0x2634/0x2640
[ 1933.432469][T25501]  do_syscall_64+0xf3/0x230
[ 1933.437000][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1933.442899][T25501] Modules linked in:
[ 1933.446838][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1933.459084][T25501] Tainted: [B]=BAD_PAGE
[ 1933.463222][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1933.473276][T25501] Call Trace:
[ 1933.476558][T25501]  <TASK>
[ 1933.479477][T25501]  dump_stack_lvl+0x241/0x360
[ 1933.484159][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1933.489351][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1933.494456][T25501]  bad_page+0x166/0x1b0
[ 1933.498614][T25501]  free_unref_page+0xe9c/0xf00
[ 1933.503400][T25501]  skb_release_data+0x6dc/0x8a0
[ 1933.508267][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1933.513284][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1933.518995][T25501]  ? mark_lock+0x9a/0x360
[ 1933.523310][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1933.528327][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1933.534384][T25501]  ? mark_lock+0x9a/0x360
[ 1933.538700][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1933.543715][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1933.549696][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1933.556282][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1933.562781][T25501]  ? read_tsc+0x9/0x20
[ 1933.566844][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1933.572041][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1933.578716][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1933.584869][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1933.591195][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1933.597866][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1933.603068][T25501]  ? __phys_addr+0xba/0x170
[ 1933.607564][T25501]  ? build_skb_around+0x111/0x260
[ 1933.612581][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1933.618465][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1933.623745][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1933.629199][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1933.635107][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1933.640664][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1933.646479][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1933.651778][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1933.657071][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1933.663313][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1933.669208][T25501]  ? _copy_from_user+0xab/0xe0
[ 1933.673976][T25501]  ? bpf_test_init+0x15a/0x180
[ 1933.678735][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1933.684209][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1933.689598][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1933.694629][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1933.700461][T25501]  ? __fget_files+0x29/0x470
[ 1933.705057][T25501]  ? fput+0x1a8/0x230
[ 1933.709377][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1933.715179][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1933.720116][T25501]  __sys_bpf+0x48d/0x810
[ 1933.724353][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1933.729112][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1933.735088][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1933.741411][T25501]  ? do_syscall_64+0x100/0x230
[ 1933.746167][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1933.750579][T25501]  do_syscall_64+0xf3/0x230
[ 1933.755092][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1933.759780][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1933.765724][T25501] RIP: 0033:0x7ffa5637e719
[ 1933.770166][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1933.789774][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1933.798188][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1933.806155][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1933.814122][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1933.822084][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1933.830054][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1933.838024][T25501]  </TASK>
[ 1933.841142][T25501] BUG: Bad page state in process syz.4.4652  pfn:6672d
[ 1933.841158][T10886] page_pool_release_retry() stalled pool shutdown: id 127, 2 inflight 60 sec
[ 1933.847998][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88806672dee0 pfn:0x6672d
[ 1933.866890][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1933.874026][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1933.882667][T25501] raw: ffff88806672dee0 0000000000000001 00000000ffffffff 0000000000000000
[ 1933.891294][T25501] page dumped because: page_pool leak
[ 1933.896673][T25501] page_owner tracks the page as allocated
[ 1933.902444][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749212583, free_ts 1928341940487
[ 1933.919860][T25501]  post_alloc_hook+0x1f3/0x230
[ 1933.924630][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1933.930223][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1933.935441][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1933.940949][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1933.946915][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1933.952173][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1933.957611][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1933.962994][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1933.967983][T25501]  __sys_bpf+0x48d/0x810
[ 1933.972235][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1933.976640][T25501]  do_syscall_64+0xf3/0x230
[ 1933.981178][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1933.987129][T25501] page last free pid 25438 tgid 25438 stack trace:
[ 1933.993637][T25501]  free_unref_folios+0xee2/0x18a0
[ 1933.998760][T25501]  folios_put_refs+0x76c/0x860
[ 1934.003535][T25501]  free_pages_and_swap_cache+0x2ea/0x690
[ 1934.009205][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1934.013808][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1934.018445][T25501]  exit_mmap+0x496/0xc40
[ 1934.022705][T25501]  __mmput+0x115/0x380
[ 1934.026832][T25501]  exit_mm+0x220/0x310
[ 1934.030925][T25501]  do_exit+0x9b2/0x28e0
[ 1934.035088][T25501]  do_group_exit+0x207/0x2c0
[ 1934.039735][T25501]  __x64_sys_exit_group+0x3f/0x40
[ 1934.044760][T25501]  x64_sys_call+0x2634/0x2640
[ 1934.049594][T25501]  do_syscall_64+0xf3/0x230
[ 1934.054105][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1934.060048][T25501] Modules linked in:
[ 1934.064036][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1934.076262][T25501] Tainted: [B]=BAD_PAGE
[ 1934.080400][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1934.090447][T25501] Call Trace:
[ 1934.093718][T25501]  <TASK>
[ 1934.096637][T25501]  dump_stack_lvl+0x241/0x360
[ 1934.101303][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1934.106488][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1934.111592][T25501]  bad_page+0x166/0x1b0
[ 1934.115735][T25501]  free_unref_page+0xe9c/0xf00
[ 1934.120507][T25501]  skb_release_data+0x6dc/0x8a0
[ 1934.125419][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1934.130450][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1934.136163][T25501]  ? mark_lock+0x9a/0x360
[ 1934.140480][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1934.145503][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1934.151562][T25501]  ? mark_lock+0x9a/0x360
[ 1934.155908][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1934.160956][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1934.166949][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1934.173546][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1934.180045][T25501]  ? read_tsc+0x9/0x20
[ 1934.184110][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1934.189303][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1934.195634][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1934.201790][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1934.208115][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1934.214791][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1934.219992][T25501]  ? __phys_addr+0xba/0x170
[ 1934.224486][T25501]  ? build_skb_around+0x111/0x260
[ 1934.229505][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1934.235390][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1934.240844][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1934.246296][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1934.252196][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1934.257750][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1934.263550][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1934.268484][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1934.273770][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1934.280007][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1934.285903][T25501]  ? _copy_from_user+0xab/0xe0
[ 1934.290669][T25501]  ? bpf_test_init+0x15a/0x180
[ 1934.295426][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1934.300877][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1934.306243][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1934.311266][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1934.317063][T25501]  ? __fget_files+0x29/0x470
[ 1934.321653][T25501]  ? fput+0x1a8/0x230
[ 1934.325663][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1934.331484][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1934.336425][T25501]  __sys_bpf+0x48d/0x810
[ 1934.340667][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1934.345427][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1934.351431][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1934.357755][T25501]  ? do_syscall_64+0x100/0x230
[ 1934.362510][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1934.366923][T25501]  do_syscall_64+0xf3/0x230
[ 1934.371428][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1934.376113][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1934.381997][T25501] RIP: 0033:0x7ffa5637e719
[ 1934.386408][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1934.406033][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1934.414442][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1934.422665][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1934.430628][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1934.438589][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1934.446551][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1934.454521][T25501]  </TASK>
[ 1934.457633][T25501] BUG: Bad page state in process syz.4.4652  pfn:64449
[ 1934.464488][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x28 pfn:0x64449
[ 1934.473396][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1934.480557][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1934.489187][T25501] raw: 0000000000000028 0000000000000001 00000000ffffffff 0000000000000000
[ 1934.497830][T25501] page dumped because: page_pool leak
[ 1934.503213][T25501] page_owner tracks the page as allocated
[ 1934.508992][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749195367, free_ts 1928341944997
[ 1934.526497][T25501]  post_alloc_hook+0x1f3/0x230
[ 1934.531351][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1934.536957][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1934.542175][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1934.547671][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1934.553574][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1934.558803][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1934.564184][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1934.569599][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1934.574549][T25501]  __sys_bpf+0x48d/0x810
[ 1934.578848][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1934.583278][T25501]  do_syscall_64+0xf3/0x230
[ 1934.587830][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1934.593740][T25501] page last free pid 25438 tgid 25438 stack trace:
[ 1934.600275][T25501]  free_unref_folios+0xee2/0x18a0
[ 1934.605334][T25501]  folios_put_refs+0x76c/0x860
[ 1934.610155][T25501]  free_pages_and_swap_cache+0x2ea/0x690
[ 1934.615802][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1934.620443][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1934.625039][T25501]  exit_mmap+0x496/0xc40
[ 1934.629323][T25501]  __mmput+0x115/0x380
[ 1934.633397][T25501]  exit_mm+0x220/0x310
[ 1934.637510][T25501]  do_exit+0x9b2/0x28e0
[ 1934.641677][T25501]  do_group_exit+0x207/0x2c0
[ 1934.646273][T25501]  __x64_sys_exit_group+0x3f/0x40
[ 1934.651327][T25501]  x64_sys_call+0x2634/0x2640
[ 1934.655995][T25501]  do_syscall_64+0xf3/0x230
[ 1934.660520][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1934.666429][T25501] Modules linked in:
[ 1934.670363][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1934.682626][T25501] Tainted: [B]=BAD_PAGE
[ 1934.686769][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1934.696852][T25501] Call Trace:
[ 1934.700125][T25501]  <TASK>
[ 1934.703072][T25501]  dump_stack_lvl+0x241/0x360
[ 1934.708095][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1934.713283][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1934.718391][T25501]  bad_page+0x166/0x1b0
[ 1934.722577][T25501]  free_unref_page+0xe9c/0xf00
[ 1934.727357][T25501]  skb_release_data+0x6dc/0x8a0
[ 1934.732230][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1934.737252][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1934.742968][T25501]  ? mark_lock+0x9a/0x360
[ 1934.747288][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1934.752398][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1934.758460][T25501]  ? mark_lock+0x9a/0x360
[ 1934.762909][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1934.767948][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1934.773933][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1934.780532][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1934.787040][T25501]  ? read_tsc+0x9/0x20
[ 1934.791104][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1934.796299][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1934.802623][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1934.808782][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1934.815113][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1934.821785][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1934.826983][T25501]  ? __phys_addr+0xba/0x170
[ 1934.831484][T25501]  ? build_skb_around+0x111/0x260
[ 1934.836503][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1934.842387][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1934.847677][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1934.853130][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1934.859026][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1934.864565][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1934.870360][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1934.875290][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1934.880573][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1934.886817][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1934.892708][T25501]  ? _copy_from_user+0xab/0xe0
[ 1934.897467][T25501]  ? bpf_test_init+0x15a/0x180
[ 1934.902221][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1934.907673][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1934.913063][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1934.918106][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1934.923920][T25501]  ? __fget_files+0x29/0x470
[ 1934.928515][T25501]  ? fput+0x1a8/0x230
[ 1934.932490][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1934.938289][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1934.943223][T25501]  __sys_bpf+0x48d/0x810
[ 1934.947466][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1934.952224][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1934.958199][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1934.964521][T25501]  ? do_syscall_64+0x100/0x230
[ 1934.969277][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1934.973685][T25501]  do_syscall_64+0xf3/0x230
[ 1934.978183][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1934.982883][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1934.988773][T25501] RIP: 0033:0x7ffa5637e719
[ 1934.993185][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1935.012786][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1935.021199][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1935.029169][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1935.037132][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1935.045095][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1935.053056][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1935.061029][T25501]  </TASK>
[ 1935.064139][T25501] BUG: Bad page state in process syz.4.4652  pfn:341b3
[ 1935.071042][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880341b3a00 pfn:0x341b3
[ 1935.081344][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1935.088513][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1935.097146][T25501] raw: ffff8880341b3a00 0000000000000001 00000000ffffffff 0000000000000000
[ 1935.105737][T25501] page dumped because: page_pool leak
[ 1935.111152][T25501] page_owner tracks the page as allocated
[ 1935.116917][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749183581, free_ts 1930726178201
[ 1935.134341][T25501]  post_alloc_hook+0x1f3/0x230
[ 1935.139141][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1935.144860][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1935.150092][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1935.155562][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1935.161488][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1935.166690][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1935.172123][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1935.177537][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1935.182490][T25501]  __sys_bpf+0x48d/0x810
[ 1935.186756][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1935.191223][T25501]  do_syscall_64+0xf3/0x230
[ 1935.195718][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1935.201661][T25501] page last free pid 25494 tgid 25493 stack trace:
[ 1935.208190][T25501]  free_unref_folios+0xee2/0x18a0
[ 1935.213229][T25501]  folios_put_refs+0x76c/0x860
[ 1935.218046][T25501]  free_pages_and_swap_cache+0x2ea/0x690
[ 1935.223705][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1935.228353][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1935.233067][T25501]  exit_mmap+0x496/0xc40
[ 1935.237359][T25501]  __mmput+0x115/0x380
[ 1935.241435][T25501]  exit_mm+0x220/0x310
[ 1935.245511][T25501]  do_exit+0x9b2/0x28e0
[ 1935.249700][T25501]  do_group_exit+0x207/0x2c0
[ 1935.254308][T25501]  get_signal+0x16a3/0x1740
[ 1935.258871][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1935.264430][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1935.270009][T25501]  do_syscall_64+0x100/0x230
[ 1935.274612][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1935.280572][T25501] Modules linked in:
[ 1935.284475][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1935.296708][T25501] Tainted: [B]=BAD_PAGE
[ 1935.300854][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1935.310907][T25501] Call Trace:
[ 1935.314176][T25501]  <TASK>
[ 1935.317110][T25501]  dump_stack_lvl+0x241/0x360
[ 1935.321795][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1935.327005][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1935.332115][T25501]  bad_page+0x166/0x1b0
[ 1935.336264][T25501]  free_unref_page+0xe9c/0xf00
[ 1935.341039][T25501]  skb_release_data+0x6dc/0x8a0
[ 1935.345954][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1935.351001][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1935.356736][T25501]  ? mark_lock+0x9a/0x360
[ 1935.361061][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1935.366106][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1935.372192][T25501]  ? mark_lock+0x9a/0x360
[ 1935.376527][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1935.381557][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1935.387550][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1935.394134][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1935.400629][T25501]  ? read_tsc+0x9/0x20
[ 1935.404690][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1935.409889][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1935.416209][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1935.422376][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1935.428703][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1935.435391][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1935.440583][T25501]  ? __phys_addr+0xba/0x170
[ 1935.445082][T25501]  ? build_skb_around+0x111/0x260
[ 1935.450101][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1935.455984][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1935.461280][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1935.466744][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1935.472658][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1935.478211][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1935.484015][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1935.488962][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1935.494249][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1935.500494][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1935.506383][T25501]  ? _copy_from_user+0xab/0xe0
[ 1935.511144][T25501]  ? bpf_test_init+0x15a/0x180
[ 1935.515898][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1935.521348][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1935.526717][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1935.531753][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1935.537555][T25501]  ? __fget_files+0x29/0x470
[ 1935.542147][T25501]  ? fput+0x1a8/0x230
[ 1935.546118][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1935.551914][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1935.556853][T25501]  __sys_bpf+0x48d/0x810
[ 1935.561087][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1935.565941][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1935.571920][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1935.578250][T25501]  ? do_syscall_64+0x100/0x230
[ 1935.583012][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1935.587426][T25501]  do_syscall_64+0xf3/0x230
[ 1935.591925][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1935.596609][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1935.602492][T25501] RIP: 0033:0x7ffa5637e719
[ 1935.606937][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1935.626560][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1935.635003][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1935.642992][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1935.650972][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1935.658978][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1935.666947][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1935.674931][T25501]  </TASK>
[ 1935.678052][T25501] BUG: Bad page state in process syz.4.4652  pfn:4ed31
[ 1935.684936][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x7f pfn:0x4ed31
[ 1935.693847][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1935.701067][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1935.709710][T25501] raw: 000000000000007f 0000000000000001 00000000ffffffff 0000000000000000
[ 1935.718364][T25501] page dumped because: page_pool leak
[ 1935.723741][T25501] page_owner tracks the page as allocated
[ 1935.729509][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749172278, free_ts 1930726187258
[ 1935.746933][T25501]  post_alloc_hook+0x1f3/0x230
[ 1935.751722][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1935.757304][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1935.762518][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1935.768001][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1935.773885][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1935.779104][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1935.784485][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1935.789937][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1935.794884][T25501]  __sys_bpf+0x48d/0x810
[ 1935.799261][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1935.803705][T25501]  do_syscall_64+0xf3/0x230
[ 1935.808293][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1935.814293][T25501] page last free pid 25494 tgid 25493 stack trace:
[ 1935.820852][T25501]  free_unref_folios+0xee2/0x18a0
[ 1935.825908][T25501]  folios_put_refs+0x76c/0x860
[ 1935.830730][T25501]  free_pages_and_swap_cache+0x2ea/0x690
[ 1935.836379][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1935.841024][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1935.845629][T25501]  exit_mmap+0x496/0xc40
[ 1935.849916][T25501]  __mmput+0x115/0x380
[ 1935.853997][T25501]  exit_mm+0x220/0x310
[ 1935.858119][T25501]  do_exit+0x9b2/0x28e0
[ 1935.862278][T25501]  do_group_exit+0x207/0x2c0
[ 1935.866910][T25501]  get_signal+0x16a3/0x1740
[ 1935.871429][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1935.877035][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1935.882602][T25501]  do_syscall_64+0x100/0x230
[ 1935.887254][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1935.893170][T25501] Modules linked in:
[ 1935.897139][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1935.909392][T25501] Tainted: [B]=BAD_PAGE
[ 1935.913550][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1935.923601][T25501] Call Trace:
[ 1935.926875][T25501]  <TASK>
[ 1935.929797][T25501]  dump_stack_lvl+0x241/0x360
[ 1935.934476][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1935.939682][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1935.944810][T25501]  bad_page+0x166/0x1b0
[ 1935.948964][T25501]  free_unref_page+0xe9c/0xf00
[ 1935.953726][T25501]  skb_release_data+0x6dc/0x8a0
[ 1935.958590][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1935.963641][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1935.969399][T25501]  ? mark_lock+0x9a/0x360
[ 1935.973725][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1935.978747][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1935.984819][T25501]  ? mark_lock+0x9a/0x360
[ 1935.989159][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1935.994226][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1936.000210][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1936.006797][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1936.013318][T25501]  ? read_tsc+0x9/0x20
[ 1936.017399][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1936.022596][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1936.028920][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1936.035078][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1936.041405][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1936.048081][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1936.053276][T25501]  ? __phys_addr+0xba/0x170
[ 1936.057775][T25501]  ? build_skb_around+0x111/0x260
[ 1936.062794][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1936.068694][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1936.073982][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1936.079433][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1936.085323][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1936.090866][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1936.096751][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1936.101705][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1936.106994][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1936.113240][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1936.119130][T25501]  ? _copy_from_user+0xab/0xe0
[ 1936.123892][T25501]  ? bpf_test_init+0x15a/0x180
[ 1936.128646][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1936.134101][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1936.139473][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1936.144499][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1936.150297][T25501]  ? __fget_files+0x29/0x470
[ 1936.154884][T25501]  ? fput+0x1a8/0x230
[ 1936.158859][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1936.164664][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1936.169601][T25501]  __sys_bpf+0x48d/0x810
[ 1936.173836][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1936.178593][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1936.184568][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1936.190892][T25501]  ? do_syscall_64+0x100/0x230
[ 1936.195652][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1936.200068][T25501]  do_syscall_64+0xf3/0x230
[ 1936.204565][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1936.209252][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1936.215141][T25501] RIP: 0033:0x7ffa5637e719
[ 1936.219551][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1936.239153][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1936.247567][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1936.255534][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1936.263510][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1936.271475][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1936.279441][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1936.287421][T25501]  </TASK>
[ 1936.290529][T25501] BUG: Bad page state in process syz.4.4652  pfn:5cf7f
[ 1936.297423][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1b2 pfn:0x5cf7f
[ 1936.306376][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1936.313535][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1936.322191][T25501] raw: 00000000000001b2 0000000000000001 00000000ffffffff 0000000000000000
[ 1936.330824][T25501] page dumped because: page_pool leak
[ 1936.336206][T25501] page_owner tracks the page as allocated
[ 1936.341968][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749160761, free_ts 1930726250966
[ 1936.359416][T25501]  post_alloc_hook+0x1f3/0x230
[ 1936.364190][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1936.369796][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1936.375014][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1936.380543][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1936.386449][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1936.391777][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1936.397223][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1936.402608][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1936.407599][T25501]  __sys_bpf+0x48d/0x810
[ 1936.411869][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1936.416280][T25501]  do_syscall_64+0xf3/0x230
[ 1936.420823][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1936.426735][T25501] page last free pid 25494 tgid 25493 stack trace:
[ 1936.433268][T25501]  free_unref_folios+0xee2/0x18a0
[ 1936.438348][T25501]  folios_put_refs+0x76c/0x860
[ 1936.443138][T25501]  free_pages_and_swap_cache+0x5c8/0x690
[ 1936.448865][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1936.453483][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1936.458122][T25501]  exit_mmap+0x496/0xc40
[ 1936.462372][T25501]  __mmput+0x115/0x380
[ 1936.466429][T25501]  exit_mm+0x220/0x310
[ 1936.470551][T25501]  do_exit+0x9b2/0x28e0
[ 1936.474733][T25501]  do_group_exit+0x207/0x2c0
[ 1936.479356][T25501]  get_signal+0x16a3/0x1740
[ 1936.483870][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1936.489454][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1936.495097][T25501]  do_syscall_64+0x100/0x230
[ 1936.499754][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1936.505655][T25501] Modules linked in:
[ 1936.509854][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1936.522101][T25501] Tainted: [B]=BAD_PAGE
[ 1936.526237][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1936.536296][T25501] Call Trace:
[ 1936.539568][T25501]  <TASK>
[ 1936.542498][T25501]  dump_stack_lvl+0x241/0x360
[ 1936.547196][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1936.552412][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1936.557517][T25501]  bad_page+0x166/0x1b0
[ 1936.561664][T25501]  free_unref_page+0xe9c/0xf00
[ 1936.566785][T25501]  skb_release_data+0x6dc/0x8a0
[ 1936.571667][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1936.576694][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1936.582413][T25501]  ? mark_lock+0x9a/0x360
[ 1936.586735][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1936.591759][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1936.597835][T25501]  ? mark_lock+0x9a/0x360
[ 1936.602157][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1936.607183][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1936.613170][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1936.619748][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1936.626243][T25501]  ? read_tsc+0x9/0x20
[ 1936.630306][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1936.635499][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1936.641835][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1936.648007][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1936.654345][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1936.661024][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1936.666225][T25501]  ? __phys_addr+0xba/0x170
[ 1936.670724][T25501]  ? build_skb_around+0x111/0x260
[ 1936.675744][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1936.681626][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1936.687340][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1936.692789][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1936.698682][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1936.704222][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1936.710019][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1936.714950][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1936.720252][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1936.726514][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1936.732429][T25501]  ? _copy_from_user+0xab/0xe0
[ 1936.737199][T25501]  ? bpf_test_init+0x15a/0x180
[ 1936.741975][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1936.747450][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1936.752841][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1936.757889][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1936.763705][T25501]  ? __fget_files+0x29/0x470
[ 1936.768328][T25501]  ? fput+0x1a8/0x230
[ 1936.772340][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1936.778151][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1936.783096][T25501]  __sys_bpf+0x48d/0x810
[ 1936.787335][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1936.792098][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1936.798081][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1936.804406][T25501]  ? do_syscall_64+0x100/0x230
[ 1936.809600][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1936.814020][T25501]  do_syscall_64+0xf3/0x230
[ 1936.818518][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1936.823189][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1936.829074][T25501] RIP: 0033:0x7ffa5637e719
[ 1936.833481][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1936.853097][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1936.861514][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1936.869481][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1936.877447][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1936.885407][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1936.893369][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1936.901342][T25501]  </TASK>
[ 1936.904447][T25501] BUG: Bad page state in process syz.4.4652  pfn:24de2
[ 1936.911352][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x37 pfn:0x24de2
[ 1936.920235][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1936.927381][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1936.935970][T25501] raw: 0000000000000037 0000000000000001 00000000ffffffff 0000000000000000
[ 1936.944567][T25501] page dumped because: page_pool leak
[ 1936.949964][T25501] page_owner tracks the page as allocated
[ 1936.955691][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749150119, free_ts 1930726262201
[ 1936.973111][T25501]  post_alloc_hook+0x1f3/0x230
[ 1936.977928][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1936.983495][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1936.988746][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1936.994220][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1937.000151][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1937.005356][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1937.010763][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1937.016149][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1937.021130][T25501]  __sys_bpf+0x48d/0x810
[ 1937.025389][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1937.029860][T25501]  do_syscall_64+0xf3/0x230
[ 1937.034374][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1937.040316][T25501] page last free pid 25494 tgid 25493 stack trace:
[ 1937.046851][T25501]  free_unref_folios+0xee2/0x18a0
[ 1937.051912][T25501]  folios_put_refs+0x76c/0x860
[ 1937.056695][T25501]  free_pages_and_swap_cache+0x5c8/0x690
[ 1937.062399][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1937.067046][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1937.071665][T25501]  exit_mmap+0x496/0xc40
[ 1937.075898][T25501]  __mmput+0x115/0x380
[ 1937.080002][T25501]  exit_mm+0x220/0x310
[ 1937.084079][T25501]  do_exit+0x9b2/0x28e0
[ 1937.088369][T25501]  do_group_exit+0x207/0x2c0
[ 1937.092970][T25501]  get_signal+0x16a3/0x1740
[ 1937.097506][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1937.103059][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1937.108638][T25501]  do_syscall_64+0x100/0x230
[ 1937.113234][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1937.119166][T25501] Modules linked in:
[ 1937.123065][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1937.135293][T25501] Tainted: [B]=BAD_PAGE
[ 1937.139427][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1937.149469][T25501] Call Trace:
[ 1937.152736][T25501]  <TASK>
[ 1937.155655][T25501]  dump_stack_lvl+0x241/0x360
[ 1937.160327][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1937.165513][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1937.170619][T25501]  bad_page+0x166/0x1b0
[ 1937.174760][T25501]  free_unref_page+0xe9c/0xf00
[ 1937.179523][T25501]  skb_release_data+0x6dc/0x8a0
[ 1937.184381][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1937.189404][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1937.195120][T25501]  ? mark_lock+0x9a/0x360
[ 1937.199441][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1937.204464][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1937.210529][T25501]  ? mark_lock+0x9a/0x360
[ 1937.214855][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1937.219887][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1937.225865][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1937.232445][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1937.238946][T25501]  ? read_tsc+0x9/0x20
[ 1937.243011][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1937.248208][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1937.254531][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1937.260685][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1937.267014][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1937.273692][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1937.278890][T25501]  ? __phys_addr+0xba/0x170
[ 1937.283386][T25501]  ? build_skb_around+0x111/0x260
[ 1937.288404][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1937.294290][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1937.299577][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1937.305028][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1937.310922][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1937.316458][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1937.322251][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1937.327183][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1937.332467][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1937.338705][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1937.344597][T25501]  ? _copy_from_user+0xab/0xe0
[ 1937.349355][T25501]  ? bpf_test_init+0x15a/0x180
[ 1937.354110][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1937.359576][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1937.364944][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1937.369970][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1937.375768][T25501]  ? __fget_files+0x29/0x470
[ 1937.380357][T25501]  ? fput+0x1a8/0x230
[ 1937.384350][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1937.390173][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1937.395123][T25501]  __sys_bpf+0x48d/0x810
[ 1937.399365][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1937.404128][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1937.410107][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1937.416434][T25501]  ? do_syscall_64+0x100/0x230
[ 1937.421192][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1937.425606][T25501]  do_syscall_64+0xf3/0x230
[ 1937.430111][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1937.434790][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1937.440675][T25501] RIP: 0033:0x7ffa5637e719
[ 1937.445087][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1937.464687][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1937.473748][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1937.481721][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1937.489687][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1937.497673][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1937.505636][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1937.513605][T25501]  </TASK>
[ 1937.516719][T25501] BUG: Bad page state in process syz.4.4652  pfn:7efdb
[ 1937.523628][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x3 pfn:0x7efdb
[ 1937.532438][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1937.539595][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1937.548223][T25501] raw: 0000000000000003 0000000000000001 00000000ffffffff 0000000000000000
[ 1937.556846][T25501] page dumped because: page_pool leak
[ 1937.562216][T25501] page_owner tracks the page as allocated
[ 1937.568125][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749137551, free_ts 1930726271454
[ 1937.585510][T25501]  post_alloc_hook+0x1f3/0x230
[ 1937.590301][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1937.595840][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1937.601089][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1937.606554][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1937.612482][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1937.617691][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1937.623055][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1937.628476][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1937.633432][T25501]  __sys_bpf+0x48d/0x810
[ 1937.637706][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1937.642121][T25501]  do_syscall_64+0xf3/0x230
[ 1937.646663][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1937.652610][T25501] page last free pid 25494 tgid 25493 stack trace:
[ 1937.659139][T25501]  free_unref_folios+0xee2/0x18a0
[ 1937.664158][T25501]  folios_put_refs+0x76c/0x860
[ 1937.668972][T25501]  free_pages_and_swap_cache+0x5c8/0x690
[ 1937.674621][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1937.679291][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1937.683939][T25501]  exit_mmap+0x496/0xc40
[ 1937.688239][T25501]  __mmput+0x115/0x380
[ 1937.692318][T25501]  exit_mm+0x220/0x310
[ 1937.696373][T25501]  do_exit+0x9b2/0x28e0
[ 1937.700554][T25501]  do_group_exit+0x207/0x2c0
[ 1937.705150][T25501]  get_signal+0x16a3/0x1740
[ 1937.709679][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1937.715252][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1937.720861][T25501]  do_syscall_64+0x100/0x230
[ 1937.725466][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1937.731418][T25501] Modules linked in:
[ 1937.735353][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1937.747620][T25501] Tainted: [B]=BAD_PAGE
[ 1937.751770][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1937.761816][T25501] Call Trace:
[ 1937.765094][T25501]  <TASK>
[ 1937.768022][T25501]  dump_stack_lvl+0x241/0x360
[ 1937.772694][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1937.777897][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1937.783004][T25501]  bad_page+0x166/0x1b0
[ 1937.787172][T25501]  free_unref_page+0xe9c/0xf00
[ 1937.791989][T25501]  skb_release_data+0x6dc/0x8a0
[ 1937.796864][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1937.801901][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1937.807636][T25501]  ? mark_lock+0x9a/0x360
[ 1937.811995][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1937.817028][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1937.823092][T25501]  ? mark_lock+0x9a/0x360
[ 1937.827409][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1937.832427][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1937.838416][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1937.845024][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1937.851528][T25501]  ? read_tsc+0x9/0x20
[ 1937.855604][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1937.860802][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1937.867127][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1937.873280][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1937.879632][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1937.886310][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1937.891502][T25501]  ? __phys_addr+0xba/0x170
[ 1937.895998][T25501]  ? build_skb_around+0x111/0x260
[ 1937.901020][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1937.906908][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1937.912190][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1937.917639][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1937.923529][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1937.929066][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1937.934863][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1937.939793][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1937.945074][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1937.951310][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1937.957198][T25501]  ? _copy_from_user+0xab/0xe0
[ 1937.961958][T25501]  ? bpf_test_init+0x15a/0x180
[ 1937.966709][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1937.972156][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1937.977529][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1937.982562][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1937.988460][T25501]  ? __fget_files+0x29/0x470
[ 1937.993051][T25501]  ? fput+0x1a8/0x230
[ 1937.997025][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1938.002828][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1938.007761][T25501]  __sys_bpf+0x48d/0x810
[ 1938.011995][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1938.016753][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1938.022737][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1938.029063][T25501]  ? do_syscall_64+0x100/0x230
[ 1938.033822][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1938.038230][T25501]  do_syscall_64+0xf3/0x230
[ 1938.042724][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1938.047402][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1938.053289][T25501] RIP: 0033:0x7ffa5637e719
[ 1938.057706][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1938.077301][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1938.085708][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1938.093693][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1938.101657][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1938.109620][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1938.117579][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1938.125546][T25501]  </TASK>
[ 1938.128652][T25501] BUG: Bad page state in process syz.4.4652  pfn:69740
[ 1938.135509][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1b1 pfn:0x69740
[ 1938.144490][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1938.151655][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1938.160280][T25501] raw: 00000000000001b1 0000000000000001 00000000ffffffff 0000000000000000
[ 1938.168901][T25501] page dumped because: page_pool leak
[ 1938.174255][T25501] page_owner tracks the page as allocated
[ 1938.180014][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749084337, free_ts 1930726280338
[ 1938.197391][T25501]  post_alloc_hook+0x1f3/0x230
[ 1938.202155][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1938.207732][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1938.212941][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1938.218413][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1938.224296][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1938.229509][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1938.234871][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1938.240254][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1938.245180][T25501]  __sys_bpf+0x48d/0x810
[ 1938.249456][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1938.253882][T25501]  do_syscall_64+0xf3/0x230
[ 1938.258434][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1938.264411][T25501] page last free pid 25494 tgid 25493 stack trace:
[ 1938.270947][T25501]  free_unref_folios+0xee2/0x18a0
[ 1938.275987][T25501]  folios_put_refs+0x76c/0x860
[ 1938.280810][T25501]  free_pages_and_swap_cache+0x5c8/0x690
[ 1938.286462][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1938.291108][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1938.295717][T25501]  exit_mmap+0x496/0xc40
[ 1938.299978][T25501]  __mmput+0x115/0x380
[ 1938.304037][T25501]  exit_mm+0x220/0x310
[ 1938.308131][T25501]  do_exit+0x9b2/0x28e0
[ 1938.312291][T25501]  do_group_exit+0x207/0x2c0
[ 1938.316898][T25501]  get_signal+0x16a3/0x1740
[ 1938.321389][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1938.326964][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1938.332526][T25501]  do_syscall_64+0x100/0x230
[ 1938.337161][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1938.343060][T25501] Modules linked in:
[ 1938.346993][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1938.359252][T25501] Tainted: [B]=BAD_PAGE
[ 1938.363408][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1938.373556][T25501] Call Trace:
[ 1938.376839][T25501]  <TASK>
[ 1938.379770][T25501]  dump_stack_lvl+0x241/0x360
[ 1938.384441][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1938.389642][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1938.394749][T25501]  bad_page+0x166/0x1b0
[ 1938.398910][T25501]  free_unref_page+0xe9c/0xf00
[ 1938.403667][T25501]  skb_release_data+0x6dc/0x8a0
[ 1938.408520][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1938.413544][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1938.419273][T25501]  ? mark_lock+0x9a/0x360
[ 1938.423595][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1938.428622][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1938.434688][T25501]  ? mark_lock+0x9a/0x360
[ 1938.439010][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1938.444044][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1938.450022][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1938.456625][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1938.463128][T25501]  ? read_tsc+0x9/0x20
[ 1938.467199][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1938.472394][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1938.478717][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1938.484876][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1938.491202][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1938.497964][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1938.503157][T25501]  ? __phys_addr+0xba/0x170
[ 1938.507652][T25501]  ? build_skb_around+0x111/0x260
[ 1938.512669][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1938.518554][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1938.523836][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1938.529286][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1938.535173][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1938.540710][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1938.546506][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1938.551442][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1938.556733][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1938.562991][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1938.568903][T25501]  ? _copy_from_user+0xab/0xe0
[ 1938.573682][T25501]  ? bpf_test_init+0x15a/0x180
[ 1938.578442][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1938.583903][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1938.589277][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1938.594303][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1938.600108][T25501]  ? __fget_files+0x29/0x470
[ 1938.604701][T25501]  ? fput+0x1a8/0x230
[ 1938.608698][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1938.614522][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1938.619480][T25501]  __sys_bpf+0x48d/0x810
[ 1938.623732][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1938.628501][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1938.634478][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1938.640803][T25501]  ? do_syscall_64+0x100/0x230
[ 1938.645565][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1938.649984][T25501]  do_syscall_64+0xf3/0x230
[ 1938.654483][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1938.659158][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1938.665073][T25501] RIP: 0033:0x7ffa5637e719
[ 1938.669486][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1938.689085][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1938.697497][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1938.705460][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1938.713433][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1938.721404][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1938.729369][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1938.737337][T25501]  </TASK>
[ 1938.740466][T25501] BUG: Bad page state in process syz.4.4652  pfn:52ccc
[ 1938.747370][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888052ccddc0 pfn:0x52ccc
[ 1938.757491][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1938.764637][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1938.773268][T25501] raw: ffff888052ccddc0 0000000000000001 00000000ffffffff 0000000000000000
[ 1938.781896][T25501] page dumped because: page_pool leak
[ 1938.787299][T25501] page_owner tracks the page as allocated
[ 1938.793023][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749072590, free_ts 1930726289145
[ 1938.810438][T25501]  post_alloc_hook+0x1f3/0x230
[ 1938.815198][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1938.820798][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1938.826018][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1938.831516][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1938.837457][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1938.842667][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1938.848074][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1938.853457][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1938.858450][T25501]  __sys_bpf+0x48d/0x810
[ 1938.862701][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1938.867163][T25501]  do_syscall_64+0xf3/0x230
[ 1938.871673][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1938.877677][T25501] page last free pid 25494 tgid 25493 stack trace:
[ 1938.884184][T25501]  free_unref_folios+0xee2/0x18a0
[ 1938.889249][T25501]  folios_put_refs+0x76c/0x860
[ 1938.894028][T25501]  free_pages_and_swap_cache+0x5c8/0x690
[ 1938.899717][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1938.904333][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1938.909018][T25501]  exit_mmap+0x496/0xc40
[ 1938.913278][T25501]  __mmput+0x115/0x380
[ 1938.917411][T25501]  exit_mm+0x220/0x310
[ 1938.921486][T25501]  do_exit+0x9b2/0x28e0
[ 1938.925643][T25501]  do_group_exit+0x207/0x2c0
[ 1938.930257][T25501]  get_signal+0x16a3/0x1740
[ 1938.934769][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1938.940342][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1938.945913][T25501]  do_syscall_64+0x100/0x230
[ 1938.950533][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1938.956458][T25501] Modules linked in:
[ 1938.960390][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1938.972633][T25501] Tainted: [B]=BAD_PAGE
[ 1938.976772][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1938.986828][T25501] Call Trace:
[ 1938.990094][T25501]  <TASK>
[ 1938.993013][T25501]  dump_stack_lvl+0x241/0x360
[ 1938.997680][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1939.002873][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1939.007995][T25501]  bad_page+0x166/0x1b0
[ 1939.012139][T25501]  free_unref_page+0xe9c/0xf00
[ 1939.016904][T25501]  skb_release_data+0x6dc/0x8a0
[ 1939.021762][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1939.026782][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1939.032512][T25501]  ? mark_lock+0x9a/0x360
[ 1939.036832][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1939.041850][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1939.047917][T25501]  ? mark_lock+0x9a/0x360
[ 1939.052242][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1939.057268][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1939.063243][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1939.069829][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1939.076334][T25501]  ? read_tsc+0x9/0x20
[ 1939.080401][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1939.085600][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1939.091924][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1939.098082][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1939.104403][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1939.111082][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1939.116278][T25501]  ? __phys_addr+0xba/0x170
[ 1939.120770][T25501]  ? build_skb_around+0x111/0x260
[ 1939.125790][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1939.131681][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1939.136965][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1939.142419][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1939.148311][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1939.153849][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1939.159646][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1939.164576][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1939.169860][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1939.176101][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1939.181988][T25501]  ? _copy_from_user+0xab/0xe0
[ 1939.186747][T25501]  ? bpf_test_init+0x15a/0x180
[ 1939.191506][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1939.196957][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1939.202323][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1939.207353][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1939.213169][T25501]  ? __fget_files+0x29/0x470
[ 1939.217765][T25501]  ? fput+0x1a8/0x230
[ 1939.221740][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1939.227541][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1939.232474][T25501]  __sys_bpf+0x48d/0x810
[ 1939.236709][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1939.241466][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1939.247452][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1939.253773][T25501]  ? do_syscall_64+0x100/0x230
[ 1939.258530][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1939.262939][T25501]  do_syscall_64+0xf3/0x230
[ 1939.267442][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1939.272115][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1939.277999][T25501] RIP: 0033:0x7ffa5637e719
[ 1939.282405][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1939.302000][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1939.310411][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1939.318379][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1939.326342][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1939.334310][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1939.342272][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1939.350241][T25501]  </TASK>
[ 1939.353343][T25501] BUG: Bad page state in process syz.4.4652  pfn:28a6a
[ 1939.360250][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2fd pfn:0x28a6a
[ 1939.369226][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1939.376378][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1939.385000][T25501] raw: 00000000000002fd 0000000000000001 00000000ffffffff 0000000000000000
[ 1939.393646][T25501] page dumped because: page_pool leak
[ 1939.399047][T25501] page_owner tracks the page as allocated
[ 1939.404766][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749061022, free_ts 1930726336008
[ 1939.422174][T25501]  post_alloc_hook+0x1f3/0x230
[ 1939.426991][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1939.432550][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1939.437869][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1939.443350][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1939.449276][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1939.454484][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1939.459895][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1939.465274][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1939.470251][T25501]  __sys_bpf+0x48d/0x810
[ 1939.474502][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1939.479036][T25501]  do_syscall_64+0xf3/0x230
[ 1939.483572][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1939.489497][T25501] page last free pid 25494 tgid 25493 stack trace:
[ 1939.495997][T25501]  free_unref_folios+0xee2/0x18a0
[ 1939.501058][T25501]  folios_put_refs+0x76c/0x860
[ 1939.505827][T25501]  free_pages_and_swap_cache+0x5c8/0x690
[ 1939.511508][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1939.516118][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1939.520767][T25501]  exit_mmap+0x496/0xc40
[ 1939.525032][T25501]  __mmput+0x115/0x380
[ 1939.529151][T25501]  exit_mm+0x220/0x310
[ 1939.533220][T25501]  do_exit+0x9b2/0x28e0
[ 1939.537408][T25501]  do_group_exit+0x207/0x2c0
[ 1939.541999][T25501]  get_signal+0x16a3/0x1740
[ 1939.546489][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1939.552066][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1939.557634][T25501]  do_syscall_64+0x100/0x230
[ 1939.562214][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1939.568143][T25501] Modules linked in:
[ 1939.572056][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1939.584293][T25501] Tainted: [B]=BAD_PAGE
[ 1939.588461][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1939.598546][T25501] Call Trace:
[ 1939.601862][T25501]  <TASK>
[ 1939.604797][T25501]  dump_stack_lvl+0x241/0x360
[ 1939.609468][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1939.614662][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1939.619779][T25501]  bad_page+0x166/0x1b0
[ 1939.623940][T25501]  free_unref_page+0xe9c/0xf00
[ 1939.628702][T25501]  skb_release_data+0x6dc/0x8a0
[ 1939.633549][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1939.638562][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1939.644276][T25501]  ? mark_lock+0x9a/0x360
[ 1939.648598][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1939.653634][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1939.659730][T25501]  ? mark_lock+0x9a/0x360
[ 1939.664057][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1939.669078][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1939.675054][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1939.681646][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1939.688160][T25501]  ? read_tsc+0x9/0x20
[ 1939.692241][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1939.697453][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1939.703785][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1939.709946][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1939.716278][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1939.722968][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1939.728182][T25501]  ? __phys_addr+0xba/0x170
[ 1939.732700][T25501]  ? build_skb_around+0x111/0x260
[ 1939.737731][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1939.743627][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1939.748923][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1939.754388][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1939.760284][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1939.765829][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1939.771632][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1939.776578][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1939.781883][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1939.788139][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1939.794038][T25501]  ? _copy_from_user+0xab/0xe0
[ 1939.798801][T25501]  ? bpf_test_init+0x15a/0x180
[ 1939.803558][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1939.809013][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1939.814378][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1939.819400][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1939.825200][T25501]  ? __fget_files+0x29/0x470
[ 1939.829796][T25501]  ? fput+0x1a8/0x230
[ 1939.833944][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1939.839747][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1939.844681][T25501]  __sys_bpf+0x48d/0x810
[ 1939.848915][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1939.853674][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1939.859652][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1939.865975][T25501]  ? do_syscall_64+0x100/0x230
[ 1939.870733][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1939.875143][T25501]  do_syscall_64+0xf3/0x230
[ 1939.879641][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1939.884312][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1939.890285][T25501] RIP: 0033:0x7ffa5637e719
[ 1939.894691][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1939.914297][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1939.922703][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1939.930762][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1939.938726][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1939.946689][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1939.954658][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1939.962625][T25501]  </TASK>
[ 1939.965737][T25501] BUG: Bad page state in process syz.4.4652  pfn:56b68
[ 1939.972643][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2f9 pfn:0x56b68
[ 1939.981622][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1939.988772][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1939.997398][T25501] raw: 00000000000002f9 0000000000000001 00000000ffffffff 0000000000000000
[ 1940.005981][T25501] page dumped because: page_pool leak
[ 1940.011367][T25501] page_owner tracks the page as allocated
[ 1940.017101][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749049448, free_ts 1930726345198
[ 1940.034764][T25501]  post_alloc_hook+0x1f3/0x230
[ 1940.039567][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1940.045142][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1940.050386][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1940.055837][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1940.061758][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1940.067085][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1940.072465][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1940.077883][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1940.082835][T25501]  __sys_bpf+0x48d/0x810
[ 1940.087110][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1940.091530][T25501]  do_syscall_64+0xf3/0x230
[ 1940.096024][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1940.101950][T25501] page last free pid 25494 tgid 25493 stack trace:
[ 1940.108474][T25501]  free_unref_folios+0xee2/0x18a0
[ 1940.113494][T25501]  folios_put_refs+0x76c/0x860
[ 1940.118299][T25501]  free_pages_and_swap_cache+0x5c8/0x690
[ 1940.123949][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1940.128619][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1940.133218][T25501]  exit_mmap+0x496/0xc40
[ 1940.137505][T25501]  __mmput+0x115/0x380
[ 1940.141579][T25501]  exit_mm+0x220/0x310
[ 1940.145633][T25501]  do_exit+0x9b2/0x28e0
[ 1940.149823][T25501]  do_group_exit+0x207/0x2c0
[ 1940.154417][T25501]  get_signal+0x16a3/0x1740
[ 1940.158947][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1940.164503][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1940.170076][T25501]  do_syscall_64+0x100/0x230
[ 1940.174670][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1940.180600][T25501] Modules linked in:
[ 1940.184505][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1940.196750][T25501] Tainted: [B]=BAD_PAGE
[ 1940.200885][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1940.210924][T25501] Call Trace:
[ 1940.214189][T25501]  <TASK>
[ 1940.217117][T25501]  dump_stack_lvl+0x241/0x360
[ 1940.221807][T25501]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1940.227003][T25501]  ? __pfx_print_modules+0x10/0x10
[ 1940.232123][T25501]  bad_page+0x166/0x1b0
[ 1940.236271][T25501]  free_unref_page+0xe9c/0xf00
[ 1940.241074][T25501]  skb_release_data+0x6dc/0x8a0
[ 1940.245937][T25501]  sk_skb_reason_drop+0x1c9/0x380
[ 1940.250956][T25501]  __netif_receive_skb_core+0x3edd/0x4570
[ 1940.256706][T25501]  ? mark_lock+0x9a/0x360
[ 1940.261041][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1940.266064][T25501]  ? __pfx___netif_receive_skb_core+0x10/0x10
[ 1940.272128][T25501]  ? mark_lock+0x9a/0x360
[ 1940.276446][T25501]  ? __lock_acquire+0x1384/0x2050
[ 1940.281476][T25501]  __netif_receive_skb_list_core+0x2b1/0x980
[ 1940.287460][T25501]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[ 1940.294048][T25501]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[ 1940.300567][T25501]  ? read_tsc+0x9/0x20
[ 1940.304716][T25501]  ? timekeeping_get_ns+0x2c0/0x420
[ 1940.309909][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1940.316245][T25501]  netif_receive_skb_list_internal+0xa51/0xe30
[ 1940.322397][T25501]  ? netif_receive_skb_list_internal+0x4e8/0xe30
[ 1940.328716][T25501]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[ 1940.335388][T25501]  ? __pfx_eth_type_trans+0x10/0x10
[ 1940.340671][T25501]  ? __phys_addr+0xba/0x170
[ 1940.345166][T25501]  ? build_skb_around+0x111/0x260
[ 1940.350196][T25501]  ? __xdp_build_skb_from_frame+0x338/0x650
[ 1940.356083][T25501]  netif_receive_skb_list+0x55/0x4b0
[ 1940.361362][T25501]  bpf_test_run_xdp_live+0x1b0d/0x2160
[ 1940.366812][T25501]  ? bpf_dispatcher_change_prog+0xd8b/0xf10
[ 1940.372699][T25501]  ? bpf_test_run_xdp_live+0x5d6/0x2160
[ 1940.378236][T25501]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1940.384034][T25501]  ? synchronize_rcu+0x11b/0x360
[ 1940.388968][T25501]  ? __pfx_synchronize_rcu+0x10/0x10
[ 1940.394251][T25501]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[ 1940.400488][T25501]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1940.406375][T25501]  ? _copy_from_user+0xab/0xe0
[ 1940.411133][T25501]  ? bpf_test_init+0x15a/0x180
[ 1940.415887][T25501]  ? xdp_convert_md_to_buff+0x5b/0x330
[ 1940.421334][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1940.426699][T25501]  ? __pfx_lock_release+0x10/0x10
[ 1940.431720][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1940.437519][T25501]  ? __fget_files+0x29/0x470
[ 1940.442107][T25501]  ? fput+0x1a8/0x230
[ 1940.446087][T25501]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1940.451886][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1940.456825][T25501]  __sys_bpf+0x48d/0x810
[ 1940.461060][T25501]  ? __pfx___sys_bpf+0x10/0x10
[ 1940.465822][T25501]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1940.471795][T25501]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1940.478115][T25501]  ? do_syscall_64+0x100/0x230
[ 1940.482869][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1940.487275][T25501]  do_syscall_64+0xf3/0x230
[ 1940.491776][T25501]  ? clear_bhb_loop+0x35/0x90
[ 1940.496449][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1940.502331][T25501] RIP: 0033:0x7ffa5637e719
[ 1940.506735][T25501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1940.526328][T25501] RSP: 002b:00007ffa57190038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1940.534732][T25501] RAX: ffffffffffffffda RBX: 00007ffa56536058 RCX: 00007ffa5637e719
[ 1940.542703][T25501] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[ 1940.550676][T25501] RBP: 00007ffa563f132e R08: 0000000000000000 R09: 0000000000000000
[ 1940.558641][T25501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1940.566599][T25501] R13: 0000000000000000 R14: 00007ffa56536058 R15: 00007ffc0e0a4ef8
[ 1940.574575][T25501]  </TASK>
[ 1940.577671][T25501] BUG: Bad page state in process syz.4.4652  pfn:2fc03
[ 1940.584539][T25501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x315 pfn:0x2fc03
[ 1940.593519][T25501] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1940.600672][T25501] raw: 00fff00000000000 dead000000000040 ffff8880619d0000 0000000000000000
[ 1940.609279][T25501] raw: 0000000000000315 0000000000000001 00000000ffffffff 0000000000000000
[ 1940.617892][T25501] page dumped because: page_pool leak
[ 1940.623275][T25501] page_owner tracks the page as allocated
[ 1940.629021][T25501] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 25501, tgid 25495 (syz.4.4652), ts 1930749037848, free_ts 1930726354478
[ 1940.646428][T25501]  post_alloc_hook+0x1f3/0x230
[ 1940.651234][T25501]  get_page_from_freelist+0x3033/0x3180
[ 1940.656816][T25501]  __alloc_pages_noprof+0x292/0x710
[ 1940.662035][T25501]  alloc_pages_bulk_noprof+0x729/0xd40
[ 1940.667619][T25501]  __page_pool_alloc_pages_slow+0x122/0x690
[ 1940.673528][T25501]  page_pool_alloc_pages+0xd0/0x1c0
[ 1940.678768][T25501]  bpf_test_run_xdp_live+0x950/0x2160
[ 1940.684175][T25501]  bpf_prog_test_run_xdp+0x805/0x11e0
[ 1940.689608][T25501]  bpf_prog_test_run+0x2e4/0x360
[ 1940.694557][T25501]  __sys_bpf+0x48d/0x810
[ 1940.698852][T25501]  __x64_sys_bpf+0x7c/0x90
[ 1940.703282][T25501]  do_syscall_64+0xf3/0x230
[ 1940.707821][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1940.713720][T25501] page last free pid 25494 tgid 25493 stack trace:
[ 1940.720254][T25501]  free_unref_folios+0xee2/0x18a0
[ 1940.725285][T25501]  folios_put_refs+0x76c/0x860
[ 1940.730079][T25501]  free_pages_and_swap_cache+0x5c8/0x690
[ 1940.735733][T25501]  tlb_flush_mmu+0x3a3/0x680
[ 1940.740379][T25501]  tlb_finish_mmu+0xd4/0x200
[ 1940.744997][T25501]  exit_mmap+0x496/0xc40
[ 1940.749356][T25501]  __mmput+0x115/0x380
[ 1940.753436][T25501]  exit_mm+0x220/0x310
[ 1940.757554][T25501]  do_exit+0x9b2/0x28e0
[ 1940.761728][T25501]  do_group_exit+0x207/0x2c0
[ 1940.766316][T25501]  get_signal+0x16a3/0x1740
[ 1940.770866][T25501]  arch_do_signal_or_restart+0x96/0x860
[ 1940.776427][T25501]  syscall_exit_to_user_mode+0xc9/0x370
[ 1940.782041][T25501]  do_syscall_64+0x100/0x230
[ 1940.786645][T25501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1940.792588][T25501] Modules linked in:
[ 1940.796500][T25501] CPU: 0 UID: 0 PID: 25501 Comm: syz.4.4652 Tainted: G    B              6.12.0-rc5-syzkaller-00044-gc1e939a21eb1 #0
[ 1940.808824][T25501] Tainted: [B]=BAD_PAGE
[ 1940.812963][T25501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1940.823008][T25501] Call Trace:
[ 1940.826277][T25501]  <TASK>