last executing test programs:

1m46.904345568s ago: executing program 1 (id=492):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x8000f28, 0x0)
splice(r2, 0x0, r1, 0x0, 0x7f, 0xe)
write(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0)
r4 = memfd_create(&(0x7f0000000540)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd6\x93S\xb3\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea', 0x0)
r5 = fcntl$dupfd(r1, 0x0, r4)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x11, r5, 0xfffff000)
futex(&(0x7f0000000000), 0x8c, 0x1, 0x0, 0x0, 0x0) (fail_nth: 2)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006c40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40015)
munlockall()
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00003, 0x8)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)={'L+', 0xa2}, 0x16, 0x2)

1m46.521485792s ago: executing program 1 (id=494):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xfffffffffffffe01, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a0b0400000003000000000200000038000480340001800b00010074617267657400002400028010000100434f4e4e5345434d41524b0005000300ef00000008000240000000000900010073797a30000000000900020073797a3200000000140005800800024000000000080001400080"], 0xa0}}, 0x0)

1m46.454212507s ago: executing program 1 (id=496):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x1, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xd, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xcd)
setsockopt$ax25_int(r1, 0x101, 0x7, &(0x7f0000000000)=0x2, 0x4)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x4, &(0x7f0000000100)={[{@cpuset_v2_mode}, {@nofavordynmods}]})
r2 = dup(0xffffffffffffffff)
socket(0xa, 0xa, 0x4)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x7f5e, &(0x7f0000000940)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000380), &(0x7f00000001c0))
socket$netlink(0x10, 0x3, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r5, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000a80)="3dfeb167f3ccc51b8ec0ba896a6d39292279e90f7abfdaee0f52b8a3554c9122ce1f6ed327282ad8c2d74bb1a770183e755b9f37cc301f5392a0e4831635410fe4b2a8e6bdb04d5d", 0x1f00, 0x48)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$igmp(0x2, 0x3, 0x2)
ioperm(0x0, 0xfffc, 0x8005)

1m46.134963083s ago: executing program 1 (id=497):
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x2, 0x0)
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x10000, 0x440)
ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f00000002c0)={0x9a090a, 0x937})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r1, 0x1, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xd, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x5, 0xcd)
setsockopt$ax25_int(r2, 0x101, 0x7, &(0x7f0000000000)=0x2, 0x4)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x4, &(0x7f0000000100)={[{@cpuset_v2_mode}, {@nofavordynmods}]})
r3 = dup(r2)
socket(0xa, 0xa, 0x4)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x7f5e, &(0x7f0000000940)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000380), &(0x7f00000001c0))
socket$netlink(0x10, 0x3, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0xffffffff, 0x341001)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x166c1, 0x0)
r7 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r6, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000a80)="3dfeb167f3ccc51b8ec0ba896a6d39292279e90f7abfdaee0f52b8a3554c9122ce1f6ed327282ad8c2d74bb1a770183e755b9f37cc301f5392a0e4831635410fe4b2a8e6bdb04d5d", 0x1f00, 0x48)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$igmp(0x2, 0x3, 0x2)
ioperm(0x0, 0xfffc, 0x8005)

1m46.002968173s ago: executing program 1 (id=499):
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mount(&(0x7f00000002c0)=@sr0, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000001340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = gettid()
kcmp(r0, r0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x145842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x100000}], 0x2, 0x0, 0x0, 0xb)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
r3 = socket$l2tp6(0xa, 0x2, 0x73)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000140)={0xa, 0x0, 0x8, @mcast1, 0x40}, 0x1c)
ioctl$TIOCGPTPEER(r1, 0x5441, 0x9)

1m45.692711555s ago: executing program 1 (id=506):
r0 = openat$dsp(0xffffffffffffff9c, 0x0, 0x101, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, 0x0, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYRES32=r1, @ANYRESDEC=r3, @ANYRESOCT=0x0, @ANYRES32=r2, @ANYRES16, @ANYRESHEX, @ANYRES16, @ANYRESOCT=r3, @ANYRESHEX=r3, @ANYRESHEX=r0], 0x14}, 0x1, 0x0, 0x0, 0x4840}, 0x2000c814)
accept4$alg(r3, 0x0, 0x0, 0x80000)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)

1m45.520211674s ago: executing program 32 (id=506):
r0 = openat$dsp(0xffffffffffffff9c, 0x0, 0x101, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, 0x0, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYRES32=r1, @ANYRESDEC=r3, @ANYRESOCT=0x0, @ANYRES32=r2, @ANYRES16, @ANYRESHEX, @ANYRES16, @ANYRESOCT=r3, @ANYRESHEX=r3, @ANYRESHEX=r0], 0x14}, 0x1, 0x0, 0x0, 0x4840}, 0x2000c814)
accept4$alg(r3, 0x0, 0x0, 0x80000)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)

17.903910938s ago: executing program 2 (id=1050):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r0, &(0x7f0000000380)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x3, @remote, 0x9}, 0x1c, 0x0, 0x0, &(0x7f00000020c0)=ANY=[@ANYBLOB="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"], 0x590}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=' ', 0x1}], 0x1}}], 0x2, 0x28048825)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000001340)="45f9e8e5af", 0x5}], 0x1}}], 0x1, 0x0)
sendmmsg$inet6(r0, &(0x7f0000006040)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000001c0)="c2", 0x1}], 0x1, 0x0, 0xfc00}}], 0x1, 0x80)

17.90340619s ago: executing program 2 (id=1052):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0xa, 0x5, 0x80000001, 0x0, 0x80000000000, 0xfffffffffffffffc, 0x3, 0x0, 0xfeff})
r1 = socket(0x2, 0x400000000002, 0x0)
setsockopt(r1, 0x0, 0x7, &(0x7f0000000200), 0x0)

17.842449438s ago: executing program 2 (id=1054):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xfff)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000440)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in6=@private2, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffd, 0x0, 0x0, 0x800}, {0x0, 0x0, 0x8}}, [@tmpl={0x44, 0x5, [{{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x3c}, 0x2, @in=@remote, 0x3504, 0x1}]}]}, 0xfc}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x1}}}}}}}, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
socket$nl_route(0x10, 0x3, 0x0)
r3 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
add_key(0x0, 0x0, 0x0, 0x0, r3)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

17.383878939s ago: executing program 2 (id=1055):
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x18024, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x120)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x1)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
mkdir(&(0x7f0000000180)='./file0\x00', 0x20)
mkdirat(r0, &(0x7f0000000000)='./file0\x00', 0xc2)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
r2 = userfaultfd(0x1)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x488})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0x3af4701e)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r1, 0x40049366, 0x0)
mount(&(0x7f00000002c0)=@sr0, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r4 = open(&(0x7f00000005c0)='./bus\x00', 0x145842, 0x0)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x100000}], 0x2, 0x0, 0x0, 0xb)
ioctl$TIOCGPTPEER(r4, 0x5441, 0x9)

17.285807815s ago: executing program 2 (id=1057):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f0000000240), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000000800), 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeeb, 0x8031, r1, 0x9609a000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000480)=""/135)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x7a44, 0x1700)
sendfile(0xffffffffffffffff, r5, 0x0, 0x10000)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
r7 = syz_open_dev$video(&(0x7f00000002c0), 0x1, 0x0)
ioctl$VIDIOC_S_FMT(r7, 0xc0cc5605, &(0x7f0000000100)={0x1, @pix_mp={0x0, 0x0, 0xb5315258}})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00'})
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r8, 0x0, 0x0)
listen(r8, 0x3)
accept4(r8, 0x0, 0x0, 0x800)

16.681373947s ago: executing program 2 (id=1062):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x11, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000080)={@mcast2, @ipv4, @dev, 0x0, 0x1, 0x0, 0x0, 0x0, 0x80600087, r4})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r7, 0x4048ae9b, &(0x7f0000000300)={0x1d0001, 0x0, [0x0, 0x0, 0x0, 0x800000000000000, 0xfffffffffffffffd, 0x742]})
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000140)="36d0e866b80a0000000f23c80f21f866350c00a0000f23f866b9800000c00f326635000400000f300fc76a002e0f080f23742e3b5753baf80c66b8f494f78e66efbafc0c66b83ac8000066efda6509", 0x4f}], 0x1, 0x0, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, 0x0}, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x3a6}, &(0x7f0000000000), 0x0)

16.645376937s ago: executing program 33 (id=1062):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x11, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000080)={@mcast2, @ipv4, @dev, 0x0, 0x1, 0x0, 0x0, 0x0, 0x80600087, r4})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r7, 0x4048ae9b, &(0x7f0000000300)={0x1d0001, 0x0, [0x0, 0x0, 0x0, 0x800000000000000, 0xfffffffffffffffd, 0x742]})
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000140)="36d0e866b80a0000000f23c80f21f866350c00a0000f23f866b9800000c00f326635000400000f300fc76a002e0f080f23742e3b5753baf80c66b8f494f78e66efbafc0c66b83ac8000066efda6509", 0x4f}], 0x1, 0x0, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, 0x0}, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x3a6}, &(0x7f0000000000), 0x0)

5.953892274s ago: executing program 5 (id=1119):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000000)=@newtaction={0x14, 0x30, 0x216822a75a8bdd29}, 0x14}}, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x2382, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1})
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)=ANY=[])
syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_request={{0x4, 0xa}, {@any, '\x00', 0x2}}}, 0xd)
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_TRY_FMT(r2, 0xc0d05640, &(0x7f0000000200)={0x6, @sdr={0x59455247, 0x4}})
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x0, 0x16}, @l2cap_cid_signaling={{0x12}, [@l2cap_info_req={{0xa, 0xb, 0x2}, {0x400}}, @l2cap_create_chan_rsp={{0xd, 0xb, 0x8}, {0x0, 0x101, 0x401, 0x4}}]}}, 0x1b)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r4, &(0x7f00000007c0)={0x10, 0x0, 0x25dfdbfd}, 0xc)
r5 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r5, &(0x7f00000007c0)={0x10, 0x0, 0x25dfdbfd, 0xfddbdf25}, 0xc)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000140)={0xffffffffffffffff, <r6=>r3, 0x80003})
connect$bt_sco(r6, 0x0, 0x0)
dup(r3)

5.863620546s ago: executing program 5 (id=1120):
r0 = syz_io_uring_setup(0x237, &(0x7f0000000500)={0x0, 0x969e, 0x10100}, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = openat$cdrom(0xffffff9c, &(0x7f0000000040), 0x80880, 0x0)
openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
ioctl$CDROMVOLREAD(r3, 0x5392, &(0x7f0000000080))
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_GET_TIMEOUT(r4, 0x2202, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="11002bbd7000fedbdf251b000000100002800600018008000100080000001800018014000200776c616e30"], 0x3c}}, 0x4000)
fchmod(0xffffffffffffffff, 0x101)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r8 = socket$l2tp(0x2, 0x2, 0x73)
r9 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newtaction={0x18, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x8000)
r11 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001280)='/proc/crypto\x00', 0x0, 0x0)
preadv(r11, &(0x7f00000012c0)=[{&(0x7f0000001800)=""/250, 0xfa}], 0x1, 0x40000004, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r9, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r12=>0x0})
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r13 = syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x1)
ioctl$SG_IO(r13, 0x2285, &(0x7f0000000300)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f00000000c0)="93ef0bc91cb0", 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$xdp(r11, &(0x7f00000005c0)={&(0x7f0000000140)={0x2c, 0x8, r12, 0x2e}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000200)="66e51ddba393ac070a0c1ba87150da49af308a8a9a91b3195c6d87af9f601af739aea88eb347d700777d7a83cbda27e9783c73729772fb110d2507030be54d032d8ab96b45bf7cfc343b0af977613bbb93a2b0b17829309edddccb6aad4d933e36", 0x61}, {&(0x7f0000000340)="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", 0xfb}, {&(0x7f0000000280)}, {&(0x7f0000000440)}, {&(0x7f0000001780)="d2b2f51dff1511dd9e8511496840283e2d632293151c90601e30c6099e52d755c03087a1d807e998d588a52ee082e8afae8f82eda4f1dfdaec1c0d2c6aa20fe661f00052357b912c1284eb88214bfe5cbdcce192084dac48757b71593a40ac6cdca1f0010519c1a410da706e75acad3f9eee57ef9296b20fdcd10e35b3f73fcbad7f073acb9a5c11484a7c67ef9213eb59703023069417ad1e4c7e5be4b1706f2e05adc96410931afd1ed00e7e16c0cd963e0c6c58325628e449d7ef3d10074a2f24edc9686d8b441dc73a2ae16cd2dfda5720e8e8403a2c9b2bc7b2c5f202afa006c715b57944e2aa7fe5e55e81fbb634e5882bc0b12f53b60e3f34ac0a718fa85e8aa035c5a5b90e971712a0fc3983b25962957e190c4a8c4614c59040419fbca7e6ed6e3c05089c92a35e7b9964e47ac8349386250a17238ff3ebee5d7e1debb889fa4fdfac727d9ccd85569b41edc32c5bad9fc8bac73040804c99e1104e2dc7310da8e7f856aff4709cde37e15007965ee560af0b206e6bda9ef78caf6c1149caedcdc364892f73e945a3d63e0129d9ee9927cbf25ec628bfe4c29f6364f5f4bdb17e71c67a3585aa10a9060d97f4544667d65d1e3808a40b377c26a8f2cf5c56c50a58ad65a385075cbf5c26153a17679c5e107dd9ec48d84baeeec3a2970e001aec5507cfd861b8bf560912edeac98767a65d378858271809e59ea99ba0a57b66bb6f824aa191aeafbc0c5148860487723b2a293ead7d903e4969e6a7948765630a1b257d4493bb6286b7f94c5ac837acdab0d93cb495f3a23ac6c8b89dbe01a56174f6fb7ab4a9515573f9c1fe1a9d745659bdb9fff4aa16a57ee0149fb84a5ac2b0a6584d4189e98dc2203db2505a472a3847168775fd0eeeb58da2818f3737ec4948e1a8149abb20e03b5dfc93376edead9d50a63ca054e8b2bd9ff2292b2415b8f704e2b2b1e130c1fc2031d787c5fe2bba3cf6a7dfe4515672ea39e4554b8097012e13781280e3296546e0264be95cbc678937b1bbbb54fe27d39442523237ba21c52368afc7ddc1da1c13c73206ae0303261b56bd9c70c67941f29793eb77397735a62936971fa66b3fd9ac11d398129767937880ecc0c457806d73cef0e0c76f4706e7a871ab1b48c1feb4704ea34448c1a90c4681548866995321deed251e9283bb9a7a5124367dfc9d25eac15690c8ac09b9e8565cc602a22089bad339fb12cc5017074b13de01936d024ec974cffb329f62071a29ce62dce4993ec8833041e4a82bd478a85399086ab522be5cf7616b719c0088189ffd2615858e864e8b201aec73c2f7ef2aa080cc4dd7caedcf80274462ff4bc3401029e863e42fadf6816a306643bd1b33a67a8097cab6fb8bb8709aed160a0c92967790ab1319acc04696fd20f65e91920051ad83dc79fd2a19e8eee34d72674026cf10d179b178747e38abc56766a37e5e6d9538fe694896727fd9b160b2bdc8983b9c30711b2c45773aec9bd44049e7d99298d4102d005da05b8fde3356606ebee0cffecf5da3ab14202361cb9c8b67765162da89844a5da7ebabd4a35ff0cdd11da2188ca630d9da693eb869a462ae0f88a7a7fcf6fd623abf49e15650b4f985951bd36558e5994c3fc65ac48dd2221bbca41c4518795c6cf67a9bcd0e3f710b36c66c5a833253f2db1f1aee55fb1261fc41b2f9e4e00b45200f978a6775d03e403917a79a7b9328ce69ce4b8c0ee37ec27943aa0f68f50d09e02d753272a8d52709b7ceb700436d608434a937ea48f0920bc81af2c74a11ecd39e75df114e32f27bd8a7f232f52efb9a9fc47e33636157a7979677dc33b175df8baab8bd15689752eb847e0049c585f8ec3244dc230f7962e719ced893ceafeca856283f71bb6ed4ea0748e82123c4c43fa610173a8ad1a802057d60a6d13077e0fd3c6304a868e8f6c601bdc1924e15e26bc3065c0dabc9b3ec24b8c8406ee1bfa42a69ba2e7cfc7597dcbe6da941a7f153016cfdba844a8b21099d2d5bf54c0cdc191639bb6edd83096a370ce02890f4edf145bd6ea95cb02db114fafffb9508704b1cfdb58185fb8532dff2d7963716e29e467763ab4287e01c6976c6c73070e9755a70bf625bb80c2d3fa9dab534b4a61e850cb140dd2b762bae61aedefd85bcc2d7e76f0517994f687de764fe6095956509b1cefe3f52a394c2b31c735e9aeb88be448d49ba8cc6446d5e9de1db2348c5ec638fe92f1ca17f0ab9ba5f730ff63fd7739a9f247601c68e1e2accd0e307e8bb3fc268f1b0640572010911a712b20e513d0a9ba221b47df2dfdf7df5de47a0bac1713ea1e65f0f972f416bff7595298b9e97a9db3bce186a30032d09b6ffed11424cc7510da3983a5fc9391fda48b3702ade8a8219e8c5b4b24e7e5718a967818c8a1e49670753c7def88bfc3454debf16da10c2e8575e8aee643eb3ffacd3f92b865c2981f283941ab221778d679797cb0d7e7fa8e0c5b6b6b68d22f5fdbc97762c647fa0d0858aaba0545102c3e68f914377ac37afa87ea03ccef9ebdab8d538e3b0b8107d2f73c3077496ebfd0b3647f10815e7ec1e28ea818542aa26f96b3c06078d659b2f3a7b677d0f5155bb6ec18b98a1fed3a1c278193f941c46e187c705a5683e68c810a00bfd6a45c21837ed313e4199a396faa1fda4b16c90e671b295b133399890b1a354bf089f9704b62359c329266560585cb5395832ba724c9a17f991f509a6ac39dfefd560df3f5fcdb120b259558bb95d238d79c6eb5fedfbfc868d8797496b86e2c65f54540c6b29f573141068c4155a2c0d6e68f75a3acdc1a4c3af0d0f27ca5d46fd5829168d28a883d2c15eb0f03e5b5913ca8fd395524f580aa1b17df311ac0299fe0e14f653e40ae7890b07926ad331483ff408a3fd3b9f28dae8c3a37e9cd2d66936f6b58aba68ab3e425d224b593e8a7889438399f3348ff6035694eeb1b1f62c2081692b9f62bf9993dad814309c31b66fdbc71f0269c4172a8202715617c451df1dc8f6cd1d3eb7a6e6af749e6c9300abcbca06ec7190e42e654a17155c3e9cf44e2afefc503dfa7e06ee4e8430e251658368460c88e0cba56f1913bc28484e7192e5e73a3c6f92bb98c5d705afd2dc489b7e2135a2d1165ec88cc36eca9f2bd43c9df8969fa8410589294b03d7a4a7f50fcedd68975a741f00f456c62c83039183f9d1779ddf91c878402af767fcfd463b59d9effa9175599810b9787b345c7efffe73dcd272f366652f4290031a43658fa181712e71efdcd3e68af6d0659d1db41e7e0dfd887f3973b207bc50d1833d2f223ce6e3ea9ec1d777d46dd0ccf110210f901872dc6fbcb90c4a7cd3a6f3e9b7f795901f038f1f1d867868829ff49cff6c0b97aea073c0a8223f4050029f09b456aca6852dbce71aa9b6e83457900be113bc0e01597d03564fcb9d58076595608b30058ab5d829b88156cb9482380dd445f4dfad87b46c68e8335251458f2ff959eb8ca37ad75bcb38d1d56ff594f57f89b05f763c74ad59698a681f372f1146ef32a9cad941d1b62d7d0a0c773bacac3227a191bdbfd4785da98f1e5f3d75de1d11ca0892e93874b11f19cdc7dc3ca5090afaa253e60013f63347f1411fbb6cfafbfa695a093dd2ec1208ef576e50d1b996f4863edab3f22d139764385df75781e022d0ac968f603d0f4ebaa8fb99ca58cac0b9a5484fb216d22e819b5bc5a6735fe823148dedafcbb84d15d2b508df0adc9f78a80e97b1885aaab1c193fd40fca7abbf8989376327bf1216b93996bf3e111552c4701a096602f573ade1d48f7b07f19df85dd39845017d938427e6ff8c2b92c52348b302cdb2f3fd4af113d5f4475da4c5b1366fd93e4a16a225acf8ef2708cb5b21be0a40d73e686fa060bf857522f05b6ad9f7707fe6a7bc2c7e3b45ec82e7c45848c004b1adec5eddbf14f23fb0815c632fee8b19d2d76dd0cf5bc5584d399b4e81fe4cb6cfeba91077bac63eadcbb8b2af8dd665fee71c165c5964919aa2ab5f93661df0eaad974d7e1eaf222e4efa5ddaa848f3401a68cae1f128f87e0262750ecf8a34764ab7ee37f3a347c5512efee15f6c8e4e62dd195bc31950315b177af31df15bbb68593845a9607b0a116884e27e3b7f2a0f4fde471cbf0aa5333fc2fce96be40fe49af669b8fc25f4fff0864891ded3d3c165be03e31f9379cd0db417dfe2c1d524876ddedd941d4a96544266397b363592f2e7f17fe08cf6fe17855a59ae198f4db5abd903a496ad3588423b68c1290b96f97b81747c94777b6d5fc029c30dd7ed0c518c0a6c4b7637c0ed10ca16d0462f246bb20409d2ed3835c9cb1722dd6b18669cca294652fbc811f719bad02126c4809e90006b26b5e940660b19173f8535172e5c4b8b0e5b74e37c15c0e327fd61e943f9b04650b4eb0ecfd53751d7129f58dda8fe02f30111ec9be9bfeea3013e27f39440fd9ee918382e11d892b4808f82998555be13ba8b64544de02ffa4b13d7a909ff40550249eb1c771091d3e3636d4736c9fce2da52cace233af9b99eb7df34c1c183bcde9a4840395f640c556e1d2a64764208b78d5bfa63e29830d7a7da8f4de9ba3496f2a5ecf4ef9325e7f625ef27ed278b4c80884fe88118c03048874c6b1714b9e871a6a24ca16ab69cb877cd0afd7b6d316fd841f7062a40a05b14f3511936ff10998073f0dd7c09ce90213841a64c6776b2e96c38a4566df30d3d1395b9514e1e56e9cf015a910e8a9565e05e16768d1711531a5d7b98fde641629669a1380ef51fcc2b3c1a7291145b3fa858ecf0f7d1114e3dbd605124af7f7028396e574f2c9c5f6e9a3676be8fab4f9fae5b7faa6aa2cbe7bce83d919b9ca6def2e9e759b665eaf8ba6ad019a7e26155c8b8216ea3fca6c6c4bf03d1ee4b2d4e385fc17be43dc7d89dad6e700455a617276509480d0d98299fa5edb26f328878ee7dc77363ce084f18553e539830df1f39ad65c446fe77876a2f6ebd3537d56d0be7f7ccbf8b428539546628a4cb3ff104673d09b9d9f8ef342a753e7702777bb12a91f43a3f23ef20dac8ff6527c9f3d1e636809565dce6ac6b14b19bc07712b8213243668e3744c6e6bee5bba9b916173950fe84a6982537c3839ca48310e755daaaed098470144321896febf393eea0d5ecae45b50dddf553ebb8c139c7f1ad61bfdd3007da1955df3ebc3c161c3a527fc052183e9379286a579c830f4adfa01a813593aa08d601d327c2c7b3cb022a7ef842cd99e100b89e92cd7b90255a050f09d55ab1cb7cfd169716704729d54d3a52c28cd1d8b1988c5170af2c493a582403f361463caa01325a6e42f1cb0dceac9181ffc822552f485089676fdae81e7903670d321aee97fb035220a27e0c3608c9d21f895965bf330e04e084ff00b288241ca3011a314e9936caad942ddbf1f3334882963987d2b90a9fa63fb716dc8b1acd733a51d0d63f90fba8c1af9f00dfad7ec3eedd20c6dfa7ef2e42f5242e2cf339702b49e5c7a27920551c511be4d048dc5ce1c5671b6d612acb00e6e408d6d5fd48c628fdbb725cb949e3710898f9c935901a7412beac4d32c97a2ab1f4a3cedfa9020d95d3ba79e131e8f0a9f516a79847e7c5665299d10e04294934a4628ced629ac51e1a2a30a629ba387d47f607dbe6a9ef89dd4e3a4795e16f6244a48a7f5fec3f73e70e4ae11cfecbf895d7cf6d952d2df8933fc3f60be8d0bef7b50647e6e9c0ddbf0062f76cc8c4a3a140e8a663b4f8deae9bcdf19d4ef1b66bf783ae0fe6", 0x1000}, {&(0x7f0000000480)="2ea3125a869b2766bcd132293c2ab9d73c4ba5", 0x13}, {&(0x7f00000004c0)="1b59b96797178be652dd100ca2", 0xd}], 0x7, 0x0, 0x0, 0xc000}, 0x200040d5)
ioctl$sock_bt_bnep_BNEPCONNADD(r9, 0x400442c8, &(0x7f0000000c40)={r8, 0x8000000, 0x6})
bind$bt_sco(r7, &(0x7f0000000080)={0x1f, @none}, 0x8)
setsockopt$bt_BT_DEFER_SETUP(r7, 0x112, 0x7, &(0x7f00000000c0)=0x1, 0x4)
setitimer(0x0, &(0x7f0000000080)={{}, {0x1}}, 0x0)
getitimer(0x0, &(0x7f0000001740))
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_ACCEPT={0xd, 0x2, 0x485c2ec651740288, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1800})
io_uring_enter(r0, 0x2ded, 0x4000, 0x0, 0x0, 0x0)

5.813794916s ago: executing program 5 (id=1121):
socket$key(0xf, 0x3, 0x2)
r0 = socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYRESHEX=r0, @ANYRES32=r0], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
set_mempolicy_home_node(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000480)=0x3, 0xb)
r5 = openat(0xffffffffffffff9c, 0x0, 0x141842, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400a1}, 0x20010084)
syz_usb_connect(0x6, 0x24, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_tracing={0x1a, 0xd, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000008000000000000000500000018190000", @ANYRES32=r5, @ANYBLOB="000000000000000018410000f9ffffff000000000000000018110000", @ANYRES32, @ANYBLOB="0000f602b718160001000000000000007022a5", @ANYRES32=r5, @ANYBLOB="00000000000000009500000000000000"], &(0x7f0000000100)='syzkaller\x00', 0xfffeffff, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, 0x19, r4, 0x8, &(0x7f0000000240)={0x2, 0x5}, 0x8, 0x10, &(0x7f0000000400)={0x2, 0xd}, 0x10, 0x14b6e, 0xffffffffffffffff, 0x0, &(0x7f0000000500)=[r5, r5, 0xffffffffffffffff, r4, 0xffffffffffffffff, r5, r4, r5, r5], 0x0, 0x10, 0xfffffff8, @void, @value}, 0x94)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000440)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=ANY=[@ANYBLOB="50000000100003040000000000000000f2000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100766c616e000000001800028006000100010000000c000200540a00001800000008000500", @ANYRES32=r8], 0x50}, 0x1, 0xba01}, 0x0)
r9 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

4.733373339s ago: executing program 0 (id=1134):
r0 = socket$alg(0x26, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x2, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffff", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32, @ANYBLOB="08001b"], 0x34}}, 0x4004010)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r5 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r5, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@assoc={0x18, 0x117, 0x4, 0x204}], 0x18}, 0x0)
sendmsg$nl_route_sched_retired(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100), 0xe078}}, 0x0)
recvmmsg(r5, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f0000000300)=""/222, 0xde}, {&(0x7f0000000840)=""/134, 0x86}, {&(0x7f0000000400)=""/115, 0x73}, {&(0x7f0000000540)=""/34, 0x22}, {&(0x7f00000004c0)=""/21, 0x15}], 0x5}}], 0x1, 0x0, 0x0)

3.8236037s ago: executing program 0 (id=1137):
r0 = socket(0x10, 0x0, 0x3)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000004c0)={0x0, 0x465f}, 0x8)
r2 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000600)={'team0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xfffffe66}}, @TCA_EGRESS_BLOCK={0x8}]}, 0x3c}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, 0x140f, 0x200, 0x70bd2a, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_CHARDEV_TYPE={0x8, 0x45, 'mad\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x800c}, 0x20000)
gettid()
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000009240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20048045)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, 0x0, 0x0, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x7000000, &(0x7f0000003700)={0x77359400})
socket(0x10, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r5, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e21, 0x3, @remote, 0x9}, 0x1c)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
write(r5, 0x0, 0x0)

2.94806995s ago: executing program 0 (id=1138):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="210f0000000000000000200000f008000300", @ANYRES32=r2], 0x1c}}, 0x0)

2.941195051s ago: executing program 0 (id=1140):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b0000000000000000000000008000", @ANYBLOB='\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket$kcm(0x29, 0x2, 0x0)
r5 = memfd_create(&(0x7f0000000000)='e\xf4E\x88-\x00', 0x0)
pwritev(r5, &(0x7f0000000040)=[{&(0x7f0000000480)="f6", 0x1}], 0x1, 0x4000001, 0x0)
sendfile(r4, r5, 0x0, 0x8000fb00)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x6d89, 0x8, 0x0, 0xf0}, &(0x7f00000000c0), &(0x7f0000000040))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x180, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r6, 0x541b, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r7, 0x0, 0x8000000000000c, &(0x7f0000000600)='u', 0x1)
getsockopt$inet_opts(r7, 0x0, 0x9, 0x0, &(0x7f0000000180))
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000ac0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000b40)="055d05e04eda1b15ffce0fbe1fcd", 0x0, 0x81d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)

2.751233922s ago: executing program 5 (id=1143):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r1, 0xc01c64b9, &(0x7f0000000540)={0x0, 0x0})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000480)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sendto$packet(0xffffffffffffffff, &(0x7f0000000300)="8eb3e18bc512c3cc9b2062e0892f", 0xe, 0x0, &(0x7f0000000180), 0x14)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0)
writev(r6, &(0x7f0000000440)=[{&(0x7f0000000040)="93d904", 0x3}, {&(0x7f0000000140)="139776ff010070", 0x7}], 0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r2, 0x80049367, &(0x7f0000000080))
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xb, 0xc, 0x4, 0xc4f, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000100), 0x6c7, r7}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000300)={0x0, &(0x7f00000002c0)=""/52, &(0x7f0000000100)="9da20b162ba58a582df69300e221360abc19609b", &(0x7f0000000340), 0x8, r7}, 0x38)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000540)={'wg1\x00'})
sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0], 0x38}}, 0x0)

2.423635383s ago: executing program 0 (id=1144):
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x18024, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x120)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x1)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
mkdir(&(0x7f0000000180)='./file0\x00', 0x20)
mkdirat(r0, &(0x7f0000000000)='./file0\x00', 0xc2)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
r2 = userfaultfd(0x1)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x488})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r1, 0x40049366, 0x0)

2.423097711s ago: executing program 0 (id=1145):
r0 = socket$alg(0x26, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x2, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff00000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32, @ANYBLOB="08001b"], 0x34}}, 0x4004010)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r5 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r5, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@assoc={0x18, 0x117, 0x4, 0x204}], 0x18}, 0x0)
sendmsg$nl_route_sched_retired(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100), 0xe078}}, 0x0)
recvmmsg(r5, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f0000000300)=""/222, 0xde}, {&(0x7f0000000840)=""/134, 0x86}, {&(0x7f0000000400)=""/115, 0x73}, {&(0x7f0000000540)=""/34, 0x22}, {&(0x7f00000004c0)=""/21, 0x15}], 0x5}}], 0x1, 0x0, 0x0)

2.261520622s ago: executing program 4 (id=1146):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r0, 0x0, 0x18, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000200000095e6ff00000000000000100000841c212076fa50124fe839a413c812cc6baf9e26df372ceee62585e32e3fbf2ffa02b2fff915073eccbd2cb39a507942678445a47af600655c05f1eb17db26fb90c24fb06eff989f5044ad139c55b80f70d4a548c72b71e58dd4f9ee3935c6b222d92b29fd9f36b04338cb24e5bb0bd56ccb8edfa0f7286a4dab9d7b0132c550943fd7f6e3799753a0c817707aa4d3717b8ed8e356263438a91dafeb1e8042ee2da775f685d2c26984eab0edbf5c568c5431b6742276e9d4b49827e8f6f806838c8da4572d15d1c79962e6b490c8"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x3)
r5 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000a27000/0x3000)=nil, 0x3000, 0x0, 0x13, r5, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x12, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r5, &(0x7f0000001300)="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", 0x45d)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r6, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c)
set_mempolicy(0x4005, &(0x7f0000000080)=0x41, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x12, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000005000000000000000000002375d5e16111c902aba2675c3104934491d8789cb8273b1d42a187a9ae3051caa9550f47064cc012a0b3be9f1acb377f1bb2582d3fbe098c4b4f88d56e12f91cf569d727b2b11ffa60f1d24fd4bc6454a2c28d6a2f83c0be54456f8158957f642db5c3f1e8ce8e757d949e880135a65d29fb67abc54237331bd028f220013830461430003b43666f0ccc07823660f620c6edf89fc3e51340c89400"/187, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x6, 0x8, &(0x7f0000000740)=@raw=[@map_idx_val={0x18, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xad1}, @exit, @ldst={0x0, 0x2, 0x4, 0x4, 0x4, 0x20, 0xfffffffffffffff0}, @jmp={0x5, 0x0, 0x4, 0xa, 0x1, 0x20, 0xfffffffffffffffc}, @exit, @map_idx={0x18, 0x0, 0x5, 0x0, 0x10}], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r7, 0xfffff000, 0x0, 0xdc0, 0x0, 0x0, 0x0, 0x7000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
setsockopt$inet_int(r0, 0x0, 0x4, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

1.844337616s ago: executing program 5 (id=1148):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x10000000, 0x1, 0xa, 0xb}, {0x1, 0x2, 0x13, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="04069591930303c900"], 0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
ioctl$VIDIOC_G_FMT(0xffffffffffffffff, 0xc0d05604, &(0x7f0000000040)={0xa})
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f0000000040)={0x0, 0x1115000, 0x0, 0x0, 0x2}, 0x1c)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8001, &(0x7f0000000000)=0x6, 0x8, 0x0)
ioctl$UFFDIO_CONTINUE(0xffffffffffffffff, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
fsopen(&(0x7f0000000040)='cifs\x00', 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x22, 0x2, 0x2)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
writev(r5, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x1fffa2}], 0x1)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)

1.383406912s ago: executing program 4 (id=1149):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000850000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)={0x128, 0x1403, 0x20, 0x70bd27, 0x25dfdbfb, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ipvlan1\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'batadv_slave_1\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth1_to_team\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'dummy0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'sit0\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'pimreg\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'wg2\x00'}}]}, 0x128}, 0x1, 0x0, 0x0, 0x4040081}, 0x4000880)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_exit\x00', r0}, 0x10)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000180)=<r2=>0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r3 = io_uring_setup(0x3eaf, &(0x7f0000000100))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x1000000000000161)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
r4 = syz_open_procfs(0x0, &(0x7f0000000440)='mounts\x00')
r5 = socket$kcm(0x10, 0x2, 0x4)
mount(0x0, &(0x7f0000003c40)='.\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000003cc0)='gid=1\x00nk]e')
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r6, &(0x7f00000020c0)={0x2020}, 0x2020)
sendmsg$kcm(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000080)="48000000150081fb7059ae08060c04000aff0f11000048040011018701546fabca1b4e7d06a6bd7c493872f750375ed08a562af5745e17b8c119418f0f000000d6e74703", 0x44}, {&(0x7f0000000840)='C11O', 0x4}], 0x2}, 0x0)
writev(r4, &(0x7f0000000480)=[{&(0x7f0000000080)='4', 0x1}], 0x1)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x4082, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=vistio,access=', @ANYRESDEC=r2, @ANYBLOB=',uname=.\',fscache,sync,dont_hash,euid<', @ANYRESDEC, @ANYBLOB=',audit,dont_appraise,fsuuid=34\x00602fb-fZ4b-97e6-df00-57661ca2,\x00'])
r7 = socket(0x10, 0x803, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r9 = socket(0x400000000010, 0x3, 0x0)
r10 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newchain={0x480, 0x64, 0x100, 0x70bd2c, 0x25dfdbfe, {0x0, 0x0, 0x0, r11, {0xc, 0xffff}, {0x8, 0xc}, {0x6, 0xa}}, [@filter_kind_options=@f_fw={{0x7}, {0x44c, 0x2, [@TCA_FW_MASK={0x8, 0x5, 0x8}, @TCA_FW_MASK={0x8, 0x5, 0xfffffff9}, @TCA_FW_POLICE={0x41c, 0x2, [@TCA_POLICE_RATE={0x404, 0x2, [0xfff, 0x1, 0xa, 0x1, 0x9, 0x4, 0xfff, 0x5, 0x2, 0x5, 0x2424, 0x2, 0x8, 0x0, 0x0, 0x7, 0x1, 0x8, 0x3, 0x12, 0x5, 0x5c83b785, 0x8, 0xff000, 0x400, 0x2, 0x1, 0x7, 0x8, 0x7fff, 0xfffffffc, 0x8, 0xfffffff7, 0xfffffffb, 0x5, 0x80000001, 0xd3ba, 0x101, 0x0, 0x6, 0x6, 0x1ff, 0x4, 0xfffffffc, 0xfffffffe, 0xffffffeb, 0x0, 0x1ff, 0x6, 0x0, 0x7fffffff, 0x5, 0x4446, 0x7, 0x7, 0x474f8519, 0x480000, 0x3fc00, 0x51ab, 0x7, 0x43c, 0x4, 0x1c0000, 0x1, 0xfff, 0x5, 0x7, 0x4, 0x7, 0x1, 0x4, 0x10000, 0x5, 0x9, 0x7, 0x9, 0x0, 0x84f, 0x0, 0x4, 0x2, 0x5, 0x5, 0x4068, 0x53b7d860, 0x8, 0x7, 0x7ff, 0x0, 0x1, 0xf, 0x2, 0x2, 0x4, 0x4d7f16d3, 0x8, 0x7, 0x4, 0x1, 0x0, 0x25, 0x3946, 0x40, 0x4, 0x3, 0x5, 0x8, 0xb, 0x5, 0x2, 0x7e, 0x9, 0x200, 0x8, 0x7, 0x9, 0xfffffe01, 0x7f, 0x42f5, 0x3, 0x0, 0x8, 0x0, 0x1, 0x11ef, 0x3, 0xff, 0x9, 0x40, 0x1000, 0x7, 0x34944d63, 0x6, 0xc9d, 0x0, 0x7, 0x3ff, 0x9, 0x10, 0x8, 0x10, 0xb034, 0xe, 0xeb, 0x0, 0x9, 0x0, 0x6, 0x1, 0x9, 0x9, 0x1, 0x9, 0x8f55, 0x8, 0xc, 0xf, 0x10, 0x2, 0x8ea400, 0x3, 0xffffffff, 0x2, 0xbbb, 0x4, 0x4, 0x7fffffff, 0xf97, 0x6083, 0x10, 0x9, 0x200, 0x1, 0x3, 0x5, 0x0, 0x5, 0x4, 0x9, 0x5, 0x7, 0x8, 0x7fff, 0x2, 0xffff, 0x4, 0x8e, 0xfffffffe, 0x0, 0x2, 0x401, 0x5c7, 0xfffffff7, 0x4, 0x8, 0x2, 0x5, 0x1000, 0xffffffff, 0x2, 0x100, 0x4d7f, 0x9, 0x91, 0x3, 0xffffffff, 0x8001, 0x1, 0x6, 0x4, 0x8, 0x7ff, 0xff, 0x5, 0x81c4000, 0x10000, 0x3, 0x7, 0x4, 0xffffc6be, 0x7ff, 0xa, 0x1000, 0x6, 0x1cc3, 0x6, 0x769, 0x2, 0xfffffffe, 0x101, 0x1839, 0x4, 0x7ff, 0x9, 0x1, 0x8727, 0x4, 0x3, 0xffffffff, 0x2, 0xb1, 0x1000, 0x0, 0x7fff, 0x5, 0x5, 0x8001, 0xa697, 0x0, 0x7ff, 0x6, 0x15a, 0x38, 0x4, 0x79, 0x80000001]}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1ff}, @TCA_POLICE_RESULT={0x8, 0x5, 0x6}]}, @TCA_FW_CLASSID={0x8, 0x1, {0x0, 0x7}}, @TCA_FW_INDEV={0x14, 0x3, 'virt_wifi0\x00'}]}}, @TCA_CHAIN={0x8, 0xb, 0x8}]}, 0x480}}, 0x4)
sendmsg$nl_route_sched(r7, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000940)=@newtfilter={0x68, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {0x0, 0x7}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_flow={{0x9}, {0x38, 0x2, [@TCA_FLOW_EMATCHES={0x2c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x11, 0x1, 0x0, 0x0, {{0xffff, 0x2, 0x4}, {0xff}}}, @TCF_EM_IPT={0xc, 0x2, 0x0, 0x0, {{0x0, 0x9, 0x7}}}]}]}, @TCA_FLOW_KEYS={0x8, 0x1, 0x12a35}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x80}, 0x800)
r12 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r12, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x2})
ioctl$TUNSETLINK(r12, 0x400454cd, 0x339)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))

1.203673394s ago: executing program 4 (id=1150):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="280000001200230b000000000000000000000300", @ANYRES32=0x0, @ANYBLOB="000000000000000008001280"], 0x28}}, 0x0)

970.775519ms ago: executing program 4 (id=1151):
r0 = socket$nl_route(0x10, 0x3, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000300)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @loopback}}}, 0x48)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x0)
copy_file_range(r1, 0x0, r1, 0x0, 0xfffffffffffffff8, 0x1000000)
socket(0x200000100000011, 0x3, 0x20)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$inet6_int(r2, 0x29, 0x1, 0x0, &(0x7f0000000600))
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000000c0))
r3 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @local, 0x1}], 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r3, 0x84, 0x65, &(0x7f0000000180)=[@in6={0xa, 0x0, 0x0, @local}], 0x1c)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x8001000000000000, 0x40, &(0x7f0000000a80)=@raw={'raw\x00', 0x8, 0x3, 0x33c, 0x0, 0x11, 0x148, 0x0, 0x0, 0x2a8, 0x2a8, 0x2a8, 0x2a8, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1c0, 0x208, 0x4003, {}, [@common=@inet=@hashlimit2={{0x150}, {'geneve1\x00', {0x9, 0x3, 0x13, 0x3ff, 0x8, 0x6, 0x80000001, 0x80, 0x8}, {0x7}}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00', {0xff}}, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x96a}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x398)
fcntl$getownex(r2, 0x10, &(0x7f00000001c0))
r5 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000760000000000000000006500000000000000970001000400000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r6, 0x107, 0x5, &(0x7f0000001100)=@req3={0x8000, 0x200, 0x80, 0x20000, 0x8, 0xfffffffc}, 0x1c)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b03000000000000140012800b00010067656e65766500000400028008000a00", @ANYRES32=r7, @ANYBLOB="211e45d791e338c757283b48626c71f95272dfe6"], 0x3c}}, 0x0)

970.42132ms ago: executing program 3 (id=1152):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b0000000000000000000000008000", @ANYBLOB='\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket$kcm(0x29, 0x2, 0x0)
r5 = memfd_create(&(0x7f0000000000)='e\xf4E\x88-\x00', 0x0)
pwritev(r5, &(0x7f0000000040)=[{&(0x7f0000000480)="f6", 0x1}], 0x1, 0x4000001, 0x0)
sendfile(r4, r5, 0x0, 0x8000fb00)
syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x6d89, 0x8, 0x0, 0xf0}, &(0x7f00000000c0), &(0x7f0000000040))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x180, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r6, 0x541b, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r7, 0x0, 0x8000000000000c, &(0x7f0000000600)='u', 0x1)
getsockopt$inet_opts(r7, 0x0, 0x9, 0x0, &(0x7f0000000180))
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000ac0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000b40)="055d05e04eda1b15ffce0fbe1fcd", 0x0, 0x81d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)

969.134136ms ago: executing program 4 (id=1153):
r0 = getpid()
r1 = syz_open_procfs(r0, &(0x7f00000001c0)='mountstats\x00')
preadv2(r1, &(0x7f00000001c0), 0x0, 0xd0d, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000, 0x2, &(0x7f0000ffd000/0x1000)=nil)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = inotify_init1(0x0)
inotify_rm_watch(r3, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0x14)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x5)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000400)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r6 = dup(r5)
ioctl$KDSKBLED(0xffffffffffffffff, 0x4b65, 0x7)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x3ce9, &(0x7f0000000080)={0x0, 0x7f36, 0x10000, 0xfffffffc, 0x1}, &(0x7f0000000180)=<r7=>0x0, 0x0)
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000480)={0x10, 0x0, &(0x7f00000007c0)=[@request_death], 0x0, 0x0, 0x0})
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a74000000060a0b0400000000000000000200000048000480280001800b000100736f636b657400001c000280080002400000000b080001400000000308000300000000891800018008000100647570000c000280080002400000000c0900010073797a30000000000900020073797a3200000000140000001100010000000001000000000000000a"], 0x9c}}, 0x0)
syz_io_uring_submit(r7, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

907.563653ms ago: executing program 5 (id=1154):
socket$nl_generic(0x10, 0x3, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
modify_ldt$write2(0x11, &(0x7f0000000000)={0x2c9, 0x100000, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0x1, 0x1, 0x1}, 0x10)
r0 = socket$kcm(0x11, 0x3, 0x0)
r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000001c0)={0xffffffffffffffff}, 0x4)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000)=r1, 0x4)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x5}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000180)="27050200340f14000600002fb96dbcf7060600000017000000ff1144ee162fd4b8bf7256da82f600102821880b00000000000000570000000600000000000000", 0x40}, {&(0x7f0000001240)}], 0x2}, 0x9cdc2384056b48b8)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x5}, 0x20, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000040)="b805008ec064c109c6f2ab3e2e2e67f20f5c26baf80c66b86088e58366efbafc0c66b85200000066ef0f7953002e0f1f0066b8005000000f23d80f21f86635400000f00f23f836f390b898038ec0", 0x4e}], 0x1, 0x46, &(0x7f0000000100)=[@cstype3={0x5, 0x2}], 0x1)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00')
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c0000000407b1"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x141a82, 0x0)
sendfile(r5, r5, &(0x7f0000000000)=0x7, 0x4)
modify_ldt$write(0x1, &(0x7f0000000240)={0xa, 0x20000000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x10)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r6, &(0x7f0000006300)={0x2020, 0x0, <r7=>0x0, <r8=>0x0, <r9=>0x0}, 0x2020)
write$FUSE_INIT(r6, &(0x7f0000000040)={0x50, 0x0, r7, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r6, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r6, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3966, 0x3, 0x8000, 0x0, r8, r9, 0xe, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r10 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
write$tcp_congestion(r10, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r11 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r11)

473.797948ms ago: executing program 3 (id=1155):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, 0x0, 0x0, 0x0)
getsockopt$PNPIPE_IFINDEX(r1, 0x113, 0x2, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)=ANY=[], 0x50)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000002c0), 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r4, 0xc05064a7, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x700})
write$UHID_CREATE(r3, &(0x7f0000002a00)={0x0, {'syz1\x00', 'syz0\x00', 'syz1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}}, 0x11c)

373.622533ms ago: executing program 4 (id=1156):
syz_open_procfs$namespace(0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xfffffffa, 0x11e41e7a, 0x20000000, 0x0, 0x8f}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x3ffe, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0xff}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r4, &(0x7f00000002c0)="f9", 0x1, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x0, @private2}, 0x1c)
sendto$inet6(r4, &(0x7f0000000300)='H', 0x1, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c)
shutdown(r4, 0x1)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x74, &(0x7f0000000200)={0x0, 0x0, 0x10}, &(0x7f0000000240)=0x18)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000180), 0x0, 0x1)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, 0x0, 0x20000000)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000002940)={0x0, 0x0, 0x0}, 0x0)
r6 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f0000000100)={0xfffffffd, "499e6829b3c60793c08bb90300000000002000e0b10b00fbffffff00"})
io_setup(0x7, &(0x7f0000000000))
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
memfd_create(&(0x7f0000000500)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xb4\xe1\x88\x9d[@\xf5\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\x18\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb4\xb4\x91\xb8\x04\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xbe,\x00\x0e\xbcfvin\xfc.|\xd4h\xec\x82o\x8er\x15\xb5\xbc@Om0R\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdcnV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16To\x80\x13]C\xfb@\xc2`\xf7\x1a\x00\xea\x12\xccX\xb5\xa5\xba\xc8\x03\x00\x00\x00\x00\x00\x00\\\xae\xcb\x1a.\xc2\x8f\xd1x4]\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x8d\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL9\xa7O\x95\xf4\xb0p \xf8\xd00\x88y\xebX\xb2\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\xd2xL\x18\x10\x8e\xbehn&', 0x4)
openat$cdrom(0xffffff9c, &(0x7f0000000140), 0x1e, 0x0)

237.885104ms ago: executing program 3 (id=1157):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x812, r2, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000280)={0x1})
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
r4 = syz_open_dev$video4linux(&(0x7f00000001c0), 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r4, 0xc0305602, &(0x7f0000000000)={0x0, 0xfffffff3, 0x1008, 0x1})
write$cgroup_pid(r2, &(0x7f0000000040)=r3, 0x12)
migrate_pages(r3, 0x7ff, 0x0, &(0x7f0000000380)=0x104)
r5 = socket$inet6_icmp(0xa, 0x2, 0x3a)
fcntl$setown(r5, 0x8, r3)

113.414705ms ago: executing program 3 (id=1158):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1c0d}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}, @IFLA_GRE_ERSPAN_HWID={0x6}]}}}]}, 0x4c}}, 0x12)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) (async)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000000c0)={[0x2, 0x8, 0xff, 0x3, 0x1f5, 0x7, 0x2, 0x7, 0x1, 0x4, 0xfa14, 0x9, 0x180000, 0x6, 0xe, 0x2a], 0x100000, 0x8})
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x98, 0x4)
socket$kcm(0x2, 0x3, 0x2)
open(&(0x7f0000000000)='./file0\x00', 0x10040, 0x24) (async)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x10040, 0x24)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r3, 0x400, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @local}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000040}, 0x48080)
fcntl$setlease(r2, 0x400, 0x2) (async)
fcntl$setlease(r2, 0x400, 0x2)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r4, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006) (async)
write$UHID_INPUT(r4, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r4, 0x0) (async)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r4, 0x0)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r5, 0x10d, 0xb, 0x0, &(0x7f0000000080))
syz_open_dev$dri(&(0x7f0000000180), 0x70, 0x80502) (async)
r6 = syz_open_dev$dri(&(0x7f0000000180), 0x70, 0x80502)
syz_genetlink_get_family_id$devlink(&(0x7f0000000200), r2) (async)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200), r2)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r2, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000240)={0x160, r7, 0x200, 0x70bd2b, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}]}, 0x160}, 0x1, 0x0, 0x0, 0x2000c080}, 0x40000)
ioctl$DRM_IOCTL_AGP_ENABLE(r6, 0x40046432, &(0x7f0000000700)) (async)
ioctl$DRM_IOCTL_AGP_ENABLE(r6, 0x40046432, &(0x7f0000000700))
openat$procfs(0xffffff9c, &(0x7f0000000840)='/proc/tty/drivers\x00', 0x0, 0x0) (async)
r8 = openat$procfs(0xffffff9c, &(0x7f0000000840)='/proc/tty/drivers\x00', 0x0, 0x0)
setsockopt$llc_int(r8, 0x10c, 0x7, &(0x7f0000000880), 0x4) (async)
setsockopt$llc_int(r8, 0x10c, 0x7, &(0x7f0000000880), 0x4)
ioctl$DRM_IOCTL_MODE_GETCRTC(r2, 0xc06864a1, &(0x7f0000000980)={&(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x0, <r9=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r2, 0xc06464ce, &(0x7f0000000a00)={r9, 0x2, 0x0, 0x8, 0x1, [], [0x37, 0x6, 0x8, 0xfffffffb], [0x0, 0x6, 0x7, 0x3], [0x1, 0x7a, 0x0, 0x3]})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000a80)={0x0, 0x0, r8})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r6, 0xc01064c2, &(0x7f0000000ac0)={0x0, 0x1, r2})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r2, 0xc01064c2, &(0x7f0000000b00)={0x0, 0x0, r2})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000b40)={0x0, 0x1, r8})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r6, 0xc01064c2, &(0x7f0000000b80)={0x0, 0x1, r2})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r8, 0xc01064c2, &(0x7f0000000bc0)={0x0, 0x0, r2})

72.107667ms ago: executing program 3 (id=1159):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x70e02, 0x0)
write$cgroup_pid(r0, 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
syz_clone3(&(0x7f00000000c0)={0x200000400, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xe, &(0x7f0000000000), 0x4)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000000)=0x6)

0s ago: executing program 3 (id=1160):
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000000)='dctcp\x00', 0x6)
bind$inet6(0xffffffffffffffff, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000100)="0445cf6f46034ab6c8c99ff0", 0xc, 0x2000c011, &(0x7f00000001c0)={0xa, 0x2, 0x2, @empty, 0x8}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000040)='yeah\x00', 0x5)
syz_open_procfs(0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x42, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11641e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x20, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x647b}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x6000000b)
r3 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x10}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000080)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r3, 0x47ba, 0x0, 0x3000000, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000080)='Lw', 0x2, 0x800, 0x0, 0x0)
r6 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r6, 0xc0401273, &(0x7f0000000000)={'\x00', 0x2, 0x6f11, 0xb, 0xfffffffffffffeff, 0x11c3adec})
ioctl$BLKTRACESTART(r6, 0x1276, 0x0)

kernel console output (not intermixed with test programs):

/0x10
[  105.900920][ T7555]  ? proc_fail_nth_write+0xa0/0x250
[  105.902445][ T7555]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  105.904098][ T7555]  kernel_clone+0xfd/0x960
[  105.905420][ T7555]  ? __pfx_kernel_clone+0x10/0x10
[  105.906915][ T7555]  ? find_held_lock+0x59/0x110
[  105.908327][ T7555]  __do_compat_sys_ia32_clone+0xb7/0x100
[  105.910015][ T7555]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[  105.911821][ T7555]  __do_fast_syscall_32+0x73/0x120
[  105.913309][ T7555]  do_fast_syscall_32+0x32/0x80
[  105.914700][ T7555]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  105.916526][ T7555] RIP: 0023:0xf7f74579
[  105.917716][ T7555] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  105.923181][ T7555] RSP: 002b:00000000f50c650c EFLAGS: 00000202 ORIG_RAX: 0000000000000078
[  105.925572][ T7555] RAX: ffffffffffffffda RBX: 00000000640c7000 RCX: 0000000000000000
[  105.927831][ T7555] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  105.930081][ T7555] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  105.932326][ T7555] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  105.934589][ T7555] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  105.936836][ T7555]  </TASK>
[  106.096582][ T7564] netlink: 'syz.3.350': attribute type 10 has an invalid length.
[  106.098747][ T7564] netlink: 40 bytes leftover after parsing attributes in process `syz.3.350'.
[  106.105559][ T7564] team0: entered promiscuous mode
[  106.107022][ T7564] team_slave_0: entered promiscuous mode
[  106.108917][ T7564] team_slave_1: entered promiscuous mode
[  106.110627][ T7564] team0: entered allmulticast mode
[  106.112539][ T7564] team_slave_0: entered allmulticast mode
[  106.114252][ T7564] team_slave_1: entered allmulticast mode
[  106.116205][ T7564] bridge0: port 3(team0) entered blocking state
[  106.118432][ T7564] bridge0: port 3(team0) entered disabled state
[  106.121318][ T7564] bridge0: port 3(team0) entered blocking state
[  106.123147][ T7564] bridge0: port 3(team0) entered forwarding state
[  106.182310][ T7566] overlayfs: missing 'workdir'
[  106.214875][ T7565] netlink: 'syz.0.348': attribute type 10 has an invalid length.
[  106.219464][ T7565] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.222237][ T7565] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.229732][ T7565] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.232086][ T7565] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.234291][ T7565] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.236282][ T7565] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.246911][ T7565] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  106.427086][ T7571] netlink: 'syz.3.351': attribute type 1 has an invalid length.
[  106.430296][ T7571] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.351'.
[  106.621226][ T7571] mmap: syz.3.351 (7571) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  107.441208][ T1322] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  107.591081][ T1322] usb 6-1: Using ep0 maxpacket: 8
[  107.595024][ T1322] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  107.598245][ T1322] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  107.602855][ T1322] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  107.607118][ T1322] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  107.615933][ T1322] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  107.624875][ T1322] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  107.627305][ T1322] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  107.631708][ T1322] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  107.638576][ T1322] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  107.642214][ T1322] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  107.648953][ T1322] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  107.654032][ T1322] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  107.658379][ T1322] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  107.665319][ T1322] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  107.668662][ T1322] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  107.675637][ T1322] usb 6-1: string descriptor 0 read error: -22
[  107.677461][ T1322] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  107.679978][ T1322] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  107.685525][ T1322] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  107.885875][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  107.885886][   T39] audit: type=1326 audit(1737292896.692:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7586 comm="syz.1.357" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  107.889708][   T57] usb 6-1: USB disconnect, device number 2
[  107.894227][   T39] audit: type=1326 audit(1737292896.692:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7586 comm="syz.1.357" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  107.904886][   T39] audit: type=1326 audit(1737292896.692:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7586 comm="syz.1.357" exe="/syz-executor" sig=0 arch=40000003 syscall=289 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  107.911821][   T39] audit: type=1326 audit(1737292896.692:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7586 comm="syz.1.357" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  107.918006][   T39] audit: type=1326 audit(1737292896.692:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7586 comm="syz.1.357" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  107.924324][   T39] audit: type=1326 audit(1737292896.692:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7586 comm="syz.1.357" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  107.930210][   T39] audit: type=1326 audit(1737292896.692:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7586 comm="syz.1.357" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  107.937612][   T39] audit: type=1326 audit(1737292896.692:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7586 comm="syz.1.357" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  107.944201][   T39] audit: type=1326 audit(1737292896.702:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7586 comm="syz.1.357" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  107.950541][   T39] audit: type=1326 audit(1737292896.702:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7586 comm="syz.1.357" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  108.479356][ T7609] netdevsim netdevsim1: Direct firmware load for .
[  108.479356][ T7609]  failed with error -2
[  108.492544][ T7609] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  108.492544][ T7609] 
[  108.804889][ T7616] FAULT_INJECTION: forcing a failure.
[  108.804889][ T7616] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  108.810258][ T7616] CPU: 0 UID: 0 PID: 7616 Comm: syz.1.364 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  108.814375][ T7616] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.818457][ T7616] Call Trace:
[  108.819721][ T7616]  <TASK>
[  108.820852][ T7616]  dump_stack_lvl+0x16c/0x1f0
[  108.822677][ T7616]  should_fail_ex+0x497/0x5b0
[  108.824512][ T7616]  _copy_to_user+0x32/0xd0
[  108.826202][ T7616]  simple_read_from_buffer+0xd0/0x160
[  108.828221][ T7616]  proc_fail_nth_read+0x198/0x270
[  108.830185][ T7616]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  108.832330][ T7616]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  108.834486][ T7616]  vfs_read+0x1df/0xbe0
[  108.836099][ T7616]  ? __fget_files+0x1fc/0x3a0
[  108.837991][ T7616]  ? __pfx___mutex_lock+0x10/0x10
[  108.839931][ T7616]  ? __pfx_vfs_read+0x10/0x10
[  108.841744][ T7616]  ? __fget_files+0x206/0x3a0
[  108.843535][ T7616]  ksys_read+0x12b/0x250
[  108.845110][ T7616]  ? __pfx_ksys_read+0x10/0x10
[  108.846899][ T7616]  __do_fast_syscall_32+0x73/0x120
[  108.848834][ T7616]  do_fast_syscall_32+0x32/0x80
[  108.850675][ T7616]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  108.853155][ T7616] RIP: 0023:0xf7f74579
[  108.854707][ T7616] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  108.862000][ T7616] RSP: 002b:00000000f50a5590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  108.865199][ T7616] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000f50a5620
[  108.868229][ T7616] RDX: 000000000000000f RSI: 00000000f7403ff4 RDI: 0000000000000000
[  108.871253][ T7616] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  108.874288][ T7616] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  108.877220][ T7616] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  108.880239][ T7616]  </TASK>
[  108.927594][ T7622] capability: warning: `syz.1.367' uses 32-bit capabilities (legacy support in use)
[  109.643530][ T7637] netlink: 'syz.2.370': attribute type 1 has an invalid length.
[  109.662157][ T7637] 8021q: adding VLAN 0 to HW filter on device bond2
[  109.717981][ T7637] bond2: (slave gretap1): making interface the new active one
[  109.723135][ T7637] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  109.901814][ T7647] capability: warning: `syz.3.373' uses deprecated v2 capabilities in a way that may be insecure
[  110.194208][ T7654] sctp: [Deprecated]: syz.1.376 (pid 7654) Use of struct sctp_assoc_value in delayed_ack socket option.
[  110.194208][ T7654] Use struct sctp_sack_info instead
[  110.326639][ T7659] sctp: [Deprecated]: syz.1.376 (pid 7659) Use of struct sctp_assoc_value in delayed_ack socket option.
[  110.326639][ T7659] Use struct sctp_sack_info instead
[  111.078364][ T7677] netlink: 8 bytes leftover after parsing attributes in process `syz.0.381'.
[  112.441400][ T7703] netlink: 16 bytes leftover after parsing attributes in process `syz.2.389'.
[  112.774885][ T7716] bridge0: port 3(syz_tun) entered blocking state
[  112.777236][ T7716] bridge0: port 3(syz_tun) entered disabled state
[  112.779731][ T7716] syz_tun: entered allmulticast mode
[  112.785217][ T7716] syz_tun: entered promiscuous mode
[  112.788332][ T7716] bridge0: port 3(syz_tun) entered blocking state
[  112.791205][ T7716] bridge0: port 3(syz_tun) entered forwarding state
[  113.607829][ T7731] netlink: 20 bytes leftover after parsing attributes in process `syz.2.396'.
[  113.613763][ T7731] geneve0: entered allmulticast mode
[  113.778325][   T39] kauditd_printk_skb: 11 callbacks suppressed
[  113.778442][   T39] audit: type=1800 audit(1737292902.582:88): pid=7735 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.395" name="hugetlb.1GB.rsvd.usage_in_bytes" dev="9p" ino=37618291 res=0 errno=0
[  113.920363][ T7738] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  113.934533][ T7738] batman_adv: batadv0: Adding interface: gretap1
[  113.937259][ T7738] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.945464][ T7738] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  114.902734][   T39] audit: type=1326 audit(1737292903.712:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.2.402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  114.903048][   T95] Bluetooth: hci4: Frame reassembly failed (-84)
[  114.908812][   T39] audit: type=1326 audit(1737292903.712:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.2.402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  114.917367][   T39] audit: type=1326 audit(1737292903.712:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.2.402" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  114.925422][   T39] audit: type=1326 audit(1737292903.712:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.2.402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  114.936542][   T39] audit: type=1326 audit(1737292903.712:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.2.402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  114.943172][   T39] audit: type=1326 audit(1737292903.712:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.2.402" exe="/syz-executor" sig=0 arch=40000003 syscall=349 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  114.949450][   T39] audit: type=1326 audit(1737292903.712:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.2.402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  114.955644][   T39] audit: type=1326 audit(1737292903.712:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.2.402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  114.961815][   T39] audit: type=1326 audit(1737292903.712:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.2.402" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  115.266754][ T7757] Cannot find add_set index 3 as target
[  115.806644][ T7765] Sensor A: =================  START STATUS  =================
[  115.809732][ T7765] Sensor A: Test Pattern: 75% Colorbar
[  115.812732][ T7765] Sensor A: Show Information: All
[  115.814448][ T7765] Sensor A: Vertical Flip: false
[  115.816170][ T7765] Sensor A: Horizontal Flip: false
[  115.817720][ T7765] Sensor A: Brightness: 128
[  115.819090][ T7765] Sensor A: Contrast: 128
[  115.820396][ T7765] Sensor A: Hue: 0
[  115.822643][ T7765] Sensor A: Saturation: 128
[  115.824032][ T7765] Sensor A: ==================  END STATUS  ==================
[  115.931838][ T7768] netlink: 'syz.1.405': attribute type 1 has an invalid length.
[  116.971129][ T5955] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  117.346689][ T7787] netlink: 'syz.2.409': attribute type 10 has an invalid length.
[  117.712162][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  117.716493][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  117.719561][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  117.722507][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  117.725429][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  117.728365][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  117.731280][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  117.734302][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  117.737343][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  117.740258][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.0.412'.
[  118.044252][ T7805] nbd: socks must be embedded in a SOCK_ITEM attr
[  118.739058][ T7822] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  118.742911][ T7822] tipc: Enabled bearer <udp:syz1>, priority 10
[  119.241438][   T69] libceph: connect (1)[c::]:6789 error -101
[  119.244200][   T69] libceph: mon0 (1)[c::]:6789 connect error
[  119.251280][   T69] libceph: connect (1)[c::]:6789 error -101
[  119.253369][   T69] libceph: mon0 (1)[c::]:6789 connect error
[  119.490361][ T7835] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  119.512784][   T69] libceph: connect (1)[c::]:6789 error -101
[  119.515138][   T69] libceph: mon0 (1)[c::]:6789 connect error
[  119.668587][ T7829] ceph: No mds server is up or the cluster is laggy
[  120.808611][ T7863] netfs: Couldn't get user pages (rc=-14)
[  121.282272][ T7883] netlink: 'syz.0.435': attribute type 10 has an invalid length.
[  121.285370][ T7883] bridge0: port 3(syz_tun) entered disabled state
[  121.287670][ T7883] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.289975][ T7883] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.234343][ T7933] __nla_validate_parse: 35 callbacks suppressed
[  123.234359][ T7933] netlink: 16 bytes leftover after parsing attributes in process `syz.1.454'.
[  123.638211][ T7953] input: syz1 as /devices/virtual/input/input8
[  123.677761][   T39] kauditd_printk_skb: 49 callbacks suppressed
[  123.680441][   T39] audit: type=1800 audit(1737292912.482:147): pid=7954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.457" name="hugetlb.1GB.rsvd.usage_in_bytes" dev="9p" ino=37618291 res=0 errno=0
[  124.321057][ T5985] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  124.461206][ T5985] usb 5-1: device descriptor read/64, error -71
[  124.711163][ T5985] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  124.841165][ T5985] usb 5-1: device descriptor read/64, error -71
[  124.993928][ T5985] usb usb5-port1: attempt power cycle
[  125.331125][ T5985] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  125.362449][ T5985] usb 5-1: device descriptor read/8, error -71
[  125.611139][ T5985] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  125.633439][ T5985] usb 5-1: device descriptor read/8, error -71
[  125.746332][ T5985] usb usb5-port1: unable to enumerate USB device
[  126.033137][ T5955] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  126.481085][ T5986] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  126.631445][ T5986] usb 8-1: Using ep0 maxpacket: 8
[  126.634671][ T5986] usb 8-1: config 0 has no interfaces?
[  126.637376][ T5986] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  126.651050][ T5986] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.654902][ T5986] usb 8-1: config 0 descriptor??
[  126.721787][ T8019] netlink: 'syz.2.484': attribute type 1 has an invalid length.
[  126.724103][ T8019] netlink: 'syz.2.484': attribute type 11 has an invalid length.
[  126.726434][ T8019] netlink: 224 bytes leftover after parsing attributes in process `syz.2.484'.
[  126.733212][ T5986] IPVS: starting estimator thread 0...
[  126.817462][ T8026] FAULT_INJECTION: forcing a failure.
[  126.817462][ T8026] name failslab, interval 1, probability 0, space 0, times 0
[  126.821170][ T8022] IPVS: using max 37 ests per chain, 88800 per kthread
[  126.822270][ T8026] CPU: 3 UID: 0 PID: 8026 Comm: syz.2.485 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  126.829090][ T8026] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.833171][ T8026] Call Trace:
[  126.834453][ T8026]  <TASK>
[  126.835595][ T8026]  dump_stack_lvl+0x16c/0x1f0
[  126.837431][ T8026]  should_fail_ex+0x497/0x5b0
[  126.839226][ T8026]  should_failslab+0xc2/0x120
[  126.841038][ T8026]  __kmalloc_cache_noprof+0x68/0x420
[  126.843037][ T8026]  sctp_add_bind_addr+0x9d/0x3e0
[  126.844929][ T8026]  sctp_copy_local_addr_list+0x39e/0x5a0
[  126.847041][ T8026]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  126.849391][ T8026]  ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360
[  126.851650][ T8026]  ? sctp_bind_addr_copy+0xe0/0x530
[  126.853637][ T8026]  sctp_bind_addr_copy+0xe0/0x530
[  126.855568][ T8026]  sctp_connect_new_asoc+0x1d8/0x790
[  126.857603][ T8026]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  126.859835][ T8026]  ? lock_acquire+0x2f/0xb0
[  126.861599][ T8026]  ? sctp_endpoint_lookup_assoc+0xac/0x2a0
[  126.863822][ T8026]  __sctp_connect+0x3f5/0xc60
[  126.865646][ T8026]  ? __might_fault+0x13b/0x190
[  126.867482][ T8026]  ? trace_lock_acquire+0x14e/0x1f0
[  126.869246][    T8] usb 8-1: USB disconnect, device number 5
[  126.869466][ T8026]  ? __pfx___sctp_connect+0x10/0x10
[  126.873668][ T8026]  ? lock_acquire+0x2f/0xb0
[  126.875397][ T8026]  ? __might_fault+0xe3/0x190
[  126.877213][ T8026]  ? __might_fault+0xe3/0x190
[  126.879031][ T8026]  __sctp_setsockopt_connectx+0xfc/0x170
[  126.881179][ T8026]  sctp_getsockopt+0x2e9f/0x7ae0
[  126.883084][ T8026]  ? hlock_class+0x4e/0x130
[  126.884826][ T8026]  ? mark_lock+0xb5/0xc60
[  126.886490][ T8026]  ? aa_label_sk_perm+0x19d/0x5a0
[  126.888433][ T8026]  ? __pfx_sctp_getsockopt+0x10/0x10
[  126.890455][ T8026]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  126.892503][ T8026]  ? find_held_lock+0x2d/0x110
[  126.894382][ T8026]  ? __pfx___might_resched+0x10/0x10
[  126.896389][ T8026]  ? aa_sk_perm+0x2f5/0xb20
[  126.898138][ T8026]  ? ksys_write+0x191/0x250
[  126.899917][ T8026]  ? __pfx_aa_sk_perm+0x10/0x10
[  126.901822][ T8026]  ? find_held_lock+0x2d/0x110
[  126.903688][ T8026]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  126.906022][ T8026]  ? do_sock_getsockopt+0x3fe/0x870
[  126.908049][ T8026]  do_sock_getsockopt+0x3fe/0x870
[  126.909996][ T8026]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  126.912100][ T8026]  ? lock_acquire+0x2f/0xb0
[  126.913847][ T8026]  ? __fget_files+0x40/0x3a0
[  126.915626][ T8026]  ? __fget_files+0x206/0x3a0
[  126.917438][ T8026]  __sys_getsockopt+0x12f/0x260
[  126.919308][ T8026]  __ia32_sys_getsockopt+0xbc/0x160
[  126.921329][ T8026]  ? lockdep_hardirqs_on+0x7c/0x110
[  126.923321][ T8026]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  126.925604][ T8026]  __do_fast_syscall_32+0x73/0x120
[  126.927077][ T8026]  do_fast_syscall_32+0x32/0x80
[  126.928511][ T8026]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  126.930339][ T8026] RIP: 0023:0xf7f22579
[  126.931512][ T8026] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  126.937003][ T8026] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  126.939393][ T8026] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000084
[  126.941652][ T8026] RDX: 000000000000006f RSI: 00000000200000c0 RDI: 0000000020000100
[  126.943911][ T8026] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  126.946174][ T8026] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  126.948428][ T8026] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  126.950698][ T8026]  </TASK>
[  127.007392][   T39] audit: type=1326 audit(1737292915.812:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.1.489" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  127.018368][   T39] audit: type=1326 audit(1737292915.812:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.1.489" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  127.027915][   T39] audit: type=1326 audit(1737292915.812:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.1.489" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  127.039413][   T39] audit: type=1326 audit(1737292915.812:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.1.489" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  127.050070][   T39] audit: type=1326 audit(1737292915.812:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.1.489" exe="/syz-executor" sig=0 arch=40000003 syscall=349 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  127.057334][ T8043] 9pnet_virtio: no channels available for device syz
[  127.064628][   T39] audit: type=1326 audit(1737292915.812:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.1.489" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  127.074042][   T39] audit: type=1326 audit(1737292915.812:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.1.489" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  127.080257][   T39] audit: type=1326 audit(1737292915.812:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.1.489" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  127.086860][   T39] audit: type=1326 audit(1737292915.812:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8037 comm="syz.1.489" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f74579 code=0x7ffc0000
[  127.281272][ T8050] FAULT_INJECTION: forcing a failure.
[  127.281272][ T8050] name fail_futex, interval 1, probability 0, space 0, times 1
[  127.286993][ T8050] CPU: 3 UID: 0 PID: 8050 Comm: syz.1.492 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  127.290037][ T8050] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.293229][ T8050] Call Trace:
[  127.294189][ T8050]  <TASK>
[  127.295016][ T8050]  dump_stack_lvl+0x16c/0x1f0
[  127.296329][ T8050]  should_fail_ex+0x497/0x5b0
[  127.297696][ T8050]  get_futex_key+0x4a3/0x1000
[  127.299060][ T8050]  ? __pfx_get_futex_key+0x10/0x10
[  127.300535][ T8050]  ? kasan_save_track+0x14/0x30
[  127.301946][ T8050]  ? __kasan_kmalloc+0xaa/0xb0
[  127.303291][ T8050]  futex_requeue+0x1e5/0x1eb0
[  127.304635][ T8050]  ? trace_lock_acquire+0x14e/0x1f0
[  127.306165][ T8050]  ? __pfx_futex_requeue+0x10/0x10
[  127.307665][ T8050]  ? ksys_write+0x12b/0x250
[  127.308989][ T8050]  ? find_held_lock+0x2d/0x110
[  127.310370][ T8050]  ? ksys_write+0x191/0x250
[  127.311680][ T8050]  ? __pfx_lock_release+0x10/0x10
[  127.313145][ T8050]  ? vfs_write+0x306/0x1150
[  127.314465][ T8050]  do_futex+0x1af/0x350
[  127.315679][ T8050]  ? __pfx_do_futex+0x10/0x10
[  127.317046][ T8050]  __ia32_sys_futex_time32+0x1da/0x460
[  127.318621][ T8050]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  127.320358][ T8050]  ? ksys_write+0x1ba/0x250
[  127.321678][ T8050]  ? __pfx_ksys_write+0x10/0x10
[  127.323085][ T8050]  __do_fast_syscall_32+0x73/0x120
[  127.324558][ T8050]  do_fast_syscall_32+0x32/0x80
[  127.325981][ T8050]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  127.327794][ T8050] RIP: 0023:0xf7f74579
[  127.328933][ T8050] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  127.334376][ T8050] RSP: 002b:00000000f508455c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  127.336761][ T8050] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 000000000000008c
[  127.339020][ T8050] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  127.341296][ T8050] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  127.343559][ T8050] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  127.345819][ T8050] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  127.348087][ T8050]  </TASK>
[  127.527694][ T8058] vxcan3: entered promiscuous mode
[  127.529720][ T8058] vxcan3: entered allmulticast mode
[  127.583183][ T8062] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  127.588820][ T8062] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  127.826948][ T8059] x86/PAT: syz.1.496:8059 freeing invalid memtype [mem 0xfed00000-0xfed00fff]
[  128.220608][ T8091] netlink: 16 bytes leftover after parsing attributes in process `syz.0.505'.
[  128.443874][   T95] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.446934][   T95] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  128.525861][   T95] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.528670][   T95] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  128.601589][   T95] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.604542][   T95] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  128.678209][   T95] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.682580][   T95] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  128.700901][ T5955] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  128.710564][ T5955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  128.713927][ T5955] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  128.716741][ T5955] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  128.720574][ T5955] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  128.723251][ T5955] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  128.810900][   T95] bridge_slave_1: left allmulticast mode
[  128.812893][   T95] bridge_slave_1: left promiscuous mode
[  128.817545][   T95] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.827190][   T95] bridge_slave_0: left allmulticast mode
[  128.829411][   T95] bridge_slave_0: left promiscuous mode
[  128.837557][   T95] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.966325][   T95] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  129.076204][   T95] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  129.082042][   T95] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  129.086693][   T95] bond0 (unregistering): Released all slaves
[  129.125404][ T8118] mac80211_hwsim hwsim7 syzkaller0: entered promiscuous mode
[  129.128501][ T8118] mac80211_hwsim hwsim7 syzkaller0: entered allmulticast mode
[  129.161858][ T8100] chnl_net:caif_netlink_parms(): no params data found
[  129.257933][ T8100] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.260065][ T8100] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.262664][ T8100] bridge_slave_0: entered allmulticast mode
[  129.264859][ T8100] bridge_slave_0: entered promiscuous mode
[  129.267507][ T8100] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.269626][ T8100] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.272184][ T8100] bridge_slave_1: entered allmulticast mode
[  129.274421][ T8100] bridge_slave_1: entered promiscuous mode
[  129.306203][ T8100] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  129.310607][ T8100] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  129.314725][   T39] kauditd_printk_skb: 23 callbacks suppressed
[  129.314734][   T39] audit: type=1326 audit(1737292918.122:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.514" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  129.323387][   T39] audit: type=1326 audit(1737292918.132:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.514" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  129.329518][   T39] audit: type=1326 audit(1737292918.132:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.514" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  129.336191][   T39] audit: type=1326 audit(1737292918.132:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.514" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  129.342561][   T39] audit: type=1326 audit(1737292918.132:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.514" exe="/syz-executor" sig=0 arch=40000003 syscall=349 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  129.348508][   T39] audit: type=1326 audit(1737292918.132:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.514" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  129.355588][   T39] audit: type=1326 audit(1737292918.132:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.514" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  129.359866][ T8100] team0: Port device team_slave_0 added
[  129.366061][   T39] audit: type=1326 audit(1737292918.132:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.514" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  129.371829][ T8100] team0: Port device team_slave_1 added
[  129.375938][   T39] audit: type=1326 audit(1737292918.132:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.514" exe="/syz-executor" sig=0 arch=40000003 syscall=379 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  129.382270][   T39] audit: type=1326 audit(1737292918.132:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8135 comm="syz.0.514" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  129.415128][ T8100] batman_adv: batadv0: Adding interface: batadv_slave_0
[  129.417209][ T8100] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  129.424889][ T8100] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  129.428774][ T8100] batman_adv: batadv0: Adding interface: batadv_slave_1
[  129.430830][ T8100] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  129.438562][ T8100] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  129.456944][   T95] hsr_slave_0: left promiscuous mode
[  129.459020][   T95] hsr_slave_1: left promiscuous mode
[  129.462406][   T95] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  129.464640][   T95] batman_adv: batadv0: Removing interface: batadv_slave_0
[  129.467426][   T95] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  129.469687][   T95] batman_adv: batadv0: Removing interface: batadv_slave_1
[  129.487588][   T95] veth1_macvtap: left promiscuous mode
[  129.490292][   T95] veth0_macvtap: left promiscuous mode
[  129.493289][   T95] veth1_vlan: left promiscuous mode
[  129.495001][   T95] veth0_vlan: left promiscuous mode
[  129.670242][ T8151] netlink: 4 bytes leftover after parsing attributes in process `syz.2.517'.
[  129.725552][ T8153] netlink: 12 bytes leftover after parsing attributes in process `syz.2.517'.
[  130.712751][ T8162] netlink: 16 bytes leftover after parsing attributes in process `syz.3.518'.
[  130.734452][ T5944] Bluetooth: hci2: command tx timeout
[  130.896922][   T95] team0 (unregistering): Port device team_slave_1 removed
[  130.987383][   T95] team0 (unregistering): Port device team_slave_0 removed
[  131.531505][ T8100] hsr_slave_0: entered promiscuous mode
[  131.534179][ T8100] hsr_slave_1: entered promiscuous mode
[  131.674742][ T8100] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  131.682233][ T8100] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  131.694890][ T8100] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  131.701384][ T8100] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  131.777868][ T8100] 8021q: adding VLAN 0 to HW filter on device bond0
[  131.798589][ T8100] 8021q: adding VLAN 0 to HW filter on device team0
[  131.828892][   T92] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.831750][   T92] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.868437][ T8100] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  131.873086][ T8100] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  131.887897][   T92] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.890794][   T92] bridge0: port 2(bridge_slave_1) entered forwarding state
[  132.252628][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  132.254555][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  132.423431][ T8201] syz.2.523: attempt to access beyond end of device
[  132.423431][ T8201] sr0: rw=0, sector=64, nr_sectors = 4 limit=0
[  132.704736][ T8100] 8021q: adding VLAN 0 to HW filter on device batadv0
[  132.753161][ T8201] syz.2.523: attempt to access beyond end of device
[  132.753161][ T8201] sr0: rw=0, sector=1024, nr_sectors = 4 limit=0
[  132.757204][ T8201] UDF-fs: error (device sr0): udf_read_tagged: read failed, block=256, location=256
[  132.760367][ T8201] syz.2.523: attempt to access beyond end of device
[  132.760367][ T8201] sr0: rw=0, sector=2048, nr_sectors = 4 limit=0
[  132.782342][ T8201] UDF-fs: error (device sr0): udf_read_tagged: read failed, block=512, location=512
[  132.785103][ T8201] UDF-fs: warning (device sr0): udf_load_vrs: No anchor found
[  132.787219][ T8201] UDF-fs: Scanning with blocksize 2048 failed
[  132.789702][ T8201] syz.2.523: attempt to access beyond end of device
[  132.789702][ T8201] sr0: rw=0, sector=64, nr_sectors = 8 limit=0
[  132.813098][ T5944] Bluetooth: hci2: command tx timeout
[  132.849931][ T8219] No such timeout policy "syz0"
[  132.852769][ T8201] syz.2.523: attempt to access beyond end of device
[  132.852769][ T8201] sr0: rw=0, sector=2048, nr_sectors = 8 limit=0
[  132.852811][ T8201] UDF-fs: error (device sr0): udf_read_tagged: read failed, block=256, location=256
[  132.859273][ T8201] syz.2.523: attempt to access beyond end of device
[  132.859273][ T8201] sr0: rw=0, sector=4096, nr_sectors = 8 limit=0
[  132.865029][ T8201] UDF-fs: error (device sr0): udf_read_tagged: read failed, block=512, location=512
[  132.867676][ T8201] UDF-fs: warning (device sr0): udf_load_vrs: No anchor found
[  132.869788][ T8201] UDF-fs: Scanning with blocksize 4096 failed
[  132.872001][ T8201] UDF-fs: warning (device sr0): udf_fill_super: No partition found (1)
[  132.876696][ T8100] veth0_vlan: entered promiscuous mode
[  132.886266][ T8100] veth1_vlan: entered promiscuous mode
[  132.938371][ T8100] veth0_macvtap: entered promiscuous mode
[  132.947501][ T8100] veth1_macvtap: entered promiscuous mode
[  132.967203][ T8100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  132.970505][ T8100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.973528][ T8100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  132.977404][ T8100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.980168][ T8100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  132.984033][ T8100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  132.987285][ T8100] batman_adv: batadv0: Interface activated: batadv_slave_0
[  133.000457][ T8100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  133.004129][ T8100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.006923][ T8100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  133.009859][ T8100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.020803][ T8100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  133.027879][ T8100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.034839][ T8100] batman_adv: batadv0: Interface activated: batadv_slave_1
[  133.049802][ T8100] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  133.071526][ T8100] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  133.074122][ T8100] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  133.076486][ T8100] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  133.279751][ T1139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.289668][ T8239] netlink: 696 bytes leftover after parsing attributes in process `syz.2.529'.
[  133.290145][ T1139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.349205][   T95] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.358205][   T95] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.765428][ T8258] netlink: 8 bytes leftover after parsing attributes in process `syz.3.531'.
[  133.989296][ T8263] netlink: 8 bytes leftover after parsing attributes in process `syz.0.532'.
[  134.157608][ T8270] netlink: 16 bytes leftover after parsing attributes in process `syz.2.533'.
[  134.891131][ T5944] Bluetooth: hci2: command tx timeout
[  135.726255][ T5944] Bluetooth: hci1: unexpected cc 0x0c14 length: 5 < 249
[  136.982376][ T5944] Bluetooth: hci2: command tx timeout
[  137.704306][ T8348] netlink: 8 bytes leftover after parsing attributes in process `syz.4.555'.
[  137.737998][ T8352] netlink: 8 bytes leftover after parsing attributes in process `syz.4.556'.
[  137.804635][ T8355] netlink: 16 bytes leftover after parsing attributes in process `syz.2.557'.
[  138.086567][ T8362] netlink: 104 bytes leftover after parsing attributes in process `syz.2.559'.
[  138.089937][ T8362] netlink: 104 bytes leftover after parsing attributes in process `syz.2.559'.
[  139.190574][ T8404] netlink: 32 bytes leftover after parsing attributes in process `syz.3.570'.
[  140.154939][ T8430] IPVS: set_ctl: invalid protocol: 20551 172.20.20.170:0
[  141.173663][ T8456] netlink: 12 bytes leftover after parsing attributes in process `syz.4.584'.
[  141.828927][ T8480] netlink: 8 bytes leftover after parsing attributes in process `syz.3.590'.
[  142.922625][ T5944] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  142.926512][ T5944] CPU: 0 UID: 0 PID: 5944 Comm: kworker/u33:2 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  142.930485][ T5944] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  142.934512][ T5944] Workqueue: hci2 hci_rx_work
[  142.935909][ T5944] Call Trace:
[  142.936901][ T5944]  <TASK>
[  142.937768][ T5944]  dump_stack_lvl+0x16c/0x1f0
[  142.939146][ T5944]  sysfs_warn_dup+0x7f/0xa0
[  142.940468][ T5944]  sysfs_create_dir_ns+0x24d/0x2b0
[  142.941941][ T5944]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  142.943570][ T5944]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  142.945142][ T5944]  ? kobject_add_internal+0x12d/0x990
[  142.946689][ T5944]  ? do_raw_spin_unlock+0x172/0x230
[  142.948204][ T5944]  kobject_add_internal+0x2c8/0x990
[  142.949714][ T5944]  kobject_add+0x16f/0x240
[  142.951013][ T5944]  ? __pfx_kobject_add+0x10/0x10
[  142.952487][ T5944]  ? class_to_subsys+0x3e/0x160
[  142.953950][ T5944]  ? do_raw_spin_unlock+0x172/0x230
[  142.955498][ T5944]  ? kobject_put+0xab/0x5a0
[  142.956894][ T5944]  device_add+0x289/0x1a70
[  142.958254][ T5944]  ? __pfx_dev_set_name+0x10/0x10
[  142.959769][ T5944]  ? __pfx_device_add+0x10/0x10
[  142.961180][ T5944]  ? mgmt_send_event_skb+0x2f2/0x460
[  142.962727][ T5944]  hci_conn_add_sysfs+0x17e/0x230
[  142.964235][ T5944]  le_conn_complete_evt+0xfce/0x1d10
[  142.965774][ T5944]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  142.967439][ T5944]  ? __mutex_lock+0x1cc/0xa60
[  142.968830][ T5944]  hci_le_conn_complete_evt+0x23c/0x370
[  142.970428][ T5944]  hci_le_meta_evt+0x2e2/0x5d0
[  142.971823][ T5944]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  142.973608][ T5944]  hci_event_packet+0x666/0x1190
[  142.975064][ T5944]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  142.976601][ T5944]  ? __pfx_hci_event_packet+0x10/0x10
[  142.978158][ T5944]  ? mark_held_locks+0x9f/0xe0
[  142.979555][ T5944]  ? kcov_remote_start+0x3cf/0x6e0
[  142.981055][ T5944]  ? lockdep_hardirqs_on+0x7c/0x110
[  142.982585][ T5944]  hci_rx_work+0x2c5/0x16b0
[  142.983889][ T5944]  ? process_one_work+0x8bb/0x1b30
[  142.985385][ T5944]  process_one_work+0x958/0x1b30
[  142.986829][ T5944]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  142.988435][ T5944]  ? __pfx_process_one_work+0x10/0x10
[  142.989953][ T5944]  ? rcu_is_watching+0x12/0xc0
[  142.991326][ T5944]  ? assign_work+0x1a0/0x250
[  142.992730][ T5944]  worker_thread+0x6c8/0xf00
[  142.994113][ T5944]  ? __pfx_worker_thread+0x10/0x10
[  142.995595][ T5944]  kthread+0x2c1/0x3a0
[  142.996793][ T5944]  ? _raw_spin_unlock_irq+0x23/0x50
[  142.998320][ T5944]  ? __pfx_kthread+0x10/0x10
[  142.999665][ T5944]  ret_from_fork+0x45/0x80
[  143.000971][ T5944]  ? __pfx_kthread+0x10/0x10
[  143.002331][ T5944]  ret_from_fork_asm+0x1a/0x30
[  143.003790][ T5944]  </TASK>
[  143.005100][ T5944] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  143.042959][ T5944] Bluetooth: hci2: failed to register connection device
[  143.134552][ T8510] netlink: 16 bytes leftover after parsing attributes in process `syz.2.596'.
[  143.855118][ T8522] misc userio: Can't change port type on an already running userio instance
[  145.051261][ T5944] Bluetooth: hci2: command tx timeout
[  145.167449][ T8589] netlink: 16 bytes leftover after parsing attributes in process `syz.3.605'.
[  145.371060][  T911] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  145.541131][  T911] usb 7-1: Using ep0 maxpacket: 32
[  145.551759][  T911] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  145.555186][  T911] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  145.560032][  T911] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  145.566235][  T911] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  145.571560][  T911] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  145.575366][  T911] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  145.580576][  T911] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  145.584318][  T911] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.598461][  T911] usb 7-1: config 0 descriptor??
[  145.618546][ T8594] tipc: Started in network mode
[  145.620068][ T8594] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  145.624224][ T8594] tipc: Enabled bearer <eth:team0>, priority 0
[  145.809363][  T911] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  145.887842][ T8610] random: crng reseeded on system resumption
[  145.918360][ T8611] netlink: 16 bytes leftover after parsing attributes in process `syz.4.613'.
[  146.026985][ T8615] netlink: 36 bytes leftover after parsing attributes in process `syz.0.614'.
[  146.050429][ T8615] input: syz0 as /devices/virtual/input/input11
[  146.104061][    C1] usblp0: nonzero read bulk status received: -71
[  146.104140][  T911] usb 7-1: USB disconnect, device number 9
[  146.108015][ T8588] usblp0: error -71 reading from printer
[  146.122535][  T911] usblp0: removed
[  146.145812][ T8615] netlink: 32 bytes leftover after parsing attributes in process `syz.0.614'.
[  146.370416][ T8625] netlink: 56 bytes leftover after parsing attributes in process `syz.0.618'.
[  146.563234][ T8636] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  146.741130][   T69] tipc: Node number set to 11578026
[  146.918455][ T8657] kAFS: No cell specified
[  148.578240][ T8696] netlink: 8 bytes leftover after parsing attributes in process `syz.4.633'.
[  148.801267][   T39] kauditd_printk_skb: 15 callbacks suppressed
[  148.801279][   T39] audit: type=1800 audit(1737292937.612:205): pid=8704 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.634" name="hugetlb.1GB.rsvd.usage_in_bytes" dev="9p" ino=37618291 res=0 errno=0
[  148.894856][ T8711] netlink: 24 bytes leftover after parsing attributes in process `syz.4.638'.
[  149.101090][ T1322] usb 8-1: new full-speed USB device number 6 using dummy_hcd
[  149.112461][ T8715] kAFS: No cell specified
[  149.272979][ T1322] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[  149.276304][ T1322] usb 8-1: config 0 has no interface number 0
[  149.278903][ T1322] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  149.283332][ T1322] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  149.287922][ T1322] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  149.292540][ T1322] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64
[  149.296977][ T1322] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  149.302674][ T1322] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  149.306614][ T1322] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.313745][ T1322] usb 8-1: config 0 descriptor??
[  149.317357][ T8706] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  149.324993][ T1322] ldusb 8-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  149.663117][ T8740] netlink: 44 bytes leftover after parsing attributes in process `syz.2.648'.
[  149.704156][ T8720] fuse: Unknown parameter 'groupOid'
[  150.021147][  T911] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  150.171056][  T911] usb 5-1: device descriptor read/64, error -71
[  150.411789][  T911] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  150.541124][  T911] usb 5-1: device descriptor read/64, error -71
[  150.652052][  T911] usb usb5-port1: attempt power cycle
[  150.991082][  T911] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  151.011560][  T911] usb 5-1: device descriptor read/8, error -71
[  151.251135][  T911] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  151.271653][  T911] usb 5-1: device descriptor read/8, error -71
[  151.381270][  T911] usb usb5-port1: unable to enumerate USB device
[  151.871843][ T7993] usb 8-1: USB disconnect, device number 6
[  151.874847][ T7993] ldusb 8-1:0.55: LD USB Device #0 now disconnected
[  151.903924][ T8768] netlink: 'syz.4.656': attribute type 1 has an invalid length.
[  151.934203][ T8768] bond1: (slave ip6erspan0): making interface the new active one
[  151.936872][ T8768] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  151.943011][ T8768] netlink: 'syz.4.656': attribute type 12 has an invalid length.
[  152.801185][ T8781] netlink: 'syz.2.660': attribute type 5 has an invalid length.
[  153.367965][ T8796] netlink: 'syz.0.661': attribute type 10 has an invalid length.
[  156.285731][ T8840] netlink: 4 bytes leftover after parsing attributes in process `syz.3.676'.
[  156.289213][ T8840] unsupported nlmsg_type 40
[  157.839983][ T8915] netlink: 'syz.3.685': attribute type 10 has an invalid length.
[  157.844093][ T8915] bridge0: port 3(team0) entered disabled state
[  157.846056][ T8915] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.848196][ T8915] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.894650][ T8916] binder_alloc: 8913: binder_alloc_buf, no vma
[  158.254038][ T8923] dccp_close: ABORT with 15584 bytes unread
[  158.353038][ T8930] usb 2-1: USB disconnect, device number 2
[  158.526261][ T8931] hub 2-0:1.0: USB hub found
[  158.531732][ T8931] hub 2-0:1.0: 6 ports detected
[  158.721076][ T5986] usb 2-1: new high-speed USB device number 3 using ehci-pci
[  158.935767][ T5986] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  158.979281][ T5986] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  158.984720][ T5986] usb 2-1: Product: QEMU USB Tablet
[  158.992804][ T5986] usb 2-1: Manufacturer: QEMU
[  158.997337][ T5986] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  159.444161][ T5986] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0003/input/input12
[  159.517192][ T5986] hid-generic 0003:0627:0001.0003: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  159.555961][ T8942] netdevsim netdevsim2: Direct firmware load for .
[  159.555961][ T8942]  failed with error -2
[  159.569050][ T8942] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  159.569050][ T8942] 
[  159.715649][ T8946] netlink: 8 bytes leftover after parsing attributes in process `syz.0.694'.
[  159.894261][ T8951] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  159.904753][ T8951] kvm: pic: level sensitive irq not supported
[  159.905166][ T8951] kvm: pic: non byte read
[  159.909092][ T8951] kvm: pic: level sensitive irq not supported
[  159.909537][ T8951] kvm: pic: non byte read
[  159.914633][ T8951] kvm: pic: level sensitive irq not supported
[  159.914962][ T8951] kvm: pic: non byte read
[  159.919225][ T8951] kvm: pic: level sensitive irq not supported
[  159.919563][ T8951] kvm: pic: non byte read
[  159.925831][ T8951] kvm: pic: level sensitive irq not supported
[  159.926110][ T8951] kvm: pic: non byte read
[  160.420419][ T8964] netlink: 8 bytes leftover after parsing attributes in process `syz.4.697'.
[  161.925724][ T8992] Sensor A: =================  START STATUS  =================
[  161.928292][ T8992] Sensor A: Test Pattern: 75% Colorbar
[  161.932088][ T8992] Sensor A: Show Information: All
[  161.935853][ T8992] Sensor A: Vertical Flip: false
[  161.938423][ T8992] Sensor A: Horizontal Flip: false
[  161.942200][ T8992] Sensor A: Brightness: 128
[  161.944196][ T8992] Sensor A: Contrast: 128
[  161.945687][ T8992] Sensor A: Hue: 0
[  161.946830][ T8992] Sensor A: Saturation: 128
[  161.948364][ T8992] Sensor A: ==================  END STATUS  ==================
[  161.962318][ T8992] netlink: 'syz.3.704': attribute type 1 has an invalid length.
[  162.330696][ T9000] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  162.332861][ T9000] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  162.337615][ T9000] vhci_hcd vhci_hcd.0: Device attached
[  162.453979][ T9007] netlink: 'syz.2.708': attribute type 10 has an invalid length.
[  162.859718][ T7993] vhci_hcd: vhci_device speed not set
[  162.886049][ T9012] fuse: Unknown parameter '0x000000000000000500000000000000000000'
[  162.931139][ T7993] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[  162.982152][ T9003] vhci_hcd: connection reset by peer
[  162.991894][ T1247] vhci_hcd: stop threads
[  162.994035][ T1247] vhci_hcd: release socket
[  162.996432][ T1247] vhci_hcd: disconnect device
[  163.208829][ T9014] netlink: 24 bytes leftover after parsing attributes in process `syz.3.709'.
[  165.041839][ T9037] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  165.050639][ T9037] batman_adv: batadv0: Adding interface: gretap1
[  165.052656][ T9037] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  165.059786][ T9037] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  165.131933][ T9043] netlink: 132 bytes leftover after parsing attributes in process `syz.3.718'.
[  165.135984][ T9043] netlink: 72 bytes leftover after parsing attributes in process `syz.3.718'.
[  165.206959][ T9045] trusted_key: encrypted_key: master key parameter 'UefR0lt' is invalid
[  165.376988][ T9049] netlink: 'syz.3.720': attribute type 3 has an invalid length.
[  166.142756][ T9075] xt_TCPMSS: Only works on TCP SYN packets
[  166.466050][ T9085] netlink: 'syz.0.727': attribute type 10 has an invalid length.
[  166.598843][ T9089] 
: renamed from veth0_vlan (while UP)
[  166.985815][ T9072] syz.4.725 (9072): drop_caches: 2
[  167.104448][ T9106] netlink: 8 bytes leftover after parsing attributes in process `syz.3.736'.
[  168.091337][ T7993] vhci_hcd: vhci_device speed not set
[  168.950727][ T9136] FAULT_INJECTION: forcing a failure.
[  168.950727][ T9136] name failslab, interval 1, probability 0, space 0, times 0
[  168.957285][ T9136] CPU: 1 UID: 0 PID: 9136 Comm: syz.4.742 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  168.960475][ T9136] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.963587][ T9136] Call Trace:
[  168.964602][ T9136]  <TASK>
[  168.965483][ T9136]  dump_stack_lvl+0x16c/0x1f0
[  168.966863][ T9136]  should_fail_ex+0x497/0x5b0
[  168.968235][ T9136]  ? fs_reclaim_acquire+0xae/0x150
[  168.969756][ T9136]  should_failslab+0xc2/0x120
[  168.971125][ T9136]  __kmalloc_node_noprof+0xd1/0x520
[  168.972680][ T9136]  ? crypto_alloc_tfmmem.isra.0+0x38/0x110
[  168.974373][ T9136]  ? __pfx_crypto_alg_extsize+0x10/0x10
[  168.975971][ T9136]  crypto_alloc_tfmmem.isra.0+0x38/0x110
[  168.977603][ T9136]  crypto_create_tfm_node+0x83/0x320
[  168.979131][ T9136]  crypto_alloc_tfm_node+0x102/0x260
[  168.980736][ T9136]  ? crypto_dh_encode_key+0x4a6/0x560
[  168.982284][ T9136]  __keyctl_dh_compute+0x45b/0xf50
[  168.983764][ T9136]  ? __pfx___lock_acquire+0x10/0x10
[  168.985273][ T9136]  ? __pfx___keyctl_dh_compute+0x10/0x10
[  168.986897][ T9136]  ? __pfx_lock_release+0x10/0x10
[  168.988373][ T9136]  ? trace_lock_acquire+0x14e/0x1f0
[  168.989974][ T9136]  compat_keyctl_dh_compute+0x161/0x1d0
[  168.991581][ T9136]  ? __pfx_compat_keyctl_dh_compute+0x10/0x10
[  168.993381][ T9136]  ? ksys_write+0x1ba/0x250
[  168.994709][ T9136]  __do_compat_sys_keyctl+0x27b/0x440
[  168.996260][ T9136]  __do_fast_syscall_32+0x73/0x120
[  168.997757][ T9136]  do_fast_syscall_32+0x32/0x80
[  168.999175][ T9136]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.001011][ T9136] RIP: 0023:0xf712e579
[  169.002205][ T9136] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.007855][ T9136] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000120
[  169.010256][ T9136] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 0000000020000000
[  169.012559][ T9136] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000540
[  169.014824][ T9136] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.017104][ T9136] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.019378][ T9136] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.021670][ T9136]  </TASK>
[  169.162309][ T9132] block nbd2: shutting down sockets
[  169.600132][ T9154] netlink: 8 bytes leftover after parsing attributes in process `syz.0.748'.
[  169.751186][ T9161] FAULT_INJECTION: forcing a failure.
[  169.751186][ T9161] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  169.754859][ T9161] CPU: 3 UID: 0 PID: 9161 Comm: syz.4.749 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  169.757809][ T9161] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.760816][ T9161] Call Trace:
[  169.761772][ T9161]  <TASK>
[  169.762618][ T9161]  dump_stack_lvl+0x16c/0x1f0
[  169.763960][ T9161]  should_fail_ex+0x497/0x5b0
[  169.765309][ T9161]  _copy_to_user+0x32/0xd0
[  169.766579][ T9161]  put_old_timespec32+0x194/0x1e0
[  169.768014][ T9161]  ? __pfx_put_old_timespec32+0x10/0x10
[  169.769594][ T9161]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  169.771240][ T9161]  ? lockdep_hardirqs_on+0x7c/0x110
[  169.772722][ T9161]  __ia32_sys_clock_getres_time32+0x1e7/0x290
[  169.774445][ T9161]  ? __pfx___ia32_sys_clock_getres_time32+0x10/0x10
[  169.776299][ T9161]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  169.778179][ T9161]  __do_fast_syscall_32+0x73/0x120
[  169.779647][ T9161]  do_fast_syscall_32+0x32/0x80
[  169.781045][ T9161]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.782842][ T9161] RIP: 0023:0xf712e579
[  169.784007][ T9161] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.789457][ T9161] RSP: 002b:00000000f50ff55c EFLAGS: 00000296 ORIG_RAX: 000000000000010a
[  169.791819][ T9161] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000180
[  169.794062][ T9161] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  169.796320][ T9161] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.798569][ T9161] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.800812][ T9161] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.803064][ T9161]  </TASK>
[  170.172063][ T5944] Bluetooth: hci3: command 0x206a tx timeout
[  170.174160][ T5944] Bluetooth: hci1: command 0x0406 tx timeout
[  170.526827][ T9175] netlink: 'syz.3.752': attribute type 10 has an invalid length.
[  170.804253][ T9179] veth1_macvtap: left promiscuous mode
[  171.075802][ T9187] /dev/nullb0: Can't open blockdev
[  172.005059][ T9212] netlink: 20 bytes leftover after parsing attributes in process `syz.2.761'.
[  172.254583][ T9218] netlink: 44 bytes leftover after parsing attributes in process `syz.4.766'.
[  173.069499][ T9231] program syz.4.769 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.078015][ T9231] ata1.00: invalid transfer count 0
[  173.816037][ T9242] vlan2: entered promiscuous mode
[  173.817689][ T9242] macvtap0: entered promiscuous mode
[  173.821556][ T9242] team0: Device vlan2 is up. Set it down before adding it as a team port
[  173.827126][ T9242] macvtap0: left promiscuous mode
[  173.871957][ T9246] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  174.045580][ T9255] warning: `syz.4.777' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  174.049909][ T9255] netlink: 12 bytes leftover after parsing attributes in process `syz.4.777'.
[  174.892836][ T9282] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  174.896736][ T9282] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  174.901084][ T9282] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  175.192281][ T9290] netlink: 8 bytes leftover after parsing attributes in process `syz.3.788'.
[  176.230013][ T9318] netlink: 'syz.0.796': attribute type 11 has an invalid length.
[  176.472850][ T9310] x86/PAT: syz.2.794:9310 freeing invalid memtype [mem 0xfed00000-0xfed00fff]
[  176.793861][ T9335] netlink: 20 bytes leftover after parsing attributes in process `syz.2.801'.
[  177.334771][ T9339] binder: BINDER_SET_CONTEXT_MGR already set
[  177.337699][ T9339] binder: 9338:9339 ioctl 4018620d 20004a80 returned -16
[  177.346068][ T9339] binder_alloc: 9338: binder_alloc_buf, no vma
[  177.676007][ T9344] netlink: 12 bytes leftover after parsing attributes in process `syz.0.804'.
[  179.411602][ T9385] netlink: 36 bytes leftover after parsing attributes in process `syz.2.818'.
[  179.429434][ T9387] netlink: 8 bytes leftover after parsing attributes in process `syz.0.819'.
[  179.444083][ T9389] binder: BINDER_SET_CONTEXT_MGR already set
[  179.445802][ T9389] binder: 9388:9389 ioctl 4018620d 200001c0 returned -16
[  179.455643][ T9391] netlink: 20 bytes leftover after parsing attributes in process `syz.4.813'.
[  179.587290][ T9395] netlink: 20 bytes leftover after parsing attributes in process `syz.3.817'.
[  179.916010][ T9399] binder: BINDER_SET_CONTEXT_MGR already set
[  179.917744][ T9399] binder: 9398:9399 ioctl 4018620d 200001c0 returned -16
[  180.832430][ T9412] random: crng reseeded on system resumption
[  180.844510][ T9412] 8021q: adding VLAN 0 to HW filter on device bond2
[  180.849733][ T9412] Unrecognized hibernate image header format!
[  180.852911][ T9412] PM: hibernation: Image mismatch: architecture specific data
[  180.857289][ T9412] bridge1: entered promiscuous mode
[  180.858801][ T9412] bridge1: entered allmulticast mode
[  180.874544][ T9412] team0: Port device bridge1 added
[  181.621946][ T9428] netlink: 20 bytes leftover after parsing attributes in process `syz.2.829'.
[  181.850585][   T39] audit: type=1326 audit(1737292970.652:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf712e579 code=0x7ffc0000
[  181.857148][   T39] audit: type=1326 audit(1737292970.652:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf712e579 code=0x7ffc0000
[  181.863173][   T39] audit: type=1326 audit(1737292970.652:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf712e579 code=0x7ffc0000
[  181.869179][   T39] audit: type=1326 audit(1737292970.652:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf712e579 code=0x7ffc0000
[  181.875776][   T39] audit: type=1326 audit(1737292970.652:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf712e579 code=0x7ffc0000
[  181.881914][   T39] audit: type=1326 audit(1737292970.652:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=349 compat=1 ip=0xf712e579 code=0x7ffc0000
[  181.887785][   T39] audit: type=1326 audit(1737292970.652:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf712e579 code=0x7ffc0000
[  181.893598][   T39] audit: type=1326 audit(1737292970.652:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf712e579 code=0x7ffc0000
[  181.899245][   T39] audit: type=1326 audit(1737292970.652:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf712e579 code=0x7ffc0000
[  181.905261][   T39] audit: type=1326 audit(1737292970.652:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf712e579 code=0x7ffc0000
[  182.143600][ T9434] netlink: 20 bytes leftover after parsing attributes in process `syz.4.831'.
[  182.607019][ T9443] netlink: 4 bytes leftover after parsing attributes in process `syz.3.835'.
[  182.738655][ T9449] netlink: 8 bytes leftover after parsing attributes in process `syz.3.838'.
[  182.748217][ T9449] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  182.831127][  T911] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  182.860423][ T9456] netlink: 24 bytes leftover after parsing attributes in process `syz.3.838'.
[  182.865052][ T9456] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  182.918347][ T9458] netlink: 8 bytes leftover after parsing attributes in process `syz.3.841'.
[  183.011062][  T911] usb 5-1: Using ep0 maxpacket: 8
[  183.022201][  T911] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  183.025184][  T911] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  183.027865][  T911] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.031646][  T911] usb 5-1: config 0 descriptor??
[  183.047855][ T9462] netlink: 20 bytes leftover after parsing attributes in process `syz.4.840'.
[  183.237665][  T911] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  183.566609][ T7993] usb 5-1: USB disconnect, device number 11
[  183.881092][ T6004] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  184.032117][ T6004] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  184.036050][ T6004] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.039684][ T6004] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.044102][ T6004] usb 7-1: config 0 interface 0 has no altsetting 0
[  184.047721][ T6004] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.050474][ T6004] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.054836][ T6004] usb 7-1: config 0 interface 0 has no altsetting 0
[  184.058346][ T6004] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.061921][ T6004] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.066138][ T6004] usb 7-1: config 0 interface 0 has no altsetting 0
[  184.069978][ T6004] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.073589][ T6004] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.077781][ T6004] usb 7-1: config 0 interface 0 has no altsetting 0
[  184.081280][ T6004] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.084759][ T6004] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.088927][ T6004] usb 7-1: config 0 interface 0 has no altsetting 0
[  184.092621][ T6004] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.096475][ T6004] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.100668][ T6004] usb 7-1: config 0 interface 0 has no altsetting 0
[  184.104234][ T6004] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.107643][ T6004] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.111903][ T6004] usb 7-1: config 0 interface 0 has no altsetting 0
[  184.115426][ T6004] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  184.118861][ T6004] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  184.123359][ T6004] usb 7-1: config 0 interface 0 has no altsetting 0
[  184.125152][ T6004] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  184.129093][ T6004] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  184.132476][ T6004] usb 7-1: Product: syz
[  184.133653][ T6004] usb 7-1: Manufacturer: syz
[  184.134969][ T6004] usb 7-1: SerialNumber: syz
[  184.137289][ T6004] usb 7-1: config 0 descriptor??
[  184.153046][ T6004] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[  184.344766][ T6004] usb 7-1: USB disconnect, device number 10
[  184.349500][ T6004] yurex 7-1:0.0: USB YUREX #0 now disconnected
[  185.720315][ T9504] netlink: 8 bytes leftover after parsing attributes in process `syz.0.853'.
[  186.105870][ T9508] netlink: 84 bytes leftover after parsing attributes in process `syz.3.855'.
[  186.283678][ T9518] netlink: 'syz.4.858': attribute type 3 has an invalid length.
[  186.286511][ T9518] netlink: 3 bytes leftover after parsing attributes in process `syz.4.858'.
[  186.479165][ T9525] program syz.4.861 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  186.904958][ T9535] netlink: 8 bytes leftover after parsing attributes in process `syz.2.863'.
[  186.926431][ T9534] netdevsim netdevsim4: Direct firmware load for .
[  186.926431][ T9534]  failed with error -2
[  186.935467][ T9534] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  186.935467][ T9534] 
[  187.354237][ T9541] netlink: 'syz.0.864': attribute type 10 has an invalid length.
[  187.385137][   T39] kauditd_printk_skb: 51 callbacks suppressed
[  187.385147][   T39] audit: type=1326 audit(1737292976.192:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9543 comm="syz.3.865" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  187.394431][   T39] audit: type=1326 audit(1737292976.192:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9543 comm="syz.3.865" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  187.400554][   T39] audit: type=1326 audit(1737292976.202:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9543 comm="syz.3.865" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf705e579 code=0x7ffc0000
[  187.415799][   T39] audit: type=1326 audit(1737292976.202:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9543 comm="syz.3.865" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  187.424318][   T39] audit: type=1326 audit(1737292976.202:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9543 comm="syz.3.865" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  187.432702][   T39] audit: type=1326 audit(1737292976.202:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9543 comm="syz.3.865" exe="/syz-executor" sig=0 arch=40000003 syscall=349 compat=1 ip=0xf705e579 code=0x7ffc0000
[  187.440682][   T39] audit: type=1326 audit(1737292976.202:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9543 comm="syz.3.865" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  187.448758][   T39] audit: type=1326 audit(1737292976.202:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9543 comm="syz.3.865" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf705e579 code=0x7ffc0000
[  187.456833][   T39] audit: type=1326 audit(1737292976.202:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9543 comm="syz.3.865" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  187.466160][   T39] audit: type=1326 audit(1737292976.202:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9543 comm="syz.3.865" exe="/syz-executor" sig=0 arch=40000003 syscall=379 compat=1 ip=0xf705e579 code=0x7ffc0000
[  187.701846][ T9557] netlink: 8 bytes leftover after parsing attributes in process `syz.3.867'.
[  187.840871][ T9567] binder: BINDER_SET_CONTEXT_MGR already set
[  187.842775][ T9567] binder: 9566:9567 ioctl 4018620d 200001c0 returned -16
[  188.959332][ T9589] input: syz0 as /devices/virtual/input/input14
[  189.053342][ T9584] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  189.601999][ T9623] netlink: 12 bytes leftover after parsing attributes in process `syz.0.875'.
[  190.611057][  T833] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  190.771533][  T833] usb 7-1: Using ep0 maxpacket: 8
[  190.775728][  T833] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  190.778489][  T833] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  190.781277][  T833] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  190.784049][  T833] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  190.787553][  T833] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  190.790200][  T833] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.941138][ T9657] netlink: 8 bytes leftover after parsing attributes in process `syz.4.880'.
[  191.022530][  T833] usb 7-1: GET_CAPABILITIES returned 0
[  191.024144][  T833] usbtmc 7-1:16.0: can't read capabilities
[  191.262133][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.266782][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.270162][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.277444][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.279775][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.284203][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.288017][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.290543][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.293544][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.296443][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.299336][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.302844][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.306140][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.310276][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.312883][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  191.316620][    C0] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  192.294985][ T9701] netlink: 8 bytes leftover after parsing attributes in process `syz.0.897'.
[  193.017747][ T9711] 9pnet_virtio: no channels available for device syz
[  193.457568][ T7993] usb 7-1: USB disconnect, device number 11
[  193.588510][ T9723] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  193.590336][ T9723] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  193.592545][ T9723] vhci_hcd vhci_hcd.0: Device attached
[  193.702504][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  193.704294][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  193.781132][  T833] vhci_hcd: vhci_device speed not set
[  193.851078][  T833] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[  195.317828][ T9724] vhci_hcd: connection reset by peer
[  195.320133][   T11] vhci_hcd: stop threads
[  195.321762][   T11] vhci_hcd: release socket
[  195.323400][   T11] vhci_hcd: disconnect device
[  195.479263][ T9751] netlink: 8 bytes leftover after parsing attributes in process `syz.0.909'.
[  196.125908][ T1247] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.484007][ T1247] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.584521][ T1247] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.622892][ T5297] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  196.627588][ T5297] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  196.630390][ T5297] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  196.634325][ T5297] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  196.636814][ T5297] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  196.639063][ T5297] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  196.682222][ T1247] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.764912][ T9787] chnl_net:caif_netlink_parms(): no params data found
[  196.814226][ T9787] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.816328][ T9787] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.818583][ T9787] bridge_slave_0: entered allmulticast mode
[  196.820733][ T9787] bridge_slave_0: entered promiscuous mode
[  196.823508][ T9787] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.825576][ T9787] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.827632][ T9787] bridge_slave_1: entered allmulticast mode
[  196.829918][ T9787] bridge_slave_1: entered promiscuous mode
[  196.875210][ T9787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  196.878867][ T9787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  196.943993][ T1247] bridge_slave_1: left allmulticast mode
[  196.946574][ T1247] bridge_slave_1: left promiscuous mode
[  196.948319][ T1247] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.081619][ T1247] bridge_slave_0: left allmulticast mode
[  197.083371][ T1247] bridge_slave_0: left promiscuous mode
[  197.085598][ T1247] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.143894][ T1247] bond1 (unregistering): (slave ip6erspan0): Releasing active interface
[  197.287644][ T1247] batman_adv: batadv0: Removing interface: gretap1
[  197.471355][ T1247] team0: Port device bridge1 removed
[  197.602719][ T1247] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  197.606657][ T1247] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  197.610274][ T1247] bond0 (unregistering): Released all slaves
[  197.614599][ T1247] bond1 (unregistering): Released all slaves
[  197.689329][ T1247] bond2 (unregistering): Released all slaves
[  197.718555][ T9796] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.734665][ T9787] team0: Port device team_slave_0 added
[  197.761931][ T9787] team0: Port device team_slave_1 added
[  197.786959][ T9809] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.797668][ T9809] bond0: (slave rose0): Enslaving as an active interface with an up link
[  197.842623][ T9796] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.862050][ T9787] batman_adv: batadv0: Adding interface: batadv_slave_0
[  197.864058][ T9787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  197.871917][ T9787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  197.875795][ T9787] batman_adv: batadv0: Adding interface: batadv_slave_1
[  197.877800][ T9787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  197.885122][ T9787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  197.910830][ T9787] hsr_slave_0: entered promiscuous mode
[  197.915308][ T9787] hsr_slave_1: entered promiscuous mode
[  197.931224][ T9787] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  197.933422][ T9787] Cannot create hsr debugfs directory
[  197.949560][ T9796] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.975855][ T9820] netlink: 52 bytes leftover after parsing attributes in process `syz.3.926'.
[  197.981336][ T9820] netlink: 8 bytes leftover after parsing attributes in process `syz.3.926'.
[  198.074644][ T9826] vivid-002: =================  START STATUS  =================
[  198.077418][ T9826] vivid-002: Radio HW Seek Mode: Bounded
[  198.078677][ T9796] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  198.079442][ T9826] vivid-002: Radio Programmable HW Seek: false
[  198.084730][ T9826] vivid-002: RDS Rx I/O Mode: Block I/O
[  198.086588][ T9826] vivid-002: Generate RBDS Instead of RDS: false
[  198.088458][ T9826] vivid-002: RDS Reception: true
[  198.089897][ T9826] vivid-002: RDS Program Type: 0 inactive
[  198.094521][ T9826] vivid-002: RDS PS Name:  inactive
[  198.096076][ T9826] vivid-002: RDS Radio Text:  inactive
[  198.097681][ T9826] vivid-002: RDS Traffic Announcement: false inactive
[  198.106062][ T9826] vivid-002: RDS Traffic Program: false inactive
[  198.107991][ T9826] vivid-002: RDS Music: false inactive
[  198.109655][ T9826] vivid-002: ==================  END STATUS  ==================
[  198.113719][ T1247] hsr_slave_0: left promiscuous mode
[  198.115810][ T1247] hsr_slave_1: left promiscuous mode
[  198.119816][ T1247] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  198.123074][ T1247] batman_adv: batadv0: Removing interface: batadv_slave_0
[  198.125926][ T1247] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  198.128124][ T1247] batman_adv: batadv0: Removing interface: batadv_slave_1
[  198.154366][ T1247] veth1_macvtap: left promiscuous mode
[  198.156431][ T1247] veth0_macvtap: left promiscuous mode
[  198.158281][ T1247] veth1_vlan: left promiscuous mode
[  198.159933][ T1247] veth0_vlan: left promiscuous mode
[  198.426801][ T9840] sg_write: data in/out 11/14 bytes for SCSI command 0x0-- guessing data in;
[  198.426801][ T9840]    program syz.3.929 not setting count and/or reply_len properly
[  198.654083][ T5955] Bluetooth: hci2: command tx timeout
[  198.871874][ T1247] team0 (unregistering): Port device team_slave_1 removed
[  198.952301][ T1247] team0 (unregistering): Port device team_slave_0 removed
[  198.972478][  T833] vhci_hcd: vhci_device speed not set
[  199.226083][ T9847] netlink: 24 bytes leftover after parsing attributes in process `syz.2.932'.
[  199.299812][ T9848] netlink: 'syz.3.931': attribute type 10 has an invalid length.
[  199.531299][ T9849] IPVS: sync thread started: state = BACKUP, mcast_ifn = wg0, syncid = 4, id = 0
[  199.566311][ T9796] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  199.576272][ T9796] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  199.583600][ T9796] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  199.589818][ T9796] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  199.778129][   T39] kauditd_printk_skb: 74 callbacks suppressed
[  199.778161][   T39] audit: type=1800 audit(1737292988.582:351): pid=9869 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.933" name="hugetlb.1GB.rsvd.usage_in_bytes" dev="9p" ino=37618291 res=0 errno=0
[  200.034759][ T9787] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  200.038218][ T9787] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  200.069478][ T9787] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  200.074015][ T9787] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  200.095377][   T39] audit: type=1326 audit(1737292988.902:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9881 comm="syz.0.937" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  200.108063][   T39] audit: type=1326 audit(1737292988.902:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9881 comm="syz.0.937" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  200.114319][   T39] audit: type=1326 audit(1737292988.902:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9881 comm="syz.0.937" exe="/syz-executor" sig=0 arch=40000003 syscall=274 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  200.119956][ T9787] 8021q: adding VLAN 0 to HW filter on device bond0
[  200.120701][   T39] audit: type=1326 audit(1737292988.902:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9881 comm="syz.0.937" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  200.131194][   T39] audit: type=1326 audit(1737292988.902:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9881 comm="syz.0.937" exe="/syz-executor" sig=0 arch=40000003 syscall=450 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  200.137629][ T9787] 8021q: adding VLAN 0 to HW filter on device team0
[  200.138027][   T39] audit: type=1326 audit(1737292988.902:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9881 comm="syz.0.937" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  200.143348][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.145724][   T39] audit: type=1326 audit(1737292988.902:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9881 comm="syz.0.937" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  200.147711][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  200.153852][   T39] audit: type=1326 audit(1737292988.902:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9881 comm="syz.0.937" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  200.159857][ T1247] bridge0: port 2(bridge_slave_1) entered blocking state
[  200.162125][   T39] audit: type=1326 audit(1737292988.902:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9881 comm="syz.0.937" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fd0579 code=0x7ffc0000
[  200.164028][ T1247] bridge0: port 2(bridge_slave_1) entered forwarding state
[  200.249415][ T9787] 8021q: adding VLAN 0 to HW filter on device batadv0
[  200.345500][ T9787] veth0_vlan: entered promiscuous mode
[  200.350213][ T9787] veth1_vlan: entered promiscuous mode
[  200.363577][ T9787] veth0_macvtap: entered promiscuous mode
[  200.366598][ T9787] veth1_macvtap: entered promiscuous mode
[  200.375705][ T9787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  200.378703][ T9787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.384859][ T9787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  200.387842][ T9787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.390625][ T9787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  200.394804][ T9787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.398270][ T9787] batman_adv: batadv0: Interface activated: batadv_slave_0
[  200.401597][ T9787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.404592][ T9787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.411097][ T9787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.414098][ T9787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.416975][ T9787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.420039][ T9787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.424457][ T9787] batman_adv: batadv0: Interface activated: batadv_slave_1
[  200.434588][ T9787] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  200.437239][ T9787] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  200.439757][ T9787] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.443689][ T9787] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  200.488809][   T95] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.498559][   T95] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  200.509226][   T95] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.512776][   T95] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  200.750037][ T5955] Bluetooth: hci2: command tx timeout
[  201.286299][ T9934] wireguard0: entered promiscuous mode
[  201.923310][ T9960] netlink: 12 bytes leftover after parsing attributes in process `syz.2.949'.
[  201.976164][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.0.948'.
[  202.818612][ T5297] Bluetooth: hci2: command tx timeout
[  203.321122][ T9998] nbd3: detected capacity change from 0 to 12
[  203.327250][ T9236] block nbd3: Send control failed (result -89)
[  203.329744][ T9236] block nbd3: Request send failed, requeueing
[  203.334481][ T8157] block nbd3: Dead connection, failed to find a fallback
[  203.337041][ T8157] block nbd3: shutting down sockets
[  203.339058][ T8157] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.344317][ T8157] Buffer I/O error on dev nbd3, logical block 0, async page read
[  203.348708][ T9236] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.351924][ T9236] Buffer I/O error on dev nbd3, logical block 0, async page read
[  203.354466][ T9236] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.357105][ T9236] Buffer I/O error on dev nbd3, logical block 0, async page read
[  203.359407][ T9236] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.362922][ T9236] Buffer I/O error on dev nbd3, logical block 0, async page read
[  203.365319][ T9236] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.367855][T10003] syzkaller0: entered promiscuous mode
[  203.368078][ T9236] Buffer I/O error on dev nbd3, logical block 0, async page read
[  203.369753][T10003] syzkaller0: entered allmulticast mode
[  203.373749][ T9236] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.376688][ T9236] Buffer I/O error on dev nbd3, logical block 0, async page read
[  203.379056][ T9236] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.382887][ T9236] Buffer I/O error on dev nbd3, logical block 0, async page read
[  203.388577][ T9236] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.391290][ T9236] Buffer I/O error on dev nbd3, logical block 0, async page read
[  203.394029][ T9236] ldm_validate_partition_table(): Disk read failed.
[  203.396101][ T9236] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.398745][ T9236] Buffer I/O error on dev nbd3, logical block 0, async page read
[  203.404275][ T9236] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  203.406902][ T9236] Buffer I/O error on dev nbd3, logical block 0, async page read
[  203.434590][T10005] FAULT_INJECTION: forcing a failure.
[  203.434590][T10005] name failslab, interval 1, probability 0, space 0, times 0
[  203.439193][T10005] CPU: 0 UID: 0 PID: 10005 Comm: syz.2.961 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  203.442230][T10005] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  203.445260][T10005] Call Trace:
[  203.446226][T10005]  <TASK>
[  203.447098][T10005]  dump_stack_lvl+0x16c/0x1f0
[  203.448503][T10005]  should_fail_ex+0x497/0x5b0
[  203.449853][T10005]  ? fs_reclaim_acquire+0xae/0x150
[  203.451324][T10005]  should_failslab+0xc2/0x120
[  203.452687][T10005]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  203.454359][T10005]  ? __alloc_skb+0x2b3/0x380
[  203.455704][T10005]  __alloc_skb+0x2b3/0x380
[  203.456999][T10005]  ? __pfx___alloc_skb+0x10/0x10
[  203.458498][T10005]  ? if_nlmsg_size+0x45d/0xa70
[  203.460160][T10005]  rtmsg_ifinfo_build_skb+0x81/0x280
[  203.461717][T10005]  rtmsg_ifinfo+0x9f/0x1a0
[  203.463028][T10005]  ? __pfx_tun_chr_close+0x10/0x10
[  203.464515][T10005]  netdev_state_change+0x12f/0x150
[  203.465983][T10005]  ? __pfx_netdev_state_change+0x10/0x10
[  203.467597][T10005]  tun_chr_close+0xd4/0x230
[  203.469117][T10005]  __fput+0x3f8/0xb60
[  203.470366][T10005]  __fput_sync+0xa1/0xc0
[  203.471592][T10005]  __ia32_sys_close+0x86/0x100
[  203.472981][T10005]  __do_fast_syscall_32+0x73/0x120
[  203.474452][T10005]  do_fast_syscall_32+0x32/0x80
[  203.475844][T10005]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  203.477659][T10005] RIP: 0023:0xf7f22579
[  203.478858][T10005] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  203.484382][T10005] RSP: 002b:00000000f505555c EFLAGS: 00000296 ORIG_RAX: 0000000000000006
[  203.486762][T10005] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  203.489249][T10005] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  203.492346][T10005] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  203.494580][T10005] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  203.496828][T10005] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  203.499282][T10005]  </TASK>
[  203.506922][ T9236] Dev nbd3: unable to read RDB block 0
[  203.508808][ T9236]  nbd3: unable to read partition table
[  203.510594][ T9236] nbd3: partition table beyond EOD, truncated
[  203.610800][ T9236] ldm_validate_partition_table(): Disk read failed.
[  203.618447][ T9236] Dev nbd3: unable to read RDB block 0
[  203.620304][ T9236]  nbd3: unable to read partition table
[  203.622201][ T9236] nbd3: partition table beyond EOD, truncated
[  203.869690][T10013] netlink: 8 bytes leftover after parsing attributes in process `syz.4.962'.
[  203.979977][T10014] netlink: 8 bytes leftover after parsing attributes in process `syz.3.963'.
[  204.901096][ T5297] Bluetooth: hci2: command tx timeout
[  205.030344][T10023] netlink: 16 bytes leftover after parsing attributes in process `syz.0.966'.
[  205.052136][T10023] mac80211_hwsim hwsim7 syzkaller0: left promiscuous mode
[  205.055306][T10023] mac80211_hwsim hwsim7 syzkaller0: left allmulticast mode
[  205.058920][T10024] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[  206.197251][T10071] netlink: 4 bytes leftover after parsing attributes in process `syz.3.979'.
[  206.212613][T10071] netlink: 4 bytes leftover after parsing attributes in process `syz.3.979'.
[  206.220878][T10071] netlink: 173 bytes leftover after parsing attributes in process `syz.3.979'.
[  206.286268][T10067] netlink: 16 bytes leftover after parsing attributes in process `syz.2.978'.
[  206.378411][T10076] bridge0: port 3(team0) entered blocking state
[  206.380341][T10076] bridge0: port 3(team0) entered forwarding state
[  206.382617][T10076] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.385859][T10076] bridge0: port 2(bridge_slave_1) entered forwarding state
[  206.388378][T10076] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.390465][T10076] bridge0: port 1(bridge_slave_0) entered forwarding state
[  206.397585][T10076] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  206.416114][T10078] netlink: 4 bytes leftover after parsing attributes in process `syz.0.976'.
[  207.051808][T10089] openvswitch: netlink: IP tunnel TTL not specified.
[  207.627832][   T39] kauditd_printk_skb: 34 callbacks suppressed
[  207.627843][   T39] audit: type=1800 audit(1737292996.432:395): pid=10116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.988" name="hugetlb.1GB.rsvd.usage_in_bytes" dev="9p" ino=37618291 res=0 errno=0
[  208.508430][ T5297] Bluetooth: hci3: unexpected event for opcode 0x200a
[  208.573638][T10148] netlink: 4 bytes leftover after parsing attributes in process `syz.3.994'.
[  209.533211][T10168] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1002'.
[  209.547970][T10168] bond1: entered promiscuous mode
[  209.549475][T10168] bond1: entered allmulticast mode
[  209.551430][T10168] 8021q: adding VLAN 0 to HW filter on device bond1
[  211.179320][T10210] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1011'.
[  211.184316][T10200] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1012'.
[  211.188088][T10200] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1012'.
[  211.192826][T10200] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1012'.
[  211.197034][T10209] overlayfs: conflicting options: userxattr,verity=require
[  211.200581][T10209] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1016'.
[  211.205249][T10209] ������: renamed from lo (while UP)
[  211.540190][T10220] FAULT_INJECTION: forcing a failure.
[  211.540190][T10220] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  211.544128][T10220] CPU: 1 UID: 0 PID: 10220 Comm: syz.2.1017 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  211.547207][T10220] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  211.550259][T10220] Call Trace:
[  211.551226][T10220]  <TASK>
[  211.552117][T10220]  dump_stack_lvl+0x16c/0x1f0
[  211.553488][T10220]  should_fail_ex+0x497/0x5b0
[  211.554860][T10220]  _copy_from_iter+0x29b/0x1400
[  211.556284][T10220]  ? trace_lock_acquire+0x14e/0x1f0
[  211.557785][T10220]  ? __alloc_skb+0x200/0x380
[  211.559121][T10220]  ? __pfx__copy_from_iter+0x10/0x10
[  211.560648][T10220]  ? __virt_addr_valid+0x1a4/0x590
[  211.562136][T10220]  ? __virt_addr_valid+0x5e/0x590
[  211.563572][T10220]  ? __phys_addr_symbol+0x30/0x80
[  211.565037][T10220]  ? __check_object_size+0x488/0x710
[  211.566560][T10220]  netlink_sendmsg+0x813/0xd70
[  211.567959][T10220]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.569490][T10220]  ____sys_sendmsg+0x9ae/0xb40
[  211.570873][T10220]  ? __pfx_____sys_sendmsg+0x10/0x10
[  211.572424][T10220]  ? get_compat_msghdr+0x11b/0x170
[  211.573904][T10220]  ___sys_sendmsg+0x135/0x1e0
[  211.575267][T10220]  ? __pfx____sys_sendmsg+0x10/0x10
[  211.576773][T10220]  ? __pfx_lock_release+0x10/0x10
[  211.578221][T10220]  ? trace_lock_acquire+0x14e/0x1f0
[  211.579717][T10220]  ? __fget_files+0x206/0x3a0
[  211.581091][T10220]  __sys_sendmsg+0x16e/0x220
[  211.582435][T10220]  ? __pfx___sys_sendmsg+0x10/0x10
[  211.583919][T10220]  __do_fast_syscall_32+0x73/0x120
[  211.585400][T10220]  do_fast_syscall_32+0x32/0x80
[  211.586814][T10220]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  211.588629][T10220] RIP: 0023:0xf7f22579
[  211.589808][T10220] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  211.595297][T10220] RSP: 002b:00000000f503455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  211.597675][T10220] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000180
[  211.599931][T10220] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  211.602219][T10220] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  211.604471][T10220] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  211.606727][T10220] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  211.608994][T10220]  </TASK>
[  211.903727][T10226] 9pnet_fd: Insufficient options for proto=fd
[  212.699774][T10240] Invalid logical block size (1437270015)
[  212.782206][T10242] tmpfs: Unknown parameter 'Mpol'
[  212.900446][T10252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1028'.
[  212.905117][T10254] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1028'.
[  212.941591][T10257] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1029'.
[  214.731114][T10282] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1036'.
[  214.761209][T10290] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  214.963427][T10312] binder: 10310:10312 ioctl 4018620d 0 returned -22
[  215.200081][   T39] audit: type=1800 audit(1737293004.002:396): pid=10323 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1044" name="hugetlb.1GB.rsvd.usage_in_bytes" dev="9p" ino=37618291 res=0 errno=0
[  215.410361][    T9] usb 5-1: new full-speed USB device number 12 using dummy_hcd
[  215.541369][T10330] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1046'.
[  215.643362][    T9] usb 5-1: config 1 interface 0 altsetting 4 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  215.647133][    T9] usb 5-1: config 1 interface 0 has no altsetting 0
[  215.650634][    T9] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  215.653358][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.655680][    T9] usb 5-1: Product: syz
[  215.656920][    T9] usb 5-1: Manufacturer: 꼰떚ꪧ䷶̘䇓ᛴभ鶭㺁潟ꍦ墔퀏䁂ᴯ멘㵬ﺤ늱콜顀췄镲滕襭ỗ⍊黱乾뎸쌽賗讝놇☹컞祳션넒㞲妡㘂⢼加寎ﵣᨀსԠ䶐ꧻ䬯孍暤웴Ḻ乮䃏쥎憓蔽秣벥蘰꟣㬪閻៊
[  215.663840][    T9] usb 5-1: SerialNumber: syz
[  215.666852][T10299] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  215.984581][    T9] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 12 if 0 alt 4 proto 1 vid 0x0525 pid 0xA4A8
[  215.991455][    T9] usb 5-1: USB disconnect, device number 12
[  215.997074][    T9] usblp0: removed
[  216.046624][T10343] Mount JFS Failure: -22
[  216.048289][T10343] jfs_mount failed w/return code = -22
[  216.107650][T10348] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1051'.
[  216.111900][T10348] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1051'.
[  216.115669][T10348] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1051'.
[  216.131533][   T39] audit: type=1326 audit(1737293004.932:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10349 comm="syz.2.1052" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  216.137765][   T39] audit: type=1326 audit(1737293004.932:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10349 comm="syz.2.1052" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  216.143886][   T39] audit: type=1326 audit(1737293004.932:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10349 comm="syz.2.1052" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  216.151762][   T39] audit: type=1326 audit(1737293004.932:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10349 comm="syz.2.1052" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  216.159150][   T39] audit: type=1326 audit(1737293004.932:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10349 comm="syz.2.1052" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  216.165381][   T39] audit: type=1326 audit(1737293004.932:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10349 comm="syz.2.1052" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  216.172480][   T39] audit: type=1326 audit(1737293004.932:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10349 comm="syz.2.1052" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  216.179494][   T39] audit: type=1326 audit(1737293004.932:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10349 comm="syz.2.1052" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  216.180014][T10354] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1054'.
[  216.185841][   T39] audit: type=1326 audit(1737293004.932:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10349 comm="syz.2.1052" exe="/syz-executor" sig=0 arch=40000003 syscall=12 compat=1 ip=0xf7f22579 code=0x7ffc0000
[  216.623468][T10362] netfs: Couldn't get user pages (rc=-14)
[  216.655891][T10364] binder: 10363:10364 ioctl 4018620d 0 returned -22
[  217.067407][T10377] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1060'.
[  217.355473][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.428933][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.477636][ T5955] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  217.482543][ T5955] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  217.485970][ T5955] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  217.488523][ T5955] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  217.491936][ T5955] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  217.494191][ T5955] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  217.525287][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.582032][T10385] chnl_net:caif_netlink_parms(): no params data found
[  217.645423][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.650338][T10385] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.653407][T10385] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.655465][T10385] bridge_slave_0: entered allmulticast mode
[  217.657965][T10385] bridge_slave_0: entered promiscuous mode
[  217.660648][T10385] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.662900][T10385] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.664924][T10385] bridge_slave_1: entered allmulticast mode
[  217.667020][T10385] bridge_slave_1: entered promiscuous mode
[  217.707919][T10385] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  217.713052][T10385] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  217.763538][T10385] team0: Port device team_slave_0 added
[  217.766406][T10385] team0: Port device team_slave_1 added
[  217.792582][T10385] batman_adv: batadv0: Adding interface: batadv_slave_0
[  217.794766][T10385] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  217.803991][T10385] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  217.848543][T10385] batman_adv: batadv0: Adding interface: batadv_slave_1
[  217.850541][T10385] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  217.860597][T10385] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  217.892706][   T11] bridge_slave_1: left allmulticast mode
[  217.894377][   T11] bridge_slave_1: left promiscuous mode
[  217.896030][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.899260][   T11] bridge_slave_0: left allmulticast mode
[  217.900937][   T11] bridge_slave_0: left promiscuous mode
[  217.903019][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.005285][   T11] bond2 (unregistering): (slave gretap1): Releasing active interface
[  218.040860][   T11] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  218.348344][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  218.352474][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  218.356026][   T11] bond0 (unregistering): Released all slaves
[  218.360469][   T11] bond1 (unregistering): Released all slaves
[  218.440133][   T11] bond2 (unregistering): Released all slaves
[  218.462667][T10385] hsr_slave_0: entered promiscuous mode
[  218.464866][T10385] hsr_slave_1: entered promiscuous mode
[  218.561603][T10385] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  218.566560][T10385] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  218.569861][T10385] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  218.576273][T10385] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  218.607128][T10385] 8021q: adding VLAN 0 to HW filter on device bond0
[  218.613585][T10385] 8021q: adding VLAN 0 to HW filter on device team0
[  218.621485][   T92] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.623556][   T92] bridge0: port 1(bridge_slave_0) entered forwarding state
[  218.626290][   T92] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.628362][   T92] bridge0: port 2(bridge_slave_1) entered forwarding state
[  218.650524][T10385] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  218.661090][T10385] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  218.704373][   T11] IPVS: stopping backup sync thread 9849 ...
[  218.744884][T10385] 8021q: adding VLAN 0 to HW filter on device batadv0
[  218.867100][T10385] veth0_vlan: entered promiscuous mode
[  218.873015][T10385] veth1_vlan: entered promiscuous mode
[  218.908011][   T11] hsr_slave_0: left promiscuous mode
[  218.936054][   T11] hsr_slave_1: left promiscuous mode
[  218.940357][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  218.945968][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  218.951835][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  218.956158][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  218.976799][   T11] veth1_macvtap: left promiscuous mode
[  218.978722][   T11] veth0_macvtap: left promiscuous mode
[  218.984149][   T11] veth1_vlan: left promiscuous mode
[  218.985953][   T11] veth0_vlan: left promiscuous mode
[  219.533987][ T5297] Bluetooth: hci1: command tx timeout
[  219.688147][T10455] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1072'.
[  219.708714][   T11] team0 (unregistering): Port device team_slave_1 removed
[  219.778607][   T11] team0 (unregistering): Port device team_slave_0 removed
[  220.410141][T10385] veth0_macvtap: entered promiscuous mode
[  220.432949][T10385] veth1_macvtap: entered promiscuous mode
[  220.475445][T10385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.478805][T10385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.484471][T10385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.488239][T10385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.491722][T10385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.494762][T10385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.499309][T10385] batman_adv: batadv0: Interface activated: batadv_slave_0
[  220.504881][T10385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  220.507960][T10385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.510745][T10385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  220.514341][T10385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.517217][T10385] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  220.520198][T10385] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.523951][T10385] batman_adv: batadv0: Interface activated: batadv_slave_1
[  220.537619][T10385] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  220.541176][T10385] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  220.544910][T10385] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  220.548402][T10385] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  220.595930][   T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  220.598429][   T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  220.603989][T10465] binder: 10464:10465 ioctl 4018620d 0 returned -22
[  220.617492][   T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  220.619737][   T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  220.811159][   T11] IPVS: stop unused estimator thread 0...
[  220.911410][T10479] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1075'.
[  221.017683][T10495] netlink: 'syz.5.1077': attribute type 5 has an invalid length.
[  221.261251][ T6004] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  221.321091][ T7592] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  221.411099][ T6004] usb 9-1: Using ep0 maxpacket: 8
[  221.414587][ T6004] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  221.417845][ T6004] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  221.421916][ T6004] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  221.426020][ T6004] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  221.429919][ T6004] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  221.435222][ T6004] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  221.438611][ T6004] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  221.483481][ T7592] usb 10-1: config index 0 descriptor too short (expected 23569, got 27)
[  221.486751][ T7592] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  221.491837][ T7592] usb 10-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  221.494520][ T7592] usb 10-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  221.497314][ T7592] usb 10-1: Manufacturer: syz
[  221.500111][ T7592] usb 10-1: config 0 descriptor??
[  221.558078][ T7592] rc_core: IR keymap rc-hauppauge not found
[  221.560555][ T7592] Registered IR keymap rc-empty
[  221.565268][ T7592] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/rc/rc0
[  221.570166][ T7592] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/rc/rc0/input16
[  221.611123][ T5297] Bluetooth: hci1: command tx timeout
[  221.658018][ T6004] usb 9-1: usb_control_msg returned -32
[  221.659672][ T6004] usbtmc 9-1:16.0: can't read capabilities
[  221.735296][T10534] FAULT_INJECTION: forcing a failure.
[  221.735296][T10534] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  221.738839][T10534] CPU: 2 UID: 0 PID: 10534 Comm: syz.3.1082 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  221.741668][T10534] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.744505][T10534] Call Trace:
[  221.745376][T10534]  <TASK>
[  221.746138][T10534]  dump_stack_lvl+0x16c/0x1f0
[  221.747426][T10534]  should_fail_ex+0x497/0x5b0
[  221.748701][T10534]  _copy_to_user+0x32/0xd0
[  221.749893][T10534]  sg_ioctl+0x1e58/0x26b0
[  221.751056][T10534]  ? __pfx_sg_ioctl+0x10/0x10
[  221.752330][T10534]  ? __pfx_lock_release+0x10/0x10
[  221.753675][T10534]  ? trace_lock_acquire+0x14e/0x1f0
[  221.755086][T10534]  ? __fget_files+0x206/0x3a0
[  221.756359][T10534]  ? __pfx_sg_ioctl+0x10/0x10
[  221.757609][T10534]  compat_ptr_ioctl+0x6b/0xa0
[  221.758870][T10534]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  221.760294][T10534]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  221.761712][T10534]  __do_fast_syscall_32+0x73/0x120
[  221.763080][T10534]  do_fast_syscall_32+0x32/0x80
[  221.764424][T10534]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  221.766090][T10534] RIP: 0023:0xf705e579
[  221.767195][T10534] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  221.772267][T10534] RSP: 002b:00000000f505055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  221.774474][T10534] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000002286
[  221.776571][T10534] RDX: 0000000020000280 RSI: 0000000000000000 RDI: 0000000000000000
[  221.778919][T10534] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  221.781675][T10534] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  221.784430][T10534] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  221.787217][T10534]  </TASK>
[  221.817402][T10538] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1083'.
[  221.819988][T10538] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1083'.
[  221.824968][T10538] netlink: 'syz.3.1083': attribute type 13 has an invalid length.
[  221.827206][T10538] netlink: 'syz.3.1083': attribute type 11 has an invalid length.
[  221.911601][T10543] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1085'.
[  221.938246][T10545] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1079'.
[  222.366499][T10551] usbtmc 9-1:16.0: INITIATE_CLEAR returned 0
[  222.903359][T10560] binder: BINDER_SET_CONTEXT_MGR already set
[  222.907260][T10560] binder: 10559:10560 ioctl 4018620d 200001c0 returned -16
[  223.691836][ T5297] Bluetooth: hci1: command tx timeout
[  223.770618][T10570] binfmt_misc: register: failed to install interpreter file ./file0
[  224.034441][   T69] usb 9-1: USB disconnect, device number 2
[  224.100522][  T833] usb 10-1: USB disconnect, device number 2
[  225.064988][T10610] syz.5.1101 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  225.452457][T10621] input: syz0 as /devices/virtual/input/input17
[  225.771263][ T5297] Bluetooth: hci1: command tx timeout
[  226.085838][T10632] nvme_fabrics: missing parameter 'transport=%s'
[  226.087926][T10632] nvme_fabrics: missing parameter 'nqn=%s'
[  226.754616][T10643] netdevsim netdevsim4: Direct firmware load for .
[  226.754616][T10643]  failed with error -2
[  226.757964][T10643] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  226.757964][T10643] 
[  227.801242][T10670] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1115'.
[  228.046400][ T5297] Bluetooth: Unknown BR/EDR signaling command 0x0d
[  228.049079][ T5297] Bluetooth: Wrong link type (-22)
[  228.135880][T10682] netlink: 'syz.5.1120': attribute type 1 has an invalid length.
[  228.235204][T10686] xt_hashlimit: overflow, try lower: 17592186044416/6
[  228.270815][T10689] tmpfs: Invalid gid '0x00000000ffffffff'
[  228.325547][T10688] netlink: 'syz.5.1121': attribute type 10 has an invalid length.
[  228.328791][T10688] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.332062][T10688] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.338399][T10688] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.341301][T10688] bridge0: port 2(bridge_slave_1) entered forwarding state
[  228.344475][T10688] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.347424][T10688] bridge0: port 1(bridge_slave_0) entered forwarding state
[  228.353132][T10688] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  228.572489][T10699] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1127'.
[  229.388435][T10721] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1133'.
[  229.482801][T10722] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1134'.
[  230.101384][ T5297] Bluetooth: hci1: command tx timeout
[  230.166859][T10730] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1137'.
[  231.042858][T10736] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1139'.
[  232.780058][T10797] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1150'.
[  232.812630][T10799] bridge_slave_0: left allmulticast mode
[  232.814372][T10799] bridge_slave_0: left promiscuous mode
[  232.816025][T10799] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.819538][T10799] bridge_slave_1: left allmulticast mode
[  232.821585][T10799] bridge_slave_1: left promiscuous mode
[  232.823261][T10799] bridge0: port 2(bridge_slave_1) entered disabled state
[  232.827691][T10799] bond0: (slave bond_slave_0): Releasing backup interface
[  232.831955][T10799] bond0: (slave bond_slave_1): Releasing backup interface
[  232.853518][T10799] team0: Port device team_slave_0 removed
[  232.857911][T10799] team0: Port device team_slave_1 removed
[  232.859848][T10799] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  232.863670][T10799] batman_adv: batadv0: Removing interface: batadv_slave_0
[  232.866511][T10799] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  232.868594][T10799] batman_adv: batadv0: Removing interface: batadv_slave_1
[  232.914021][T10799] geneve2: entered promiscuous mode
[  232.916174][T10799] geneve2: entered allmulticast mode
[  232.919447][T10799] batman_adv: batadv0: Adding interface: geneve2
[  232.922654][T10799] batman_adv: batadv0: Interface activated: geneve2
[  233.053183][T10805] mkiss: ax0: crc mode is auto.
[  233.126389][T10817] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1154'.
[  233.213653][T10805] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1153'.
[  233.216280][T10805] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1153'.
[  234.181830][T10852] 
[  234.182578][T10852] ======================================================
[  234.184580][T10852] WARNING: possible circular locking dependency detected
[  234.186577][T10852] 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0 Not tainted
SYZFAIL: failed to recv rpc
[  234.189740][T10852] ------------------------------------------------------
[  234.192481][T10852] syz.3.1160/10852 is trying to acquire lock:
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  234.194227][T10852] ffff888045271f20 (&mm->mmap_lock){++++}-{4:4}, at: __might_fault+0xe3/0x190
[  234.196859][T10852] 
[  234.196859][T10852] but task is already holding lock:
[  234.199078][T10852] ffff888023d46ae8 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_trace_ioctl+0xc9/0x290
[  234.201864][T10852] 
[  234.201864][T10852] which lock already depends on the new lock.
[  234.201864][T10852] 
[  234.204804][T10852] 
[  234.204804][T10852] the existing dependency chain (in reverse order) is:
[  234.207359][T10852] 
[  234.207359][T10852] -> #5 (&q->debugfs_mutex){+.+.}-{4:4}:
[  234.209593][T10852]        __mutex_lock+0x19b/0xa60
[  234.211103][T10852]        blk_mq_init_sched+0x42b/0x640
[  234.212681][T10852]        elevator_init_mq+0x2cd/0x420
[  234.214229][T10852]        add_disk_fwnode+0x113/0x1300
[  234.215773][T10852]        sd_probe+0xa66/0xfa0
[  234.217136][T10852]        really_probe+0x23e/0xa90
[  234.218630][T10852]        __driver_probe_device+0x1de/0x440
[  234.220312][T10852]        driver_probe_device+0x4c/0x1b0
[  234.221937][T10852]        __device_attach_driver+0x1df/0x310
[  234.223595][T10852]        bus_for_each_drv+0x157/0x1e0
[  234.225141][T10852]        __device_attach_async_helper+0x1d3/0x290
[  234.226985][T10852]        async_run_entry_fn+0x9c/0x530
[  234.228549][T10852]        process_one_work+0x958/0x1b30
[  234.230111][T10852]        worker_thread+0x6c8/0xf00
[  234.231585][T10852]        kthread+0x2c1/0x3a0
[  234.232932][T10852]        ret_from_fork+0x45/0x80
[  234.234351][T10852]        ret_from_fork_asm+0x1a/0x30
[  234.235905][T10852] 
[  234.235905][T10852] -> #4 (&q->q_usage_counter(queue)#51){++++}-{0:0}:
[  234.238459][T10852]        blk_queue_enter+0x50f/0x640
[  234.239992][T10852]        blk_mq_alloc_request+0x59b/0x950
[  234.241651][T10852]        scsi_execute_cmd+0x20a/0xf30
[  234.243197][T10852]        read_capacity_16+0x21a/0xe20
[  234.244744][T10852]        sd_revalidate_disk.isra.0+0x1a06/0xa8d0
[  234.246569][T10852]        sd_probe+0x8ee/0xfa0
[  234.247936][T10852]        really_probe+0x23e/0xa90
[  234.249393][T10852]        __driver_probe_device+0x1de/0x440
[  234.251066][T10852]        driver_probe_device+0x4c/0x1b0
[  234.252667][T10852]        __device_attach_driver+0x1df/0x310
[  234.254354][T10852]        bus_for_each_drv+0x157/0x1e0
[  234.255910][T10852]        __device_attach_async_helper+0x1d3/0x290
[  234.257737][T10852]        async_run_entry_fn+0x9c/0x530
[  234.259291][T10852]        process_one_work+0x958/0x1b30
[  234.260860][T10852]        worker_thread+0x6c8/0xf00
[  234.262333][T10852]        kthread+0x2c1/0x3a0
[  234.263671][T10852]        ret_from_fork+0x45/0x80
[  234.265122][T10852]        ret_from_fork_asm+0x1a/0x30
[  234.266659][T10852] 
[  234.266659][T10852] -> #3 (&q->limits_lock){+.+.}-{4:4}:
[  234.268850][T10852]        __mutex_lock+0x19b/0xa60
[  234.270297][T10852]        __nbd_set_size+0x2c0/0x730
[  234.271804][T10852]        nbd_start_device+0x8fd/0xd70
[  234.273350][T10852]        nbd_ioctl+0x21a/0xfd0
[  234.274736][T10852]        compat_blkdev_ioctl+0x2f7/0x750
[  234.276356][T10852]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  234.278032][T10852]        __do_fast_syscall_32+0x73/0x120
[  234.279648][T10852]        do_fast_syscall_32+0x32/0x80
[  234.281207][T10852]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  234.283170][T10852] 
[  234.283170][T10852] -> #2 (&q->q_usage_counter(io)#52){++++}-{0:0}:
[  234.285641][T10852]        blk_mq_submit_bio+0x1fb6/0x24c0
[  234.287268][T10852]        __submit_bio+0x384/0x540
[  234.288744][T10852]        submit_bio_noacct_nocheck+0x698/0xd70
[  234.290974][T10852]        submit_bio_noacct+0x93a/0x1e20
[  234.292973][T10852]        block_read_full_folio+0x812/0xa50
[  234.294674][T10852]        filemap_read_folio+0xc6/0x2a0
[  234.296252][T10852]        filemap_get_pages+0x155f/0x1be0
[  234.297871][T10852]        filemap_read+0x3ca/0xd70
[  234.299327][T10852]        blkdev_read_iter+0x187/0x480
[  234.300877][T10852]        vfs_read+0x87f/0xbe0
[  234.302246][T10852]        ksys_read+0x12b/0x250
[  234.303631][T10852]        do_syscall_64+0xcd/0x250
[  234.305096][T10852]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.306950][T10852] 
[  234.306950][T10852] -> #1 (mapping.invalidate_lock#2){.+.+}-{4:4}:
[  234.309399][T10852]        down_read+0x9a/0x330
[  234.310770][T10852]        filemap_fault+0x2e0/0x2820
[  234.312284][T10852]        __do_fault+0x10a/0x490
[  234.313704][T10852]        do_pte_missing+0xebd/0x3e00
[  234.315234][T10852]        __handle_mm_fault+0x103c/0x2a40
[  234.316872][T10852]        handle_mm_fault+0x3fa/0xaa0
[  234.318391][T10852]        do_user_addr_fault+0x7a3/0x13f0
[  234.320011][T10852]        exc_page_fault+0x5c/0xc0
[  234.321460][T10852]        asm_exc_page_fault+0x26/0x30
[  234.323007][T10852]        strncpy_from_user+0x14a/0x2d0
[  234.324588][T10852]        getname_flags.part.0+0x8f/0x550
[  234.326199][T10852]        getname_flags+0x93/0xf0
[  234.327635][T10852]        __ia32_sys_mknodat+0x9a/0xe0
[  234.329189][T10852]        __do_fast_syscall_32+0x73/0x120
[  234.330805][T10852]        do_fast_syscall_32+0x32/0x80
[  234.332365][T10852]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  234.334323][T10852] 
[  234.334323][T10852] -> #0 (&mm->mmap_lock){++++}-{4:4}:
[  234.336519][T10852]        __lock_acquire+0x249e/0x3c40
[  234.338070][T10852]        lock_acquire.part.0+0x11b/0x380
[  234.339683][T10852]        __might_fault+0x11b/0x190
[  234.341179][T10852]        _copy_from_user+0x29/0xd0
[  234.342678][T10852]        compat_blk_trace_setup+0xc9/0x200
[  234.344361][T10852]        blk_trace_ioctl+0x24a/0x290
[  234.345900][T10852]        compat_blkdev_ioctl+0x13c/0x750
[  234.348091][T10852]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  234.349791][T10852]        __do_fast_syscall_32+0x73/0x120
[  234.351390][T10852]        do_fast_syscall_32+0x32/0x80
[  234.352920][T10852]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  234.354904][T10852] 
[  234.354904][T10852] other info that might help us debug this:
[  234.354904][T10852] 
[  234.357827][T10852] Chain exists of:
[  234.357827][T10852]   &mm->mmap_lock --> &q->q_usage_counter(queue)#51 --> &q->debugfs_mutex
[  234.357827][T10852] 
[  234.362198][T10852]  Possible unsafe locking scenario:
[  234.362198][T10852] 
[  234.364591][T10852]        CPU0                    CPU1
[  234.366121][T10852]        ----                    ----
[  234.367666][T10852]   lock(&q->debugfs_mutex);
[  234.369089][T10852]                                lock(&q->q_usage_counter(queue)#51);
[  234.371797][T10852]                                lock(&q->debugfs_mutex);
[  234.373828][T10852]   rlock(&mm->mmap_lock);
[  234.375127][T10852] 
[  234.375127][T10852]  *** DEADLOCK ***
[  234.375127][T10852] 
[  234.377438][T10852] 1 lock held by syz.3.1160/10852:
[  234.378908][T10852]  #0: ffff888023d46ae8 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_trace_ioctl+0xc9/0x290
[  234.381683][T10852] 
[  234.381683][T10852] stack backtrace:
[  234.383370][T10852] CPU: 1 UID: 0 PID: 10852 Comm: syz.3.1160 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[  234.386428][T10852] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  234.389509][T10852] Call Trace:
[  234.390518][T10852]  <TASK>
[  234.391421][T10852]  dump_stack_lvl+0x116/0x1f0
[  234.392797][T10852]  print_circular_bug+0x41c/0x610
[  234.394257][T10852]  check_noncircular+0x31a/0x400
[  234.395688][T10852]  ? __pfx_check_noncircular+0x10/0x10
[  234.397263][T10852]  ? lockdep_lock+0xc6/0x200
[  234.398614][T10852]  ? __pfx_lockdep_lock+0x10/0x10
[  234.400064][T10852]  __lock_acquire+0x249e/0x3c40
[  234.401455][T10852]  ? __pfx___lock_acquire+0x10/0x10
[  234.402942][T10852]  ? bdev_name.constprop.0+0x298/0x490
[  234.404505][T10852]  lock_acquire.part.0+0x11b/0x380
[  234.405973][T10852]  ? __might_fault+0xe3/0x190
[  234.407346][T10852]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  234.408957][T10852]  ? rcu_is_watching+0x12/0xc0
[  234.410329][T10852]  ? trace_lock_acquire+0x14e/0x1f0
[  234.411821][T10852]  ? __might_fault+0xe3/0x190
[  234.413200][T10852]  ? lock_acquire+0x2f/0xb0
[  234.414523][T10852]  ? __might_fault+0xe3/0x190
[  234.415921][T10852]  ? __might_fault+0xe3/0x190
[  234.417291][T10852]  __might_fault+0x11b/0x190
[  234.418633][T10852]  ? __might_fault+0xe3/0x190
[  234.419995][T10852]  _copy_from_user+0x29/0xd0
[  234.421332][T10852]  compat_blk_trace_setup+0xc9/0x200
[  234.422861][T10852]  ? __pfx_compat_blk_trace_setup+0x10/0x10
[  234.424574][T10852]  ? blk_trace_ioctl+0xc9/0x290
[  234.425984][T10852]  ? snprintf+0xc8/0x100
[  234.427288][T10852]  ? __pfx_snprintf+0x10/0x10
[  234.428657][T10852]  blk_trace_ioctl+0x24a/0x290
[  234.429993][T10852]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  234.431509][T10852]  ? __pfx_lock_release+0x10/0x10
[  234.432973][T10852]  ? trace_lock_acquire+0x14e/0x1f0
[  234.434459][T10852]  compat_blkdev_ioctl+0x13c/0x750
[  234.435965][T10852]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  234.437575][T10852]  ? __fget_files+0x206/0x3a0
[  234.438931][T10852]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  234.440542][T10852]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  234.442072][T10852]  __do_fast_syscall_32+0x73/0x120
[  234.443548][T10852]  do_fast_syscall_32+0x32/0x80
[  234.444975][T10852]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  234.446801][T10852] RIP: 0023:0xf705e579
[  234.448028][T10852] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  234.453482][T10852] RSP: 002b:00000000f500e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  234.455858][T10852] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000c0401273
[  234.458111][T10852] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  234.460364][T10852] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  234.462680][T10852] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  234.464936][T10852] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  234.467196][T10852]  </TASK>
[  234.554206][ T5953] syz_tun (unregistering): left allmulticast mode
[  234.556222][ T5953] syz_tun (unregistering): left promiscuous mode
[  234.558819][ T5953] bridge0: port 3(syz_tun) entered disabled state
[  234.776981][   T45] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.832339][   T45] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.915167][   T45] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.962500][   T45] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.013955][   T45] bridge_slave_1: left allmulticast mode
[  235.016221][   T45] bridge_slave_1: left promiscuous mode
[  235.018518][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.021641][   T45] bridge_slave_0: left allmulticast mode
[  235.023265][   T45] bridge_slave_0: left promiscuous mode
[  235.024912][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.065982][   T45] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  235.275947][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  235.279933][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  235.283429][   T45] bond0 (unregistering): Released all slaves
[  235.340280][   T45] tipc: Disabling bearer <eth:team0>
[  235.342491][   T45] tipc: Left network mode
[  235.531782][   T45] hsr_slave_0: left promiscuous mode
[  235.533816][   T45] hsr_slave_1: left promiscuous mode
[  235.535589][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  235.537722][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  235.539992][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  235.543452][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  235.548566][   T45] veth0_macvtap: left promiscuous mode
[  235.550191][   T45] veth1_vlan: left promiscuous mode
[  235.551925][   T45] veth0_vlan: left promiscuous mode
[  235.705433][   T45] team0 (unregistering): Port device team_slave_1 removed
[  235.742760][   T45] team0 (unregistering): Port device team_slave_0 removed
[  236.355188][   T45] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.434084][   T45] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.513565][   T45] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.563248][   T45] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.636629][   T45] batman_adv: batadv0: Interface deactivated: geneve2
[  236.669267][   T45] batman_adv: batadv0: Removing interface: geneve2
[  236.953926][   T45] bond0 (unregistering): Released all slaves
[  237.242298][   T45] hsr_slave_0: left promiscuous mode
[  237.245155][   T45] hsr_slave_1: left promiscuous mode
[  237.249412][   T45] veth1_macvtap: left promiscuous mode
[  237.252679][   T45] veth0_macvtap: left promiscuous mode
[  237.254407][   T45] veth1_vlan: left promiscuous mode
[  237.255963][   T45] veth0_vlan: left promiscuous mode

VM DIAGNOSIS:
13:23:43  Registers:
info registers vcpu 0

CPU#0
RAX=000000000071c531 RBX=0000000000000000 RCX=ffffffff8b1a9889 RDX=0000000000000000
RSI=ffffffff8b4cd300 RDI=ffffffff8bb19c00 RBP=fffffbfff1b52ef8 RSP=ffffffff8da07e20
R8 =0000000000000001 R9 =ffffed1005686fed R10=ffff88802b437f6b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8da977c0 R14=ffffffff901d2c10 R15=0000000000000000
RIP=ffffffff8b1aac6f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000564460fbc600 CR3=0000000073f76000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85146410 RDI=ffffffff9a66e200 RBP=ffffffff9a66e1c0 RSP=ffffc90006e87288
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36
R12=0000000000000000 R13=0000000000000060 R14=fffffbfff34cdc92 R15=dffffc0000000000
RIP=ffffffff85146437 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2db4f4 CR3=000000005f73c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=1ffff92000e2ef66 RCX=ffffc9000d462000 RDX=0000000000080000
RSI=fffff52000e2ef41 RDI=0000000000000000 RBP=ffffc90007177c80 RSP=ffffc90007177b18
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000080000002 R14=ffffc90007177d60 R15=0000000020084140
RIP=ffffffff81f0fc30 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2c1c06 CR3=000000005f73c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000021b5ec RBX=0000000000000003 RCX=ffffffff8b1a9889 RDX=ffffed10056e6fee
RSI=ffffffff8bb19b80 RDI=ffffffff81703079 RBP=ffffed10036ed488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000001
R12=0000000000000003 R13=ffff88801b76a440 R14=ffffffff901d2c10 R15=0000000000000000
RIP=ffffffff8b1aac6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c39426a CR3=000000004e468000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000