last executing test programs:

4m46.822340687s ago: executing program 3 (id=100):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0xb}, 0x15, 0x3, 'sed\x00', 0x1, 0x4, 0x72}, 0x2c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x7c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x38, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}, {0x10, 0x1, 0x0, 0x1, @last={{0x9}, @void}}, {0x10, 0x1, 0x0, 0x1, @counter={{0xc}, @void}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc4}}, 0x20050800)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000400)=ANY=[@ANYBLOB="1cc8c5aa", @ANYRES16=0x0, @ANYBLOB="010c29bd7000ffdbdf253700000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x40000)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r3, 0x8982, &(0x7f0000000080)={0x3, 'team_slave_1\x00', {0x2}, 0x8})
syz_emit_ethernet(0x52, &(0x7f0000000700)=ANY=[@ANYBLOB="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", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r4, 0x400, 0x1)
fcntl$setlease(r4, 0x8, 0x0)
close(r4)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x3, &(0x7f0000000b40)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000000c0)="a0", 0x0, 0x3, 0x1000000}, 0x50)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_GET_DIRTY_LOG(r7, 0x4010ae42, &(0x7f0000000080)={0x0, 0x0, &(0x7f00007a4000/0x4000)=nil})
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_type(r8, &(0x7f00000000c0), 0x2, 0x0)
write$cgroup_type(r9, &(0x7f0000000180), 0x9)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r10, 0x29, 0x40, &(0x7f0000000380)=@filter={'filter\x00', 0x4, 0x4, 0x324, 0xffffffff, 0x0, 0xc8, 0xc8, 0xfeffffff, 0xffffffff, 0x25c, 0x25c, 0x25c, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@private2, @remote, [0xffffffff, 0x0, 0xff, 0xffffff00], [0x0, 0x0, 0x0, 0xffffff00], 'sit0\x00', 'gre0\x00', {}, {0xff}, 0x2f, 0xd8, 0x1, 0x1d}, 0x2f2, 0xa4, 0xc8}, @REJECT={0x24}}, {{@ipv6={@remote, @mcast1, [0xffffff00, 0xff000000], [0xff, 0xffffff00, 0x0, 0xff], 'pimreg\x00', 'veth0_vlan\x00', {}, {}, 0x3c, 0x8, 0x3, 0x2}, 0x0, 0xa4, 0xcc}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0x10}, {0xffffffffffffffff}}}}, {{@uncond, 0x0, 0xa4, 0xc8}, @common=@inet=@TCPMSS={0x24, 'TCPMSS\x00', 0x0, {0x1000}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x380)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
write(r3, &(0x7f00000000c0)="8f2a0a65bd8c002b0304000e0580a7b6070d63e286a5cefe", 0x5ac)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x4, 0x0}, 0x4e21, 0x3, 'lc\x00', 0x2, 0x81, 0x37}, {@rand_addr=0x64010102, 0x4e23, 0x4, 0xc3, 0x7, 0x12d5c}}, 0x44)

4m46.729960689s ago: executing program 3 (id=102):
r0 = socket$nl_route(0x10, 0x3, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14957e, 0x0)
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000280)='./bus\x00', &(0x7f0000000240)='minix\x00', 0x2808088, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000040)={'team0\x00', &(0x7f0000000280)=@ethtool_link_settings={0x1, 0x6, 0x0, 0x0, 0x0, 0x4, 0x0, 0xab, 0x0, 0x4, [0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x9]}})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x48, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0x1}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8, "d8ca73100c845009382014ea219c2a63"}}}]}, 0x48}}, 0x4000080)

4m46.642030789s ago: executing program 3 (id=103):
syz_open_dev$usbmon(&(0x7f00000001c0), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), 0xffffffffffffffff)
r0 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x1)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000000)=""/188)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="014100a637", @ANYRES16=r2, @ANYBLOB="010000000000fddbdf2501000000050005000100000005000600000000000800030000000000"], 0x2c}}, 0x0)
r3 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000940)=[<r6=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r5, 0xc05064a7, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000008c0)=[<r7=>0x0], &(0x7f0000000900), 0x0, 0x1, 0x0, 0x0, r6})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r4, 0xc01064ab, &(0x7f0000000000)={0x0, r7, r6})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r3, 0x9208, 0x0)

4m46.546321494s ago: executing program 3 (id=104):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$afs(0x0, &(0x7f0000000380)='./file0/file0\x00', &(0x7f00000003c0), 0x0, &(0x7f0000000400)={[{@dyn}]})
mount$afs(0x0, &(0x7f0000000380)='./file0/file0\x00', &(0x7f00000003c0), 0xffffffff, &(0x7f0000000400)={[{@dyn}]})

4m46.5458281s ago: executing program 3 (id=106):
syz_emit_ethernet(0x76, &(0x7f00000001c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb653e", 0x40, 0x3a, 0x1, @ipv4={'\x00', '\xff\xff', @remote}, @mcast2, {[], @param_prob={0x4, 0x0, 0x0, 0x0, {0x0, 0x6, "a300", 0x0, 0x33, 0x0, @mcast1, @ipv4={'\x00', '\xff\xff', @empty}, [@dstopts={0x4}], "0b0b79279cea4588"}}}}}}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$afs(0x0, &(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000003c0), 0x0, &(0x7f0000000100)={[{@dyn}, {@flock_openafs}]})
mount$afs(0x0, &(0x7f0000000380)='./file0/file0\x00', &(0x7f00000003c0), 0x0, &(0x7f0000000400)={[{@dyn}]})
r0 = fsopen(&(0x7f00000000c0)='nfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000080)='~\xf2\xa4C\fr)Q\xbb\xbb\x1f\x9e\xfb\xb62\x1c\x94p\xd3\x85\xa4\xbas\x0e\x8e\x982g%\xe5\x1fT\x9aF\x9b\xc1U\xa4\x03\xc0J\xe2\x03\x13\x00'/55, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffd51, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000040)='cpu.max\x00', 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000080)=ANY=[@ANYRESOCT], 0x8)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x20000080)
pwritev2(r3, &(0x7f00000014c0)=[{&(0x7f0000000140)="eaca17f7b9b9b15ac65e1381a4f476b2315a825209e520008c52d67724ddd8ec4ed64130428cd264a6acb2c995a9dcdc4aa3b32502b9968dffc2f5dc52ba842da93119d25e54266ef08b148cd98815bb036a54c7bd1ee2d1069983de69b6891389bf9fbecdbb6381d5830e96bd5e65243eeab13e7e50719ff53db8c14ee6f3545d1d6dc81351ed354eff2901c318cfdbd12dee72e888518741e974646ac31ed91e18af3624d089755022b70e12aa2d4c1df65b087006142b52654de2c2c29980b3c95a978f9498a76bdf36117e84aaa25e99b87e9b", 0xd5}, {&(0x7f0000000240)="a390815d0822a5e41005846d73b68729264fe40e0bd763cdc7a2883971f12d775382df9814e409901a9f191468cfa48f6ae9a9a2042b4bb9c4bf1ed62c43aea0d505a13a230f96366402c15e5a68935b9f9cf1f3b1790789f277e7803a0288bd069aa1b57be9a024debb2a75415675cb84cda2675117f82be097f75ff6afe46390ead319ce272dde8145a7606034bf2453e65ae0356c9ed9dfaf324fc47da31b86acda0b9ce5652bae0ee2255daf4f8f8d9a33c27a4fafe391718b50c3a15a9894637072dbd6bc133c7f6cc0e6b1f151f98f92d86bd0d5e0e864f42fe803", 0xde}, {&(0x7f0000000440)="affc4f3dd8bb8e1e337681cb3c50ef565bab5148430ae285d0b78b478defe0da143139a7a7beae9741921b683d80744000a7483b171829dbe583c5c4feb37902d6a136fd584f3170b70788932c5847176bece6bff77fba345b3eb74370a8d8427451d77a0c6ed2eec13aee89912d20", 0x6f}, {&(0x7f0000001500)="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", 0x1000}, {&(0x7f0000000340)="c240d921b7d8", 0x6}], 0x20d3, 0xba73, 0x7fffffff, 0x1e)
r4 = accept4$nfc_llcp(0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000540)=0x58, 0x81000)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f00000000c0)=<r6=>0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000b00)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000880)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELSET={0x30, 0xb, 0xa, 0x401, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x2}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x4}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x5}]}, @NFT_MSG_DELTABLE={0x64, 0x2, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWCHAIN={0x178, 0x3, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_COUNTERS={0x40, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x5}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xb78}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xc}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}]}, @NFTA_CHAIN_COUNTERS={0x40, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x80}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x7}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x7}, @NFTA_COUNTER_PACKETS={0xc}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5b6}]}, @NFTA_CHAIN_USERDATA={0xb4, 0xc, "aeb068a03a0f088c99c8cf1401af281b98ea9012d2bff5fc519d0b9a11597bd2ee353ede07b7024ed80f7e9367239cff3ff2e17bb1059dd43bf68f71d6419e32e55ce4ef5ea78fbb1c7ac7a3ba583285589dd467d5451150a66bd7651e0e2ac6878ec40871b611e5d40997ef7bbafcc84a5803ad2f13a5eff0885cfcca913298a85153657ff6abb4f1d33bfee3214b80dda567676b9c85c271f6a14e1f6bc93f9b5df29f0526c220af1ac6d788306912"}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x234}, 0x1, 0x0, 0x0, 0x80}, 0x8010)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000001280)=<r7=>0x0)
r8 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r8, 0x0, &(0x7f00000000c0)=<r9=>0x0)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_DEV_UP(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003140)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="010023010000340200000200000008000100d58d7436d1cd98ec3ceb892c196708274c2659dcdd72e3632478bc7a251d099229781feef26ae6a3d6bf199d2e28e2b0575486688733d08a151790199e3d63228affcf2784ac8cc857ddb11c6e2718703fee8370cb1f5517c206f2c8d55aa7fc2f0a35541d32b9b411f46085f288fb54bc9c6b6d2fa5ad71285a8bb72a", @ANYRES32=r9, @ANYBLOB], 0x1c}}, 0x0)
sendmsg$NFC_CMD_DEP_LINK_DOWN(0xffffffffffffffff, &(0x7f0000001340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001300)={&(0x7f00000007c0)=ANY=[@ANYRESHEX=r9, @ANYRES16=0x0, @ANYBLOB="04002bbd7000fcdbdf250500000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r6, @ANYRES64, @ANYRES32=r7, @ANYRES32=r9, @ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nfc_llcp(r4, &(0x7f0000000780)={&(0x7f0000000580)={0x27, r6, 0x1, 0x4, 0xa9, 0x8, "4d3be29acbfca9cd25a06969ce8c8545d6fe385236fb9b4ed888709512713fcc27aca522cd092fc2e7d2e4b9dc0bdadf4d04fa93617e009261c11c2d18bf7e", 0x2e}, 0x58, &(0x7f0000000740)=[{&(0x7f0000002500)="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", 0x1000}, {&(0x7f0000000600)="7938b6db9b464b8ae4b380ad5fca223cf3885bb4d47ea2fc7428599a26f745564d313ef30c088d12ddc9e78566bf75d50789b37c5d71248572560d77df1b972b55778890e3317b8179c8d714565fffea934c155a97b6b5e7523eb65c49a83a430684c32167", 0x65}, {&(0x7f0000000680)="fc1565bedec5c1b0150769d65580c4bcae5f65b557d324e93b2cc82f8febe8ab68cb04c631b73b45194f26a7a64fafa1032b34713bc50f05e37800de2d9ea0c91fec60229c27b5c745d5e0bafa6c36de67619ad62c46dc3d2e64e6d0695d73a5e7f45f31403020c81427607108bd1f9c2efa1c12c7512502a7996c508a0f52edbfb5f990a80f87bcf16f1703f24a8e21a26209c1549872673255102de0f539177cfa55dc2cccb6b914276e", 0xab}], 0x3, 0x0, 0x0, 0x20040000}, 0x20000081)

4m46.281462047s ago: executing program 3 (id=113):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], 0x0, 0x8, 0x9e, &(0x7f0000000140)=""/158, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x6}, {0x5, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x7, 0x0, 0x0, 0x7fdfffff}]})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
timer_create(0x3, 0x0, &(0x7f0000006bc0))
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYRES8=r0, @ANYBLOB="bbe0345b299e01280aa263fe74fd50a83cbd8b3488043e6a95f287227e97852ff2d1c1e06cc68f9a98fc8d0faed369d8069d34bf98458a2e7aecba9da713e31b56ddd187c3a85e7ebbd59a3ac10617d8a7e590e282ac83b602a4406428aed55d2e3777ecdb6f0f698edd7373d1895ba1af1e3781af88d12a6a2c8482ceb6bd123f9a4761218cdeb5737a1a073e31557f", @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB='\x00'/17], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x1, 0x34324152, 0x0, 0x0, [{0x3}, {}, {0x6}, {}, {}, {}, {0x800}], 0xe}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

4m46.267759303s ago: executing program 32 (id=113):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], 0x0, 0x8, 0x9e, &(0x7f0000000140)=""/158, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x6}, {0x5, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x7, 0x0, 0x0, 0x7fdfffff}]})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
timer_create(0x3, 0x0, &(0x7f0000006bc0))
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYRES8=r0, @ANYBLOB="bbe0345b299e01280aa263fe74fd50a83cbd8b3488043e6a95f287227e97852ff2d1c1e06cc68f9a98fc8d0faed369d8069d34bf98458a2e7aecba9da713e31b56ddd187c3a85e7ebbd59a3ac10617d8a7e590e282ac83b602a4406428aed55d2e3777ecdb6f0f698edd7373d1895ba1af1e3781af88d12a6a2c8482ceb6bd123f9a4761218cdeb5737a1a073e31557f", @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB='\x00'/17], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x1, 0x34324152, 0x0, 0x0, [{0x3}, {}, {0x6}, {}, {}, {}, {0x800}], 0xe}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

4m42.582197588s ago: executing program 1 (id=133):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_int(r0, 0x29, 0x10, &(0x7f0000000200)=0x46, 0x4)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000140)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd2c, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0xc}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r5=>r0, {0x7f}}, './file0\x00'})
openat$cgroup_ro(r5, &(0x7f0000000100)='cpuacct.usage_all\x00', 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x44000, &(0x7f0000000000)={0xa, 0x0, 0xf, @empty, 0x401}, 0x1c)

4m42.520933607s ago: executing program 1 (id=134):
r0 = open(&(0x7f0000000080)='./bus\x00', 0x161042, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mmap(&(0x7f0000fa2000/0x3000)=nil, 0x60002, 0x0, 0x13, r1, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x4}, 0x38)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = creat(&(0x7f0000000040)='./bus\x00', 0x3)
ioctl$sock_inet_tcp_SIOCATMARK(r3, 0x8905, &(0x7f00000000c0))
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c0000003b0007010000000000000000027c00000400000014000180060006008847000008001c"], 0x2c}}, 0x0)

4m42.51299846s ago: executing program 1 (id=137):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0)
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000))
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8001, 0x0, 0x8, 0x0)
ioctl$UFFDIO_CONTINUE(r3, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
mkdir(0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000300)='mounts\x00')
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB="7472616e733d76697274696f2c64656275673d3078163030303030303030303030303030372c0001da5280833471f915c7"])
read$FUSE(r4, &(0x7f0000000340)={0x2020}, 0x2020)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
writev(r6, &(0x7f0000000a40)=[{&(0x7f00000003c0)="ff071d6ce89d96666b08e828be032f55097076e40148c200000000fb00000200"/50, 0x32}, {&(0x7f0000000bc0)="d18a876f8f46c153dde8db040cc7e763ba2fab29aca1a1a2e0ab17dfd1fbfa6955b751ed697ff263589987f3de711efae8e2342b2846c1c9d8febaecb3aef2d7650869408a287d92d06f5d660a68f3f0a39e926d8dbd6f8d9de335fe4c520feaffc62c3435ab43a2f77234987d3b1130d31bd78fb28883050a1b8dd4ea2cdc62703eb86600dba7da620ad621c21b75893f334cfc82a3931e8cf3dfa12d31fa32797f5a940475fd8947bde48c8126a44eb9d229126e34e0d8aace15047ccd5bd0932270c88dac48e0bbb2af55a35efca697fe5435b19f827cf2d9337109", 0xdd}, {&(0x7f0000000200)="a9e47d4ed965685b48214fff756364b93155b267f07697b50eede6ed45f973d3da857dba0deed519dc9a7267b99f19a1b405e7d2", 0x34}, {&(0x7f0000000600)="7a91b4d61f", 0x5}], 0x4)

4m41.521609767s ago: executing program 1 (id=142):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0xd174cf6dddf51944)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000037000b63d25a80648c2594f90a24fc60", 0x14}], 0x1}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000300)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000600)={'team0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=@newqdisc={0x80, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x50, 0x2, {{0x3, 0xea, 0x0, 0x8, 0xffffff52, 0x1}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_SLOT={0x2c, 0xc, {0x7, 0x2, 0xb05, 0x1, 0x3000000000000, 0x120000000000}}]}}}]}, 0x80}, 0x1, 0x7a00}, 0x0)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000880)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="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"], 0x3c}}, 0x0)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x2000003, 0x97052, 0xffffffffffffffff, 0x0)
r10 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x9900)
move_mount(r10, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000005c0)='mm_migrate_pages\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000005c0)='mm_migrate_pages\x00', r3}, 0x10)
mbind(&(0x7f0000126000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x2)

4m41.112540091s ago: executing program 1 (id=148):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r1, 0xc018643a, &(0x7f0000000140)={0x4000000})
ioctl$DRM_IOCTL_WAIT_VBLANK(r1, 0xc018643a, &(0x7f0000000040)={0x4000000})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000740)=@raw={'raw\x00', 0x3c1, 0x3, 0x3b4, 0x0, 0x2b8, 0x182, 0x204, 0x0, 0x2ec, 0x3a8, 0x3a8, 0x2ec, 0x3a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1dc, 0x204, 0x0, {0x0, 0xe0ffff00000000}, [@common=@rt={{0x138}, {0x0, [], 0x0, 0x20, 0x0, [@loopback, @loopback, @remote, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, @ipv4={'\x00', '\xff\xff', @dev}, @local, @private1, @remote, @remote, @mcast2, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, @private0]}}]}, @common=@inet=@SET1={0x28}}, {{@uncond, 0x0, 0xc8, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x24}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x410)
close_range(r0, 0xffffffffffffffff, 0x0)

4m40.932367051s ago: executing program 1 (id=151):
r0 = openat$vicodec0(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180020000000000000000000000000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
r3 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)=@gettaction={0x30, 0x32, 0x301, 0x0, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0xa}]}, 0x30}}, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000140)=0x7)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080)=0xff)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f00000003c0))
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x7e)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r3, &(0x7f0000000600)={0xa0000013})
epoll_wait(r7, &(0x7f0000000000)=[{}], 0x1, 0x400)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="5c0000000206010600000000000000000000000014000780080011400000000005001500060000000500010006000000050005000a00000005000400000000000900020073797a310000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
prctl$PR_SET_MM_MAP(0x17, 0x3, 0x0, 0xfffffffffffffdd7)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r8, 0x400455c8, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
r10 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r10, &(0x7f00000001c0)={0xa, 0x0, 0x200, @private1, 0xffff, 0x3}, 0x20)
ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0185647, &(0x7f0000000100)={0x9f0000, 0x1, 0xfffff001, r2, 0x0, &(0x7f00000000c0)={0x9b0906, 0x7, '\x00', @string=&(0x7f0000000340)=0xfe}})

4m40.932035356s ago: executing program 33 (id=151):
r0 = openat$vicodec0(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180020000000000000000000000000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
r3 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)=@gettaction={0x30, 0x32, 0x301, 0x0, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0xa}]}, 0x30}}, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000140)=0x7)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080)=0xff)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f00000003c0))
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x7e)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r3, &(0x7f0000000600)={0xa0000013})
epoll_wait(r7, &(0x7f0000000000)=[{}], 0x1, 0x400)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="5c0000000206010600000000000000000000000014000780080011400000000005001500060000000500010006000000050005000a00000005000400000000000900020073797a310000000010000300686173683a69702c6d6163"], 0x5c}}, 0x0)
prctl$PR_SET_MM_MAP(0x17, 0x3, 0x0, 0xfffffffffffffdd7)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r8, 0x400455c8, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
r10 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r10, &(0x7f00000001c0)={0xa, 0x0, 0x200, @private1, 0xffff, 0x3}, 0x20)
ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0185647, &(0x7f0000000100)={0x9f0000, 0x1, 0xfffff001, r2, 0x0, &(0x7f00000000c0)={0x9b0906, 0x7, '\x00', @string=&(0x7f0000000340)=0xfe}})

4m1.149706441s ago: executing program 0 (id=439):
syz_open_dev$usbmon(&(0x7f00000001c0), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), 0xffffffffffffffff)
r0 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x1)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000000)=""/188)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x2c}}, 0x0)
r2 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000940)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r4, 0xc05064a7, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000008c0)=[<r6=>0x0], &(0x7f0000000900), 0x0, 0x1, 0x0, 0x0, r5})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r3, 0xc01064ab, &(0x7f0000000000)={0x0, r6, r5})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0x9208, 0x0)

4m1.024892575s ago: executing program 0 (id=443):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
unshare(0x8000000)
r1 = mq_open(&(0x7f00000000c0)='-{$\x00', 0x40, 0x16d, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x4}]})
socket$pppoe(0x18, 0x1, 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000000300), 0x7, 0x24080)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r2, 0xc1105511, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0xc, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100))
syz_open_dev$video4linux(&(0x7f0000000000), 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0))
connect$inet(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0x200, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x11, 0x800000003, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCGPTPEER(r6, 0x80045439, 0x8400002)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600))

4m0.12358424s ago: executing program 0 (id=457):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x3c, 0x2, 0x6, 0x3, 0x0, 0x0, {0x5}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'list:set\x00'}]}, 0x3c}}, 0x0)
flistxattr(r0, &(0x7f0000000080)=""/96, 0x60)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)={0x28, 0x3, 0x6, 0x801, 0x0, 0x0, {0x5, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x28}}, 0x40000)

4m0.061757031s ago: executing program 0 (id=458):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000001000)=ANY=[@ANYBLOB='trans=virtio,noextend,access=any,cache=fscache,version=9p2000.u'])
socket(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="020d000018000000000000000000000005000600000000000a00000000000000fc010000000000000000000000000000000000000000000005000500000000000a000000000000000000000000000000000000000000000000000000000000000800120002000200000000000000000010002b00020300000000000000000000fe880000000000000000000000000001fc010000000000000000000000000000040004"], 0xc0}}, 0x0)
r2 = dup(r0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000180), &(0x7f00000001c0))
io_uring_enter(r2, 0x6aab, 0x55aa, 0xa, 0x0, 0x0)
getsockopt(0xffffffffffffffff, 0x200000000114, 0x2711, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = openat$audio1(0xffffffffffffff9c, 0x0, 0x60202, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, 0x0)
mmap$dsp(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x200000f, 0x11, r3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x2081c80, 0x0)
mount$bind(&(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x88700a, 0x0)
umount2(&(0x7f0000000100)='./file0/file0\x00', 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
msgrcv(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1000)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000180)='./file0\x00')
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)

3m59.64162232s ago: executing program 0 (id=460):
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x1080, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000240)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_origin(&(0x7f0000000100)='./file1\x00', &(0x7f0000000180), &(0x7f0000000200), 0x2, 0x1)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x77, 0x88301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r1, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
r2 = socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="5c00000010000100"/20, @ANYRES32, @ANYBLOB="000000000000000034001680300001802c000c80140001"], 0x5c}}, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r4=>0x0})
r5 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0xd06e909224c21f8c, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000011000100000000000000000007000000", @ANYRES32=r4, @ANYBLOB="0000000000000f0014001a80100005800c00038008"], 0x34}}, 0x0)
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)={0x184, 0x0, 0x10, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0xe4, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6a7b1679}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc0}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x46273ab0}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x64d89de4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x763c4b09}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x8bc7f1e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x43}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xaf}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f8e94c0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6ece23b8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7a}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb9}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b7ba2b0}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x33}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc3}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}]}]}, 0x184}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000)
bind$alg(r2, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xchacha20-simd,anubis-generic,nhpoly1305-sse2)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
sendmmsg$alg(0xffffffffffffffff, &(0x7f00000005c0)=[{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000040)="5e86c0b1a7b82799275f56f2", 0xc}, {&(0x7f0000002640)="8913e5ca447649090a43ff964a4457b941cf3ba22d3ed35b6d989c947f5d61b69d1b94a89cda54406f1015ed0b07b95cd08895025f23d728c18b18ea5ecaff37458c68a6ad79c8938c04dce6434926026eface8da673f509573f5ecfe548f9b1455dfcdae4d6bb7ca04eb0c12caaa336ca32917cc4c0b7d520f8742da8bfb7819ba7ee970adf9d39614787482ae12647093574feacbc2bffa807d616362318b8f607872bc38bd2ad88c02e604c45defc830d701d87c7aaf5c1816630a7a7f90cbebcba17da08bbfb219987a839ce7459a39800", 0xd3}], 0x2, &(0x7f00000003c0)=[@op={0x10, 0x117, 0x3, 0x1}, @assoc={0x10, 0x117, 0x4, 0x9}, @op={0x10, 0x117, 0x3, 0x1}, @assoc={0x10, 0x117, 0x4, 0xa4}], 0x40}], 0x1, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000a00)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000001c0)=""/223, 0xdf}], 0x1}}], 0x1, 0x0, 0x0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f00000001c0)=@urb_type_iso={0x0, {0x1, 0x1}, 0xffffffff, 0xe7, 0x0, 0x0, 0xfffffffe, 0x0, 0x1, 0xfffffffd, 0x5, 0x0, [{0x1, 0x5, 0x6}]})
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r6, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r6, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r7 = fcntl$dupfd(r6, 0x0, r6)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r6, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="e395e9e528dc7bebc5283c05dfaf5b8212f0019e9386333db6ee80eabcff99aabeeae5f6c52e10b84542e5bea00731b35da2c1e518a03b77a42038bbdc35f87db09ba55191a9bafe0d61c0d25886d87b1f16c7223508aa84a2afba6e772e8363e3ab62db0513", @ANYBLOB="693e075c68ac8e6ae5d368f9324bf599f83bcf60787d83f9e97305c9aea0aceab5f85b0305486cee386293b3", @ANYRES64=r0, @ANYRES16, @ANYRESOCT, @ANYRES16=0x0], 0x14}}, 0x0)
sendmsg$WG_CMD_GET_DEVICE(r7, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000002fc0)=ANY=[], 0x2b08}}, 0x0)
setsockopt$inet6_tcp_TLS_TX(r6, 0x11a, 0x2, &(0x7f0000000380)=@ccm_128={{0x304}, "1bb59684423031d5", "b518ec45e428570213debdfea23df4fe", "bafe5ad9", "ab31d35bed3ad4c4"}, 0x28)

3m59.351901368s ago: executing program 0 (id=468):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0)
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000))
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8001, 0x0, 0x8, 0x0)
ioctl$UFFDIO_CONTINUE(r3, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
mkdir(0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000300)='mounts\x00')
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB="7472616e733d76697274696f2c64656275673d3078163030303030303030303030303030372c0001da5280833471f915c7"])
read$FUSE(r4, &(0x7f0000000340)={0x2020}, 0x2020)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
writev(r6, &(0x7f0000000a40)=[{&(0x7f00000003c0)="ff071d6ce89d96666b08e828be032f55097076e40148c200000000fb00000200"/50, 0x32}, {&(0x7f0000000bc0)="d18a876f8f46c153dde8db040cc7e763ba2fab29aca1a1a2e0ab17dfd1fbfa6955b751ed697ff263589987f3de711efae8e2342b2846c1c9d8febaecb3aef2d7650869408a287d92d06f5d660a68f3f0a39e926d8dbd6f8d9de335fe4c520feaffc62c3435ab43a2f77234987d3b1130d31bd78fb28883050a1b8dd4ea2cdc62703eb86600dba7da620ad621c21b75893f334cfc82a3931e8cf3dfa12d31fa32797f5a940475fd8947bde48c8126a44eb9d229126e34e0d8aace15047ccd5bd0932270c88dac48e0bbb2af55a35efca697fe5435b19f827cf2d9337109", 0xdd}, {&(0x7f0000000200)="a9e47d4ed965685b48214fff756364b93155b267f07697b50eede6ed45f973d3da857dba0deed519dc9a7267b99f19a1b405e7d2", 0x34}, {&(0x7f0000000600)="7a91b4d61f", 0x5}], 0x4)

3m59.225243104s ago: executing program 34 (id=468):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0)
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000))
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8001, 0x0, 0x8, 0x0)
ioctl$UFFDIO_CONTINUE(r3, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
mkdir(0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000300)='mounts\x00')
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB="7472616e733d76697274696f2c64656275673d3078163030303030303030303030303030372c0001da5280833471f915c7"])
read$FUSE(r4, &(0x7f0000000340)={0x2020}, 0x2020)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
writev(r6, &(0x7f0000000a40)=[{&(0x7f00000003c0)="ff071d6ce89d96666b08e828be032f55097076e40148c200000000fb00000200"/50, 0x32}, {&(0x7f0000000bc0)="d18a876f8f46c153dde8db040cc7e763ba2fab29aca1a1a2e0ab17dfd1fbfa6955b751ed697ff263589987f3de711efae8e2342b2846c1c9d8febaecb3aef2d7650869408a287d92d06f5d660a68f3f0a39e926d8dbd6f8d9de335fe4c520feaffc62c3435ab43a2f77234987d3b1130d31bd78fb28883050a1b8dd4ea2cdc62703eb86600dba7da620ad621c21b75893f334cfc82a3931e8cf3dfa12d31fa32797f5a940475fd8947bde48c8126a44eb9d229126e34e0d8aace15047ccd5bd0932270c88dac48e0bbb2af55a35efca697fe5435b19f827cf2d9337109", 0xdd}, {&(0x7f0000000200)="a9e47d4ed965685b48214fff756364b93155b267f07697b50eede6ed45f973d3da857dba0deed519dc9a7267b99f19a1b405e7d2", 0x34}, {&(0x7f0000000600)="7a91b4d61f", 0x5}], 0x4)

4.093662537s ago: executing program 2 (id=2262):
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x62181)
write$sndseq(r0, 0x0, 0xfffffc3e)

4.093191845s ago: executing program 2 (id=2263):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x239, &(0x7f00000002c0)={0x0, 0x4533, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r6 = inotify_init()
r7 = syz_io_uring_setup(0x24f9, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r8=>0x0, &(0x7f0000000180)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000200)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r6})
io_uring_enter(r7, 0x20007113, 0x0, 0x0, 0x0, 0x0)
inotify_add_watch(r6, &(0x7f0000000000)='.\x00', 0x400017e)
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r12, 0x4048aecb, &(0x7f0000000480)=ANY=[])
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f000000b800)={0x2020}, 0x2020)
r13 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r13, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r13, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r13, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
recvmsg(r13, &(0x7f0000000a40)={0x0, 0x0, 0x0}, 0x102)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r13, 0x0)

3.823726912s ago: executing program 6 (id=2266):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x80000)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_THP_DISABLE(0x29, 0xdffffffffffffffe)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB, @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',gr\a\x00p_id=', @ANYRESDEC=0x0, @ANYBLOB])
r4 = syz_clone3(&(0x7f00000004c0)={0x8000, &(0x7f0000000240), &(0x7f0000000340), &(0x7f0000000380), {0x37}, &(0x7f00000003c0)=""/36, 0x24, &(0x7f0000000400)=""/116, &(0x7f0000000480)=[0xffffffffffffffff], 0x1, {r3}}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x0, &(0x7f0000000540))
write$FUSE_NOTIFY_INVAL_INODE(r3, &(0x7f0000000000)={0x28, 0x2, 0x0, {0x1}}, 0x28)
r5 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(r2, 0x1e, &(0x7f0000000180)={r0}, 0x1)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x101, 0x4})
r6 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000140)='pvfs2\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f0000000040)={0x0, &(0x7f00000002c0)=[<r7=>0x0], 0x0, 0x0, 0xfffffd52, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r5, 0xc01c64a3, &(0x7f0000000280)={0x3, r7, 0x3, 0x0, 0xa, 0x1ff, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR2(r5, 0xc02464bb, &(0x7f0000000080)={0x3, r7})
socket$inet_dccp(0x2, 0x6, 0x0)

3.333352116s ago: executing program 6 (id=2270):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
sendmsg$xdp(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x33, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)}, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r4, 0x0, 0x33fe0)
r5 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x18, 0x32, 0x53b, 0x0, 0x0, {0x9}, [{0x4}]}, 0x18}}, 0x0)
ioctl$sock_ifreq(r4, 0xef, &(0x7f00000000c0)={'\x00', @ifru_flags=0x4000})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), 0xffffffffffffffff)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYRESDEC], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r8, 0xc0285700, &(0x7f0000000080)={0x0, "4fcb813dd28b42bee2b094a3de6dbfd30a74457bcd1cfd5feffe5c019f45d57f", <r9=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r9, 0xc0303e03, &(0x7f0000000180)={"b645563c45bcc7e181fad43c40fc603ebaf6ab65a29e23546aad0281b3aff5eb", r9, <r10=>0xffffffffffffffff})
ioctl$SYNC_IOC_FILE_INFO(r10, 0x40103e05, &(0x7f0000000100)={""/32, 0x0, 0x0, 0x0, 0x0, 0x0})
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001280), r11)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000012c0)={'wlan1\x00', <r13=>0x0})
ioctl$BTRFS_IOC_INO_PATHS(r6, 0xc0389423, &(0x7f00000002c0)={0x101, 0x0, [0xd1de, 0x2, 0x6, 0x3], &(0x7f00000000c0)})
sendmsg$NL80211_CMD_NEW_INTERFACE(r11, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000001440)={0x30, r12, 0x1, 0x70bd2b, 0x25dfdbff, {{}, {@void, @val={0x8, 0x3, r13}, @val={0xc, 0x99, {0x9, 0x1b}}}}, [@NL80211_ATTR_4ADDR={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x6000a010}, 0x20c0)

3.33291079s ago: executing program 5 (id=2271):
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x62181)
write$sndseq(r0, 0x0, 0xfffffc3e)

3.310391427s ago: executing program 6 (id=2272):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000140)={'batadv_slave_0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
setreuid(0x0, 0x0)
syz_emit_ethernet(0x46, &(0x7f00000006c0)={@broadcast, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0x3, 0x4, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x3c, 0x0, 0x0, 0x4de, 0x0, 0x4, 0x0, @dev, @local}, "ff9baeae7ee5444d"}}}}}, 0x0)

3.310145924s ago: executing program 5 (id=2273):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d4, 0x0)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

3.183143112s ago: executing program 6 (id=2274):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000008080)={0x0, 0x0, &(0x7f0000001240)=[{0x0, 0x2198}, {0x0}], 0x2}, 0x0)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)}, 0x0)
recvmmsg(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000400)=""/4096, 0x1000}], 0x1}}], 0x4000210, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
gettid()
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r3, 0xc040aed5, &(0x7f00000000c0)={0x6000, 0x11f000})

3.182722281s ago: executing program 5 (id=2275):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000680)='./bus\x00', 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={r4, r5}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000040)={'erspan0\x00', &(0x7f00000002c0)={'ip_vti0\x00', <r6=>0x0, 0x8000, 0x80, 0x9, 0x1000, {{0x20, 0x4, 0x2, 0x4, 0x80, 0x66, 0x0, 0x80, 0x29, 0x0, @private=0xa010101, @rand_addr=0x64010101, {[@generic={0x82, 0x11, "af2fa34f5b273c24871d83c002e63e"}, @lsrr={0x83, 0x13, 0x93, [@dev={0xac, 0x14, 0x14, 0x13}, @multicast2, @local, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_addr={0x44, 0xc, 0xe0, 0x1, 0x8, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x8}]}, @cipso={0x86, 0x39, 0x0, [{0x5, 0x12, "6beda746c4a0d9a22437039fcb0bba18"}, {0x7, 0x12, "615c76443f4616ec1bc199b30cc66db2"}, {0x2, 0x2}, {0x2, 0x5, "013ff9"}, {0x7, 0x2}, {0x0, 0x6, '=\"{d'}]}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000480)={'ip6gre0\x00', r6, 0x2f, 0x7, 0x68, 0x1, 0x43, @empty, @local, 0x1, 0x7, 0x4a, 0x5}})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r7)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x0, 0x0, 0x0, 0x0, 0x54}, 0x9c)

2.663251624s ago: executing program 4 (id=2278):
r0 = semget$private(0x0, 0x4000, 0x764)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005400000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
semctl$IPC_STAT(r0, 0x0, 0x2, 0x0)
semctl$SEM_STAT(r0, 0x1, 0x12, &(0x7f0000000040))
mkdir(&(0x7f00000009c0)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000400)={{{@in, @in=@remote}}, {{@in=@multicast2}, 0x0, @in6=@private1}}, &(0x7f0000000280)=0xe4)
mount$binder(0x0, &(0x7f0000000100)='./file1/file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB='stats=global,stats=global,stats=global,max=00000000000000000003,stats=global,max=0000000000000000001,max=00000000000000000001,max=00000000000000000002,max=00000000000000000000,dont_hash,seclabel,fowner>\x00', @ANYRESDEC=r1, @ANYBLOB="2c646f6e744961707072616973ea20b9a4234b0000000a581faf64d2a93ed3bbeb71a6fafd174171a7c775f6cdfb9e641611056ac9c38f7885547dc109fcc2d3a5bb53535b9ea823f9dbef1657de53dcea45ccd1e7cf9cc9ad9aec6767cd9c42f3c7d7c9eb3636bec810b143f48cbfc100000000"])
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'veth1_to_batadv\x00', <r8=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f00000002c0)={@private1={0xfc, 0x1, '\x00', 0x4}, 0x4, r8})
ioctl$sock_inet6_SIOCADDRT(r7, 0x890b, &(0x7f0000000540)={@empty, @empty, @private1, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4400046, r8})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000300)={{0x17dd, 0x5, 0x4, 0x1ff}, 'syz1\x00', 0x9})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
umount2(&(0x7f0000000040)='./bus\x00', 0x9)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mkdir(&(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
rmdir(&(0x7f0000000380)='./file0/../file0\x00')

2.61278745s ago: executing program 2 (id=2279):
r0 = gettid()
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000140)=0x7)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
r2 = syz_open_dev$ndb(&(0x7f00000001c0), 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r3=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r2, 0xab00, r3)
ioctl$NBD_DO_IT(r2, 0xab03)
pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RXATTRCREATE(r4, &(0x7f0000000080)={0x7, 0x21, 0x2}, 0x7)
ioctl$NBD_CLEAR_SOCK(r1, 0xab04)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_drop_memb(r5, 0x107, 0x2, &(0x7f00000000c0)={0x0, 0x1, 0x6, @local}, 0x200000d0)

2.351624419s ago: executing program 2 (id=2280):
r0 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
r1 = shmget$private(0x0, 0x2000, 0x10a, &(0x7f00000d9000/0x2000)=nil)
shmctl$IPC_RMID(r1, 0x0)
shmctl$SHM_UNLOCK(r1, 0xc)
shmctl$IPC_INFO(r1, 0x3, &(0x7f0000000300)=""/4096)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000001300)=ANY=[@ANYBLOB="18020000030000000000000000000000850000008700000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095", @ANYRESHEX=r0, @ANYRESDEC=r1], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000000)="1cc1110ec1e9abc89b005bec0000", 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f00000002c0)={0xf0f044})
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000f7595001e7fce9bea86e0b5ddfef34ef6a64741e9b2988a8de4c05fb2588b4c7df3015c70b9e2862ee6151e819ceb459133da49cb57871fffdfe05c84694f042dc62dc13ba7f60252da6e15d0c2d54e5605518b118fca945e49f1b839e661cafe3d02310c74b668942ef5bbf91ef3ba60c6e606b4d768fc943"], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00K\x00\x00', @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040), 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendmmsg$inet(r3, 0x0, 0x0, 0x800)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r5, 0x5408, &(0x7f0000000080)={0x4e00, 0x0, 0x730, 0xbdff, 0x2, "fdffffffffffffff"})
write$binfmt_aout(r5, &(0x7f0000000240)=ANY=[], 0xff2e)
ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7fffeff00"})
r6 = syz_open_pts(r5, 0x0)
r7 = dup3(r6, r5, 0x0)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x17)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000100)={0x0, 0x0, 0x8, 0x16, 0x200, &(0x7f0000000880)="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"})

2.351003301s ago: executing program 5 (id=2281):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
msgrcv(0x0, &(0x7f0000000b00)={0x0, ""/4096}, 0x1004, 0x2, 0x800)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_ifreq(r1, 0x89f2, &(0x7f0000000100)={'bond0\x00', @ifru_names='caif0\x00'})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180))
ioctl$SG_IO(r2, 0x2285, &(0x7f00000005c0)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, &(0x7f00000004c0)=""/185}, &(0x7f0000000240)="94ec7acd4ab2", 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000080)={r0, &(0x7f0000000180)="1ff17aa612a295a8f54280d74fcc913881ab65698a5124cbc10e60af832f63b5729c58997224b6a04c17054b069087ed50998890c93fc7a233f427d6545b054ab72dd0117a0874759dd2a1be46e241ab50442094eb16cfd6aa29ffdb605ab2eb4ac586ccbb77a2aa5cef771f809dee0aeb6be3232a75bdd447241acf", &(0x7f00000002c0)=""/204, 0x4}, 0x1c)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r3, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

2.283523816s ago: executing program 5 (id=2282):
sched_setaffinity(0x0, 0x30, &(0x7f00000002c0)=0x10002)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000200)=ANY=[@ANYRES8=r2], 0xfe61)
r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
recvmsg$kcm(r2, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x2062)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000019300)=ANY=[@ANYBLOB="02000000040000000800", @ANYBLOB="0000000000000000000100000000000000000000024857976d2a64adae377540ecc296d2ba7c6db1d209889327e6597f610fb0c4e54c64928770669059dd54da8ea3c4938380136d463e3f4e70bb85abca9361", @ANYRES32=0x0, @ANYRESDEC=r1, @ANYBLOB='\x00'/28], 0x48)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$UHID_CREATE(r5, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000540)=""/32, 0x20}}, 0x120)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r6 = syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$HIDIOCGFEATURE(r6, 0xc0404809, 0x0)

1.741371587s ago: executing program 4 (id=2283):
r0 = syz_open_procfs(0x0, &(0x7f0000002400)='net/netstat\x00')
r1 = openat$audio1(0xffffff9c, &(0x7f0000000240), 0x80000, 0x0)
socket(0x10, 0x3, 0x0)
io_setup(0x4, &(0x7f00000014c0)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000002c0)='mounts\x00')
io_submit(r2, 0x2, &(0x7f0000000700)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x3, 0x3, r1, 0x0, 0x0, 0x9, 0x0, 0x3}])
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1c140}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_LABEL={0x8}]}}}]}, 0x3c}}, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1d, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
listen(r5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x24, 0x3b, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@typed={0x4}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x16, 0x0, 0x0, @u32=0x4000}]}]}, 0x24}}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000080)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0000ce", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@sack_perm={0x2, 0x4}]}}}}}}}}, 0x0)
read$FUSE(r0, &(0x7f0000002500)={0x2020}, 0x2020)

1.740503873s ago: executing program 6 (id=2284):
socket$kcm(0x10, 0x2, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x20000, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r2, 0x40045612, &(0x7f0000000000)=0x1)
ioctl$vim2m_VIDIOC_DQBUF(r2, 0xc044560f, &(0x7f0000000280)=@mmap={0x0, 0x1, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "37bb54f0"}})
close_range(r1, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x1a9001)
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x44881)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xf9}, 0x0, &(0x7f0000000680)={0x7fe, 0x0, 0xfffffffffffffffc, 0x40002736d9c8, 0xfffffffffffffff2, 0x0, 0x0, 0x3}, 0x0, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x1fffff)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000)
socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x13, 0x0, &(0x7f0000000040))
sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x8000000004)
close(0xffffffffffffffff)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r4, 0x0)

1.604435503s ago: executing program 4 (id=2285):
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x62181)
write$sndseq(r0, 0x0, 0xfffffc3e)

1.603622964s ago: executing program 6 (id=2286):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = socket$caif_stream(0x25, 0x1, 0x0)
sendmmsg$inet(r0, &(0x7f0000000100)=[{{&(0x7f0000000000)={0x2, 0x4e24}, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)='P'}, {&(0x7f0000000080)="6356c5cf1b3419574ea180a6d8edd7d1a07d86fc8085eed3d9d5"}]}}], 0x400020d, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000300)=""/102400, 0x19000)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1b, 0x13, &(0x7f0000000340)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x78, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/address_bits', 0x0, 0x104)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000019480)={0x8, 0x1c29, &(0x7f0000019440)=ANY=[@ANYBLOB="1c000000010100000053153ca6000000"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r3, &(0x7f0000000200), 0x10)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0x6c, 0x30, 0x1, 0x0, 0x0, {}, [{0x58, 0x1, [@m_bpf={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x10000000}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
r5 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000019640)=[{&(0x7f00000195c0)="71b4bc8a602d41f92c4cd2f12f4690918da8509a8d26c601522d92fe55a03afae74cfcd720acf8a69e6a351139d59c6b45a78a4d9daafc6c0ade6b87995f6cee33d7973b8cdbba6f5379bbfc9579697b5581ca99c1608fb917f443643263eb9fae7cfe729b0e20f20e2b9c099ba3470000000000", 0x74}], 0x1}, 0x9b63dc011964690e)
r7 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
getsockopt$ax25_int(r7, 0x101, 0x4, &(0x7f0000000080), &(0x7f0000000000)=0x4)
ioctl$DRM_IOCTL_MAP_BUFS(r2, 0xc00c6419, &(0x7f0000019400)={0x9, &(0x7f0000019300)=""/222, &(0x7f0000019b80)=[{0x0, 0x84, 0x0, &(0x7f0000019680)=""/132}, {0x3, 0x6d, 0x9, &(0x7f0000019540)=""/109}, {0x1d1, 0xc9, 0x9, &(0x7f0000019740)=""/201}, {0x7, 0xb2, 0x1b, &(0x7f0000019840)=""/178}, {0x1, 0x5d, 0x0, &(0x7f0000019900)=""/93}, {0x7, 0x1a, 0xfa89, &(0x7f0000000240)=""/26}, {0x4, 0x7a, 0x2, &(0x7f0000019980)=""/122}, {0x16, 0xe9, 0x0, &(0x7f0000019a00)=""/233}, {0x535, 0x66, 0x1, &(0x7f0000019b00)=""/102}]})
r8 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x121402)
dup3(r5, r8, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
madvise(&(0x7f0000d38000/0x3000)=nil, 0x3000, 0xe)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
r9 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r9, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
recvmmsg(r9, &(0x7f0000003e40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000035c0)=""/241, 0xf1}}, {{&(0x7f0000000540)=@un=@abs, 0x80, 0x0, 0x0, &(0x7f00000037c0)=""/236, 0xec}}, {{0x0, 0x0, &(0x7f0000003bc0)=[{0x0}, {&(0x7f0000003a00)=""/190, 0xbe}, {&(0x7f0000003ac0)=""/131, 0x83}, {0x0}], 0x4, &(0x7f0000003c00)=""/65, 0x41}}, {{&(0x7f0000003c80)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, 0x0, 0x0, &(0x7f0000003e00)=""/48, 0x30}}], 0x4, 0x40000121, 0x0)
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000fff000/0x1000)=nil)
madvise(&(0x7f0000f7c000/0x3000)=nil, 0x3000, 0x14)

1.603314805s ago: executing program 4 (id=2287):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000340)=[{0x5, 0x5, 0x0, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000007c0)={0x400000000000000, 0x0, 0x0}, 0x20004808)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x2)
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x3, 0x1)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000340)={{{@in=@local, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x33}, 0xfffffffd, 0x33}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x2}, 0x0, 0x0, 0x0, 0xfd}}, 0xe8)
r6 = syz_open_dev$I2C(&(0x7f0000000000), 0x4, 0x40702)
kcmp(r1, r1, 0x6, r0, r6)
sendmmsg(r5, &(0x7f0000000480), 0x21, 0x0)

1.433283762s ago: executing program 5 (id=2288):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(0x0, r1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}]}, @NFT_MSG_NEWSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x90}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000003e0007010000000000000000030004000180000000000000"], 0x1c}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000280)='./bus\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f00000003c0)='usr\xd0;\xcd\t\x00\xf6s\x8e\xe38\xbe\v\xe4\x17L\xb3\xc3E\xc0\x86cx\x12\xbfG\xe4`}\'\x1f\xd4?\xffz\xb6h\x83\xa5\xa1\xd3E\x8c\xf4\xf9Y*\xf2\xefr=\xb2\xb2\x1d\xae}s\x99\xa2\xdcD\xd6\"4N~\xeb\xe3\xfe\xea\xd3\xfd\xcc6>[\xaf\xce\xaf:\x1f\xf0\xbaH\xeb8A3^,\xbdC\xe9V\a\xe4\x81\xb2\xcd\xc7#\x9a49\x87\x92U\x96\xf2q\xa6\tF\xc1\xf6\xc0}\xe3c\xdf\x80\'?\xec\x95\xa4\x94\xacs(\x8c\x98u\"\x1f\xa2X\xed\xc0\xbe\x1a\xf00\x8fp\x91\xb2#\xbdQB\xbe\xdeE\xb4')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdir(&(0x7f0000000040)='./bus\x00', 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_BLANKSCREEN(r4, 0x541c, &(0x7f0000000000))
ioctl$TIOCL_UNBLANKSCREEN(r4, 0x541c, &(0x7f00000000c0))
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
r6 = accept4$alg(r5, 0x0, 0x0, 0x0)
sendmsg$alg(r6, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000740)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
io_submit(0x0, 0x27f, &(0x7f0000001440)=[&(0x7f0000000200)={0x1000000, 0x0, 0x700000000000000, 0x0, 0x0, r6, &(0x7f0000000340), 0xfdef}])
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x54, 0x10, 0x421, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5}, @IFLA_GENEVE_UDP_CSUM={0x5}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x54}}, 0x0)

1.432829892s ago: executing program 2 (id=2289):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f00000027c0), 0x802, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f00000002c0))
write$UHID_CREATE(r1, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000540)=""/32, 0x20}}, 0x120)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCPKT(r3, 0x5420, &(0x7f0000000180)=0x9)
r4 = syz_io_uring_setup(0x24b9, &(0x7f00000002c0)={0x0, 0x55d5, 0x10100}, &(0x7f0000000280)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r4, 0xa3d, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETS(r3, 0x5402, &(0x7f0000000200)={0x0, 0x0, 0x0, 0xfdfdffff, 0x0, "a205f52045385947c9221cf91c5d676e152438"})
write$UHID_DESTROY(0xffffffffffffffff, &(0x7f0000000000), 0x4)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r10 = dup(r9)
ioctl$KVM_SET_VAPIC_ADDR(r10, 0x4008ae93, &(0x7f00000000c0)=0xffff)
ioctl$KVM_SET_VAPIC_ADDR(r9, 0x4008ae93, &(0x7f0000001200)=0x5000)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1201000000000040341a02080000000000010902"], 0x0)
syz_open_dev$hidraw(&(0x7f0000000080), 0x1, 0x200)
close_range(r0, 0xffffffffffffffff, 0x0)

683.230005ms ago: executing program 4 (id=2290):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000180)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x401], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000]}, 0x45c)
r1 = socket$xdp(0x2c, 0x3, 0x0)
getsockname(r1, 0x0, 0x0)
ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x0)
ioctl$UI_DEV_DESTROY(r0, 0x5502)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x2)
r2 = openat$dlm_monitor(0xffffff9c, &(0x7f0000000000), 0x10000, 0x0)
r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
write$nbd(r3, &(0x7f0000000240)={0x1000000, 0x0, 0x0, 0x0, 0x200000, "82b0cfc4337965941538be02000000000000000000007400a391793ba7f40000000000fdf700"/48}, 0x40)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
ioctl$FIBMAP(r4, 0x401070ca, &(0x7f0000000080))
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, 0x0, 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000c40)={{0xffffffffffffffff, <r6=>0xffffffffffffffff}, &(0x7f0000000bc0), &(0x7f0000000c00)='%-5lx  \x00'}, 0x1c)
r7 = openat$hpet(0xffffff9c, &(0x7f0000000c80), 0x32000, 0x0)
r8 = syz_io_uring_complete(0x0)
r9 = openat$sr(0xffffff9c, &(0x7f0000000d00), 0x0, 0x0)
ioctl$FIONREAD(r9, 0x541b, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000d80)={0x6, 0x15, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x63bb}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0xc2}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffb}, @ldst={0x3, 0x2, 0x6, 0x5, 0x4, 0x6, 0x4}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2}]}, &(0x7f0000000100)='GPL\x00', 0x8, 0xb6, &(0x7f0000000a80)=""/182, 0x433b7bb7a92b99eb, 0x1, '\x00', 0x0, 0x25, r3, 0x8, &(0x7f0000000b40)={0x8, 0x5}, 0x8, 0x10, &(0x7f0000000b80)={0x1, 0xa, 0xfffffffa, 0x5}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000cc0)=[r4, r5, r6, r7, 0x1, r8, r9], &(0x7f0000000d00)=[{0x4, 0x5, 0x1}, {0x3, 0x5, 0x4, 0x6}, {0x2, 0x3, 0x5, 0xc}, {0x3, 0x3, 0x9, 0x2}, {0x2, 0x5, 0xc, 0x9}, {0x5, 0x5, 0xe, 0x7}, {0x3, 0x5, 0xa, 0x5}], 0x10, 0x1000, @void, @value}, 0x94)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$uinput_user_dev(r0, &(0x7f0000000600)={'syz0\x00', {}, 0x0, [0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff326, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xfff]}, 0x45c)

623.395306ms ago: executing program 4 (id=2291):
r0 = semget$private(0x0, 0x4000, 0x764)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005400000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
semctl$IPC_STAT(r0, 0x0, 0x2, 0x0)
semctl$SEM_STAT(r0, 0x1, 0x12, &(0x7f0000000040))
mkdir(&(0x7f00000009c0)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000400)={{{@in, @in=@remote}}, {{@in=@multicast2}, 0x0, @in6=@private1}}, &(0x7f0000000280)=0xe4)
mount$binder(0x0, &(0x7f0000000100)='./file1/file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB='stats=global,stats=global,stats=global,max=00000000000000000003,stats=global,max=0000000000000000001,max=00000000000000000001,max=00000000000000000002,max=00000000000000000000,dont_hash,seclabel,fowner>\x00', @ANYRESDEC=r1, @ANYBLOB="2c646f6e744961707072616973ea20b9a4234b0000000a581faf64d2a93ed3bbeb71a6fafd174171a7c775f6cdfb9e641611056ac9c38f7885547dc109fcc2d3a5bb53535b9ea823f9dbef1657de53dcea45ccd1e7cf9cc9ad9aec6767cd9c42f3c7d7c9eb3636bec810b143f48cbfc100000000"])
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'veth1_to_batadv\x00', <r8=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f00000002c0)={@private1={0xfc, 0x1, '\x00', 0x4}, 0x4, r8})
ioctl$sock_inet6_SIOCADDRT(r7, 0x890b, &(0x7f0000000540)={@empty, @empty, @private1, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4400046, r8})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000300)={{0x17dd, 0x5, 0x4, 0x1ff}, 'syz1\x00', 0x9})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
umount2(&(0x7f0000000040)='./bus\x00', 0x9)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mkdir(&(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
rmdir(&(0x7f0000000380)='./file0/../file0\x00')

0s ago: executing program 2 (id=2292):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x80000000000008, 0x0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000140))
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_DELSETELEM={0x460, 0xe, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x3ec, 0x3, 0x0, 0x1, [{0x348, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}, @NFTA_SET_ELEM_EXPRESSIONS={0x2c0, 0xb, 0x0, 0x1, [{0x1cc, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x1bc, 0x2, 0x0, 0x1, [@NFTA_BITWISE_OP={0x8, 0x6, 0x1, 0x0, 0x1}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x16}, @NFTA_BITWISE_XOR={0x1a8, 0x5, 0x0, 0x1, [@NFTA_DATA_VALUE={0xca, 0x1, "4b5b9f441e5dab327b3ee9c1edc114357de9b380ed81f1d28828344346e533f35fa258743b8672f8a6747fbe1eec2a08d947fb0413b022fb4e9668221325acb0f568c8826fcf98b7fe1edc0d6a4d8ce8626a913b209b92eb6c27b9cc64a9e0e793774c2fa4d2c012e8aceea43db8e4f82a4fc6f0c084dc85e3db11ed66d5c1e6ca48ce1ba4136c1a9979d5df84e49c197c40ab90c775ef7b18a9b9d27474237fbe793ab0607dbe7406da3b891b49b4c732768c0dd4956046dc10ecb083f0c11b91e6f2ea2677"}, @NFTA_DATA_VALUE={0x9b, 0x1, "0e30fd3d5617408188c7fa36edc262bfc326ce2fdfc19d135dc396094278aa17d47bec201834c676412447b0d4a309e8dfed1cc12ee96b066d3da3a23f1e20975765aa117ccf2758d82bf140d9d828294c0e44b84dcd427f5b76fea1847ea025bc2e96910f7d52760c761e5758329aaed5b929aea51cdfba7fcc22285704aca037a066858a2f081a726ac7255249ef2f6fad5d40e848ac"}, @NFTA_DATA_VALUE={0x3b, 0x1, "1ec9afd7b9b8bab089b6e73ccc8963a2b57e68635abb37f9b2165a14d7b225c05106d595ac196157105edc1d85a9b6fc6e7397953c6de4"}]}]}}}, {0x64, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x54, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x17}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz1\x00'}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x14}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz1\x00'}, @NFTA_LOOKUP_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFTA_LOOKUP_DREG={0x8, 0x3, 0x1, 0x0, 0x14}, @NFTA_LOOKUP_SET_ID={0x8}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0xc}]}}}, {0x10, 0x1, 0x0, 0x1, @payload={{0xc}, @void}}, {0xc, 0x1, 0x0, 0x1, @osf={{0x8}, @void}}, {0x24, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RANGE_OP={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x13}]}}}, {0x10, 0x1, 0x0, 0x1, @payload={{0xc}, @void}}, {0x28, 0x1, 0x0, 0x1, @log={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x9}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x61f}, @NFTA_LOG_SNAPLEN={0x8, 0x3, 0x1, 0x0, 0x88c}]}}}, {0x14, 0x1, 0x0, 0x1, @byteorder={{0xe}, @void}}]}, @NFTA_SET_ELEM_KEY={0x54, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8}]}, @NFTA_DATA_VERDICT={0x34, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x1400000}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0xfffffffffffffffd}]}, {0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x7fff}]}, {0x90, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_DATA={0x8, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4}]}, @NFTA_SET_ELEM_EXPRESSIONS={0x84, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @osf={{0x8}, @void}}, {0x2c, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_REDIR_REG_PROTO_MAX={0x8, 0x2, 0x1, 0x0, 0x14}, @NFTA_REDIR_REG_PROTO_MAX={0x8, 0x2, 0x1, 0x0, 0x16}, @NFTA_REDIR_REG_PROTO_MAX={0x8, 0x2, 0x1, 0x0, 0x11}]}}}, {0xc, 0x1, 0x0, 0x1, @osf={{0x8}, @void}}, {0x2c, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_MASQ_REG_PROTO_MIN={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_MASQ_FLAGS={0x8, 0x1, 0x1, 0x0, 0x11}, @NFTA_MASQ_REG_PROTO_MAX={0x8, 0x3, 0x1, 0x0, 0x15}]}}}, {0x10, 0x1, 0x0, 0x1, @quota={{0xa}, @void}}]}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x10}}, 0x4e8}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="340000003b0007015005068a00000000047c0000040000000c00018006000600800a0000100002800c0006"], 0x34}}, 0xc000)
r5 = dup3(r3, r2, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r6, 0x1000000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000240)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xfe}], 0x0, 0x0, 0x0})
setsockopt$inet_opts(r1, 0x0, 0xc, 0x0, 0x0)
fchown(0xffffffffffffffff, 0x0, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x44, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random="8b"}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x1000, 0x2, 0x0, 0x0, {0x0, 0x894, 0x0, 0x7, 0x0, 0x0, 0x1}, 0x6, 0x800, 0x90}}]}, 0x44}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

kernel console output (not intermixed with test programs):

es leftover after parsing attributes in process `syz.2.1926'.
[  316.136639][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  316.216907][ T1407] ieee802154 phy0 wpan0: encryption failed: -22
[  316.397341][T13022] team0 (unregistering): Port device team_slave_0 removed
[  316.421335][T13022] team0 (unregistering): Port device team_slave_1 removed
[  316.465023][T13022] team0 (unregistering): Port device wlan1 removed
[  316.579343][ T6023] libceph: connect (1)[c::]:6789 error -101
[  316.581262][ T6023] libceph: mon0 (1)[c::]:6789 connect error
[  316.670730][T13026] ceph: No mds server is up or the cluster is laggy
[  317.064061][T13046] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  317.091187][T13046] evm: overlay not supported
[  317.174904][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  317.895030][T13064] program syz.4.1940 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  317.918775][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.921516][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.931948][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.935773][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.939123][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.941446][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.943317][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.947778][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.950278][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.953114][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.955797][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.957987][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.960023][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.961969][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.964224][ T1099] ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0
[  317.966834][ T1099] ata1.00: irq_stat 0x40000000
[  317.968482][ T1099] ata1.00: failed command: ZAC MANAGEMENT OUT
[  317.968717][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.970947][ T1099] ata1.00: cmd 9f/02:00:00:00:00/00:00:00:00:00/40 tag 15 nodata 0 in
[  317.970947][ T1099]          res 41/04:00:00:00:00/00:00:00:00:00/40 Emask 0x1 (device error)
[  317.973321][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.982812][ T1099] ata1.00: status: { DRDY ERR }
[  317.982827][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.982842][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.982853][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.982864][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  317.984562][ T1099] ata1.00: error: { ABRT }
[  317.996126][ T1099] ata1.00: device reported invalid CHS sector 0
[  317.997337][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.001476][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.003327][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.005575][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.007771][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.009870][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.011710][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.013570][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.017204][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.019180][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.021095][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.023891][ T6023] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[  318.026616][ T6023] hid-generic 0000:0000:0000.0024: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  318.214151][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  318.321318][T13077] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1942'.
[  318.324594][T13077] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1942'.
[  318.771740][T13087] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1946'.
[  319.002948][T13090] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  319.006222][T13090] IPv6: NLM_F_CREATE should be set when creating new route
[  319.072000][T13092] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1947'.
[  319.150390][   T39] audit: type=1804 audit(319.312:14728): pid=13094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1948" name="/newroot/456/bus/bus" dev="overlay" ino=2576 res=1 errno=0
[  319.158003][T13094] Invalid ELF header magic: != ELF
[  319.254181][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  319.478899][T13097] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1949'.
[  319.585114][T13102] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1951'.
[  319.590145][T13102] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1951'.
[  319.862900][T13117] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  319.865710][T13117] UDF-fs: Scanning with blocksize 512 failed
[  319.871445][T13117] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  319.874344][T13117] UDF-fs: Scanning with blocksize 1024 failed
[  319.878558][T13117] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  319.881653][T13117] UDF-fs: Scanning with blocksize 2048 failed
[  319.890658][T13117] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  319.893323][T13117] UDF-fs: Scanning with blocksize 4096 failed
[  320.086844][T13110] nbd4: detected capacity change from 0 to 20
[  320.094814][T12435] block nbd4: Send control failed (result -89)
[  320.096961][T12435] block nbd4: Request send failed, requeueing
[  320.104710][   T65] block nbd4: Receive control failed (result -32)
[  320.104775][  T829] block nbd4: Dead connection, failed to find a fallback
[  320.111680][  T829] block nbd4: shutting down sockets
[  320.113627][  T829] blk_print_req_error: 25 callbacks suppressed
[  320.113642][  T829] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.118452][  T829] buffer_io_error: 25 callbacks suppressed
[  320.118469][  T829] Buffer I/O error on dev nbd4, logical block 0, async page read
[  320.125754][T12435] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.129537][T12435] Buffer I/O error on dev nbd4, logical block 0, async page read
[  320.134505][T12435] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.136627][T12435] Buffer I/O error on dev nbd4, logical block 0, async page read
[  320.138477][T12435] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.144053][T12435] Buffer I/O error on dev nbd4, logical block 0, async page read
[  320.148155][T12435] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.151014][T12435] Buffer I/O error on dev nbd4, logical block 0, async page read
[  320.154088][T12435] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.156865][T12435] Buffer I/O error on dev nbd4, logical block 0, async page read
[  320.159853][T12435] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.163266][T12435] Buffer I/O error on dev nbd4, logical block 0, async page read
[  320.166839][T12435] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.169622][T12435] Buffer I/O error on dev nbd4, logical block 0, async page read
[  320.171952][T12435] ldm_validate_partition_table(): Disk read failed.
[  320.174464][T12435] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.177587][T12435] Buffer I/O error on dev nbd4, logical block 0, async page read
[  320.180215][T12435] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.183497][T12435] Buffer I/O error on dev nbd4, logical block 0, async page read
[  320.188082][T12435] Dev nbd4: unable to read RDB block 0
[  320.190071][T12435]  nbd4: unable to read partition table
[  320.191956][T12435] nbd4: partition table beyond EOD, truncated
[  320.196494][T12435] ldm_validate_partition_table(): Disk read failed.
[  320.199273][T12435] Dev nbd4: unable to read RDB block 0
[  320.201924][T12435]  nbd4: unable to read partition table
[  320.204482][T12435] nbd4: partition table beyond EOD, truncated
[  320.285259][ T1099] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  320.287202][ T1099] ata1: failed to read log page 10h (errno=-5)
[  320.289173][ T1099] ata1.00: exception Emask 0x1 SAct 0x8000 SErr 0x0 action 0x0
[  320.291594][ T1099] ata1.00: irq_stat 0x40000000
[  320.292930][ T1099] ata1.00: failed command: WRITE FPDMA QUEUED
[  320.295469][ T1099] ata1.00: cmd 61/18:78:72:0e:10/00:00:00:00:00/40 tag 15 ncq dma 12288 out
[  320.295469][ T1099]          res 50/00:00:00:00:00/00:00:00:00:00/40 Emask 0x1 (device error)
[  320.301220][ T1099] ata1.00: status: { DRDY }
[  320.304404][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  320.310477][ T1099] ata1.00: configured for UDMA/100
[  320.312181][ T1099] ata1: EH complete
[  320.622451][   T39] audit: type=1326 audit(320.782:14729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13138 comm="syz.2.1963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  320.631073][   T39] audit: type=1326 audit(320.782:14730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13138 comm="syz.2.1963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  320.639238][   T39] audit: type=1326 audit(320.782:14731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13138 comm="syz.2.1963" exe="/syz-executor" sig=0 arch=40000003 syscall=383 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  320.645940][   T39] audit: type=1326 audit(320.782:14732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13138 comm="syz.2.1963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  320.652930][   T39] audit: type=1326 audit(320.782:14733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13138 comm="syz.2.1963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  320.660660][   T39] audit: type=1326 audit(320.782:14734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13138 comm="syz.2.1963" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  320.667745][   T39] audit: type=1326 audit(320.792:14735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13138 comm="syz.2.1963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  320.673957][   T39] audit: type=1326 audit(320.792:14736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13138 comm="syz.2.1963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000
[  320.932236][T13152] ptm ptm0: ldisc open failed (-12), clearing slot 0
[  321.336425][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  321.692388][T13167] netlink: 'syz.2.1972': attribute type 13 has an invalid length.
[  322.374091][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  322.846965][T13201] openvswitch: netlink: Actions may not be safe on all matching packets
[  322.863348][T13208] FAULT_INJECTION: forcing a failure.
[  322.863348][T13208] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  322.868402][ T1129] wlan1: Trigger new scan to find an IBSS to join
[  322.868928][T13208] CPU: 0 UID: 0 PID: 13208 Comm: syz.6.1981 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  322.874110][T13208] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  322.877629][T13208] Call Trace:
[  322.878605][T13208]  <TASK>
[  322.879481][T13208]  dump_stack_lvl+0x16c/0x1f0
[  322.880988][T13208]  should_fail_ex+0x497/0x5b0
[  322.882463][T13208]  _copy_to_user+0x32/0xd0
[  322.883802][T13208]  simple_read_from_buffer+0xd0/0x160
[  322.885432][T13208]  proc_fail_nth_read+0x198/0x270
[  322.887237][T13208]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  322.889126][T13208]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  322.890839][T13208]  vfs_read+0x1df/0xbe0
[  322.892172][T13208]  ? __fget_files+0x1fc/0x3a0
[  322.893919][T13208]  ? fdget_pos+0x267/0x390
[  322.895595][T13208]  ? __pfx_lock_release+0x10/0x10
[  322.897673][T13208]  ? trace_lock_acquire+0x14a/0x1d0
[  322.899206][T13208]  ? __pfx_vfs_read+0x10/0x10
[  322.900838][T13208]  ? __pfx___mutex_lock+0x10/0x10
[  322.902460][T13208]  ? __fget_files+0x206/0x3a0
[  322.903834][T13208]  ksys_read+0x12b/0x250
[  322.905246][T13208]  ? __pfx_ksys_read+0x10/0x10
[  322.906761][T13208]  __do_fast_syscall_32+0x73/0x120
[  322.908638][T13208]  do_fast_syscall_32+0x32/0x80
[  322.910041][T13208]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  322.911857][T13208] RIP: 0023:0xf7fe7579
[  322.913151][T13208] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  322.919641][T13208] RSP: 002b:00000000f5766590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  322.922495][T13208] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5766620
[  322.924955][T13208] RDX: 000000000000000f RSI: 00000000f746dff4 RDI: 0000000000000000
[  322.927340][T13208] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  322.930052][T13208] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  322.932282][T13208] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  322.934813][T13208]  </TASK>
[  323.234035][ T8347] usb 10-1: new high-speed USB device number 27 using dummy_hcd
[  323.414029][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  323.488779][ T8347] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  323.492317][ T8347] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  323.495720][ T8347] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  323.499216][ T8347] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.505011][T13217] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  323.509698][ T8347] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  323.979989][T13253] FAULT_INJECTION: forcing a failure.
[  323.979989][T13253] name failslab, interval 1, probability 0, space 0, times 0
[  323.984252][T13253] CPU: 0 UID: 0 PID: 13253 Comm: syz.4.1991 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  323.986738][T13253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  323.989881][T13253] Call Trace:
[  323.990898][T13253]  <TASK>
[  323.991826][T13253]  dump_stack_lvl+0x16c/0x1f0
[  323.993299][T13253]  should_fail_ex+0x497/0x5b0
[  323.994771][T13253]  ? fs_reclaim_acquire+0xae/0x150
[  323.996218][T13253]  should_failslab+0xc2/0x120
[  323.997466][T13253]  __kmalloc_noprof+0xcb/0x410
[  323.998672][T13253]  ? hlock_class+0x4e/0x130
[  323.999862][T13253]  ovl_lookup+0x116a/0x21f0
[  324.001146][T13253]  ? __pfx_ovl_lookup+0x10/0x10
[  324.002428][T13253]  ? lock_acquire.part.0+0x11b/0x380
[  324.003770][T13253]  ? find_held_lock+0x2d/0x110
[  324.004931][T13253]  ? d_alloc+0x176/0x1e0
[  324.006024][T13253]  ? __pfx_lock_release+0x10/0x10
[  324.007355][T13253]  ? do_raw_spin_lock+0x12d/0x2c0
[  324.008783][T13253]  ? do_raw_spin_unlock+0x172/0x230
[  324.010114][T13253]  ? _raw_spin_unlock+0x28/0x50
[  324.011861][T13253]  lookup_one_qstr_excl+0x11d/0x190
[  324.013639][T13253]  ? mnt_want_write+0x161/0x450
[  324.015228][T13253]  do_unlinkat+0x2a0/0x760
[  324.016624][T13253]  ? __might_fault+0xe3/0x190
[  324.018143][T13253]  ? __pfx_do_unlinkat+0x10/0x10
[  324.019613][T13253]  ? __might_fault+0xe3/0x190
[  324.020951][T13253]  ? getname_flags.part.0+0x1c5/0x550
[  324.022228][T13253]  __ia32_sys_unlink+0xc4/0x110
[  324.023453][T13253]  __do_fast_syscall_32+0x73/0x120
[  324.025158][T13253]  do_fast_syscall_32+0x32/0x80
[  324.027191][T13253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  324.029339][T13253] RIP: 0023:0xf7f26579
[  324.030683][T13253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  324.037183][T13253] RSP: 002b:00000000f56a655c EFLAGS: 00000296 ORIG_RAX: 000000000000000a
[  324.039947][T13253] RAX: ffffffffffffffda RBX: 0000000020000080 RCX: 0000000000000000
[  324.042364][T13253] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  324.044915][T13253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  324.047398][T13253] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  324.050350][T13253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  324.052921][T13253]  </TASK>
[  324.059178][T13257] FAULT_INJECTION: forcing a failure.
[  324.059178][T13257] name failslab, interval 1, probability 0, space 0, times 0
[  324.063357][T13257] CPU: 1 UID: 0 PID: 13257 Comm: syz.2.1994 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  324.066408][T13257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  324.069684][T13257] Call Trace:
[  324.070503][T13257]  <TASK>
[  324.071243][T13257]  dump_stack_lvl+0x16c/0x1f0
[  324.072731][T13257]  should_fail_ex+0x497/0x5b0
[  324.074475][T13257]  ? fs_reclaim_acquire+0xae/0x150
[  324.076087][T13257]  should_failslab+0xc2/0x120
[  324.077339][T13257]  __kmalloc_noprof+0xcb/0x410
[  324.078634][T13257]  ? __pfx_d_absolute_path+0x10/0x10
[  324.080022][T13257]  tomoyo_encode2+0x100/0x3e0
[  324.081253][T13257]  tomoyo_realpath_from_path+0x1a7/0x710
[  324.082975][T13257]  tomoyo_path_number_perm+0x245/0x5b0
[  324.084990][T13257]  ? tomoyo_path_number_perm+0x232/0x5b0
[  324.086831][T13257]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  324.088567][T13257]  ? find_held_lock+0x2d/0x110
[  324.090221][T13257]  ? do_raw_spin_unlock+0x172/0x230
[  324.091939][T13257]  ? _raw_spin_unlock+0x28/0x50
[  324.093451][T13257]  ? d_add+0x43c/0x730
[  324.094534][T13257]  ? do_raw_spin_unlock+0x172/0x230
[  324.095997][T13257]  ? simple_lookup+0x12c/0x180
[  324.097370][T13257]  tomoyo_path_mknod+0x10d/0x190
[  324.098618][T13257]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  324.100038][T13257]  ? get_current_fs_domain+0x184/0x1f0
[  324.101613][T13257]  security_path_mknod+0x161/0x310
[  324.103230][T13257]  do_mknodat+0x23d/0x5d0
[  324.104742][T13257]  ? __pfx_do_mknodat+0x10/0x10
[  324.106157][T13257]  ? getname_flags.part.0+0x1c5/0x550
[  324.107586][T13257]  __ia32_sys_mknod+0x85/0xb0
[  324.108964][T13257]  __do_fast_syscall_32+0x73/0x120
[  324.110352][T13257]  do_fast_syscall_32+0x32/0x80
[  324.111745][T13257]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  324.113626][T13257] RIP: 0023:0xf7fc5579
[  324.114727][T13257] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  324.120251][T13257] RSP: 002b:00000000f574655c EFLAGS: 00000296 ORIG_RAX: 000000000000000e
[  324.122702][T13257] RAX: ffffffffffffffda RBX: 0000000020000080 RCX: 0000000000000000
[  324.124924][T13257] RDX: 0000000000000705 RSI: 0000000000000000 RDI: 0000000000000000
[  324.127711][T13257] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  324.130416][T13257] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  324.132657][T13257] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  324.135017][T13257]  </TASK>
[  324.136117][T13257] ERROR: Out of memory at tomoyo_realpath_from_path.
[  324.227070][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.229689][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.232258][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.234768][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.237570][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.240451][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.242382][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.244854][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.247148][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.249175][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.251172][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.254269][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.257244][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.259445][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.261980][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.264752][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.267075][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.269558][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273391][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273415][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273432][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273449][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273465][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273488][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273505][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273522][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273540][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273559][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273577][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273595][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273612][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.273630][ T1011] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  324.288417][ T1011] hid-generic 0000:0000:0000.0025: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  324.293650][ T8347] usb 10-1: USB disconnect, device number 27
[  324.391910][T13272] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1999'.
[  324.454386][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  325.494188][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  325.938115][T13291] FAULT_INJECTION: forcing a failure.
[  325.938115][T13291] name failslab, interval 1, probability 0, space 0, times 0
[  325.942905][T13291] CPU: 3 UID: 0 PID: 13291 Comm: syz.5.2004 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  325.946343][T13291] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  325.949607][T13291] Call Trace:
[  325.950603][T13291]  <TASK>
[  325.951415][T13291]  dump_stack_lvl+0x16c/0x1f0
[  325.952687][T13291]  should_fail_ex+0x497/0x5b0
[  325.954007][T13291]  ? fs_reclaim_acquire+0xae/0x150
[  325.955385][T13291]  should_failslab+0xc2/0x120
[  325.956606][T13291]  __kmalloc_noprof+0xcb/0x410
[  325.957879][T13291]  vb2_core_allocated_buffers_storage+0x184/0x220
[  325.959544][T13291]  vb2_core_reqbufs+0x381/0xfb0
[  325.960850][T13291]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  325.962320][T13291]  __vb2_init_fileio+0x3f3/0x1110
[  325.963795][T13291]  ? trace_contention_end+0xea/0x140
[  325.965539][T13291]  __vb2_perform_fileio+0x9de/0x1620
[  325.967206][T13291]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  325.969002][T13291]  vb2_fop_write+0x202/0x3e0
[  325.970284][T13291]  v4l2_write+0x226/0x360
[  325.971412][T13291]  ? __pfx_v4l2_write+0x10/0x10
[  325.972646][T13291]  vfs_write+0x24c/0x1150
[  325.973764][T13291]  ? __fget_files+0x1fc/0x3a0
[  325.974970][T13291]  ? __pfx_lock_release+0x10/0x10
[  325.976236][T13291]  ? trace_lock_acquire+0x14a/0x1d0
[  325.977647][T13291]  ? __pfx_vfs_write+0x10/0x10
[  325.978986][T13291]  ? lock_acquire+0x2f/0xb0
[  325.980268][T13291]  ? __fget_files+0x40/0x3a0
[  325.981871][T13291]  ? __fget_files+0x206/0x3a0
[  325.983584][T13291]  ksys_write+0x12b/0x250
[  325.984813][T13291]  ? __pfx_ksys_write+0x10/0x10
[  325.986334][T13291]  __do_fast_syscall_32+0x73/0x120
[  325.987882][T13291]  do_fast_syscall_32+0x32/0x80
[  325.989360][T13291]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  325.991218][T13291] RIP: 0023:0xf7fa4579
[  325.992285][T13291] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  325.997110][T13291] RSP: 002b:00000000f572655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  325.999127][T13291] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  326.001257][T13291] RDX: 000000000000fea7 RSI: 0000000000000000 RDI: 0000000000000000
[  326.003317][T13291] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  326.006036][T13291] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  326.008184][T13291] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  326.010578][T13291]  </TASK>
[  326.011669][    C3] vkms_vblank_simulate: vblank timer overrun
[  326.534013][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  326.612536][T13302] FAULT_INJECTION: forcing a failure.
[  326.612536][T13302] name failslab, interval 1, probability 0, space 0, times 0
[  326.616349][T13302] CPU: 2 UID: 0 PID: 13302 Comm: syz.4.2008 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  326.619346][T13302] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.622458][T13302] Call Trace:
[  326.623476][T13302]  <TASK>
[  326.624408][T13302]  dump_stack_lvl+0x16c/0x1f0
[  326.625815][T13302]  should_fail_ex+0x497/0x5b0
[  326.627298][T13302]  should_failslab+0xc2/0x120
[  326.628853][T13302]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  326.630605][T13302]  ? skb_clone+0x190/0x3f0
[  326.632234][T13302]  skb_clone+0x190/0x3f0
[  326.633837][T13302]  netlink_deliver_tap+0xb26/0xcf0
[  326.635417][T13302]  netlink_unicast+0x5e1/0x7f0
[  326.637418][T13302]  ? __pfx_netlink_unicast+0x10/0x10
[  326.639012][T13302]  ? __phys_addr_symbol+0x30/0x80
[  326.640461][T13302]  ? __check_object_size+0x488/0x710
[  326.642026][T13302]  netlink_sendmsg+0x8b8/0xd70
[  326.643453][T13302]  ? __pfx_netlink_sendmsg+0x10/0x10
[  326.645038][T13302]  ____sys_sendmsg+0x9ae/0xb40
[  326.646442][T13302]  ? __pfx_____sys_sendmsg+0x10/0x10
[  326.648067][T13302]  ? get_compat_msghdr+0x11b/0x170
[  326.649598][T13302]  ___sys_sendmsg+0x135/0x1e0
[  326.651017][T13302]  ? __pfx____sys_sendmsg+0x10/0x10
[  326.652591][T13302]  ? __pfx_lock_release+0x10/0x10
[  326.654154][T13302]  ? trace_lock_acquire+0x14a/0x1d0
[  326.655742][T13302]  ? __fget_files+0x206/0x3a0
[  326.656237][T13304] FAULT_INJECTION: forcing a failure.
[  326.656237][T13304] name failslab, interval 1, probability 0, space 0, times 0
[  326.657163][T13302]  __sys_sendmsg+0x16e/0x220
[  326.662230][T13302]  ? __pfx___sys_sendmsg+0x10/0x10
[  326.663720][T13302]  __do_fast_syscall_32+0x73/0x120
[  326.665294][T13302]  do_fast_syscall_32+0x32/0x80
[  326.666790][T13302]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  326.668759][T13302] RIP: 0023:0xf7f26579
[  326.669846][T13302] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  326.674869][T13302] RSP: 002b:00000000f56a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  326.676969][T13302] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200002c0
[  326.678866][T13302] RDX: 00000000040c0080 RSI: 0000000000000000 RDI: 0000000000000000
[  326.680932][T13302] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  326.682802][T13302] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  326.684873][T13302] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  326.686961][T13302]  </TASK>
[  326.687760][T13304] CPU: 1 UID: 0 PID: 13304 Comm: syz.6.2009 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  326.691360][T13304] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.694477][T13304] Call Trace:
[  326.695515][T13304]  <TASK>
[  326.696576][T13304]  dump_stack_lvl+0x16c/0x1f0
[  326.698067][T13304]  should_fail_ex+0x497/0x5b0
[  326.699370][T13304]  should_failslab+0xc2/0x120
[  326.700595][T13304]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  326.702074][T13304]  ? skb_clone+0x190/0x3f0
[  326.703185][T13304]  skb_clone+0x190/0x3f0
[  326.704281][T13304]  netlink_deliver_tap+0xb26/0xcf0
[  326.705636][T13304]  netlink_unicast+0x5e1/0x7f0
[  326.706842][T13304]  ? __pfx_netlink_unicast+0x10/0x10
[  326.708415][T13304]  ? __phys_addr_symbol+0x30/0x80
[  326.709787][T13304]  ? __check_object_size+0x488/0x710
[  326.711120][T13304]  netlink_sendmsg+0x8b8/0xd70
[  326.712464][T13304]  ? __pfx_netlink_sendmsg+0x10/0x10
[  326.713881][T13304]  ____sys_sendmsg+0x9ae/0xb40
[  326.715244][T13304]  ? __pfx_____sys_sendmsg+0x10/0x10
[  326.716595][T13304]  ? get_compat_msghdr+0x11b/0x170
[  326.717954][T13304]  ___sys_sendmsg+0x135/0x1e0
[  326.719383][T13304]  ? __pfx____sys_sendmsg+0x10/0x10
[  326.720697][T13304]  ? __pfx_lock_release+0x10/0x10
[  326.721953][T13304]  ? trace_lock_acquire+0x14a/0x1d0
[  326.723294][T13304]  ? __fget_files+0x206/0x3a0
[  326.724480][T13304]  __sys_sendmsg+0x16e/0x220
[  326.725683][T13304]  ? __pfx___sys_sendmsg+0x10/0x10
[  326.726973][T13304]  __do_fast_syscall_32+0x73/0x120
[  326.728245][T13304]  do_fast_syscall_32+0x32/0x80
[  326.729564][T13304]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  326.731429][T13304] RIP: 0023:0xf7fe7579
[  326.732488][T13304] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  326.737749][T13304] RSP: 002b:00000000f576655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  326.740065][T13304] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000380
[  326.742159][T13304] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  326.744121][T13304] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  326.746192][T13304] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  326.748120][T13304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  326.750282][T13304]  </TASK>
[  327.053511][T13323] Invalid logical block size (32)
[  327.080148][T13326] FAULT_INJECTION: forcing a failure.
[  327.080148][T13326] name failslab, interval 1, probability 0, space 0, times 0
[  327.083326][T13326] CPU: 3 UID: 0 PID: 13326 Comm: syz.5.2018 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  327.086067][T13326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  327.088789][T13326] Call Trace:
[  327.089686][T13326]  <TASK>
[  327.090510][T13326]  dump_stack_lvl+0x16c/0x1f0
[  327.091892][T13326]  should_fail_ex+0x497/0x5b0
[  327.093359][T13326]  should_failslab+0xc2/0x120
[  327.094708][T13326]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  327.096343][T13326]  ? skb_clone+0x190/0x3f0
[  327.097681][T13326]  skb_clone+0x190/0x3f0
[  327.098979][T13326]  netlink_deliver_tap+0xb26/0xcf0
[  327.100417][T13326]  netlink_unicast+0x5e1/0x7f0
[  327.101685][T13326]  ? __pfx_netlink_unicast+0x10/0x10
[  327.102955][T13326]  ? __phys_addr_symbol+0x30/0x80
[  327.104332][T13326]  ? __check_object_size+0x488/0x710
[  327.105713][T13326]  netlink_sendmsg+0x8b8/0xd70
[  327.107001][T13326]  ? __pfx_netlink_sendmsg+0x10/0x10
[  327.108417][T13326]  ____sys_sendmsg+0x9ae/0xb40
[  327.109689][T13326]  ? __pfx_____sys_sendmsg+0x10/0x10
[  327.110983][T13326]  ? get_compat_msghdr+0x11b/0x170
[  327.112231][T13326]  ___sys_sendmsg+0x135/0x1e0
[  327.113396][T13326]  ? __pfx____sys_sendmsg+0x10/0x10
[  327.114683][T13326]  ? __pfx_lock_release+0x10/0x10
[  327.115924][T13326]  ? trace_lock_acquire+0x14a/0x1d0
[  327.117224][T13326]  ? __fget_files+0x206/0x3a0
[  327.118411][T13326]  __sys_sendmsg+0x16e/0x220
[  327.119544][T13326]  ? __pfx___sys_sendmsg+0x10/0x10
[  327.120842][T13326]  __do_fast_syscall_32+0x73/0x120
[  327.122466][T13326]  do_fast_syscall_32+0x32/0x80
[  327.123989][T13326]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  327.125744][T13326] RIP: 0023:0xf7fa4579
[  327.126916][T13326] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  327.131748][T13326] RSP: 002b:00000000f572655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  327.133986][T13326] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000800
[  327.136552][T13326] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  327.138884][T13326] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  327.141162][T13326] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  327.143398][T13326] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  327.145812][T13326]  </TASK>
[  327.146845][    C3] vkms_vblank_simulate: vblank timer overrun
[  327.574057][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  327.835602][T13332] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2021'.
[  327.873713][T13338] FAULT_INJECTION: forcing a failure.
[  327.873713][T13338] name failslab, interval 1, probability 0, space 0, times 0
[  327.879459][T13338] CPU: 0 UID: 0 PID: 13338 Comm: syz.4.2023 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  327.882192][T13338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  327.885515][T13338] Call Trace:
[  327.886665][T13338]  <TASK>
[  327.887466][T13338]  dump_stack_lvl+0x16c/0x1f0
[  327.888636][T13338]  should_fail_ex+0x497/0x5b0
[  327.889810][T13338]  ? fs_reclaim_acquire+0xae/0x150
[  327.891045][T13338]  should_failslab+0xc2/0x120
[  327.892257][T13338]  __kmalloc_cache_noprof+0x6b/0x310
[  327.893823][T13338]  ? __pfx_lock_release+0x10/0x10
[  327.894483][   T45] wlan1: Trigger new scan to find an IBSS to join
[  327.895388][T13338]  ? __inet_diag_dump_start+0x8f/0x7f0
[  327.899689][T13338]  __inet_diag_dump_start+0x8f/0x7f0
[  327.901637][T13338]  __netlink_dump_start+0x615/0x980
[  327.903060][T13338]  inet_diag_handler_cmd+0x284/0x2e0
[  327.904501][T13338]  ? __pfx_inet_diag_handler_cmd+0x10/0x10
[  327.906407][T13338]  ? __pfx_lock_release+0x10/0x10
[  327.907959][T13338]  ? __pfx_inet_diag_dump_start+0x10/0x10
[  327.909369][T13338]  ? __pfx_inet_diag_dump+0x10/0x10
[  327.910655][T13338]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  327.912042][T13338]  sock_diag_rcv_msg+0x437/0x790
[  327.913390][T13338]  netlink_rcv_skb+0x165/0x410
[  327.914672][T13338]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  327.916358][T13338]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  327.917918][T13338]  ? netlink_deliver_tap+0x1ae/0xcf0
[  327.919309][T13338]  netlink_unicast+0x53c/0x7f0
[  327.920631][T13338]  ? __pfx_netlink_unicast+0x10/0x10
[  327.921977][T13338]  ? __phys_addr_symbol+0x30/0x80
[  327.923278][T13338]  ? __check_object_size+0x488/0x710
[  327.924613][T13338]  netlink_sendmsg+0x8b8/0xd70
[  327.926159][T13338]  ? __pfx_netlink_sendmsg+0x10/0x10
[  327.927730][T13338]  ? trace_lock_acquire+0x14a/0x1d0
[  327.929238][T13338]  sock_write_iter+0x4fe/0x5b0
[  327.930481][T13338]  ? __pfx_sock_write_iter+0x10/0x10
[  327.931900][T13338]  do_iter_readv_writev+0x532/0x7f0
[  327.933380][T13338]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  327.935008][T13338]  ? bpf_lsm_file_permission+0x9/0x10
[  327.936602][T13338]  ? security_file_permission+0x71/0x210
[  327.938356][T13338]  vfs_writev+0x363/0xdd0
[  327.939402][T13338]  ? find_held_lock+0x2d/0x110
[  327.940647][T13338]  ? __pfx_vfs_writev+0x10/0x10
[  327.941853][T13338]  ? find_held_lock+0x2d/0x110
[  327.943050][T13338]  ? __pfx_lock_release+0x10/0x10
[  327.944289][T13338]  ? trace_lock_acquire+0x14a/0x1d0
[  327.945610][T13338]  ? __fget_files+0x206/0x3a0
[  327.946904][T13338]  ? do_writev+0x297/0x340
[  327.948356][T13338]  do_writev+0x297/0x340
[  327.949880][T13338]  ? __pfx_do_writev+0x10/0x10
[  327.951148][T13338]  __do_fast_syscall_32+0x73/0x120
[  327.952588][T13338]  do_fast_syscall_32+0x32/0x80
[  327.954077][T13338]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  327.956052][T13338] RIP: 0023:0xf7f26579
[  327.957174][T13338] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  327.962240][T13338] RSP: 002b:00000000f56a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[  327.964499][T13338] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[  327.965665][T13344] loop8: detected capacity change from 0 to 7
[  327.966461][T13338] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  327.966472][T13338] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  327.966478][T13338] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  327.966485][T13338] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  327.966500][T13338]  </TASK>
[  327.980940][T13344]  loop8: [CUMANA/ADFS] p1 [ADFS] p1
[  327.982761][T13344] loop8: partition table partially beyond EOD, truncated
[  327.987606][T13344] loop8: p1 size 2916235312 extends beyond EOD, truncated
[  328.008124][T12435] udevd[12435]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  328.492120][T13361] FAULT_INJECTION: forcing a failure.
[  328.492120][T13361] name failslab, interval 1, probability 0, space 0, times 0
[  328.498389][T13361] CPU: 0 UID: 0 PID: 13361 Comm: syz.4.2031 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  328.502139][T13361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  328.505865][T13361] Call Trace:
[  328.507056][T13361]  <TASK>
[  328.508057][T13361]  dump_stack_lvl+0x16c/0x1f0
[  328.509841][T13361]  should_fail_ex+0x497/0x5b0
[  328.511498][T13361]  ? fs_reclaim_acquire+0xae/0x150
[  328.513225][T13361]  should_failslab+0xc2/0x120
[  328.514994][T13361]  __kmalloc_node_noprof+0xd1/0x440
[  328.516792][T13361]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  328.518627][T13361]  __kvmalloc_node_noprof+0xad/0x1a0
[  328.520454][T13361]  bpf_test_run_xdp_live+0x170/0x500
[  328.522268][T13361]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  328.524387][T13361]  ? __pfx___lock_acquire+0x10/0x10
[  328.526541][T13361]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  328.528943][T13361]  ? find_held_lock+0x2d/0x110
[  328.530662][T13361]  ? __might_fault+0xe3/0x190
[  328.532276][T13361]  ? _copy_from_user+0x59/0xd0
[  328.533890][T13361]  ? bpf_test_init.isra.0+0x111/0x150
[  328.535602][T13361]  bpf_prog_test_run_xdp+0x827/0x1580
[  328.537251][T13361]  ? lock_acquire+0x2f/0xb0
[  328.538643][T13361]  ? __fget_files+0x40/0x3a0
[  328.540108][T13361]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  328.541978][T13361]  ? __fget_files+0x206/0x3a0
[  328.543525][T13361]  ? fput+0x67/0x440
[  328.544810][T13361]  ? __bpf_prog_get+0xa0/0x290
[  328.546466][T13361]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  328.548432][T13361]  __sys_bpf+0x1921/0x5780
[  328.549990][T13361]  ? ksys_write+0x191/0x250
[  328.551440][T13361]  ? __pfx___sys_bpf+0x10/0x10
[  328.553046][T13361]  ? vfs_write+0x306/0x1150
[  328.554584][T13361]  ? __mutex_unlock_slowpath+0x164/0x650
[  328.556826][T13361]  ? fput+0x67/0x440
[  328.558276][T13361]  ? ksys_write+0x1ba/0x250
[  328.559873][T13361]  ? __pfx_ksys_write+0x10/0x10
[  328.561579][T13361]  __ia32_sys_bpf+0x76/0xe0
[  328.563167][T13361]  __do_fast_syscall_32+0x73/0x120
[  328.565089][T13361]  do_fast_syscall_32+0x32/0x80
[  328.566884][T13361]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  328.569288][T13361] RIP: 0023:0xf7f26579
[  328.570872][T13361] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  328.577795][T13361] RSP: 002b:00000000f56a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  328.580607][T13361] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000000
[  328.583428][T13361] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  328.586123][T13361] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  328.589150][T13361] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  328.592003][T13361] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  328.594157][T13361]  </TASK>
[  328.613942][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  328.855546][ T1129] wlan1: Creating new IBSS network, BSSID 46:ec:33:27:e4:68
[  328.861570][T13379] netlink: 'syz.2.2033': attribute type 1 has an invalid length.
[  328.869438][T13379] netlink: 'syz.2.2033': attribute type 4 has an invalid length.
[  328.872322][T13379] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.2033'.
[  328.935023][T13380] tmpfs: Unknown parameter '00000000000000000000'
[  328.937214][T13380] 9pnet_fd: Insufficient options for proto=fd
[  329.173030][T13390] syzkaller0: entered promiscuous mode
[  329.175525][T13390] syzkaller0: entered allmulticast mode
[  329.182590][T13390] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 65487
[  329.655493][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  329.722924][T13399] FAULT_INJECTION: forcing a failure.
[  329.722924][T13399] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  329.730520][T13399] CPU: 2 UID: 0 PID: 13399 Comm: syz.4.2044 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  329.735277][T13399] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  329.739622][T13399] Call Trace:
[  329.740909][T13399]  <TASK>
[  329.742051][T13399]  dump_stack_lvl+0x16c/0x1f0
[  329.743800][T13399]  should_fail_ex+0x497/0x5b0
[  329.745661][T13399]  _copy_from_user+0x2e/0xd0
[  329.747613][T13399]  memdup_user+0x71/0xd0
[  329.749242][T13399]  udmabuf_ioctl+0x271/0x310
[  329.750906][T13399]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  329.752770][T13399]  ? __fget_files+0x206/0x3a0
[  329.754585][T13399]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  329.755066][T13401] syzkaller0: entered promiscuous mode
[  329.756560][T13399]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  329.758514][T13401] syzkaller0: entered allmulticast mode
[  329.760686][T13399]  __do_fast_syscall_32+0x73/0x120
[  329.764897][T13399]  do_fast_syscall_32+0x32/0x80
[  329.766384][T13399]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  329.768342][T13399] RIP: 0023:0xf7f26579
[  329.769474][T13399] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  329.775008][T13399] RSP: 002b:00000000f56a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  329.777292][T13399] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000040087543
[  329.779417][T13399] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[  329.781979][T13399] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  329.784466][T13399] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  329.787128][T13399] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  329.789998][T13399]  </TASK>
[  330.704413][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  330.713964][ T8347] usb 10-1: new high-speed USB device number 28 using dummy_hcd
[  330.954503][ T8347] usb 10-1: device descriptor read/64, error -71
[  331.164171][T13433] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2051'.
[  331.363980][ T8347] usb 10-1: new high-speed USB device number 29 using dummy_hcd
[  331.493951][ T8347] usb 10-1: device descriptor read/64, error -71
[  331.613949][ T8347] usb usb10-port1: attempt power cycle
[  331.734123][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  332.034339][ T8347] usb 10-1: new high-speed USB device number 30 using dummy_hcd
[  332.054759][ T8347] usb 10-1: device descriptor read/8, error -71
[  332.335885][ T8347] usb 10-1: new high-speed USB device number 31 using dummy_hcd
[  332.364450][ T8347] usb 10-1: device descriptor read/8, error -71
[  332.476787][ T8347] usb usb10-port1: unable to enumerate USB device
[  332.576942][T13464] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2060'.
[  332.581431][T13464] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2060'.
[  332.677253][T13474] FAULT_INJECTION: forcing a failure.
[  332.677253][T13474] name failslab, interval 1, probability 0, space 0, times 0
[  332.681204][T13474] CPU: 3 UID: 0 PID: 13474 Comm: syz.2.2065 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  332.684400][T13474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  332.688048][T13474] Call Trace:
[  332.689143][T13474]  <TASK>
[  332.690196][T13474]  dump_stack_lvl+0x16c/0x1f0
[  332.692095][T13474]  should_fail_ex+0x497/0x5b0
[  332.694164][T13474]  ? fs_reclaim_acquire+0xae/0x150
[  332.696355][T13474]  should_failslab+0xc2/0x120
[  332.698029][T13474]  kmem_cache_alloc_node_noprof+0x71/0x310
[  332.699957][T13474]  ? __alloc_skb+0x2b3/0x380
[  332.701526][T13474]  __alloc_skb+0x2b3/0x380
[  332.702999][T13474]  ? __pfx___alloc_skb+0x10/0x10
[  332.704713][T13474]  netlink_ack+0x164/0xb20
[  332.706295][T13474]  ? hlock_class+0x4e/0x130
[  332.707788][T13474]  ? __lock_acquire+0xbdd/0x3ce0
[  332.709458][T13474]  netlink_rcv_skb+0x327/0x410
[  332.711075][T13474]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  332.712883][T13474]  ? __pfx___lock_acquire+0x10/0x10
[  332.714606][T13474]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  332.716384][T13474]  ? __pfx_aa_get_newest_label+0x10/0x10
[  332.718594][T13474]  ? bpf_lsm_capable+0x9/0x10
[  332.720465][T13474]  ? security_capable+0x7e/0x260
[  332.722746][T13474]  ? ns_capable+0xd7/0x110
[  332.724251][T13474]  nfnetlink_rcv+0x1b4/0x430
[  332.725813][T13474]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  332.727550][T13474]  ? netlink_deliver_tap+0x1ae/0xcf0
[  332.729416][T13474]  netlink_unicast+0x53c/0x7f0
[  332.731075][T13474]  ? __pfx_netlink_unicast+0x10/0x10
[  332.732839][T13474]  ? __phys_addr_symbol+0x30/0x80
[  332.734832][T13474]  ? __check_object_size+0x488/0x710
[  332.736641][T13474]  netlink_sendmsg+0x8b8/0xd70
[  332.738355][T13474]  ? __pfx_netlink_sendmsg+0x10/0x10
[  332.740212][T13474]  ____sys_sendmsg+0x9ae/0xb40
[  332.741749][T13474]  ? __pfx_____sys_sendmsg+0x10/0x10
[  332.743497][T13474]  ? get_compat_msghdr+0x11b/0x170
[  332.745266][T13474]  ___sys_sendmsg+0x135/0x1e0
[  332.746815][T13474]  ? __pfx____sys_sendmsg+0x10/0x10
[  332.748666][T13474]  ? __pfx_lock_release+0x10/0x10
[  332.750376][T13474]  ? trace_lock_acquire+0x14a/0x1d0
[  332.752112][T13474]  ? __fget_files+0x206/0x3a0
[  332.753949][T13474]  __sys_sendmsg+0x16e/0x220
[  332.755729][T13474]  ? __pfx___sys_sendmsg+0x10/0x10
[  332.757604][T13474]  __do_fast_syscall_32+0x73/0x120
[  332.759445][T13474]  do_fast_syscall_32+0x32/0x80
[  332.761158][T13474]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  332.763287][T13474] RIP: 0023:0xf7fc5579
[  332.764677][T13474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  332.771156][T13474] RSP: 002b:00000000f574655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  332.773560][T13474] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020002d80
[  332.774116][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  332.775557][T13474] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  332.780061][T13474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  332.782845][T13474] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  332.785536][T13474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  332.788187][T13474]  </TASK>
[  332.825555][T13477] FAULT_INJECTION: forcing a failure.
[  332.825555][T13477] name failslab, interval 1, probability 0, space 0, times 0
[  332.829521][T13477] CPU: 0 UID: 0 PID: 13477 Comm: syz.2.2066 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  332.833071][T13477] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  332.836204][T13477] Call Trace:
[  332.837035][T13477]  <TASK>
[  332.837892][T13477]  dump_stack_lvl+0x16c/0x1f0
[  332.839154][T13477]  should_fail_ex+0x497/0x5b0
[  332.840474][T13477]  ? fs_reclaim_acquire+0xae/0x150
[  332.842125][T13477]  should_failslab+0xc2/0x120
[  332.843646][T13477]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  332.845957][T13477]  ? security_file_alloc+0x34/0x2b0
[  332.847442][T13477]  security_file_alloc+0x34/0x2b0
[  332.849296][T13477]  init_file+0x93/0x480
[  332.850713][T13477]  alloc_empty_file+0x91/0x1e0
[  332.852210][T13477]  alloc_file_pseudo+0x13d/0x200
[  332.853773][T13477]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  332.855681][T13477]  sock_alloc_file+0x50/0x1d0
[  332.857003][T13477]  do_accept+0x23e/0x530
[  332.858202][T13477]  ? do_raw_spin_lock+0x12d/0x2c0
[  332.859598][T13477]  ? __pfx_do_accept+0x10/0x10
[  332.860940][T13477]  __sys_accept4+0xfe/0x1b0
[  332.862053][T13477]  ? __pfx___sys_accept4+0x10/0x10
[  332.863545][T13477]  ? __pfx_ksys_write+0x10/0x10
[  332.865063][T13477]  __ia32_sys_accept4+0x94/0x100
[  332.866770][T13477]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  332.869034][T13477]  __do_fast_syscall_32+0x73/0x120
[  332.870768][T13477]  do_fast_syscall_32+0x32/0x80
[  332.872307][T13477]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  332.873983][T13477] RIP: 0023:0xf7fc5579
[  332.875012][T13477] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  332.880078][T13477] RSP: 002b:00000000f574655c EFLAGS: 00000296 ORIG_RAX: 000000000000016c
[  332.882229][T13477] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  332.884761][T13477] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  332.887494][T13477] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  332.890416][T13477] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  332.893268][T13477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  332.895804][T13477]  </TASK>
[  332.961339][T13481] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2067'.
[  332.971262][T13481] netlink: 43 bytes leftover after parsing attributes in process `syz.2.2067'.
[  332.975195][T13481] netlink: 'syz.2.2067': attribute type 6 has an invalid length.
[  332.975984][T13483] FAULT_INJECTION: forcing a failure.
[  332.975984][T13483] name failslab, interval 1, probability 0, space 0, times 0
[  332.981358][T13481] netlink: 'syz.2.2067': attribute type 5 has an invalid length.
[  332.981733][T13483] CPU: 2 UID: 0 PID: 13483 Comm: syz.5.2068 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  332.983729][T13481] netlink: 43 bytes leftover after parsing attributes in process `syz.2.2067'.
[  332.986447][T13483] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  332.986459][T13483] Call Trace:
[  332.986465][T13483]  <TASK>
[  332.986472][T13483]  dump_stack_lvl+0x16c/0x1f0
[  332.986493][T13483]  should_fail_ex+0x497/0x5b0
[  332.986509][T13483]  ? fs_reclaim_acquire+0xae/0x150
[  332.999804][T13483]  should_failslab+0xc2/0x120
[  333.001344][T13483]  __kmalloc_noprof+0xcb/0x410
[  333.002690][T13483]  ? __pfx___mutex_trylock_common+0x10/0x10
[  333.004237][T13483]  ? genl_rcv_msg+0x580/0x800
[  333.005603][T13483]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  333.007929][T13483]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  333.009524][T13483]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  333.011299][T13483]  ? bpf_lsm_capable+0x9/0x10
[  333.012651][T13483]  ? security_capable+0x7e/0x260
[  333.013991][T13483]  genl_rcv_msg+0x565/0x800
[  333.015287][T13483]  ? __pfx_genl_rcv_msg+0x10/0x10
[  333.016817][T13483]  ? __pfx_netlbl_mgmt_adddef+0x10/0x10
[  333.018740][T13483]  ? __pfx___lock_acquire+0x10/0x10
[  333.020180][T13483]  netlink_rcv_skb+0x165/0x410
[  333.021456][T13483]  ? __pfx_genl_rcv_msg+0x10/0x10
[  333.023185][T13483]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  333.025112][T13483]  ? down_read+0xc9/0x330
[  333.026601][T13483]  ? __pfx_down_read+0x10/0x10
[  333.028297][T13483]  ? netlink_deliver_tap+0x1ae/0xcf0
[  333.030420][T13483]  genl_rcv+0x28/0x40
[  333.032013][T13483]  netlink_unicast+0x53c/0x7f0
[  333.033807][T13483]  ? __pfx_netlink_unicast+0x10/0x10
[  333.035645][T13483]  ? __phys_addr_symbol+0x30/0x80
[  333.037418][T13483]  ? __check_object_size+0x488/0x710
[  333.039284][T13483]  netlink_sendmsg+0x8b8/0xd70
[  333.040979][T13483]  ? __pfx_netlink_sendmsg+0x10/0x10
[  333.042378][T13483]  ____sys_sendmsg+0x9ae/0xb40
[  333.043640][T13483]  ? __pfx_____sys_sendmsg+0x10/0x10
[  333.045342][T13483]  ? get_compat_msghdr+0x11b/0x170
[  333.047221][T13483]  ___sys_sendmsg+0x135/0x1e0
[  333.048948][T13483]  ? __pfx____sys_sendmsg+0x10/0x10
[  333.050759][T13483]  ? __pfx_lock_release+0x10/0x10
[  333.052469][T13483]  ? trace_lock_acquire+0x14a/0x1d0
[  333.054093][T13483]  ? __fget_files+0x206/0x3a0
[  333.055611][T13483]  __sys_sendmsg+0x16e/0x220
[  333.057074][T13483]  ? __pfx___sys_sendmsg+0x10/0x10
[  333.058660][T13483]  __do_fast_syscall_32+0x73/0x120
[  333.060281][T13483]  do_fast_syscall_32+0x32/0x80
[  333.061829][T13483]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  333.063939][T13483] RIP: 0023:0xf7fa4579
[  333.065411][T13483] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  333.072781][T13483] RSP: 002b:00000000f572655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  333.075712][T13483] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  333.078313][T13483] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  333.080969][T13483] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  333.083651][T13483] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  333.086372][T13483] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  333.089336][T13483]  </TASK>
[  333.123234][T13486] FAULT_INJECTION: forcing a failure.
[  333.123234][T13486] name failslab, interval 1, probability 0, space 0, times 0
[  333.127560][T13486] CPU: 2 UID: 0 PID: 13486 Comm: syz.6.2069 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  333.131640][T13486] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  333.135914][T13486] Call Trace:
[  333.137115][T13486]  <TASK>
[  333.138120][T13486]  dump_stack_lvl+0x16c/0x1f0
[  333.139880][T13486]  should_fail_ex+0x497/0x5b0
[  333.141578][T13486]  ? fs_reclaim_acquire+0xae/0x150
[  333.143275][T13486]  should_failslab+0xc2/0x120
[  333.144970][T13486]  __kmalloc_noprof+0xcb/0x410
[  333.146727][T13486]  ? bitmap_find_next_zero_area_off+0xb0/0xd0
[  333.148431][T13488] netlink: 'syz.5.2070': attribute type 2 has an invalid length.
[  333.148825][T13486]  __vb2_queue_alloc+0x238/0x1230
[  333.148876][T13486]  vb2_core_reqbufs+0xa73/0xfb0
[  333.154457][T13486]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  333.156162][T13486]  __vb2_init_fileio+0x3f3/0x1110
[  333.157491][T13486]  ? lockdep_hardirqs_on+0x7c/0x110
[  333.158786][T13486]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  333.160242][T13486]  ? __pollwait+0x26d/0x4c0
[  333.161568][T13486]  vb2_core_poll+0x5e8/0x700
[  333.162782][T13486]  vb2_poll+0x35/0x160
[  333.163893][T13486]  vb2_fop_poll+0x10f/0x2c0
[  333.165253][T13486]  ? __pfx_vb2_fop_poll+0x10/0x10
[  333.167049][T13486]  v4l2_poll+0x160/0x320
[  333.168666][T13486]  ? __pfx_v4l2_poll+0x10/0x10
[  333.170575][T13486]  do_sys_poll+0x524/0xde0
[  333.172467][T13486]  ? __pfx_mark_lock+0x10/0x10
[  333.174432][T13486]  ? __pfx_do_sys_poll+0x10/0x10
[  333.176178][T13486]  ? __pfx___pollwait+0x10/0x10
[  333.177879][T13486]  ? __pfx_pollwake+0x10/0x10
[  333.179439][T13486]  ? __pfx_timespec64_add_safe+0x10/0x10
[  333.181428][T13486]  ? ktime_get_ts64+0x1ad/0x2a0
[  333.183022][T13486]  __ia32_sys_poll+0x1ab/0x460
[  333.184454][T13486]  ? __pfx___ia32_sys_poll+0x10/0x10
[  333.185864][T13486]  __do_fast_syscall_32+0x73/0x120
[  333.187667][T13486]  do_fast_syscall_32+0x32/0x80
[  333.189230][T13486]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  333.191298][T13486] RIP: 0023:0xf7fe7579
[  333.192702][T13486] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  333.199540][T13486] RSP: 002b:00000000f576655c EFLAGS: 00000296 ORIG_RAX: 00000000000000a8
[  333.202627][T13486] RAX: ffffffffffffffda RBX: 0000000020000140 RCX: 0000000000000001
[  333.205421][T13486] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000000
[  333.208122][T13486] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  333.210790][T13486] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  333.213479][T13486] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  333.216211][T13486]  </TASK>
[  333.244050][ T1011] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[  333.288237][T13495] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2071'.
[  333.292355][T13495] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2071'.
[  333.403919][ T1011] usb 7-1: Using ep0 maxpacket: 8
[  333.406816][ T1011] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  333.409262][ T1011] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  333.412020][ T1011] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  333.414659][ T1011] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  333.417586][ T1011] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  333.421287][ T1011] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  333.423695][ T1011] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.635336][ T1011] usb 7-1: usb_control_msg returned -32
[  333.636931][ T1011] usbtmc 7-1:16.0: can't read capabilities
[  333.824111][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  333.892013][T13523] FAULT_INJECTION: forcing a failure.
[  333.892013][T13523] name failslab, interval 1, probability 0, space 0, times 0
[  333.896335][T13523] CPU: 0 UID: 0 PID: 13523 Comm: syz.4.2081 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  333.899911][T13523] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  333.903457][T13523] Call Trace:
[  333.904377][T13523]  <TASK>
[  333.905148][T13523]  dump_stack_lvl+0x16c/0x1f0
[  333.906386][T13523]  should_fail_ex+0x497/0x5b0
[  333.907574][T13523]  should_failslab+0xc2/0x120
[  333.908837][T13523]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  333.910175][T13523]  ? skb_clone+0x190/0x3f0
[  333.911360][T13523]  skb_clone+0x190/0x3f0
[  333.912483][T13523]  netlink_deliver_tap+0xb26/0xcf0
[  333.914346][T13523]  netlink_unicast+0x5e1/0x7f0
[  333.915997][T13523]  ? __pfx_netlink_unicast+0x10/0x10
[  333.917782][T13523]  ? __phys_addr_symbol+0x30/0x80
[  333.919839][T13523]  ? __check_object_size+0x488/0x710
[  333.921882][T13523]  netlink_sendmsg+0x8b8/0xd70
[  333.923764][T13523]  ? __pfx_netlink_sendmsg+0x10/0x10
[  333.926006][T13523]  ____sys_sendmsg+0x9ae/0xb40
[  333.927923][T13523]  ? __pfx_____sys_sendmsg+0x10/0x10
[  333.929848][T13523]  ? get_compat_msghdr+0x11b/0x170
[  333.931355][T13523]  ___sys_sendmsg+0x135/0x1e0
[  333.932808][T13523]  ? __pfx____sys_sendmsg+0x10/0x10
[  333.934768][T13523]  ? __pfx_lock_release+0x10/0x10
[  333.936637][T13523]  ? trace_lock_acquire+0x14a/0x1d0
[  333.938471][T13523]  ? __fget_files+0x206/0x3a0
[  333.940052][T13523]  __sys_sendmsg+0x16e/0x220
[  333.941735][T13523]  ? __pfx___sys_sendmsg+0x10/0x10
[  333.943572][T13523]  __do_fast_syscall_32+0x73/0x120
[  333.945314][T13523]  do_fast_syscall_32+0x32/0x80
[  333.947109][T13523]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  333.949300][T13523] RIP: 0023:0xf7f26579
[  333.950818][T13523] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  333.957719][T13523] RSP: 002b:00000000f56a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  333.960703][T13523] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  333.963343][T13523] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  333.965932][T13523] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  333.967907][T13523] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  333.969916][T13523] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  333.971892][T13523]  </TASK>
[  334.530855][T13533] sg_write: data in/out 11/14 bytes for SCSI command 0x0-- guessing data in;
[  334.530855][T13533]    program syz.4.2083 not setting count and/or reply_len properly
[  334.854084][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  335.012356][T13556] FAULT_INJECTION: forcing a failure.
[  335.012356][T13556] name failslab, interval 1, probability 0, space 0, times 0
[  335.019067][T13556] CPU: 0 UID: 0 PID: 13556 Comm: syz.4.2091 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  335.022564][T13556] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  335.026544][T13556] Call Trace:
[  335.027769][T13556]  <TASK>
[  335.028841][T13556]  dump_stack_lvl+0x16c/0x1f0
[  335.030361][T13556]  should_fail_ex+0x497/0x5b0
[  335.031925][T13556]  should_failslab+0xc2/0x120
[  335.033540][T13556]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  335.035359][T13556]  ? skb_clone+0x190/0x3f0
[  335.036735][T13556]  skb_clone+0x190/0x3f0
[  335.037947][T13556]  netlink_deliver_tap+0xb26/0xcf0
[  335.039623][T13556]  netlink_unicast+0x5e1/0x7f0
[  335.041484][T13556]  ? __pfx_netlink_unicast+0x10/0x10
[  335.043454][T13556]  ? __phys_addr_symbol+0x30/0x80
[  335.045541][T13556]  ? __check_object_size+0x488/0x710
[  335.047618][T13556]  netlink_sendmsg+0x8b8/0xd70
[  335.049448][T13556]  ? __pfx_netlink_sendmsg+0x10/0x10
[  335.051446][T13556]  ____sys_sendmsg+0x9ae/0xb40
[  335.053302][T13556]  ? __pfx_____sys_sendmsg+0x10/0x10
[  335.055309][T13556]  ? get_compat_msghdr+0x11b/0x170
[  335.056830][T13556]  ___sys_sendmsg+0x135/0x1e0
[  335.058630][T13556]  ? __pfx____sys_sendmsg+0x10/0x10
[  335.060669][T13556]  ? __pfx_lock_release+0x10/0x10
[  335.062526][T13556]  ? trace_lock_acquire+0x14a/0x1d0
[  335.064555][T13556]  ? __fget_files+0x206/0x3a0
[  335.066276][T13556]  __sys_sendmsg+0x16e/0x220
[  335.067885][T13556]  ? __pfx___sys_sendmsg+0x10/0x10
[  335.069627][T13556]  __do_fast_syscall_32+0x73/0x120
[  335.071341][T13556]  do_fast_syscall_32+0x32/0x80
[  335.073075][T13556]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  335.075443][T13556] RIP: 0023:0xf7f26579
[  335.076922][T13556] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  335.084016][T13556] RSP: 002b:00000000f56a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  335.087015][T13556] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200001c0
[  335.089663][T13556] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  335.092328][T13556] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  335.095206][T13556] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  335.098052][T13556] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  335.100978][T13556]  </TASK>
[  335.378221][T13574] overlay: ./file0 is not a directory
[  335.391255][   T39] audit: type=1800 audit(335.552:14737): pid=13574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2098" name="bus" dev="9p" ino=38535343 res=0 errno=0
[  335.451520][T13574] syz.5.2098: attempt to access beyond end of device
[  335.451520][T13574] nbd5: rw=0, sector=0, nr_sectors = 1 limit=0
[  335.458127][T13574] efs: cannot read volume header
[  335.596830][T13579] fuse: Unknown parameter '0x000000000000000600000000000000000000@'
[  335.798464][T13585] netlink: 'syz.5.2100': attribute type 1 has an invalid length.
[  335.801179][T13585] netlink: 9116 bytes leftover after parsing attributes in process `syz.5.2100'.
[  335.804527][T13585] netlink: 'syz.5.2100': attribute type 2 has an invalid length.
[  335.807102][T13585] netlink: 185 bytes leftover after parsing attributes in process `syz.5.2100'.
[  335.811164][T13585] 9pnet_fd: Insufficient options for proto=fd
[  335.894144][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  335.912322][T13588] FAULT_INJECTION: forcing a failure.
[  335.912322][T13588] name failslab, interval 1, probability 0, space 0, times 0
[  335.917839][T13588] CPU: 3 UID: 0 PID: 13588 Comm: syz.5.2101 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  335.921603][T13588] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  335.925456][T13588] Call Trace:
[  335.926579][T13588]  <TASK>
[  335.927576][T13588]  dump_stack_lvl+0x16c/0x1f0
[  335.929132][T13588]  should_fail_ex+0x497/0x5b0
[  335.930704][T13588]  ? fs_reclaim_acquire+0xae/0x150
[  335.932332][T13588]  should_failslab+0xc2/0x120
[  335.933872][T13588]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  335.935776][T13588]  ? p9_tag_alloc+0x9c/0x870
[  335.937370][T13588]  ? __pfx_mark_lock+0x10/0x10
[  335.939007][T13588]  p9_tag_alloc+0x9c/0x870
[  335.940647][T13588]  ? __pfx_p9_tag_alloc+0x10/0x10
[  335.942497][T13588]  ? hlock_class+0x4e/0x130
[  335.944121][T13588]  ? __lock_acquire+0x163e/0x3ce0
[  335.945629][T13588]  p9_client_prepare_req+0x19f/0x4d0
[  335.947059][T13588]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  335.948669][T13588]  ? hlock_class+0x4e/0x130
[  335.950632][T13588]  ? mark_lock+0xb5/0xc60
[  335.952574][T13588]  ? __pfx___lock_acquire+0x10/0x10
[  335.954422][T13588]  p9_client_rpc+0x1c3/0xc10
[  335.956197][T13588]  ? __pfx_p9_client_rpc+0x10/0x10
[  335.958097][T13588]  ? find_held_lock+0x2d/0x110
[  335.960701][T13588]  ? p9_fid_create+0x26a/0x470
[  335.962925][T13588]  ? mark_held_locks+0x9f/0xe0
[  335.965094][T13588]  ? rcu_is_watching+0x12/0xc0
[  335.966911][T13588]  p9_client_attach+0x154/0x2b0
[  335.968571][T13588]  ? __pfx_p9_client_attach+0x10/0x10
[  335.970378][T13588]  v9fs_fid_lookup+0x97d/0xec0
[  335.972006][T13588]  ? __pfx_v9fs_xattr_handler_set+0x10/0x10
[  335.974063][T13588]  v9fs_xattr_handler_set+0x31/0x150
[  335.975842][T13588]  __vfs_setxattr+0x173/0x1e0
[  335.977641][T13588]  ? __pfx___vfs_setxattr+0x10/0x10
[  335.979576][T13588]  ? apparmor_capable+0x114/0x1d0
[  335.981418][T13588]  __vfs_setxattr_noperm+0x127/0x660
[  335.983288][T13588]  __vfs_setxattr_locked+0x182/0x260
[  335.985227][T13588]  vfs_setxattr+0x146/0x360
[  335.986955][T13588]  ? __pfx_lock_release+0x10/0x10
[  335.988406][T13588]  ? __pfx_vfs_setxattr+0x10/0x10
[  335.990120][T13588]  ? mnt_get_write_access+0x6a/0x300
[  335.992133][T13588]  ? mnt_get_write_access+0x6a/0x300
[  335.994109][T13588]  do_setxattr+0x142/0x170
[  335.995613][T13588]  filename_setxattr+0x16d/0x1d0
[  335.997344][T13588]  ? __pfx_filename_setxattr+0x10/0x10
[  335.999217][T13588]  ? getname_flags.part.0+0x1c5/0x550
[  336.000962][T13588]  path_setxattrat+0x1e0/0x290
[  336.002537][T13588]  ? __pfx_path_setxattrat+0x10/0x10
[  336.004343][T13588]  ? fput+0x67/0x440
[  336.005786][T13588]  ? ksys_write+0x1ba/0x250
[  336.007766][T13588]  ? __pfx_ksys_write+0x10/0x10
[  336.009975][T13588]  __ia32_sys_lsetxattr+0xc7/0x140
[  336.012172][T13588]  ? lockdep_hardirqs_on+0x7c/0x110
[  336.014119][T13588]  __do_fast_syscall_32+0x73/0x120
[  336.015924][T13588]  do_fast_syscall_32+0x32/0x80
[  336.017576][T13588]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  336.019673][T13588] RIP: 0023:0xf7fa4579
[  336.021003][T13588] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  336.027163][T13588] RSP: 002b:00000000f572655c EFLAGS: 00000296 ORIG_RAX: 00000000000000e3
[  336.030045][T13588] RAX: ffffffffffffffda RBX: 0000000020000400 RCX: 0000000020000600
[  336.032951][T13588] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  336.035752][T13588] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  336.038366][T13588] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  336.040949][T13588] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  336.043517][T13588]  </TASK>
[  336.061973][    T8] usb 7-1: USB disconnect, device number 43
[  336.134441][T13593] FAULT_INJECTION: forcing a failure.
[  336.134441][T13593] name failslab, interval 1, probability 0, space 0, times 0
[  336.138172][T13593] CPU: 2 UID: 0 PID: 13593 Comm: syz.4.2103 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  336.141205][T13593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.143054][T13598] netlink: 'syz.2.2104': attribute type 309 has an invalid length.
[  336.144493][T13593] Call Trace:
[  336.144509][T13593]  <TASK>
[  336.144516][T13593]  dump_stack_lvl+0x16c/0x1f0
[  336.144548][T13593]  should_fail_ex+0x497/0x5b0
[  336.144576][T13593]  should_failslab+0xc2/0x120
[  336.144601][T13593]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  336.144625][T13593]  ? skb_clone+0x190/0x3f0
[  336.144645][T13593]  skb_clone+0x190/0x3f0
[  336.144662][T13593]  netlink_deliver_tap+0xb26/0xcf0
[  336.144688][T13593]  netlink_unicast+0x5e1/0x7f0
[  336.144711][T13593]  ? __pfx_netlink_unicast+0x10/0x10
[  336.144732][T13593]  ? __phys_addr_symbol+0x30/0x80
[  336.144753][T13593]  ? __check_object_size+0x488/0x710
[  336.144798][T13593]  netlink_sendmsg+0x8b8/0xd70
[  336.144825][T13593]  ? __pfx_netlink_sendmsg+0x10/0x10
[  336.144854][T13593]  ____sys_sendmsg+0x9ae/0xb40
[  336.144877][T13593]  ? __pfx_____sys_sendmsg+0x10/0x10
[  336.144898][T13593]  ? get_compat_msghdr+0x11b/0x170
[  336.144926][T13593]  ___sys_sendmsg+0x135/0x1e0
[  336.144956][T13593]  ? __pfx____sys_sendmsg+0x10/0x10
[  336.144992][T13593]  ? __pfx_lock_release+0x10/0x10
[  336.145016][T13593]  ? trace_lock_acquire+0x14a/0x1d0
[  336.145044][T13593]  ? __fget_files+0x206/0x3a0
[  336.145070][T13593]  __sys_sendmsg+0x16e/0x220
[  336.145097][T13593]  ? __pfx___sys_sendmsg+0x10/0x10
[  336.145138][T13593]  __do_fast_syscall_32+0x73/0x120
[  336.145165][T13593]  do_fast_syscall_32+0x32/0x80
[  336.145190][T13593]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  336.145217][T13593] RIP: 0023:0xf7f26579
[  336.145233][T13593] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  336.145250][T13593] RSP: 002b:00000000f56a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  336.145269][T13593] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020004340
[  336.145282][T13593] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  336.145293][T13593] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  336.145304][T13593] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  336.145315][T13593] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  336.145342][T13593]  </TASK>
[  336.220599][T13596] FAULT_INJECTION: forcing a failure.
[  336.220599][T13596] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  336.231382][T13596] CPU: 1 UID: 0 PID: 13596 Comm: syz.2.2104 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  336.234782][T13596] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.238161][T13596] Call Trace:
[  336.239283][T13596]  <TASK>
[  336.240243][T13596]  dump_stack_lvl+0x16c/0x1f0
[  336.241816][T13596]  should_fail_ex+0x497/0x5b0
[  336.243348][T13596]  _copy_from_user+0x2e/0xd0
[  336.244843][T13596]  kstrtouint_from_user+0xd7/0x1c0
[  336.246529][T13596]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  336.248347][T13596]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  336.250177][T13596]  proc_fail_nth_write+0x84/0x250
[  336.251793][T13596]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  336.253739][T13596]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  336.255728][T13596]  vfs_write+0x24c/0x1150
[  336.257412][T13596]  ? __fget_files+0x1fc/0x3a0
[  336.259141][T13596]  ? fdget_pos+0x267/0x390
[  336.260729][T13596]  ? __pfx_lock_release+0x10/0x10
[  336.262424][T13596]  ? trace_lock_acquire+0x14a/0x1d0
[  336.264149][T13596]  ? __pfx_vfs_write+0x10/0x10
[  336.265778][T13596]  ? __pfx___mutex_lock+0x10/0x10
[  336.267451][T13596]  ? __fget_files+0x206/0x3a0
[  336.269043][T13596]  ksys_write+0x12b/0x250
[  336.270486][T13596]  ? __pfx_ksys_write+0x10/0x10
[  336.272131][T13596]  __do_fast_syscall_32+0x73/0x120
[  336.273919][T13596]  do_fast_syscall_32+0x32/0x80
[  336.275778][T13596]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  336.278158][T13596] RIP: 0023:0xf7fc5579
[  336.279655][T13596] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  336.286198][T13596] RSP: 002b:00000000f5746590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  336.288965][T13596] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5746620
[  336.291492][T13596] RDX: 0000000000000001 RSI: 00000000f744dff4 RDI: 0000000000000000
[  336.294259][T13596] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  336.297414][T13596] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  336.300331][T13596] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  336.303263][T13596]  </TASK>
[  336.420117][T13613] FAULT_INJECTION: forcing a failure.
[  336.420117][T13613] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  336.424216][T13613] CPU: 1 UID: 0 PID: 13613 Comm: syz.5.2110 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  336.427442][T13613] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.430699][T13613] Call Trace:
[  336.431730][T13613]  <TASK>
[  336.432757][T13613]  dump_stack_lvl+0x16c/0x1f0
[  336.434092][T13613]  should_fail_ex+0x497/0x5b0
[  336.435353][T13613]  _copy_to_iter+0x29b/0x1400
[  336.436834][T13613]  ? __pfx__copy_to_iter+0x10/0x10
[  336.438921][T13613]  ? __virt_addr_valid+0x1a4/0x590
[  336.441396][T13613]  ? __virt_addr_valid+0x5e/0x590
[  336.443885][T13613]  ? __phys_addr_symbol+0x30/0x80
[  336.445795][T13613]  ? __check_object_size+0x488/0x710
[  336.447527][T13613]  seq_read_iter+0xd00/0x12b0
[  336.449354][T13613]  vfs_read+0x87f/0xbe0
[  336.451183][T13613]  ? __pfx_vfs_read+0x10/0x10
[  336.453249][T13613]  ? __pfx___mutex_lock+0x10/0x10
[  336.455457][T13613]  ksys_read+0x12b/0x250
[  336.457026][T13613]  ? __pfx_ksys_read+0x10/0x10
[  336.458763][T13613]  __do_fast_syscall_32+0x73/0x120
[  336.460830][T13613]  do_fast_syscall_32+0x32/0x80
[  336.462659][T13613]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  336.465017][T13613] RIP: 0023:0xf7fa4579
[  336.466530][T13613] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  336.473710][T13613] RSP: 002b:00000000f572655c EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[  336.477163][T13613] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020003480
[  336.479258][T13613] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000
[  336.481372][T13613] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  336.483530][T13613] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  336.485804][T13613] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  336.488337][T13613]  </TASK>
[  336.550199][   T39] audit: type=1804 audit(336.712:14738): pid=13616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2111" name="/newroot/499/bus/cgroup.controllers" dev="overlay" ino=2816 res=1 errno=0
[  336.583662][T13623] FAULT_INJECTION: forcing a failure.
[  336.583662][T13623] name failslab, interval 1, probability 0, space 0, times 0
[  336.590173][T13623] CPU: 1 UID: 0 PID: 13623 Comm: syz.6.2113 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  336.593682][T13623] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.598070][T13623] Call Trace:
[  336.599635][T13623]  <TASK>
[  336.601049][T13623]  dump_stack_lvl+0x16c/0x1f0
[  336.601468][T13616] xt_CT: No such helper "syz0"
[  336.603009][T13623]  should_fail_ex+0x497/0x5b0
[  336.606809][T13623]  should_failslab+0xc2/0x120
[  336.608462][T13623]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  336.610415][T13623]  ? skb_clone+0x190/0x3f0
[  336.612033][T13623]  skb_clone+0x190/0x3f0
[  336.613579][T13623]  netlink_deliver_tap+0xb26/0xcf0
[  336.615463][T13623]  netlink_unicast+0x5e1/0x7f0
[  336.617260][T13623]  ? __pfx_netlink_unicast+0x10/0x10
[  336.619719][T13623]  ? __phys_addr_symbol+0x30/0x80
[  336.621807][T13623]  ? __check_object_size+0x488/0x710
[  336.624146][T13623]  netlink_sendmsg+0x8b8/0xd70
[  336.626318][T13623]  ? __pfx_netlink_sendmsg+0x10/0x10
[  336.628328][T13623]  ____sys_sendmsg+0x9ae/0xb40
[  336.630202][T13623]  ? __pfx_____sys_sendmsg+0x10/0x10
[  336.632078][T13623]  ? get_compat_msghdr+0x11b/0x170
[  336.633906][T13623]  ___sys_sendmsg+0x135/0x1e0
[  336.635611][T13623]  ? __pfx____sys_sendmsg+0x10/0x10
[  336.637578][T13623]  ? __pfx_lock_release+0x10/0x10
[  336.639395][T13623]  ? trace_lock_acquire+0x14a/0x1d0
[  336.641248][T13623]  ? __fget_files+0x206/0x3a0
[  336.643251][T13623]  __sys_sendmsg+0x16e/0x220
[  336.645138][T13623]  ? __pfx___sys_sendmsg+0x10/0x10
[  336.647062][T13623]  __do_fast_syscall_32+0x73/0x120
[  336.649203][T13623]  do_fast_syscall_32+0x32/0x80
[  336.650941][T13623]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  336.653164][T13623] RIP: 0023:0xf7fe7579
[  336.654543][T13623] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  336.660983][T13623] RSP: 002b:00000000f576655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  336.663900][T13623] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  336.666658][T13623] RDX: 0000000004008840 RSI: 0000000000000000 RDI: 0000000000000000
[  336.669506][T13623] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  336.672479][T13623] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  336.675429][T13623] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  336.678166][T13623]  </TASK>
[  336.683904][T13623] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2113'.
[  336.687082][T13623] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2113'.
[  336.690527][T13623] netlink: 'syz.6.2113': attribute type 11 has an invalid length.
[  336.739269][T13619] ahci 0000:00:1f.2: Using 39-bit DMA addresses
[  336.934189][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  337.228548][T13645] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  337.241092][T13645] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2117'.
[  337.724699][T13657] sp0: Synchronizing with TNC
[  337.787155][T13634] overlayfs: statfs failed on './file0'
[  337.909746][T13667] FAULT_INJECTION: forcing a failure.
[  337.909746][T13667] name failslab, interval 1, probability 0, space 0, times 0
[  337.913571][T13667] CPU: 3 UID: 0 PID: 13667 Comm: syz.2.2124 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  337.916623][T13667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  337.920617][T13667] Call Trace:
[  337.921848][T13667]  <TASK>
[  337.923010][T13667]  dump_stack_lvl+0x16c/0x1f0
[  337.925114][T13667]  should_fail_ex+0x497/0x5b0
[  337.927254][T13667]  ? fs_reclaim_acquire+0xae/0x150
[  337.929216][T13667]  should_failslab+0xc2/0x120
[  337.930922][T13667]  __kmalloc_noprof+0xcb/0x410
[  337.932226][T13667]  bpf_prog_array_alloc+0x46/0x60
[  337.933562][T13667]  compute_effective_progs+0x1de/0x620
[  337.935266][T13667]  update_effective_progs+0x5f/0x270
[  337.937178][T13667]  __cgroup_bpf_attach+0x9cc/0x17e0
[  337.939057][T13667]  ? __pfx___mutex_lock+0x10/0x10
[  337.940847][T13667]  ? __pfx___cgroup_bpf_attach+0x10/0x10
[  337.942820][T13667]  cgroup_bpf_prog_attach+0x10d/0x360
[  337.945083][T13667]  __sys_bpf+0x4329/0x5780
[  337.946692][T13667]  ? ksys_write+0x191/0x250
[  337.948663][T13667]  ? __pfx___sys_bpf+0x10/0x10
[  337.950434][T13667]  ? vfs_write+0x306/0x1150
[  337.952087][T13667]  ? __mutex_unlock_slowpath+0x164/0x650
[  337.954129][T13667]  ? fput+0x67/0x440
[  337.955610][T13667]  ? ksys_write+0x1ba/0x250
[  337.956942][T13667]  ? __pfx_ksys_write+0x10/0x10
[  337.958401][T13667]  __ia32_sys_bpf+0x76/0xe0
[  337.960243][T13667]  __do_fast_syscall_32+0x73/0x120
[  337.961897][T13667]  do_fast_syscall_32+0x32/0x80
[  337.963183][T13667]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  337.964795][T13667] RIP: 0023:0xf7fc5579
[  337.965873][T13667] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  337.971028][T13667] RSP: 002b:00000000f574655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  337.973864][T13667] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020000280
[  337.973987][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  337.976565][T13667] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  337.980750][T13667] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  337.983316][T13667] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  337.986206][T13667] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  337.988994][T13667]  </TASK>
[  337.990292][    C3] vkms_vblank_simulate: vblank timer overrun
[  337.998815][   T39] audit: type=1800 audit(338.162:14739): pid=13668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2121" name="file0" dev="fuse" ino=0 res=0 errno=0
[  338.538515][T13682] 9pnet_fd: Insufficient options for proto=fd
[  339.024294][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  339.612517][T13709] FAULT_INJECTION: forcing a failure.
[  339.612517][T13709] name failslab, interval 1, probability 0, space 0, times 0
[  339.623891][T13709] CPU: 0 UID: 0 PID: 13709 Comm: syz.5.2137 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  339.627816][T13709] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.631751][T13709] Call Trace:
[  339.632945][T13709]  <TASK>
[  339.634016][T13709]  dump_stack_lvl+0x16c/0x1f0
[  339.635902][T13709]  should_fail_ex+0x497/0x5b0
[  339.637739][T13709]  ? fs_reclaim_acquire+0xae/0x150
[  339.639569][T13709]  should_failslab+0xc2/0x120
[  339.641276][T13709]  __kmalloc_noprof+0xcb/0x410
[  339.642987][T13709]  ? __pfx___mutex_trylock_common+0x10/0x10
[  339.645209][T13709]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  339.647810][T13709]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  339.649826][T13709]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  339.652009][T13709]  ? bpf_lsm_capable+0x9/0x10
[  339.653762][T13709]  ? security_capable+0x7e/0x260
[  339.655559][T13709]  genl_rcv_msg+0x565/0x800
[  339.657205][T13709]  ? __pfx_genl_rcv_msg+0x10/0x10
[  339.659024][T13709]  ? __pfx_netlbl_mgmt_adddef+0x10/0x10
[  339.661037][T13709]  ? __pfx___lock_acquire+0x10/0x10
[  339.662596][T13709]  netlink_rcv_skb+0x165/0x410
[  339.664028][T13709]  ? __pfx_genl_rcv_msg+0x10/0x10
[  339.665517][T13709]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  339.666961][T13709]  ? down_read+0xc9/0x330
[  339.668118][T13709]  ? __pfx_down_read+0x10/0x10
[  339.669390][T13709]  ? netlink_deliver_tap+0x1ae/0xcf0
[  339.670770][T13709]  genl_rcv+0x28/0x40
[  339.671823][T13709]  netlink_unicast+0x53c/0x7f0
[  339.673120][T13709]  ? __pfx_netlink_unicast+0x10/0x10
[  339.674513][T13709]  ? __phys_addr_symbol+0x30/0x80
[  339.675841][T13709]  ? __check_object_size+0x488/0x710
[  339.677205][T13709]  netlink_sendmsg+0x8b8/0xd70
[  339.678473][T13709]  ? __pfx_netlink_sendmsg+0x10/0x10
[  339.680022][T13709]  ____sys_sendmsg+0x9ae/0xb40
[  339.681362][T13709]  ? __pfx_____sys_sendmsg+0x10/0x10
[  339.682786][T13709]  ? get_compat_msghdr+0x11b/0x170
[  339.684186][T13709]  ___sys_sendmsg+0x135/0x1e0
[  339.685475][T13709]  ? __pfx____sys_sendmsg+0x10/0x10
[  339.686859][T13709]  ? __pfx_lock_release+0x10/0x10
[  339.688180][T13709]  ? trace_lock_acquire+0x14a/0x1d0
[  339.689648][T13709]  ? __fget_files+0x206/0x3a0
[  339.690992][T13709]  __sys_sendmsg+0x16e/0x220
[  339.692304][T13709]  ? __pfx___sys_sendmsg+0x10/0x10
[  339.693852][T13709]  __do_fast_syscall_32+0x73/0x120
[  339.695241][T13709]  do_fast_syscall_32+0x32/0x80
[  339.696531][T13709]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  339.698227][T13709] RIP: 0023:0xf7fa4579
[  339.699307][T13709] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  339.704611][T13709] RSP: 002b:00000000f572655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  339.706903][T13709] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  339.709108][T13709] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  339.711151][T13709] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  339.713210][T13709] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  339.715235][T13709] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  339.717358][T13709]  </TASK>
[  339.835640][T13714] FAULT_INJECTION: forcing a failure.
[  339.835640][T13714] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  339.840849][T13714] CPU: 3 UID: 0 PID: 13714 Comm: syz.4.2140 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  339.843786][T13714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.846548][T13714] Call Trace:
[  339.847409][T13714]  <TASK>
[  339.848182][T13714]  dump_stack_lvl+0x16c/0x1f0
[  339.849424][T13714]  should_fail_ex+0x497/0x5b0
[  339.850664][T13714]  _copy_to_user+0x32/0xd0
[  339.851923][T13714]  ucma_query_addr+0x2ba/0x3b0
[  339.853162][T13714]  ? __pfx_ucma_query_addr+0x10/0x10
[  339.854837][T13714]  ? ucma_query+0xf4/0x1f0
[  339.856639][T13714]  ? __pfx_ucma_get_ctx+0x10/0x10
[  339.858065][T13714]  ? __might_fault+0xe3/0x190
[  339.859486][T13714]  ucma_query+0x1a7/0x1f0
[  339.860798][T13714]  ? __pfx_ucma_query+0x10/0x10
[  339.862210][T13714]  ? __might_fault+0xe3/0x190
[  339.863529][T13714]  ? __pfx_ucma_query+0x10/0x10
[  339.864993][T13714]  ucma_write+0x1f9/0x330
[  339.866137][T13714]  ? __pfx_ucma_write+0x10/0x10
[  339.867494][T13714]  ? bpf_lsm_file_permission+0x9/0x10
[  339.868922][T13714]  ? security_file_permission+0x71/0x210
[  339.870378][T13714]  ? __pfx_ucma_write+0x10/0x10
[  339.871654][T13714]  vfs_write+0x24c/0x1150
[  339.872805][T13714]  ? __fget_files+0x1fc/0x3a0
[  339.874061][T13714]  ? __pfx_lock_release+0x10/0x10
[  339.875406][T13714]  ? trace_lock_acquire+0x14a/0x1d0
[  339.876799][T13714]  ? __pfx_vfs_write+0x10/0x10
[  339.878254][T13714]  ? lock_acquire+0x2f/0xb0
[  339.879756][T13714]  ? __fget_files+0x40/0x3a0
[  339.881275][T13714]  ? __fget_files+0x206/0x3a0
[  339.882828][T13714]  ksys_write+0x207/0x250
[  339.884256][T13714]  ? __pfx_ksys_write+0x10/0x10
[  339.885631][T13714]  __do_fast_syscall_32+0x73/0x120
[  339.886938][T13714]  do_fast_syscall_32+0x32/0x80
[  339.888204][T13714]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  339.889841][T13714] RIP: 0023:0xf7f26579
[  339.890879][T13714] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  339.895824][T13714] RSP: 002b:00000000f56a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  339.898101][T13714] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  339.900086][T13714] RDX: 0000000000000018 RSI: 0000000000000000 RDI: 0000000000000000
[  339.902093][T13714] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  339.904153][T13714] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  339.906282][T13714] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  339.908483][T13714]  </TASK>
[  339.909454][    C3] vkms_vblank_simulate: vblank timer overrun
[  340.054103][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  340.252117][T13727] overlayfs: missing 'lowerdir'
[  340.391050][ T6006] usb 9-1: new high-speed USB device number 17 using dummy_hcd
[  340.556536][ T6006] usb 9-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  340.562027][ T6006] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26158, setting to 1024
[  340.566818][ T6006] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  340.573916][ T6006] usb 9-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  340.577428][ T6006] usb 9-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  340.580484][ T6006] usb 9-1: Manufacturer: syz
[  340.584139][ T6006] usb 9-1: config 0 descriptor??
[  340.587270][T13725] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  340.840432][T13735] FAULT_INJECTION: forcing a failure.
[  340.840432][T13735] name failslab, interval 1, probability 0, space 0, times 0
[  340.845911][T13735] CPU: 2 UID: 0 PID: 13735 Comm: syz.5.2146 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  340.848697][T13735] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  340.851541][T13735] Call Trace:
[  340.852429][T13735]  <TASK>
[  340.853232][T13735]  dump_stack_lvl+0x16c/0x1f0
[  340.854503][T13735]  should_fail_ex+0x497/0x5b0
[  340.855764][T13735]  ? fs_reclaim_acquire+0xae/0x150
[  340.857171][T13735]  should_failslab+0xc2/0x120
[  340.858842][T13735]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  340.860849][T13735]  ? __anon_vma_prepare+0x344/0x5e0
[  340.862908][T13735]  __anon_vma_prepare+0x344/0x5e0
[  340.864750][T13735]  ? __pfx___pte_alloc+0x10/0x10
[  340.866489][T13735]  __vmf_anon_prepare+0x11c/0x240
[  340.868246][T13735]  do_pte_missing+0x1028/0x3e70
[  340.869936][T13735]  ? __pfx_lock_release+0x10/0x10
[  340.871714][T13735]  __handle_mm_fault+0x100a/0x2a10
[  340.874056][T13735]  ? __pfx_mt_find+0x10/0x10
[  340.875796][T13735]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  340.878080][T13735]  ? __pfx___handle_mm_fault+0x10/0x10
[  340.880433][T13735]  ? find_vma+0xc0/0x140
[  340.882095][T13735]  ? __pfx_find_vma+0x10/0x10
[  340.883812][T13735]  handle_mm_fault+0x3fa/0xaa0
[  340.885267][T13735]  do_user_addr_fault+0x7a3/0x13f0
[  340.886633][T13735]  exc_page_fault+0x5c/0xc0
[  340.887832][T13735]  asm_exc_page_fault+0x26/0x30
[  340.889140][T13735] RIP: 0010:__put_user_4+0x11/0x20
[  340.890502][T13735] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[  340.896122][T13735] RSP: 0018:ffffc9000e14fbb8 EFLAGS: 00050206
[  340.898260][T13735] RAX: 0000000000034000 RBX: 0000000000000000 RCX: 0000000020000000
[  340.901148][T13735] RDX: ffff8880226ac880 RSI: ffffffff8af06b14 RDI: ffffffff8bb14d00
[  340.903735][T13735] RBP: ffffc9000e14fc90 R08: 0000000000000000 R09: fffffbfff203a591
[  340.905930][T13735] R10: ffffffff901d2c8f R11: 0000000000000000 R12: 1ffff92001c29f78
[  340.908388][T13735] R13: ffff88801cf91e00 R14: 0000000020000000 R15: ffff88801cf9209c
[  340.911061][T13735]  ? qrtr_ioctl+0x374/0x3f0
[  340.912566][T13735]  qrtr_ioctl+0x383/0x3f0
[  340.913900][T13735]  ? __pfx_qrtr_ioctl+0x10/0x10
[  340.915196][T13735]  ? tomoyo_path_number_perm+0x467/0x5b0
[  340.916692][T13735]  ? tomoyo_path_number_perm+0x190/0x5b0
[  340.918269][T13735]  sock_do_ioctl+0x116/0x280
[  340.919503][T13735]  ? __pfx_sock_do_ioctl+0x10/0x10
[  340.920923][T13735]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  340.922824][T13735]  compat_sock_ioctl+0x318/0x7e0
[  340.924690][T13735]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  340.926292][T13735]  ? __fget_files+0x206/0x3a0
[  340.927732][T13735]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  340.929502][T13735]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  340.931634][T13735]  __do_fast_syscall_32+0x73/0x120
[  340.933037][T13735]  do_fast_syscall_32+0x32/0x80
[  340.934353][T13735]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  340.936043][T13735] RIP: 0023:0xf7fa4579
[  340.937155][T13735] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  340.943071][T13735] RSP: 002b:00000000f572655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  340.945940][T13735] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005411
[  340.948030][T13735] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  340.950162][T13735] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  340.952792][T13735] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  340.955342][T13735] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  340.957808][T13735]  </TASK>
[  341.003991][ T6006] appleir 0003:05AC:8243.0026: unknown main item tag 0x0
[  341.006113][ T6006] appleir 0003:05AC:8243.0026: No inputs registered, leaving
[  341.015869][ T6006] appleir 0003:05AC:8243.0026: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  341.072565][T13740] netlink: 'syz.5.2147': attribute type 309 has an invalid length.
[  341.094078][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  341.108962][   T39] audit: type=1326 audit(341.272:14740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13741 comm="syz.5.2149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  341.118405][   T39] audit: type=1326 audit(341.272:14741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13741 comm="syz.5.2149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  341.126084][   T39] audit: type=1326 audit(341.282:14742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13741 comm="syz.5.2149" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  341.134700][   T39] audit: type=1326 audit(341.282:14743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13741 comm="syz.5.2149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  341.142028][   T39] audit: type=1326 audit(341.282:14744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13741 comm="syz.5.2149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  341.148533][   T39] audit: type=1326 audit(341.282:14745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13741 comm="syz.5.2149" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  341.154780][   T39] audit: type=1326 audit(341.282:14746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13741 comm="syz.5.2149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  341.160201][   T39] audit: type=1326 audit(341.282:14747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13741 comm="syz.5.2149" exe="/syz-executor" sig=0 arch=40000003 syscall=41 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  341.167810][   T39] audit: type=1326 audit(341.282:14748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13741 comm="syz.5.2149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  341.174726][   T39] audit: type=1326 audit(341.292:14749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13741 comm="syz.5.2149" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  341.218334][ T8111] usb 9-1: USB disconnect, device number 17
[  341.435107][T13758] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2155'.
[  341.464031][T13758] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2155'.
[  341.466744][T13758] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2155'.
[  341.543181][   T65] block nbd0: Receive control failed (result -107)
[  341.810295][T13766] 0ªX¹¦À: left allmulticast mode
[  342.004481][T13776] netlink: 'syz.4.2161': attribute type 10 has an invalid length.
[  342.017212][T13776] team0: Port device wlan1 removed
[  342.024766][T13776] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  342.134130][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  342.166405][T13786] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  342.252282][T13796] FAULT_INJECTION: forcing a failure.
[  342.252282][T13796] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.255422][T13796] CPU: 3 UID: 0 PID: 13796 Comm: syz.6.2168 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  342.258600][T13796] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  342.262136][T13796] Call Trace:
[  342.263269][T13796]  <TASK>
[  342.264278][T13796]  dump_stack_lvl+0x16c/0x1f0
[  342.265694][T13796]  should_fail_ex+0x497/0x5b0
[  342.267103][T13796]  _copy_from_user+0x2e/0xd0
[  342.268496][T13796]  copy_from_buffer+0x86/0xb0
[  342.269963][T13796]  copy_uabi_to_xstate+0x26e/0x670
[  342.271613][T13796]  ? __pfx_copy_uabi_to_xstate+0x10/0x10
[  342.273476][T13796]  ? __pfx_lock_release+0x10/0x10
[  342.275183][T13796]  ? trace_lock_acquire+0x14a/0x1d0
[  342.276804][T13796]  ? __fpu_restore_sig+0xc2c/0x1430
[  342.278344][T13796]  ? __local_bh_enable_ip+0xa4/0x120
[  342.279913][T13796]  __fpu_restore_sig+0x1070/0x1430
[  342.281446][T13796]  ? __pfx___fpu_restore_sig+0x10/0x10
[  342.283073][T13796]  ? lock_acquire+0x2f/0xb0
[  342.284452][T13796]  ? __might_fault+0xe3/0x190
[  342.285872][T13796]  fpu__restore_sig+0x113/0x190
[  342.287448][T13796]  ia32_restore_sigcontext+0x40f/0x5d0
[  342.289346][T13796]  ? __pfx_ia32_restore_sigcontext+0x10/0x10
[  342.291464][T13796]  ? __pfx_lock_release+0x10/0x10
[  342.293121][T13796]  ? _raw_spin_unlock_irq+0x23/0x50
[  342.294885][T13796]  ? lockdep_hardirqs_on+0x7c/0x110
[  342.296418][T13796]  __do_compat_sys_rt_sigreturn+0x121/0x1f0
[  342.298252][T13796]  ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10
[  342.300128][T13796]  do_int80_emulation+0x104/0x200
[  342.301649][T13796]  asm_int80_emulation+0x1a/0x20
[  342.303117][T13796] RIP: 0023:0xf7fe7579
[  342.304349][T13796] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  342.309916][T13796] RSP: 002b:00000000f576655c EFLAGS: 00000296
[  342.311747][T13796] RAX: 00000000fffffffc RBX: 0000000000000000 RCX: 0000000000000000
[  342.314399][T13796] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000002000
[  342.316965][T13796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  342.319426][T13796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  342.321752][T13796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  342.324080][T13796]  </TASK>
[  342.325139][    C3] vkms_vblank_simulate: vblank timer overrun
[  343.061810][T13821] xt_CT: No such helper "pptp"
[  343.174008][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  344.028215][T13824] support for cryptoloop has been removed.  Use dm-crypt instead.
[  344.224056][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  344.259863][T13855] Invalid ELF header type: 2 != 1
[  344.389729][T13862] pim6reg: entered allmulticast mode
[  344.729495][T13886] binder: BINDER_SET_CONTEXT_MGR already set
[  344.731621][T13886] binder: 13884:13886 ioctl 4018620d 200001c0 returned -16
[  344.735418][T13886] binder: BINDER_SET_CONTEXT_MGR already set
[  344.737071][T13886] binder: 13884:13886 ioctl 4018620d 20000040 returned -16
[  344.766019][T13888] block nbd5: NBD_DISCONNECT
[  344.995592][T13899] netlink: 'syz.4.2203': attribute type 9 has an invalid length.
[  344.997866][T13899] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.2203'.
[  345.032399][T13902] netdevsim netdevsim4: Direct firmware load for .
[  345.032399][T13902]  failed with error -2
[  345.036746][T13902] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  345.036746][T13902] 
[  345.263989][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  345.755704][T13919] ip6t_srh: unknown srh match flags  E506
[  345.795911][T13924] netlink: 'syz.5.2209': attribute type 9 has an invalid length.
[  345.798115][T13924] netlink: 209836 bytes leftover after parsing attributes in process `syz.5.2209'.
[  345.809614][T13924] netlink: 'syz.5.2209': attribute type 9 has an invalid length.
[  345.811804][T13924] netlink: 209836 bytes leftover after parsing attributes in process `syz.5.2209'.
[  346.011797][T13930] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2211'.
[  346.102621][T13939] mac80211_hwsim hwsim13 wlan1: entered allmulticast mode
[  346.111803][   T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  346.114100][   T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  346.118141][T13936] syzkaller0: entered promiscuous mode
[  346.119921][T13936] syzkaller0: entered allmulticast mode
[  346.294785][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  346.317840][T13950] xt_CT: No such helper "pptp"
[  346.898172][   T39] kauditd_printk_skb: 105 callbacks suppressed
[  346.898185][   T39] audit: type=1804 audit(347.062:14855): pid=13975 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.2227" name="/newroot/429/file0/file0" dev="9p" ino=38535234 res=1 errno=0
[  346.912983][T13973] binder: Unknown parameter 'smackfsroot'
[  347.344003][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  347.423739][T13990] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2232'.
[  348.139233][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  348.178183][T14022] binder: BINDER_SET_CONTEXT_MGR already set
[  348.180188][T14022] binder: 14021:14022 ioctl 4018620d 200001c0 returned -16
[  348.187637][T14022] binder: BINDER_SET_CONTEXT_MGR already set
[  348.189633][T14022] binder: 14021:14022 ioctl 4018620d 20000040 returned -16
[  348.347188][   T39] audit: type=1326 audit(348.512:14856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14028 comm="syz.4.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  348.349024][T14034] FAULT_INJECTION: forcing a failure.
[  348.349024][T14034] name failslab, interval 1, probability 0, space 0, times 0
[  348.353372][   T39] audit: type=1326 audit(348.512:14857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14028 comm="syz.4.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=322 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  348.357757][T14034] CPU: 1 UID: 0 PID: 14034 Comm: syz.4.2245 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  348.364947][   T39] audit: type=1326 audit(348.512:14858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14028 comm="syz.4.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  348.368484][T14034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  348.374081][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  348.375754][   T39] audit: type=1326 audit(348.512:14859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14028 comm="syz.4.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=355 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  348.377240][T14034] Call Trace:
[  348.379127][   T39] audit: type=1326 audit(348.512:14860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14028 comm="syz.4.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  348.386315][T14034]  <TASK>
[  348.386335][T14034]  dump_stack_lvl+0x16c/0x1f0
[  348.386371][T14034]  should_fail_ex+0x497/0x5b0
[  348.386397][T14034]  ? fs_reclaim_acquire+0xae/0x150
[  348.389474][   T39] audit: type=1326 audit(348.512:14861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14028 comm="syz.4.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  348.394957][T14034]  should_failslab+0xc2/0x120
[  348.394996][T14034]  __kmalloc_cache_noprof+0x6b/0x310
[  348.395819][   T39] audit: type=1326 audit(348.512:14862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14028 comm="syz.4.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  348.397407][T14034]  ? audit_log_d_path+0xce/0x1e0
[  348.420983][T14034]  audit_log_d_path+0xce/0x1e0
[  348.422799][T14034]  audit_log_d_path_exe+0x46/0x70
[  348.424639][T14034]  audit_log_task+0x279/0x300
[  348.426528][T14034]  ? __pfx_audit_log_task+0x10/0x10
[  348.428475][T14034]  ? migrate_enable+0x1ef/0x260
[  348.430590][T14034]  ? __pfx_migrate_enable+0x10/0x10
[  348.432607][T14034]  audit_seccomp+0x7a/0x280
[  348.434343][T14034]  __seccomp_filter+0x816/0xf40
[  348.436166][T14034]  ? __pfx___seccomp_filter+0x10/0x10
[  348.438098][T14034]  ? fput+0x67/0x440
[  348.439528][T14034]  ? ksys_write+0x1ba/0x250
[  348.441126][T14034]  __secure_computing+0x26c/0x3f0
[  348.443233][T14034]  syscall_trace_enter+0x8b/0x240
[  348.445097][T14034]  __do_fast_syscall_32+0xc2/0x120
[  348.447399][T14034]  do_fast_syscall_32+0x32/0x80
[  348.449481][T14034]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  348.452113][T14034] RIP: 0023:0xf7f26579
[  348.453713][T14034] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  348.460494][T14034] RSP: 002b:00000000f568555c EFLAGS: 00000296 ORIG_RAX: 0000000000000146
[  348.463464][T14034] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000040
[  348.466299][T14034] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  348.469535][T14034] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  348.472432][T14034] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  348.475311][T14034] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  348.478168][T14034]  </TASK>
[  348.479447][ T6023] usb 11-1: new high-speed USB device number 33 using dummy_hcd
[  348.499909][   T39] audit: type=1326 audit(348.512:14863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14028 comm="syz.4.2245" exe="<no_memory>" sig=0 arch=40000003 syscall=326 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  348.507038][   T39] audit: type=1326 audit(348.662:14864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14028 comm="syz.4.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  348.561973][T13997] ceph: No mds server is up or the cluster is laggy
[  348.562054][T14001] ceph: No mds server is up or the cluster is laggy
[  348.626244][ T6023] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  348.639107][ T6023] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  348.642205][ T6023] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  348.648572][ T6023] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  348.651310][ T6023] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.656217][ T6023] usb 11-1: config 0 descriptor??
[  348.722109][T14039] No control pipe specified
[  349.073607][ T6023] plantronics 0003:047F:FFFF.0027: No inputs registered, leaving
[  349.079948][ T6023] plantronics 0003:047F:FFFF.0027: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  349.285023][    T8] usb 11-1: USB disconnect, device number 33
[  349.414029][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  350.087525][T14072] sctp: [Deprecated]: syz.2.2257 (pid 14072) Use of struct sctp_assoc_value in delayed_ack socket option.
[  350.087525][T14072] Use struct sctp_sack_info instead
[  350.230072][T14075] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2258'.
[  350.454048][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  350.981722][T14098] FAULT_INJECTION: forcing a failure.
[  350.981722][T14098] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  350.988270][T14098] CPU: 1 UID: 0 PID: 14098 Comm: syz.6.2265 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  350.991793][T14098] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  350.995925][T14098] Call Trace:
[  350.997197][T14098]  <TASK>
[  350.998251][T14098]  dump_stack_lvl+0x16c/0x1f0
[  350.999916][T14098]  should_fail_ex+0x497/0x5b0
[  351.001551][T14098]  _copy_from_user+0x2e/0xd0
[  351.003062][T14098]  input_event_from_user+0x22d/0x3b0
[  351.004776][T14098]  ? __pfx_input_event_from_user+0x10/0x10
[  351.006698][T14098]  ? input_inject_event+0x51/0x370
[  351.008484][T14098]  evdev_write+0x377/0x750
[  351.010196][T14098]  ? __pfx_evdev_write+0x10/0x10
[  351.012109][T14098]  ? bpf_lsm_file_permission+0x9/0x10
[  351.014139][T14098]  ? security_file_permission+0x71/0x210
[  351.016095][T14098]  ? __pfx_evdev_write+0x10/0x10
[  351.017811][T14098]  vfs_write+0x24c/0x1150
[  351.019302][T14098]  ? __fget_files+0x1fc/0x3a0
[  351.020939][T14098]  ? __pfx_lock_release+0x10/0x10
[  351.022743][T14098]  ? trace_lock_acquire+0x14a/0x1d0
[  351.024616][T14098]  ? __pfx_vfs_write+0x10/0x10
[  351.026339][T14098]  ? lock_acquire+0x2f/0xb0
[  351.028092][T14098]  ? __fget_files+0x40/0x3a0
[  351.029859][T14098]  ? __fget_files+0x206/0x3a0
[  351.031643][T14098]  ksys_write+0x207/0x250
[  351.033299][T14098]  ? __pfx_ksys_write+0x10/0x10
[  351.035038][T14098]  __do_fast_syscall_32+0x73/0x120
[  351.036822][T14098]  do_fast_syscall_32+0x32/0x80
[  351.038509][T14098]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  351.040865][T14098] RIP: 0023:0xf7fe7579
[  351.042398][T14098] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  351.049199][T14098] RSP: 002b:00000000f576655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  351.052194][T14098] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000040
[  351.055056][T14098] RDX: 00000000000012d8 RSI: 0000000000000000 RDI: 0000000000000000
[  351.057832][T14098] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  351.060548][T14098] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  351.063339][T14098] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  351.066417][T14098]  </TASK>
[  351.209640][T14105] fuse: Unknown parameter '0x0000000000000005'
[  351.218542][T14105] ERROR: device name not specified.
[  351.384018][T14110] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2268'.
[  351.494030][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  351.614362][T14115] tc_dump_action: action bad kind
[  351.837467][T14129] netlink: 'syz.4.2276': attribute type 9 has an invalid length.
[  351.839514][T14129] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.2276'.
[  351.842395][T14129] FAULT_INJECTION: forcing a failure.
[  351.842395][T14129] name failslab, interval 1, probability 0, space 0, times 0
[  351.846779][T14129] CPU: 1 UID: 0 PID: 14129 Comm: syz.4.2276 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  351.849733][T14129] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  351.853198][T14129] Call Trace:
[  351.854391][T14129]  <TASK>
[  351.855173][T14129]  dump_stack_lvl+0x16c/0x1f0
[  351.856443][T14129]  should_fail_ex+0x497/0x5b0
[  351.857953][T14129]  ? fs_reclaim_acquire+0xae/0x150
[  351.859744][T14129]  should_failslab+0xc2/0x120
[  351.861394][T14129]  __kmalloc_node_noprof+0xd1/0x440
[  351.862977][T14129]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  351.864624][T14129]  ? lockdep_init_map_type+0x16d/0x7d0
[  351.866413][T14129]  __kvmalloc_node_noprof+0xad/0x1a0
[  351.867952][T14129]  bucket_table_alloc.isra.0+0x86/0x460
[  351.869485][T14129]  ? __raw_spin_lock_init+0x3a/0x110
[  351.871296][T14129]  rhashtable_init_noprof+0x43b/0x7d0
[  351.873165][T14129]  ? __init_waitqueue_head+0xca/0x150
[  351.874587][T14129]  rhltable_init_noprof+0x20/0x60
[  351.875907][T14129]  sta_info_init+0x27/0x160
[  351.877310][T14129]  ieee80211_alloc_hw_nm+0x840/0x2260
[  351.879158][T14129]  ? __local_bh_enable_ip+0xa4/0x120
[  351.880784][T14129]  mac80211_hwsim_new_radio+0x201/0x56c0
[  351.882791][T14129]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  351.885026][T14129]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  351.887426][T14129]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  351.889332][T14129]  hwsim_new_radio_nl+0xb42/0x12b0
[  351.891174][T14129]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  351.892717][T14129]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  351.894632][T14129]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  351.896589][T14129]  genl_family_rcv_msg_doit+0x202/0x2f0
[  351.898060][T14129]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  351.899655][T14129]  ? bpf_lsm_capable+0x9/0x10
[  351.900915][T14129]  ? security_capable+0x7e/0x260
[  351.902576][T14129]  ? ns_capable+0xd7/0x110
[  351.904175][T14129]  genl_rcv_msg+0x565/0x800
[  351.905876][T14129]  ? __pfx_genl_rcv_msg+0x10/0x10
[  351.907799][T14129]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  351.910051][T14129]  netlink_rcv_skb+0x165/0x410
[  351.911829][T14129]  ? __pfx_genl_rcv_msg+0x10/0x10
[  351.913156][T14129]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  351.914491][T14129]  ? down_read+0xc9/0x330
[  351.915701][T14129]  ? __pfx_down_read+0x10/0x10
[  351.916899][T14129]  ? netlink_deliver_tap+0x1ae/0xcf0
[  351.918277][T14129]  genl_rcv+0x28/0x40
[  351.919368][T14129]  netlink_unicast+0x53c/0x7f0
[  351.920659][T14129]  ? __pfx_netlink_unicast+0x10/0x10
[  351.922066][T14129]  ? const_folio_flags.constprop.0+0x56/0x150
[  351.923776][T14129]  ? __phys_addr_symbol+0x30/0x80
[  351.925170][T14129]  ? __check_object_size+0x488/0x710
[  351.926663][T14129]  netlink_sendmsg+0x8b8/0xd70
[  351.928072][T14129]  ? __pfx_netlink_sendmsg+0x10/0x10
[  351.929738][T14129]  ____sys_sendmsg+0x9ae/0xb40
[  351.931091][T14129]  ? __pfx_____sys_sendmsg+0x10/0x10
[  351.932783][T14129]  ? get_compat_msghdr+0x11b/0x170
[  351.934621][T14129]  ___sys_sendmsg+0x135/0x1e0
[  351.936279][T14129]  ? __pfx____sys_sendmsg+0x10/0x10
[  351.938381][T14129]  ? __pfx_lock_release+0x10/0x10
[  351.940063][T14129]  ? trace_lock_acquire+0x14a/0x1d0
[  351.941734][T14129]  ? __fget_files+0x206/0x3a0
[  351.943328][T14129]  __sys_sendmsg+0x16e/0x220
[  351.945072][T14129]  ? __pfx___sys_sendmsg+0x10/0x10
[  351.947129][T14129]  __do_fast_syscall_32+0x73/0x120
[  351.949169][T14129]  do_fast_syscall_32+0x32/0x80
[  351.950999][T14129]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  351.952919][T14129] RIP: 0023:0xf7f26579
[  351.954282][T14129] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  351.960027][T14129] RSP: 002b:00000000f56a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  351.962882][T14129] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  351.965736][T14129] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  351.967934][T14129] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  351.971006][T14129] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  351.973358][T14129] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  351.975701][T14129]  </TASK>
[  352.478459][T14148] block nbd2: shutting down sockets
[  352.544035][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  352.789970][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.792649][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.795482][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.798317][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.801107][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.803718][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.806676][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.809652][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.812358][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.816211][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.819875][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.823087][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.826769][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.829447][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.832386][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.835234][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.839191][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.842617][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.846001][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.849401][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.852803][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.855833][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.860023][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.863003][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.865856][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.868721][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.871928][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.875088][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.878780][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.880894][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.885044][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.887515][ T8347] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[  352.890519][ T8347] hid-generic 0000:0000:0000.0028: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  353.208948][T14163] openvswitch: netlink: ct_state flags 00004000 unsupported
[  353.583914][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  353.617859][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.622088][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.626682][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.631455][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.635968][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.641823][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.646767][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.654731][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.657086][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.668702][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.671135][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.673419][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.675450][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.680915][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.683651][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.687363][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.691887][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.695119][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.697764][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.699838][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.707472][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.709787][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.712070][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.714816][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.717014][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.719307][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.721530][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.723525][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.725660][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.727736][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.730554][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.732731][ T6006] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  353.735507][ T6006] hid-generic 0000:0000:0000.0029: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  353.943903][ T1011] usb 7-1: new high-speed USB device number 44 using dummy_hcd
[  354.096039][ T1011] usb 7-1: config 0 has no interfaces?
[  354.097907][ T1011] usb 7-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  354.101077][ T1011] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  354.105962][ T1011] usb 7-1: config 0 descriptor??
[  354.322583][ T1011] usb 7-1: USB disconnect, device number 44
[  354.396638][   T39] kauditd_printk_skb: 86 callbacks suppressed
[  354.396663][   T39] audit: type=1326 audit(354.552:14951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7fc00000
[  354.419085][   T39] audit: type=1326 audit(354.552:14952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc5579 code=0x7fc00000
[  354.429077][   T39] audit: type=1326 audit(354.552:14953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7fc00000
[  354.438459][   T39] audit: type=1326 audit(354.552:14954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7fc00000
[  354.443754][   T39] audit: type=1326 audit(354.552:14955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7fc00000
[  354.452450][   T39] audit: type=1326 audit(354.552:14956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7fc00000
[  354.463520][   T39] audit: type=1326 audit(354.552:14957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7fc00000
[  354.471676][   T39] audit: type=1326 audit(354.552:14958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7fc00000
[  354.479629][   T39] audit: type=1326 audit(354.552:14959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7fc00000
[  354.511692][   T39] audit: type=1326 audit(354.572:14960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7fc00000
[  354.614134][    C0] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  354.990710][T14199] openvswitch: netlink: Actions may not be safe on all matching packets
[  355.017843][T14199] ------------[ cut here ]------------
[  355.019744][T14199] WARNING: CPU: 2 PID: 14199 at net/mac80211/driver-ops.c:460 drv_link_info_changed+0x117/0x870
[  355.023039][T14199] Modules linked in:
[  355.024587][T14199] CPU: 2 UID: 0 PID: 14199 Comm: syz.2.2292 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  355.030068][T14199] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  355.033498][T14199] RIP: 0010:drv_link_info_changed+0x117/0x870
[  355.035483][T14199] Code: bf 77 0e f7 44 89 ff 48 c7 c6 00 68 9d 8c e8 50 7a 0e f7 41 83 ff 0b 77 0b b8 82 08 00 00 4c 0f a3 f8 72 0e e8 9a 77 0e f7 90 <0f> 0b 90 e9 61 03 00 00 e8 8c 77 0e f7 41 8d 47 f6 31 ff 83 e0 fd
[  355.040873][T14199] RSP: 0018:ffffc9000c5eeed8 EFLAGS: 00010287
[  355.042541][T14199] RAX: 000000000000080f RBX: ffff888063eaccc0 RCX: ffffc90003bc1000
[  355.044743][T14199] RDX: 0000000000040000 RSI: ffffffff8a7e4566 RDI: 0000000000000005
[  355.047026][T14199] RBP: ffff8880634e0e40 R08: 0000000000000005 R09: 000000000000000b
[  355.049721][T14199] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000200
[  355.052387][T14199] R13: 0000000000000200 R14: ffff888063eae920 R15: 0000000000000002
[  355.054839][T14199] FS:  0000000000000000(0000) GS:ffff88802b600000(0063) knlGS:00000000f5746b40
[  355.057278][T14199] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  355.059031][T14199] CR2: 00000000f5744c40 CR3: 00000000002b4000 CR4: 0000000000352ef0
[  355.061129][T14199] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  355.063233][T14199] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  355.065489][T14199] Call Trace:
[  355.066501][T14199]  <TASK>
[  355.067565][T14199]  ? __warn+0xea/0x3d0
[  355.068913][T14199]  ? drv_link_info_changed+0x117/0x870
[  355.070575][T14199]  ? report_bug+0x3c0/0x580
[  355.071959][T14199]  ? handle_bug+0x54/0xa0
[  355.073233][T14199]  ? exc_invalid_op+0x17/0x50
[  355.074644][T14199]  ? asm_exc_invalid_op+0x1a/0x20
[  355.075989][T14199]  ? drv_link_info_changed+0x116/0x870
[  355.077988][T14199]  ? drv_link_info_changed+0x117/0x870
[  355.079695][T14199]  ? drv_link_info_changed+0x116/0x870
[  355.081352][T14199]  ? __pfx_mac80211_hwsim_flush+0x10/0x10
[  355.082857][T14199]  ieee80211_link_info_change_notify+0x2c1/0x350
[  355.084956][T14199]  ieee80211_offchannel_stop_vifs+0x328/0x5b0
[  355.086679][T14199]  __ieee80211_start_scan+0x1089/0x1ce0
[  355.088446][T14199]  ? __pfx___ieee80211_start_scan+0x10/0x10
[  355.090357][T14199]  ieee80211_scan+0x1d2/0x330
[  355.091807][T14199]  cfg80211_scan+0x4be/0x730
[  355.093226][T14199]  ? ieee80211_get_num_supported_channels+0xa8/0x100
[  355.095587][T14199]  cfg80211_conn_scan+0x5cc/0xd00
[  355.097484][T14199]  cfg80211_connect+0x17f4/0x1f60
[  355.099277][T14199]  ? __pfx_cfg80211_connect+0x10/0x10
[  355.101135][T14199]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  355.103618][T14199]  ? nl80211_crypto_settings+0xbf3/0xf90
[  355.105891][T14199]  ? kasan_save_stack+0x33/0x60
[  355.107605][T14199]  ? kasan_save_track+0x14/0x30
[  355.109641][T14199]  nl80211_connect+0x1661/0x21f0
[  355.111670][T14199]  ? __pfx_nl80211_connect+0x10/0x10
[  355.113535][T14199]  ? __mutex_trylock_common+0xea/0x250
[  355.116033][T14199]  ? nl80211_pre_doit+0x1b0/0xb10
[  355.117936][T14199]  genl_family_rcv_msg_doit+0x202/0x2f0
[  355.119817][T14199]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  355.122009][T14199]  ? bpf_lsm_capable+0x9/0x10
[  355.123663][T14199]  ? security_capable+0x7e/0x260
[  355.125458][T14199]  ? ns_capable+0xd7/0x110
[  355.126861][T14199]  genl_rcv_msg+0x565/0x800
[  355.128537][T14199]  ? __pfx_genl_rcv_msg+0x10/0x10
[  355.130363][T14199]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  355.132503][T14199]  ? __pfx_nl80211_connect+0x10/0x10
[  355.134976][T14199]  ? __pfx_nl80211_post_doit+0x10/0x10
[  355.136908][T14199]  ? __pfx___lock_acquire+0x10/0x10
[  355.138614][T14199]  netlink_rcv_skb+0x165/0x410
[  355.140294][T14199]  ? __pfx_genl_rcv_msg+0x10/0x10
[  355.141808][T14199]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  355.143624][T14199]  ? down_read+0xc9/0x330
[  355.145083][T14199]  ? __pfx_down_read+0x10/0x10
[  355.146721][T14199]  ? netlink_deliver_tap+0x1ae/0xcf0
[  355.148489][T14199]  genl_rcv+0x28/0x40
[  355.149967][T14199]  netlink_unicast+0x53c/0x7f0
[  355.151845][T14199]  ? __pfx_netlink_unicast+0x10/0x10
[  355.154158][T14199]  ? __phys_addr_symbol+0x30/0x80
[  355.156183][T14199]  ? __check_object_size+0x488/0x710
[  355.158000][T14199]  netlink_sendmsg+0x8b8/0xd70
[  355.159401][T14199]  ? __pfx_netlink_sendmsg+0x10/0x10
[  355.161275][T14199]  ____sys_sendmsg+0x9ae/0xb40
[  355.162773][T14199]  ? __pfx_____sys_sendmsg+0x10/0x10
[  355.164685][T14199]  ? get_compat_msghdr+0x11b/0x170
[  355.166255][T14199]  ___sys_sendmsg+0x135/0x1e0
[  355.167770][T14199]  ? __pfx____sys_sendmsg+0x10/0x10
[  355.169365][T14199]  ? __pfx_lock_release+0x10/0x10
[  355.170691][T14199]  ? trace_lock_acquire+0x14a/0x1d0
[  355.172193][T14199]  ? __fget_files+0x206/0x3a0
[  355.173731][T14199]  __sys_sendmsg+0x16e/0x220
[  355.175564][T14199]  ? __pfx___sys_sendmsg+0x10/0x10
[  355.177484][T14199]  ? __ia32_sys_futex_time32+0x1da/0x460
[  355.179608][T14199]  __do_fast_syscall_32+0x73/0x120
[  355.181539][T14199]  do_fast_syscall_32+0x32/0x80
[  355.183284][T14199]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  355.185846][T14199] RIP: 0023:0xf7fc5579
[  355.187310][T14199] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  355.195648][T14199] RSP: 002b:00000000f574655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  355.199055][T14199] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0
[  355.201975][T14199] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  355.205081][T14199] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  355.207877][T14199] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  355.210693][T14199] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  355.213498][T14199]  </TASK>
[  355.214924][T14199] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  355.218103][T14199] CPU: 2 UID: 0 PID: 14199 Comm: syz.2.2292 Not tainted 6.12.0-syzkaller-00233-g9fb2cfa4635a #0
[  355.221566][T14199] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  355.224503][T14199] Call Trace:
[  355.225420][T14199]  <TASK>
[  355.226214][T14199]  dump_stack_lvl+0x3d/0x1f0
[  355.227429][T14199]  panic+0x71d/0x800
[  355.228559][T14199]  ? __pfx_panic+0x10/0x10
[  355.229807][T14199]  ? show_trace_log_lvl+0x29d/0x3d0
[  355.231314][T14199]  ? drv_link_info_changed+0x117/0x870
[  355.232916][T14199]  check_panic_on_warn+0xab/0xb0
[  355.234457][T14199]  __warn+0xf6/0x3d0
[  355.235699][T14199]  ? drv_link_info_changed+0x117/0x870
[  355.237244][T14199]  report_bug+0x3c0/0x580
[  355.238394][T14199]  handle_bug+0x54/0xa0
[  355.239520][T14199]  exc_invalid_op+0x17/0x50
[  355.240722][T14199]  asm_exc_invalid_op+0x1a/0x20
[  355.241998][T14199] RIP: 0010:drv_link_info_changed+0x117/0x870
[  355.243616][T14199] Code: bf 77 0e f7 44 89 ff 48 c7 c6 00 68 9d 8c e8 50 7a 0e f7 41 83 ff 0b 77 0b b8 82 08 00 00 4c 0f a3 f8 72 0e e8 9a 77 0e f7 90 <0f> 0b 90 e9 61 03 00 00 e8 8c 77 0e f7 41 8d 47 f6 31 ff 83 e0 fd
[  355.248654][T14199] RSP: 0018:ffffc9000c5eeed8 EFLAGS: 00010287
[  355.250269][T14199] RAX: 000000000000080f RBX: ffff888063eaccc0 RCX: ffffc90003bc1000
[  355.252468][T14199] RDX: 0000000000040000 RSI: ffffffff8a7e4566 RDI: 0000000000000005
[  355.254876][T14199] RBP: ffff8880634e0e40 R08: 0000000000000005 R09: 000000000000000b
[  355.257205][T14199] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000200
[  355.259391][T14199] R13: 0000000000000200 R14: ffff888063eae920 R15: 0000000000000002
[  355.261468][T14199]  ? drv_link_info_changed+0x116/0x870
[  355.262906][T14199]  ? drv_link_info_changed+0x116/0x870
[  355.264337][T14199]  ? __pfx_mac80211_hwsim_flush+0x10/0x10
[  355.265825][T14199]  ieee80211_link_info_change_notify+0x2c1/0x350
[  355.267398][T14199]  ieee80211_offchannel_stop_vifs+0x328/0x5b0
[  355.269039][T14199]  __ieee80211_start_scan+0x1089/0x1ce0
[  355.270486][T14199]  ? __pfx___ieee80211_start_scan+0x10/0x10
[  355.272001][T14199]  ieee80211_scan+0x1d2/0x330
[  355.273294][T14199]  cfg80211_scan+0x4be/0x730
[  355.274605][T14199]  ? ieee80211_get_num_supported_channels+0xa8/0x100
[  355.276627][T14199]  cfg80211_conn_scan+0x5cc/0xd00
[  355.278122][T14199]  cfg80211_connect+0x17f4/0x1f60
[  355.279598][T14199]  ? __pfx_cfg80211_connect+0x10/0x10
[  355.281028][T14199]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  355.282958][T14199]  ? nl80211_crypto_settings+0xbf3/0xf90
[  355.284392][T14199]  ? kasan_save_stack+0x33/0x60
[  355.285658][T14199]  ? kasan_save_track+0x14/0x30
[  355.286943][T14199]  nl80211_connect+0x1661/0x21f0
[  355.288215][T14199]  ? __pfx_nl80211_connect+0x10/0x10
[  355.289602][T14199]  ? __mutex_trylock_common+0xea/0x250
[  355.291051][T14199]  ? nl80211_pre_doit+0x1b0/0xb10
[  355.292354][T14199]  genl_family_rcv_msg_doit+0x202/0x2f0
[  355.293888][T14199]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  355.295729][T14199]  ? bpf_lsm_capable+0x9/0x10
[  355.297119][T14199]  ? security_capable+0x7e/0x260
[  355.298395][T14199]  ? ns_capable+0xd7/0x110
[  355.299607][T14199]  genl_rcv_msg+0x565/0x800
[  355.300814][T14199]  ? __pfx_genl_rcv_msg+0x10/0x10
[  355.302177][T14199]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  355.303730][T14199]  ? __pfx_nl80211_connect+0x10/0x10
[  355.305262][T14199]  ? __pfx_nl80211_post_doit+0x10/0x10
[  355.306887][T14199]  ? __pfx___lock_acquire+0x10/0x10
[  355.308425][T14199]  netlink_rcv_skb+0x165/0x410
[  355.309818][T14199]  ? __pfx_genl_rcv_msg+0x10/0x10
[  355.311195][T14199]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  355.312582][T14199]  ? down_read+0xc9/0x330
[  355.313735][T14199]  ? __pfx_down_read+0x10/0x10
[  355.314973][T14199]  ? netlink_deliver_tap+0x1ae/0xcf0
[  355.316366][T14199]  genl_rcv+0x28/0x40
[  355.317425][T14199]  netlink_unicast+0x53c/0x7f0
[  355.318644][T14199]  ? __pfx_netlink_unicast+0x10/0x10
[  355.320120][T14199]  ? __phys_addr_symbol+0x30/0x80
[  355.321429][T14199]  ? __check_object_size+0x488/0x710
[  355.322784][T14199]  netlink_sendmsg+0x8b8/0xd70
[  355.324090][T14199]  ? __pfx_netlink_sendmsg+0x10/0x10
[  355.325447][T14199]  ____sys_sendmsg+0x9ae/0xb40
[  355.326846][T14199]  ? __pfx_____sys_sendmsg+0x10/0x10
[  355.328457][T14199]  ? get_compat_msghdr+0x11b/0x170
[  355.330186][T14199]  ___sys_sendmsg+0x135/0x1e0
[  355.331623][T14199]  ? __pfx____sys_sendmsg+0x10/0x10
[  355.333100][T14199]  ? __pfx_lock_release+0x10/0x10
[  355.334428][T14199]  ? trace_lock_acquire+0x14a/0x1d0
[  355.335903][T14199]  ? __fget_files+0x206/0x3a0
[  355.337174][T14199]  __sys_sendmsg+0x16e/0x220
[  355.338418][T14199]  ? __pfx___sys_sendmsg+0x10/0x10
[  355.339757][T14199]  ? __ia32_sys_futex_time32+0x1da/0x460
[  355.341236][T14199]  __do_fast_syscall_32+0x73/0x120
[  355.342605][T14199]  do_fast_syscall_32+0x32/0x80
[  355.343904][T14199]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  355.345721][T14199] RIP: 0023:0xf7fc5579
[  355.346944][T14199] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  355.352723][T14199] RSP: 002b:00000000f574655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  355.355004][T14199] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0
[  355.357216][T14199] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  355.359287][T14199] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  355.361356][T14199] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  355.363455][T14199] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  355.365730][T14199]  </TASK>
[  355.367232][T14199] Kernel Offset: disabled
[  355.368621][T14199] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:40:07  Registers:
info registers vcpu 0

CPU#0
RAX=00000002000008fd RBX=ffff88802112a440 RCX=0000000000000830 RDX=0000000000000002
RSI=00000000000000fd RDI=0000000000000002 RBP=0000000000000001 RSP=ffffc9000d50f918
R8 =0000000000000000 R9 =fffffbfff203a591 R10=ffffffff901d2c8f R11=0000000000000000
R12=1ffff92001aa1f24 R13=ffffc9000d50f940 R14=ffff88802b53fcd0 R15=ffff88801bb8c880
RIP=ffffffff813bb068 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020f95000 CR3=0000000012b40000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=ffff88802b43eec0 RCX=0000000000000100 RDX=0000000000000001
RSI=0000000000000004 RDI=ffff88802b43eec2 RBP=dffffc0000000000 RSP=ffffc90000477a88
R8 =0000000000000001 R9 =ffffed1005687dd8 R10=ffff88802b43eec3 R11=0000000000000000
R12=0000000000000000 R13=0000000000007f85 R14=ffff88802b53fe00 R15=ffffed1005687dd8
RIP=ffffffff8b1805b5 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020017000 CR3=0000000012b40000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85053f45 RDI=ffffffff9a6493e0 RBP=ffffffff9a6493a0 RSP=ffffc9000c5ee838
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000033 R14=ffffffff85053ee0 R15=0000000000000000
RIP=ffffffff85053f6f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5744c40 CR3=00000000002b4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000006f9a8b RBX=0000000000000003 RCX=ffffffff8b157a59 RDX=0000000000000000
RSI=ffffffff8b4cca20 RDI=ffffffff8bb14d00 RBP=ffffed1003774488 RSP=ffffc90000497e08
R8 =0000000000000001 R9 =ffffed10056e7025 R10=ffff88802b73812b R11=0000000000000000
R12=0000000000000003 R13=ffff88801bba2440 R14=ffffffff901d2c88 R15=0000000000000000
RIP=ffffffff8b158e3f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000303f4ff8 CR3=00000000002b4000 CR4=00352ef0
DR0=0000000000000006 DR1=000000000000000e DR2=ffffffff00000001 DR3=0000000000000862 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000