last executing test programs:

2m23.4267415s ago: executing program 1 (id=116):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000040), 0xc)
r1 = socket$qrtr(0x2a, 0x2, 0x0) (async)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6_dccp(0xa, 0x6, 0x0)
userfaultfd(0x80001)
socket$nl_generic(0x10, 0x3, 0x10)
connect$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$RTC_PIE_ON(r3, 0x7005)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0x2, [{0x0, 0xbf}, {}, {0x0, 0xfffffffe}, {0x1}, {}, {0x2, 0x5}], 0x0, 0x0, 0x8, 0x0, 0x1}}) (async)
prlimit64(0x0, 0x6, &(0x7f00000000c0)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (async)
ioctl$NBD_SET_SOCK(0xffffffffffffffff, 0xab00, 0xffffffffffffffff)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000380)={0x3ff}, 0x0, 0x0) (async)
listen(r2, 0x2) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) (async)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc) (async)
ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f00000003c0)={0x0, @can, @llc={0x1a, 0x306, 0x8, 0x7, 0xe, 0xf, @local}, @rc={0x1f, @any, 0x8}, 0x7f, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x5, 0x1, 0x9}) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) (async)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(0xffffffffffffffff, 0x343d, 0x0, 0x2b, 0x0, 0x0) (async)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
syz_open_dev$video4linux(&(0x7f00000006c0), 0x65a, 0x0)

2m23.329490979s ago: executing program 1 (id=118):
r0 = socket$pppoe(0x18, 0x1, 0x0)
fcntl$getflags(r0, 0x40a)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
syz_io_uring_setup(0xb1c, &(0x7f0000000300)={0x0, 0x6568, 0x2, 0x3, 0x223, 0x0, r2}, &(0x7f0000000280), &(0x7f0000000380))
write$char_usb(r2, &(0x7f00000008c0)='-', 0x1)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000004f80), r1)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat$ocfs2_control(0xffffff9c, &(0x7f0000000200), 0x101100, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r4, &(0x7f0000006840)={0x2020, 0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
inotify_init()
openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0), 0x48001, 0x0)
write$FUSE_INIT(r4, &(0x7f0000004200)={0x50, 0x0, r5}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x3, {0x5, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, {0x0, 0x2000000000, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x4, 0x2000, 0x7, r6, 0x0, 0xf0ee, 0xffffffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
open(&(0x7f00000001c0)='./file0/file0\x00', 0x1800, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000240)={'wg1\x00'})
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000005440)={0x0, 0x0, &(0x7f0000005400)={&(0x7f0000005340)={0x14, r3, 0x1, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x200000d0}, 0x4010)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x8, 0x2c, 0x0, @remote, @local, {[], {{0x3a00, 0x5, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

2m22.448839325s ago: executing program 1 (id=121):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r6, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x5, 0x0, 0x2, 0x0, 0xffffffff], [0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x45c)
ioctl$UI_SET_EVBIT(r6, 0x40045564, 0x11)
ioctl$UI_DEV_CREATE(r6, 0x5501)
preadv(r5, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f00000001c0)='\x00', &(0x7f0000000240)='{}k%@\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
gettid()
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x7c}}, 0x10)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000640)={&(0x7f0000000500), 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x58, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x80}, 0xc854)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)

2m21.441702977s ago: executing program 1 (id=123):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$unix(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, 0x0, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x15, 0x4, &(0x7f0000000400)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x400, 0x0, 0x0, 0x41000, 0x70, '\x00', 0x0, @sk_reuseport=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x30, 0xe1515f8735398f3, @val=@uprobe_multi={&(0x7f0000000100)='./file0\x00', 0x0, &(0x7f0000000400)=[0x5, 0x3], 0x0, 0x0, 0x1}}, 0x3c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000440)=ANY=[@ANYRESDEC=r0], 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x10, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000, @void, @value}, 0x94)
mknodat(r1, &(0x7f00000001c0)='./file0\x00', 0x120, 0xc)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
r4 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2a, 0x0, 0x0)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8000}, &(0x7f0000000480)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000004c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x2001})
io_uring_enter(r5, 0x8aa, 0x39, 0x0, 0x0, 0x0)

2m21.09080323s ago: executing program 1 (id=126):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000640)=0x13)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x12, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000ffffffff9500"/40], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1607010, 0x0)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x87, r2}, './file0\x00'})
ioctl$TCXONC(r0, 0x540a, 0x3)

2m21.09053102s ago: executing program 1 (id=127):
mount$9p_virtio(0x0, 0x0, 0x0, 0x40000, &(0x7f0000000180)={'trans=virtio,', {[{@msize={'msize', 0x3d, 0x7}}], [{@smackfsdef={'smackfsdef', 0x3d, '\xfd#.]'}}, {@dont_appraise}, {@obj_role={'obj_role', 0x3d, '\xcf{{'}}]}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
io_setup(0x27, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
syz_open_dev$sg(&(0x7f0000000380), 0x0, 0x80000)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
openat$rfkill(0xffffff9c, &(0x7f0000000140), 0x800, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f0000001b40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r4}, 0x18)
prctl$PR_SET_THP_DISABLE(0x29, 0xdffffffffffffffe)
sendfile(r3, 0xffffffffffffffff, &(0x7f00000000c0)=0x8e, 0x180000504)
bind$bt_sco(0xffffffffffffffff, &(0x7f0000000080)={0x1f, @none}, 0x8)
syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
r5 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x121201, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r5, 0x5001, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x14, 0x6, 0x1, 0x201, 0x0, 0x0, {0xa, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x4008044}, 0x40000)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="37b66f529e", @ANYRES16=r7, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r9, @ANYBLOB="0c0070000500080010000000"], 0x28}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)

2m6.02060854s ago: executing program 32 (id=127):
mount$9p_virtio(0x0, 0x0, 0x0, 0x40000, &(0x7f0000000180)={'trans=virtio,', {[{@msize={'msize', 0x3d, 0x7}}], [{@smackfsdef={'smackfsdef', 0x3d, '\xfd#.]'}}, {@dont_appraise}, {@obj_role={'obj_role', 0x3d, '\xcf{{'}}]}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
io_setup(0x27, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
syz_open_dev$sg(&(0x7f0000000380), 0x0, 0x80000)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
openat$rfkill(0xffffff9c, &(0x7f0000000140), 0x800, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f0000001b40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0, r4}, 0x18)
prctl$PR_SET_THP_DISABLE(0x29, 0xdffffffffffffffe)
sendfile(r3, 0xffffffffffffffff, &(0x7f00000000c0)=0x8e, 0x180000504)
bind$bt_sco(0xffffffffffffffff, &(0x7f0000000080)={0x1f, @none}, 0x8)
syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
r5 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x121201, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r5, 0x5001, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x14, 0x6, 0x1, 0x201, 0x0, 0x0, {0xa, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x4008044}, 0x40000)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="37b66f529e", @ANYRES16=r7, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r9, @ANYBLOB="0c0070000500080010000000"], 0x28}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)

1m31.389975473s ago: executing program 0 (id=446):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
timer_create(0x0, 0x0, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
clock_nanosleep(0x7, 0x0, &(0x7f0000000080)={0x77359400}, 0x0)
rt_sigaction(0x10, &(0x7f0000000400)={0x0, 0x80000000, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000540))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa30f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x4e21, @broadcast}}}, 0x2e)
r2 = io_uring_setup(0x1cd5, &(0x7f0000000440)={0x0, 0x1, 0x40, 0x0, 0xfffffffe})
io_uring_setup(0x89a, &(0x7f0000000580)={0x0, 0x6bea, 0x1000, 0x1, 0xc2})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x1e, 0x20000002, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
ioprio_set$uid(0x3, 0x0, 0x6000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000002000000000000000000000075000024899c4f6505d5d900277ceb000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
listen(0xffffffffffffffff, 0x20000005)
r3 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty, 0x4}, 0x1c)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='wg0\x00', 0x10)
r4 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x2, 0x0, 0x6000, 0x2000, &(0x7f000094d000/0x2000)=nil})
syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1m30.290640359s ago: executing program 0 (id=451):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf84, 0x3}, 0x1c)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0xf000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1m30.139465857s ago: executing program 0 (id=452):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)
acct(&(0x7f0000000100)='./file0/bus\x00')
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r3, @ANYBLOB="00000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000600)=@newlink={0x40, 0x10, 0x439, 0x70bd2c, 0xffffffea, {0x0, 0x0, 0xe403, r4, 0x40083, 0x20018}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_FLAGS={0x6, 0x10, 0x8001}, @IFLA_IPTUN_TTL={0x5, 0x4, 0x1}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x4000040)
acct(&(0x7f0000000700)='./file0/bus\x00')
syz_emit_ethernet(0x44, &(0x7f0000000280)={@link_local, @dev, @val={@void, {0x8100, 0x4, 0x1, 0x2}}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x32, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @dev={0xac, 0x14, 0x14, 0x26}}, @parameter_prob={0xc, 0x0, 0x0, 0xd, 0xff, 0x0, {0x5, 0x4, 0x2, 0xe, 0xab51, 0x64, 0x5, 0x8, 0x73, 0xab9, @rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x0, 0x0}}, 'B.'}}}}}, 0x0)

1m30.139046156s ago: executing program 0 (id=453):
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r1=>0x0})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r2, 0xc0bc5310, &(0x7f0000000300)={0x80000001, 0x1, 0x0, 'queue0\x00', 0x3}) (async)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r2, 0xc0bc5310, &(0x7f0000000300)={0x80000001, 0x1, 0x0, 'queue0\x00', 0x3})
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r3) (async)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001980)={0xc, {"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", 0x5c1}}, 0x505) (async)
write$UHID_INPUT(r4, &(0x7f0000001980)={0xc, {"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", 0x5c1}}, 0x505)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x4, &(0x7f0000000400)=ANY=[@ANYRESHEX=r2], &(0x7f0000000200)='syzkaller\x00', 0xece, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, 0x24, r4, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000bc0)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000bc0)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x50)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000080eff957599ef57c5bb879a251f08e5773bf43ac528f6c72a6574d497c206f3aedb5f9b170582d7ee701992347960597cba3d6cc8c6e8456618060f929ccb660f1f0d0b0886d430fef298c23f5ab58235edae58354a5654d7cd244bccb0d2e7627879a41699b2222f85391c79722b8cacaae8c52ede9f230b2668"], &(0x7f0000000040)='GPL\x00', 0x200000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r8}, 0x10)
r9 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r9, 0x6, 0x24, &(0x7f0000000000)=0x1, 0x4) (async)
setsockopt$inet6_tcp_int(r9, 0x6, 0x24, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r9, &(0x7f0000000380)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000140)=<r10=>0x0)
sched_setaffinity(r10, 0x8, &(0x7f0000000180)=0x40)
recvmmsg(r9, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0}, 0x500}, {{0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000000980)=""/4096, 0x1000}], 0x1}}], 0x2, 0x40010101, 0x0)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r11, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="14000000", @ANYRES16=r12, @ANYBLOB="19004de2f9e467110eb9cff462267525c3e8ae52a10f487e447cfc249d6fde930dc8fd5ec4dc3dde5e1b2ae7104d64324f82638b4f4114eed55e11158a0e59ace5cc7982fd0c3bcc76bdb8420e9ab93537210d4f1af72b7a39e1bc7544a8935a2d19a79aaaa6bef2c83f41df23f1f9d2be46732f7b7896d631e7fd7c0964be67765e02b2f79c248de80b0bc7e70aa5a9af3827a388fb2ef27ef9575f5b9a658aad9039df030e19e072870edaaf6cd75deec7b94a06a304347611937bee97324e8b1f28d1d22a0af4f0"], 0x14}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) (async)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x100000, 0x0) (async)
mount$bind(0x0, &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f00000006c0)='./file0/file0\x00', 0x0, 0x9101a, 0x0) (async)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f00000006c0)='./file0/file0\x00', 0x0, 0x9101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0) (async)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x3041008, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r7, 0x84, 0x6b, &(0x7f0000000100)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010025bd7000fedbdf250c00000008000300", @ANYRES32=r1, @ANYBLOB="040050801c00508005000200000000000800070007e49dddea68679c845f6c39bfe47801000000080007000000cd3a4ccbb01d3449110000000000"], 0x48}, 0x1, 0x0, 0x0, 0x4480}, 0x20000000)

1m29.231115859s ago: executing program 0 (id=458):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x23c, &(0x7f0000000380)={0x0, 0x1ffefe, 0x10100, 0x7ffff}, &(0x7f0000000200)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="180000005500e5010000000000", @ANYRES32=0x0], 0x18}}, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {}, 0x1})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb010018000000000000001000000010050000020000000000000000000001000000000000001c"], 0x0, 0x2a, 0x0, 0xa, 0x0, 0x0, @void, @value}, 0x28)
io_uring_enter(r2, 0x2ded, 0x25d2, 0x0, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$inet6(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @loopback, 0x580d5476}, 0x1c)
sendto$inet6(r6, 0x0, 0x0, 0xfffffeffffff7f7e, &(0x7f0000000140)={0xa, 0x4e20, 0xffffffff, @loopback}, 0x1c)
sendmsg$inet(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000380)="98e9", 0x2}], 0x1}, 0x8001)
sendto(r6, &(0x7f0000000640)="a80e9c09f5ff75e705", 0xffffffffffffffae, 0x20000800, 0x0, 0x0)

1m28.967968511s ago: executing program 0 (id=462):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_DEV_CREATE(r6, 0x5501)
preadv(r5, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f00000001c0)='\x00', &(0x7f0000000240)='{}k%@\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
gettid()
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x7c}}, 0x10)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000640)={&(0x7f0000000500), 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x58, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x80}, 0xc854)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)

1m28.911663314s ago: executing program 33 (id=462):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_DEV_CREATE(r6, 0x5501)
preadv(r5, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f00000001c0)='\x00', &(0x7f0000000240)='{}k%@\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
gettid()
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x7c}}, 0x10)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000640)={&(0x7f0000000500), 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x58, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x80}, 0xc854)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)

4.320588633s ago: executing program 2 (id=1067):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r0, &(0x7f0000001380)=[{{&(0x7f00000003c0)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000000980)=[{&(0x7f0000000580)="da8350d419904f5be6298dfb009c742c98261f4b66fff9e908588f7dbd0ad668507c99de58734eca3b195404611fa1a6d93fea81fcafa39bf5c0a4b71721844d8a018d45dc0ee4043d43fde078473423c029dfe46fff0ff1bb7244a698818adaa9be97a7251cdeef49f34528177748fa9b36ed57ca4d0b79b8f754d71f67b290ba46bf9ce2fa72fc907bca297624e532d5947a8b85c88952502217003c3f026e7cc0962ef5ae893603102aea47974107adecb4b06e14b975bd688eddbde4b6028225d12ae6d8297149ac467ee367831d357834d1deb8f4f0", 0xd8}], 0x1, &(0x7f00000015c0)=[@ip_ttl={{0x10}}, @ip_retopts={{0xc}}, @ip_retopts={{0xe4, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x4, 0x8f}, @timestamp_addr={0x44, 0x44, 0x6a, 0x1, 0x4, [{@rand_addr=0x64010101, 0x7}, {@rand_addr=0x64010101, 0xbc83}, {@private=0xa010102, 0x8}, {@loopback, 0xfffffffb}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}, {@multicast1, 0x8}, {@multicast1, 0x66f1}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x44}]}, @lsrr={0x83, 0x1b, 0xe6, [@rand_addr=0x64010100, @multicast1, @multicast2, @dev={0xac, 0x14, 0x14, 0xb}, @dev={0xac, 0x14, 0x14, 0x29}, @loopback]}, @timestamp_prespec={0x44, 0x14, 0xbc, 0x3, 0x0, [{@broadcast, 0x9}, {@multicast2, 0x6}]}, @cipso={0x86, 0x24, 0x3, [{0x0, 0x9, "51481d5ab9f5a9"}, {0x1, 0x5, "d1701b"}, {0x2, 0x10, "fd230ca139ecb0dfc9129988b8d8"}]}, @generic={0x1b, 0xa, "3527e04a4ba6a498"}, @timestamp_prespec={0x44, 0xc, 0xb6, 0x3, 0xc, [{@private=0xa010102}]}, @timestamp_prespec={0x44, 0x14, 0xd3, 0x3, 0xc, [{@empty, 0x7fff}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x1000}]}, @timestamp={0x44, 0x10, 0x7e, 0x0, 0x9, [0x3, 0x4, 0xb]}]}}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0x1}}, @ip_ttl={{0x10, 0x0, 0x2, 0x54eb}}], 0x120}}, {{&(0x7f0000000440)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000680)=[{&(0x7f0000000b40)="6903c2e024959c992b6d7b357e84d924a3f4c350d0ce5eeb8dac4327827758c9586c207044b5444e4b58d1e48575a88c88cb33eb16b50a811e4ba1a41ac304f09c215f48462c47d3eeef7bd44d403a1dfbb8c79e1b5de61be44177ee10d2b8e4f4e428c1807a173500347feebea15f52c488cb64782f7cbd0abcdd83f969b0c319d67af525e3d0962e6275d7ffdc4d54838655fedc53eb351891ea0562045d0b9ddbdfc226b8161759bec34f36f9412caec13a8208e88535e9f84ed6fe618457e1984f2f34c9501b9109bfdcaebe6f2e1e828d771d9f4e47f37812ad5feb", 0xde}], 0x1, &(0x7f00000006c0)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x8}}], 0x10}}, {{&(0x7f0000000700)={0x2, 0x4e20, @loopback}, 0x10, &(0x7f0000000e40)=[{&(0x7f0000000c40)="5657cbdf684f0f64ccd25d681a4902af53e3dff88c513c8adb47e20f8cff0193f15e1b3811231401896b65c70609d687530ee3409bd6154b87f88969e8697fb377f32c3edd55c51e0c090fefb0406a7c28a3b9518199cbb58925fca52d73d9fb50705af502cfbfc335c83dc2e8091ded6e6da503759e372075a1506a405d56fa319ca6e9069048f448bcc46bf4fd757c4442411545c295ccadf4fd7383473150f78c72e456f9a33b0c26bc979f2a2aed187198c853dcf86899e78f6dd71cd85427d78f351cd68899326540e71d9cc0d3ff1c92dd730d323d1807ad1e9e7b30e3d58c28226eced77c846eb2736f51539c137ad187976a94d0", 0xf8}, {&(0x7f0000000a40)="76b024709d41e5694ca7ec0972fd72ee6996e8d5b5bef540a61cec8f18940531d66d9dc1a41b720269053af7fe4a9f52fa3ff879b56784be72ff6ff3e5f727048c33ccd73b688cc52df32ad77344c55b6227899dae3947cdebce49ed482c59e87991fb221a86c4ef7a86c16d6f0d460365a8ef53fd91ec0a85627e053e480fede0b7", 0x82}, {&(0x7f0000000d40)="bccd5833b0b9c5ba98cd6ba9d661ce9bb076ebf141d774ce69f1484d3727e98b324fc36061e766b08fb2e49995e290777c3f6061d4d1cef07c4743b84f66c9464bfe8c7d09caca083b52cb835200dd58cf3e0c906a9bc5473a92b7056fe90039027bda9c9951912ba7c8cac7f4197155c6a6225684e4a5d658d1c336f9c45030f0feb0e9188270f7d5558b20518fe7975658fdc20a6a3c406c3e9e9d2ad16bde9d442b299e6bc28e79185c136fbdccf66e6b8e9473c517a5bcb9cd717dcc6f9654b5cbb1ea111c53d14839a7c5c636c658c1375471414668076a2f629ae081f4060427353bddadb91a8ac103c2", 0xed}], 0x3, &(0x7f0000000e80)=[@ip_retopts={{0xc}}], 0xc}}, {{&(0x7f0000000f00)={0x2, 0x4e24, @private=0xa010102}, 0x10, &(0x7f0000001300)=[{&(0x7f0000000f40)="78502820b2fd1569636124b269a188c603c511ea09de64c3633c29e40e6ee58e199993046fa5ad25bb39eba56afa2f219e37d0a9da952737fa8e9fa0a282968dfc624b419b146f2c3cc3d1698211253d631c7fe214d354bee9cc366478abc10ede417bb444daf6d3c64b709540ea46aa4421caf542bf4b602fa08438c5e900d0c2b6c3c096e809ea9588", 0x8a}, {&(0x7f0000001000)="c91a1f248b9c5d77b5ad390ac0c1c89b3ac1cc001de03949130e855fdcb0044d8d5cc88312344f22dbc1f272f3b0bc2bd61e662706679cab37d9f10001606b6fcdf25c97e136d1dc13a69bc0d81c5b10050c24b2bbe0fb840e1535926cb043ac86e06869ea9581f9ff4b4b35d3ec7098933ea4f207c4dfadf1053ed0319f9de6a8429a5f4a1e189df941ceb8ca2a6afd672e05d0ce9019255baae815631a82b44d7b75f8b55eda3e015db295a53924a8e5d4cbbbefc9fc50a25fee2b14fff46648a5ed12e108219a6dd8a6250114015981c10f56e58c76b76a5e741079b4cdbad1a98419487dbb20827993", 0xeb}, {&(0x7f00000011c0)="c4b118b6cabd5f2a772a748e96ab446ddd3d0009b5790b7e9fec76f429ea0d081df5deaefd517d69d6a0d31e3d3a02ba1eb0d63b084ab37da2e248c4d567cf95541c2dc1b1395ec33b9f5fc21dac4dec60cda834cce93d204862a6b4a81a58bded969116ed6f8d0ffd3dbd74f68fc9697eec7bf23d38cc7b86d9def7e78917bcc3837ed82235356f33e26b4f57baf6a823378609bc90d49e8f51fdf8b3ce5602adb50dcb65393f6310ba615651f5a9e8985c8523f13309706fe13c1799a26cd87a28c3f45a4716a6041a7d121e0eb208", 0xd0}, {&(0x7f00000012c0)="a546f8edce842e52bebbe4bf03f11a6452388a93a3d4bdea5b8904bc51ec8d294919acaa7f4e791a738601c4", 0x2c}], 0x4, &(0x7f0000001340)=[@ip_retopts={{0x20, 0x0, 0x7, {[@lsrr={0x83, 0x13, 0xb5, [@loopback, @empty, @loopback, @broadcast]}]}}}], 0x20}}], 0x4, 0x24008054)

4.209658188s ago: executing program 2 (id=1068):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$unix(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, 0x0, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x15, 0x4, &(0x7f0000000400)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x400, 0x0, 0x0, 0x41000, 0x70, '\x00', 0x0, @sk_reuseport=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x30, 0xe1515f8735398f3, @val=@uprobe_multi={&(0x7f0000000100)='./file0\x00', 0x0, &(0x7f0000000400)=[0x5, 0x3], 0x0, 0x0, 0x1}}, 0x3c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000440)=ANY=[@ANYRESDEC=r0], 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x10, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000, @void, @value}, 0x94)
mknodat(r1, &(0x7f00000001c0)='./file0\x00', 0x120, 0xc)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
r4 = syz_open_dev$vim2m(&(0x7f0000000140), 0x0, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0d05605, &(0x7f0000001600)={0x1, @win={{0x3, 0x0, 0x2, 0x21}, 0x7, 0x8, 0x0, 0x0, 0x0, 0x5}})
r5 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x108)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8000}, &(0x7f0000000480)=<r7=>0x0, &(0x7f0000000200)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000004c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x2001})
io_uring_enter(r6, 0x8aa, 0x39, 0x0, 0x0, 0x0)

3.68647364s ago: executing program 2 (id=1076):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r0, &(0x7f0000001380)=[{{&(0x7f00000003c0)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000000980)=[{&(0x7f0000000580)="da8350d419904f5be6298dfb009c742c98261f4b66fff9e908588f7dbd0ad668507c99de58734eca3b195404611fa1a6d93fea81fcafa39bf5c0a4b71721844d8a018d45dc0ee4043d43fde078473423c029dfe46fff0ff1bb7244a698818adaa9be97a7251cdeef49f34528177748fa9b36ed57ca4d0b79b8f754d71f67b290ba46bf9ce2fa72fc907bca297624e532d5947a8b85c88952502217003c3f026e7cc0962ef5ae893603102aea47974107adecb4b06e14b975bd688eddbde4b6028225d12ae6d8297149ac467ee367831d357834d1deb8f4f0", 0xd8}], 0x1, &(0x7f00000015c0)=[@ip_ttl={{0x10}}, @ip_retopts={{0xc}}, @ip_retopts={{0xe4, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x4, 0x8f}, @timestamp_addr={0x44, 0x44, 0x6a, 0x1, 0x4, [{@rand_addr=0x64010101, 0x7}, {@rand_addr=0x64010101, 0xbc83}, {@private=0xa010102, 0x8}, {@loopback, 0xfffffffb}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}, {@multicast1, 0x8}, {@multicast1, 0x66f1}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x44}]}, @lsrr={0x83, 0x1b, 0xe6, [@rand_addr=0x64010100, @multicast1, @multicast2, @dev={0xac, 0x14, 0x14, 0xb}, @dev={0xac, 0x14, 0x14, 0x29}, @loopback]}, @timestamp_prespec={0x44, 0x14, 0xbc, 0x3, 0x0, [{@broadcast, 0x9}, {@multicast2, 0x6}]}, @cipso={0x86, 0x24, 0x3, [{0x0, 0x9, "51481d5ab9f5a9"}, {0x1, 0x5, "d1701b"}, {0x2, 0x10, "fd230ca139ecb0dfc9129988b8d8"}]}, @generic={0x1b, 0xa, "3527e04a4ba6a498"}, @timestamp_prespec={0x44, 0xc, 0xb6, 0x3, 0xc, [{@private=0xa010102}]}, @timestamp_prespec={0x44, 0x14, 0xd3, 0x3, 0xc, [{@empty, 0x7fff}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x1000}]}, @timestamp={0x44, 0x10, 0x7e, 0x0, 0x9, [0x3, 0x4, 0xb]}]}}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0x1}}, @ip_ttl={{0x10, 0x0, 0x2, 0x54eb}}], 0x120}}, {{&(0x7f0000000440)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000680)=[{&(0x7f0000000b40)="6903c2e024959c992b6d7b357e84d924a3f4c350d0ce5eeb8dac4327827758c9586c207044b5444e4b58d1e48575a88c88cb33eb16b50a811e4ba1a41ac304f09c215f48462c47d3eeef7bd44d403a1dfbb8c79e1b5de61be44177ee10d2b8e4f4e428c1807a173500347feebea15f52c488cb64782f7cbd0abcdd83f969b0c319d67af525e3d0962e6275d7ffdc4d54838655fedc53eb351891ea0562045d0b9ddbdfc226b8161759bec34f36f9412caec13a8208e88535e9f84ed6fe618457e1984f2f34c9501b9109bfdcaebe6f2e1e828d771d9f4e47f37812ad5feb", 0xde}], 0x1, &(0x7f00000006c0)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x8}}], 0x10}}, {{&(0x7f0000000700)={0x2, 0x4e20, @loopback}, 0x10, &(0x7f0000000e40)=[{&(0x7f0000000c40)="5657cbdf684f0f64ccd25d681a4902af53e3dff88c513c8adb47e20f8cff0193f15e1b3811231401896b65c70609d687530ee3409bd6154b87f88969e8697fb377f32c3edd55c51e0c090fefb0406a7c28a3b9518199cbb58925fca52d73d9fb50705af502cfbfc335c83dc2e8091ded6e6da503759e372075a1506a405d56fa319ca6e9069048f448bcc46bf4fd757c4442411545c295ccadf4fd7383473150f78c72e456f9a33b0c26bc979f2a2aed187198c853dcf86899e78f6dd71cd85427d78f351cd68899326540e71d9cc0d3ff1c92dd730d323d1807ad1e9e7b30e3d58c28226eced77c846eb2736f51539c137ad187976a94d0", 0xf8}, {&(0x7f0000000a40)="76b024709d41e5694ca7ec0972fd72ee6996e8d5b5bef540a61cec8f18940531d66d9dc1a41b720269053af7fe4a9f52fa3ff879b56784be72ff6ff3e5f727048c33ccd73b688cc52df32ad77344c55b6227899dae3947cdebce49ed482c59e87991fb221a86c4ef7a86c16d6f0d460365a8ef53fd91ec0a85627e053e480fede0b7", 0x82}, {&(0x7f0000000d40)="bccd5833b0b9c5ba98cd6ba9d661ce9bb076ebf141d774ce69f1484d3727e98b324fc36061e766b08fb2e49995e290777c3f6061d4d1cef07c4743b84f66c9464bfe8c7d09caca083b52cb835200dd58cf3e0c906a9bc5473a92b7056fe90039027bda9c9951912ba7c8cac7f4197155c6a6225684e4a5d658d1c336f9c45030f0feb0e9188270f7d5558b20518fe7975658fdc20a6a3c406c3e9e9d2ad16bde9d442b299e6bc28e79185c136fbdccf66e6b8e9473c517a5bcb9cd717dcc6f9654b5cbb1ea111c53d14839a7c5c636c658c1375471414668076a2f629ae081f4060427353bddadb91a8ac103c2", 0xed}], 0x3, &(0x7f0000000e80)=[@ip_retopts={{0xc}}], 0xc}}, {{&(0x7f0000000f00)={0x2, 0x4e24, @private=0xa010102}, 0x10, &(0x7f0000001300)=[{&(0x7f0000000f40)="78502820b2fd1569636124b269a188c603c511ea09de64c3633c29e40e6ee58e199993046fa5ad25bb39eba56afa2f219e37d0a9da952737fa8e9fa0a282968dfc624b419b146f2c3cc3d1698211253d631c7fe214d354bee9cc366478abc10ede417bb444daf6d3c64b709540ea46aa4421caf542bf4b602fa08438c5e900d0c2b6c3c096e809ea9588", 0x8a}, {&(0x7f0000001000)="c91a1f248b9c5d77b5ad390ac0c1c89b3ac1cc001de03949130e855fdcb0044d8d5cc88312344f22dbc1f272f3b0bc2bd61e662706679cab37d9f10001606b6fcdf25c97e136d1dc13a69bc0d81c5b10050c24b2bbe0fb840e1535926cb043ac86e06869ea9581f9ff4b4b35d3ec7098933ea4f207c4dfadf1053ed0319f9de6a8429a5f4a1e189df941ceb8ca2a6afd672e05d0ce9019255baae815631a82b44d7b75f8b55eda3e015db295a53924a8e5d4cbbbefc9fc50a25fee2b14fff46648a5ed12e108219a6dd8a6250114015981c10f56e58c76b76a5e741079b4cdbad1a98419487dbb20827993", 0xeb}, {0x0}, {&(0x7f00000011c0)="c4b118b6cabd5f2a772a748e96ab446ddd3d0009b5790b7e9fec76f429ea0d081df5deaefd517d69d6a0d31e3d3a02ba1eb0d63b084ab37da2e248c4d567cf95541c2dc1b1395ec33b9f5fc21dac4dec60cda834cce93d204862a6b4a81a58bded969116ed6f8d0ffd3dbd74f68fc9697eec7bf23d38cc7b86d9def7e78917bcc3837ed82235356f33e26b4f57baf6a823378609bc90d49e8f51fdf8b3ce5602adb50dcb65393f6310ba615651f5a9e8985c8523f13309706fe13c1799a26cd87a28c3f45a4716a6041a7d121e0eb208", 0xd0}, {&(0x7f00000012c0)="a546f8edce842e52bebbe4bf03f11a6452388a93a3d4bdea5b8904bc51ec8d294919acaa7f4e791a738601c4", 0x2c}], 0x5, &(0x7f0000001340)=[@ip_retopts={{0x20, 0x0, 0x7, {[@lsrr={0x83, 0x13, 0xb5, [@loopback, @empty, @loopback, @broadcast]}]}}}], 0x20}}], 0x4, 0x24008054)

3.686172776s ago: executing program 2 (id=1077):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0xf00, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x1c, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x18, 0x10}, @TCA_FQ_FLOW_MAX_RATE={0x2, 0x2}, @TCA_FQ_QUANTUM={0xffffffffffffff0f}]}}]}, 0x48}}, 0x0)

3.629821844s ago: executing program 2 (id=1078):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x23010, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f000010"], 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x801, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000500)=0x1)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, 0x0, 0x0)
syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
r3 = socket(0x1e, 0x5, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x3)
ioctl$UI_SET_ABSBIT(r4, 0x40045567, 0x0)
write$uinput_user_dev(r4, &(0x7f0000000080)={'syz1\x00', {0x3ff, 0x3, 0x4}, 0x51, [0xd4, 0x6, 0x9, 0x8a4, 0x2, 0x2, 0x7fffffff, 0x80000001, 0x5, 0x1, 0x101, 0x3c6, 0x7, 0x6, 0xf70, 0x3, 0xe7, 0x7, 0x401, 0xbc5e, 0x0, 0x1, 0x5, 0xffff, 0xe, 0xe, 0x10, 0x20000000, 0x15098855, 0x6, 0x2, 0xfffffffb, 0x6, 0xc, 0xfffffff7, 0x4, 0xe79, 0x7, 0x1ff4, 0x1, 0x1, 0x0, 0x401, 0x9, 0xbdc7, 0xb, 0x1, 0x9, 0x3, 0x1, 0x6, 0x2, 0x5, 0x9, 0x5, 0x9, 0x0, 0x3a23, 0x1000, 0x8, 0x2, 0x6, 0x7ff, 0xb8547353], [0x80000000, 0xffffffff, 0x4, 0x5, 0x7fffffff, 0x1, 0x553, 0x6, 0x2, 0xfffffffc, 0x8, 0xc, 0x36, 0xa, 0x6, 0x1, 0x9, 0x98, 0x8, 0xe56d, 0xa4, 0x4, 0x99d, 0x8, 0x0, 0xd, 0x5, 0x0, 0x6e38, 0x7ffc, 0xa, 0x2, 0x3, 0x0, 0x5, 0x7, 0x4, 0xd, 0x9, 0xfff, 0x4, 0x0, 0x40, 0x1, 0x8, 0x5, 0x8, 0x0, 0x34f1, 0x1ff, 0x4, 0x1b2c5a17, 0x0, 0x9, 0x8, 0x0, 0xffffffff, 0x1, 0x6, 0x6, 0xac, 0x2, 0x54, 0xcfb9], [0x6, 0xdb8, 0x9, 0x4, 0x2, 0x6, 0x5, 0x5, 0x3, 0x5, 0xfffffffd, 0xc8d3, 0x33, 0x9a45, 0x0, 0xee40000, 0x1, 0x1, 0x43, 0x69d, 0x8, 0xffff, 0x0, 0x0, 0x40000008, 0x2, 0x4, 0x800, 0x7, 0x9, 0x0, 0x0, 0x1, 0xfffffffe, 0x3, 0x0, 0x9, 0x8c0, 0x9, 0x2, 0x8, 0x7, 0x6, 0x2, 0x81, 0x8, 0x1, 0x55f2, 0xdf46, 0xfffffffd, 0x7f, 0x9, 0x8000, 0x40, 0x3, 0x2, 0xa, 0x6, 0x2, 0xffffff00, 0xda15, 0x7f, 0x3, 0x10], [0x0, 0x897, 0x8, 0x246d, 0x6, 0x101, 0xfffff410, 0xd, 0x7ff, 0x606, 0x4, 0x9, 0x80000001, 0x2, 0xb, 0x2, 0x7, 0x1, 0x7, 0x2, 0x7ff, 0x3ff, 0x0, 0x2, 0x6, 0x100, 0x1, 0xec9b, 0x4, 0x6, 0x0, 0x101, 0xff, 0x7, 0x9, 0x5, 0x7, 0x101, 0x9, 0x3000000, 0xe, 0x4000006, 0x7, 0x1, 0x9, 0x1, 0x4, 0x100009, 0x100, 0x3, 0x3c, 0x1000, 0x3, 0x2, 0x15, 0x8000, 0x7, 0x81, 0x5, 0x7, 0xfffffffc, 0x4, 0x6, 0xeff]}, 0x45c)
ioctl$UI_DEV_CREATE(r4, 0x5501)
write$uinput_user_dev(r4, &(0x7f0000000fc0)={'syz1\x00', {0x2, 0x2, 0x9, 0x3e4}, 0x32, [0x1ff, 0x1, 0x4, 0x3, 0x7, 0x9, 0xa1b8, 0x0, 0x9, 0x4, 0xc, 0xd, 0x6, 0x0, 0x9, 0x8, 0x1, 0x4, 0xb, 0xffffffff, 0x92e, 0xed, 0xf69f, 0x3ec000, 0xc0, 0xeb9, 0xfd, 0x1732, 0x0, 0x10000, 0x7fffffff, 0x1, 0x1a9, 0x6, 0x4e3, 0xfffffff8, 0x40, 0x8, 0x4, 0x4, 0x5, 0x0, 0xfffffffb, 0x44, 0x7fff, 0x2, 0x800, 0x1, 0x3, 0xffff, 0x8, 0x6, 0x4, 0x7ef9, 0x0, 0x3, 0x7, 0x9, 0x1, 0xff, 0x7, 0x7, 0x1dea, 0x8], [0x0, 0x7, 0x10001, 0x5, 0xfffffffc, 0x5, 0x9, 0x0, 0x7e, 0x9, 0x2, 0x4, 0x10, 0x7, 0xbe0, 0x3, 0x3, 0x0, 0x71, 0xbad, 0xfffff79a, 0x8001, 0x1ff, 0xfffffff7, 0x8, 0xa07, 0x1, 0x101, 0xffffffff, 0x4, 0x9, 0x3, 0x1, 0xd, 0xb, 0x3, 0x10, 0x803, 0xff, 0x800, 0x9b71, 0x309, 0x9, 0x200, 0x7, 0x9, 0x0, 0x2, 0x6, 0x80000001, 0x2, 0x91a91ce, 0x3, 0x2, 0xb, 0x30000000, 0xe2, 0x3, 0x8, 0x7, 0x9d45, 0xf65, 0x7641, 0x8001], [0xffff, 0x8, 0xffc, 0x161b, 0x4, 0xfffffffc, 0xffffff80, 0x5, 0x6, 0x0, 0x6e3a6c23, 0x80000000, 0x9, 0x661, 0x9, 0x7, 0x3, 0x4b3, 0x800, 0x3, 0x1, 0x2, 0x5, 0xc, 0x3, 0xffff3c49, 0x80000001, 0x5b16, 0x8, 0x5, 0x8, 0xb, 0x7f, 0x26dc, 0x6, 0x0, 0xfffff000, 0x7fffffff, 0x3, 0x7ff, 0x800000, 0x52, 0x80000001, 0x80000000, 0x5, 0x8, 0x1000200, 0x1, 0x5b0, 0x62, 0x8, 0x9, 0x8, 0x7ff, 0x3, 0x4, 0x1b20, 0x81, 0x2, 0xffffffff, 0x4, 0x5ad, 0x7fff, 0xc], [0x5, 0xe, 0x800, 0x52a, 0x5, 0x80000000, 0x40, 0x40, 0x4, 0x1, 0x6, 0x3, 0xffffffff, 0x7, 0x5, 0x6, 0x6, 0xe8bb, 0xffff7fff, 0xb1b7, 0x14, 0xaef, 0x7ff, 0xaaa, 0xfffffff8, 0xffff, 0x6c69, 0x401, 0x4c8, 0xd20, 0x8000, 0x1, 0x5, 0x4, 0x7ff, 0x10, 0x2, 0x7, 0x80000000, 0x8, 0xfffffffe, 0xffffff01, 0x7ff, 0x2, 0x101, 0x3d, 0xd65, 0x4, 0x0, 0x5, 0x251, 0x2, 0x7, 0x0, 0x8, 0x9, 0x40, 0x2, 0x81, 0x2, 0x0, 0x17, 0x4, 0x9]}, 0x45c)
r5 = socket$phonet(0x23, 0x2, 0x1)
ioctl$SIOCPNDELRESOURCE(r5, 0x541b, &(0x7f0000000100)=0x8)
recvmmsg(r3, 0x0, 0x0, 0x0, 0x0)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280))
mount_setattr(0xffffffffffffffff, 0x0, 0x9800, &(0x7f0000000100)={0x0, 0x200000, 0x100000}, 0x20)

2.450285403s ago: executing program 4 (id=1087):
io_setup(0x6, &(0x7f00000003c0))
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000980))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x62081, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000080)='GPL\x00', 0xbfb6, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000005c0)='signal_deliver\x00'}, 0x18)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x2004, @fd=r1, 0x0, 0x0, 0x0, 0x0, 0x1, {0xfffc}})
ioctl$TCSETSF2(r3, 0x402c542d, &(0x7f0000000180)={0x4, 0x2f, 0xfffffff9, 0x0, 0x10, "4f1a413a978f5416a99162bad6ecf7ce638218", 0x4c, 0x80000001})
r4 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r6 = dup(r5)
getsockopt$inet6_IPV6_IPSEC_POLICY(r6, 0x29, 0x22, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x40, 0x0, 0x0, 0x40f00, 0x7, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x118}], 0x1}, 0x0)
r8 = getpid()
process_vm_readv(r8, &(0x7f00000001c0)=[{&(0x7f0000000300)=""/43, 0x2b}, {&(0x7f00000006c0)=""/155, 0x9b}, {&(0x7f0000000780)=""/220}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0xfffffffffffffeb9}], 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000540)='scsi_eh_wakeup\x00', 0xffffffffffffffff, 0x0, 0x5865}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock=0x22, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="240000003b0007010000000000000000037c0000040000000c000180"], 0x24}}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, 0x0)
dup3(0xffffffffffffffff, r4, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000040))

1.760594615s ago: executing program 4 (id=1093):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x2, 0x3, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000040)=0x5f4d, 0x4)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x4, 0x4, 0x48c, 0xffffffff, 0x2f8, 0x2f8, 0x154, 0xfeffffff, 0xffffffff, 0x3c4, 0x3c4, 0x3c4, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x2f2, 0x130, 0x154, 0x0, {}, [@common=@srh1={{0x8c}, {0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, [0x0, 0xff]}}]}, @REJECT={0x24}}, {{@uncond, 0x0, 0x164, 0x1a4, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "f5e2d5c2a94e3d6e8c4f94e8f344d0ebc986fdfabe4129074c3c6709bc611ec1256ae997ed08265d35bd9bb684dee934bc548986203b164723c477f8e20c42a1fcc67351e76c0b19686623df0a0f831ef696f5593bd9ddbe5b523fe3a75d401972866a65c82e696c1618413cf1606e9c11e6dcbc4aa3896d34e09eab171a381f", 0x4b, 0x2, {0x4000}}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "2d8756b141831783eb6ea8b08b559c402bda21e59115915c6adaed43e805"}}}, {{@uncond, 0x0, 0xa4, 0xcc}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x4e8)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
sendmsg$key(r1, &(0x7f0000000040)={0xa00, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[], 0x18}}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000500)={'vcan0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=@can_newroute={0x74, 0x18, 0x4, 0x70bd27, 0x25dfdbfd, {0x1d, 0x1, 0x1}, [@CGW_MOD_AND={0x15, 0x1, {{{0x0, 0x1}, 0x1, 0x6}, 0x5}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x0, 0x1, 0x0, 0x1}, 0x2, 0x2, 0x0, 0x0, "00efab356249ee14"}}}, @CGW_LIM_HOPS={0x5, 0xd, 0x3}, @CGW_MOD_AND={0x15, 0x1, {{{0x4, 0x0, 0x0, 0x1}, 0x7, 0x3, 0x0, 0x0, "8623b6418c82bd05"}, 0x3}}, @CGW_LIM_HOPS={0x5, 0xd, 0x3}, @CGW_SRC_IF={0x8, 0x9, r3}]}, 0x74}}, 0x800)

1.758703171s ago: executing program 4 (id=1094):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usbip_server_init(0x4)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000018000000000004"], 0x48)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
r4 = accept4(r3, 0x0, 0x0, 0x0)
ioctl$int_in(r4, 0x5452, &(0x7f0000000000)=0x5)
recvmmsg(r4, &(0x7f00000005c0)=[{{0x0, 0xfffffffffffffea3, 0x0}}], 0x3ffffffffffff62, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x20000000}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0xb, 0x9, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x7, 0x1, 0xb, 0x6, 0x8, 0x10}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r1}, {}, {0x15, 0x0, 0x0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0x2c, '\x00', 0x0, @cgroup_skb=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat(0xffffffffffffff9c, 0x0, 0x40440, 0x0)

1.56038553s ago: executing program 2 (id=1095):
r0 = open(&(0x7f0000000300)='.\x00', 0x20000, 0x80)
flock(r0, 0x2)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xa, &(0x7f0000000180)=0x67e, 0x4)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081046881f782db44b904021d080b01000000e8fe55a11800150006001400000000120800040043000000a80016000300014006000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d0080000000000000b57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb14feb9f5588a63644caf1ce1bd6c769ad809d52a9ecbee", 0xd8}], 0x1}, 0x0)
ioctl$DRM_IOCTL_MODE_GETPROPERTY(0xffffffffffffffff, 0xc04064aa, &(0x7f0000000300)={0x0, &(0x7f0000000600)})
r3 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f00000000c0)=0x20)
write$binfmt_elf32(r3, 0x0, 0x4cd)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000100)=0x1)
write$dsp(r3, &(0x7f0000000140)="755a5398d512d39077459e67ee110daaf0413bc745ef85b89f2141d513969bd8", 0xffaa)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0xe0}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}}, 0x0)

1.290204176s ago: executing program 3 (id=1096):
kexec_load(0x0, 0x0, 0x0, 0x2a0001)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x20050800)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000400)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha20-neon\x00'}, 0x58)
socket$kcm(0x2, 0xa, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x0, 0x0, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)

530.588492ms ago: executing program 5 (id=1100):
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffff5, 0x0)
r0 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x199540)
r1 = socket(0x2, 0x2, 0x0)
ioctl$NBD_SET_SOCK(r0, 0xab00, r1)
ioctl$NBD_DO_IT(r0, 0xab03)
ioctl$NBD_SET_SIZE_BLOCKS(r0, 0xab07, 0x6)
ioctl$NBD_CLEAR_SOCK(r0, 0x125f)

530.226615ms ago: executing program 5 (id=1101):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2000}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYRESHEX=r0, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af0ff00000000bfa20000000000000702"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x45, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x4c}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

445.255539ms ago: executing program 5 (id=1102):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000100001000000f500000000000000000a20000000000a01040000000000000000010400000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a320000000058000000060a010400000000000000000100000008000b4000000000300004802c000180090001006861734a000000001c0002800800044000000000080002400000000f08000740000000010900010073797a300000"], 0xcc}}, 0x0)

437.750571ms ago: executing program 3 (id=1103):
msgctl$IPC_INFO(0x0, 0x3, &(0x7f0000000500)=""/235) (fail_nth: 5)

280.460551ms ago: executing program 3 (id=1104):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0xac, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x30, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x2000}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x4}]}], {0x14}}, 0xc0}}, 0x200000d4)

280.347298ms ago: executing program 5 (id=1105):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$sndseq(0xffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r0, 0xc0105303, &(0x7f0000000080)={0x0, 0xf0, 0x3})
creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)
acct(&(0x7f0000000100)='./file0/bus\x00')
acct(&(0x7f0000000700)='./file0/bus\x00')

280.017599ms ago: executing program 3 (id=1106):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="4800000010000305000000000000000000cf0000", @ANYRES32=0x0, @ANYBLOB="00000000000000002000128008000100677470001400028008000100", @ANYRES32=r4], 0x48}}, 0x0)
close(r4)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x70bd25, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20305}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
dup3(r2, r0, 0x80000)

230.578191ms ago: executing program 5 (id=1107):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e00)=@base={0x9, 0x4, 0x7, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000000000000bfa200000000000007020000f8ffffffb703001108000000b704000000000000850000000300000085000000c00000009500007616"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x37)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000300)={0x18, 0x10, 0x509, 0x0, 0x0, "", [@generic="6f6d888f1d1c4e"]}, 0x18}], 0x1}, 0x0)
socket(0x10, 0x3, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, 0x0, 0x0)
listen(r2, 0x9)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$IP_VS_SO_SET_EDITDEST(0xffffffffffffffff, 0x0, 0x489, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="11000000040000000400000002"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x1)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r8, @ANYBLOB="010000000000fbdbdf250100001f08000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000)

209.530717ms ago: executing program 5 (id=1108):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r0, 0x2285, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ff6000/0x3000)=nil)
memfd_create(&(0x7f0000000ac0)='\x00\xac=\x9d\xd2\xdb\x1a\'\xf8\n\xedcJ\x8e\x84\xd4N\x00\x9b\x1f\t\xbd\x11\x86T\x16\xa3\xb3\xae0\x9f9?\xefo\xa4k\x012>\xa1\x9c\x86x\x1c\x9f\x84\x195\xde\x97_\t~\xf3\xceB\xfc\xd4c\x1a\x8d>Xt\xdd\xbb\x80!Y\x12\"p^\x00\x02\xb4\xfdHA\xce\x9a\xde\xe4\xb6\xbcK#^\x00}2\xc6\xde7\x17\x95$\xdd\x8ew\a\xe5\x1f\xe0:|R\x04\xc2\xb8I\xa3\xb9\xe2\xa2\xebw\xdeI\x0f7i$\xf1\xd4\x9b\xc7\xb2\xbeD`\x8f\t\xdbb\x9d\x9dN\xa2\xee\xb8\xf6\xe2\xb4c\xc4\xb0\xc3\x964\x17\xf5\xb3\xc9\xb2\x94\xa8_f!\xdf\x90}\xba\xa3\x01\xe2\xcf\xb7\"S\a\x04ry\x00#4\x87m\xf7\xe3\xf5\xa7\xda\xb9\xcbU\xbe\x06]\xa9\xb6R~\xc9l}\xb7I\xfe\xae>\xf6quc9\xe0\xbf\x94\xdc\x99\xf4\\\xd0\x96:\xfb\x8c\x12o\xcc-\x13\x14\xbev\xae\x80Zp\x95c]\x98\x8c\x01\x8fo\xafjN\xcb\x98\xdf\xd3[V\xbd[\xb9\x10v\xee\xdc\xc8G\xd0\xdc9\xccO\xf74\x84o\x99\xe9\x14\x00\x00dU\x00\x00\x00\b\xfb\xb5Z\xb0-\xc8\xdb\x88f\xf4W\xeb\x06\xc2\xd1\xb6\xd1%\xca\x8f\x013|\x8ez\x1eo\x18\xb6#@P&[\xe0\xad\xda\nmU\x823\\&P\xdc\xbcS\x80\xc1dJ!LH\xaa\a\x82\f=_\t\x18L&\xaf\xb4v\"ukO\xa6\xf3\xde\x96\x85\xc5\xdd\x12|C.\x91\xf2[Y\x06\x8a\x9fN\x10\xb9\xf4\xecq\xce\xd2\x17\x88\xae\xcc7r\xd7\xeaz\xcevR\xcau\r\xf1\t\xc2$k\xdf\x8f\xe2\xbe\xfe\x14AN\xf8\xc6\xa8`Fs[6k\x00\x00+\xa5\xdcxUY3<v\xf1\r\xaei\xa0Xam\vN\x7fR\x96*h\xd3\x01VbON\xc3@\xe7\x16\xcc\xca\xd6\xe5\xe8\r\x9b\x8d.\xdd\x1a\xaa\xa6*\xed\xe1\xb1\xf4\x7f\xca\xbeg\xb1bEm[\x04\tX8\x15#\x94\xa6\\?\xe0\x871\x80\xc5~_\x12J\xeb \x00R\xa7=/\xfd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xfe\x90\x13\t\xd2\xf0\x16Rx\x89w\x0eG\xe8t\xf7fG[\x94\x93\x88\x0e8*lI\x16\x14\x9b\x11\r\xcf^\xfa5=\xf4\xb1s>\xeb\xf6\xa3\x95!:\xd1CF\xfd\xcdx\x86\xe3\x19\xb2u[2\xd6=\xd6\'\n\xc1\xdc\x7f\x8c\xdc\x02\xb7=\xc1\xf9\xb5\xa8\x88\a\xbbL\x87\xa5\xd8_\xae\xa4\r\xc9\b6)&\xe1\xea\xcdo\xa3\xcc\x9d`.\xdb\"Y\xd8\x86J#o\xcc\xff\xaaS\x03\xa8~\x99\xe5\n\x00\x00\x00\x00\x00\x00\x03\xcd\xab\x89h6FvS\xf9\x1a\xa0\xba\xed\xcc\x94\x91\xfez\x96MQ\x00\x00w\x82ge5\xa0K\xd8\xba\x87u\xe19\x8a{,\x06\x06\xcb\x17:~\xa0@\xefF?\x00\x00\x00\x00\xb6\x9ff\x96\x0e\x1b/\x12lUpW@\x90\"\x02L\"S\xeb\xd6\xb3\xf1\a\x8f\x93\xb5P\xd5\x892\xaa\xa4N\xf9\xf6C\xc4\n\xe3\xf9\xcb\xce\xe7\xdcS\xb0r\xf6M0\xe3y\xcdQ\xfc9C<\x06W\x8f\n\xa13L\xfb\xee?dN\"\xa8\xe6\x10L\xd9\xc6|\xear\r\xb7\xda`\xb8\xf2\b\xf6\xa76\xdb\xbe&\x16\x06\xc0\x97\xab\x98\xcdA\x1f&\x98\xb4\xf0g\x05\xe2[\x97\xbb\xd7\xba\xcc\x9b3L5\x06\x95!\\\x81\x16\xdeY\xcb=\x8e\xe4\xd5\xc1\xbd!\x1dp]Q\x03\x1e0\xb0\x05\xe6Frv\xf5Lu\xdc7\xa13s\xd9j\xe2\b\x00\x00\x00\x00\x00\x00\x00/\x1b(\xeea(~\xb7\xf2\xd7\xdc\xea\x02f\x04\x14\x0e\xcc\x99\x9ff\xa0\xaa\xe2\x94\xfd\xfa\xfbW\xa8\xe0\x00\x00\xb8\xb4o\xdd\xd0\xd1\x9a\xc9\xc2\xfc(\x8c7\xce\xf8N\xa3\x91R&\xb2\x04;g\x8c/x~\x16\x8co<\x8bh\xdd\x87&\x01y\x9b\n_|\x06<\xd7n\xff\xd0\xdd0\x1d?\x88m\aB_\x94(XAv\x10\x14\x9c\xb1\xb7\xcf\x02\x1f4\xa5\xd7\x14\xd6Y*\x02\x06j\x87\x89G\xfb\xce6\x0e\x95h4-\xbc\x11a4\"@qs\xf4\x9a\xc8\xbfyo\x12\b\x9b\xb9}\x00\xd534\xc7(\x01w\x9c\x94u\x8b!\xac\xd6\x89\x19J\xae\x7fE\x0eB\x9a\xc4%\xf8\xa7\x16\x8a\x05Rj\x85\xeb\xa3L\xcc\x9a\x02\xe5\x83h!\x99\x93lD\xe1\xa7\xfe>\xdb\x9d\xab\x1d\xb6r\xee\x04D\xa0\x94(\xdb\xe1&\x11\xdf\xb3\xa7b\x14\xda^U5\xf6\x9dN\x9d\x9cM\xb2\xf5\x10\xc4QW\xe2\xe0\xf4\x7f\x0e\xd3\xd9)\x9eq2\xeb\xd8\xbf\xfe\xef^\x1e\xb2\x7f\xf1\xb3\xa7\xe1G\xc1\x06Q7\x95\x02`\x93\xf4\xb6YM_\xa3\x94q\xb0\xe1\x01\xf1 \f\xaeM\xa7\x8e\r:A\x1b\x06\xd6e\x85\xf1\x7fG\xf6\x9aa?\xd6v\x9f\xe2\xdd\xd9\xb6\x87\x88\xc2+\xc4\xfb\xdc\x95\x89\xc1\xd0yD\xac\x1b\x00Zo\xd4\xcf\'+\x00e\x85\x00'/1214, 0x1)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'crct10dif\x00'}, 0x58)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2440, 0x0)
fsetxattr$trusted_overlay_redirect(r3, &(0x7f0000000040), 0x0, 0xfffffffffffffe96, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000040)=[<r6=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f0000000440)={0x0, 0x0, r6, <r7=>0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r4, 0xc06864a2, &(0x7f0000000240)={0x0, 0x0, r6, r7, 0x0, 0x0, 0x1800, 0xffffffff, {0x6, 0x4, 0x80, 0xff, 0xfdfc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "126b99010000003a08000000a9a50100702a0bcc476b15000000000000850100"}})
ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06464ce, &(0x7f00000004c0)={r7, 0x8, 0x3, 0x4, 0x1, [], [0x8, 0x3, 0x9, 0xffff], [0xfffffff7, 0xee62, 0x5, 0x9], [0x7, 0x5, 0xa, 0x8db0]})
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r10=>0x0})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', r10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x18, 0x52, 0x1, 0x0, 0x0, {0x1c}, [@typed={0x4, 0x1}]}, 0x18}}, 0x0)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CHANNEL(r11, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x2c, r12, 0x3, 0x70bd29, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x2}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x3}]}, 0x2c}}, 0x802)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000280)='W', 0x1}, {&(0x7f00000002c0)="592eb75b3ad6fbbf04a8cdb64a61fce6", 0x10}, {&(0x7f0000000340)="14", 0x7fffefef}], 0x3}, 0x0)
r13 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r13, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time}], 0x38)

206.859212ms ago: executing program 4 (id=1109):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0b04000000000000000002000000400004803c0001800b00010065787468647200002c0002800800044000000001080007400020000f0800064000000001050002000000000008000340000000040900010073797a30000000000900020073797a32"], 0x94}}, 0x0)
r3 = openat$sndtimer(0xffffff9c, &(0x7f0000000140), 0x0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r3, 0x40605414, 0x0) (async)
ioctl$KVM_HYPERV_EVENTFD(r1, 0xc048aec8, &(0x7f00000005c0)={0x20000005}) (async)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c) (async)
socket(0x10, 0x803, 0x0) (async)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, 0x0, 0x0) (async)
r7 = socket(0x10, 0x803, 0x0) (async)
r8 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r8, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c) (async)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) (async)
r10 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r10, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r9, &(0x7f0000000100)={@val={0x0, 0x86dd}, @void, @eth={@empty, @random="1f00", @val, {@ipv6={0x86dd, @tcp={0x5, 0x6, "363ce7", 0x14, 0x6, 0xff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv4={'\x00', '\xff\xff', @broadcast}, {[], {{0x4e22, 0x4e24, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x8, 0x0, 0x0, 0x28}}}}}}}}, 0x56) (async, rerun: 64)
r11 = socket(0x1, 0x803, 0x0) (rerun: 64)
r12 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r13 = syz_genetlink_get_family_id$fou(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$FOU_CMD_GET(r12, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x14, r13, 0x1}, 0x14}}, 0x0) (async)
getsockname$packet(r11, &(0x7f0000000100)={0x11, 0x0, <r14=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295a5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r14}, [@IFA_LOCAL={0x14, 0x2, @mcast1={0xff, 0x2}}, @IFA_ADDRESS={0x14, 0x1, @local}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

77.558202ms ago: executing program 3 (id=1110):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)=ANY=[@ANYBLOB="2400f0ff", @ANYRES16=r2, @ANYBLOB="01002dbd7000fcdbdf250c00000008000300", @ANYRES32=r1, @ANYBLOB="050008"], 0x2c}, 0x1, 0x0, 0x0, 0x44020}, 0x20000054)

77.208716ms ago: executing program 4 (id=1111):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x101102)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x121140, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f0000000140)={0x0, 0x400, 0x0, 'queue1\x00'})
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x2001, 0x0)
ioctl$SNAPSHOT_FREE_SWAP_PAGES(r2, 0x3309)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x11, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r4}, 0x57)

439.328µs ago: executing program 3 (id=1112):
r0 = syz_open_dev$ndb(&(0x7f0000000140), 0x0, 0x0)
r1 = accept4$x25(0xffffffffffffffff, &(0x7f0000000000), &(0x7f00000000c0)=0x12, 0x0)
accept4$x25(r1, &(0x7f0000000100), &(0x7f0000000180)=0x12, 0x800)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r0, 0xab00, r2)
r3 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
ioctl$NBD_SET_FLAGS(r3, 0xab0a, 0x1000001000104)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@mpls_delroute={0x30, 0x18, 0x9, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_VIA={0x14, 0x5, {0x0, "f1b9a81697008d68a0328c49d2ee"}}]}, 0x30}}, 0x0)
ioctl$NBD_SET_SOCK(r3, 0xab00, r2)
ioctl$NBD_DO_IT(r0, 0xab03)
ioctl$NBD_CLEAR_SOCK(r3, 0xab04)

0s ago: executing program 4 (id=1113):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ipvlan1\x00', <r1=>0x0}) (async)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c00000010000305000000000000ffff00000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b0001006d616373656300001c000280050007000000000005000a0000000000050009000000000008000500", @ANYRES32=r1], 0x5c}}, 0x0) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000140)=0x15) (async)
r4 = syz_io_uring_setup(0xd2, &(0x7f0000000480), &(0x7f0000000040)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) (async)
syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r4, 0x47ba, 0x0, 0x0, 0x0, 0x0) (async)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000180)='./file1\x00', 0x0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@verity_on}]}) (async)
r8 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r8, &(0x7f0000001600)='./file1\x00', 0x0, 0x0) (async)
chdir(&(0x7f0000000140)='./bus\x00') (async)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000980), 0xffffffffffffffff)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r9, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0) (async)
setsockopt$inet_tcp_TCP_REPAIR(r9, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r9, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) (async)
setsockopt$inet_tcp_TCP_REPAIR(r9, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) (async)
sendmmsg$inet(r9, &(0x7f0000000f40)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000006c0)="ed", 0x1}, {&(0x7f0000000200)="b5", 0x1}, {&(0x7f0000000340)='.', 0x1}, {&(0x7f0000000140)='U', 0x1}, {&(0x7f0000000180)="f3", 0x1}], 0x5}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000580)="f1", 0x1}, {&(0x7f0000000c80)='a', 0x1}, {&(0x7f0000000b40)='M', 0x1}, {&(0x7f0000000d80)='o', 0x1}, {&(0x7f0000000e80)='\b', 0x1}], 0xa6}, 0x70040000}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000380)="bb", 0x1}, {&(0x7f00000007c0)="a1", 0x1}, {&(0x7f0000000800)='s', 0x1}, {&(0x7f00000009c0)='\\', 0x1}], 0x4}}, {{0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f0000000440)="88", 0x1}, {&(0x7f0000000840)="e5", 0x1}, {&(0x7f0000001040)="96", 0x1}], 0x3}}], 0x4, 0x4048841)
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00') (async)
openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./bus\x00', 0x400, 0x40) (async)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r7, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
write$FUSE_NOTIFY_INVAL_INODE(r7, &(0x7f00000000c0)={0x28, 0x7}, 0x28)

kernel console output (not intermixed with test programs):

5993][ T8408]  ? __pfx_lock_release+0x10/0x10
[  127.667507][ T8408]  ? trace_lock_acquire+0x14e/0x1f0
[  127.669023][ T8408]  ? __pfx___gup_longterm_locked+0x10/0x10
[  127.670729][ T8408]  ? gup_fast_fallback+0x84c/0x2690
[  127.672239][ T8408]  ? __pfx_lock_release+0x10/0x10
[  127.673681][ T8408]  ? try_get_folio+0x517/0x800
[  127.675064][ T8408]  ? sanity_check_pinned_pages+0x3ab/0x11e0
[  127.676753][ T8408]  gup_fast_fallback+0x1802/0x2690
[  127.678241][ T8408]  ? __pfx_gup_fast_fallback+0x10/0x10
[  127.679822][ T8408]  pin_user_pages_fast+0xa8/0x100
[  127.681294][ T8408]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  127.682909][ T8408]  ? __kmalloc_noprof+0x23b/0x4f0
[  127.684354][ T8408]  ? rds_info_getsockopt+0x376/0x4f0
[  127.685870][ T8408]  rds_info_getsockopt+0x39a/0x4f0
[  127.687350][ T8408]  ? __might_fault+0x13b/0x190
[  127.688743][ T8408]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  127.690352][ T8408]  ? trace_lock_acquire+0x14e/0x1f0
[  127.691877][ T8408]  ? lock_acquire+0x2f/0xb0
[  127.693183][ T8408]  ? __might_fault+0xe3/0x190
[  127.694541][ T8408]  ? __might_fault+0xe3/0x190
[  127.695908][ T8408]  rds_getsockopt+0x173/0x2d0
[  127.697267][ T8408]  ? __pfx_rds_getsockopt+0x10/0x10
[  127.698825][ T8408]  do_sock_getsockopt+0x3fe/0x870
[  127.700273][ T8408]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  127.701865][ T8408]  ? lock_acquire+0x2f/0xb0
[  127.703181][ T8408]  ? __fget_files+0x40/0x3a0
[  127.704652][ T8408]  ? __fget_files+0x206/0x3a0
[  127.706141][ T8408]  __sys_getsockopt+0x12f/0x260
[  127.707587][ T8408]  __ia32_sys_getsockopt+0xbc/0x160
[  127.709072][ T8408]  ? lockdep_hardirqs_on+0x7c/0x110
[  127.710581][ T8408]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  127.712510][ T8408]  __do_fast_syscall_32+0x73/0x120
[  127.713975][ T8408]  do_fast_syscall_32+0x32/0x80
[  127.715374][ T8408]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  127.717224][ T8408] RIP: 0023:0xf707e579
[  127.718404][ T8408] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  127.723849][ T8408] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  127.726211][ T8408] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000114
[  127.728488][ T8408] RDX: 000000000000271b RSI: 0000000020000580 RDI: 0000000020000000
[  127.730690][ T8410] netlink: 8 bytes leftover after parsing attributes in process `syz.4.586'.
[  127.730736][ T8408] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  127.733991][ T8410] netlink: 24 bytes leftover after parsing attributes in process `syz.4.586'.
[  127.736216][ T8408] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  127.736225][ T8408] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  127.736238][ T8408]  </TASK>
[  127.736297][    C1] vkms_vblank_simulate: vblank timer overrun
[  127.753321][ T8410] gtp0: entered promiscuous mode
[  127.754789][ T8410] gtp0: entered allmulticast mode
[  127.826707][ T8377] can0 (unregistered): slcan off ttyS3.
[  128.633562][ T8437] netlink: 1256 bytes leftover after parsing attributes in process `syz.2.592'.
[  128.637727][ T8437] openvswitch: netlink: Unknown key attributes 20
[  129.832575][ T8446] input: syz0 as /devices/virtual/input/input64
[  129.871565][ T8446] input: failed to attach handler leds to device input64, error: -6
[  129.974776][ T1019] libceph: connect (1)[c::]:6789 error -101
[  129.978524][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  130.053201][ T8447] ceph: No mds server is up or the cluster is laggy
[  130.055303][ T8456] netlink: 32 bytes leftover after parsing attributes in process `syz.3.597'.
[  130.171672][ T8466] FAULT_INJECTION: forcing a failure.
[  130.171672][ T8466] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  130.175551][ T8466] CPU: 1 UID: 0 PID: 8466 Comm: syz.2.601 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  130.175845][ T8464] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  130.178604][ T8466] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.178624][ T8466] Call Trace:
[  130.178628][ T8466]  <TASK>
[  130.178632][ T8466]  dump_stack_lvl+0x16c/0x1f0
[  130.178650][ T8466]  should_fail_ex+0x497/0x5b0
[  130.190607][ T8466]  _copy_from_user+0x2e/0xd0
[  130.192100][ T8466]  input_event_from_user+0x22d/0x3b0
[  130.193706][ T8466]  ? __pfx_input_event_from_user+0x10/0x10
[  130.195408][ T8466]  ? input_inject_event+0x193/0x370
[  130.196939][ T8466]  evdev_write+0x377/0x750
[  130.198354][ T8466]  ? __pfx_evdev_write+0x10/0x10
[  130.199650][ T8466]  ? bpf_lsm_file_permission+0x9/0x10
[  130.201193][ T8466]  ? security_file_permission+0x71/0x210
[  130.202811][ T8466]  ? __pfx_evdev_write+0x10/0x10
[  130.204231][ T8466]  vfs_write+0x24c/0x1150
[  130.205489][ T8466]  ? __fget_files+0x1fc/0x3a0
[  130.206848][ T8466]  ? __pfx_lock_release+0x10/0x10
[  130.208283][ T8466]  ? __pfx_vfs_write+0x10/0x10
[  130.209667][ T8466]  ? lock_acquire+0x2f/0xb0
[  130.210977][ T8466]  ? __fget_files+0x40/0x3a0
[  130.212301][ T8466]  ? __fget_files+0x206/0x3a0
[  130.213652][ T8466]  ksys_write+0x207/0x250
[  130.214899][ T8466]  ? __pfx_ksys_write+0x10/0x10
[  130.216379][ T8466]  __do_fast_syscall_32+0x73/0x120
[  130.218143][ T8466]  do_fast_syscall_32+0x32/0x80
[  130.219598][ T8466]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  130.221397][ T8466] RIP: 0023:0xf7ff3579
[  130.222590][ T8466] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  130.228021][ T8466] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  130.230397][ T8466] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[  130.232663][ T8466] RDX: 0000000000002250 RSI: 0000000000000000 RDI: 0000000000000000
[  130.234923][ T8466] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  130.237200][ T8466] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  130.239449][ T8466] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  130.241708][ T8466]  </TASK>
[  130.242715][    C1] vkms_vblank_simulate: vblank timer overrun
[  130.290996][ T5928] block nbd3: Receive control failed (result -107)
[  130.345093][ T8464] syz.5.598 (8464) used greatest stack depth: 20608 bytes left
[  130.368120][ T8470] openvswitch: netlink: IP tunnel dst address not specified
[  130.374362][ T8470] syz.3.600: attempt to access beyond end of device
[  130.374362][ T8470] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[  130.377893][ T8474] netlink: 12 bytes leftover after parsing attributes in process `syz.5.603'.
[  130.380265][ T8470] syz.3.600: attempt to access beyond end of device
[  130.380265][ T8470] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0
[  130.380748][ T8474] nbd: illegal input index 2883584
[  130.384505][ T8470] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  130.388923][ T8470] syz.3.600: attempt to access beyond end of device
[  130.388923][ T8470] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0
[  130.392772][ T8470] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  130.397504][ T8470] syz.3.600: attempt to access beyond end of device
[  130.397504][ T8470] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0
[  130.401323][ T8470] syz.3.600: attempt to access beyond end of device
[  130.401323][ T8470] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0
[  130.405532][ T8470] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  130.409466][ T8470] syz.3.600: attempt to access beyond end of device
[  130.409466][ T8470] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0
[  130.414335][ T8470] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  130.416593][ T8468] nbd3: detected capacity change from 0 to 20
[  130.418375][ T8470] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  130.425241][ T5859] block nbd3: Dead connection, failed to find a fallback
[  130.428723][ T5859] block nbd3: shutting down sockets
[  130.428903][ T8470] I/O error, dev nbd3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  130.431120][ T5859] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  130.434135][ T8470] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=1, location=1
[  130.437950][ T5859] Buffer I/O error on dev nbd3, logical block 0, async page read
[  130.443743][ T8470] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  130.447968][ T8470] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=0, location=0
[  130.448025][ T5859] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  130.451206][ T8470] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  130.454133][ T5859] Buffer I/O error on dev nbd3, logical block 0, async page read
[  130.454235][ T5859] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  130.457358][ T8470] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1)
[  130.464956][ T5859] Buffer I/O error on dev nbd3, logical block 0, async page read
[  130.467789][ T5859] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  130.470389][ T5859] Buffer I/O error on dev nbd3, logical block 0, async page read
[  130.472666][ T5859] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  130.475263][ T5859] Buffer I/O error on dev nbd3, logical block 0, async page read
[  130.477701][ T5859] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  130.480273][ T5859] Buffer I/O error on dev nbd3, logical block 0, async page read
[  130.482552][ T5859] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  130.485130][ T5859] Buffer I/O error on dev nbd3, logical block 0, async page read
[  130.487501][ T5859] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  130.490079][ T5859] Buffer I/O error on dev nbd3, logical block 0, async page read
[  130.492281][ T5859] ldm_validate_partition_table(): Disk read failed.
[  130.494373][ T5859] Buffer I/O error on dev nbd3, logical block 0, async page read
[  130.496825][ T5859] Buffer I/O error on dev nbd3, logical block 0, async page read
[  130.499314][ T5859] Dev nbd3: unable to read RDB block 0
[  130.502119][ T5859]  nbd3: unable to read partition table
[  130.503843][ T5859] nbd3: partition table beyond EOD, truncated
[  130.507277][ T5859] ldm_validate_partition_table(): Disk read failed.
[  130.509419][ T5859] Dev nbd3: unable to read RDB block 0
[  130.511164][ T5859]  nbd3: unable to read partition table
[  130.512887][ T5859] nbd3: partition table beyond EOD, truncated
[  130.526195][ T1019] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  130.574383][ T8476] netlink: 'syz.3.604': attribute type 10 has an invalid length.
[  130.590563][ T8477] netlink: 164 bytes leftover after parsing attributes in process `syz.3.604'.
[  130.689634][ T1019] usb 7-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  130.692992][ T1019] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  130.695746][ T1019] usb 7-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  130.700113][ T1019] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  130.702869][ T1019] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.725691][ T1019] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  130.754156][ T1019] snd-usb-audio 7-1:27.0: probe with driver snd-usb-audio failed with error -2
[  130.858933][ T5859] udevd[5859]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  130.859715][ T8484] netlink: 32 bytes leftover after parsing attributes in process `syz.4.607'.
[  130.896723][ T5928] Bluetooth: hci3: unexpected event for opcode 0x0c25
[  131.040497][ T8489] input: syz1 as /devices/virtual/input/input65
[  131.748105][ T8516] input: syz0 as /devices/virtual/input/input66
[  131.754865][ T8516] input: failed to attach handler leds to device input66, error: -6
[  131.786333][ T5992] libceph: connect (1)[c::]:6789 error -101
[  131.789734][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  131.800480][ T8520] netlink: 'syz.5.611': attribute type 4 has an invalid length.
[  131.872775][   T73] usb 7-1: USB disconnect, device number 9
[  132.050687][ T8531] dccp_invalid_packet: P.Data Offset(100) too large
[  132.057148][ T5992] libceph: connect (1)[c::]:6789 error -101
[  132.060543][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  132.212917][ T8530] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.216562][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  132.218873][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  132.436328][ T5928] Bluetooth: hci2: command tx timeout
[  132.477146][ T8516] ceph: No mds server is up or the cluster is laggy
[  132.555502][ T8530] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.695039][ T8530] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.834981][ T8530] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.871155][ T8542] netlink: 'syz.2.617': attribute type 10 has an invalid length.
[  132.966286][ T8530] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.982086][ T8530] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.992607][ T8530] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  133.017575][ T8530] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  133.755332][ T8549] netlink: zone id is out of range
[  133.757517][ T8549] netlink: zone id is out of range
[  133.759041][ T8549] netlink: zone id is out of range
[  133.760738][ T8549] netlink: zone id is out of range
[  133.762268][ T8549] netlink: zone id is out of range
[  133.763783][ T8549] netlink: zone id is out of range
[  133.765284][ T8549] netlink: zone id is out of range
[  133.992279][ T8554] tipc: Enabling <eth:lo> not permitted
[  133.994014][ T8554] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  134.318021][ T8563] 9pnet_fd: p9_fd_create_tcp (8563): problem connecting socket to 127.0.0.1
[  134.326029][ T8564] input: syz0 as /devices/virtual/input/input67
[  134.328162][ T8564] input: failed to attach handler leds to device input67, error: -6
[  134.354797][ T1019] libceph: connect (1)[c::]:6789 error -101
[  134.359881][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  134.616626][ T1019] libceph: connect (1)[c::]:6789 error -101
[  134.618758][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  134.913754][ T8564] ceph: No mds server is up or the cluster is laggy
[  135.004442][ T8593] netlink: 48 bytes leftover after parsing attributes in process `syz.5.631'.
[  136.408083][ T8631] overlayfs: failed to resolve './file0': -2
[  136.413900][ T8631] lo speed is unknown, defaulting to 1000
[  136.421654][ T8631] lo speed is unknown, defaulting to 1000
[  136.425030][ T8631] lo speed is unknown, defaulting to 1000
[  136.475604][ T8637] FAULT_INJECTION: forcing a failure.
[  136.475604][ T8637] name failslab, interval 1, probability 0, space 0, times 0
[  136.479589][ T8637] CPU: 0 UID: 0 PID: 8637 Comm: syz.2.646 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  136.482590][ T8637] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.485603][ T8637] Call Trace:
[  136.486568][ T8637]  <TASK>
[  136.487423][ T8637]  dump_stack_lvl+0x16c/0x1f0
[  136.488794][ T8637]  should_fail_ex+0x497/0x5b0
[  136.490165][ T8637]  ? fs_reclaim_acquire+0xae/0x150
[  136.491653][ T8637]  should_failslab+0xc2/0x120
[  136.493008][ T8637]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  136.494687][ T8637]  ? __pfx___might_resched+0x10/0x10
[  136.496209][ T8637]  ? alloc_vmap_area+0xdc8/0x2a70
[  136.497828][ T8637]  alloc_vmap_area+0xdc8/0x2a70
[  136.499256][ T8637]  ? __pfx_alloc_vmap_area+0x10/0x10
[  136.500768][ T8637]  __get_vm_area_node+0x19e/0x2f0
[  136.502257][ T8637]  __vmalloc_node_range_noprof+0x26a/0x1530
[  136.503952][ T8637]  ? hashlimit_mt_check_common+0x8b0/0x1450
[  136.505672][ T8637]  ? __pfx___lock_acquire+0x10/0x10
[  136.507161][ T8637]  ? rcu_is_watching+0x12/0xc0
[  136.508554][ T8637]  ? hashlimit_mt_check_common+0x8b0/0x1450
[  136.510230][ T8637]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  136.512042][ T8637]  ? __pfx_lock_release+0x10/0x10
[  136.513488][ T8637]  ? trace_lock_acquire+0x14e/0x1f0
[  136.515017][ T8637]  ? hashlimit_mt_check_common+0x8b0/0x1450
[  136.516721][ T8637]  vmalloc_noprof+0x6b/0x90
[  136.518083][ T8637]  ? hashlimit_mt_check_common+0x8b0/0x1450
[  136.519784][ T8637]  hashlimit_mt_check_common+0x8b0/0x1450
[  136.521426][ T8637]  hashlimit_mt_check_v1+0x2fe/0x370
[  136.522939][ T8637]  ? __pfx_hashlimit_mt_check_v1+0x10/0x10
[  136.524599][ T8637]  ? trace_contention_end+0xee/0x140
[  136.526106][ T8637]  ? __pfx_hashlimit_mt_check_v1+0x10/0x10
[  136.527798][ T8637]  xt_check_match+0x284/0xa50
[  136.529164][ T8637]  ? __pfx_xt_check_match+0x10/0x10
[  136.530664][ T8637]  ? pcpu_alloc_noprof+0x126/0x1650
[  136.532145][ T8637]  ? xt_find_match.part.0+0x1b6/0x250
[  136.533678][ T8637]  find_check_entry.constprop.0+0x325/0x9c0
[  136.535375][ T8637]  ? __pfx_find_check_entry.constprop.0+0x10/0x10
[  136.537188][ T8637]  ? kfree+0x14f/0x4b0
[  136.538381][ T8637]  ? kvfree+0x47/0x50
[  136.539524][ T8637]  translate_table+0xc88/0x1730
[  136.540917][ T8637]  ? __pfx_translate_table+0x10/0x10
[  136.542438][ T8637]  translate_compat_table+0x13d9/0x18c0
[  136.544035][ T8637]  ? __pfx_translate_compat_table+0x10/0x10
[  136.545718][ T8637]  ? __might_fault+0x13b/0x190
[  136.547099][ T8637]  ? trace_lock_acquire+0x14e/0x1f0
[  136.548328][ T1019] lo speed is unknown, defaulting to 1000
[  136.548596][ T8637]  compat_do_replace+0x35d/0x500
[  136.551426][ T8631] infiniband s
z1: set active
[  136.553165][ T8637]  ? __pfx_compat_do_replace+0x10/0x10
[  136.553267][ T8631] infiniband s
z1: added lo
[  136.554771][ T8637]  ? aa_get_newest_label+0x376/0x680
[  136.554790][ T8637]  ? __pfx_aa_get_newest_label+0x10/0x10
[  136.559294][ T8637]  ? bpf_lsm_capable+0x9/0x10
[  136.560682][ T8637]  ? security_capable+0x7e/0x260
[  136.562123][ T8637]  do_ipt_set_ctl+0x686/0xc10
[  136.563503][ T8637]  ? __mutex_lock+0x1cc/0xa60
[  136.564851][ T8637]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[  136.566334][ T8637]  ? __mutex_unlock_slowpath+0x164/0x690
[  136.566490][ T1019] hid-generic 0000:0000:0000.0006: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  136.568054][ T8637]  ? sockopt_release_sock+0x52/0x60
[  136.572381][ T8637]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  136.574135][ T8637]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  136.575751][ T8637]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  136.577498][ T8637]  nf_setsockopt+0x8a/0xf0
[  136.578801][ T8637]  ip_setsockopt+0xcb/0xf0
[  136.580078][ T8637]  udp_setsockopt+0x7d/0xd0
[  136.581378][ T8637]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  136.583099][ T8637]  do_sock_setsockopt+0x222/0x480
[  136.584464][ T8637]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  136.586028][ T8637]  ? lock_acquire+0x2f/0xb0
[  136.587342][ T8637]  __sys_setsockopt+0x1a0/0x230
[  136.588776][ T8637]  __ia32_sys_setsockopt+0xbc/0x160
[  136.590242][ T8637]  ? lockdep_hardirqs_on+0x7c/0x110
[  136.591709][ T8637]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  136.593610][ T8637]  __do_fast_syscall_32+0x73/0x120
[  136.595086][ T8637]  do_fast_syscall_32+0x32/0x80
[  136.596513][ T8637]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  136.598396][ T8637] RIP: 0023:0xf7ff3579
[  136.599578][ T8637] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  136.605157][ T8637] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  136.607635][ T8637] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000000
[  136.610003][ T8637] RDX: 0000000000000040 RSI: 0000000020000580 RDI: 0000000000000580
[  136.612563][ T8637] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  136.614918][ T8637] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  136.617276][ T8637] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  136.619580][ T8637]  </TASK>
[  136.629263][ T8637] Cannot find set identified by id 0 to match
[  136.645384][ T8631] RDS/IB: s
z1: added
[  136.648227][ T8631] smc: adding ib device s
z1 with port count 1
[  136.651738][ T8631] smc:    ib device s
z1 port 1 has pnetid 
[  136.655383][ T1019] lo speed is unknown, defaulting to 1000
[  136.660085][ T8631] lo speed is unknown, defaulting to 1000
[  136.714220][ T8631] lo speed is unknown, defaulting to 1000
[  136.767669][ T8631] lo speed is unknown, defaulting to 1000
[  136.808523][ T8631] lo speed is unknown, defaulting to 1000
[  136.852795][ T8631] lo speed is unknown, defaulting to 1000
[  136.948877][ T8661] ata1.00: invalid command format 189
[  137.903432][ T8694] blktrace: Concurrent blktraces are not allowed on sg0
[  137.932945][   T73] IPVS: starting estimator thread 0...
[  138.011098][ T8705] netlink: 32 bytes leftover after parsing attributes in process `syz.4.668'.
[  138.025245][ T8707] netlink: 16215 bytes leftover after parsing attributes in process `syz.5.667'.
[  138.036175][ T8700] IPVS: using max 38 ests per chain, 91200 per kthread
[  138.040499][ T8707] netlink: 7 bytes leftover after parsing attributes in process `syz.5.667'.
[  138.054677][ T5928] Bluetooth: hci3: unexpected event for opcode 0x0c25
[  138.595523][ T8726] lo speed is unknown, defaulting to 1000
[  138.643402][ T8728] netlink: 48 bytes leftover after parsing attributes in process `syz.3.675'.
[  138.832382][   T39] audit: type=1326 audit(1736396799.910:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.2.676" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x7ffc0000
[  138.839246][   T39] audit: type=1326 audit(1736396799.910:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.2.676" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x7ffc0000
[  138.846298][   T39] audit: type=1326 audit(1736396799.920:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.2.676" exe="/syz-executor" sig=0 arch=40000003 syscall=50 compat=1 ip=0xf7ff3579 code=0x7ffc0000
[  138.846319][   T39] audit: type=1326 audit(1736396799.920:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.2.676" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x7ffc0000
[  138.846335][   T39] audit: type=1326 audit(1736396799.920:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.2.676" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7ff3579 code=0x7ffc0000
[  138.893215][ T8736] hsr_slave_0: left promiscuous mode
[  138.898986][ T8736] hsr_slave_1: left promiscuous mode
[  140.479369][ T8767] input: syz1 as /devices/virtual/input/input68
[  140.573945][ T8779] netlink: 12 bytes leftover after parsing attributes in process `syz.5.690'.
[  140.871883][ T8787] input: syz0 as /devices/virtual/input/input69
[  140.877773][ T8787] input: failed to attach handler leds to device input69, error: -6
[  140.895998][ T5958] libceph: connect (1)[c::]:6789 error -101
[  140.897990][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  141.123834][   T39] audit: type=1326 audit(1736396802.200:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8792 comm="syz.5.694" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  141.133485][   T39] audit: type=1326 audit(1736396802.210:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8792 comm="syz.5.694" exe="/syz-executor" sig=0 arch=40000003 syscall=258 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  141.139702][   T39] audit: type=1326 audit(1736396802.210:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8792 comm="syz.5.694" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  141.145675][   T39] audit: type=1326 audit(1736396802.210:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8792 comm="syz.5.694" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  141.151987][   T39] audit: type=1326 audit(1736396802.210:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8792 comm="syz.5.694" exe="/syz-executor" sig=0 arch=40000003 syscall=254 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  141.157051][ T5958] libceph: connect (1)[c::]:6789 error -101
[  141.161352][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  141.191550][ T8793] netlink: 168 bytes leftover after parsing attributes in process `syz.5.694'.
[  141.194064][ T8793] netlink: 'syz.5.694': attribute type 1 has an invalid length.
[  141.290417][ T8766] orangefs_mount: mount request failed with -4
[  141.457966][ T8787] ceph: No mds server is up or the cluster is laggy
[  142.006761][ T8812] futex_wake_op: syz.5.699 tries to shift op by -1; fix this program
[  142.016435][ T8812] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.068826][ T8812] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.128690][ T8812] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.189782][ T8812] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.258328][ T8812] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.263307][ T8812] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.270021][ T8812] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.275175][ T8812] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.603935][ T8832] SET target dimension over the limit!
[  142.778657][ T8837] netlink: 48 bytes leftover after parsing attributes in process `syz.3.706'.
[  142.912421][ T8839] input: syz0 as /devices/virtual/input/input70
[  142.914861][ T8839] input: failed to attach handler leds to device input70, error: -6
[  142.929905][ T5958] libceph: connect (1)[c::]:6789 error -101
[  142.932708][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  142.936322][ T5958] libceph: connect (1)[c::]:6789 error -101
[  142.938602][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  143.196575][ T1019] libceph: connect (1)[c::]:6789 error -101
[  143.198843][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  143.464502][ T8853] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  143.471935][ T8853] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  143.521264][ T8839] ceph: No mds server is up or the cluster is laggy
[  143.577203][ T8853] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(9)
[  143.579671][ T8853] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  143.583723][ T8853] vhci_hcd vhci_hcd.0: Device attached
[  143.988204][ T8858] vhci_hcd: connection closed
[  143.991619][   T12] vhci_hcd: stop threads
[  143.995406][   T12] vhci_hcd: release socket
[  144.000656][   T12] vhci_hcd: disconnect device
[  144.178607][ T8866] net_ratelimit: 3 callbacks suppressed
[  144.178622][ T8866] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  144.243153][ T8868] FAULT_INJECTION: forcing a failure.
[  144.243153][ T8868] name failslab, interval 1, probability 0, space 0, times 0
[  144.247326][ T8868] CPU: 3 UID: 0 PID: 8868 Comm: syz.5.714 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  144.250365][ T8868] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.253490][ T8868] Call Trace:
[  144.254478][ T8868]  <TASK>
[  144.255364][ T8868]  dump_stack_lvl+0x16c/0x1f0
[  144.256805][ T8868]  should_fail_ex+0x497/0x5b0
[  144.258148][ T8868]  ? fs_reclaim_acquire+0xae/0x150
[  144.259631][ T8868]  should_failslab+0xc2/0x120
[  144.261088][ T8868]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  144.262595][ T8868]  ? __pfx___might_resched+0x10/0x10
[  144.264077][ T8868]  ? __anon_vma_prepare+0xae/0x5e0
[  144.265626][ T8868]  __anon_vma_prepare+0xae/0x5e0
[  144.267017][ T8868]  ? __pfx___pte_alloc+0x10/0x10
[  144.268528][ T8868]  __vmf_anon_prepare+0x11c/0x240
[  144.269958][ T8868]  do_pte_missing+0x1020/0x3e00
[  144.271449][ T8868]  ? mt_find+0x82d/0xa20
[  144.272640][ T8868]  ? __pfx_lock_release+0x10/0x10
[  144.274042][ T8868]  __handle_mm_fault+0x103c/0x2a40
[  144.275637][ T8868]  ? __pfx___handle_mm_fault+0x10/0x10
[  144.277157][ T8868]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  144.278878][ T8868]  ? find_vma+0xc0/0x140
[  144.280061][ T8868]  ? __pfx_find_vma+0x10/0x10
[  144.281489][ T8868]  handle_mm_fault+0x3fa/0xaa0
[  144.282853][ T8868]  do_user_addr_fault+0x7a3/0x13f0
[  144.284282][ T8868]  exc_page_fault+0x5c/0xc0
[  144.285663][ T8868]  asm_exc_page_fault+0x26/0x30
[  144.287324][ T8868] RIP: 0010:_copy_to_user+0xb6/0xd0
[  144.288838][ T8868] Code: 89 ee 48 89 ef e8 1a 81 00 fd 4d 85 ff 75 a8 e8 a0 86 00 fd 89 de 4c 89 e7 e8 56 f5 62 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[  144.294416][ T8868] RSP: 0018:ffffc9002653fd78 EFLAGS: 00050246
[  144.296199][ T8868] RAX: 0000000000000001 RBX: 0000000000000020 RCX: 0000000000000020
[  144.298673][ T8868] RDX: fffff52004ca7fc0 RSI: ffffc9002653fde0 RDI: 0000000020000500
[  144.301179][ T8868] RBP: 0000000020000500 R08: 0000000000000000 R09: fffff52004ca7fbf
[  144.304002][ T8868] R10: ffffc9002653fdff R11: 0000000000000000 R12: ffffc9002653fde0
[  144.306828][ T8868] R13: 0000000020000520 R14: 00007ffffffff000 R15: 0000000000000000
[  144.309483][ T8868]  ? _copy_to_user+0xaa/0xd0
[  144.311110][ T8868]  compat_ksys_msgctl+0x2a0/0x3f0
[  144.312932][ T8868]  ? __pfx_compat_ksys_msgctl+0x10/0x10
[  144.314919][ T8868]  __do_fast_syscall_32+0x73/0x120
[  144.316882][ T8868]  do_fast_syscall_32+0x32/0x80
[  144.318582][ T8868]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.320537][ T8868] RIP: 0023:0xf7ff1579
[  144.321984][ T8868] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  144.327289][ T8868] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000192
[  144.329648][ T8868] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000003
[  144.331860][ T8868] RDX: 0000000020000500 RSI: 0000000000000000 RDI: 0000000000000000
[  144.334033][ T8868] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  144.336383][ T8868] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  144.338595][ T8868] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  144.340839][ T8868]  </TASK>
[  144.394259][ T8872] netfs: Couldn't get user pages (rc=-14)
[  144.550895][ T8882] netlink: 32 bytes leftover after parsing attributes in process `syz.5.718'.
[  144.590199][ T8885] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  144.592069][ T8885] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  144.594395][ T8885] vhci_hcd vhci_hcd.0: Device attached
[  144.600058][ T8886] vhci_hcd: connection closed
[  144.606174][   T11] vhci_hcd: stop threads
[  144.611129][   T11] vhci_hcd: release socket
[  144.613599][   T11] vhci_hcd: disconnect device
[  144.848759][ T8893] input: syz0 as /devices/virtual/input/input71
[  144.850850][ T8893] input: failed to attach handler leds to device input71, error: -6
[  144.869977][ T5958] libceph: connect (1)[c::]:6789 error -101
[  144.871743][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  144.874303][ T5958] libceph: connect (1)[c::]:6789 error -101
[  144.876049][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  144.981540][ T8900] dccp_invalid_packet: P.Data Offset(100) too large
[  145.146450][ T5958] libceph: connect (1)[c::]:6789 error -101
[  145.148329][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  145.511936][ T8893] ceph: No mds server is up or the cluster is laggy
[  145.886748][ T8934] lo speed is unknown, defaulting to 1000
[  147.201766][ T8958] input: syz0 as /devices/virtual/input/input72
[  147.219309][ T8958] input: failed to attach handler leds to device input72, error: -6
[  147.248308][ T5958] libceph: connect (1)[c::]:6789 error -101
[  147.250129][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  147.325277][ T8966] netlink: 48 bytes leftover after parsing attributes in process `syz.3.736'.
[  147.397349][ T8968] Cannot find set identified by id 0 to match
[  147.516590][ T5958] libceph: connect (1)[c::]:6789 error -101
[  147.519094][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  147.545010][ T8976] netlink: 4 bytes leftover after parsing attributes in process `syz.5.739'.
[  147.834403][ T8958] ceph: No mds server is up or the cluster is laggy
[  148.000197][ T8992] netlink: 8 bytes leftover after parsing attributes in process `syz.4.745'.
[  148.020608][ T8992] overlayfs: failed to get index nlink (file1/bus, err=-61)
[  148.636257][   T57] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  148.816230][   T57] usb 10-1: Using ep0 maxpacket: 16
[  148.820524][   T57] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  148.824752][   T57] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  148.828621][   T57] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  148.833580][   T57] usb 10-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  148.837448][   T57] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.841846][   T57] usb 10-1: config 0 descriptor??
[  148.971519][ T9008] input: syz1 as /devices/virtual/input/input74
[  149.089115][ T9023] fuse: Unknown parameter 'uid'
[  149.330892][ T9036] dccp_invalid_packet: P.Data Offset(100) too large
[  149.366224][   T35] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  149.463809][ T9006] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  149.466329][ T9006] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  149.492132][   T57] usbhid 10-1:0.0: can't add hid device: -71
[  149.493861][   T57] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[  149.497861][   T57] usb 10-1: USB disconnect, device number 4
[  149.517366][   T35] usb 9-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  149.520593][   T35] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.523725][   T35] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.527538][   T35] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  149.532062][   T35] usb 9-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  149.534595][   T35] usb 9-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  149.537355][   T35] usb 9-1: Manufacturer: syz
[  149.539931][   T35] usb 9-1: config 0 descriptor??
[  149.946826][   T35] appleir 0003:05AC:8243.0007: unknown main item tag 0x0
[  149.949138][   T35] appleir 0003:05AC:8243.0007: No inputs registered, leaving
[  149.954704][   T35] appleir 0003:05AC:8243.0007: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  150.586502][ T9053] 9pnet_fd: Insufficient options for proto=fd
[  150.754636][   T35] usb 9-1: USB disconnect, device number 7
[  150.951954][ T9055] netlink: zone id is out of range
[  150.953994][ T9055] netlink: zone id is out of range
[  150.956977][ T9055] netlink: zone id is out of range
[  150.958552][ T9055] netlink: zone id is out of range
[  150.960635][ T9055] netlink: zone id is out of range
[  150.962528][ T9055] netlink: zone id is out of range
[  150.964071][ T9055] netlink: zone id is out of range
[  150.967564][ T9055] netlink: zone id is out of range
[  150.969163][ T9055] netlink: zone id is out of range
[  151.017097][ T9057] FAULT_INJECTION: forcing a failure.
[  151.017097][ T9057] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.021076][ T9057] CPU: 0 UID: 0 PID: 9057 Comm: syz.2.768 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  151.024085][ T9057] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.027158][ T9057] Call Trace:
[  151.028133][ T9057]  <TASK>
[  151.029025][ T9057]  dump_stack_lvl+0x16c/0x1f0
[  151.030407][ T9057]  should_fail_ex+0x497/0x5b0
[  151.031768][ T9057]  _copy_from_iter+0x29b/0x1400
[  151.033175][ T9057]  ? trace_lock_acquire+0x14e/0x1f0
[  151.034705][ T9057]  ? lockdep_hardirqs_on+0x7c/0x110
[  151.036197][ T9057]  ? __pfx__copy_from_iter+0x10/0x10
[  151.037762][ T9057]  ? __virt_addr_valid+0x1a4/0x590
[  151.039321][ T9057]  ? __virt_addr_valid+0x5e/0x590
[  151.040799][ T9057]  ? __phys_addr+0xc6/0x150
[  151.042110][ T9057]  ? __phys_addr_symbol+0x30/0x80
[  151.043570][ T9057]  ? __check_object_size+0x488/0x710
[  151.045092][ T9057]  bcm_sendmsg+0x2c71/0x4390
[  151.046439][ T9057]  ? __pfx_bcm_sendmsg+0x10/0x10
[  151.047903][ T9057]  ? __import_iovec+0x1f2/0x6d0
[  151.049331][ T9057]  ____sys_sendmsg+0x9ae/0xb40
[  151.050784][ T9057]  ? __pfx_____sys_sendmsg+0x10/0x10
[  151.052379][ T9057]  ? get_compat_msghdr+0x11b/0x170
[  151.053806][ T9057]  ___sys_sendmsg+0x135/0x1e0
[  151.055175][ T9057]  ? __pfx____sys_sendmsg+0x10/0x10
[  151.056723][ T9057]  ? __pfx_lock_release+0x10/0x10
[  151.058179][ T9057]  ? trace_lock_acquire+0x14e/0x1f0
[  151.059692][ T9057]  ? __fget_files+0x206/0x3a0
[  151.061058][ T9057]  __sys_sendmsg+0x16e/0x220
[  151.062398][ T9057]  ? __pfx___sys_sendmsg+0x10/0x10
[  151.063876][ T9057]  __do_fast_syscall_32+0x73/0x120
[  151.065354][ T9057]  do_fast_syscall_32+0x32/0x80
[  151.066800][ T9057]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.068649][ T9057] RIP: 0023:0xf7ff3579
[  151.069849][ T9057] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.075371][ T9057] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  151.077784][ T9057] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000200
[  151.080053][ T9057] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  151.082298][ T9057] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  151.084587][ T9057] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  151.086856][ T9057] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.089244][ T9057]  </TASK>
[  151.147560][ T9058] random: crng reseeded on system resumption
[  151.390706][ T9078] netlink: 36 bytes leftover after parsing attributes in process `syz.3.776'.
[  151.692804][ T9089] input: syz0 as /devices/virtual/input/input76
[  151.694773][ T9089] input: failed to attach handler leds to device input76, error: -6
[  151.705243][ T1019] libceph: connect (1)[c::]:6789 error -101
[  151.707851][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  151.969340][ T1019] libceph: connect (1)[c::]:6789 error -101
[  151.972092][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  152.040125][ T9101] input input77: cannot allocate more than FF_MAX_EFFECTS effects
[  152.099014][ T9102] netlink: 4 bytes leftover after parsing attributes in process `syz.4.783'.
[  152.308802][ T9089] ceph: No mds server is up or the cluster is laggy
[  153.055114][ T9131] syz.2.791: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  153.060122][ T9131] CPU: 2 UID: 0 PID: 9131 Comm: syz.2.791 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  153.063161][ T9131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.066207][ T9131] Call Trace:
[  153.067181][ T9131]  <TASK>
[  153.068070][ T9131]  dump_stack_lvl+0x16c/0x1f0
[  153.069473][ T9131]  warn_alloc+0x24d/0x3a0
[  153.070734][ T9131]  ? __pfx_warn_alloc+0x10/0x10
[  153.072155][ T9131]  ? __pfx_stack_trace_save+0x10/0x10
[  153.073721][ T9131]  ? kasan_save_stack+0x42/0x60
[  153.075138][ T9131]  ? kasan_save_stack+0x33/0x60
[  153.076551][ T9131]  ? kasan_save_track+0x14/0x30
[  153.077976][ T9131]  ? __kasan_kmalloc+0xaa/0xb0
[  153.079587][ T9131]  ? xskq_create+0x52/0x1d0
[  153.080895][ T9131]  ? do_sock_setsockopt+0x222/0x480
[  153.082409][ T9131]  ? __sys_setsockopt+0x1a0/0x230
[  153.083871][ T9131]  ? __ia32_sys_setsockopt+0xbc/0x160
[  153.085412][ T9131]  __vmalloc_node_range_noprof+0x10df/0x1530
[  153.087141][ T9131]  ? xskq_create+0xfb/0x1d0
[  153.088488][ T9131]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  153.090317][ T9131]  ? xskq_create+0xfb/0x1d0
[  153.091652][ T9131]  vmalloc_user_noprof+0x6b/0x90
[  153.093081][ T9131]  ? xskq_create+0xfb/0x1d0
[  153.094398][ T9131]  xskq_create+0xfb/0x1d0
[  153.095644][ T9131]  xsk_setsockopt+0x8b0/0xac0
[  153.097084][ T9131]  ? __pfx_xsk_setsockopt+0x10/0x10
[  153.098679][ T9131]  ? find_held_lock+0x2d/0x110
[  153.100310][ T9131]  ? __pfx_xsk_setsockopt+0x10/0x10
[  153.101794][ T9131]  do_sock_setsockopt+0x222/0x480
[  153.103249][ T9131]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  153.104820][ T9131]  ? lock_acquire+0x2f/0xb0
[  153.106127][ T9131]  __sys_setsockopt+0x1a0/0x230
[  153.107534][ T9131]  __ia32_sys_setsockopt+0xbc/0x160
[  153.109066][ T9131]  ? lockdep_hardirqs_on+0x7c/0x110
[  153.110570][ T9131]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  153.112381][ T9131]  __do_fast_syscall_32+0x73/0x120
[  153.113809][ T9131]  do_fast_syscall_32+0x32/0x80
[  153.115169][ T9131]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.116874][ T9131] RIP: 0023:0xf7ff3579
[  153.118041][ T9131] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  153.123639][ T9131] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  153.125992][ T9131] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b
[  153.128247][ T9131] RDX: 0000000000000002 RSI: 0000000020000080 RDI: 000000000000001c
[  153.130566][ T9131] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.132707][ T9131] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  153.134922][ T9131] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.137095][ T9131]  </TASK>
[  153.149765][ T9131] Mem-Info:
[  153.153238][ T9131] active_anon:5586 inactive_anon:686 isolated_anon:0
[  153.153238][ T9131]  active_file:9855 inactive_file:12950 isolated_file:0
[  153.153238][ T9131]  unevictable:1790 dirty:311 writeback:0
[  153.153238][ T9131]  slab_reclaimable:7754 slab_unreclaimable:66351
[  153.153238][ T9131]  mapped:24667 shmem:2520 pagetables:882
[  153.153238][ T9131]  sec_pagetables:306 bounce:0
[  153.153238][ T9131]  kernel_misc_reclaimable:0
[  153.153238][ T9131]  free:71399 free_pcp:4567 free_cma:0
[  153.166681][ T9131] Node 0 active_anon:4612kB inactive_anon:1204kB active_file:9416kB inactive_file:184kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4788kB dirty:56kB writeback:0kB shmem:5064kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9804kB pagetables:856kB sec_pagetables:1136kB all_unreclaimable? yes
[  153.175631][ T9131] Node 1 active_anon:17720kB inactive_anon:1540kB active_file:30020kB inactive_file:51684kB unevictable:3532kB isolated(anon):0kB isolated(file):0kB mapped:93908kB dirty:1204kB writeback:0kB shmem:5024kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2836kB pagetables:2744kB sec_pagetables:88kB all_unreclaimable? no
[  153.189479][ T9131] Node 0 DMA free:2976kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:136kB inactive_anon:136kB active_file:176kB inactive_file:40kB unevictable:0kB writepending:44kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:412kB local_pcp:20kB free_cma:0kB
[  153.198959][ T9131] lowmem_reserve[]: 0 273 0 0 0
[  153.200430][ T9131] Node 0 DMA32 free:17356kB boost:2048kB min:15952kB low:19428kB high:22904kB reserved_highatomic:2048KB active_anon:4476kB inactive_anon:1068kB active_file:9240kB inactive_file:144kB unevictable:3536kB writepending:12kB present:1032196kB managed:306308kB mlocked:0kB bounce:0kB free_pcp:4176kB local_pcp:48kB free_cma:0kB
[  153.210708][ T9131] lowmem_reserve[]: 0 0 0 0 0
[  153.212661][ T9131] Node 1 DMA32 free:273120kB boost:18432kB min:65576kB low:77360kB high:89144kB reserved_highatomic:10240KB active_anon:17712kB inactive_anon:1540kB active_file:30020kB inactive_file:51676kB unevictable:3536kB writepending:1208kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:5856kB local_pcp:840kB free_cma:0kB
[  153.224870][ T9131] lowmem_reserve[]: 0 0 0 0 0
[  153.226984][ T9131] Node 0 DMA: 30*4kB (UM) 85*8kB (UM) 42*16kB (UM) 41*32kB (UM) 3*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2976kB
[  153.232732][ T9131] Node 0 DMA32: 18*4kB (UEH) 12*8kB (MEH) 9*16kB (UMEH) 106*32kB (UE) 49*64kB (UMEH) 18*128kB (UME) 8*256kB (UM) 4*512kB (UM) 0*1024kB 0*2048kB 1*4096kB (U) = 17336kB
[  153.239021][ T9131] Node 1 DMA32: 454*4kB (UME) 792*8kB (UME) 779*16kB (UME) 505*32kB (UME) 280*64kB (UME) 63*128kB (UM) 39*256kB (UM) 57*512kB (UME) 35*1024kB (UM) 16*2048kB (UMH) 25*4096kB (UMH) = 272936kB
[  153.244625][ T9131] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  153.248893][ T9131] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  153.252719][ T9131] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  153.258577][ T9131] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  153.261938][ T9135] FAULT_INJECTION: forcing a failure.
[  153.261938][ T9135] name failslab, interval 1, probability 0, space 0, times 0
[  153.262275][ T9131] 25311 total pagecache pages
[  153.262286][ T9131] 0 pages in swap cache
[  153.262294][ T9131] Free swap  = 124148kB
[  153.266316][ T9135] CPU: 2 UID: 0 PID: 9135 Comm: syz.3.790 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  153.271896][ T9131] Total swap = 124996kB
[  153.273538][ T9135] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.273547][ T9135] Call Trace:
[  153.275216][ T9131] 524155 pages RAM
[  153.278376][ T9135]  <TASK>
[  153.278385][ T9135]  dump_stack_lvl+0x16c/0x1f0
[  153.278402][ T9135]  should_fail_ex+0x497/0x5b0
[  153.278415][ T9135]  ? fs_reclaim_acquire+0xae/0x150
[  153.278429][ T9135]  should_failslab+0xc2/0x120
[  153.278443][ T9135]  __kmalloc_node_noprof+0xd1/0x520
[  153.280704][ T9131] 0 pages HighMem/MovableOnly
[  153.280871][ T9135]  ? alloc_slab_obj_exts+0x41/0xa0
[  153.282187][ T9131] 206675 pages reserved
[  153.283439][ T9135]  alloc_slab_obj_exts+0x41/0xa0
[  153.285231][ T9131] 0 pages cma reserved
[  153.286680][ T9135]  __memcg_slab_post_alloc_hook+0x2a7/0x9b0
[  153.286700][ T9135]  ? kasan_save_track+0x14/0x30
[  153.286713][ T9135]  kmem_cache_alloc_lru_noprof+0x30d/0x3b0
[  153.286726][ T9135]  ? __pfx_lookup_one_len+0x10/0x10
[  153.286740][ T9135]  ? alloc_inode+0xbf/0x230
[  153.305006][ T9135]  alloc_inode+0xbf/0x230
[  153.306210][ T9135]  new_inode+0x22/0x210
[  153.307436][ T9135]  ? start_creating.part.0+0x25d/0x3a0
[  153.309102][ T9135]  debugfs_create_dir+0xdd/0x5f0
[  153.310525][ T9135]  kvm_vm_ioctl+0x384c/0x3df0
[  153.311876][ T9135]  ? stack_trace_save+0x95/0xd0
[  153.313293][ T9135]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  153.314739][ T9135]  ? __pfx_mark_lock+0x10/0x10
[  153.316058][ T9135]  ? stack_depot_save_flags+0x28/0x9e0
[  153.317656][ T9135]  ? kasan_save_stack+0x42/0x60
[  153.319073][ T9135]  ? kasan_save_stack+0x33/0x60
[  153.320484][ T9135]  ? kasan_save_track+0x14/0x30
[  153.321840][ T9135]  ? kasan_save_free_info+0x3b/0x60
[  153.323307][ T9135]  ? __kasan_slab_free+0x51/0x70
[  153.324715][ T9135]  ? kfree+0x14f/0x4b0
[  153.325887][ T9135]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  153.327518][ T9135]  ? security_file_ioctl_compat+0x9b/0x240
[  153.329195][ T9135]  ? __do_compat_sys_ioctl+0x4e/0x2c0
[  153.330752][ T9135]  ? __do_fast_syscall_32+0x73/0x120
[  153.332263][ T9135]  ? do_fast_syscall_32+0x32/0x80
[  153.333706][ T9135]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.335543][ T9135]  ? kvm_arch_vm_compat_ioctl+0x2d1/0x480
[  153.337150][ T9135]  ? hlock_class+0x4e/0x130
[  153.338469][ T9135]  ? mark_lock+0xb5/0xc60
[  153.339991][ T9135]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  153.342316][ T9135]  ? __pfx_mark_lock+0x10/0x10
[  153.344157][ T9135]  ? find_held_lock+0x2d/0x110
[  153.345972][ T9135]  ? tomoyo_path_number_perm+0x298/0x5b0
[  153.348179][ T9135]  ? __pfx_lock_release+0x10/0x10
[  153.350197][ T9135]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  153.352466][ T9135]  ? tomoyo_path_number_perm+0x190/0x5b0
[  153.354703][ T9135]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  153.356742][ T9135]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  153.358849][ T9135]  ? do_vfs_ioctl+0x513/0x1950
[  153.360664][ T9135]  kvm_vm_compat_ioctl+0x399/0x440
[  153.362624][ T9135]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  153.364722][ T9135]  ? __pfx_lock_release+0x10/0x10
[  153.366641][ T9135]  ? trace_lock_acquire+0x14e/0x1f0
[  153.368590][ T9135]  ? __fget_files+0x206/0x3a0
[  153.370388][ T9135]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  153.372052][ T9135]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  153.373585][ T9135]  __do_fast_syscall_32+0x73/0x120
[  153.375081][ T9135]  do_fast_syscall_32+0x32/0x80
[  153.376450][ T9135]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.378290][ T9135] RIP: 0023:0xf707e579
[  153.379544][ T9135] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  153.385096][ T9135] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  153.387417][ T9135] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000ae41
[  153.389743][ T9135] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  153.392045][ T9135] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.394315][ T9135] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  153.396621][ T9135] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.398950][ T9135]  </TASK>
[  153.834660][ T9155] netlink: 'syz.4.797': attribute type 10 has an invalid length.
[  153.856251][ T9155] batman_adv: batadv0: Adding interface: team0
[  153.858603][ T9155] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.865667][ T9155] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  155.476304][ T1019] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  155.585678][ T9196] netlink: 48 bytes leftover after parsing attributes in process `syz.2.809'.
[  155.646271][ T1019] usb 9-1: Using ep0 maxpacket: 16
[  155.649357][ T1019] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  155.653911][ T1019] usb 9-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  155.656741][ T1019] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.660200][ T1019] usb 9-1: Product: syz
[  155.663636][ T1019] usb 9-1: Manufacturer: syz
[  155.666412][ T1019] usb 9-1: SerialNumber: syz
[  155.671876][ T1019] usb 9-1: config 0 descriptor??
[  155.678514][ T1019] hub 9-1:0.0: bad descriptor, ignoring hub
[  155.684466][ T1019] hub 9-1:0.0: probe with driver hub failed with error -5
[  155.696412][ T1019] input: syz syz as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input78
[  156.117882][ T5992] usb 9-1: USB disconnect, device number 8
[  156.712124][ T5928] Bluetooth: hci3: unexpected event for opcode 0x0c25
[  157.129909][ T9221] net_ratelimit: 4 callbacks suppressed
[  157.129921][ T9221] dccp_invalid_packet: P.Data Offset(100) too large
[  159.383046][ T9264] xfrm0: entered allmulticast mode
[  159.876242][ T5928] Bluetooth: hci0: command 0x0406 tx timeout
[  159.955139][ T9273] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[  159.983429][ T9275] netlink: 192 bytes leftover after parsing attributes in process `syz.4.832'.
[  160.084521][ T9282] netlink: 'syz.4.835': attribute type 14 has an invalid length.
[  160.174856][ T9287] netlink: 192 bytes leftover after parsing attributes in process `syz.4.837'.
[  160.186324][ T9287] FAULT_INJECTION: forcing a failure.
[  160.186324][ T9287] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  160.191058][ T9287] CPU: 2 UID: 0 PID: 9287 Comm: syz.4.837 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  160.194140][ T9287] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.197225][ T9287] Call Trace:
[  160.198199][ T9287]  <TASK>
[  160.199316][ T9287]  dump_stack_lvl+0x16c/0x1f0
[  160.201100][ T9287]  should_fail_ex+0x497/0x5b0
[  160.202864][ T9287]  _copy_to_user+0x32/0xd0
[  160.204561][ T9287]  simple_read_from_buffer+0xd0/0x160
[  160.206614][ T9287]  proc_fail_nth_read+0x198/0x270
[  160.208527][ T9287]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  160.210561][ T9287]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  160.212557][ T9287]  vfs_read+0x1df/0xbe0
[  160.214045][ T9287]  ? __fget_files+0x1fc/0x3a0
[  160.215828][ T9287]  ? __pfx___mutex_lock+0x10/0x10
[  160.217776][ T9287]  ? __pfx_vfs_read+0x10/0x10
[  160.219646][ T9287]  ? __fget_files+0x206/0x3a0
[  160.221498][ T9287]  ksys_read+0x12b/0x250
[  160.223207][ T9287]  ? __pfx_ksys_read+0x10/0x10
[  160.225077][ T9287]  __do_fast_syscall_32+0x73/0x120
[  160.227116][ T9287]  do_fast_syscall_32+0x32/0x80
[  160.229083][ T9287]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  160.231573][ T9287] RIP: 0023:0xf7f55579
[  160.233148][ T9287] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  160.240402][ T9287] RSP: 002b:00000000f50a6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  160.243566][ T9287] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f50a6620
[  160.246454][ T9287] RDX: 000000000000000f RSI: 00000000f73e3ff4 RDI: 0000000000000000
[  160.249287][ T9287] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  160.252285][ T9287] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  160.255290][ T9287] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  160.258306][ T9287]  </TASK>
[  160.259416][    C2] vkms_vblank_simulate: vblank timer overrun
[  160.669131][ T9295] vlan2: entered promiscuous mode
[  163.446294][ T9302] netlink: 192 bytes leftover after parsing attributes in process `syz.3.843'.
[  163.496453][ T9299] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !寿$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒw˜}�z
[  163.558978][ T9306] FAULT_INJECTION: forcing a failure.
[  163.558978][ T9306] name failslab, interval 1, probability 0, space 0, times 0
[  163.562598][ T9306] CPU: 2 UID: 0 PID: 9306 Comm: syz.3.844 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  163.565595][ T9306] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.568669][ T9306] Call Trace:
[  163.569650][ T9306]  <TASK>
[  163.570523][ T9306]  dump_stack_lvl+0x16c/0x1f0
[  163.571885][ T9306]  should_fail_ex+0x497/0x5b0
[  163.573246][ T9306]  ? fs_reclaim_acquire+0xae/0x150
[  163.574727][ T9306]  should_failslab+0xc2/0x120
[  163.576083][ T9306]  __kmalloc_node_noprof+0xd1/0x520
[  163.577633][ T9306]  ? __vmalloc_node_range_noprof+0x3d8/0x1530
[  163.579381][ T9306]  __vmalloc_node_range_noprof+0x3d8/0x1530
[  163.581075][ T9306]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  163.582664][ T9306]  ? __pfx___lock_acquire+0x10/0x10
[  163.584152][ T9306]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  163.585943][ T9306]  ? lock_acquire.part.0+0x11b/0x380
[  163.587481][ T9306]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  163.589069][ T9306]  __vmalloc_noprof+0x6d/0x90
[  163.590469][ T9306]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  163.592040][ T9306]  bpf_prog_alloc_no_stats+0x54/0x630
[  163.593570][ T9306]  ? xt_find_match.part.0+0x17f/0x250
[  163.595066][ T9306]  bpf_prog_alloc+0x3b/0x230
[  163.596376][ T9306]  bpf_prog_create+0xa6/0x240
[  163.597753][ T9306]  bpf_mt_check+0xf9/0x1a0
[  163.599046][ T9306]  ? __pfx_bpf_mt_check+0x10/0x10
[  163.600493][ T9306]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  163.602211][ T9306]  ? __pfx_bpf_mt_check+0x10/0x10
[  163.603657][ T9306]  xt_check_match+0x284/0xa50
[  163.605008][ T9306]  ? __pfx_xt_check_match+0x10/0x10
[  163.606533][ T9306]  ? xt_find_match.part.0+0x1b6/0x250
[  163.608091][ T9306]  ? xt_find_match.part.0+0x1b6/0x250
[  163.609650][ T9306]  find_check_entry.constprop.0+0x325/0x9c0
[  163.611356][ T9306]  ? __pfx_find_check_entry.constprop.0+0x10/0x10
[  163.613193][ T9306]  ? kfree+0x14f/0x4b0
[  163.614374][ T9306]  ? kvfree+0x47/0x50
[  163.615526][ T9306]  translate_table+0xc88/0x1730
[  163.616940][ T9306]  ? __pfx_translate_table+0x10/0x10
[  163.618493][ T9306]  translate_compat_table+0x13d9/0x18c0
[  163.620091][ T9306]  ? __pfx_translate_compat_table+0x10/0x10
[  163.621806][ T9306]  ? __might_fault+0x13b/0x190
[  163.623195][ T9306]  ? trace_lock_acquire+0x14e/0x1f0
[  163.624693][ T9306]  compat_do_replace+0x35d/0x500
[  163.626121][ T9306]  ? __pfx_compat_do_replace+0x10/0x10
[  163.627649][ T9306]  ? aa_get_newest_label+0x376/0x680
[  163.629157][ T9306]  ? __pfx_aa_get_newest_label+0x10/0x10
[  163.630781][ T9306]  ? bpf_lsm_capable+0x9/0x10
[  163.632152][ T9306]  ? security_capable+0x7e/0x260
[  163.633583][ T9306]  do_ipt_set_ctl+0x686/0xc10
[  163.634954][ T9306]  ? __mutex_lock+0x1cc/0xa60
[  163.636317][ T9306]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[  163.637793][ T9306]  ? __mutex_unlock_slowpath+0x164/0x690
[  163.639394][ T9306]  ? sockopt_release_sock+0x52/0x60
[  163.640889][ T9306]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  163.642612][ T9306]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  163.644133][ T9306]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  163.645855][ T9306]  nf_setsockopt+0x8a/0xf0
[  163.647202][ T9306]  ip_setsockopt+0xcb/0xf0
[  163.648494][ T9306]  udp_setsockopt+0x7d/0xd0
[  163.649815][ T9306]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  163.651511][ T9306]  do_sock_setsockopt+0x222/0x480
[  163.652956][ T9306]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  163.654588][ T9306]  ? lock_acquire+0x2f/0xb0
[  163.655931][ T9306]  __sys_setsockopt+0x1a0/0x230
[  163.657347][ T9306]  __ia32_sys_setsockopt+0xbc/0x160
[  163.658846][ T9306]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.660373][ T9306]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  163.662277][ T9306]  __do_fast_syscall_32+0x73/0x120
[  163.663759][ T9306]  do_fast_syscall_32+0x32/0x80
[  163.665162][ T9306]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.666988][ T9306] RIP: 0023:0xf707e579
[  163.668175][ T9306] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.673695][ T9306] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  163.676080][ T9306] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  163.678397][ T9306] RDX: 0000000000000040 RSI: 0000000020000000 RDI: 0000000000000580
[  163.680654][ T9306] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  163.682928][ T9306] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  163.685161][ T9306] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  163.687427][ T9306]  </TASK>
[  163.688442][    C2] vkms_vblank_simulate: vblank timer overrun
[  163.826289][ T9306] syz.3.844: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  163.831434][ T9306] CPU: 2 UID: 0 PID: 9306 Comm: syz.3.844 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  163.834768][ T9306] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.838327][ T9306] Call Trace:
[  163.839346][ T9306]  <TASK>
[  163.840428][ T9306]  dump_stack_lvl+0x16c/0x1f0
[  163.841814][ T9306]  warn_alloc+0x24d/0x3a0
[  163.843098][ T9306]  ? __pfx_warn_alloc+0x10/0x10
[  163.844534][ T9306]  ? dump_stack_lvl+0x1a1/0x1f0
[  163.846222][ T9306]  ? rcu_is_watching+0x12/0xc0
[  163.847677][ T9306]  ? trace_kmalloc+0x2d/0xd0
[  163.849041][ T9306]  ? __kmalloc_node_noprof+0x23d/0x520
[  163.850674][ T9306]  __vmalloc_node_range_noprof+0x1105/0x1530
[  163.852420][ T9306]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  163.854038][ T9306]  ? __pfx___lock_acquire+0x10/0x10
[  163.855566][ T9306]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  163.857416][ T9306]  ? lock_acquire.part.0+0x11b/0x380
[  163.859005][ T9306]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  163.861023][ T9306]  __vmalloc_noprof+0x6d/0x90
[  163.862447][ T9306]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  163.864104][ T9306]  bpf_prog_alloc_no_stats+0x54/0x630
[  163.865665][ T9306]  ? xt_find_match.part.0+0x17f/0x250
[  163.867262][ T9306]  bpf_prog_alloc+0x3b/0x230
[  163.868610][ T9306]  bpf_prog_create+0xa6/0x240
[  163.870010][ T9306]  bpf_mt_check+0xf9/0x1a0
[  163.871324][ T9306]  ? __pfx_bpf_mt_check+0x10/0x10
[  163.872797][ T9306]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  163.874502][ T9306]  ? __pfx_bpf_mt_check+0x10/0x10
[  163.875936][ T9306]  xt_check_match+0x284/0xa50
[  163.877256][ T9306]  ? __pfx_xt_check_match+0x10/0x10
[  163.878756][ T9306]  ? xt_find_match.part.0+0x1b6/0x250
[  163.880330][ T9306]  ? xt_find_match.part.0+0x1b6/0x250
[  163.881891][ T9306]  find_check_entry.constprop.0+0x325/0x9c0
[  163.883611][ T9306]  ? __pfx_find_check_entry.constprop.0+0x10/0x10
[  163.885447][ T9306]  ? kfree+0x14f/0x4b0
[  163.886640][ T9306]  ? kvfree+0x47/0x50
[  163.887816][ T9306]  translate_table+0xc88/0x1730
[  163.889257][ T9306]  ? __pfx_translate_table+0x10/0x10
[  163.890804][ T9306]  translate_compat_table+0x13d9/0x18c0
[  163.892412][ T9306]  ? __pfx_translate_compat_table+0x10/0x10
[  163.894114][ T9306]  ? __might_fault+0x13b/0x190
[  163.895521][ T9306]  ? trace_lock_acquire+0x14e/0x1f0
[  163.897034][ T9306]  compat_do_replace+0x35d/0x500
[  163.898481][ T9306]  ? __pfx_compat_do_replace+0x10/0x10
[  163.900090][ T9306]  ? aa_get_newest_label+0x376/0x680
[  163.901620][ T9306]  ? __pfx_aa_get_newest_label+0x10/0x10
[  163.903253][ T9306]  ? bpf_lsm_capable+0x9/0x10
[  163.904616][ T9306]  ? security_capable+0x7e/0x260
[  163.906051][ T9306]  do_ipt_set_ctl+0x686/0xc10
[  163.907463][ T9306]  ? __mutex_lock+0x1cc/0xa60
[  163.908835][ T9306]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[  163.910337][ T9306]  ? __mutex_unlock_slowpath+0x164/0x690
[  163.911949][ T9306]  ? sockopt_release_sock+0x52/0x60
[  163.913446][ T9306]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  163.915152][ T9306]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  163.916700][ T9306]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  163.918455][ T9306]  nf_setsockopt+0x8a/0xf0
[  163.919756][ T9306]  ip_setsockopt+0xcb/0xf0
[  163.921100][ T9306]  udp_setsockopt+0x7d/0xd0
[  163.922428][ T9306]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  163.924121][ T9306]  do_sock_setsockopt+0x222/0x480
[  163.925575][ T9306]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  163.927182][ T9306]  ? lock_acquire+0x2f/0xb0
[  163.928503][ T9306]  __sys_setsockopt+0x1a0/0x230
[  163.929919][ T9306]  __ia32_sys_setsockopt+0xbc/0x160
[  163.931437][ T9306]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.932943][ T9306]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  163.934837][ T9306]  __do_fast_syscall_32+0x73/0x120
[  163.936379][ T9306]  do_fast_syscall_32+0x32/0x80
[  163.937797][ T9306]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.939638][ T9306] RIP: 0023:0xf707e579
[  163.940813][ T9306] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.946279][ T9306] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  163.948609][ T9306] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  163.950888][ T9306] RDX: 0000000000000040 RSI: 0000000020000000 RDI: 0000000000000580
[  163.953147][ T9306] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  163.955408][ T9306] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  163.957674][ T9306] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  163.959941][ T9306]  </TASK>
[  163.960917][    C2] vkms_vblank_simulate: vblank timer overrun
[  163.990438][ T9306] Mem-Info:
[  163.996254][ T9306] active_anon:1866 inactive_anon:4527 isolated_anon:0
[  163.996254][ T9306]  active_file:6971 inactive_file:17747 isolated_file:0
[  163.996254][ T9306]  unevictable:1778 dirty:165 writeback:0
[  163.996254][ T9306]  slab_reclaimable:7771 slab_unreclaimable:66723
[  163.996254][ T9306]  mapped:24706 shmem:2507 pagetables:881
[  163.996254][ T9306]  sec_pagetables:306 bounce:0
[  163.996254][ T9306]  kernel_misc_reclaimable:0
[  163.996254][ T9306]  free:71671 free_pcp:1416 free_cma:0
[  164.011298][ T9306] Node 0 active_anon:4608kB inactive_anon:1204kB active_file:9416kB inactive_file:184kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4784kB dirty:60kB writeback:0kB shmem:5064kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9824kB pagetables:856kB sec_pagetables:1136kB all_unreclaimable? yes
[  164.021049][ T9306] Node 1 active_anon:2856kB inactive_anon:16904kB active_file:18468kB inactive_file:70804kB unevictable:3576kB isolated(anon):0kB isolated(file):0kB mapped:94040kB dirty:600kB writeback:0kB shmem:4964kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2976kB pagetables:2668kB sec_pagetables:88kB all_unreclaimable? no
[  164.032332][ T9306] Node 0 DMA free:2976kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:136kB inactive_anon:136kB active_file:176kB inactive_file:40kB unevictable:0kB writepending:20kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:456kB local_pcp:20kB free_cma:0kB
[  164.045059][ T9306] lowmem_reserve[]: 0 273 0 0 0
[  164.052567][ T9306] Node 0 DMA32 free:18752kB boost:2048kB min:15952kB low:19428kB high:22904kB reserved_highatomic:2048KB active_anon:4472kB inactive_anon:1068kB active_file:9240kB inactive_file:144kB unevictable:3536kB writepending:12kB present:1032196kB managed:306308kB mlocked:0kB bounce:0kB free_pcp:3080kB local_pcp:40kB free_cma:0kB
[  164.072807][ T9306] lowmem_reserve[]: 0 0 0 0 0
[  164.074232][ T9306] Node 1 DMA32 free:262544kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:10240KB active_anon:2856kB inactive_anon:16904kB active_file:18468kB inactive_file:70804kB unevictable:3576kB writepending:600kB present:1048432kB managed:948252kB mlocked:40kB bounce:0kB free_pcp:4312kB local_pcp:1216kB free_cma:0kB
[  164.083247][ T9306] lowmem_reserve[]: 0 0 0 0 0
[  164.084822][ T9306] Node 0 DMA: 30*4kB (UM) 85*8kB (UM) 42*16kB (UM) 41*32kB (UM) 3*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2976kB
[  164.089937][ T9306] Node 0 DMA32: 32*4kB (UMEH) 26*8kB (UMEH) 13*16kB (UMEH) 115*32kB (UME) 51*64kB (UMEH) 20*128kB (UME) 10*256kB (UM) 4*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 14656kB
[  164.096878][ T9306] Node 1 DMA32: 281*4kB (ME) 925*8kB (UME) 647*16kB (UME) 453*32kB (UME) 282*64kB (UME) 85*128kB (UM) 77*256kB (UM) 68*512kB (UME) 36*1024kB (UM) 17*2048kB (UMH) 18*4096kB (UMH) = 262236kB
[  164.109550][ T9306] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  164.113463][ T9306] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  164.136978][ T9306] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  164.143057][ T9306] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  164.163314][ T9306] 27550 total pagecache pages
[  164.165266][ T9306] 0 pages in swap cache
[  164.173460][ T9306] Free swap  = 124148kB
[  164.175197][ T9306] Total swap = 124996kB
[  164.179219][ T9306] 524155 pages RAM
[  164.180772][ T9306] 0 pages HighMem/MovableOnly
[  164.182681][ T9306] 206675 pages reserved
[  164.184467][ T9306] 0 pages cma reserved
[  164.186340][ T9306] xt_bpf: check failed: parse error
[  164.776164][ T9377] lo speed is unknown, defaulting to 1000
[  165.774276][ T9414] input: syz0 as /devices/virtual/input/input79
[  165.781450][ T9414] input: failed to attach handler leds to device input79, error: -6
[  165.807688][ T9415] input: syz0 as /devices/virtual/input/input80
[  165.816541][ T9415] input: failed to attach handler leds to device input80, error: -6
[  165.866010][ T5958] libceph: connect (1)[c::]:6789 error -101
[  165.868605][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  165.875907][ T5958] libceph: connect (1)[c::]:6789 error -101
[  165.878760][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  165.882043][ T5958] libceph: connect (1)[c::]:6789 error -101
[  165.884825][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  165.899551][ T9421] netlink: 116 bytes leftover after parsing attributes in process `syz.3.861'.
[  165.920435][ T9421] netlink: 72 bytes leftover after parsing attributes in process `syz.3.861'.
[  166.082193][ T9426] Cannot find map_set index 0 as target
[  166.136718][ T5958] libceph: connect (1)[c::]:6789 error -101
[  166.139433][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  166.156517][ T5958] libceph: connect (1)[c::]:6789 error -101
[  166.161286][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  166.187269][ T9414] ceph: No mds server is up or the cluster is laggy
[  166.212485][ T9415] ceph: No mds server is up or the cluster is laggy
[  166.862674][ T9439] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  166.959792][ T1176] Bluetooth: Error in BCSP hdr checksum
[  167.218147][   T78] Bluetooth: Error in BCSP hdr checksum
[  167.408018][ T5928] Bluetooth: hci3: unexpected event for opcode 0x0c25
[  167.479260][ T9459] FAULT_INJECTION: forcing a failure.
[  167.479260][ T9459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.482942][ T9459] CPU: 2 UID: 0 PID: 9459 Comm: syz.3.875 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  167.485941][ T9459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.488994][ T9459] Call Trace:
[  167.489953][ T9459]  <TASK>
[  167.490818][ T9459]  dump_stack_lvl+0x16c/0x1f0
[  167.492171][ T9459]  should_fail_ex+0x497/0x5b0
[  167.493524][ T9459]  _copy_from_user+0x2e/0xd0
[  167.494863][ T9459]  futex_parse_waitv+0xff/0x600
[  167.496286][ T9459]  ? __pfx_futex_wake_mark+0x10/0x10
[  167.497818][ T9459]  ? __pfx_futex_parse_waitv+0x10/0x10
[  167.499376][ T9459]  ? trace_kmalloc+0x2d/0xd0
[  167.500710][ T9459]  ? __kmalloc_noprof+0x23b/0x4f0
[  167.502136][ T9459]  ? __do_sys_futex_waitv+0x221/0x2c0
[  167.503670][ T9459]  __do_sys_futex_waitv+0x245/0x2c0
[  167.505152][ T9459]  ? __pfx___do_sys_futex_waitv+0x10/0x10
[  167.506789][ T9459]  do_int80_emulation+0x104/0x200
[  167.508242][ T9459]  asm_int80_emulation+0x1a/0x20
[  167.509668][ T9459] RIP: 0023:0xf707e579
[  167.510840][ T9459] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.516257][ T9459] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 00000000000001c1
[  167.518636][ T9459] RAX: ffffffffffffffda RBX: 0000000020000180 RCX: 0000000000000001
[  167.520861][ T9459] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  167.523110][ T9459] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  167.525370][ T9459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  167.527607][ T9459] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.529847][ T9459]  </TASK>
[  167.530866][    C2] vkms_vblank_simulate: vblank timer overrun
[  167.810709][ T9468] netlink: 4 bytes leftover after parsing attributes in process `syz.3.876'.
[  167.888827][ T9470] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  167.891537][ T9470] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  168.745365][ T5928] Bluetooth: hci3: unexpected event for opcode 0x0c25
[  168.756527][   T65] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  168.801727][ T9487] netlink: 4 bytes leftover after parsing attributes in process `syz.5.881'.
[  168.814427][ T9489] openvswitch: netlink: Actions may not be safe on all matching packets
[  168.904895][ T9487] FAULT_INJECTION: forcing a failure.
[  168.904895][ T9487] name failslab, interval 1, probability 0, space 0, times 0
[  169.063842][ T9487] CPU: 1 UID: 0 PID: 9487 Comm: syz.5.881 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  169.066891][ T9487] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.070026][ T9487] Call Trace:
[  169.071096][ T9487]  <TASK>
[  169.071946][ T9487]  dump_stack_lvl+0x16c/0x1f0
[  169.073295][ T9487]  should_fail_ex+0x497/0x5b0
[  169.074655][ T9487]  ? fs_reclaim_acquire+0xae/0x150
[  169.076123][ T9487]  should_failslab+0xc2/0x120
[  169.077485][ T9487]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  169.079287][ T9487]  ? copy_array.constprop.0+0x84/0xf0
[  169.081301][ T9487]  krealloc_noprof+0x1fb/0x360
[  169.083236][ T9487]  copy_array.constprop.0+0x84/0xf0
[  169.084730][ T9487]  copy_verifier_state+0x8f1/0xda0
[  169.086217][ T9487]  ? kasan_save_track+0x14/0x30
[  169.087635][ T9487]  do_check_common+0x4f7c/0xd580
[  169.089061][ T9487]  ? bpf_tracing_func_proto+0x80/0xb10
[  169.090684][ T9487]  ? kprobe_prog_func_proto+0x1c8/0x270
[  169.092318][ T9487]  ? __pfx_mark_fastcall_pattern_for_call+0x10/0x10
[  169.094188][ T9487]  ? __pfx_do_check_common+0x10/0x10
[  169.095721][ T9487]  ? kvfree+0x47/0x50
[  169.096880][ T9487]  ? check_cfg+0x403/0x8e0
[  169.098222][ T9487]  bpf_check+0x83ed/0xc870
[  169.099950][ T9487]  ? hlock_class+0x4e/0x130
[  169.101815][ T9487]  ? __pfx_bpf_check+0x10/0x10
[  169.103401][ T9487]  ? find_held_lock+0x2d/0x110
[  169.104778][ T9487]  ? bpf_prog_load+0xd45/0x2670
[  169.106176][ T9487]  ? __pfx_lock_release+0x10/0x10
[  169.107645][ T9487]  ? trace_lock_acquire+0x14e/0x1f0
[  169.109148][ T9487]  ? bpf_prog_load+0xd45/0x2670
[  169.110556][ T9487]  ? lockdep_hardirqs_on+0x7c/0x110
[  169.112043][ T9487]  ? read_tsc+0x9/0x20
[  169.113226][ T9487]  ? ktime_get_with_offset+0x20f/0x3a0
[  169.114792][ T9487]  ? bpf_obj_name_cpy+0x156/0x1b0
[  169.116259][ T9487]  bpf_prog_load+0xe3f/0x2670
[  169.117640][ T9487]  ? __pfx_bpf_prog_load+0x10/0x10
[  169.119113][ T9487]  ? find_held_lock+0x2d/0x110
[  169.120488][ T9487]  ? __might_fault+0x13b/0x190
[  169.121863][ T9487]  ? __might_fault+0xe3/0x190
[  169.123224][ T9487]  __sys_bpf+0x5677/0x57a0
[  169.124507][ T9487]  ? __pfx_lock_release+0x10/0x10
[  169.125946][ T9487]  ? __pfx___sys_bpf+0x10/0x10
[  169.127336][ T9487]  ? vfs_write+0x306/0x1150
[  169.128645][ T9487]  ? __mutex_unlock_slowpath+0x164/0x690
[  169.130270][ T9487]  ? fput+0x67/0x440
[  169.131397][ T9487]  ? ksys_write+0x1ba/0x250
[  169.132687][ T9487]  ? __pfx_ksys_write+0x10/0x10
[  169.134084][ T9487]  __ia32_sys_bpf+0x76/0xe0
[  169.135399][ T9487]  __do_fast_syscall_32+0x73/0x120
[  169.136868][ T9487]  do_fast_syscall_32+0x32/0x80
[  169.138273][ T9487]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.140068][ T9487] RIP: 0023:0xf7ff1579
[  169.141245][ T9487] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.146690][ T9487] RSP: 002b:00000000f512555c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  169.149343][ T9487] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000840
[  169.151609][ T9487] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[  169.153880][ T9487] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.156136][ T9487] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.158428][ T9487] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.161131][ T9487]  </TASK>
[  169.178736][ T9492] trusted_key: syz.4.885 sent an empty control message without MSG_MORE.
[  169.277991][ T9513] netlink: 48 bytes leftover after parsing attributes in process `syz.2.889'.
[  169.499140][ T9529] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  170.455310][ T9561] Cannot find add_set index 0 as target
[  171.391348][   T65] Bluetooth: hci0: unexpected event for opcode 0x0c25
[  171.796235][  T833] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  171.946224][  T833] usb 9-1: Using ep0 maxpacket: 8
[  171.949995][  T833] usb 9-1: config 179 has an invalid interface number: 65 but max is 0
[  171.952629][  T833] usb 9-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config
[  171.955758][  T833] usb 9-1: config 179 has no interface number 0
[  171.957842][  T833] usb 9-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  171.960840][  T833] usb 9-1: config 179 interface 65 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[  171.964772][  T833] usb 9-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  171.967804][  T833] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.419571][ T9596] input: syz1 as /devices/virtual/input/input81
[  172.916234][ T9601] netlink: 80 bytes leftover after parsing attributes in process `syz.5.914'.
[  173.589507][ T5934] usb 9-1: USB disconnect, device number 9
[  173.758842][ T9619] tipc: Started in network mode
[  173.761438][ T9619] tipc: Node identity 080211000001, cluster identity 4711
[  173.766464][ T9619] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  173.768721][ T9620] mac80211_hwsim hwsim6 syzkaller0: entered promiscuous mode
[  173.772195][ T9620] mac80211_hwsim hwsim6 syzkaller0: entered allmulticast mode
[  173.881126][ T9624] netlink: 64 bytes leftover after parsing attributes in process `syz.3.921'.
[  173.967114][ T9631] netlink: 48 bytes leftover after parsing attributes in process `syz.5.922'.
[  174.314468][ T9643] netlink: 4 bytes leftover after parsing attributes in process `syz.4.924'.
[  174.887719][    T9] tipc: Node number set to 134418688
[  175.925150][ T9659] lo speed is unknown, defaulting to 1000
[  176.426294][   T39] kauditd_printk_skb: 40 callbacks suppressed
[  176.426305][   T39] audit: type=1800 audit(1736396837.500:129): pid=9681 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.933" name="/" dev="fuse" ino=1 res=0 errno=0
[  176.737005][ T9687] sg_write: data in/out 11/10 bytes for SCSI command 0xfd-- guessing data in;
[  176.737005][ T9687]    program syz.2.935 not setting count and/or reply_len properly
[  176.758027][ T9687] lo speed is unknown, defaulting to 1000
[  177.193088][ T9700] input: syz1 as /devices/virtual/input/input82
[  177.462858][ T9707] dccp_invalid_packet: P.Data Offset(100) too large
[  177.684462][ T9709] netlink: 4 bytes leftover after parsing attributes in process `syz.5.938'.
[  178.603773][ T9720] input: syz0 as /devices/virtual/input/input83
[  178.606219][ T9720] input: failed to attach handler leds to device input83, error: -6
[  178.647871][ T1019] libceph: connect (1)[c::]:6789 error -101
[  178.649798][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  178.724636][ T9726] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  178.906560][ T1019] libceph: connect (1)[c::]:6789 error -101
[  178.907581][ T9731] dccp_invalid_packet: P.Data Offset(80) too large
[  178.908801][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  179.005650][ T9720] ceph: No mds server is up or the cluster is laggy
[  179.194425][ T9734] 9pnet_fd: p9_fd_create_tcp (9734): problem connecting socket to 127.0.0.1
[  179.496229][ T9742] input: syz0 as /devices/virtual/input/input84
[  179.498149][ T9742] input: failed to attach handler leds to device input84, error: -6
[  179.541564][ T5992] libceph: connect (1)[c::]:6789 error -101
[  179.543638][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  179.808025][ T5992] libceph: connect (1)[c::]:6789 error -101
[  179.813849][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  180.100096][ T9752] input: syz0 as /devices/virtual/input/input85
[  180.109756][ T9752] input: failed to attach handler leds to device input85, error: -6
[  180.135603][ T9742] ceph: No mds server is up or the cluster is laggy
[  180.202532][ T5992] libceph: connect (1)[c::]:6789 error -101
[  180.204376][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  180.437597][ T9765] lo speed is unknown, defaulting to 1000
[  180.466510][ T5992] libceph: connect (1)[c::]:6789 error -101
[  180.471888][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  180.477948][   T39] audit: type=1326 audit(1736396841.560:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9760 comm="syz.2.954" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff3579 code=0x0
[  180.606347][ T9752] ceph: No mds server is up or the cluster is laggy
[  180.633004][ T9765] block nbd2: shutting down sockets
[  181.128607][ T9789] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  181.189115][ T9790] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  181.189907][ T9793] 9pnet_fd: p9_fd_create_tcp (9793): problem connecting socket to 127.0.0.1
[  181.444168][ T9796] input: syz0 as /devices/virtual/input/input86
[  181.446059][ T9796] input: failed to attach handler leds to device input86, error: -6
[  181.493398][ T5992] libceph: connect (1)[c::]:6789 error -101
[  181.495502][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  181.762975][ T5992] libceph: connect (1)[c::]:6789 error -101
[  181.766496][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  182.032680][ T9796] ceph: No mds server is up or the cluster is laggy
[  182.074286][ T9803] netlink: 204 bytes leftover after parsing attributes in process `syz.4.963'.
[  182.134656][ T9806] netlink: 192 bytes leftover after parsing attributes in process `syz.4.963'.
[  182.289053][ T9825] fuse: Unknown parameter ''vqµÍéÀ}Ë'
[  182.332778][ T9822] ref_ctr going negative. vaddr: 0x20ffc002, curr val: -29824, delta: 1
[  182.336025][ T9822] ref_ctr increment failed for inode: 0x4fa offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff888027abe180
[  182.641646][ T9839] input: syz0 as /devices/virtual/input/input87
[  182.643552][ T9839] input: failed to attach handler leds to device input87, error: -6
[  182.673420][ T5992] libceph: connect (1)[c::]:6789 error -101
[  182.675741][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  182.938207][ T5992] libceph: connect (1)[c::]:6789 error -101
[  182.940365][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  183.259219][ T9839] ceph: No mds server is up or the cluster is laggy
[  183.333462][ T9861] syz.3.983: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  183.338392][ T9861] CPU: 3 UID: 0 PID: 9861 Comm: syz.3.983 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  183.341462][ T9861] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  183.344506][ T9861] Call Trace:
[  183.345516][ T9861]  <TASK>
[  183.346376][ T9861]  dump_stack_lvl+0x16c/0x1f0
[  183.347740][ T9861]  warn_alloc+0x24d/0x3a0
[  183.348998][ T9861]  ? __pfx_warn_alloc+0x10/0x10
[  183.350448][ T9861]  ? __pfx_stack_trace_save+0x10/0x10
[  183.351982][ T9861]  ? kasan_save_stack+0x42/0x60
[  183.353368][ T9861]  ? kasan_save_stack+0x33/0x60
[  183.354761][ T9861]  ? kasan_save_track+0x14/0x30
[  183.356149][ T9861]  ? __kasan_kmalloc+0xaa/0xb0
[  183.357539][ T9861]  ? xskq_create+0x52/0x1d0
[  183.358852][ T9861]  ? do_sock_setsockopt+0x222/0x480
[  183.360416][ T9861]  ? __sys_setsockopt+0x1a0/0x230
[  183.361855][ T9861]  ? __ia32_sys_setsockopt+0xbc/0x160
[  183.363406][ T9861]  __vmalloc_node_range_noprof+0x10df/0x1530
[  183.365147][ T9861]  ? xskq_create+0xfb/0x1d0
[  183.366504][ T9861]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  183.368281][ T9861]  ? xskq_create+0xfb/0x1d0
[  183.369631][ T9861]  vmalloc_user_noprof+0x6b/0x90
[  183.371155][ T9861]  ? xskq_create+0xfb/0x1d0
[  183.372463][ T9861]  xskq_create+0xfb/0x1d0
[  183.373706][ T9861]  xsk_setsockopt+0x8b0/0xac0
[  183.375069][ T9861]  ? __pfx_xsk_setsockopt+0x10/0x10
[  183.376553][ T9861]  ? find_held_lock+0x2d/0x110
[  183.377923][ T9861]  ? __pfx_xsk_setsockopt+0x10/0x10
[  183.379385][ T9861]  do_sock_setsockopt+0x222/0x480
[  183.380752][ T9861]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  183.382295][ T9861]  ? lock_acquire+0x2f/0xb0
[  183.383605][ T9861]  __sys_setsockopt+0x1a0/0x230
[  183.385009][ T9861]  __ia32_sys_setsockopt+0xbc/0x160
[  183.386505][ T9861]  ? lockdep_hardirqs_on+0x7c/0x110
[  183.388002][ T9861]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  183.389897][ T9861]  __do_fast_syscall_32+0x73/0x120
[  183.391362][ T9861]  do_fast_syscall_32+0x32/0x80
[  183.392728][ T9861]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  183.394555][ T9861] RIP: 0023:0xf707e579
[  183.395731][ T9861] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  183.401207][ T9861] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  183.403593][ T9861] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000011b
[  183.405843][ T9861] RDX: 0000000000000002 RSI: 0000000020000080 RDI: 0000000000000020
[  183.408098][ T9861] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  183.410356][ T9861] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  183.412598][ T9861] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  183.414850][ T9861]  </TASK>
[  183.432149][ T9861] Mem-Info:
[  183.433114][ T9861] active_anon:2063 inactive_anon:4334 isolated_anon:0
[  183.433114][ T9861]  active_file:9070 inactive_file:18047 isolated_file:0
[  183.433114][ T9861]  unevictable:1768 dirty:1605 writeback:50
[  183.433114][ T9861]  slab_reclaimable:7735 slab_unreclaimable:66870
[  183.433114][ T9861]  mapped:25111 shmem:2534 pagetables:865
[  183.433114][ T9861]  sec_pagetables:307 bounce:0
[  183.433114][ T9861]  kernel_misc_reclaimable:0
[  183.433114][ T9861]  free:64153 free_pcp:6201 free_cma:0
[  183.451953][ T9861] Node 0 active_anon:4608kB inactive_anon:1204kB active_file:9416kB inactive_file:184kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4784kB dirty:48kB writeback:0kB shmem:5064kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9772kB pagetables:856kB sec_pagetables:1136kB all_unreclaimable? yes
[  183.461150][ T9861] Node 1 active_anon:3644kB inactive_anon:16132kB active_file:26864kB inactive_file:72004kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:95660kB dirty:5872kB writeback:300kB shmem:5072kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3012kB pagetables:2604kB sec_pagetables:92kB all_unreclaimable? no
[  183.472352][ T9861] Node 0 DMA free:2960kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:136kB inactive_anon:136kB active_file:176kB inactive_file:40kB unevictable:0kB writepending:44kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:572kB local_pcp:60kB free_cma:0kB
[  183.483275][ T9861] lowmem_reserve[]: 0 273 0 0 0
[  183.484776][ T9861] Node 0 DMA32 free:19528kB boost:2048kB min:15952kB low:19428kB high:22904kB reserved_highatomic:4096KB active_anon:4472kB inactive_anon:1068kB active_file:9240kB inactive_file:144kB unevictable:3536kB writepending:4kB present:1032196kB managed:306308kB mlocked:0kB bounce:0kB free_pcp:2792kB local_pcp:872kB free_cma:0kB
[  183.497588][ T9861] lowmem_reserve[]: 0 0 0 0 0
[  183.499875][ T9861] Node 1 DMA32 free:234124kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:10240KB active_anon:3644kB inactive_anon:16132kB active_file:26864kB inactive_file:72004kB unevictable:3536kB writepending:4872kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:21324kB local_pcp:1376kB free_cma:0kB
[  183.517558][ T9861] lowmem_reserve[]: 0 0 0 0 0
[  183.519020][ T9861] Node 0 DMA: 18*4kB (U) 77*8kB (UM) 42*16kB (UM) 44*32kB (UM) 3*64kB (M) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2960kB
[  183.525389][ T9861] Node 0 DMA32: 206*4kB (UMEH) 54*8kB (UMEH) 6*16kB (UMEH) 114*32kB (UMEH) 47*64kB (UMEH) 22*128kB (UME) 10*256kB (UM) 4*512kB (UM) 0*1024kB 0*2048kB 1*4096kB (M) = 19528kB
[  183.537144][    C2] vcan0: j1939_tp_rxtimer: 0xffff88806db96800: rx timeout, send abort
[  183.554222][ T9861] Node 1 DMA32: 209*4kB (UM) 21*8kB (UM) 204*16kB (UME) 312*32kB (UME) 213*64kB (UME) 77*128kB (UM) 68*256kB (UM) 60*512kB (UME) 38*1024kB (UM) 16*2048kB (UMH) 19*4096kB (UMH) = 235372kB
[  183.566217][ T9861] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  183.569080][ T9861] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  183.571846][ T9861] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  183.593379][ T9861] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  183.624913][ T9861] 27551 total pagecache pages
[  183.626935][ T9861] 0 pages in swap cache
[  183.628216][ T9861] Free swap  = 123892kB
[  183.629420][ T9861] Total swap = 124996kB
[  183.630798][ T9861] 524155 pages RAM
[  183.631898][ T9861] 0 pages HighMem/MovableOnly
[  183.633241][ T9861] 206675 pages reserved
[  183.634432][ T9861] 0 pages cma reserved
[  183.980444][ T9887] lo: MTU too low for tipc bearer
[  183.981966][ T9887] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  184.041129][    C2] vcan0: j1939_tp_rxtimer: 0xffff88806db96800: abort rx timeout. Force session deactivation
[  184.079025][   T65] Bluetooth: hci0: unexpected event for opcode 0x0000
[  184.243571][ T9896] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒw˜}�zR'
[  184.248021][ T9896] CPU: 0 UID: 0 PID: 9896 Comm: syz.3.994 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  184.252015][ T9896] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  184.256053][ T9896] Call Trace:
[  184.257365][ T9896]  <TASK>
[  184.258515][ T9896]  dump_stack_lvl+0x16c/0x1f0
[  184.260326][ T9896]  sysfs_warn_dup+0x7f/0xa0
[  184.262092][ T9896]  sysfs_do_create_link_sd+0x124/0x140
[  184.264104][ T9896]  sysfs_create_link+0x61/0xc0
[  184.265863][ T9896]  device_add+0x62e/0x1a70
[  184.267477][ T9896]  ? __pfx_device_add+0x10/0x10
[  184.269334][ T9896]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  184.271535][ T9896]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  184.273794][ T9896]  wiphy_register+0x1c7a/0x2860
[  184.275641][ T9896]  ? netdev_run_todo+0x837/0x12d0
[  184.277456][ T9896]  ? __pfx_wiphy_register+0x10/0x10
[  184.279384][ T9896]  ieee80211_register_hw+0x2951/0x3fa0
[  184.281451][ T9896]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  184.283680][ T9896]  ? rcu_is_watching+0x12/0xc0
[  184.285516][ T9896]  ? trace_hrtimer_init+0x1a6/0x230
[  184.287347][ T9896]  ? __hrtimer_init+0x106/0x2c0
[  184.289026][ T9896]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  184.291217][ T9896]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  184.293531][ T9896]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  184.295574][ T9896]  hwsim_new_radio_nl+0xb42/0x12b0
[  184.297552][ T9896]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  184.299687][ T9896]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  184.302461][ T9896]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  184.305217][ T9896]  genl_family_rcv_msg_doit+0x202/0x2f0
[  184.307358][ T9896]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  184.309659][ T9896]  ? apparmor_capable+0xc2/0x1d0
[  184.311555][ T9896]  ? bpf_lsm_capable+0x9/0x10
[  184.313330][ T9896]  ? security_capable+0x7e/0x260
[  184.315222][ T9896]  ? ns_capable+0xd7/0x110
[  184.316924][ T9896]  genl_rcv_msg+0x565/0x800
[  184.318661][ T9896]  ? __pfx_genl_rcv_msg+0x10/0x10
[  184.320570][ T9896]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  184.322673][ T9896]  ? __pfx___schedule+0x10/0x10
[  184.324533][ T9896]  netlink_rcv_skb+0x165/0x410
[  184.326365][ T9896]  ? __pfx_genl_rcv_msg+0x10/0x10
[  184.328308][ T9896]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  184.330344][ T9896]  ? down_read+0x1a6/0x330
[  184.332051][ T9896]  ? __pfx_down_read+0x10/0x10
[  184.333878][ T9896]  ? rcu_is_watching+0x12/0xc0
[  184.335708][ T9896]  genl_rcv+0x28/0x40
[  184.337258][ T9896]  netlink_unicast+0x53c/0x7f0
[  184.339084][ T9896]  ? __pfx_netlink_unicast+0x10/0x10
[  184.341088][ T9896]  ? __phys_addr_symbol+0x30/0x80
[  184.343035][ T9896]  ? __check_object_size+0x488/0x710
[  184.345063][ T9896]  netlink_sendmsg+0x8b8/0xd70
[  184.346903][ T9896]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.348958][ T9896]  ____sys_sendmsg+0x9ae/0xb40
[  184.350816][ T9896]  ? __pfx_____sys_sendmsg+0x10/0x10
[  184.352824][ T9896]  ? get_compat_msghdr+0x11b/0x170
[  184.354802][ T9896]  ___sys_sendmsg+0x135/0x1e0
[  184.356556][ T9896]  ? __pfx____sys_sendmsg+0x10/0x10
[  184.358494][ T9896]  ? __pfx_lock_release+0x10/0x10
[  184.360424][ T9896]  ? trace_lock_acquire+0x14e/0x1f0
[  184.362419][ T9896]  ? __fget_files+0x206/0x3a0
[  184.364236][ T9896]  __sys_sendmsg+0x16e/0x220
[  184.366013][ T9896]  ? __pfx___sys_sendmsg+0x10/0x10
[  184.367986][ T9896]  ? __ia32_sys_futex_time32+0x1da/0x460
[  184.370175][ T9896]  __do_fast_syscall_32+0x73/0x120
[  184.372131][ T9896]  do_fast_syscall_32+0x32/0x80
[  184.373985][ T9896]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  184.376402][ T9896] RIP: 0023:0xf707e579
[  184.377981][ T9896] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  184.385210][ T9896] RSP: 002b:00000000f504f55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  184.388363][ T9896] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000040
[  184.391358][ T9896] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  184.394349][ T9896] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  184.397332][ T9896] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  184.400329][ T9896] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  184.403324][ T9896]  </TASK>
[  184.708836][ T9912] input: syz0 as /devices/virtual/input/input88
[  184.713836][ T9912] input: failed to attach handler leds to device input88, error: -6
[  184.774611][ T1019] libceph: connect (1)[c::]:6789 error -101
[  184.776565][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  184.779108][ T1019] libceph: connect (1)[c::]:6789 error -101
[  184.781000][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  185.018926][ T9912] ceph: No mds server is up or the cluster is laggy
[  185.037614][ T1019] libceph: connect (1)[c::]:6789 error -101
[  185.040135][ T1019] libceph: mon0 (1)[c::]:6789 connect error
[  185.280260][ T9926] FAULT_INJECTION: forcing a failure.
[  185.280260][ T9926] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.284384][ T9926] CPU: 1 UID: 0 PID: 9926 Comm: syz.2.1000 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  185.288526][ T9926] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.292743][ T9926] Call Trace:
[  185.294110][ T9926]  <TASK>
[  185.295316][ T9926]  dump_stack_lvl+0x16c/0x1f0
[  185.297219][ T9926]  should_fail_ex+0x497/0x5b0
[  185.299111][ T9926]  _copy_from_user+0x2e/0xd0
[  185.300961][ T9926]  get_compat_msghdr+0xa8/0x170
[  185.302936][ T9926]  ? __pfx_get_compat_msghdr+0x10/0x10
[  185.305133][ T9926]  ___sys_recvmsg+0x193/0x1a0
[  185.307054][ T9926]  ? __pfx____sys_recvmsg+0x10/0x10
[  185.309083][ T9926]  ? __fget_files+0x1fc/0x3a0
[  185.310860][ T9926]  ? trace_lock_acquire+0x14e/0x1f0
[  185.312383][ T9926]  ? __fget_files+0x206/0x3a0
[  185.314288][ T9926]  ? __pfx___might_resched+0x10/0x10
[  185.316084][ T9926]  do_recvmmsg+0x55d/0x740
[  185.317397][ T9926]  ? __pfx_do_recvmmsg+0x10/0x10
[  185.318885][ T9926]  ? vfs_write+0x306/0x1150
[  185.320201][ T9926]  ? __fget_files+0x206/0x3a0
[  185.321563][ T9926]  __sys_recvmmsg+0x21e/0x280
[  185.322392][   T65] Bluetooth: hci0: unexpected event for opcode 0x0000
[  185.322914][ T9926]  ? __pfx___sys_recvmmsg+0x10/0x10
[  185.326470][ T9926]  ? __pfx_ksys_write+0x10/0x10
[  185.328399][ T9926]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  185.330576][ T9926]  ? lockdep_hardirqs_on+0x7c/0x110
[  185.332082][ T9926]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  185.334161][ T9926]  __do_fast_syscall_32+0x73/0x120
[  185.335693][ T9926]  do_fast_syscall_32+0x32/0x80
[  185.337111][ T9926]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.338942][ T9926] RIP: 0023:0xf7ff3579
[  185.340125][ T9926] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.345603][ T9926] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  185.348016][ T9926] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200004c0
[  185.350293][ T9926] RDX: 0000000000000f00 RSI: 0000000000000000 RDI: 0000000000000000
[  185.352548][ T9926] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.354957][ T9926] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.357246][ T9926] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.359476][ T9926]  </TASK>
[  185.621431][ T9945] netlink: 'syz.5.1003': attribute type 1 has an invalid length.
[  186.175068][   T39] audit: type=1326 audit(1736396848.247:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9950 comm="0" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  186.181146][   T39] audit: type=1326 audit(1736396848.247:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9950 comm="0" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  186.355666][ T9965] FAULT_INJECTION: forcing a failure.
[  186.355666][ T9965] name failslab, interval 1, probability 0, space 0, times 0
[  186.361352][ T9965] CPU: 3 UID: 0 PID: 9965 Comm: syz.2.1013 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  186.365014][ T9965] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  186.368737][ T9965] Call Trace:
[  186.369711][ T9965]  <TASK>
[  186.370589][ T9965]  dump_stack_lvl+0x16c/0x1f0
[  186.372056][ T9965]  should_fail_ex+0x497/0x5b0
[  186.373556][ T9965]  ? fs_reclaim_acquire+0xae/0x150
[  186.375044][ T9965]  should_failslab+0xc2/0x120
[  186.376386][ T9965]  __kmalloc_cache_noprof+0x68/0x420
[  186.377913][ T9965]  rpc_sysfs_xprt_switch_setup+0xcb/0x360
[  186.379548][ T9965]  xprt_switch_alloc+0x278/0x3a0
[  186.380974][ T9965]  rpc_create_xprt+0x2ae/0x410
[  186.382357][ T9965]  rpc_create+0x454/0x7e0
[  186.383608][ T9965]  ? __pfx_rpc_create+0x10/0x10
[  186.385009][ T9965]  ? __lock_acquire+0x15a9/0x3c40
[  186.386456][ T9965]  ? __pfx___lock_acquire+0x10/0x10
[  186.387952][ T9965]  ? rpcb_create_local+0x100/0x270
[  186.389420][ T9965]  ? __pfx___lock_acquire+0x10/0x10
[  186.390901][ T9965]  ? rcu_is_watching+0x12/0xc0
[  186.392275][ T9965]  rpcb_create_af_local+0x10d/0x300
[  186.393749][ T9965]  ? __pfx_rpcb_create_af_local+0x10/0x10
[  186.395379][ T9965]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  186.397020][ T9965]  ? lock_acquire+0x2f/0xb0
[  186.398328][ T9965]  ? rpcb_create_local+0x148/0x270
[  186.399791][ T9965]  rpcb_create_local+0x1ee/0x270
[  186.401208][ T9965]  svc_bind+0x1e8/0x260
[  186.402384][ T9965]  nfsd_create_serv+0x32c/0x510
[  186.403780][ T9965]  ? __pfx_nfsd_create_serv+0x10/0x10
[  186.405309][ T9965]  ? __nla_validate_parse+0x605/0x2b10
[  186.406871][ T9965]  nfsd_nl_listener_set_doit+0xeb/0x1b40
[  186.408475][ T9965]  ? __pfx___nla_validate_parse+0x10/0x10
[  186.410115][ T9965]  ? rcu_is_watching+0x12/0xc0
[  186.411483][ T9965]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  186.413235][ T9965]  ? __nla_parse+0x40/0x60
[  186.414528][ T9965]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  186.416607][ T9965]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  186.418687][ T9965]  genl_family_rcv_msg_doit+0x202/0x2f0
[  186.420264][ T9965]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  186.421983][ T9965]  ? __dev_queue_xmit+0x89b/0x43e0
[  186.423448][ T9965]  ? genl_get_cmd+0x195/0x580
[  186.424792][ T9965]  ? bpf_lsm_capable+0x9/0x10
[  186.426143][ T9965]  ? security_capable+0x7e/0x260
[  186.427577][ T9965]  genl_rcv_msg+0x565/0x800
[  186.428886][ T9965]  ? __pfx_genl_rcv_msg+0x10/0x10
[  186.430330][ T9965]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[  186.432072][ T9965]  netlink_rcv_skb+0x165/0x410
[  186.433434][ T9965]  ? __pfx_genl_rcv_msg+0x10/0x10
[  186.434878][ T9965]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  186.436695][ T9965]  ? down_read+0xc9/0x330
[  186.437939][ T9965]  ? __pfx_down_read+0x10/0x10
[  186.439324][ T9965]  ? netlink_deliver_tap+0x1ae/0xca0
[  186.440818][ T9965]  genl_rcv+0x28/0x40
[  186.441962][ T9965]  netlink_unicast+0x53c/0x7f0
[  186.443601][ T9965]  ? __pfx_netlink_unicast+0x10/0x10
[  186.445172][ T9965]  ? __phys_addr_symbol+0x30/0x80
[  186.446974][ T9965]  ? __check_object_size+0x488/0x710
[  186.448938][ T9965]  netlink_sendmsg+0x8b8/0xd70
[  186.450481][ T9965]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.452002][ T9965]  ____sys_sendmsg+0x9ae/0xb40
[  186.453377][ T9965]  ? __pfx_____sys_sendmsg+0x10/0x10
[  186.454896][ T9965]  ? get_compat_msghdr+0x11b/0x170
[  186.456380][ T9965]  ___sys_sendmsg+0x135/0x1e0
[  186.458170][ T9965]  ? __pfx____sys_sendmsg+0x10/0x10
[  186.459732][ T9965]  ? __pfx_lock_release+0x10/0x10
[  186.461216][ T9965]  ? trace_lock_acquire+0x14e/0x1f0
[  186.463118][ T9965]  ? __fget_files+0x206/0x3a0
[  186.464480][ T9965]  __sys_sendmsg+0x16e/0x220
[  186.465815][ T9965]  ? __pfx___sys_sendmsg+0x10/0x10
[  186.467327][ T9965]  __do_fast_syscall_32+0x73/0x120
[  186.468945][ T9965]  do_fast_syscall_32+0x32/0x80
[  186.470348][ T9965]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  186.472141][ T9965] RIP: 0023:0xf7ff3579
[  186.473306][ T9965] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  186.478723][ T9965] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  186.481133][ T9965] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  186.483373][ T9965] RDX: 0000000020000090 RSI: 0000000000000000 RDI: 0000000000000000
[  186.485600][ T9965] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  186.487842][ T9965] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  186.490681][ T9965] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  186.493484][ T9965]  </TASK>
[  186.533545][ T9963] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.622219][ T9963] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.231324][ T9963] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.502976][ T9963] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.517302][ T9976] input: syz0 as /devices/virtual/input/input89
[  187.519885][ T9976] input: failed to attach handler leds to device input89, error: -6
[  187.547053][   T73] libceph: connect (1)[c::]:6789 error -101
[  187.549579][   T73] libceph: mon0 (1)[c::]:6789 connect error
[  187.641713][ T9963] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  187.648798][ T9963] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  187.654397][ T9963] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  187.660517][ T9963] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  187.687016][ T9976] ceph: No mds server is up or the cluster is laggy
[  187.958758][ T9987] netlink: 4396 bytes leftover after parsing attributes in process `syz.5.1018'.
[  188.127064][   T65] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  188.130788][   T65] Bluetooth: hci0: Injecting HCI hardware error event
[  188.135052][   T65] Bluetooth: hci0: hardware error 0x00
[  188.751484][ T5928] Bluetooth: hci0: unexpected event for opcode 0x0025
[  188.957988][T10013] netlink: 1280 bytes leftover after parsing attributes in process `syz.3.1025'.
[  188.961685][T10013] openvswitch: netlink: Flow actions attr not present in new flow.
[  189.205808][T10024] overlayfs: failed to resolve './file0': -2
[  189.220032][T10024] rdma_rxe: rxe_newlink: failed to add lo
[  190.032852][ T5928] Bluetooth: hci0: unexpected event for opcode 0x0025
[  190.189846][T10043] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1034'.
[  190.196851][   T65] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  190.680750][T10056] netlink: 'syz.4.1036': attribute type 4 has an invalid length.
[  190.685829][T10056] netlink: 'syz.4.1036': attribute type 4 has an invalid length.
[  191.248552][T10063] Cannot find set identified by id 0 to match
[  191.536154][T10077] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1043'.
[  192.541372][T10097] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1049'.
[  192.846447][ T5972] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  193.007755][ T5972] usb 9-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  193.011905][ T5972] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  193.015773][ T5972] usb 9-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  193.024459][ T5972] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  193.028282][ T5972] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.042122][ T5972] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  193.056700][ T5972] snd-usb-audio 9-1:27.0: probe with driver snd-usb-audio failed with error -2
[  193.097530][ T5859] udevd[5859]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb9/9-1/9-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  193.285027][   T39] audit: type=1804 audit(1736396855.357:133): pid=10108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1052" name="/newroot/259/bus/bus" dev="overlay" ino=1412 res=1 errno=0
[  193.294365][   T39] audit: type=1804 audit(1736396855.357:134): pid=10109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1052" name="/newroot/259/bus/bus" dev="overlay" ino=1412 res=1 errno=0
[  193.362561][T10110] input: syz1 as /devices/virtual/input/input90
[  193.639932][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  193.642528][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  194.258299][ T5934] usb 9-1: USB disconnect, device number 10
[  194.370085][T10128] blktrace: Concurrent blktraces are not allowed on sg0
[  195.363443][T10146] input: syz0 as /devices/virtual/input/input91
[  195.365911][T10146] input: failed to attach handler leds to device input91, error: -6
[  195.504560][ T5992] libceph: connect (1)[c::]:6789 error -101
[  195.510382][ T5992] libceph: mon0 (1)[c::]:6789 connect error
[  195.664007][T10155] lo speed is unknown, defaulting to 1000
[  195.766511][ T5958] libceph: connect (1)[c::]:6789 error -101
[  195.770551][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  195.996497][T10148] ceph: No mds server is up or the cluster is laggy
[  196.915476][T10201] input: syz0 as /devices/virtual/input/input92
[  196.917422][T10201] input: failed to attach handler leds to device input92, error: -6
[  196.933088][ T5958] libceph: connect (1)[c::]:6789 error -101
[  196.934916][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  197.056201][   T57] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  197.207363][   T57] usb 7-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  197.210273][   T57] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  197.213432][   T57] usb 7-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  197.217133][   T57] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  197.219620][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.224685][   T57] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  197.226853][   T57] usb 7-1: invalid MIDI out EP 0
[  197.236650][ T5958] libceph: connect (1)[c::]:6789 error -101
[  197.239321][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  197.251106][   T57] snd-usb-audio 7-1:27.0: probe with driver snd-usb-audio failed with error -22
[  197.271550][ T5936] udevd[5936]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  197.494037][T10217] input: syz1 as /devices/virtual/input/input93
[  197.499194][T10201] ceph: No mds server is up or the cluster is laggy
[  197.647774][T10223] FAULT_INJECTION: forcing a failure.
[  197.647774][T10223] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  197.652990][T10223] CPU: 1 UID: 0 PID: 10223 Comm: syz.4.1084 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  197.656954][T10223] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  197.660921][T10223] Call Trace:
[  197.662174][T10223]  <TASK>
[  197.663280][T10223]  dump_stack_lvl+0x16c/0x1f0
[  197.665049][T10223]  should_fail_ex+0x497/0x5b0
[  197.666817][T10223]  _copy_from_iter+0x29b/0x1400
[  197.668664][T10223]  ? trace_lock_acquire+0x14e/0x1f0
[  197.670614][T10223]  ? __alloc_skb+0x200/0x380
[  197.672339][T10223]  ? __pfx__copy_from_iter+0x10/0x10
[  197.674307][T10223]  ? __virt_addr_valid+0x1a4/0x590
[  197.676231][T10223]  ? __virt_addr_valid+0x5e/0x590
[  197.678117][T10223]  ? __phys_addr_symbol+0x30/0x80
[  197.680004][T10223]  ? __check_object_size+0x488/0x710
[  197.681994][T10223]  netlink_sendmsg+0x813/0xd70
[  197.683789][T10223]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.685758][T10223]  ____sys_sendmsg+0x9ae/0xb40
[  197.687644][T10223]  ? __pfx_____sys_sendmsg+0x10/0x10
[  197.689714][T10223]  ? get_compat_msghdr+0x11b/0x170
[  197.691668][T10223]  ___sys_sendmsg+0x135/0x1e0
[  197.693500][T10223]  ? __pfx____sys_sendmsg+0x10/0x10
[  197.695488][T10223]  ? __pfx_lock_release+0x10/0x10
[  197.697411][T10223]  ? trace_lock_acquire+0x14e/0x1f0
[  197.699441][T10223]  ? __fget_files+0x206/0x3a0
[  197.701234][T10223]  __sys_sendmsg+0x16e/0x220
[  197.703009][T10223]  ? __pfx___sys_sendmsg+0x10/0x10
[  197.704954][T10223]  __do_fast_syscall_32+0x73/0x120
[  197.706917][T10223]  do_fast_syscall_32+0x32/0x80
[  197.708752][T10223]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  197.711041][T10223] RIP: 0023:0xf7f55579
[  197.712534][T10223] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  197.719583][T10223] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  197.722685][T10223] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080
[  197.725645][T10223] RDX: 0000000000000054 RSI: 0000000000000000 RDI: 0000000000000000
[  197.728607][T10223] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  197.731545][T10223] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  197.734467][T10223] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  197.737395][T10223]  </TASK>
[  197.738612][    C1] vkms_vblank_simulate: vblank timer overrun
[  198.350946][   T39] audit: type=1326 audit(1736396860.427:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.5.1083" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7fc00000
[  198.357322][   T39] audit: type=1326 audit(1736396860.427:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.5.1083" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7ff1579 code=0x7fc00000
[  198.363451][   T39] audit: type=1326 audit(1736396860.427:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.5.1083" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7fc00000
[  198.369842][   T39] audit: type=1326 audit(1736396860.427:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.5.1083" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7fc00000
[  198.376371][   T39] audit: type=1326 audit(1736396860.427:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.5.1083" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7fc00000
[  198.385439][   T39] audit: type=1326 audit(1736396860.427:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.5.1083" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7fc00000
[  198.393426][   T39] audit: type=1326 audit(1736396860.427:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.5.1083" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7fc00000
[  198.401705][   T39] audit: type=1326 audit(1736396860.427:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.5.1083" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7fc00000
[  198.408492][   T39] audit: type=1326 audit(1736396860.427:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.5.1083" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7fc00000
[  198.423500][   T39] audit: type=1326 audit(1736396860.427:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.5.1083" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7fc00000
[  198.465580][T10240] serio: Serial port ptm0
[  198.809244][T10255] input: syz0 as /devices/virtual/input/input94
[  198.811356][T10255] input: failed to attach handler leds to device input94, error: -6
[  198.831912][   T57] usb 7-1: USB disconnect, device number 10
[  198.967259][ T5958] libceph: connect (1)[c::]:6789 error -101
[  198.969565][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  198.989642][T10262] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1095'.
[  199.148000][T10254] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  199.150530][T10254] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  199.154632][T10254] vhci_hcd vhci_hcd.0: Device attached
[  199.226669][ T5958] libceph: connect (1)[c::]:6789 error -101
[  199.228828][ T5958] libceph: mon0 (1)[c::]:6789 connect error
[  199.326221][   T57] vhci_hcd: vhci_device speed not set
[  199.386345][   T57] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[  199.420678][T10255] ceph: No mds server is up or the cluster is laggy
[  199.641611][T10276] FAULT_INJECTION: forcing a failure.
[  199.641611][T10276] name failslab, interval 1, probability 0, space 0, times 0
[  199.645420][T10276] CPU: 3 UID: 0 PID: 10276 Comm: syz.5.1099 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  199.649629][T10276] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  199.653879][T10276] Call Trace:
[  199.655233][T10276]  <TASK>
[  199.656423][T10276]  dump_stack_lvl+0x16c/0x1f0
[  199.658237][T10276]  should_fail_ex+0x497/0x5b0
[  199.660071][T10276]  ? fs_reclaim_acquire+0xae/0x150
[  199.662139][T10276]  should_failslab+0xc2/0x120
[  199.664037][T10276]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  199.665781][T10276]  ? __kernfs_new_node+0xd3/0x890
[  199.667241][T10276]  __kernfs_new_node+0xd3/0x890
[  199.668642][T10276]  ? __pfx___kernfs_new_node+0x10/0x10
[  199.670281][T10276]  ? __pfx_lock_release+0x10/0x10
[  199.671755][T10276]  ? kernfs_add_one+0x39d/0x520
[  199.673148][T10276]  ? up_write+0x1b2/0x520
[  199.674055][T10266] vhci_hcd: connection reset by peer
[  199.674390][T10276]  kernfs_new_node+0x186/0x240
[  199.677841][T10276]  __kernfs_create_file+0x53/0x350
[  199.679252][  T105] vhci_hcd: stop threads
[  199.679299][T10276]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  199.680963][  T105] vhci_hcd: release socket
[  199.682551][T10276]  internal_create_group+0x56c/0xf10
[  199.686246][T10276]  ? __pfx_internal_create_group+0x10/0x10
[  199.686817][  T105] vhci_hcd: disconnect device
[  199.688391][T10276]  ? kernfs_create_link+0x1bd/0x240
[  199.692186][T10276]  internal_create_groups+0x9d/0x150
[  199.694268][T10276]  device_add+0x6d3/0x1a70
[  199.695949][T10276]  ? __pfx_device_add+0x10/0x10
[  199.697885][T10276]  ? __init_waitqueue_head+0xca/0x150
[  199.700056][T10276]  netdev_register_kobject+0x183/0x3a0
[  199.702263][T10276]  register_netdevice+0x1473/0x1e20
[  199.704277][T10276]  ? __pfx_register_netdevice+0x10/0x10
[  199.706504][T10276]  ? __pfx_br_dev_newlink+0x10/0x10
[  199.708624][T10276]  br_dev_newlink+0x27/0x110
[  199.710452][T10276]  ? __pfx_br_dev_newlink+0x10/0x10
[  199.712425][T10276]  rtnl_newlink+0xbae/0x1d70
[  199.714205][T10276]  ? __pfx_rtnl_newlink+0x10/0x10
[  199.716208][T10276]  ? __pfx___lock_acquire+0x10/0x10
[  199.718260][T10276]  ? kmem_cache_free+0x152/0x4c0
[  199.720223][T10276]  ? aa_get_newest_label+0x376/0x680
[  199.722274][T10276]  ? find_held_lock+0x2d/0x110
[  199.724165][T10276]  ? find_held_lock+0x2d/0x110
[  199.725983][T10276]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  199.727629][T10276]  ? __pfx_lock_release+0x10/0x10
[  199.729098][T10276]  ? trace_lock_acquire+0x14e/0x1f0
[  199.730798][T10276]  ? __pfx_rtnl_newlink+0x10/0x10
[  199.732259][T10276]  rtnetlink_rcv_msg+0x95b/0xea0
[  199.733685][T10276]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  199.735257][T10276]  ? __pfx___dev_queue_xmit+0x10/0x10
[  199.736827][T10276]  netlink_rcv_skb+0x165/0x410
[  199.738232][T10276]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  199.739878][T10276]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  199.741561][T10276]  ? netlink_deliver_tap+0x1ae/0xca0
[  199.743092][T10276]  netlink_unicast+0x53c/0x7f0
[  199.744877][T10276]  ? __pfx_netlink_unicast+0x10/0x10
[  199.746655][T10276]  ? __phys_addr_symbol+0x30/0x80
[  199.748101][T10276]  ? __check_object_size+0x488/0x710
[  199.749632][T10276]  netlink_sendmsg+0x8b8/0xd70
[  199.751556][T10276]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.753624][T10276]  ____sys_sendmsg+0x9ae/0xb40
[  199.755034][T10276]  ? __pfx_____sys_sendmsg+0x10/0x10
[  199.756562][T10276]  ? get_compat_msghdr+0x11b/0x170
[  199.758065][T10276]  ___sys_sendmsg+0x135/0x1e0
[  199.759807][T10276]  ? __pfx____sys_sendmsg+0x10/0x10
[  199.761827][T10276]  ? __pfx_lock_release+0x10/0x10
[  199.763285][T10276]  ? trace_lock_acquire+0x14e/0x1f0
[  199.764791][T10276]  ? __fget_files+0x206/0x3a0
[  199.766360][T10276]  __sys_sendmsg+0x16e/0x220
[  199.767698][T10276]  ? __pfx___sys_sendmsg+0x10/0x10
[  199.769180][T10276]  __do_fast_syscall_32+0x73/0x120
[  199.770720][T10276]  do_fast_syscall_32+0x32/0x80
[  199.772123][T10276]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  199.773933][T10276] RIP: 0023:0xf7ff1579
[  199.775100][T10276] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  199.782365][T10276] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  199.785132][T10276] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[  199.787399][T10276] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  199.789750][T10276] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  199.792040][T10276] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  199.794321][T10276] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  199.796581][T10276]  </TASK>
[  200.021509][T10286] FAULT_INJECTION: forcing a failure.
[  200.021509][T10286] name failslab, interval 1, probability 0, space 0, times 0
[  200.025290][T10286] CPU: 1 UID: 0 PID: 10286 Comm: syz.3.1103 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  200.028327][T10286] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.031422][T10286] Call Trace:
[  200.032377][T10286]  <TASK>
[  200.033229][T10286]  dump_stack_lvl+0x16c/0x1f0
[  200.034670][T10286]  should_fail_ex+0x497/0x5b0
[  200.036017][T10286]  ? fs_reclaim_acquire+0xae/0x150
[  200.037543][T10286]  should_failslab+0xc2/0x120
[  200.038928][T10286]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  200.040514][T10286]  ? __pfx___might_resched+0x10/0x10
[  200.042026][T10286]  ? __anon_vma_prepare+0x344/0x5e0
[  200.043502][T10286]  __anon_vma_prepare+0x344/0x5e0
[  200.045001][T10286]  ? __pfx___pte_alloc+0x10/0x10
[  200.046652][T10286]  __vmf_anon_prepare+0x11c/0x240
[  200.048210][T10286]  do_pte_missing+0x1020/0x3e00
[  200.049589][T10286]  ? mt_find+0x82d/0xa20
[  200.050845][T10286]  ? __pfx_lock_release+0x10/0x10
[  200.052618][T10286]  __handle_mm_fault+0x103c/0x2a40
[  200.054120][T10286]  ? __pfx___handle_mm_fault+0x10/0x10
[  200.055614][T10286]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  200.057197][T10286]  ? find_vma+0xc0/0x140
[  200.058413][T10286]  ? __pfx_find_vma+0x10/0x10
[  200.059854][T10286]  handle_mm_fault+0x3fa/0xaa0
[  200.061197][T10286]  do_user_addr_fault+0x7a3/0x13f0
[  200.062832][T10286]  exc_page_fault+0x5c/0xc0
[  200.064110][T10286]  asm_exc_page_fault+0x26/0x30
[  200.065456][T10286] RIP: 0010:_copy_to_user+0xb6/0xd0
[  200.066943][T10286] Code: 89 ee 48 89 ef e8 1a 81 00 fd 4d 85 ff 75 a8 e8 a0 86 00 fd 89 de 4c 89 e7 e8 56 f5 62 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[  200.072234][T10286] RSP: 0018:ffffc9002596fd78 EFLAGS: 00050246
[  200.073893][T10286] RAX: 0000000000000001 RBX: 0000000000000020 RCX: 0000000000000020
[  200.076086][T10286] RDX: fffff52004b2dfc0 RSI: ffffc9002596fde0 RDI: 0000000020000500
[  200.078244][T10286] RBP: 0000000020000500 R08: 0000000000000000 R09: fffff52004b2dfbf
[  200.080416][T10286] R10: ffffc9002596fdff R11: 0000000000000000 R12: ffffc9002596fde0
[  200.082650][T10286] R13: 0000000020000520 R14: 00007ffffffff000 R15: 0000000000000000
[  200.084894][T10286]  ? _copy_to_user+0xaa/0xd0
[  200.086334][T10286]  compat_ksys_msgctl+0x2a0/0x3f0
[  200.087911][T10286]  ? __pfx_compat_ksys_msgctl+0x10/0x10
[  200.089455][T10286]  __do_fast_syscall_32+0x73/0x120
[  200.090875][T10286]  do_fast_syscall_32+0x32/0x80
[  200.092200][T10286]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.094060][T10286] RIP: 0023:0xf707e579
[  200.095183][T10286] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  200.100452][T10286] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000192
[  200.102773][T10286] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000003
[  200.104905][T10286] RDX: 0000000020000500 RSI: 0000000000000000 RDI: 0000000000000000
[  200.107121][T10286] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  200.109234][T10286] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  200.111398][T10286] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  200.113654][T10286]  </TASK>
[  200.153524][T10291] Process accounting resumed
[  200.166990][T10293] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1106'.
[  200.169699][T10291] Process accounting resumed
[  200.169930][T10293] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1106'.
[  200.181227][T10293] macvtap1: entered promiscuous mode
[  200.182717][T10293] mac80211_hwsim hwsim3 wlan0: entered promiscuous mode
[  200.184606][T10293] macvtap1: entered allmulticast mode
[  200.186755][T10293] mac80211_hwsim hwsim3 wlan0: entered allmulticast mode
[  200.190836][T10293] mac80211_hwsim hwsim3 wlan0: left allmulticast mode
[  200.193314][T10293] mac80211_hwsim hwsim3 wlan0: left promiscuous mode
[  200.194074][T10295] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1107'.
[  200.199395][T10295] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1107'.
[  200.202822][T10295] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1107'.
[  200.206460][T10295] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1107'.
[  200.393362][T10310] random: crng reseeded on system resumption
[  200.429436][T10314] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1113'.
[  200.546689][T10312] 
[  200.547569][T10312] ======================================================
[  200.549786][T10312] WARNING: possible circular locking dependency detected
[  200.552016][T10312] 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0 Not tainted
[  200.555663][T10312] ------------------------------------------------------
[  200.558128][T10312] syz.3.1112/10312 is trying to acquire lock:
[  200.560205][T10312] ffff888023707b38 (&q->sysfs_lock){+.+.}-{4:4}, at: __blk_mq_update_nr_hw_queues+0x446/0x1460
[  200.563260][T10312] 
[  200.563260][T10312] but task is already holding lock:
[  200.565573][T10312] ffff888023707608 (&q->q_usage_counter(io)#52){++++}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460
[  200.569036][T10312] 
[  200.569036][T10312] which lock already depends on the new lock.
[  200.569036][T10312] 
[  200.572382][T10312] 
[  200.572382][T10312] the existing dependency chain (in reverse order) is:
[  200.575858][T10312] 
[  200.575858][T10312] -> #4 (&q->q_usage_counter(io)#52){++++}-{0:0}:
[  200.578987][T10312]        blk_mq_submit_bio+0x1fb6/0x24c0
[  200.580583][T10312]        __submit_bio+0x384/0x540
[  200.582126][T10312]        submit_bio_noacct_nocheck+0x698/0xd70
[  200.583919][T10312]        submit_bio_noacct+0x93a/0x1e20
[  200.585484][T10312]        block_read_full_folio+0x812/0xa50
[  200.587205][T10312]        filemap_read_folio+0xc6/0x2a0
[  200.588923][T10312]        filemap_get_pages+0x155f/0x1be0
[  200.590858][T10312]        filemap_read+0x3ca/0xd70
[  200.592494][T10312]        blkdev_read_iter+0x187/0x480
[  200.594607][T10312]        vfs_read+0x87f/0xbe0
[  200.596282][T10312]        ksys_read+0x12b/0x250
[  200.597841][T10312]        do_syscall_64+0xcd/0x250
[  200.599361][T10312]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.601194][T10312] 
[  200.601194][T10312] -> #3 (mapping.invalidate_lock#2){++++}-{4:4}:
[  200.603603][T10312]        down_read+0x9a/0x330
[  200.604941][T10312]        filemap_fault+0x2e0/0x2820
[  200.606601][T10312]        __do_fault+0x10a/0x490
[  200.607895][T10312]        do_pte_missing+0x1a8/0x3e00
[  200.609714][T10312]        __handle_mm_fault+0x103c/0x2a40
[  200.611279][T10312]        handle_mm_fault+0x3fa/0xaa0
[  200.612792][T10312]        __get_user_pages+0x8d9/0x3b50
[  200.614626][T10312]        faultin_page_range+0x24a/0x980
[  200.616150][T10312]        do_madvise+0x504/0x770
[  200.617619][T10312]        __ia32_sys_madvise+0xa7/0x110
[  200.619224][T10312]        __do_fast_syscall_32+0x73/0x120
[  200.620758][T10312]        do_fast_syscall_32+0x32/0x80
[  200.622299][T10312]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.624307][T10312] 
[  200.624307][T10312] -> #2 (&mm->mmap_lock){++++}-{4:4}:
[  200.626460][T10312]        __might_fault+0x11b/0x190
[  200.627937][T10312]        _copy_from_user+0x29/0xd0
[  200.629392][T10312]        __blk_trace_setup+0xa8/0x180
[  200.631019][T10312]        blk_trace_setup+0x47/0x70
[  200.632486][T10312]        sg_ioctl+0x7a3/0x26b0
[  200.634435][T10312]        compat_ptr_ioctl+0x6b/0xa0
[  200.636103][T10312]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  200.637748][T10312]        __do_fast_syscall_32+0x73/0x120
[  200.639347][T10312]        do_fast_syscall_32+0x32/0x80
[  200.640877][T10312]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.642854][T10312] 
[  200.642854][T10312] -> #1 (&q->debugfs_mutex){+.+.}-{4:4}:
[  200.645055][T10312]        __mutex_lock+0x19b/0xa60
[  200.646496][T10312]        blk_register_queue+0x13c/0x4f0
[  200.648077][T10312]        add_disk_fwnode+0x785/0x1300
[  200.649607][T10312]        brd_alloc.isra.0+0x50a/0x7c0
[  200.651219][T10312]        brd_init+0x12b/0x1d0
[  200.652752][T10312]        do_one_initcall+0x128/0x630
[  200.654529][T10312]        kernel_init_freeable+0x58f/0x8b0
[  200.656142][T10312]        kernel_init+0x1c/0x2b0
[  200.657546][T10312]        ret_from_fork+0x45/0x80
[  200.658967][T10312]        ret_from_fork_asm+0x1a/0x30
[  200.660470][T10312] 
[  200.660470][T10312] -> #0 (&q->sysfs_lock){+.+.}-{4:4}:
[  200.662639][T10312]        __lock_acquire+0x249e/0x3c40
[  200.664198][T10312]        lock_acquire.part.0+0x11b/0x380
[  200.665777][T10312]        __mutex_lock+0x19b/0xa60
[  200.667226][T10312]        __blk_mq_update_nr_hw_queues+0x446/0x1460
[  200.669049][T10312]        blk_mq_update_nr_hw_queues+0x2a/0x40
[  200.670791][T10312]        nbd_start_device+0x15b/0xd70
[  200.672330][T10312]        nbd_ioctl+0x21a/0xfd0
[  200.673798][T10312]        compat_blkdev_ioctl+0x2f7/0x750
[  200.675409][T10312]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  200.677175][T10312]        __do_fast_syscall_32+0x73/0x120
[  200.678784][T10312]        do_fast_syscall_32+0x32/0x80
[  200.680317][T10312]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.682282][T10312] 
[  200.682282][T10312] other info that might help us debug this:
[  200.682282][T10312] 
[  200.685175][T10312] Chain exists of:
[  200.685175][T10312]   &q->sysfs_lock --> mapping.invalidate_lock#2 --> &q->q_usage_counter(io)#52
[  200.685175][T10312] 
[  200.689317][T10312]  Possible unsafe locking scenario:
[  200.689317][T10312] 
[  200.691411][T10312]        CPU0                    CPU1
[  200.693058][T10312]        ----                    ----
[  200.694566][T10312]   lock(&q->q_usage_counter(io)#52);
[  200.696077][T10312]                                lock(mapping.invalidate_lock#2);
[  200.698260][T10312]                                lock(&q->q_usage_counter(io)#52);
[  200.700455][T10312]   lock(&q->sysfs_lock);
[  200.701679][T10312] 
[  200.701679][T10312]  *** DEADLOCK ***
[  200.701679][T10312] 
[  200.703989][T10312] 4 locks held by syz.3.1112/10312:
[  200.705451][T10312]  #0: ffff88801ed20998 (&nbd->config_lock){+.+.}-{4:4}, at: nbd_ioctl+0x151/0xfd0
[  200.708128][T10312]  #1: ffff88801ed208d8 (&set->tag_list_lock){+.+.}-{4:4}, at: blk_mq_update_nr_hw_queues+0x20/0x40
[  200.711412][T10312]  #2: ffff888023707608 (&q->q_usage_counter(io)#52){++++}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460
[  200.714763][T10312]  #3: ffff888023707640 (&q->q_usage_counter(queue)#36){+.+.}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460
[  200.718118][T10312] 
[  200.718118][T10312] stack backtrace:
[  200.719781][T10312] CPU: 2 UID: 0 PID: 10312 Comm: syz.3.1112 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  200.722815][T10312] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.725830][T10312] Call Trace:
[  200.726799][T10312]  <TASK>
[  200.727650][T10312]  dump_stack_lvl+0x116/0x1f0
[  200.729017][T10312]  print_circular_bug+0x41c/0x610
[  200.730481][T10312]  check_noncircular+0x31a/0x400
[  200.731904][T10312]  ? __pfx_check_noncircular+0x10/0x10
[  200.733416][T10312]  ? save_trace+0x42/0xa10
[  200.734648][T10312]  ? add_lock_to_list+0x17d/0x390
[  200.736039][T10312]  __lock_acquire+0x249e/0x3c40
[  200.737368][T10312]  ? __pfx___lock_acquire+0x10/0x10
[  200.738783][T10312]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  200.740467][T10312]  ? stack_depot_save_flags+0x36d/0x9e0
[  200.741985][T10312]  lock_acquire.part.0+0x11b/0x380
[  200.743616][T10312]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  200.745283][T10312]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  200.746988][T10312]  ? rcu_is_watching+0x12/0xc0
[  200.748356][T10312]  ? trace_lock_acquire+0x14e/0x1f0
[  200.749826][T10312]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  200.751506][T10312]  ? lock_acquire+0x2f/0xb0
[  200.752770][T10312]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  200.754460][T10312]  __mutex_lock+0x19b/0xa60
[  200.755705][T10312]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  200.757621][T10312]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  200.759586][T10312]  ? __pfx___mutex_lock+0x10/0x10
[  200.760993][T10312]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  200.762817][T10312]  __blk_mq_update_nr_hw_queues+0x446/0x1460
[  200.764527][T10312]  ? lock_acquire.part.0+0x11b/0x380
[  200.766117][T10312]  ? __mutex_trylock_common+0xea/0x250
[  200.767709][T10312]  ? __pfx___mutex_trylock_common+0x10/0x10
[  200.769453][T10312]  ? blk_mq_update_nr_hw_queues+0x20/0x40
[  200.771115][T10312]  ? rcu_is_watching+0x12/0xc0
[  200.772492][T10312]  ? __pfx___blk_mq_update_nr_hw_queues+0x10/0x10
[  200.774339][T10312]  ? __pfx___mutex_trylock_common+0x10/0x10
[  200.776059][T10312]  ? blk_mq_update_nr_hw_queues+0x20/0x40
[  200.777701][T10312]  ? __pfx___mutex_lock+0x10/0x10
[  200.779150][T10312]  ? trace_contention_end+0xee/0x140
[  200.780654][T10312]  ? __mutex_lock+0x1cc/0xa60
[  200.782041][T10312]  ? nbd_ioctl+0x151/0xfd0
[  200.783331][T10312]  ? __pfx___mutex_lock+0x10/0x10
[  200.784790][T10312]  blk_mq_update_nr_hw_queues+0x2a/0x40
[  200.786445][T10312]  nbd_start_device+0x15b/0xd70
[  200.787863][T10312]  ? bpf_lsm_capable+0x9/0x10
[  200.789257][T10312]  nbd_ioctl+0x21a/0xfd0
[  200.790490][T10312]  ? __pfx_nbd_ioctl+0x10/0x10
[  200.791869][T10312]  ? __pfx_lock_release+0x10/0x10
[  200.793305][T10312]  ? trace_lock_acquire+0x14e/0x1f0
[  200.794805][T10312]  ? __pfx_nbd_ioctl+0x10/0x10
[  200.796563][T10312]  compat_blkdev_ioctl+0x2f7/0x750
[  200.798557][T10312]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  200.800158][T10312]  ? __fget_files+0x206/0x3a0
[  200.801507][T10312]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  200.803137][T10312]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  200.804644][T10312]  __do_fast_syscall_32+0x73/0x120
[  200.806169][T10312]  do_fast_syscall_32+0x32/0x80
[  200.807576][T10312]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.809387][T10312] RIP: 0023:0xf707e579
[  200.810561][T10312] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  200.816335][T10312] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  200.819611][T10312] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000ab03
[  200.822346][T10312] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  200.824590][T10312] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  200.827287][T10312] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  200.829576][T10312] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  200.831851][T10312]  </TASK>
[  200.907953][T10320] block nbd3: shutting down sockets
[  204.516217][   T57] vhci_hcd: vhci_device speed not set

VM DIAGNOSIS:
04:27:41  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88802b644b80 RCX=ffffffff818d532c RDX=ffff888025220000
RSI=ffffffff818d5306 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc90006bf7888
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffed10056c8971 R13=0000000000000001 R14=ffff88802b644b88 R15=ffff88802b43ff80
RIP=ffffffff818d5308 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f455c0 CR3=000000000db7e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000016400000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000007a103c RBX=0000000000000001 RCX=ffffffff8b1a6899 RDX=ffffed10056a6fee
RSI=ffffffff8bb16fc0 RDI=ffffffff81702ec9 RBP=ffffed10039dc910 RSP=ffffc9000047fe08
R8 =0000000000000000 R9 =ffffed10056a6fed R10=ffff88802b537f6b R11=0000000000000001
R12=0000000000000001 R13=ffff88801cee4880 R14=ffffffff901cead0 R15=0000000000000000
RIP=ffffffff8b1a7c7f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f504fda4 CR3=000000004be40000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff851449b5 RDI=ffffffff9a668200 RBP=ffffffff9a6681c0 RSP=ffffc9002591f000
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36
R12=0000000000000000 R13=0000000000000020 R14=ffffffff85144950 R15=0000000000000000
RIP=ffffffff851449df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020024000 CR3=000000005d28a000 CR4=00352ef0
DR0=0000000000000003 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ef41527cf93a29c4 9aa89fb376cb68b3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c81303eb7a3973a2 1defba5571be4db2
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 82cc85254f07dbd5 71177ef06efe7ae7
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 32699db399203e58 41a25801ce61c5d6
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000140
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8153000009920000 007a858000000040
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 084c00005b1c0000 d5100000935e0000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8312000000000148 007a857a00000030
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 007a872b007a87bd 14320000007a7b2d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 10b75d26808e58fa b214f717ac8e3770
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f3837b4a93c099c d26a2ea325c4a795
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000020250c RBX=0000000000000003 RCX=ffffffff8b1a6899 RDX=ffffed10056e6fee
RSI=ffffffff8bb16fc0 RDI=ffffffff81702ec9 RBP=ffffed10039df488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000001
R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901cead0 R15=0000000000000000
RIP=ffffffff8b1a7c7f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020000000 CR3=0000000061964000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000