last executing test programs:

5m5.321499596s ago: executing program 3 (id=396):
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x2, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000060000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)

5m5.27744906s ago: executing program 3 (id=397):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x4, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newtaction={0xac, 0x30, 0x1, 0x0, 0x0, {}, [{0x98, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x10000000, 0x2, 0x6}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_ife={0x50, 0x1, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x24, 0x6, [@IFE_META_PRIO={0x8, 0x3, @val=0xffff}, @IFE_META_SKBMARK={0x8, 0x1, @val=0xffffff38}, @IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x6, 0x5, @val=0x4}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x800}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x28, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x7ff, 0x70}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
write$bt_hci(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="0000020008"], 0xe)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000bc0)=@newtaction={0x60, 0x30, 0x48b, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_simple={0x48, 0x1, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x6f8, 0x2, 0x0, 0x6, 0x1ff}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x60}}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TIOCSETD(r5, 0x5423, 0x0)
write$binfmt_aout(r5, &(0x7f0000000940)=ANY=[], 0xff2e)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020101090800000000170006ffffff00030006001000000002000000e0000009f9ff0f0005000000030005007217440502000000e0000001"], 0x40}}, 0x0)
sendmsg$key(r6, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x7, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x2b, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000180)=0x5)

5m4.267132609s ago: executing program 3 (id=401):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x4, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES64=r0, @ANYRES16=r0, @ANYRES32, @ANYBLOB, @ANYRESDEC=r0, @ANYRESHEX=r0], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000280))
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r3)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000007640)=ANY=[], 0x3aa0}}, 0x0)
recvmsg(r3, 0x0, 0x0)

5m3.373606619s ago: executing program 3 (id=406):
r0 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x0, 0x10100, 0x400000}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000000)={&(0x7f0000001000)={[{0x0, 0x52, 0x0, 0x300}, {0x0}, {0x0, 0xfffffffffffffec2}, {0x0}]}, 0x4}, 0x1)
r3 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x1}, 0x8)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r4)
r5 = syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0x0, 0x3010}, &(0x7f0000000040)=<r6=>0x0, &(0x7f0000000080)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}})
ioctl$FS_IOC_SETVERSION(r5, 0x40047602, &(0x7f00000001c0)=0x119b)
io_uring_enter(r5, 0x21c0, 0xc371, 0x100000000000012, 0x0, 0x0)
r8 = socket(0x10, 0x3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000003c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r8, 0x0, 0x0, 0x56, 0x200440c0, 0x1})
r9 = socket$inet_mptcp(0x2, 0x1, 0x106)
r10 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r10, 0xc0045627, &(0x7f0000000100)=0x3)
connect$inet(r9, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
setsockopt$inet_tcp_int(r9, 0x6, 0x6, &(0x7f0000000140)=0x1000201, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
r11 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r11, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x260)
setsockopt$netlink_NETLINK_CAP_ACK(r8, 0x10e, 0xa, &(0x7f0000008dc0)=0x3, 0x4)
r12 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r12, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r12, 0x0)
syz_emit_ethernet(0x4e, &(0x7f00000005c0)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "f900f5", 0x18, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x2, 0x0, 0x0, 0x0, {[@fastopen={0x1e, 0x3, 'q'}]}}}}}}}}, 0x0)
recvmmsg(r8, &(0x7f000000af40)=[{{&(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000002000)=""/4096, 0x1000}, {&(0x7f0000000400)=""/174, 0xae}, {&(0x7f00000004c0)=""/186, 0xba}], 0x3, &(0x7f0000000580)=""/114, 0x72}, 0x1}, {{&(0x7f0000000600)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000680)=""/195, 0xc3}], 0x1, &(0x7f0000000780)=""/174, 0xae}, 0xaeb}, {{&(0x7f0000000840)=@x25={0x9, @remote}, 0x80, &(0x7f0000000c40)=[{&(0x7f00000008c0)=""/48, 0x30}, {&(0x7f0000003000)=""/4096, 0x1000}, {&(0x7f0000000900)=""/145, 0x91}, {&(0x7f0000004000)=""/4096, 0x1000}, {&(0x7f00000009c0)=""/45, 0x2d}, {&(0x7f0000000a00)=""/16, 0x10}, {&(0x7f0000000a40)=""/116, 0x74}, {&(0x7f0000000ac0)=""/23, 0x17}, {&(0x7f0000000b00)=""/104, 0x68}, {&(0x7f0000000b80)=""/144, 0x90}], 0xa, &(0x7f0000000cc0)=""/95, 0x5f}, 0xfffffff4}, {{&(0x7f0000000d40)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000dc0)=""/123, 0x7b}, {&(0x7f0000005000)=""/4096, 0x1000}, {&(0x7f0000000e40)=""/62, 0x3e}], 0x3}, 0x4052}, {{&(0x7f0000000ec0)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000000fc0)=[{&(0x7f0000006000)=""/251, 0xfb}, {&(0x7f0000000f40)=""/93, 0x5d}, {&(0x7f0000006100)=""/146, 0x92}], 0x3, &(0x7f00000061c0)=""/185, 0xb9}, 0x6}, {{&(0x7f0000006280)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000007640)=[{&(0x7f0000006300)=""/4096, 0x1000}, {&(0x7f0000007300)=""/99, 0x63}, {&(0x7f0000007380)=""/66, 0x42}, {&(0x7f0000007400)=""/210, 0xd2}, {&(0x7f0000007500)=""/117, 0x75}, {&(0x7f0000007580)=""/35, 0x23}, {&(0x7f00000075c0)=""/90, 0x5a}], 0x7, &(0x7f0000007680)=""/37, 0x25}, 0xb}, {{0x0, 0x0, &(0x7f00000089c0)=[{&(0x7f00000076c0)=""/1, 0x1}, {&(0x7f0000007700)=""/4096, 0x1000}, {&(0x7f0000008700)=""/169, 0xa9}, {&(0x7f00000087c0)=""/225, 0xe1}, {&(0x7f00000088c0)=""/9, 0x9}, {&(0x7f0000008900)=""/142, 0x8e}], 0x6, &(0x7f0000008a00)=""/178, 0xb2}, 0x3}, {{0x0, 0x0, &(0x7f0000008bc0)=[{&(0x7f0000008ac0)=""/208, 0xd0}], 0x1, &(0x7f0000008c00)=""/90, 0x5a}, 0x8}, {{&(0x7f0000008c80)=@pptp={0x18, 0x2, {0x0, @dev}}, 0x80, &(0x7f000000ae40)=[{&(0x7f0000008d00)=""/91, 0x5b}, {&(0x7f0000008d80)=""/37, 0x25}, {&(0x7f0000008dc0)}, {&(0x7f0000008e00)=""/18, 0x12}, {&(0x7f0000008e40)=""/4096, 0x1000}, {&(0x7f0000009e40)=""/4096, 0x1000}], 0x6, &(0x7f000000ae80)=""/153, 0x99}, 0xf02e}], 0x9, 0x10041, &(0x7f000000b080)={0x77359400})

5m2.553873006s ago: executing program 3 (id=411):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb995298992ea5400c2", 0x10)
recvmmsg$unix(r2, &(0x7f0000001980)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x20, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
syz_usb_connect$printer(0x2, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r3 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r5 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
readv(r3, &(0x7f0000000080)=[{&(0x7f0000000100)=""/161, 0xd8}], 0x1)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000480)='\xf5\xfc\xd2\xec]\x95zx8*\xa2d\x11\xb5\xb1\x01\x00\x00\x00\xe49{\x8a{\x81s\xea$\xdfg\xb1\x03DY!\x97\xadM\xd7\xff\x8a\xcd[>\x12e\xc3]d8\xba\x8ec\x00\x00\x00\x00\x00\x00\x00\xa0\xe2\xd5y\xec\x90\x00\x98Y\x91\x19\x16\x89\xd0\x1a\xad\xcd\xd6\xd0\xc6\xb9\xeb\x95\xd3\x9cl\x9cu#\xb4\xee\xe5\x9d\t\fV\xd4\xda\xfc`2?\x15P\xba\x14b\x1c\xcc\xd5\xb9jA$s\xb9g3\x15[\xc7\xec\xa9;\xee\x01\xc9\xc4\x1f\xc3\xe4\xfa\xd3fU\x0e\x86\xc8\xa7\xaf\xaf\x04P\xa3\x8bb\xbf\\\xdb\x83\x00\x96sy\x14\x1eo\xcc9&\x946\xf9\xf5v\xee\xb5m$;\x01\xb8\xeau\x00\xd1S=\x920H\xc2z\xb5\xbe\x95\xef\xeb\xd1\xc8\xa1\xba\xach\xbef\xa8\x86\xc2\x18\x9cC\x15\x9c^\xcf\xe9\xbcp\xb4Ff\x00\x9d>p\"\x19\xd8}|\x92\x13\x874\xe3\x01\xfd-?\xba\xf2\x8e\xa5y\\\xf0\fkd??-\x983\xf3\x19\xc7\xc0/\xe9\x1a\x80=\xa72)\xd2\x00'/272, &(0x7f0000000240)='/\t\x00\x00\x00\x98', 0x0)
tkill(r5, 0xb)
chdir(0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

5m2.318671051s ago: executing program 3 (id=413):
llistxattr(&(0x7f0000000240)='./file0\x00', &(0x7f00000002c0)=""/66, 0x42)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r2, 0x0, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(r2, 0x114, 0x1, &(0x7f0000000100), 0x10)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001480)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c38303231310091deacd0fe0702baa998252a5c12c73e87a5098cc462d0b34f2b812e95a4038ddd960490deed16bbc9a3156f9477030908e2b5f3bdd65c3102de0c4b35e614b0d3e365d8c88bc6a6d42889607c35fa3950fecc077ea12a740efb9dc75180f7c1dd06062c1bb37365867abe49f87bc8251369ab90d96f6e127e7358a9fbc798547a1354ec36af04452180b0143b8cb6f17f5ac4622bd99c11bf6cd4a670001e4b9db06c53e6f85f68104251453d06c2b3969c63"], 0x20}}, 0x0)
recvmmsg(r3, &(0x7f0000001b40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/189, 0xbd}, {&(0x7f00000003c0)=""/152, 0x98}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x3}}], 0x7, 0x0, 0x0)
mkdir(0x0, 0x13b)
mkdir(0x0, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r4 = open(0x0, 0x80242, 0x1df2a23c5997fa5f)
read$FUSE(r4, &(0x7f0000002a00)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, r5, {{0x4, 0x3, 0x1, 0x6, 0x3, 0x1, {0x0, 0x3ff, 0x20ff, 0x1, 0x89, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x3ff, 0x1}}, {0x0, 0x13}}}, 0xa0)
sendfile(r4, r4, &(0x7f0000000080), 0x7f03)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
io_submit(0x0, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c0000001500010300000000000000000c0000000800040001"], 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000000)

5m2.310063915s ago: executing program 32 (id=413):
llistxattr(&(0x7f0000000240)='./file0\x00', &(0x7f00000002c0)=""/66, 0x42)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r2, 0x0, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(r2, 0x114, 0x1, &(0x7f0000000100), 0x10)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001480)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c38303231310091deacd0fe0702baa998252a5c12c73e87a5098cc462d0b34f2b812e95a4038ddd960490deed16bbc9a3156f9477030908e2b5f3bdd65c3102de0c4b35e614b0d3e365d8c88bc6a6d42889607c35fa3950fecc077ea12a740efb9dc75180f7c1dd06062c1bb37365867abe49f87bc8251369ab90d96f6e127e7358a9fbc798547a1354ec36af04452180b0143b8cb6f17f5ac4622bd99c11bf6cd4a670001e4b9db06c53e6f85f68104251453d06c2b3969c63"], 0x20}}, 0x0)
recvmmsg(r3, &(0x7f0000001b40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/189, 0xbd}, {&(0x7f00000003c0)=""/152, 0x98}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x3}}], 0x7, 0x0, 0x0)
mkdir(0x0, 0x13b)
mkdir(0x0, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r4 = open(0x0, 0x80242, 0x1df2a23c5997fa5f)
read$FUSE(r4, &(0x7f0000002a00)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, r5, {{0x4, 0x3, 0x1, 0x6, 0x3, 0x1, {0x0, 0x3ff, 0x20ff, 0x1, 0x89, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x3ff, 0x1}}, {0x0, 0x13}}}, 0xa0)
sendfile(r4, r4, &(0x7f0000000080), 0x7f03)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
io_submit(0x0, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c0000001500010300000000000000000c0000000800040001"], 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000000)

3m16.155533753s ago: executing program 1 (id=861):
r0 = syz_io_uring_setup(0x8e, 0x0, &(0x7f0000000380), 0x0)
io_uring_setup(0x7394, &(0x7f0000000300)={0x0, 0x3d31, 0x2, 0x0, 0x385, 0x0, r0})
r1 = socket(0x1e, 0x1, 0x0)
connect$tipc(r1, 0x0, 0x0)
r2 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(0xffffffffffffffff, 0x13, &(0x7f0000000040)=[0xf, 0x6], 0x2)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs2/custom1\x00', 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0xbb8)
mount(0x0, 0x0, &(0x7f0000000000)='fuseblk\x00', 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="1400000000080104001410d0376a06d20000"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x8050)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000001180)=ANY=[@ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100626f"], 0x3c}, 0x1, 0xba01}, 0x0)
ioctl$BLKTRACESETUP(r2, 0xc0401273, &(0x7f0000000000)={'\x00', 0x5d22, 0x6f11, 0xb, 0xfffffffffffffeff, 0x11c3adec})
ioctl$BLKTRACESTART(r2, 0x1276, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f00000002c0)={'ip6gre0\x00', &(0x7f0000000580)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x3, 0x0, 0x46, @local, @mcast1, 0x10, 0x0, 0x6, 0x3}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r6, 0x89f2, &(0x7f0000000600)={'syztnl1\x00', 0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="4003d2e11000030400000000fedbdf3500000300", @ANYRES32=0x0, @ANYBLOB="10d40000b1eb502a200012800b00010067656e65766500001000028004000e000500090000000000"], 0x40}, 0x1, 0x0, 0x0, 0x40881}, 0x10)
openat$vmci(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)

3m15.976466369s ago: executing program 1 (id=863):
openat$dsp(0xffffffffffffff9c, &(0x7f0000000140), 0x404000, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x14, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0xe}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x8031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x19})
bind$alg(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000040)=ANY=[], 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000000), 0x2, 0x141102)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000040)=0x2, 0xffffffb4)
syz_emit_ethernet(0x0, 0x0, 0x0)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000822000/0x1000)=nil, 0x1000}})
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
ioctl$EXT4_IOC_MIGRATE(r3, 0xff04)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
prctl$PR_SET_KEEPCAPS(0x59616d61, 0x1ffffffffffffff)
madvise(&(0x7f000018a000/0x2000)=nil, 0x2000, 0x12)
syz_clone(0x500, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)
close(r0)
bpf$MAP_CREATE(0x0, 0x0, 0x1d)

3m15.040981491s ago: executing program 1 (id=866):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000180)={0x1, 0x1, 0x10001, 0x3, 0x1, "42f30cf64a3d3e55d4913682b2a702013fe62f"})

3m14.976537557s ago: executing program 1 (id=867):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_io_uring_setup(0x4e1, &(0x7f0000000380)={0x0, 0x1ffffa, 0x10100, 0x3, 0x1}, &(0x7f0000000180)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_ACCEPT={0xd, 0x0, 0x3, r0, 0x0, 0x0, 0x0, 0x80800})
io_uring_enter(r1, 0x708, 0x41e3, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r4 = openat$dir(0xffffff9c, &(0x7f00000000c0)='./file0\x00', 0x402001, 0x0)
utimensat(r4, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={{0x77359400}, {0x0, 0x2710}}, 0x100)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x17)
r5 = userfaultfd(0x801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4f0})
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
ioctl$UFFDIO_WRITEPROTECT(r5, 0xc018aa06, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
syz_io_uring_setup(0x48ba, &(0x7f0000000000)={0x0, 0xfffffffc, 0x1000, 0x0, 0x333}, &(0x7f0000000080), &(0x7f0000ff4000))
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000005c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000600)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_DISCONNECT(r7, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000640)={0x24, r8, 0x1, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1a}]}, 0x24}, 0x1, 0x0, 0x0, 0x2001}, 0x8080)
umount2(&(0x7f0000000100)='./file0\x00', 0x8)

3m14.92611819s ago: executing program 1 (id=868):
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000340), &(0x7f0000000380)=0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1f5d02, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xf}, {0xffff, 0xffff}, {0xfff0, 0xa}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20048845}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=@deltfilter={0x24, 0x2d, 0x5, 0x70bd2a, 0x25dfdbf9, {0x0, 0x0, 0x0, r2, {0xfff3, 0x9}, {0x2, 0xf}, {0x1, 0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x78, 0x30, 0x1, 0x0, 0x0, {}, [{0x64, 0x1, [@m_ct={0x34, 0x2, 0x0, 0x0, {{0x7}, {0xc, 0x2, 0x0, 0x1, [@TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e22}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x910ec27568a00e35, 0x40000002, 0x0)
r6 = socket(0x10, 0x80002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0x64}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x40d, 0x70bd23, 0x25ffdbfc, {0x0, 0x0, 0x0, 0x0, 0x10}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x6}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg$alg(r6, &(0x7f00000000c0), 0x492492492492627, 0x0)

3m14.586284493s ago: executing program 1 (id=869):
r0 = signalfd4(0xffffffffffffffff, &(0x7f00000000c0), 0x8, 0x0)
faccessat2(r0, &(0x7f0000001400)='\x00', 0x0, 0x1100)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYRESDEC], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_TDLS_OPER(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYRES64=r1, @ANYRES8=r1, @ANYBLOB="0902000000000000000001000000050002000a00000014000700ff00000000000000000000000000000108000b00", @ANYRES32=r4, @ANYBLOB="4155bf0d5c8664b351b2e1d6671345536b6d7f4837e3c20dc3f0a855e0b5ca13854c1a3c7c6e0718cb212c043b80bf"], 0x38}}, 0x0)
unshare(0x62040200)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
r6 = socket(0x1e, 0x4, 0x0)
getsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x89, &(0x7f0000001380), &(0x7f00000013c0)=0x4)
ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000000)={'lo\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}})

3m14.583082158s ago: executing program 33 (id=869):
r0 = signalfd4(0xffffffffffffffff, &(0x7f00000000c0), 0x8, 0x0)
faccessat2(r0, &(0x7f0000001400)='\x00', 0x0, 0x1100)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYRESDEC], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_TDLS_OPER(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x1c}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYRES64=r1, @ANYRES8=r1, @ANYBLOB="0902000000000000000001000000050002000a00000014000700ff00000000000000000000000000000108000b00", @ANYRES32=r4, @ANYBLOB="4155bf0d5c8664b351b2e1d6671345536b6d7f4837e3c20dc3f0a855e0b5ca13854c1a3c7c6e0718cb212c043b80bf"], 0x38}}, 0x0)
unshare(0x62040200)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
r6 = socket(0x1e, 0x4, 0x0)
getsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x89, &(0x7f0000001380), &(0x7f00000013c0)=0x4)
ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000000)={'lo\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}})

7.392175817s ago: executing program 5 (id=2103):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
socket$phonet_pipe(0x23, 0x5, 0x2)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/cpuinfo\x00', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
write$RDMA_USER_CM_CMD_GET_EVENT(r1, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000540), 0x0, 0x0)
read$msr(r2, 0x0, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r3, 0x6, 0x19, &(0x7f00000001c0)=0x1, 0x4)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000340)="b9cd14c222ee3c0cb001829a8681ed391da1a71d8d", 0x63}], 0x1}}], 0x1, 0x20008000)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0xc, &(0x7f0000000840)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @cgroup_sock_addr=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='&\x00\x00\x00\a'], 0x50)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write(r4, 0x0, 0x0)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r5, &(0x7f0000000000), 0xd)
close(r0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)=@ipv6_delrule={0x38, 0x18, 0x1, 0xfffffffa, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x20001}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x4, 0x1}, @FRA_DST={0x14, 0x7, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)
r7 = open(&(0x7f0000000000)='./file0\x00', 0x502, 0x98)
r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newchain={0x5c, 0x64, 0x1, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xfff2, 0x9}, {0xb, 0xd}, {0x4, 0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x24, 0x2, [@TCA_FLOW_ADDEND={0x8, 0x5, 0x5}, @TCA_FLOW_RSHIFT={0x8, 0x4, 0x8001}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0x7, 0x8}}, @TCA_FLOW_ADDEND={0x8, 0x5, 0x7}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x4}}]}, 0x5c}}, 0x48010)
sendmsg$netlink(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=ANY=[@ANYBLOB="180100002e"], 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0)
fcntl$setlease(r7, 0x400, 0x1)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000000)='.\x00', 0x20400, 0x74)

6.465077275s ago: executing program 5 (id=2105):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000008"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4) (async)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0) (async)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x8280, 0x0) (async)
r3 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x54, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r4}, 0x10) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x43}}, &(0x7f0000000480)='syzkaller\x00'}, 0x80) (async)
pread64(r2, &(0x7f0000000080)=""/171, 0xab, 0x6)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) (async)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, 0x0, 0x0)

6.422769459s ago: executing program 5 (id=2106):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x20008c0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache}], [], 0x6b}})
lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340))
r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$IOCTL_STOP_ACCEL_DEV(r3, 0x541b, 0x0)

6.417531008s ago: executing program 5 (id=2107):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50, 0xffffffffffffffff, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000001c0), 0x13f, 0x1}}, 0x20)
r3 = add_key$user(&(0x7f0000000040), &(0x7f0000000180)={'syz', 0x1}, &(0x7f0000000080)='\x00', 0x1, 0xfffffffffffffffb)
pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r4, 0x5760, 0x14)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x100000000000f7)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040))
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r5, 0x400455c8, 0x4)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8004)
rseq(&(0x7f0000000240)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
io_setup(0x4, &(0x7f00000000c0)=<r6=>0x0)
io_destroy(r6)
ioctl$TIOCVHANGUP(r5, 0x5437, 0x0)
syslog(0x2, &(0x7f00000004c0)=""/164, 0xa4)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2})
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, &(0x7f0000000080)={{&(0x7f0000a4d000/0x1000)=nil, 0x20a4d000}})
keyctl$revoke(0x3, r3)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x1}, 0x2)

4.889967526s ago: executing program 2 (id=2119):
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
capset(&(0x7f0000000840)={0x20080522}, &(0x7f0000000880)={0x0, 0xdd1, 0xffffffb3, 0x0, 0x88fd, 0x10})
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x20}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0x0, 0x60, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0xef92, 0x0, 0x0, 0x0)
r6 = openat$misdntimer(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
readv(r6, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xd, 0x810, 0xffffffffffffffff, 0xfdffa000)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r7, &(0x7f0000000000)="fa", 0xfffffdef)
pipe(&(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
splice(r11, 0x0, r9, 0x0, 0x2, 0x0)
fcntl$setstatus(r9, 0x4, 0x2000)
vmsplice(r8, &(0x7f0000000180)=[{&(0x7f0000000080)="a1", 0x1}], 0x1, 0x8)
write$binfmt_elf64(r10, &(0x7f0000000000)=ANY=[], 0x18c6)
sysinfo(0x0)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0x0, 0x60, &(0x7f00000007c0)={'filter\x00', 0x7, 0x4, 0x3d8, 0x218, 0x218, 0x10c, 0x2f8, 0x2f8, 0x2f8, 0x4, 0x0, {[{{@arp={@local, @rand_addr=0x64010102, 0xffffffff, 0xff000000, 0x5, 0x0, {@mac, {[0x0, 0xff, 0x0, 0xff, 0xff]}}, {@empty, {[0x0, 0x0, 0xff]}}, 0x3, 0x7, 0x7fff, 0x0, 0x9, 0x1, 'ip6erspan0\x00', 'syz_tun\x00', {}, {}, 0x0, 0x2}, 0xbc, 0x10c}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@broadcast, @empty, @private=0xa010101, @multicast2, 0x7}}}, {{@uncond, 0xbc, 0x10c}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@local, @remote, @multicast2, 0x8, 0x1}}}, {{@uncond, 0xbc, 0xe0}, @unspec=@AUDIT={0x24, 'AUDIT\x00', 0x0, {0x1}}}], {{'\x00', 0xbc, 0xe0}, {0x24}}}}, 0x424)
ioctl$TFD_IOC_SET_TICKS(r1, 0x40085400, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r12, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r12, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000aa0000000060a0b0400000000000000000200000074000480700001800b00010074617267657400006000028045000300cd4b6abe42031763d02899c77f963d140d7a9d3ac869f3a860917523679abf4579f9cd6564f6514a0eebad4e3537b11b377744efe99e072130c9357f0000000a000100484d41524b00000008000240000000000900010073797a30000000000900020073797a32000000001400000011000100"/200], 0xc8}, 0x1, 0x0, 0x0, 0x10}, 0x0)

4.103958624s ago: executing program 0 (id=2130):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x4}}, './file0\x00'})
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={<r2=>0x0, 0x2c, &(0x7f0000000140)=[@in6={0xa, 0x4e20, 0xfa, @mcast2, 0x3ff}, @in={0x2, 0x4e22, @rand_addr=0x64010100}]}, &(0x7f00000002c0)=0xc)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000400)={r2, @in6={{0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}}, 0x7fff, 0xd9, 0x80000001, 0x7, 0x8, 0x7, 0xe8}, 0x9c)
timer_create(0x9, &(0x7f0000000180)={0x0, 0x1e, 0x1}, &(0x7f0000000700)=<r3=>0x0)
timer_settime(r3, 0x1, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
timer_settime(r3, 0x0, &(0x7f0000000040)={{}, {0x0, 0x3938700}}, &(0x7f0000000080))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r5, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000ddffff94"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
syz_emit_ethernet(0x7a, &(0x7f0000000040)={@local, @local, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, '\x00', 0x44, 0x2f, 0x0, @dev={0xfe, 0x80, '\x00', 0x11}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x57}}}}}}}, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x301200, 0x0)
close(r7)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

4.025426902s ago: executing program 2 (id=2131):
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="140000001600150f00000000cfb06111d7b4c2ceeb86fbdbdf2504000000"], 0x14}], 0x1}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x3)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(0xffffffffffffffff, 0x18, 0x0, 0x1)
ioctl$KVM_REINJECT_CONTROL(0xffffffffffffffff, 0xae71, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
r5 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r5, 0xc0045005, &(0x7f0000000000)=0x1000)
ppoll(&(0x7f0000000040)=[{r5, 0x9620}], 0x1, 0x0, 0x0, 0x0)
r6 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
syz_io_uring_setup(0x275c, &(0x7f0000001280)={0x0, 0x5bce, 0x8, 0xffffffff, 0xc0001c8}, &(0x7f0000001300), &(0x7f0000001180))
ioctl$SNDCTL_DSP_SETFRAGMENT(r6, 0xc004500a, &(0x7f0000001340))
write$dsp(r6, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
sendmsg$kcm(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r4, &(0x7f0000000100)={0x0, 0xfd, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb010511000b000a000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x80)

3.125639435s ago: executing program 2 (id=2133):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="200000000d0aac00000000000000000000000000090002"], 0x20}}, 0x0)
sendmsg$netlink(r4, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="0300001c9ff478c24f95a3254110000000"], 0x114}, {&(0x7f0000003200)=ANY=[@ANYBLOB="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"], 0x10f8}, {&(0x7f0000000500)={0x1f0, 0x17, 0x300, 0x70bd28, 0x25dfdbfe, "", [@nested={0x1de, 0x3f, 0x0, 0x1, [@generic="e4f373a3e879f8721136a5d55975f8b919775011960642e0cfd817114dcef163ae6ffafffeff5bdc7de954f0d0eedba350aafd8e99f20e9b13b44d0606872d9ebb879416b90b4fba7d89fcd6328380fa71b1021f16ae51a92fcc3d8bd53d57305e72a6753691bcd9bf98a946ce85c3204888648ab9651380c6c95f7d311fa0336de95c955bc67c65c4519e38336be0eb12149c90a617c5723db6a9a8f4489df089d52d8f8777dbb6aea942a3be63db8e3de819b2ab2007a6e4f84cba354c2866626934be4e35", @generic="4b8d0bb64d228821b810ea32", @generic="635949f3768941f60589372fa85ac0dee47ef71c09e266ec10b34698b091173958f2a0dd6ed58e4c115fe6ecc0597363f414e097ff8167bd45dec20897238d106c1599405d5986de95aaa7423a477453758db27c1d312e7517974e1e7479e3dcdda747a1c108a662592964bdc94b1e6ed15c040c43889c6e3db78eb24c9f1f316cb43ce924d7c77987a176e65d9b807cc3d68aba862accbc8b4f54f9b7dae18dc02fb59903232b8b6fd5e70e4777efa83d96c865398a6d46750ee41fd7c8562bd1feb1c4c3ef4cbd45d2f17f12b31345", @typed={0x8, 0xa2, 0x0, 0x0, @str='GPL\x00'}, @nested={0x4, 0x2a}, @typed={0x4, 0x53}, @nested={0x4, 0x68}, @typed={0x8, 0x13b, 0x0, 0x0, @fd=r0}, @typed={0x8, 0xd8, 0x0, 0x0, @pid=r3}, @typed={0x14, 0x36, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @local}}]}]}, 0x1f0}, {&(0x7f0000000040)={0x2c, 0x27, 0x400, 0x70bd2d, 0x25dfdbfc, "", [@nested={0x14, 0x9f, 0x0, 0x1, [@nested={0x4, 0x11f}, @typed={0x8, 0xb0, 0x0, 0x0, @fd}, @nested={0x4, 0x66}]}, @typed={0x8, 0x2e, 0x0, 0x0, @u32=0x857}]}, 0x2c}, {&(0x7f0000001b00)={0x29c, 0x1c, 0x2, 0x70bd2d, 0x25dfdbff, "", [@nested={0x212, 0x71, 0x0, 0x1, [@typed={0xb9, 0x10a, 0x0, 0x0, @binary="ced5e34844e9be6e48f2082e635d4312b2f0a33691c6e04d9a0889c2ad0af93b07682cf6e4154a465fe991e6283a5dfb1c29539a9dfc414dd10ab65c8620472971c00a9a8f86d5f0ac04acbfbd10aad8619885ac51e8a1a46647f88eff3c3f5139eead8234e10b65f9484d9a135e783b73e9322f76c28de45645542878a8e4e5f52451669cab4fe37962ae1481e1a8fb0259433f83a313f38610f6b4c38336b9241ce96f012f8c5596dfea37f6b77a9518c461fdbe"}, @typed={0x4, 0x4c}, @typed={0x8, 0xa7, 0x0, 0x0, @pid=r3}, @generic="5461f3f1dd06570508b7eda6117aa4c3cbdcef9307bdb6e18e2d4120a49a2a2dcb1fc4e35f6298e05788d466e05dbd703c4958ef88f1b8fabb0fbe715fe52e50a3aee0211a9c6d76ce024d5130a193bf63a43aca28f0a06b50216f851f2d6d3008d6d078f4c38162de07e4724f31f1e17eb3b2f146da3584fae64dcba8e22c1760d303850fa75bd21a2d2bdc34f7973829c9a29a61afaa0fa284f2dc693d7a5d0632461b245deee6fb03d937023fed4f0fab507b6cbc24d4eb2978bcc3e922594c82a399978c650c3c5752ddca649d347c456b7a81a843763c3d7e0f23f610eba2cb38dfaa91fb11bd2839242180", @nested={0x4, 0x72}, @nested={0x4, 0x2b}, @nested={0x4, 0x4e}, @nested={0x4, 0x120}, @generic="85583eed4b208241ec7e667afae5e69817486698d39822f5bc178bb8a4f8133da60836183bd4e9b54e7ac001118717174cf1ae4912f21cef20fe35fc0373f6ee5d7d79d77ff38cd2"]}, @generic="284b179da4f283ae6e861bd92e0392926dc90730b37c74cf1b08018767c01bbe7ec8e3a4bc139aeb5a7bbd171538ff4b9263e10e79773d8159e633c2dda1c9dca0f3b8cf393b52ce6185419041384db18883f84526090cf54ad52ff27aec2dc7be6471ff6969c896e1175d2c7bfb2f11125d25f8f743"]}, 0x29c}, {&(0x7f0000001dc0)={0x1410, 0x2a, 0x1, 0x70bd2d, 0x25dfdbfe, "", [@generic="66d426871415eb8923f926821296f1fd6e897d06e588570f3e57f619381043d018cfa6e016de56440ea603f47812add4cd365778f867147f3e5be3a59ab1c271fec1ef8e22a1243324e811f6583b675ad22e6fa20acdc1c154f877fd12737c476300477ee211db3c54097caddc038ff47b42be68c1ad0a6f962a04", @typed={0xa, 0x88, 0x0, 0x0, @str='tmpfs\x00'}, @typed={0x8, 0x11b, 0x0, 0x0, @fd=r0}, @generic="5404a142ea8f095bde32b1a6751994b1333e1a0afce5fe20feebce42352cc2633dee67a983d73755b98505bab08f90676a9558faed74fd8821395422b1c1a4b13da74b95dff6b51ae33c2356022c4089012deeda4a87f4d654e56d5e7ff84a9dfab22183c84add441d68d24179c02e60b8b85d69b5e4d1d89081a7aef7e550fbce59db1fc8d6", @nested={0x113d, 0x12c, 0x0, 0x1, [@nested={0x4, 0x1}, @generic="738735a4e5b8d923b1d711a67a4f190cdebfd3426f0d2d1f94b69fccf30a4f5704dc4742c257324ffe17b2d678e98d744c5d7b55398193ee1b030398cf465201", @generic="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", @nested={0x4, 0xa0}, @nested={0x4, 0x90}, @generic="abf8cfcd65d2b2baf28d4792abf34c46ea3d24a3aa82d4814407b62dd64e32b7e5a38343e8a0a8549bf2893fdc56bbe77e1fc405b73329481528809b6cb53b2722fb3280d9d6aee83bac58a004a5961bf742ad93e10fca32609e5d6caea2c8bee87e0a767462e145d89f7d49d2bd7165ffd2e3e7f1080c31c3bcb703eaaa7cafc4c38d05ac2df6e1c5e9d850ba95b899c184c69a03d63cf503b83e040a5cedc2424eddd87b323d72cec6e9cf6ce7510f7d9daa86a7b81331165616683a70c271375137452499601699fe257c9f3a0bd9e27811f9902fd31e6d039ab075417136b2c4ee592c8e108915e355fb04"]}, @typed={0x8, 0x21, 0x0, 0x0, @fd=r0}, @generic="c31bb90564adc8fab8b95cd29035ec2a273027600905f714dbe0d68f2d6db165f24029c8af0679ada9b76cbb575f1666838a19c88878c91c2a3b70039abf27447f22754c6b93ab830ee84f73967f5d19a6961b7ca21304253b54adb0d45b908c37787c8549b1d0f354c155d41b4f8242ca1512776834b20dc873d4d36538bf14b46320e7787615e46d4a8bd0b9919f5acf4670978a4018b28cc6fd3774c09f1165fa244be340c990b5e55c53228d67d76af92f1ee86121b0e3579a7dc9b8316fb7de29f72ab94139927bcab186b6cf50eb2f4140351d291d14e3714241e356a725b460ce8c10640634475d157268d32ec52f23", @generic="603d3ee95f624fae66110a7e2cd5c45985da9000dd91227e4156bb28984f2c6e67cf7017c4ee379b7eebb179ed9cc422de5d0cfbb92fb454ad7a819a13e3b5321a9837c8878731122654afd747659e0dc794843ba87685c805dfde0ddd2feeb538c98818d5fb6b664dc3eb59500e0ae9a5af19889b97edf8ff3b0f0cfac08cffdea64187783b789e936be27269ae69f2738f64845a53f3293e7747deac350ff811829aa971adcceb", @typed={0x8, 0x12b, 0x0, 0x0, @fd=r2}]}, 0x1410}], 0x6}, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000900)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="71c5419233bec08b5af8f0acd55eadf135626bd3a1c06e13564dc0d309b9851f32a6408f0f18197d2d0ae78b59e0076aa13a0ccc3bc759267bb7c1e648bf4502436d3e020b60ef37991fe8fe94fcb6b480dbb2606bc464b0729405f2466245ce6151a85234d5bf67a976abcd3c455f0c98b1583b4b3e2c246f574d38e0ac", @ANYRES64=r1], 0x6c}}, 0x40000)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000800)={&(0x7f0000000900)=ANY=[], 0x0, 0x26, 0x0, 0x0, 0x2000000}, 0x28)
syz_open_dev$sndctrl(&(0x7f0000000300), 0x1, 0x0)
umount2(&(0x7f0000000340)='./file0\x00', 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
r7 = syz_io_uring_setup(0x1aee, &(0x7f0000000140), &(0x7f0000000340), &(0x7f0000000380))
io_uring_enter(r7, 0x63e8, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
prctl$PR_SET_IO_FLUSHER(0x43, 0x0)

3.119708227s ago: executing program 0 (id=2134):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$ubi_ctrl(0xffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f00000008c0), 0x8, 0x0)
r2 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x6ba]}, 0x8)
getresgid(&(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280))
statx(r1, &(0x7f0000000300)='./file0\x00', 0x0, 0x100, &(0x7f0000000440))
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@version_u}, {@version_u}, {@loose}]}})
r3 = open(&(0x7f00000002c0)='./file0\x00', 0x1491ff, 0x22)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000140)=<r4=>0x0)
quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000900, r4, &(0x7f0000000180))
fcntl$setlease(r3, 0x400, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYRESDEC=r3], 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0xc044)

3.034348519s ago: executing program 5 (id=2135):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
recvmmsg(r2, &(0x7f00000004c0), 0x0, 0x40012010, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r4 = fcntl$dupfd(r3, 0x406, r3)
write$sndseq(r4, 0x0, 0x0)
ioctl$SG_GET_REQUEST_TABLE(r4, 0x2286, &(0x7f00000018c0))
syz_usb_connect$hid(0x2, 0x36, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f00000001c0), 0x22000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f00000003c0)={'ip6tnl0\x00', &(0x7f0000000340)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @remote, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x8, 0x0, 0xd66}})
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
r7 = socket$inet6(0xa, 0x5, 0xfffffffe)
setsockopt$inet_int(r4, 0x0, 0x21, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0x4e23, 0xb430, @mcast2, 0x1}, 0x1c)

2.833874321s ago: executing program 4 (id=2137):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=@deltaction={0x1d8, 0x31, 0x4, 0x70bd2b, 0x25dfdbfb, {}, [@TCA_ACT_TAB={0x34, 0x1, [{0x10, 0xa, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}, {0x10, 0x2, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0x10, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}, @TCA_ACT_TAB={0x3c, 0x1, [{0x10, 0x4, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0xc, 0x20, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0x10, 0x13, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}, {0xc, 0x1a, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}, @TCA_ACT_TAB={0x30, 0x1, [{0x10, 0x13, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x10, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0xc, 0x16, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}, @TCA_ACT_TAB={0x64, 0x1, [{0xc, 0xb, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x13, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xb0}}, {0x14, 0xd, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0xc, 0x14, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0x10, 0x1a, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}, {0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1}}]}, @TCA_ACT_TAB={0x2c, 0x1, [{0xc, 0x19, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0x10, 0x4, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x11, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}, @TCA_ACT_TAB={0x4c, 0x1, [{0x14, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0xc, 0xf, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1c}}, {0x10, 0x15, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0x1c, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1}}]}, @TCA_ACT_TAB={0x34, 0x1, [{0x10, 0x1f, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x3, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x4, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}, @TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x3, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}]}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x8810}, 0x810)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = dup(r0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)

2.833196888s ago: executing program 4 (id=2138):
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4000000)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x26, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8, 0xff, 0x4, 0x81, 0xffffffff, 0x0, 0x17, 0x4, 0x0, [0x0, 0x100000]}})
pipe2$watch_queue(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth0\x00', <r2=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f00000004c0)={r2, 0x3, 0x6, @broadcast}, 0x10)
preadv2(r1, &(0x7f0000000440)=[{&(0x7f0000000200)}, {&(0x7f0000000240)=""/66, 0x42}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000000300)=""/231, 0xe7}, {&(0x7f0000000400)=""/11, 0xb}, {&(0x7f0000001500)=""/143, 0x8f}], 0x6, 0x80, 0x2, 0x10)
sendmsg$can_raw(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x1d, r2}, 0x10, &(0x7f0000000180)={&(0x7f00000000c0)=@can={{0x4, 0x0, 0x1, 0x1}, 0x5, 0x3, 0x0, 0x0, "37dbe9f01782b8b5"}, 0x10}, 0x1, 0x0, 0x0, 0x10}, 0x4)
r3 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac1414000800080004"], 0x2c}}, 0x0)
sendto$inet6(r3, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

2.774432875s ago: executing program 4 (id=2139):
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000340), &(0x7f0000000380)=0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1f5d02, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xf}, {0xffff, 0xffff}, {0xfff0, 0xa}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20048845}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=@deltfilter={0x24, 0x2d, 0x5, 0x70bd2a, 0x25dfdbf9, {0x0, 0x0, 0x0, r2, {0xfff3, 0x9}, {0x2, 0xf}, {0x1, 0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x78, 0x30, 0x1, 0x0, 0x0, {}, [{0x64, 0x1, [@m_ct={0x34, 0x2, 0x0, 0x0, {{0x7}, {0xc, 0x2, 0x0, 0x1, [@TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e22}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, 0x0, 0x0, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x910ec27568a00e35, 0x40000002, 0x0)
r6 = socket(0x10, 0x80002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0x64}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x40d, 0x70bd23, 0x25ffdbfc, {0x0, 0x0, 0x0, 0x0, 0x10}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x6}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg$alg(r6, &(0x7f00000000c0), 0x492492492492627, 0x0)

2.239693896s ago: executing program 0 (id=2140):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310005000054000000030a01020000000000000000010000000900030073797a32000000002800048008000240000000000800014000000005060003007665746831496d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d6163767461700000000800014000000005"], 0xe8}}, 0x0)

2.238547379s ago: executing program 0 (id=2141):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x4000000)
ioctl$FIONREAD(0xffffffffffffffff, 0x541b, &(0x7f0000000500))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
removexattr(&(0x7f0000000200)='./cgroup\x00', &(0x7f0000000240)=@known='user.incfs.metadata\x00')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x51e1, 0x3ff)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
ftruncate(r1, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000006180)=""/152, 0x98}], 0x1, 0x0, 0x0, 0x0)
r4 = socket$kcm(0x29, 0x5, 0x0)
splice(r4, 0x0, 0xffffffffffffffff, 0x0, 0xf3e, 0x0)
timer_create(0x0, 0x0, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f00000000c0), &(0x7f0000000280), 0x2, 0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800000004000000000000000800038510f0000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x1e}, 0x94)
r5 = syz_open_dev$hiddev(0x0, 0x7, 0x20000)
ioctl$HIDIOCGCOLLECTIONINDEX(r5, 0x40184810, &(0x7f0000000140)={0x2, 0x100, 0x1, 0x1, 0x3})

2.218342029s ago: executing program 2 (id=2142):
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0xfffffbff) (async)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = userfaultfd(0x801) (async)
r2 = syz_open_procfs(0xffffffffffffffff, 0x0)
read$FUSE(r2, &(0x7f0000002140)={0x2020}, 0x2100) (async)
r3 = creat(&(0x7f0000000100)='./file0\x00', 0x4)
ioctl$UFFDIO_API(r3, 0xc018aa3f, 0x0) (async)
socket(0xf, 0x3, 0x7) (async)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00001b5000/0x2000)=nil, 0x2000}, 0x3}) (async)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0x40014) (async)
poll(&(0x7f0000000000)=[{r1}], 0x1, 0xe2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x18) (async)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r7=>0x0})
r8 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x24, r8, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x24}}, 0x0) (async)
bind$can_j1939(r6, &(0x7f00000000c0)={0x1d, r7}, 0x18) (async)
connect$can_j1939(r6, &(0x7f0000000140)={0x1d, r7, 0x0, {0x1, 0xff, 0xa8fe8ad4eea2351f}, 0x2}, 0x18)
sendmmsg(r6, &(0x7f0000003e40), 0x3fffffffffffe3d, 0xf5)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000040)={'vxcan1\x00', @remote})
dup3(r4, r1, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x20040768, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto(r0, &(0x7f0000000780)='p', 0x1, 0x24000011, 0x0, 0x0) (async)
r10 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_SECURITY_LEVEL(r10, 0x0, 0x2, &(0x7f0000000dc0)=0x9, 0x4) (async)
close(r10) (async)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000280), 0x627c569fde519dfc, 0x0)

2.154129517s ago: executing program 2 (id=2143):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r2=>0x0})
r3 = semget(0x0, 0x0, 0x2)
semctl$GETALL(r3, 0x0, 0xd, &(0x7f0000000000)=""/37)
sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)={0x1c, r1, 0x1, 0xf0bd25, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x4005804)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r0) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000400)) (async)
semget(0x0, 0x0, 0x2) (async)
semctl$GETALL(r3, 0x0, 0xd, &(0x7f0000000000)=""/37) (async)
sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)={0x1c, r1, 0x1, 0xf0bd25, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x4005804) (async)

2.15363081s ago: executing program 2 (id=2144):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50, 0xffffffffffffffff, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000001c0), 0x13f, 0x1}}, 0x20)
r3 = add_key$user(&(0x7f0000000040), &(0x7f0000000180)={'syz', 0x1}, &(0x7f0000000080)='\x00', 0x1, 0xfffffffffffffffb)
pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r4, 0x5760, 0x14)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, r4, 0x100000000000f7)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040))
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r5, 0x400455c8, 0x4)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8004)
rseq(&(0x7f0000000240)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
io_setup(0x4, &(0x7f00000000c0)=<r6=>0x0)
io_destroy(r6)
ioctl$TIOCVHANGUP(r5, 0x5437, 0x0)
syslog(0x2, &(0x7f00000004c0)=""/164, 0xa4)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2})
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, &(0x7f0000000080)={{&(0x7f0000a4d000/0x1000)=nil, 0x20a4d000}})
keyctl$revoke(0x3, r3)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x1}, 0x2)

1.391187968s ago: executing program 0 (id=2145):
socket$netlink(0x10, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
openat(0xffffffffffffffff, &(0x7f00000010c0)='./file0\x00', 0x20c01, 0x0)
r0 = socket(0x2, 0x80805, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x4ee59ce4, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
r3 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r4 = socket$kcm(0xa, 0x3, 0x73)
sendmsg$inet(r4, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0xfffffffffffffe90, &(0x7f0000001080)=[{&(0x7f0000002440)="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", 0xbc6}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x2, &(0x7f0000001940)=[@ip_tos_int={{0x10, 0x29, 0x32}}, @ip_pktinfo={{0x18, 0xe, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @empty, @loopback}}}], 0x40}, 0x0)
getsockopt$bt_hci(r0, 0x84, 0x71, &(0x7f0000003440)=""/4087, &(0x7f0000001080)=0xff7)
r5 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r5, &(0x7f0000003000)=@abs={0x1}, 0x4f)
r6 = socket$netlink(0x10, 0x3, 0x4)
write(r6, &(0x7f00000000c0)="2900000014000d200d69a51d54efbdeb0101b6ff02159f7ec6cff25fb7f7930884191c47bb3f6b1933", 0x29)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
r8 = syz_io_uring_setup(0x40, &(0x7f00000006c0)={0x0, 0x5dda, 0x10100, 0x1, 0x268}, &(0x7f0000000140), &(0x7f00000000c0)=<r9=>0x0)
syz_io_uring_setup(0x80c, &(0x7f0000000300)={0x0, 0x6d83, 0x0, 0x40000000, 0x54}, &(0x7f0000000100)=<r10=>0x0, &(0x7f0000000040))
syz_io_uring_submit(r10, r9, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r11, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
io_uring_enter(r8, 0x381b, 0x0, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040), 0x2, 0x6}}, 0x20)

1.389773611s ago: executing program 4 (id=2146):
pipe(&(0x7f00000045c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
vmsplice(r0, &(0x7f00000019c0)=[{&(0x7f0000001a00)="ce", 0x1}], 0x1, 0x1)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r2)
sendmsg$ETHTOOL_MSG_WOL_SET(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002280)={&(0x7f0000000500)=ANY=[@ANYBLOB="d4000000", @ANYRES16=r3, @ANYBLOB="00002dbd7000fedbdf250a00000004000180bb000300a526b6b7b10a825e04cfef2b0a2619febca518691687bb9760e9d443fd046ec1250b13bcdc01b0e857dff98b6d76f73f53e6f080812e2a3f4d1d911004df19b9fa71628f5c2ddda0059fe0228b77b58f43109d722826dd6bd686eaf314e91dadf7c6774565c14c20ff91f9abcebd843e9f359697b252a620bcf32c991bc39f03e1e6bc1af8bc32e0c3ff3e261f4e32967d683a8f147b240262b77798de1e884c2539a699aa44a4ad856e4d439bfdbe7bd97e95e9a6c03a00"], 0xd4}, 0x1, 0x0, 0x0, 0x6090}, 0x80)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r4, &(0x7f0000000340)="07000000010001", 0x7)
bind$alg(r1, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
accept4(r1, 0x0, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8=r5], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x9)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$P9_RREADLINK(r9, &(0x7f0000000180)={0x10, 0x17, 0xfffd, {0x7, './file0'}}, 0xe80)

510.203076ms ago: executing program 4 (id=2147):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=@deltaction={0x1d8, 0x31, 0x4, 0x70bd2b, 0x25dfdbfb, {}, [@TCA_ACT_TAB={0x34, 0x1, [{0x10, 0xa, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}, {0x10, 0x2, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0x10, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}, @TCA_ACT_TAB={0x3c, 0x1, [{0x10, 0x4, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0xc, 0x20, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0x10, 0x13, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}, {0xc, 0x1a, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}, @TCA_ACT_TAB={0x30, 0x1, [{0x10, 0x13, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x10, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0xc, 0x16, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}, @TCA_ACT_TAB={0x64, 0x1, [{0xc, 0xb, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x13, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xb0}}, {0x14, 0xd, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0xc, 0x14, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0x10, 0x1a, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}, {0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1}}]}, @TCA_ACT_TAB={0x2c, 0x1, [{0xc, 0x19, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0x10, 0x4, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x11, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}, @TCA_ACT_TAB={0x4c, 0x1, [{0x14, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0xc, 0xf, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x7}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1c}}, {0x10, 0x15, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0x1c, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1}}]}, @TCA_ACT_TAB={0x34, 0x1, [{0x10, 0x1f, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x3, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x4, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}, @TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x3, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}]}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x8810}, 0x810)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = dup(r0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)

408.903344ms ago: executing program 4 (id=2148):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x9, 0x1, 0xb8}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80)
ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000000000005010040"])
r2 = dup(r0)
r3 = socket$l2tp6(0xa, 0x2, 0x73)
getsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f0000000280)={@remote, @initdev, <r4=>0x0}, &(0x7f0000000380)=0xc)
ioctl$sock_inet6_SIOCSIFDSTADDR(r3, 0x8918, &(0x7f00000003c0)={@loopback, 0x23, r4})
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000400)='block_split\x00', r2, 0x0, 0x25cd7166}, 0x18)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000840)={0xe4, r7, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xcd, 0xa9, @random="ce2ae9e9a35372b92c8d4793ee062f05a1c4cd08874872a1bd6d8a2f99c1222a4244442f6e1482b3c96863b775c3ca7e2549b77510a55ca837417f306e1e6f9560e035b55118217bde2255a293e45d26e9427b92151af56870dabd74dc131d7bb590a995f95a08f277f8ff29e138d95cc7ec8bf3c59f9479d1725d7c3ded10aa3ad7e12d494e4537bb1f5857712479b7117b18e89cd54c25768aff055521605f8cb84005820ae6a5d5f274805b2b0fb39810c213c9a14f51ba875d174804919a439a377b414e45cece"}]}, 0xe4}, 0x1, 0x0, 0x0, 0x41}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x2, &(0x7f00000000c0)=[{0x2b, 0xff, 0x2, 0x17d}, {0x8, 0xf9, 0x80}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'geneve0\x00'})
recvmmsg(r5, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}, 0xa1}, {{0x0, 0x0, 0x0}, 0x1ff}], 0x2, 0x0, 0x0)

394.217572ms ago: executing program 0 (id=2149):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="180200000000000000000000000000008500000028000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000380)='GPL\x00'}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000180)=@keyring={'key_or_keyring:', r1})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYRES32=r3], 0x14}], 0x1}, 0x0)
fcntl$setlease(r4, 0x400, 0x1)
r6 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000340), 0x0)
truncate(&(0x7f0000000900)='./file1\x00', 0x24b9)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000000)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r8, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d440fe0000000000002900000002000000", 0xfe60)
r9 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r10=>0x0)
io_submit(r10, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r9, 0x0, 0x0, 0x0, 0x0, 0x0, r9}])
r11 = signalfd4(0xffffffffffffffff, &(0x7f0000000040), 0x8, 0x0)
r12 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r11, &(0x7f000001bff4)={0x2})

0s ago: executing program 5 (id=2150):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310006000054000000030a01020000000000000000010000000900030073797a32000000002800048008000240000000000800014000000005060003007665746831496d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d6163767461700000000800014000000005"], 0xe8}}, 0x0)

kernel console output (not intermixed with test programs):

000000000 R14: 0000000000000000 R15: 0000000000000000
[  352.483172][T12578]  </TASK>
[  352.485582][ T6055] usb 10-1: new full-speed USB device number 19 using dummy_hcd
[  352.496184][ T5977] Bluetooth: hci4: command 0x1003 tx timeout
[  352.506009][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  352.527560][ T6055] usb 10-1: device descriptor read/8, error -71
[  352.700433][T12588] binder: 12587:12588 ioctl c0306201 80000080 returned -14
[  352.886119][ T6055] usb 10-1: new full-speed USB device number 20 using dummy_hcd
[  352.906031][ T6055] usb 10-1: device descriptor read/8, error -71
[  352.908723][   T40] kauditd_printk_skb: 83 callbacks suppressed
[  352.908733][   T40] audit: type=1326 audit(1755720386.509:2858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12606 comm="syz.4.1760" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  352.920560][   T40] audit: type=1326 audit(1755720386.509:2859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12606 comm="syz.4.1760" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  352.929951][   T40] audit: type=1326 audit(1755720386.519:2860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12606 comm="syz.4.1760" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf703e579 code=0x7ffc0000
[  352.931522][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  352.937733][   T40] audit: type=1326 audit(1755720386.519:2861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12606 comm="syz.4.1760" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  352.946570][   T40] audit: type=1326 audit(1755720386.519:2862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12606 comm="syz.4.1760" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf703e579 code=0x7ffc0000
[  352.953408][   T40] audit: type=1326 audit(1755720386.519:2863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12606 comm="syz.4.1760" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  352.960395][   T40] audit: type=1326 audit(1755720386.519:2864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12606 comm="syz.4.1760" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf703e579 code=0x7ffc0000
[  352.967210][   T40] audit: type=1326 audit(1755720386.519:2865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12606 comm="syz.4.1760" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  352.974023][   T40] audit: type=1326 audit(1755720386.519:2866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12606 comm="syz.4.1760" exe="/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf703e579 code=0x7ffc0000
[  352.979813][T12614] __nla_validate_parse: 4 callbacks suppressed
[  352.979827][T12614] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1761'.
[  352.980795][   T40] audit: type=1326 audit(1755720386.519:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12606 comm="syz.4.1760" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  352.983126][T12614] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1761'.
[  353.025629][ T6055] usb usb10-port1: unable to enumerate USB device
[  353.558921][T12617] FAULT_INJECTION: forcing a failure.
[  353.558921][T12617] name failslab, interval 1, probability 0, space 0, times 0
[  353.563014][T12617] CPU: 3 UID: 0 PID: 12617 Comm: syz.0.1762 Not tainted syzkaller #0 PREEMPT(full) 
[  353.563029][T12617] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  353.563035][T12617] Call Trace:
[  353.563040][T12617]  <TASK>
[  353.563044][T12617]  dump_stack_lvl+0x16c/0x1f0
[  353.563060][T12617]  should_fail_ex+0x512/0x640
[  353.563076][T12617]  should_failslab+0xc2/0x120
[  353.563090][T12617]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  353.563103][T12617]  ? __alloc_skb+0x2b2/0x380
[  353.563117][T12617]  __alloc_skb+0x2b2/0x380
[  353.563128][T12617]  ? __pfx___alloc_skb+0x10/0x10
[  353.563140][T12617]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  353.563155][T12617]  netlink_alloc_large_skb+0x69/0x130
[  353.563170][T12617]  netlink_sendmsg+0x6a1/0xdd0
[  353.563184][T12617]  ? __pfx_netlink_sendmsg+0x10/0x10
[  353.563198][T12617]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  353.563210][T12617]  ____sys_sendmsg+0xa95/0xc70
[  353.563226][T12617]  ? __pfx_____sys_sendmsg+0x10/0x10
[  353.563241][T12617]  ? get_compat_msghdr+0x11a/0x170
[  353.563255][T12617]  ? kstrtouint_from_user+0x13c/0x1d0
[  353.563269][T12617]  ___sys_sendmsg+0x134/0x1d0
[  353.563281][T12617]  ? get_pid_task+0xfc/0x250
[  353.563295][T12617]  ? __pfx____sys_sendmsg+0x10/0x10
[  353.563313][T12617]  ? rcu_is_watching+0x12/0xc0
[  353.563334][T12617]  __sys_sendmsg+0x16d/0x220
[  353.563353][T12617]  ? __pfx___sys_sendmsg+0x10/0x10
[  353.563368][T12617]  ? rcu_is_watching+0x12/0xc0
[  353.563378][T12617]  __do_fast_syscall_32+0x7c/0x3a0
[  353.563392][T12617]  do_fast_syscall_32+0x32/0x80
[  353.563406][T12617]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  353.563419][T12617] RIP: 0023:0xf70ee579
[  353.563427][T12617] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  353.563437][T12617] RSP: 002b:00000000f54de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  353.563447][T12617] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000200
[  353.563453][T12617] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  353.563459][T12617] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  353.563465][T12617] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  353.563470][T12617] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  353.563479][T12617]  </TASK>
[  354.105883][T12626] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1765'.
[  354.975625][ T5977] Bluetooth: hci4: command 0x1003 tx timeout
[  354.977635][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  355.030962][T12652] FAULT_INJECTION: forcing a failure.
[  355.030962][T12652] name failslab, interval 1, probability 0, space 0, times 0
[  355.035021][T12652] CPU: 2 UID: 0 PID: 12652 Comm: syz.4.1775 Not tainted syzkaller #0 PREEMPT(full) 
[  355.035035][T12652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  355.035042][T12652] Call Trace:
[  355.035046][T12652]  <TASK>
[  355.035050][T12652]  dump_stack_lvl+0x16c/0x1f0
[  355.035067][T12652]  should_fail_ex+0x512/0x640
[  355.035083][T12652]  should_failslab+0xc2/0x120
[  355.035097][T12652]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  355.035109][T12652]  ? __alloc_skb+0x2b2/0x380
[  355.035123][T12652]  __alloc_skb+0x2b2/0x380
[  355.035134][T12652]  ? __pfx___alloc_skb+0x10/0x10
[  355.035147][T12652]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  355.035162][T12652]  netlink_alloc_large_skb+0x69/0x130
[  355.035176][T12652]  netlink_sendmsg+0x6a1/0xdd0
[  355.035191][T12652]  ? __pfx_netlink_sendmsg+0x10/0x10
[  355.035205][T12652]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  355.035217][T12652]  ____sys_sendmsg+0xa95/0xc70
[  355.035233][T12652]  ? __pfx_____sys_sendmsg+0x10/0x10
[  355.035248][T12652]  ? get_compat_msghdr+0x11a/0x170
[  355.035261][T12652]  ? kstrtouint_from_user+0x13c/0x1d0
[  355.035275][T12652]  ___sys_sendmsg+0x134/0x1d0
[  355.035287][T12652]  ? get_pid_task+0xfc/0x250
[  355.035302][T12652]  ? __pfx____sys_sendmsg+0x10/0x10
[  355.035317][T12652]  ? rcu_is_watching+0x12/0xc0
[  355.035332][T12652]  __sys_sendmsg+0x16d/0x220
[  355.035344][T12652]  ? __pfx___sys_sendmsg+0x10/0x10
[  355.035360][T12652]  ? rcu_is_watching+0x12/0xc0
[  355.035370][T12652]  __do_fast_syscall_32+0x7c/0x3a0
[  355.035385][T12652]  do_fast_syscall_32+0x32/0x80
[  355.035398][T12652]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  355.035411][T12652] RIP: 0023:0xf703e579
[  355.035419][T12652] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  355.035429][T12652] RSP: 002b:00000000f542e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  355.035439][T12652] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  355.035445][T12652] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  355.035451][T12652] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  355.035457][T12652] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  355.035463][T12652] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  355.035484][T12652]  </TASK>
[  355.162176][T12656] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1773'.
[  355.165042][T12656] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1773'.
[  355.511825][T12668] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1778'.
[  355.915639][ T6055] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[  356.065664][ T6055] usb 9-1: Using ep0 maxpacket: 8
[  356.068991][ T6055] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  356.072334][ T6055] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  356.082220][ T6055] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  356.085923][ T6055] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  356.089032][ T6055] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  356.093111][ T6055] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  356.096200][ T6055] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.290598][T12695] kvm: kvm [12694]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x1
[  356.308582][ T6055] usb 9-1: usb_control_msg returned -32
[  356.310419][ T6055] usbtmc 9-1:16.0: can't read capabilities
[  356.335752][ T1140] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  356.339324][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  356.359571][T12696] syz.5.1788: attempt to access beyond end of device
[  356.359571][T12696] loop5: rw=4096, sector=0, nr_sectors = 1 limit=0
[  356.516056][T12707] FAULT_INJECTION: forcing a failure.
[  356.516056][T12707] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  356.520164][T12707] CPU: 1 UID: 0 PID: 12707 Comm: syz.2.1791 Not tainted syzkaller #0 PREEMPT(full) 
[  356.520179][T12707] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  356.520185][T12707] Call Trace:
[  356.520190][T12707]  <TASK>
[  356.520194][T12707]  dump_stack_lvl+0x16c/0x1f0
[  356.520210][T12707]  should_fail_ex+0x512/0x640
[  356.520226][T12707]  _copy_from_iter+0x29f/0x16f0
[  356.520243][T12707]  ? __alloc_skb+0x200/0x380
[  356.520256][T12707]  ? __pfx__copy_from_iter+0x10/0x10
[  356.520271][T12707]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  356.520287][T12707]  netlink_sendmsg+0x829/0xdd0
[  356.520301][T12707]  ? __pfx_netlink_sendmsg+0x10/0x10
[  356.520315][T12707]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  356.520327][T12707]  ____sys_sendmsg+0xa95/0xc70
[  356.520343][T12707]  ? __pfx_____sys_sendmsg+0x10/0x10
[  356.520358][T12707]  ? get_compat_msghdr+0x11a/0x170
[  356.520372][T12707]  ? kstrtouint_from_user+0x13c/0x1d0
[  356.520385][T12707]  ___sys_sendmsg+0x134/0x1d0
[  356.520397][T12707]  ? get_pid_task+0xfc/0x250
[  356.520411][T12707]  ? __pfx____sys_sendmsg+0x10/0x10
[  356.520426][T12707]  ? rcu_is_watching+0x12/0xc0
[  356.520442][T12707]  __sys_sendmsg+0x16d/0x220
[  356.520454][T12707]  ? __pfx___sys_sendmsg+0x10/0x10
[  356.520470][T12707]  ? rcu_is_watching+0x12/0xc0
[  356.520480][T12707]  __do_fast_syscall_32+0x7c/0x3a0
[  356.520494][T12707]  do_fast_syscall_32+0x32/0x80
[  356.520507][T12707]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  356.520521][T12707] RIP: 0023:0xf7ff2579
[  356.520529][T12707] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  356.520539][T12707] RSP: 002b:00000000f551655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  356.520549][T12707] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000200
[  356.520556][T12707] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  356.520562][T12707] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  356.520567][T12707] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  356.520573][T12707] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  356.520582][T12707]  </TASK>
[  358.140091][T12734] syzkaller0: entered promiscuous mode
[  358.141958][T12734] syzkaller0: entered allmulticast mode
[  358.210539][T12735] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1798'.
[  358.214016][T12735] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1798'.
[  358.398732][T12742] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1803'.
[  358.823463][   T53] usb 9-1: USB disconnect, device number 28
[  358.901697][T12750] warning: `syz.2.1807' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  359.111649][T12749] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  359.444736][T12758] netlink: 19 bytes leftover after parsing attributes in process `syz.5.1809'.
[  359.449362][   T13] Bluetooth: hci4: Frame reassembly failed (-84)
[  359.452795][T12758] Bluetooth: hci4: Frame reassembly failed (-84)
[  359.660973][T12763] FAULT_INJECTION: forcing a failure.
[  359.660973][T12763] name failslab, interval 1, probability 0, space 0, times 0
[  359.664465][T12763] CPU: 1 UID: 0 PID: 12763 Comm: syz.2.1810 Not tainted syzkaller #0 PREEMPT(full) 
[  359.664480][T12763] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.664486][T12763] Call Trace:
[  359.664490][T12763]  <TASK>
[  359.664494][T12763]  dump_stack_lvl+0x16c/0x1f0
[  359.664511][T12763]  should_fail_ex+0x512/0x640
[  359.664527][T12763]  should_failslab+0xc2/0x120
[  359.664541][T12763]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  359.664554][T12763]  ? skb_clone+0x190/0x3f0
[  359.664568][T12763]  ? netlink_deliver_tap+0x103/0xd30
[  359.664581][T12763]  skb_clone+0x190/0x3f0
[  359.664594][T12763]  netlink_deliver_tap+0xabd/0xd30
[  359.664607][T12763]  netlink_unicast+0x64c/0x870
[  359.664622][T12763]  ? __pfx_netlink_unicast+0x10/0x10
[  359.664635][T12763]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  359.664650][T12763]  netlink_sendmsg+0x8d1/0xdd0
[  359.664664][T12763]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.664678][T12763]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  359.664690][T12763]  ____sys_sendmsg+0xa95/0xc70
[  359.664706][T12763]  ? __pfx_____sys_sendmsg+0x10/0x10
[  359.664721][T12763]  ? get_compat_msghdr+0x11a/0x170
[  359.664735][T12763]  ? kstrtouint_from_user+0x13c/0x1d0
[  359.664748][T12763]  ___sys_sendmsg+0x134/0x1d0
[  359.664760][T12763]  ? get_pid_task+0xfc/0x250
[  359.664775][T12763]  ? __pfx____sys_sendmsg+0x10/0x10
[  359.664790][T12763]  ? rcu_is_watching+0x12/0xc0
[  359.664805][T12763]  __sys_sendmsg+0x16d/0x220
[  359.664817][T12763]  ? __pfx___sys_sendmsg+0x10/0x10
[  359.664832][T12763]  ? rcu_is_watching+0x12/0xc0
[  359.664843][T12763]  __do_fast_syscall_32+0x7c/0x3a0
[  359.664857][T12763]  do_fast_syscall_32+0x32/0x80
[  359.664870][T12763]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  359.664884][T12763] RIP: 0023:0xf7ff2579
[  359.664892][T12763] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  359.664902][T12763] RSP: 002b:00000000f551655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  359.664912][T12763] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  359.664930][T12763] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  359.664937][T12763] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  359.664943][T12763] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  359.664948][T12763] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  359.664957][T12763]  </TASK>
[  359.763368][T12766] FAULT_INJECTION: forcing a failure.
[  359.763368][T12766] name failslab, interval 1, probability 0, space 0, times 0
[  359.767441][T12766] CPU: 1 UID: 0 PID: 12766 Comm: syz.2.1811 Not tainted syzkaller #0 PREEMPT(full) 
[  359.767456][T12766] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  359.767462][T12766] Call Trace:
[  359.767466][T12766]  <TASK>
[  359.767470][T12766]  dump_stack_lvl+0x16c/0x1f0
[  359.767486][T12766]  should_fail_ex+0x512/0x640
[  359.767502][T12766]  should_failslab+0xc2/0x120
[  359.767516][T12766]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  359.767528][T12766]  ? __alloc_skb+0x2b2/0x380
[  359.767542][T12766]  __alloc_skb+0x2b2/0x380
[  359.767553][T12766]  ? __pfx___alloc_skb+0x10/0x10
[  359.767564][T12766]  ? __pfx___mutex_trylock_common+0x10/0x10
[  359.767580][T12766]  ? rcu_is_watching+0x12/0xc0
[  359.767592][T12766]  netlink_dump+0x19b/0xd30
[  359.767606][T12766]  ? __pfx_netlink_dump+0x10/0x10
[  359.767617][T12766]  ? ip_set_dump_start+0x2e9/0x460
[  359.767628][T12766]  ? __pfx_ip_set_dump_start+0x10/0x10
[  359.767637][T12766]  ? __pfx___mutex_lock+0x10/0x10
[  359.767654][T12766]  __netlink_dump_start+0x6d6/0x990
[  359.767668][T12766]  ip_set_dump+0x17f/0x210
[  359.767684][T12766]  ? __pfx_ip_set_dump+0x10/0x10
[  359.767698][T12766]  ? __pfx_ip_set_dump_start+0x10/0x10
[  359.767708][T12766]  ? __pfx_ip_set_dump_do+0x10/0x10
[  359.767718][T12766]  ? __pfx_ip_set_dump_done+0x10/0x10
[  359.767727][T12766]  ? nfnetlink_rcv_msg+0x8a5/0x1200
[  359.767737][T12766]  ? rcu_is_watching+0x12/0xc0
[  359.767747][T12766]  nfnetlink_rcv_msg+0x9fc/0x1200
[  359.767763][T12766]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  359.767774][T12766]  ? consume_skb+0xcc/0x100
[  359.767793][T12766]  ? __pfx___dev_queue_xmit+0x10/0x10
[  359.767805][T12766]  netlink_rcv_skb+0x155/0x420
[  359.767819][T12766]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  359.767829][T12766]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  359.767845][T12766]  ? ns_capable+0xd7/0x110
[  359.767856][T12766]  nfnetlink_rcv+0x1b3/0x430
[  359.767865][T12766]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  359.767874][T12766]  ? netlink_deliver_tap+0x1ae/0xd30
[  359.767888][T12766]  netlink_unicast+0x5aa/0x870
[  359.767902][T12766]  ? __pfx_netlink_unicast+0x10/0x10
[  359.767915][T12766]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  359.767930][T12766]  netlink_sendmsg+0x8d1/0xdd0
[  359.767943][T12766]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.767957][T12766]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  359.767970][T12766]  ____sys_sendmsg+0xa95/0xc70
[  359.767985][T12766]  ? __pfx_____sys_sendmsg+0x10/0x10
[  359.768001][T12766]  ? get_compat_msghdr+0x11a/0x170
[  359.768014][T12766]  ? kstrtouint_from_user+0x13c/0x1d0
[  359.768027][T12766]  ___sys_sendmsg+0x134/0x1d0
[  359.768039][T12766]  ? get_pid_task+0xfc/0x250
[  359.768053][T12766]  ? __pfx____sys_sendmsg+0x10/0x10
[  359.768068][T12766]  ? rcu_is_watching+0x12/0xc0
[  359.768082][T12766]  __sys_sendmsg+0x16d/0x220
[  359.768094][T12766]  ? __pfx___sys_sendmsg+0x10/0x10
[  359.768109][T12766]  ? rcu_is_watching+0x12/0xc0
[  359.768130][T12766]  __do_fast_syscall_32+0x7c/0x3a0
[  359.768148][T12766]  do_fast_syscall_32+0x32/0x80
[  359.768161][T12766]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  359.768174][T12766] RIP: 0023:0xf7ff2579
[  359.768182][T12766] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  359.768193][T12766] RSP: 002b:00000000f551655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  359.768203][T12766] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000200
[  359.768209][T12766] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  359.768214][T12766] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  359.768220][T12766] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  359.768226][T12766] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  359.768234][T12766]  </TASK>
[  359.771420][T12767] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  359.836365][T12770] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1812'.
[  359.847096][T12772] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  359.927918][T12772] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  359.931888][T12772] vhci_hcd vhci_hcd.0: Device attached
[  359.933108][T12775] binder: 12771:12775 ioctl c0306201 80000080 returned -14
[  360.012221][T12775] netlink: 'syz.2.1814': attribute type 2 has an invalid length.
[  360.150256][T12789] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1816'.
[  360.177185][   T60] usb 41-1: new low-speed USB device number 2 using vhci_hcd
[  360.412296][T12794] overlayfs: missing 'lowerdir'
[  360.414678][T12794] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1818'.
[  360.534347][T12773] vhci_hcd: connection reset by peer
[  360.536536][   T91] vhci_hcd: stop threads
[  360.537988][   T91] vhci_hcd: release socket
[  360.539502][   T91] vhci_hcd: disconnect device
[  361.084081][T12810] FAULT_INJECTION: forcing a failure.
[  361.084081][T12810] name failslab, interval 1, probability 0, space 0, times 0
[  361.088172][T12810] CPU: 2 UID: 0 PID: 12810 Comm: syz.4.1823 Not tainted syzkaller #0 PREEMPT(full) 
[  361.088187][T12810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.088194][T12810] Call Trace:
[  361.088197][T12810]  <TASK>
[  361.088201][T12810]  dump_stack_lvl+0x16c/0x1f0
[  361.088217][T12810]  should_fail_ex+0x512/0x640
[  361.088233][T12810]  should_failslab+0xc2/0x120
[  361.088247][T12810]  __kmalloc_cache_noprof+0x6a/0x3e0
[  361.088258][T12810]  ? nexthop_alloc+0x3c/0x1f0
[  361.088271][T12810]  nexthop_alloc+0x3c/0x1f0
[  361.088281][T12810]  rtm_new_nexthop+0x1fa5/0x84e0
[  361.088295][T12810]  ? stack_trace_save+0x8e/0xc0
[  361.088307][T12810]  ? __pfx_stack_trace_save+0x10/0x10
[  361.088318][T12810]  ? stack_depot_save_flags+0x29/0x9c0
[  361.088334][T12810]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  361.088346][T12810]  ? kasan_save_free_info+0x3b/0x60
[  361.088355][T12810]  ? __kasan_slab_free+0x60/0x70
[  361.088367][T12810]  ? kmem_cache_free+0x2d1/0x4d0
[  361.088377][T12810]  ? kfree_skbmem+0x1a4/0x1f0
[  361.088387][T12810]  ? consume_skb+0xcc/0x100
[  361.088400][T12810]  ? nlmon_xmit+0xa5/0xe0
[  361.088414][T12810]  ? dev_hard_start_xmit+0x97/0x740
[  361.088424][T12810]  ? __dev_queue_xmit+0xa46/0x4490
[  361.088433][T12810]  ? netlink_deliver_tap+0xa87/0xd30
[  361.088446][T12810]  ? netlink_unicast+0x64c/0x870
[  361.088458][T12810]  ? netlink_sendmsg+0x8d1/0xdd0
[  361.088471][T12810]  ? ____sys_sendmsg+0xa95/0xc70
[  361.088485][T12810]  ? ___sys_sendmsg+0x134/0x1d0
[  361.088497][T12810]  ? __sys_sendmsg+0x16d/0x220
[  361.088509][T12810]  ? __do_fast_syscall_32+0x7c/0x3a0
[  361.088522][T12810]  ? do_fast_syscall_32+0x32/0x80
[  361.088535][T12810]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  361.088553][T12810]  ? rcu_is_watching+0x12/0xc0
[  361.088564][T12810]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  361.088583][T12810]  ? kfree_skbmem+0x1a4/0x1f0
[  361.088592][T12810]  ? consume_skb+0xcc/0x100
[  361.088606][T12810]  ? rcu_is_watching+0x12/0xc0
[  361.088616][T12810]  ? aa_get_newest_label+0xd2/0x250
[  361.088628][T12810]  ? apparmor_capable+0x114/0x1d0
[  361.088638][T12810]  ? rcu_is_watching+0x12/0xc0
[  361.088648][T12810]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  361.088661][T12810]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  361.088674][T12810]  ? rcu_is_watching+0x12/0xc0
[  361.088684][T12810]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  361.088698][T12810]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  361.088711][T12810]  ? rtnetlink_rcv_msg+0x95b/0xe90
[  361.088724][T12810]  rtnetlink_rcv_msg+0x95b/0xe90
[  361.088738][T12810]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  361.088753][T12810]  ? ref_tracker_free+0x37c/0x830
[  361.088769][T12810]  netlink_rcv_skb+0x155/0x420
[  361.088782][T12810]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  361.088796][T12810]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  361.088811][T12810]  ? netlink_deliver_tap+0x1ae/0xd30
[  361.088825][T12810]  netlink_unicast+0x5aa/0x870
[  361.088839][T12810]  ? __pfx_netlink_unicast+0x10/0x10
[  361.088852][T12810]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  361.088867][T12810]  netlink_sendmsg+0x8d1/0xdd0
[  361.088881][T12810]  ? __pfx_netlink_sendmsg+0x10/0x10
[  361.088899][T12810]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  361.088911][T12810]  ____sys_sendmsg+0xa95/0xc70
[  361.088926][T12810]  ? __pfx_____sys_sendmsg+0x10/0x10
[  361.088941][T12810]  ? get_compat_msghdr+0x11a/0x170
[  361.088955][T12810]  ? kstrtouint_from_user+0x13c/0x1d0
[  361.088969][T12810]  ___sys_sendmsg+0x134/0x1d0
[  361.088980][T12810]  ? get_pid_task+0xfc/0x250
[  361.088995][T12810]  ? __pfx____sys_sendmsg+0x10/0x10
[  361.089010][T12810]  ? rcu_is_watching+0x12/0xc0
[  361.089024][T12810]  __sys_sendmsg+0x16d/0x220
[  361.089036][T12810]  ? __pfx___sys_sendmsg+0x10/0x10
[  361.089051][T12810]  ? rcu_is_watching+0x12/0xc0
[  361.089062][T12810]  __do_fast_syscall_32+0x7c/0x3a0
[  361.089076][T12810]  do_fast_syscall_32+0x32/0x80
[  361.089089][T12810]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  361.089101][T12810] RIP: 0023:0xf703e579
[  361.089109][T12810] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  361.089119][T12810] RSP: 002b:00000000f542e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  361.089129][T12810] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  361.089136][T12810] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  361.089141][T12810] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  361.089147][T12810] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  361.089153][T12810] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  361.089162][T12810]  </TASK>
[  361.239945][    C2] vkms_vblank_simulate: vblank timer overrun
[  361.247288][T12821] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1828'.
[  361.269676][T12826] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1830'.
[  361.455644][T12581] Bluetooth: hci4: command 0x1003 tx timeout
[  361.457753][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  361.655962][T12850] rdma_rxe: rxe_newlink: failed to add lo
[  361.895222][T12868] FAULT_INJECTION: forcing a failure.
[  361.895222][T12868] name failslab, interval 1, probability 0, space 0, times 0
[  361.899859][T12868] CPU: 0 UID: 0 PID: 12868 Comm: syz.2.1841 Not tainted syzkaller #0 PREEMPT(full) 
[  361.899878][T12868] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.899885][T12868] Call Trace:
[  361.899890][T12868]  <TASK>
[  361.899894][T12868]  dump_stack_lvl+0x16c/0x1f0
[  361.899912][T12868]  should_fail_ex+0x512/0x640
[  361.899928][T12868]  should_failslab+0xc2/0x120
[  361.899942][T12868]  __kmalloc_cache_noprof+0x6a/0x3e0
[  361.899952][T12868]  ? lockdep_init_map_type+0x5c/0x280
[  361.899971][T12868]  ? rtm_new_nexthop+0x1fef/0x84e0
[  361.899987][T12868]  rtm_new_nexthop+0x1fef/0x84e0
[  361.900000][T12868]  ? stack_trace_save+0x8e/0xc0
[  361.900011][T12868]  ? __pfx_stack_trace_save+0x10/0x10
[  361.900022][T12868]  ? stack_depot_save_flags+0x29/0x9c0
[  361.900038][T12868]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  361.900050][T12868]  ? kasan_save_free_info+0x3b/0x60
[  361.900059][T12868]  ? __kasan_slab_free+0x60/0x70
[  361.900071][T12868]  ? kmem_cache_free+0x2d1/0x4d0
[  361.900081][T12868]  ? kfree_skbmem+0x1a4/0x1f0
[  361.900091][T12868]  ? consume_skb+0xcc/0x100
[  361.900104][T12868]  ? nlmon_xmit+0xa5/0xe0
[  361.900118][T12868]  ? dev_hard_start_xmit+0x97/0x740
[  361.900128][T12868]  ? __dev_queue_xmit+0xa46/0x4490
[  361.900137][T12868]  ? netlink_deliver_tap+0xa87/0xd30
[  361.900150][T12868]  ? netlink_unicast+0x64c/0x870
[  361.900163][T12868]  ? netlink_sendmsg+0x8d1/0xdd0
[  361.900175][T12868]  ? ____sys_sendmsg+0xa95/0xc70
[  361.900190][T12868]  ? ___sys_sendmsg+0x134/0x1d0
[  361.900201][T12868]  ? __sys_sendmsg+0x16d/0x220
[  361.900213][T12868]  ? __do_fast_syscall_32+0x7c/0x3a0
[  361.900226][T12868]  ? do_fast_syscall_32+0x32/0x80
[  361.900238][T12868]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  361.900257][T12868]  ? rcu_is_watching+0x12/0xc0
[  361.900268][T12868]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  361.900287][T12868]  ? kfree_skbmem+0x1a4/0x1f0
[  361.900296][T12868]  ? consume_skb+0xcc/0x100
[  361.900310][T12868]  ? rcu_is_watching+0x12/0xc0
[  361.900320][T12868]  ? aa_get_newest_label+0xd2/0x250
[  361.900331][T12868]  ? apparmor_capable+0x114/0x1d0
[  361.900342][T12868]  ? rcu_is_watching+0x12/0xc0
[  361.900352][T12868]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  361.900365][T12868]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  361.900378][T12868]  ? rcu_is_watching+0x12/0xc0
[  361.900387][T12868]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  361.900404][T12868]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  361.900417][T12868]  ? rtnetlink_rcv_msg+0x95b/0xe90
[  361.900430][T12868]  rtnetlink_rcv_msg+0x95b/0xe90
[  361.900444][T12868]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  361.900459][T12868]  ? ref_tracker_free+0x37c/0x830
[  361.900474][T12868]  netlink_rcv_skb+0x155/0x420
[  361.900490][T12868]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  361.900505][T12868]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  361.900520][T12868]  ? netlink_deliver_tap+0x1ae/0xd30
[  361.900533][T12868]  netlink_unicast+0x5aa/0x870
[  361.900547][T12868]  ? __pfx_netlink_unicast+0x10/0x10
[  361.900560][T12868]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  361.900575][T12868]  netlink_sendmsg+0x8d1/0xdd0
[  361.900589][T12868]  ? __pfx_netlink_sendmsg+0x10/0x10
[  361.900603][T12868]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  361.900615][T12868]  ____sys_sendmsg+0xa95/0xc70
[  361.900630][T12868]  ? __pfx_____sys_sendmsg+0x10/0x10
[  361.900646][T12868]  ? get_compat_msghdr+0x11a/0x170
[  361.900660][T12868]  ? kstrtouint_from_user+0x13c/0x1d0
[  361.900675][T12868]  ___sys_sendmsg+0x134/0x1d0
[  361.900687][T12868]  ? get_pid_task+0xfc/0x250
[  361.900701][T12868]  ? __pfx____sys_sendmsg+0x10/0x10
[  361.900716][T12868]  ? rcu_is_watching+0x12/0xc0
[  361.900730][T12868]  __sys_sendmsg+0x16d/0x220
[  361.900742][T12868]  ? __pfx___sys_sendmsg+0x10/0x10
[  361.900757][T12868]  ? rcu_is_watching+0x12/0xc0
[  361.900768][T12868]  __do_fast_syscall_32+0x7c/0x3a0
[  361.900782][T12868]  do_fast_syscall_32+0x32/0x80
[  361.900795][T12868]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  361.900807][T12868] RIP: 0023:0xf7ff2579
[  361.900815][T12868] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  361.900825][T12868] RSP: 002b:00000000f551655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  361.900835][T12868] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  361.900842][T12868] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  361.900848][T12868] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  361.900854][T12868] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  361.900859][T12868] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  361.900869][T12868]  </TASK>
[  361.918698][T12870] FAULT_INJECTION: forcing a failure.
[  361.918698][T12870] name failslab, interval 1, probability 0, space 0, times 0
[  361.978726][T12871] netlink: 'syz.4.1842': attribute type 9 has an invalid length.
[  361.978853][T12870] CPU: 3 UID: 0 PID: 12870 Comm: syz.2.1843 Not tainted syzkaller #0 PREEMPT(full) 
[  361.978867][T12870] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.978874][T12870] Call Trace:
[  361.978878][T12870]  <TASK>
[  361.978882][T12870]  dump_stack_lvl+0x16c/0x1f0
[  361.978908][T12870]  should_fail_ex+0x512/0x640
[  361.978933][T12870]  should_failslab+0xc2/0x120
[  361.978952][T12870]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  361.978970][T12870]  ? skb_clone+0x190/0x3f0
[  361.978991][T12870]  ? netlink_deliver_tap+0x103/0xd30
[  361.979010][T12870]  skb_clone+0x190/0x3f0
[  361.979029][T12870]  netlink_deliver_tap+0xabd/0xd30
[  361.979049][T12870]  netlink_dump+0xa5f/0xd30
[  361.979069][T12870]  ? __pfx_netlink_dump+0x10/0x10
[  361.979086][T12870]  ? ip_set_dump_start+0x2e9/0x460
[  361.979109][T12870]  ? __pfx___mutex_lock+0x10/0x10
[  361.979135][T12870]  __netlink_dump_start+0x6d6/0x990
[  361.979156][T12870]  ip_set_dump+0x17f/0x210
[  361.979177][T12870]  ? __pfx_ip_set_dump+0x10/0x10
[  361.979199][T12870]  ? __pfx_ip_set_dump_start+0x10/0x10
[  361.979214][T12870]  ? __pfx_ip_set_dump_do+0x10/0x10
[  361.979229][T12870]  ? __pfx_ip_set_dump_done+0x10/0x10
[  361.979243][T12870]  ? nfnetlink_rcv_msg+0x8a5/0x1200
[  361.979257][T12870]  ? rcu_is_watching+0x12/0xc0
[  361.979276][T12870]  nfnetlink_rcv_msg+0x9fc/0x1200
[  361.979295][T12870]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  361.979311][T12870]  ? consume_skb+0xcc/0x100
[  361.979348][T12870]  ? __pfx___dev_queue_xmit+0x10/0x10
[  361.979368][T12870]  netlink_rcv_skb+0x155/0x420
[  361.979388][T12870]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  361.979404][T12870]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  361.979428][T12870]  ? ns_capable+0xd7/0x110
[  361.979446][T12870]  nfnetlink_rcv+0x1b3/0x430
[  361.979461][T12870]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  361.979474][T12870]  ? netlink_deliver_tap+0x1ae/0xd30
[  361.979495][T12870]  netlink_unicast+0x5aa/0x870
[  361.979516][T12870]  ? __pfx_netlink_unicast+0x10/0x10
[  361.979536][T12870]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  361.979558][T12870]  netlink_sendmsg+0x8d1/0xdd0
[  361.979580][T12870]  ? __pfx_netlink_sendmsg+0x10/0x10
[  361.979600][T12870]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  361.979619][T12870]  ____sys_sendmsg+0xa95/0xc70
[  361.979643][T12870]  ? __pfx_____sys_sendmsg+0x10/0x10
[  361.979665][T12870]  ? get_compat_msghdr+0x11a/0x170
[  361.979692][T12870]  ? kstrtouint_from_user+0x13c/0x1d0
[  361.979713][T12870]  ___sys_sendmsg+0x134/0x1d0
[  361.979752][T12870]  ? get_pid_task+0xfc/0x250
[  361.979775][T12870]  ? __pfx____sys_sendmsg+0x10/0x10
[  361.979798][T12870]  ? rcu_is_watching+0x12/0xc0
[  361.979819][T12870]  __sys_sendmsg+0x16d/0x220
[  361.979839][T12870]  ? __pfx___sys_sendmsg+0x10/0x10
[  361.979862][T12870]  ? rcu_is_watching+0x12/0xc0
[  361.979878][T12870]  __do_fast_syscall_32+0x7c/0x3a0
[  361.979900][T12870]  do_fast_syscall_32+0x32/0x80
[  361.979919][T12870]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  361.979939][T12870] RIP: 0023:0xf7ff2579
[  361.979950][T12870] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  361.979965][T12870] RSP: 002b:00000000f551655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  361.979980][T12870] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000200
[  361.979990][T12870] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  361.979999][T12870] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  361.980009][T12870] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  361.980018][T12870] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  361.980033][T12870]  </TASK>
[  362.096141][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  362.099644][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  362.765245][T12884] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1848'.
[  362.864329][T12888] team0: left allmulticast mode
[  362.866188][T12888] team_slave_0: left allmulticast mode
[  362.868122][T12888] team_slave_1: left allmulticast mode
[  362.870114][T12888] bridge0: port 3(team0) entered disabled state
[  362.875092][T12888] bridge_slave_0: left allmulticast mode
[  362.877584][T12888] bridge_slave_0: left promiscuous mode
[  362.879874][T12888] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.884096][T12888] bridge_slave_1: left allmulticast mode
[  362.886161][T12888] bridge_slave_1: left promiscuous mode
[  362.888013][T12888] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.892072][T12888] bond0: (slave bond_slave_0): Releasing backup interface
[  362.895599][ T5977] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  362.895809][T12581] Bluetooth: hci5: command 0x1003 tx timeout
[  362.901261][T12888] bond0: (slave bond_slave_1): Releasing backup interface
[  362.905173][T12888] team_slave_0: left promiscuous mode
[  362.908885][T12888] team0: Port device team_slave_0 removed
[  362.911330][T12888] team_slave_1: left promiscuous mode
[  362.915357][T12888] team0: Port device team_slave_1 removed
[  362.919461][T12888] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  362.923345][T12888] batman_adv: batadv0: Removing interface: batadv_slave_0
[  362.934092][T12888] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  362.936723][T12888] batman_adv: batadv0: Removing interface: batadv_slave_1
[  362.943157][T12888] bond1: (slave bridge2): Releasing active interface
[  362.948594][T12889] vlan0: entered promiscuous mode
[  362.952706][T12889] team0: Port device vlan0 added
[  362.962672][T12888] tipc: Enabled bearer <eth:team0>, priority 0
[  363.262913][T12907] FAULT_INJECTION: forcing a failure.
[  363.262913][T12907] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.267158][T12907] CPU: 3 UID: 0 PID: 12907 Comm: syz.2.1855 Not tainted syzkaller #0 PREEMPT(full) 
[  363.267173][T12907] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  363.267180][T12907] Call Trace:
[  363.267184][T12907]  <TASK>
[  363.267188][T12907]  dump_stack_lvl+0x16c/0x1f0
[  363.267204][T12907]  should_fail_ex+0x512/0x640
[  363.267219][T12907]  _copy_to_user+0x32/0xd0
[  363.267229][T12907]  simple_read_from_buffer+0xcb/0x170
[  363.267241][T12907]  proc_fail_nth_read+0x197/0x240
[  363.267264][T12907]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.267275][T12907]  ? security_file_permission+0x71/0x210
[  363.267290][T12907]  ? rw_verify_area+0xcf/0x6c0
[  363.267301][T12907]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.267311][T12907]  vfs_read+0x1e4/0xcf0
[  363.267323][T12907]  ? __pfx_vfs_read+0x10/0x10
[  363.267334][T12907]  ? rcu_is_watching+0x12/0xc0
[  363.267346][T12907]  ? __fget_files+0x20e/0x3c0
[  363.267358][T12907]  ksys_read+0x12a/0x250
[  363.267369][T12907]  ? __pfx_ksys_read+0x10/0x10
[  363.267381][T12907]  ? rcu_is_watching+0x12/0xc0
[  363.267391][T12907]  __do_fast_syscall_32+0x7c/0x3a0
[  363.267406][T12907]  do_fast_syscall_32+0x32/0x80
[  363.267423][T12907]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  363.267440][T12907] RIP: 0023:0xf7ff2579
[  363.267448][T12907] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  363.267458][T12907] RSP: 002b:00000000f5516590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  363.267468][T12907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5516620
[  363.267474][T12907] RDX: 000000000000000f RSI: 00000000f7484ff4 RDI: 0000000000000000
[  363.267480][T12907] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  363.267486][T12907] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  363.267492][T12907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  363.267501][T12907]  </TASK>
[  363.268373][T12900] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1853'.
[  363.935589][ T5977] Bluetooth: hci1: command 0x0c1a tx timeout
[  364.085617][   T54] tipc: Node number set to 762580161
[  364.095668][T12919] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1859'.
[  364.100270][T12919] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1859'.
[  364.526571][T12923] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1860'.
[  364.530377][T12923] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1860'.
[  364.537981][T12925] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1861'.
[  365.026137][T12936] FAULT_INJECTION: forcing a failure.
[  365.026137][T12936] name failslab, interval 1, probability 0, space 0, times 0
[  365.031661][T12936] CPU: 3 UID: 0 PID: 12936 Comm: syz.0.1866 Not tainted syzkaller #0 PREEMPT(full) 
[  365.031689][T12936] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.031696][T12936] Call Trace:
[  365.031701][T12936]  <TASK>
[  365.031705][T12936]  dump_stack_lvl+0x16c/0x1f0
[  365.031722][T12936]  should_fail_ex+0x512/0x640
[  365.031738][T12936]  should_failslab+0xc2/0x120
[  365.031752][T12936]  __kmalloc_cache_noprof+0x6a/0x3e0
[  365.031765][T12936]  ? lock_acquire+0x2cd/0x350
[  365.031779][T12936]  ? nsim_nexthop_event_nb+0x9e/0x10b0
[  365.031793][T12936]  nsim_nexthop_event_nb+0x9e/0x10b0
[  365.031805][T12936]  ? vxlan_nexthop_event+0x2f/0x400
[  365.031816][T12936]  notifier_call_chain+0xb9/0x410
[  365.031830][T12936]  ? __pfx_nsim_nexthop_event_nb+0x10/0x10
[  365.031843][T12936]  blocking_notifier_call_chain+0x69/0xa0
[  365.031858][T12936]  call_nexthop_notifiers+0x1a6/0x390
[  365.031871][T12936]  ? __pfx_call_nexthop_notifiers+0x10/0x10
[  365.031884][T12936]  ? rtm_new_nexthop+0x22ee/0x84e0
[  365.031897][T12936]  ? rcu_is_watching+0x12/0xc0
[  365.031909][T12936]  rtm_new_nexthop+0x5933/0x84e0
[  365.031924][T12936]  ? stack_trace_save+0x8e/0xc0
[  365.031938][T12936]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  365.031951][T12936]  ? kasan_save_free_info+0x3b/0x60
[  365.031959][T12936]  ? __kasan_slab_free+0x60/0x70
[  365.031976][T12936]  ? kmem_cache_free+0x2d1/0x4d0
[  365.031986][T12936]  ? kfree_skbmem+0x1a4/0x1f0
[  365.031996][T12936]  ? consume_skb+0xcc/0x100
[  365.032009][T12936]  ? nlmon_xmit+0xa5/0xe0
[  365.032021][T12936]  ? dev_hard_start_xmit+0x97/0x740
[  365.032032][T12936]  ? __dev_queue_xmit+0xa46/0x4490
[  365.032041][T12936]  ? netlink_deliver_tap+0xa87/0xd30
[  365.032053][T12936]  ? netlink_unicast+0x64c/0x870
[  365.032066][T12936]  ? netlink_sendmsg+0x8d1/0xdd0
[  365.032078][T12936]  ? ____sys_sendmsg+0xa95/0xc70
[  365.032093][T12936]  ? ___sys_sendmsg+0x134/0x1d0
[  365.032104][T12936]  ? __sys_sendmsg+0x16d/0x220
[  365.032116][T12936]  ? __do_fast_syscall_32+0x7c/0x3a0
[  365.032129][T12936]  ? do_fast_syscall_32+0x32/0x80
[  365.032142][T12936]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  365.032161][T12936]  ? rcu_is_watching+0x12/0xc0
[  365.032170][T12936]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  365.032189][T12936]  ? kfree_skbmem+0x1a4/0x1f0
[  365.032198][T12936]  ? consume_skb+0xcc/0x100
[  365.032214][T12936]  ? rcu_is_watching+0x12/0xc0
[  365.032223][T12936]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  365.032236][T12936]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  365.032249][T12936]  ? rcu_is_watching+0x12/0xc0
[  365.032259][T12936]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  365.032272][T12936]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  365.032285][T12936]  ? rtnetlink_rcv_msg+0x95b/0xe90
[  365.032298][T12936]  rtnetlink_rcv_msg+0x95b/0xe90
[  365.032312][T12936]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  365.032327][T12936]  ? ref_tracker_free+0x37c/0x830
[  365.032342][T12936]  netlink_rcv_skb+0x155/0x420
[  365.032355][T12936]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  365.032369][T12936]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  365.032384][T12936]  ? netlink_deliver_tap+0x1ae/0xd30
[  365.032397][T12936]  netlink_unicast+0x5aa/0x870
[  365.032411][T12936]  ? __pfx_netlink_unicast+0x10/0x10
[  365.032424][T12936]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  365.032439][T12936]  netlink_sendmsg+0x8d1/0xdd0
[  365.032453][T12936]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.032466][T12936]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  365.032478][T12936]  ____sys_sendmsg+0xa95/0xc70
[  365.032494][T12936]  ? __pfx_____sys_sendmsg+0x10/0x10
[  365.032509][T12936]  ? get_compat_msghdr+0x11a/0x170
[  365.032522][T12936]  ? kstrtouint_from_user+0x13c/0x1d0
[  365.032535][T12936]  ___sys_sendmsg+0x134/0x1d0
[  365.032547][T12936]  ? get_pid_task+0xfc/0x250
[  365.032560][T12936]  ? __pfx____sys_sendmsg+0x10/0x10
[  365.032575][T12936]  ? rcu_is_watching+0x12/0xc0
[  365.032601][T12936]  __sys_sendmsg+0x16d/0x220
[  365.032613][T12936]  ? __pfx___sys_sendmsg+0x10/0x10
[  365.032628][T12936]  ? rcu_is_watching+0x12/0xc0
[  365.032639][T12936]  __do_fast_syscall_32+0x7c/0x3a0
[  365.032652][T12936]  do_fast_syscall_32+0x32/0x80
[  365.032666][T12936]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  365.032679][T12936] RIP: 0023:0xf70ee579
[  365.032687][T12936] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  365.032697][T12936] RSP: 002b:00000000f54de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  365.032708][T12936] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  365.032714][T12936] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  365.032720][T12936] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  365.032726][T12936] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  365.032731][T12936] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  365.032740][T12936]  </TASK>
[  365.295694][   T60] vhci_hcd: vhci_device speed not set
[  365.392838][T12943] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1869'.
[  365.492817][T12954] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1874'.
[  365.697119][T12969] netlink: 'syz.0.1878': attribute type 1 has an invalid length.
[  365.699626][T12969] netlink: 'syz.0.1878': attribute type 1 has an invalid length.
[  365.702041][T12969] netlink: 'syz.0.1878': attribute type 1 has an invalid length.
[  365.704423][T12969] netlink: 'syz.0.1878': attribute type 1 has an invalid length.
[  365.734217][T12969] netlink: 'syz.0.1878': attribute type 1 has an invalid length.
[  365.737328][T12969] netlink: 'syz.0.1878': attribute type 1 has an invalid length.
[  365.739933][T12969] netlink: 'syz.0.1878': attribute type 1 has an invalid length.
[  365.742349][T12969] netlink: 'syz.0.1878': attribute type 1 has an invalid length.
[  365.751993][T12969] netlink: 'syz.0.1878': attribute type 1 has an invalid length.
[  365.754716][T12969] netlink: 'syz.0.1878': attribute type 1 has an invalid length.
[  365.833798][T12977] FAULT_INJECTION: forcing a failure.
[  365.833798][T12977] name failslab, interval 1, probability 0, space 0, times 0
[  365.838639][T12977] CPU: 3 UID: 0 PID: 12977 Comm: syz.4.1883 Not tainted syzkaller #0 PREEMPT(full) 
[  365.838662][T12977] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.838672][T12977] Call Trace:
[  365.838678][T12977]  <TASK>
[  365.838685][T12977]  dump_stack_lvl+0x16c/0x1f0
[  365.838720][T12977]  should_fail_ex+0x512/0x640
[  365.838742][T12977]  ? nh_notifier_mpath_info_init+0xa3/0x8e0
[  365.838763][T12977]  should_failslab+0xc2/0x120
[  365.838785][T12977]  __kmalloc_noprof+0xd2/0x510
[  365.838807][T12977]  nh_notifier_mpath_info_init+0xa3/0x8e0
[  365.838829][T12977]  nh_notifier_grp_info_init+0x920/0xa80
[  365.838850][T12977]  ? rcu_is_watching+0x12/0xc0
[  365.838867][T12977]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  365.838894][T12977]  call_nexthop_notifiers+0x28c/0x390
[  365.838915][T12977]  ? __pfx_call_nexthop_notifiers+0x10/0x10
[  365.838937][T12977]  ? call_nexthop_notifiers+0x229/0x390
[  365.838957][T12977]  replace_nexthop_single_notify+0x5eb/0x6d0
[  365.838978][T12977]  ? rtm_new_nexthop+0x22ee/0x84e0
[  365.839003][T12977]  rtm_new_nexthop+0x5d09/0x84e0
[  365.839029][T12977]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  365.839049][T12977]  ? kasan_save_free_info+0x3b/0x60
[  365.839064][T12977]  ? __kasan_slab_free+0x60/0x70
[  365.839082][T12977]  ? kmem_cache_free+0x2d1/0x4d0
[  365.839100][T12977]  ? kfree_skbmem+0x1a4/0x1f0
[  365.839116][T12977]  ? consume_skb+0xcc/0x100
[  365.839137][T12977]  ? nlmon_xmit+0xa5/0xe0
[  365.839158][T12977]  ? dev_hard_start_xmit+0x97/0x740
[  365.839175][T12977]  ? __dev_queue_xmit+0xa46/0x4490
[  365.839191][T12977]  ? netlink_deliver_tap+0xa87/0xd30
[  365.839211][T12977]  ? netlink_unicast+0x64c/0x870
[  365.839231][T12977]  ? netlink_sendmsg+0x8d1/0xdd0
[  365.839251][T12977]  ? ____sys_sendmsg+0xa95/0xc70
[  365.839276][T12977]  ? ___sys_sendmsg+0x134/0x1d0
[  365.839296][T12977]  ? __sys_sendmsg+0x16d/0x220
[  365.839314][T12977]  ? __do_fast_syscall_32+0x7c/0x3a0
[  365.839335][T12977]  ? do_fast_syscall_32+0x32/0x80
[  365.839355][T12977]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  365.839386][T12977]  ? rcu_is_watching+0x12/0xc0
[  365.839402][T12977]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  365.839429][T12977]  ? kfree_skbmem+0x1a4/0x1f0
[  365.839444][T12977]  ? consume_skb+0xcc/0x100
[  365.839470][T12977]  ? rcu_is_watching+0x12/0xc0
[  365.839487][T12977]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  365.839507][T12977]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  365.839529][T12977]  ? rcu_is_watching+0x12/0xc0
[  365.839545][T12977]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  365.839569][T12977]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  365.839590][T12977]  ? rtnetlink_rcv_msg+0x95b/0xe90
[  365.839611][T12977]  rtnetlink_rcv_msg+0x95b/0xe90
[  365.839635][T12977]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  365.839678][T12977]  ? ref_tracker_free+0x37c/0x830
[  365.839712][T12977]  netlink_rcv_skb+0x155/0x420
[  365.839734][T12977]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  365.839757][T12977]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  365.839783][T12977]  ? netlink_deliver_tap+0x1ae/0xd30
[  365.839806][T12977]  netlink_unicast+0x5aa/0x870
[  365.839828][T12977]  ? __pfx_netlink_unicast+0x10/0x10
[  365.839850][T12977]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  365.839873][T12977]  netlink_sendmsg+0x8d1/0xdd0
[  365.839896][T12977]  ? __pfx_netlink_sendmsg+0x10/0x10
[  365.839918][T12977]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  365.839935][T12977]  ____sys_sendmsg+0xa95/0xc70
[  365.839959][T12977]  ? __pfx_____sys_sendmsg+0x10/0x10
[  365.839983][T12977]  ? get_compat_msghdr+0x11a/0x170
[  365.840006][T12977]  ? kstrtouint_from_user+0x13c/0x1d0
[  365.840028][T12977]  ___sys_sendmsg+0x134/0x1d0
[  365.840048][T12977]  ? get_pid_task+0xfc/0x250
[  365.840070][T12977]  ? __pfx____sys_sendmsg+0x10/0x10
[  365.840093][T12977]  ? rcu_is_watching+0x12/0xc0
[  365.840111][T12977]  __sys_sendmsg+0x16d/0x220
[  365.840123][T12977]  ? __pfx___sys_sendmsg+0x10/0x10
[  365.840139][T12977]  ? rcu_is_watching+0x12/0xc0
[  365.840149][T12977]  __do_fast_syscall_32+0x7c/0x3a0
[  365.840163][T12977]  do_fast_syscall_32+0x32/0x80
[  365.840176][T12977]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  365.840189][T12977] RIP: 0023:0xf703e579
[  365.840197][T12977] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  365.840207][T12977] RSP: 002b:00000000f542e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  365.840218][T12977] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  365.840224][T12977] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  365.840231][T12977] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  365.840236][T12977] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  365.840242][T12977] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  365.840251][T12977]  </TASK>
[  366.116767][T12990] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1882'.
[  366.119552][T12990] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1882'.
[  366.523852][T13007] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  366.533258][T13007] CIFS mount error: No usable UNC path provided in device string!
[  366.533258][T13007] 
[  366.536652][T13007] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  366.656848][   T40] kauditd_printk_skb: 25 callbacks suppressed
[  366.656860][   T40] audit: type=1326 audit(1755720401.253:2893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.5.1898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  366.664134][   T91] Bluetooth: hci4: Frame reassembly failed (-84)
[  366.673644][   T40] audit: type=1326 audit(1755720401.253:2894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.5.1898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  366.673768][   T91] Bluetooth: hci4: Frame reassembly failed (-84)
[  366.680604][   T40] audit: type=1326 audit(1755720401.253:2895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.5.1898" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  366.689336][   T40] audit: type=1326 audit(1755720401.253:2896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.5.1898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  366.697294][   T40] audit: type=1326 audit(1755720401.253:2897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.5.1898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  366.704839][   T40] audit: type=1326 audit(1755720401.253:2898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.5.1898" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  366.711444][   T40] audit: type=1326 audit(1755720401.253:2899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.5.1898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  366.718323][   T40] audit: type=1326 audit(1755720401.253:2900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.5.1898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  366.725560][   T40] audit: type=1326 audit(1755720401.253:2901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.5.1898" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  366.731992][   T40] audit: type=1326 audit(1755720401.253:2902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13018 comm="syz.5.1898" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  366.832547][   T91] Bluetooth: hci5: Frame reassembly failed (-84)
[  367.856188][T11874] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  367.856591][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  368.235609][   T54] usb 9-1: new high-speed USB device number 29 using dummy_hcd
[  368.271287][T13055] can: request_module (can-proto-0) failed.
[  368.445539][   T54] usb 9-1: Using ep0 maxpacket: 8
[  368.449653][   T54] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  368.452348][   T54] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  368.455664][   T54] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  368.458878][   T54] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  368.462035][   T54] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  368.466181][   T54] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  368.469074][   T54] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  368.679386][   T54] usb 9-1: usb_control_msg returned -32
[  368.681151][   T54] usbtmc 9-1:16.0: can't read capabilities
[  368.682830][T13051] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  368.685964][T13051] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  368.735674][T12581] Bluetooth: hci4: command 0x1003 tx timeout
[  368.735782][ T5977] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  368.785673][T13067] __nla_validate_parse: 3 callbacks suppressed
[  368.785684][T13067] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1910'.
[  368.895620][ T5977] Bluetooth: hci5: command 0x1003 tx timeout
[  368.896503][ T5333] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  368.970444][T13078] FAULT_INJECTION: forcing a failure.
[  368.970444][T13078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  368.974465][T13078] CPU: 3 UID: 0 PID: 13078 Comm: syz.5.1914 Not tainted syzkaller #0 PREEMPT(full) 
[  368.974479][T13078] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  368.974486][T13078] Call Trace:
[  368.974490][T13078]  <TASK>
[  368.974494][T13078]  dump_stack_lvl+0x16c/0x1f0
[  368.974510][T13078]  should_fail_ex+0x512/0x640
[  368.974525][T13078]  _copy_from_iter+0x29f/0x16f0
[  368.974542][T13078]  ? __alloc_skb+0x200/0x380
[  368.974554][T13078]  ? __pfx__copy_from_iter+0x10/0x10
[  368.974570][T13078]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  368.974586][T13078]  netlink_sendmsg+0x829/0xdd0
[  368.974607][T13078]  ? __pfx_netlink_sendmsg+0x10/0x10
[  368.974621][T13078]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  368.974633][T13078]  ____sys_sendmsg+0xa95/0xc70
[  368.974649][T13078]  ? __pfx_____sys_sendmsg+0x10/0x10
[  368.974664][T13078]  ? get_compat_msghdr+0x11a/0x170
[  368.974678][T13078]  ? kstrtouint_from_user+0x13c/0x1d0
[  368.974692][T13078]  ___sys_sendmsg+0x134/0x1d0
[  368.974704][T13078]  ? get_pid_task+0xfc/0x250
[  368.974720][T13078]  ? __pfx____sys_sendmsg+0x10/0x10
[  368.974735][T13078]  ? rcu_is_watching+0x12/0xc0
[  368.974750][T13078]  __sys_sendmsg+0x16d/0x220
[  368.974763][T13078]  ? __pfx___sys_sendmsg+0x10/0x10
[  368.974779][T13078]  ? rcu_is_watching+0x12/0xc0
[  368.974789][T13078]  __do_fast_syscall_32+0x7c/0x3a0
[  368.974803][T13078]  do_fast_syscall_32+0x32/0x80
[  368.974817][T13078]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  368.974831][T13078] RIP: 0023:0xf70ce579
[  368.974838][T13078] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  368.974849][T13078] RSP: 002b:00000000f54be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  368.974859][T13078] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  368.974866][T13078] RDX: 000000000000c044 RSI: 0000000000000000 RDI: 0000000000000000
[  368.974872][T13078] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  368.974877][T13078] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  368.974882][T13078] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  368.974891][T13078]  </TASK>
[  369.231242][T13084] fuse: root generation should be zero
[  369.271249][   T74] Bluetooth: hci4: Frame reassembly failed (-84)
[  369.273823][T13092] FAULT_INJECTION: forcing a failure.
[  369.273823][T13092] name failslab, interval 1, probability 0, space 0, times 0
[  369.278278][T13092] CPU: 3 UID: 0 PID: 13092 Comm: syz.5.1919 Not tainted syzkaller #0 PREEMPT(full) 
[  369.278293][T13092] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.278300][T13092] Call Trace:
[  369.278304][T13092]  <TASK>
[  369.278308][T13092]  dump_stack_lvl+0x16c/0x1f0
[  369.278324][T13092]  should_fail_ex+0x512/0x640
[  369.278339][T13092]  ? nh_notifier_mpath_info_init+0xa3/0x8e0
[  369.278353][T13092]  should_failslab+0xc2/0x120
[  369.278367][T13092]  __kmalloc_noprof+0xd2/0x510
[  369.278380][T13092]  nh_notifier_mpath_info_init+0xa3/0x8e0
[  369.278393][T13092]  nh_notifier_grp_info_init+0x920/0xa80
[  369.278407][T13092]  call_nexthop_notifiers+0x28c/0x390
[  369.278419][T13092]  ? __pfx_call_nexthop_notifiers+0x10/0x10
[  369.278432][T13092]  ? call_nexthop_notifiers+0x229/0x390
[  369.278445][T13092]  replace_nexthop_single_notify+0x5eb/0x6d0
[  369.278458][T13092]  ? rtm_new_nexthop+0x22ee/0x84e0
[  369.278473][T13092]  rtm_new_nexthop+0x5d09/0x84e0
[  369.278491][T13092]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  369.278505][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.278516][T13092]  ? unwind_next_frame+0x3f4/0x20a0
[  369.278526][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.278536][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.278546][T13092]  ? is_bpf_text_address+0x8a/0x1a0
[  369.278559][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.278570][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.278580][T13092]  ? is_bpf_text_address+0x8a/0x1a0
[  369.278592][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.278602][T13092]  ? lock_release+0x201/0x2f0
[  369.278614][T13092]  ? bpf_ksym_find+0x124/0x1c0
[  369.278623][T13092]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  369.278635][T13092]  ? is_bpf_text_address+0x94/0x1a0
[  369.278648][T13092]  ? kernel_text_address+0x8d/0x100
[  369.278664][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.278674][T13092]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  369.278686][T13092]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  369.278701][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.278711][T13092]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  369.278725][T13092]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  369.278737][T13092]  ? rtnetlink_rcv_msg+0x95b/0xe90
[  369.278750][T13092]  rtnetlink_rcv_msg+0x95b/0xe90
[  369.278764][T13092]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  369.278781][T13092]  netlink_rcv_skb+0x155/0x420
[  369.278794][T13092]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  369.278808][T13092]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  369.278821][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.278833][T13092]  ? netlink_deliver_tap+0x1ae/0xd30
[  369.278845][T13092]  ? is_vmalloc_addr+0x86/0xa0
[  369.278857][T13092]  netlink_unicast+0x5aa/0x870
[  369.278871][T13092]  ? __pfx_netlink_unicast+0x10/0x10
[  369.278884][T13092]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  369.278904][T13092]  netlink_sendmsg+0x8d1/0xdd0
[  369.278918][T13092]  ? __pfx_netlink_sendmsg+0x10/0x10
[  369.278932][T13092]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  369.278944][T13092]  ____sys_sendmsg+0xa95/0xc70
[  369.278960][T13092]  ? __pfx_____sys_sendmsg+0x10/0x10
[  369.278975][T13092]  ? get_compat_msghdr+0x11a/0x170
[  369.278989][T13092]  ? kstrtouint_from_user+0x13c/0x1d0
[  369.279002][T13092]  ___sys_sendmsg+0x134/0x1d0
[  369.279014][T13092]  ? get_pid_task+0xfc/0x250
[  369.279028][T13092]  ? __pfx____sys_sendmsg+0x10/0x10
[  369.279042][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.279056][T13092]  __sys_sendmsg+0x16d/0x220
[  369.279069][T13092]  ? __pfx___sys_sendmsg+0x10/0x10
[  369.279084][T13092]  ? rcu_is_watching+0x12/0xc0
[  369.279094][T13092]  __do_fast_syscall_32+0x7c/0x3a0
[  369.279109][T13092]  do_fast_syscall_32+0x32/0x80
[  369.279122][T13092]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  369.279137][T13092] RIP: 0023:0xf70ce579
[  369.279145][T13092] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  369.279155][T13092] RSP: 002b:00000000f54be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  369.279165][T13092] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  369.279171][T13092] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  369.279177][T13092] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  369.279182][T13092] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  369.279188][T13092] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  369.279197][T13092]  </TASK>
[  369.695579][   T53] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[  369.855610][   T53] usb 7-1: Using ep0 maxpacket: 8
[  369.858520][   T53] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  369.861986][   T53] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  369.865101][   T53] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  369.868800][   T53] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  369.873899][   T53] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  369.876886][   T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.999953][T13100] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1922'.
[  370.083141][   T53] usb 7-1: GET_CAPABILITIES returned 0
[  370.084915][   T53] usbtmc 7-1:16.0: can't read capabilities
[  370.972963][T13118] FAULT_INJECTION: forcing a failure.
[  370.972963][T13118] name failslab, interval 1, probability 0, space 0, times 0
[  370.978103][T13118] CPU: 0 UID: 0 PID: 13118 Comm: syz.5.1928 Not tainted syzkaller #0 PREEMPT(full) 
[  370.978120][T13118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  370.978127][T13118] Call Trace:
[  370.978130][T13118]  <TASK>
[  370.978134][T13118]  dump_stack_lvl+0x16c/0x1f0
[  370.978151][T13118]  should_fail_ex+0x512/0x640
[  370.978167][T13118]  should_failslab+0xc2/0x120
[  370.978181][T13118]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  370.978194][T13118]  ? __alloc_skb+0x2b2/0x380
[  370.978208][T13118]  __alloc_skb+0x2b2/0x380
[  370.978219][T13118]  ? __pfx___alloc_skb+0x10/0x10
[  370.978230][T13118]  ? __pfx_inet_rtm_delroute+0x10/0x10
[  370.978248][T13118]  netlink_ack+0x15d/0xb80
[  370.978264][T13118]  netlink_rcv_skb+0x332/0x420
[  370.978277][T13118]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  370.978291][T13118]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  370.978305][T13118]  ? rcu_is_watching+0x12/0xc0
[  370.978318][T13118]  ? netlink_deliver_tap+0x1ae/0xd30
[  370.978330][T13118]  ? is_vmalloc_addr+0x86/0xa0
[  370.978342][T13118]  netlink_unicast+0x5aa/0x870
[  370.978356][T13118]  ? __pfx_netlink_unicast+0x10/0x10
[  370.978369][T13118]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  370.978384][T13118]  netlink_sendmsg+0x8d1/0xdd0
[  370.978398][T13118]  ? __pfx_netlink_sendmsg+0x10/0x10
[  370.978412][T13118]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  370.978424][T13118]  ____sys_sendmsg+0xa95/0xc70
[  370.978440][T13118]  ? __pfx_____sys_sendmsg+0x10/0x10
[  370.978455][T13118]  ? get_compat_msghdr+0x11a/0x170
[  370.978469][T13118]  ? kstrtouint_from_user+0x13c/0x1d0
[  370.978483][T13118]  ___sys_sendmsg+0x134/0x1d0
[  370.978494][T13118]  ? get_pid_task+0xfc/0x250
[  370.978509][T13118]  ? __pfx____sys_sendmsg+0x10/0x10
[  370.978524][T13118]  ? rcu_is_watching+0x12/0xc0
[  370.978538][T13118]  __sys_sendmsg+0x16d/0x220
[  370.978550][T13118]  ? __pfx___sys_sendmsg+0x10/0x10
[  370.978566][T13118]  ? rcu_is_watching+0x12/0xc0
[  370.978576][T13118]  __do_fast_syscall_32+0x7c/0x3a0
[  370.978591][T13118]  do_fast_syscall_32+0x32/0x80
[  370.978604][T13118]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  370.978617][T13118] RIP: 0023:0xf70ce579
[  370.978625][T13118] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  370.978636][T13118] RSP: 002b:00000000f54be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  370.978647][T13118] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  370.978653][T13118] RDX: 000000000000c044 RSI: 0000000000000000 RDI: 0000000000000000
[  370.978659][T13118] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  370.978665][T13118] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  370.978670][T13118] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  370.978679][T13118]  </TASK>
[  371.076411][   T60] usb 9-1: USB disconnect, device number 29
[  371.295572][ T5977] Bluetooth: hci4: command 0x1003 tx timeout
[  371.297614][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  371.485668][   T54] usb 10-1: new high-speed USB device number 21 using dummy_hcd
[  371.655549][   T54] usb 10-1: Using ep0 maxpacket: 8
[  371.785530][   T54] usb 10-1: config 1 has an invalid interface number: 111 but max is 0
[  371.788162][   T54] usb 10-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  371.791290][   T54] usb 10-1: config 1 has no interface number 0
[  371.793261][   T54] usb 10-1: config 1 interface 111 altsetting 3 endpoint 0x9 has invalid maxpacket 1024, setting to 64
[  371.954294][   T54] usb 10-1: config 1 interface 111 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  371.958005][   T54] usb 10-1: config 1 interface 111 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  371.961548][   T54] usb 10-1: config 1 interface 111 altsetting 3 has 6 endpoint descriptors, different from the interface descriptor's value: 14
[  371.966598][   T54] usb 10-1: config 1 interface 111 has no altsetting 0
[  371.970587][   T54] usb 10-1: New USB device found, idVendor=6933, idProduct=5001, bcdDevice=43.0d
[  371.973776][   T54] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.976710][   T54] usb 10-1: Product: Г
[  371.978063][   T54] usb 10-1: Manufacturer: О
[  371.979580][   T54] usb 10-1: SerialNumber: ✈挲ᧉ酝徯ٿ݆ꌰᄼꄦ鱬䥈⋱烃偡努敹㽈각勝⏶դ졒쿽諌ꗠ㉱鵪犣꛸篙ថ儹歸硶㱜ꡗ啙뵠虹雙莝ﶹ䈭ბ距脖좰뮠娪狜蘷鈒ଫ헃㜑☂ﻭ毵ᑔ
[  372.166354][T13136] rdma_rxe: rxe_newlink: failed to add lo
[  372.448341][   T53] usb 7-1: USB disconnect, device number 35
[  372.513578][T13151] capability: warning: `syz.2.1937' uses 32-bit capabilities (legacy support in use)
[  372.976067][   T91] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  373.480465][   T40] kauditd_printk_skb: 106 callbacks suppressed
[  373.480475][   T40] audit: type=1326 audit(1755720408.073:3009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.1939" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  373.502834][   T91] Bluetooth: hci4: Frame reassembly failed (-84)
[  373.507701][   T40] audit: type=1326 audit(1755720408.083:3010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.1939" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  373.515233][   T40] audit: type=1326 audit(1755720408.083:3011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.1939" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  373.524807][   T40] audit: type=1326 audit(1755720408.083:3012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.1939" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  373.533374][   T40] audit: type=1326 audit(1755720408.083:3013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.1939" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  373.540316][   T40] audit: type=1326 audit(1755720408.083:3014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.1939" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  373.547311][   T40] audit: type=1326 audit(1755720408.083:3015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.1939" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  373.553979][   T40] audit: type=1326 audit(1755720408.083:3016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.1939" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  373.560839][   T40] audit: type=1326 audit(1755720408.083:3017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.1939" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  373.567636][   T40] audit: type=1326 audit(1755720408.083:3018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.1939" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  373.615755][   T91] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  374.099428][   T54] usb 10-1: USB disconnect, device number 21
[  375.007193][T13181] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1943'.
[  375.035679][T13184] validate_nla: 88 callbacks suppressed
[  375.035690][T13184] netlink: 'syz.0.1944': attribute type 1 has an invalid length.
[  375.041530][T13184] netlink: 'syz.0.1944': attribute type 1 has an invalid length.
[  375.044114][T13184] netlink: 'syz.0.1944': attribute type 1 has an invalid length.
[  375.047635][T13184] netlink: 'syz.0.1944': attribute type 1 has an invalid length.
[  375.050378][T13184] netlink: 'syz.0.1944': attribute type 1 has an invalid length.
[  375.052864][T13184] netlink: 'syz.0.1944': attribute type 1 has an invalid length.
[  375.055264][T13184] netlink: 'syz.0.1944': attribute type 1 has an invalid length.
[  375.060946][T13184] netlink: 'syz.0.1944': attribute type 1 has an invalid length.
[  375.063717][T13184] netlink: 'syz.0.1944': attribute type 1 has an invalid length.
[  375.067057][T13184] netlink: 'syz.0.1944': attribute type 1 has an invalid length.
[  375.119880][T13193] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  375.122611][T13192] syzkaller0: entered promiscuous mode
[  375.124560][T13192] syzkaller0: entered allmulticast mode
[  375.159308][T13196] FAULT_INJECTION: forcing a failure.
[  375.159308][T13196] name failslab, interval 1, probability 0, space 0, times 0
[  375.163440][T13196] CPU: 3 UID: 0 PID: 13196 Comm: syz.5.1948 Not tainted syzkaller #0 PREEMPT(full) 
[  375.163455][T13196] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  375.163461][T13196] Call Trace:
[  375.163465][T13196]  <TASK>
[  375.163469][T13196]  dump_stack_lvl+0x16c/0x1f0
[  375.163485][T13196]  should_fail_ex+0x512/0x640
[  375.163501][T13196]  should_failslab+0xc2/0x120
[  375.163519][T13196]  __kmalloc_cache_noprof+0x6a/0x3e0
[  375.163529][T13196]  ? lock_acquire+0x2cd/0x350
[  375.163542][T13196]  ? nsim_nexthop_event_nb+0x9e/0x10b0
[  375.163556][T13196]  nsim_nexthop_event_nb+0x9e/0x10b0
[  375.163568][T13196]  ? vxlan_nexthop_event+0x2f/0x400
[  375.163579][T13196]  notifier_call_chain+0xb9/0x410
[  375.163592][T13196]  ? __pfx_nsim_nexthop_event_nb+0x10/0x10
[  375.163605][T13196]  blocking_notifier_call_chain+0x69/0xa0
[  375.163619][T13196]  call_nexthop_notifiers+0x1a6/0x390
[  375.163632][T13196]  ? __pfx_call_nexthop_notifiers+0x10/0x10
[  375.163645][T13196]  ? call_nexthop_notifiers+0x229/0x390
[  375.163657][T13196]  replace_nexthop_single_notify+0x5eb/0x6d0
[  375.163671][T13196]  ? rtm_new_nexthop+0x22ee/0x84e0
[  375.163685][T13196]  rtm_new_nexthop+0x5d09/0x84e0
[  375.163701][T13196]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  375.163714][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.163725][T13196]  ? unwind_next_frame+0x3f4/0x20a0
[  375.163735][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.163745][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.163755][T13196]  ? is_bpf_text_address+0x8a/0x1a0
[  375.163767][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.163779][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.163789][T13196]  ? is_bpf_text_address+0x8a/0x1a0
[  375.163800][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.163810][T13196]  ? lock_release+0x201/0x2f0
[  375.163822][T13196]  ? bpf_ksym_find+0x124/0x1c0
[  375.163831][T13196]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  375.163843][T13196]  ? is_bpf_text_address+0x94/0x1a0
[  375.163855][T13196]  ? kernel_text_address+0x8d/0x100
[  375.163871][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.163881][T13196]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  375.163894][T13196]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  375.163908][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.163917][T13196]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  375.163931][T13196]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  375.163944][T13196]  ? rtnetlink_rcv_msg+0x95b/0xe90
[  375.163957][T13196]  rtnetlink_rcv_msg+0x95b/0xe90
[  375.163974][T13196]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  375.163991][T13196]  netlink_rcv_skb+0x155/0x420
[  375.164004][T13196]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  375.164018][T13196]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  375.164031][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.164042][T13196]  ? netlink_deliver_tap+0x1ae/0xd30
[  375.164054][T13196]  ? is_vmalloc_addr+0x86/0xa0
[  375.164067][T13196]  netlink_unicast+0x5aa/0x870
[  375.164081][T13196]  ? __pfx_netlink_unicast+0x10/0x10
[  375.164094][T13196]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  375.164109][T13196]  netlink_sendmsg+0x8d1/0xdd0
[  375.164123][T13196]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.164136][T13196]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  375.164148][T13196]  ____sys_sendmsg+0xa95/0xc70
[  375.164164][T13196]  ? __pfx_____sys_sendmsg+0x10/0x10
[  375.164179][T13196]  ? get_compat_msghdr+0x11a/0x170
[  375.164193][T13196]  ? kstrtouint_from_user+0x13c/0x1d0
[  375.164206][T13196]  ___sys_sendmsg+0x134/0x1d0
[  375.164218][T13196]  ? get_pid_task+0xfc/0x250
[  375.164232][T13196]  ? __pfx____sys_sendmsg+0x10/0x10
[  375.164247][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.164261][T13196]  __sys_sendmsg+0x16d/0x220
[  375.164274][T13196]  ? __pfx___sys_sendmsg+0x10/0x10
[  375.164289][T13196]  ? rcu_is_watching+0x12/0xc0
[  375.164299][T13196]  __do_fast_syscall_32+0x7c/0x3a0
[  375.164314][T13196]  do_fast_syscall_32+0x32/0x80
[  375.164327][T13196]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  375.164340][T13196] RIP: 0023:0xf70ce579
[  375.164348][T13196] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  375.164358][T13196] RSP: 002b:00000000f54be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  375.164368][T13196] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  375.164375][T13196] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  375.164381][T13196] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  375.164386][T13196] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  375.164392][T13196] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  375.164401][T13196]  </TASK>
[  375.211426][T13193] tipc: Resetting bearer <eth:syzkaller0>
[  375.327648][T13199] FAULT_INJECTION: forcing a failure.
[  375.327648][T13199] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  375.334038][T13199] CPU: 2 UID: 0 PID: 13199 Comm: syz.5.1949 Not tainted syzkaller #0 PREEMPT(full) 
[  375.334053][T13199] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  375.334059][T13199] Call Trace:
[  375.334062][T13199]  <TASK>
[  375.334066][T13199]  dump_stack_lvl+0x16c/0x1f0
[  375.334096][T13199]  should_fail_ex+0x512/0x640
[  375.334112][T13199]  _copy_to_user+0x32/0xd0
[  375.334122][T13199]  simple_read_from_buffer+0xcb/0x170
[  375.334132][T13199]  proc_fail_nth_read+0x197/0x240
[  375.334144][T13199]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  375.334154][T13199]  ? security_file_permission+0x71/0x210
[  375.334168][T13199]  ? rw_verify_area+0xcf/0x6c0
[  375.334178][T13199]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  375.334189][T13199]  vfs_read+0x1e4/0xcf0
[  375.334201][T13199]  ? __pfx_vfs_read+0x10/0x10
[  375.334212][T13199]  ? rcu_is_watching+0x12/0xc0
[  375.334225][T13199]  ? __fget_files+0x20e/0x3c0
[  375.334237][T13199]  ksys_read+0x12a/0x250
[  375.334248][T13199]  ? __pfx_ksys_read+0x10/0x10
[  375.334260][T13199]  ? rcu_is_watching+0x12/0xc0
[  375.334271][T13199]  __do_fast_syscall_32+0x7c/0x3a0
[  375.334285][T13199]  do_fast_syscall_32+0x32/0x80
[  375.334299][T13199]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  375.334312][T13199] RIP: 0023:0xf70ce579
[  375.334320][T13199] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  375.334331][T13199] RSP: 002b:00000000f54be590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  375.334342][T13199] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54be620
[  375.334348][T13199] RDX: 000000000000000f RSI: 00000000f7434ff4 RDI: 0000000000000000
[  375.334354][T13199] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  375.334360][T13199] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  375.334366][T13199] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  375.334375][T13199]  </TASK>
[  375.412024][T13191] tipc: Resetting bearer <eth:syzkaller0>
[  375.420340][T13191] tipc: Disabling bearer <eth:syzkaller0>
[  375.535675][ T5977] Bluetooth: hci4: command 0x1003 tx timeout
[  375.535740][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  375.764861][T13217] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1954'.
[  375.767852][T13217] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1954'.
[  375.863675][T13218] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1955'.
[  375.866936][T13218] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1955'.
[  376.790185][T13252] FAULT_INJECTION: forcing a failure.
[  376.790185][T13252] name failslab, interval 1, probability 0, space 0, times 0
[  376.795858][T13252] CPU: 3 UID: 0 PID: 13252 Comm: syz.4.1961 Not tainted syzkaller #0 PREEMPT(full) 
[  376.795874][T13252] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  376.795881][T13252] Call Trace:
[  376.795884][T13252]  <TASK>
[  376.795888][T13252]  dump_stack_lvl+0x16c/0x1f0
[  376.795905][T13252]  should_fail_ex+0x512/0x640
[  376.795921][T13252]  should_failslab+0xc2/0x120
[  376.795935][T13252]  __kmalloc_cache_noprof+0x6a/0x3e0
[  376.795968][T13252]  ? lock_acquire+0x2cd/0x350
[  376.795982][T13252]  ? nsim_nexthop_event_nb+0x9e/0x10b0
[  376.795995][T13252]  nsim_nexthop_event_nb+0x9e/0x10b0
[  376.796007][T13252]  ? vxlan_nexthop_event+0x2f/0x400
[  376.796019][T13252]  notifier_call_chain+0xb9/0x410
[  376.796032][T13252]  ? __pfx_nsim_nexthop_event_nb+0x10/0x10
[  376.796045][T13252]  blocking_notifier_call_chain+0x69/0xa0
[  376.796059][T13252]  call_nexthop_notifiers+0x1a6/0x390
[  376.796073][T13252]  ? __pfx_call_nexthop_notifiers+0x10/0x10
[  376.796086][T13252]  ? call_nexthop_notifiers+0x229/0x390
[  376.796099][T13252]  replace_nexthop_single_notify+0x5eb/0x6d0
[  376.796112][T13252]  ? rtm_new_nexthop+0x22ee/0x84e0
[  376.796127][T13252]  rtm_new_nexthop+0x5d09/0x84e0
[  376.796143][T13252]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  376.796156][T13252]  ? kasan_save_free_info+0x3b/0x60
[  376.796165][T13252]  ? __kasan_slab_free+0x60/0x70
[  376.796177][T13252]  ? kmem_cache_free+0x2d1/0x4d0
[  376.796188][T13252]  ? kfree_skbmem+0x1a4/0x1f0
[  376.796197][T13252]  ? consume_skb+0xcc/0x100
[  376.796211][T13252]  ? nlmon_xmit+0xa5/0xe0
[  376.796223][T13252]  ? dev_hard_start_xmit+0x97/0x740
[  376.796234][T13252]  ? __dev_queue_xmit+0xa46/0x4490
[  376.796244][T13252]  ? netlink_deliver_tap+0xa87/0xd30
[  376.796256][T13252]  ? netlink_unicast+0x64c/0x870
[  376.796269][T13252]  ? netlink_sendmsg+0x8d1/0xdd0
[  376.796281][T13252]  ? ____sys_sendmsg+0xa95/0xc70
[  376.796297][T13252]  ? ___sys_sendmsg+0x134/0x1d0
[  376.796308][T13252]  ? __sys_sendmsg+0x16d/0x220
[  376.796320][T13252]  ? __do_fast_syscall_32+0x7c/0x3a0
[  376.796333][T13252]  ? do_fast_syscall_32+0x32/0x80
[  376.796346][T13252]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  376.796365][T13252]  ? rcu_is_watching+0x12/0xc0
[  376.796376][T13252]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  376.796395][T13252]  ? kfree_skbmem+0x1a4/0x1f0
[  376.796404][T13252]  ? consume_skb+0xcc/0x100
[  376.796421][T13252]  ? rcu_is_watching+0x12/0xc0
[  376.796431][T13252]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  376.796444][T13252]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  376.796458][T13252]  ? rcu_is_watching+0x12/0xc0
[  376.796467][T13252]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  376.796481][T13252]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  376.796494][T13252]  ? rtnetlink_rcv_msg+0x95b/0xe90
[  376.796507][T13252]  rtnetlink_rcv_msg+0x95b/0xe90
[  376.796522][T13252]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  376.796538][T13252]  ? ref_tracker_free+0x37c/0x830
[  376.796553][T13252]  netlink_rcv_skb+0x155/0x420
[  376.796566][T13252]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  376.796581][T13252]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  376.796598][T13252]  ? netlink_deliver_tap+0x1ae/0xd30
[  376.796611][T13252]  netlink_unicast+0x5aa/0x870
[  376.796625][T13252]  ? __pfx_netlink_unicast+0x10/0x10
[  376.796639][T13252]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  376.796654][T13252]  netlink_sendmsg+0x8d1/0xdd0
[  376.796668][T13252]  ? __pfx_netlink_sendmsg+0x10/0x10
[  376.796682][T13252]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  376.796695][T13252]  ____sys_sendmsg+0xa95/0xc70
[  376.796710][T13252]  ? __pfx_____sys_sendmsg+0x10/0x10
[  376.796726][T13252]  ? get_compat_msghdr+0x11a/0x170
[  376.796739][T13252]  ? kstrtouint_from_user+0x13c/0x1d0
[  376.796753][T13252]  ___sys_sendmsg+0x134/0x1d0
[  376.796765][T13252]  ? get_pid_task+0xfc/0x250
[  376.796778][T13252]  ? __pfx____sys_sendmsg+0x10/0x10
[  376.796794][T13252]  ? rcu_is_watching+0x12/0xc0
[  376.796808][T13252]  __sys_sendmsg+0x16d/0x220
[  376.796820][T13252]  ? __pfx___sys_sendmsg+0x10/0x10
[  376.796836][T13252]  ? rcu_is_watching+0x12/0xc0
[  376.796850][T13252]  __do_fast_syscall_32+0x7c/0x3a0
[  376.796864][T13252]  do_fast_syscall_32+0x32/0x80
[  376.796877][T13252]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  376.796890][T13252] RIP: 0023:0xf703e579
[  376.796898][T13252] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  376.796908][T13252] RSP: 002b:00000000f542e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  376.796918][T13252] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  376.796925][T13252] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  376.796931][T13252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  376.796937][T13252] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  376.796943][T13252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  376.796952][T13252]  </TASK>
[  377.633801][T13291] 8021q: adding VLAN 0 to HW filter on device bond0
[  377.637198][T13291] 8021q: adding VLAN 0 to HW filter on device team0
[  377.642609][T13291] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  377.651867][T13289] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  377.654915][T13289] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  377.678564][T13276] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1966'.
[  377.724536][T13295] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1972'.
[  377.727770][T13295] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1972'.
[  377.763032][T13289] vhci_hcd vhci_hcd.0: Device attached
[  377.995627][  T880] usb 45-1: new high-speed USB device number 2 using vhci_hcd
[  378.096886][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  378.099660][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  378.342325][T13290] vhci_hcd: connection reset by peer
[  378.344775][   T91] vhci_hcd: stop threads
[  378.346307][   T91] vhci_hcd: release socket
[  378.348391][   T91] vhci_hcd: disconnect device
[  378.359201][T13302] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1974'.
[  378.362225][T13302] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1974'.
[  378.465702][   T34] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  378.665715][   T34] usb 7-1: Using ep0 maxpacket: 16
[  378.668291][   T34] usb 7-1: too many configurations: 250, using maximum allowed: 8
[  378.672512][   T34] usb 7-1: unable to read config index 0 descriptor/start: -61
[  378.675731][   T34] usb 7-1: can't read configurations, error -61
[  378.727720][T13311] FAULT_INJECTION: forcing a failure.
[  378.727720][T13311] name failslab, interval 1, probability 0, space 0, times 0
[  378.731687][T13311] CPU: 2 UID: 0 PID: 13311 Comm: syz.5.1978 Not tainted syzkaller #0 PREEMPT(full) 
[  378.731708][T13311] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  378.731719][T13311] Call Trace:
[  378.731725][T13311]  <TASK>
[  378.731731][T13311]  dump_stack_lvl+0x16c/0x1f0
[  378.731750][T13311]  should_fail_ex+0x512/0x640
[  378.731767][T13311]  ? nh_notifier_mpath_info_init+0xa3/0x8e0
[  378.731780][T13311]  should_failslab+0xc2/0x120
[  378.731795][T13311]  __kmalloc_noprof+0xd2/0x510
[  378.731808][T13311]  nh_notifier_mpath_info_init+0xa3/0x8e0
[  378.731826][T13311]  nh_notifier_grp_info_init+0x920/0xa80
[  378.731848][T13311]  call_nexthop_notifiers+0x28c/0x390
[  378.731866][T13311]  ? __pfx_call_nexthop_notifiers+0x10/0x10
[  378.731887][T13311]  ? call_nexthop_notifiers+0x229/0x390
[  378.731900][T13311]  replace_nexthop_single_notify+0x5eb/0x6d0
[  378.731913][T13311]  ? rtm_new_nexthop+0x22ee/0x84e0
[  378.731928][T13311]  rtm_new_nexthop+0x5d09/0x84e0
[  378.731944][T13311]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  378.731957][T13311]  ? kasan_save_free_info+0x3b/0x60
[  378.731966][T13311]  ? __kasan_slab_free+0x60/0x70
[  378.731978][T13311]  ? kmem_cache_free+0x2d1/0x4d0
[  378.731988][T13311]  ? kfree_skbmem+0x1a4/0x1f0
[  378.731998][T13311]  ? consume_skb+0xcc/0x100
[  378.732011][T13311]  ? nlmon_xmit+0xa5/0xe0
[  378.732024][T13311]  ? dev_hard_start_xmit+0x97/0x740
[  378.732035][T13311]  ? __dev_queue_xmit+0xa46/0x4490
[  378.732045][T13311]  ? netlink_deliver_tap+0xa87/0xd30
[  378.732057][T13311]  ? netlink_unicast+0x64c/0x870
[  378.732070][T13311]  ? netlink_sendmsg+0x8d1/0xdd0
[  378.732082][T13311]  ? ____sys_sendmsg+0xa95/0xc70
[  378.732097][T13311]  ? ___sys_sendmsg+0x134/0x1d0
[  378.732109][T13311]  ? __sys_sendmsg+0x16d/0x220
[  378.732121][T13311]  ? __do_fast_syscall_32+0x7c/0x3a0
[  378.732134][T13311]  ? do_fast_syscall_32+0x32/0x80
[  378.732147][T13311]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  378.732167][T13311]  ? rcu_is_watching+0x12/0xc0
[  378.732177][T13311]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  378.732196][T13311]  ? kfree_skbmem+0x1a4/0x1f0
[  378.732205][T13311]  ? consume_skb+0xcc/0x100
[  378.732222][T13311]  ? rcu_is_watching+0x12/0xc0
[  378.732232][T13311]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  378.732245][T13311]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  378.732259][T13311]  ? rcu_is_watching+0x12/0xc0
[  378.732268][T13311]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  378.732282][T13311]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  378.732295][T13311]  ? rtnetlink_rcv_msg+0x95b/0xe90
[  378.732308][T13311]  rtnetlink_rcv_msg+0x95b/0xe90
[  378.732323][T13311]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  378.732338][T13311]  ? ref_tracker_free+0x37c/0x830
[  378.732354][T13311]  netlink_rcv_skb+0x155/0x420
[  378.732367][T13311]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  378.732381][T13311]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  378.732397][T13311]  ? netlink_deliver_tap+0x1ae/0xd30
[  378.732411][T13311]  netlink_unicast+0x5aa/0x870
[  378.732424][T13311]  ? __pfx_netlink_unicast+0x10/0x10
[  378.732438][T13311]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  378.732453][T13311]  netlink_sendmsg+0x8d1/0xdd0
[  378.732468][T13311]  ? __pfx_netlink_sendmsg+0x10/0x10
[  378.732482][T13311]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  378.732494][T13311]  ____sys_sendmsg+0xa95/0xc70
[  378.732510][T13311]  ? __pfx_____sys_sendmsg+0x10/0x10
[  378.732526][T13311]  ? get_compat_msghdr+0x11a/0x170
[  378.732539][T13311]  ? kstrtouint_from_user+0x13c/0x1d0
[  378.732553][T13311]  ___sys_sendmsg+0x134/0x1d0
[  378.732565][T13311]  ? get_pid_task+0xfc/0x250
[  378.732587][T13311]  ? __pfx____sys_sendmsg+0x10/0x10
[  378.732611][T13311]  ? rcu_is_watching+0x12/0xc0
[  378.732626][T13311]  __sys_sendmsg+0x16d/0x220
[  378.732639][T13311]  ? __pfx___sys_sendmsg+0x10/0x10
[  378.732654][T13311]  ? rcu_is_watching+0x12/0xc0
[  378.732665][T13311]  __do_fast_syscall_32+0x7c/0x3a0
[  378.732679][T13311]  do_fast_syscall_32+0x32/0x80
[  378.732692][T13311]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  378.732705][T13311] RIP: 0023:0xf70ce579
[  378.732713][T13311] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  378.732724][T13311] RSP: 002b:00000000f54be55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  378.732734][T13311] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  378.732741][T13311] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  378.732747][T13311] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  378.732753][T13311] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  378.732759][T13311] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  378.732768][T13311]  </TASK>
[  378.882427][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  378.887158][   T34] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  379.045548][   T34] usb 7-1: Using ep0 maxpacket: 16
[  379.048353][   T34] usb 7-1: too many configurations: 250, using maximum allowed: 8
[  379.052673][   T34] usb 7-1: unable to read config index 0 descriptor/start: -61
[  379.056826][   T34] usb 7-1: can't read configurations, error -61
[  379.059562][   T34] usb usb7-port1: attempt power cycle
[  379.297542][T13320] FAULT_INJECTION: forcing a failure.
[  379.297542][T13320] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  379.301677][T13320] CPU: 0 UID: 0 PID: 13320 Comm: syz.5.1981 Not tainted syzkaller #0 PREEMPT(full) 
[  379.301694][T13320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  379.301701][T13320] Call Trace:
[  379.301705][T13320]  <TASK>
[  379.301710][T13320]  dump_stack_lvl+0x16c/0x1f0
[  379.301727][T13320]  should_fail_ex+0x512/0x640
[  379.301744][T13320]  _copy_to_user+0x32/0xd0
[  379.301754][T13320]  simple_read_from_buffer+0xcb/0x170
[  379.301766][T13320]  proc_fail_nth_read+0x197/0x240
[  379.301778][T13320]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  379.301788][T13320]  ? security_file_permission+0x71/0x210
[  379.301808][T13320]  ? rw_verify_area+0xcf/0x6c0
[  379.301818][T13320]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  379.301829][T13320]  vfs_read+0x1e4/0xcf0
[  379.301841][T13320]  ? __pfx_vfs_read+0x10/0x10
[  379.301852][T13320]  ? rcu_is_watching+0x12/0xc0
[  379.301865][T13320]  ? __fget_files+0x20e/0x3c0
[  379.301877][T13320]  ksys_read+0x12a/0x250
[  379.301889][T13320]  ? __pfx_ksys_read+0x10/0x10
[  379.301901][T13320]  ? rcu_is_watching+0x12/0xc0
[  379.301912][T13320]  __do_fast_syscall_32+0x7c/0x3a0
[  379.301926][T13320]  do_fast_syscall_32+0x32/0x80
[  379.301940][T13320]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  379.301954][T13320] RIP: 0023:0xf70ce579
[  379.301962][T13320] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  379.301974][T13320] RSP: 002b:00000000f54be590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  379.301984][T13320] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f54be620
[  379.301991][T13320] RDX: 000000000000000f RSI: 00000000f7434ff4 RDI: 0000000000000000
[  379.301997][T13320] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  379.302003][T13320] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  379.302010][T13320] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  379.302019][T13320]  </TASK>
[  379.366892][    C0] vkms_vblank_simulate: vblank timer overrun
[  379.377623][   T91] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  379.415665][   T34] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  379.446057][   T34] usb 7-1: Using ep0 maxpacket: 16
[  379.448711][   T34] usb 7-1: too many configurations: 250, using maximum allowed: 8
[  379.453422][   T34] usb 7-1: unable to read config index 0 descriptor/start: -61
[  379.457704][   T34] usb 7-1: can't read configurations, error -61
[  379.585603][   T34] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  379.606048][   T34] usb 7-1: Using ep0 maxpacket: 16
[  379.608159][   T34] usb 7-1: too many configurations: 250, using maximum allowed: 8
[  379.613245][   T34] usb 7-1: unable to read config index 0 descriptor/start: -61
[  379.615818][   T34] usb 7-1: can't read configurations, error -61
[  379.624054][   T34] usb usb7-port1: unable to enumerate USB device
[  379.766625][ T6054] usb 10-1: new high-speed USB device number 22 using dummy_hcd
[  379.770926][   T40] kauditd_printk_skb: 26 callbacks suppressed
[  379.770937][   T40] audit: type=1326 audit(1755720414.363:3045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.0.1988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  379.779724][   T40] audit: type=1326 audit(1755720414.363:3046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.0.1988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  379.786999][   T40] audit: type=1326 audit(1755720414.363:3047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.0.1988" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  379.793769][   T40] audit: type=1326 audit(1755720414.363:3048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.0.1988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  379.800414][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  379.800739][   T40] audit: type=1326 audit(1755720414.363:3049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.0.1988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  379.809385][   T40] audit: type=1326 audit(1755720414.363:3050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.0.1988" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  379.816124][   T40] audit: type=1326 audit(1755720414.363:3051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.0.1988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  379.822879][   T40] audit: type=1326 audit(1755720414.363:3052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.0.1988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  379.829727][   T40] audit: type=1326 audit(1755720414.363:3053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.0.1988" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  379.836394][   T40] audit: type=1326 audit(1755720414.363:3054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.0.1988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  379.925589][ T6054] usb 10-1: Using ep0 maxpacket: 32
[  379.928776][ T6054] usb 10-1: config index 0 descriptor too short (expected 156, got 27)
[  379.931370][ T6054] usb 10-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  379.934759][ T6054] usb 10-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 173, changing to 11
[  379.943141][ T6054] usb 10-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 58427, setting to 1024
[  379.947292][ T6054] usb 10-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  379.951356][ T6054] usb 10-1: config 0 interface 0 has no altsetting 0
[  379.954988][ T6054] usb 10-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  379.957967][ T6054] usb 10-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  379.960593][ T6054] usb 10-1: Product: syz
[  379.961954][ T6054] usb 10-1: Manufacturer: syz
[  379.963434][ T6054] usb 10-1: SerialNumber: syz
[  379.968844][ T6054] usb 10-1: config 0 descriptor??
[  379.972355][T13332] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  379.979478][ T6054] ldusb 10-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  379.989907][ T6054] ldusb 10-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  380.027174][T13352] rdma_rxe: rxe_newlink: failed to add lo
[  380.206709][T13328] ldusb 10-1:0.0: Write buffer overflow, 1 bytes dropped
[  380.257903][    C3] ldusb 10-1:0.0: usb_submit_urb failed (-19)
[  380.259904][   T54] usb 10-1: USB disconnect, device number 22
[  380.262314][T13328] ldusb 10-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71
[  380.264586][   T54] ldusb 10-1:0.0: LD USB Device #0 now disconnected
[  381.855551][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  381.855604][ T5977] Bluetooth: hci4: command 0x1003 tx timeout
[  381.918192][T13361] validate_nla: 38 callbacks suppressed
[  381.918204][T13361] netlink: 'syz.0.1992': attribute type 1 has an invalid length.
[  381.922939][T13361] netlink: 'syz.0.1992': attribute type 1 has an invalid length.
[  381.926022][T13361] netlink: 'syz.0.1992': attribute type 1 has an invalid length.
[  381.928571][T13361] netlink: 'syz.0.1992': attribute type 1 has an invalid length.
[  381.931152][T13361] netlink: 'syz.0.1992': attribute type 1 has an invalid length.
[  381.934179][T13361] netlink: 'syz.0.1992': attribute type 1 has an invalid length.
[  381.937295][T13361] netlink: 'syz.0.1992': attribute type 1 has an invalid length.
[  381.939850][T13361] netlink: 'syz.0.1992': attribute type 1 has an invalid length.
[  381.942428][T13361] netlink: 'syz.0.1992': attribute type 1 has an invalid length.
[  381.945084][T13361] netlink: 'syz.0.1992': attribute type 1 has an invalid length.
[  382.089900][T13368] __nla_validate_parse: 1 callbacks suppressed
[  382.089912][T13368] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1994'.
[  382.680772][T13386] FAULT_INJECTION: forcing a failure.
[  382.680772][T13386] name failslab, interval 1, probability 0, space 0, times 0
[  382.685866][T13386] CPU: 3 UID: 0 PID: 13386 Comm: syz.0.2001 Not tainted syzkaller #0 PREEMPT(full) 
[  382.685881][T13386] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  382.685888][T13386] Call Trace:
[  382.685892][T13386]  <TASK>
[  382.685896][T13386]  dump_stack_lvl+0x16c/0x1f0
[  382.685913][T13386]  should_fail_ex+0x512/0x640
[  382.685928][T13386]  ? nh_notifier_mpath_info_init+0xa3/0x8e0
[  382.685942][T13386]  should_failslab+0xc2/0x120
[  382.685956][T13386]  __kmalloc_noprof+0xd2/0x510
[  382.685969][T13386]  nh_notifier_mpath_info_init+0xa3/0x8e0
[  382.685983][T13386]  nh_notifier_grp_info_init+0x920/0xa80
[  382.685997][T13386]  call_nexthop_notifiers+0x28c/0x390
[  382.686009][T13386]  ? __pfx_call_nexthop_notifiers+0x10/0x10
[  382.686023][T13386]  ? call_nexthop_notifiers+0x229/0x390
[  382.686036][T13386]  replace_nexthop_single_notify+0x5eb/0x6d0
[  382.686049][T13386]  ? rtm_new_nexthop+0x22ee/0x84e0
[  382.686064][T13386]  rtm_new_nexthop+0x5d09/0x84e0
[  382.686080][T13386]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  382.686093][T13386]  ? kasan_save_free_info+0x3b/0x60
[  382.686103][T13386]  ? __kasan_slab_free+0x60/0x70
[  382.686114][T13386]  ? kmem_cache_free+0x2d1/0x4d0
[  382.686125][T13386]  ? kfree_skbmem+0x1a4/0x1f0
[  382.686135][T13386]  ? consume_skb+0xcc/0x100
[  382.686148][T13386]  ? nlmon_xmit+0xa5/0xe0
[  382.686162][T13386]  ? dev_hard_start_xmit+0x97/0x740
[  382.686172][T13386]  ? __dev_queue_xmit+0xa46/0x4490
[  382.686182][T13386]  ? netlink_deliver_tap+0xa87/0xd30
[  382.686195][T13386]  ? netlink_unicast+0x64c/0x870
[  382.686208][T13386]  ? netlink_sendmsg+0x8d1/0xdd0
[  382.686220][T13386]  ? ____sys_sendmsg+0xa95/0xc70
[  382.686235][T13386]  ? ___sys_sendmsg+0x134/0x1d0
[  382.686247][T13386]  ? __sys_sendmsg+0x16d/0x220
[  382.686259][T13386]  ? __do_fast_syscall_32+0x7c/0x3a0
[  382.686272][T13386]  ? do_fast_syscall_32+0x32/0x80
[  382.686285][T13386]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  382.686304][T13386]  ? rcu_is_watching+0x12/0xc0
[  382.686332][T13386]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  382.686357][T13386]  ? kfree_skbmem+0x1a4/0x1f0
[  382.686367][T13386]  ? consume_skb+0xcc/0x100
[  382.686383][T13386]  ? rcu_is_watching+0x12/0xc0
[  382.686393][T13386]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  382.686406][T13386]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  382.686423][T13386]  ? rcu_is_watching+0x12/0xc0
[  382.686438][T13386]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  382.686455][T13386]  ? __pfx_rtm_new_nexthop+0x10/0x10
[  382.686468][T13386]  ? rtnetlink_rcv_msg+0x95b/0xe90
[  382.686481][T13386]  rtnetlink_rcv_msg+0x95b/0xe90
[  382.686496][T13386]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  382.686511][T13386]  ? ref_tracker_free+0x37c/0x830
[  382.686528][T13386]  netlink_rcv_skb+0x155/0x420
[  382.686541][T13386]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  382.686555][T13386]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  382.686571][T13386]  ? netlink_deliver_tap+0x1ae/0xd30
[  382.686584][T13386]  netlink_unicast+0x5aa/0x870
[  382.686598][T13386]  ? __pfx_netlink_unicast+0x10/0x10
[  382.686612][T13386]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  382.686627][T13386]  netlink_sendmsg+0x8d1/0xdd0
[  382.686641][T13386]  ? __pfx_netlink_sendmsg+0x10/0x10
[  382.686655][T13386]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  382.686667][T13386]  ____sys_sendmsg+0xa95/0xc70
[  382.686683][T13386]  ? __pfx_____sys_sendmsg+0x10/0x10
[  382.686698][T13386]  ? get_compat_msghdr+0x11a/0x170
[  382.686712][T13386]  ? kstrtouint_from_user+0x13c/0x1d0
[  382.686726][T13386]  ___sys_sendmsg+0x134/0x1d0
[  382.686737][T13386]  ? get_pid_task+0xfc/0x250
[  382.686752][T13386]  ? __pfx____sys_sendmsg+0x10/0x10
[  382.686771][T13386]  ? rcu_is_watching+0x12/0xc0
[  382.686785][T13386]  __sys_sendmsg+0x16d/0x220
[  382.686798][T13386]  ? __pfx___sys_sendmsg+0x10/0x10
[  382.686813][T13386]  ? rcu_is_watching+0x12/0xc0
[  382.686824][T13386]  __do_fast_syscall_32+0x7c/0x3a0
[  382.686838][T13386]  do_fast_syscall_32+0x32/0x80
[  382.686851][T13386]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  382.686864][T13386] RIP: 0023:0xf70ee579
[  382.686872][T13386] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  382.686893][T13386] RSP: 002b:00000000f54de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  382.686905][T13386] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  382.686912][T13386] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  382.686918][T13386] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  382.686924][T13386] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  382.686930][T13386] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  382.686940][T13386]  </TASK>
[  382.887240][T13389] 9pnet_virtio: no channels available for device syz
[  383.340607][T13407] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  383.416180][  T880] vhci_hcd: vhci_device speed not set
[  383.466886][T13416] 8021q: adding VLAN 0 to HW filter on device batadv0
[  383.805084][T13429] s
z1: rxe_newlink: already configured on lo
[  383.829166][T13432] KVM: debugfs: duplicate directory 13432-8
[  384.495817][   T91] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  384.505807][   T91] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  384.655583][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  384.655597][ T5977] Bluetooth: hci4: command 0x1003 tx timeout
[  384.851467][T13444] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2017'.
[  384.854388][T13444] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2017'.
[  384.949661][T13453] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2020'.
[  386.068439][   T40] kauditd_printk_skb: 62 callbacks suppressed
[  386.068454][   T40] audit: type=1326 audit(1755720420.663:3117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13466 comm="syz.5.2026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  386.079668][   T40] audit: type=1326 audit(1755720420.673:3118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13466 comm="syz.5.2026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  386.087397][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  386.088390][   T40] audit: type=1326 audit(1755720420.673:3119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13466 comm="syz.5.2026" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  386.098848][   T40] audit: type=1326 audit(1755720420.673:3120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13466 comm="syz.5.2026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  386.107729][   T40] audit: type=1326 audit(1755720420.673:3121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13466 comm="syz.5.2026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  386.116647][   T40] audit: type=1326 audit(1755720420.673:3122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13466 comm="syz.5.2026" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  386.125204][   T40] audit: type=1326 audit(1755720420.673:3123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13466 comm="syz.5.2026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  386.134307][   T40] audit: type=1326 audit(1755720420.673:3124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13466 comm="syz.5.2026" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  386.143150][   T40] audit: type=1326 audit(1755720420.673:3125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13466 comm="syz.5.2026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  386.151668][   T40] audit: type=1326 audit(1755720420.673:3126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13466 comm="syz.5.2026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  386.660106][T13473] 9pnet_fd: Insufficient options for proto=fd
[  386.679660][T13473] can: request_module (can-proto-5) failed.
[  388.096245][ T5977] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  388.431103][   T53] usb 10-1: new high-speed USB device number 23 using dummy_hcd
[  388.477570][T13511] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  388.585549][   T53] usb 10-1: Using ep0 maxpacket: 8
[  388.588618][   T53] usb 10-1: config index 0 descriptor too short (expected 301, got 45)
[  388.591226][   T53] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  388.594630][   T53] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  388.597900][   T53] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  388.600985][   T53] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  388.604989][   T53] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  388.607959][   T53] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  388.705421][T13518] s
z1: rxe_newlink: already configured on lo
[  389.600110][   T53] usb 10-1: GET_CAPABILITIES returned 0
[  389.603027][   T53] usbtmc 10-1:16.0: can't read capabilities
[  389.608225][   T53] usb 10-1: USB disconnect, device number 23
[  389.889802][T13524] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2042'.
[  389.954319][T13535] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  389.957220][T13535] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  389.959860][T13535] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  390.255939][   T61] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  390.259454][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  390.265709][   T34] usb 9-1: new high-speed USB device number 30 using dummy_hcd
[  390.294289][   T13] Bluetooth: hci4: Frame reassembly failed (-84)
[  390.445556][   T34] usb 9-1: Using ep0 maxpacket: 16
[  390.448896][   T34] usb 9-1: config 0 has no interfaces?
[  390.457832][   T34] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  390.460737][   T34] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  390.463232][   T34] usb 9-1: Product: syz
[  390.464562][   T34] usb 9-1: Manufacturer: syz
[  390.466343][   T34] usb 9-1: SerialNumber: syz
[  390.471085][   T34] usb 9-1: config 0 descriptor??
[  390.791830][   T34] usb 9-1: USB disconnect, device number 30
[  391.544108][   T40] kauditd_printk_skb: 73 callbacks suppressed
[  391.544119][   T40] audit: type=1326 audit(1755720426.133:3200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.2.2050" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  391.554058][   T40] audit: type=1326 audit(1755720426.143:3201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.2.2050" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  391.563300][   T40] audit: type=1326 audit(1755720426.143:3202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.2.2050" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  391.570471][   T40] audit: type=1326 audit(1755720426.143:3203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.2.2050" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  391.585704][   T40] audit: type=1326 audit(1755720426.143:3204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.2.2050" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  391.592662][   T40] audit: type=1326 audit(1755720426.143:3205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.2.2050" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  391.600007][   T40] audit: type=1326 audit(1755720426.143:3206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.2.2050" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  391.606867][   T40] audit: type=1326 audit(1755720426.143:3207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.2.2050" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  391.614098][   T40] audit: type=1326 audit(1755720426.143:3208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.2.2050" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  391.621418][   T40] audit: type=1326 audit(1755720426.143:3209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13554 comm="syz.2.2050" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  392.335620][ T5977] Bluetooth: hci4: command 0x1003 tx timeout
[  392.348625][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  392.909890][T13594] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2061'.
[  392.912696][T13594] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2061'.
[  392.956042][T13601] validate_nla: 41 callbacks suppressed
[  392.956054][T13601] netlink: 'syz.4.2063': attribute type 1 has an invalid length.
[  392.962346][T13601] netlink: 'syz.4.2063': attribute type 1 has an invalid length.
[  392.964883][T13601] netlink: 'syz.4.2063': attribute type 1 has an invalid length.
[  392.967462][T13601] netlink: 'syz.4.2063': attribute type 1 has an invalid length.
[  392.979697][T13601] netlink: 'syz.4.2063': attribute type 1 has an invalid length.
[  392.982156][T13601] netlink: 'syz.4.2063': attribute type 1 has an invalid length.
[  392.984940][T13601] netlink: 'syz.4.2063': attribute type 1 has an invalid length.
[  392.989306][T13601] netlink: 'syz.4.2063': attribute type 1 has an invalid length.
[  392.992510][T13601] netlink: 'syz.4.2063': attribute type 1 has an invalid length.
[  392.995143][T13601] netlink: 'syz.4.2063': attribute type 1 has an invalid length.
[  393.485221][T13628] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2072'.
[  393.489839][T13628] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2072'.
[  393.492127][T13642] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2075'.
[  394.067328][T11874] Bluetooth: hci4: Frame reassembly failed (-84)
[  394.388778][T13679] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2084'.
[  394.391660][T13679] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2084'.
[  395.156526][   T74] Bluetooth: hci5: Frame reassembly failed (-84)
[  395.159046][   T74] Bluetooth: hci5: Frame reassembly failed (-84)
[  395.296051][   T61] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  396.025864][   T74] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  396.095578][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  396.095625][T12581] Bluetooth: hci4: command 0x1003 tx timeout
[  396.875580][ T6055] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  397.029623][ T6055] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  397.033733][ T6055] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  397.036950][ T6055] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  397.041069][ T6055] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  397.043821][ T6055] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  397.048044][ T6055] usb 7-1: config 0 descriptor??
[  397.131298][T13719] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2097'.
[  397.215602][ T5333] Bluetooth: hci5: command 0x1003 tx timeout
[  397.215684][ T5977] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  397.248186][T13721] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2098'.
[  398.021921][T13737] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2104'.
[  398.025316][T13737] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2104'.
[  398.326540][T13743] QAT: Invalid ioctl 21531
[  398.510209][   T40] kauditd_printk_skb: 103 callbacks suppressed
[  398.511309][   T40] audit: type=1326 audit(1755720433.103:3313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13744 comm="syz.5.2107" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  398.531999][   T40] audit: type=1326 audit(1755720433.103:3314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13744 comm="syz.5.2107" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  398.545583][   T40] audit: type=1326 audit(1755720433.103:3315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13744 comm="syz.5.2107" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  398.559889][   T40] audit: type=1326 audit(1755720433.103:3316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13744 comm="syz.5.2107" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  398.567151][   T40] audit: type=1326 audit(1755720433.103:3317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13744 comm="syz.5.2107" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  398.574082][   T40] audit: type=1326 audit(1755720433.103:3318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13744 comm="syz.5.2107" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  398.590810][   T40] audit: type=1326 audit(1755720433.103:3319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13744 comm="syz.5.2107" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  398.604812][   T40] audit: type=1326 audit(1755720433.103:3320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13744 comm="syz.5.2107" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  398.619646][   T40] audit: type=1326 audit(1755720433.103:3321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13744 comm="syz.5.2107" exe="/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  398.627171][   T40] audit: type=1326 audit(1755720433.103:3322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13744 comm="syz.5.2107" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  399.621857][T13700] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  399.624763][T13700] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  399.629562][T13700] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  399.632065][T13700] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  399.651246][ T6055] usbhid 7-1:0.0: can't add hid device: -71
[  399.662437][ T6055] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  399.666454][ T6055] usb 7-1: USB disconnect, device number 40
[  399.775836][ T5977] Bluetooth: hci2: command 0x0c1a tx timeout
[  399.888142][T13787] validate_nla: 95 callbacks suppressed
[  399.888154][T13787] netlink: 'syz.0.2121': attribute type 1 has an invalid length.
[  399.893198][T13787] netlink: 'syz.0.2121': attribute type 1 has an invalid length.
[  399.897875][T13787] netlink: 'syz.0.2121': attribute type 1 has an invalid length.
[  399.900830][T13787] netlink: 'syz.0.2121': attribute type 1 has an invalid length.
[  399.903999][T13787] netlink: 'syz.0.2121': attribute type 1 has an invalid length.
[  399.907282][T13787] netlink: 'syz.0.2121': attribute type 1 has an invalid length.
[  399.909694][T13787] netlink: 'syz.0.2121': attribute type 1 has an invalid length.
[  399.912275][T13787] netlink: 'syz.0.2121': attribute type 1 has an invalid length.
[  399.914805][T13787] netlink: 'syz.0.2121': attribute type 1 has an invalid length.
[  399.917670][T13787] netlink: 'syz.0.2121': attribute type 1 has an invalid length.
[  400.496018][   T91] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  400.551227][T13809] tmpfs: Cannot change global quota limit on remount
[  400.605624][T13811] lo speed is unknown, defaulting to 1000
[  400.742027][T13811] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  400.818500][T13827] syzkaller0: entered promiscuous mode
[  400.820165][T13827] syzkaller0: entered allmulticast mode
[  400.952699][T13832] netlink: 2 bytes leftover after parsing attributes in process `syz.2.2131'.
[  401.695651][ T5977] Bluetooth: hci4: command 0x1003 tx timeout
[  401.695669][T12581] Bluetooth: hci1: command 0x0c1a tx timeout
[  401.695961][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  401.697729][ T5333] Bluetooth: hci3: command 0x0c1a tx timeout
[  401.775809][T11874] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  401.855710][T13839] Bluetooth: hci2: command 0x0c1a tx timeout
[  401.907071][T13853] veth0: entered promiscuous mode
[  401.909279][T13853] netlink: 71 bytes leftover after parsing attributes in process `syz.4.2138'.
[  401.924641][T13852] veth0: left promiscuous mode
[  402.118520][T13857] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2139'.
[  402.122135][T13857] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2139'.
[  402.496351][T13859] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2140'.
[  402.710639][   T74] Bluetooth: hci4: Frame reassembly failed (-84)
[  404.735647][ T5971] Bluetooth: hci4: command 0x1003 tx timeout
[  404.735681][T13839] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  404.759922][ T5956] BUG: sleeping function called from invalid context at mm/vmalloc.c:3409
[  404.763533][ T5956] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 5956, name: sshd-session
[  404.768617][ T5956] preempt_count: 1, expected: 0
[  404.769362][T13900] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2150'.
[  404.770256][ T5956] RCU nest depth: 0, expected: 0
[  404.770265][ T5956] INFO: lockdep is turned off.
[  404.770270][ T5956] Preemption disabled at:
[  404.770273][ T5956] [<ffffffff8b91af20>] schedule+0xe0/0x3a0
[  404.770296][ T5956] CPU: 2 UID: 0 PID: 5956 Comm: sshd-session Not tainted syzkaller #0 PREEMPT(full) 
[  404.770309][ T5956] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  404.770316][ T5956] Call Trace:
[  404.770320][ T5956]  <TASK>
[  404.770324][ T5956]  dump_stack_lvl+0x16c/0x1f0
[  404.770338][ T5956]  __might_resched+0x3c0/0x5e0
[  404.770359][ T5956]  ? __pfx___might_resched+0x10/0x10
[  404.770372][ T5956]  ? pcpu_block_update+0x562/0x660
[  404.770394][ T5956]  ? pcpu_chunk_relocate+0x126/0x190
[  404.770409][ T5956]  vfree+0x75/0xb50
[  404.770430][ T5956]  ? rcu_is_watching+0x12/0xc0
[  404.770441][ T5956]  ? kfree+0x24f/0x4d0
[  404.770450][ T5956]  ? free_percpu+0x6db/0x13c0
[  404.770462][ T5956]  futex_hash_free+0x98/0xc0
[  404.770474][ T5956]  __mmdrop+0x33f/0x580
[  404.770486][ T5956]  ? rcu_is_watching+0x12/0xc0
[  404.770497][ T5956]  finish_task_switch.isra.0+0x7a4/0xc10
[  404.770508][ T5956]  ? __switch_to+0x7a5/0x11a0
[  404.770521][ T5956]  __schedule+0x1198/0x5de0
[  404.770531][ T5956]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  404.770545][ T5956]  ? __pfx_debug_object_activate+0x10/0x10
[  404.770559][ T5956]  ? __pfx___schedule+0x10/0x10
[  404.770572][ T5956]  ? schedule+0x2d7/0x3a0
[  404.770582][ T5956]  ? rcu_is_watching+0x12/0xc0
[  404.770591][ T5956]  ? lock_release+0x201/0x2f0
[  404.770607][ T5956]  schedule+0xe7/0x3a0
[  404.770618][ T5956]  schedule_hrtimeout_range_clock+0x217/0x320
[  404.770629][ T5956]  ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10
[  404.770640][ T5956]  ? tcp_stream_memory_free+0x157/0x1a0
[  404.770655][ T5956]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  404.770671][ T5956]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  404.770683][ T5956]  ? __pollwait+0x271/0x490
[  404.770694][ T5956]  poll_schedule_timeout.constprop.0+0xc4/0x1c0
[  404.770705][ T5956]  do_sys_poll+0xae8/0xdf0
[  404.770715][ T5956]  ? do_raw_spin_lock+0x12c/0x2b0
[  404.770732][ T5956]  ? __pfx_do_sys_poll+0x10/0x10
[  404.770747][ T5956]  ? tcp_recvmsg+0x13a/0x680
[  404.770761][ T5956]  ? tcp_recvmsg+0x13a/0x680
[  404.770776][ T5956]  ? rcu_is_watching+0x12/0xc0
[  404.770800][ T5956]  ? lock_release+0x201/0x2f0
[  404.770825][ T5956]  ? __pfx_pollwake+0x10/0x10
[  404.770843][ T5956]  ? __pfx_pollwake+0x10/0x10
[  404.770858][ T5956]  ? __pfx_pollwake+0x10/0x10
[  404.770869][ T5956]  ? __pfx_pollwake+0x10/0x10
[  404.770879][ T5956]  ? __pfx_pollwake+0x10/0x10
[  404.770889][ T5956]  ? __pfx_pollwake+0x10/0x10
[  404.770899][ T5956]  ? __pfx_pollwake+0x10/0x10
[  404.770911][ T5956]  ? rcu_is_watching+0x12/0xc0
[  404.770921][ T5956]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  404.770937][ T5956]  ? _raw_spin_unlock_irq+0x2e/0x50
[  404.770948][ T5956]  ? set_user_sigmask+0x21b/0x2b0
[  404.770958][ T5956]  ? __pfx_set_user_sigmask+0x10/0x10
[  404.770970][ T5956]  __x64_sys_ppoll+0x254/0x2d0
[  404.770981][ T5956]  ? __pfx___x64_sys_ppoll+0x10/0x10
[  404.770992][ T5956]  ? ksys_read+0x1ac/0x250
[  404.771003][ T5956]  ? __pfx_ksys_read+0x10/0x10
[  404.771016][ T5956]  do_syscall_64+0xcd/0x490
[  404.771030][ T5956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.771041][ T5956] RIP: 0033:0x7fed172a7407
[  404.771051][ T5956] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  404.771062][ T5956] RSP: 002b:00007ffef18fb740 EFLAGS: 00000202 ORIG_RAX: 000000000000010f
[  404.771072][ T5956] RAX: ffffffffffffffda RBX: 00007fed1796c300 RCX: 00007fed172a7407
[  404.771079][ T5956] RDX: 00007ffef18fb780 RSI: 0000000000000007 RDI: 00005642719f21e0
[  404.771085][ T5956] RBP: 00007ffef18fb7f0 R08: 0000000000000008 R09: 0000000000000000
[  404.771091][ T5956] R10: 00007ffef18fb880 R11: 0000000000000202 R12: 0000000000000001
[  404.771098][ T5956] R13: 00007ffef18fb880 R14: 0000000000000194 R15: 0000000000000004
[  404.771107][ T5956]  </TASK>
[  406.256035][   T74] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  406.815700][T11874] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  411.296173][   T61] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration

VM DIAGNOSIS:
20:07:18  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff8e2977c0 RBX=ffffffff8e207d58 RCX=0000000000000000 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff8b906f5e RBP=0000000000000000 RSP=ffffffff8e207d30
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b909300 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7465010 CR3=0000000024f78000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=ffffc9000e3afb88 RCX=0000000000000000 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffc9000e3afba0 RBP=ffffc9000e3afb80 RSP=ffffc9000e3af9e0
R8 =0000000000000001 R9 =0000000000000000 R10=ffffffff90ab7697 R11=0000000000000001
R12=dffffc0000000000 R13=0000000000000002 R14=ffffc9000e3afb88 R15=0000000000000000
RIP=ffffffff81976066 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880975c4000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71d3b10 CR3=00000000124e4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85616b45 RDI=ffffffff9b0f8680 RBP=ffffffff9b0f8640 RSP=ffffc90002b06f68
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=696d6f74615f6e69
R12=0000000000000000 R13=0000000000000061 R14=ffffffff9b0f8640 R15=ffffffff85616ae0
RIP=ffffffff85616b6f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fed1796c300 ffffffff 00c00000
GS =0000 ffff8880976c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055c550437660 CR3=000000004c8b1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff84956443 ffffffff8211431a 0000000200000004 0000000600040008
ZMM18=ff306a6acf304725 e74496086f220e12 ff306a6acf304725 e74496086f220e12 ff306a6acf304725 e74496086f220e12 ff306a6acf304725 e74496086f220e12
ZMM19=e112000000000000 0000000000000005 e112000000000000 0000000000000004 e112000000000000 0000000000000003 e112000000000000 0000000000000002
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692f7665642f01ff ffffffffffffffdb 0801800301000000 08060201768c0fff
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff020780025a 0800000800080075 f2010ca40007d003 01040007cc030509
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000df4fa01000104 090100000001001b 0209010000003022 151207c00882df1d
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a105254000000201 1001122808000326 908808000f8da080 8008000180020602
ZMM25=81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c
ZMM26=36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e
ZMM27=0575fead0575fead 0575fead0575fead 0575fead0575fead 0575fead0575fead 0575fead0575fead 0575fead0575fead 0575fead0575fead 0575fead0575fead
ZMM28=000001300000012f 0000012e0000012d 0000012c0000012b 0000012a00000129 0000012800000127 0000012600000125 0000012400000123 0000012200000121
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=c4220000c4220000 c4220000c4220000 c4220000c4220000 c4220000c4220000 c4220000c4220000 c4220000c4220000 c4220000c4220000 c4220000c4220000
info registers vcpu 3

CPU#3
RAX=00000000004ec3f4 RBX=0000000000000003 RCX=ffffffff8b908bf9 RDX=ffffed10056a6656
RSI=ffffffff8c162c80 RDI=ffffffff8190cca1 RBP=ffffed1003a5f000 RSP=ffffc9000048fdf8
R8 =0000000000000000 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000001
R12=0000000000000003 R13=ffff88801d2f8000 R14=ffffffff90ab7690 R15=0000000000000000
RIP=ffffffff8b90775f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f3085bb0 CR3=000000004c8b1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=d3481a037f8a9f34 e2efbc63fee75344 d3481a037f8a9f34 e2efbc63fee75344 d3481a037f8a9f34 e2efbc63fee75344 d3481a037f8a9f34 e2efbc63fee75344
ZMM18=ff306a6acf304725 e74496086f220e12 ff306a6acf304725 e74496086f220e12 ff306a6acf304725 e74496086f220e12 ff306a6acf304725 e74496086f220e12
ZMM19=e212000000000000 0000000000000004 e212000000000000 0000000000000003 e212000000000000 0000000000000002 e212000000000000 0000000000000001
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 55b1ffffffff8239 1c24ffffffff8239 147cffffffff8239 142effffffff8239
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1719ffffffff8239 1e18ffffffff8239 19e3ffffffff8239 25b7ffffffff8239
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020ffffffff8239 2c3fffffffff8239 d63effffffff8239 dcb0ffffffff8232
ZMM24=8dce37bb8dce37bb 8dce37bb8dce37bb 8dce37bb8dce37bb 8dce37bb8dce37bb 8dce37bb8dce37bb 8dce37bb8dce37bb 8dce37bb8dce37bb 8dce37bb8dce37bb
ZMM25=81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c 81d02b1c81d02b1c
ZMM26=36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e 36c7980e36c7980e
ZMM27=0575fead0575fead 0575fead0575fead 0575fead0575fead 0575fead0575fead 0575fead0575fead 0575fead0575fead 0575fead0575fead 0575fead0575fead
ZMM28=000000a00000009f 0000009e0000009d 0000009c0000009b 0000009a00000099 0000009800000097 0000009600000095 0000009400000093 0000009200000091
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=c9220000c9220000 c9220000c9220000 c9220000c9220000 c9220000c9220000 c9220000c9220000 c9220000c9220000 c9220000c9220000 c9220000c9220000