last executing test programs:

4m51.273241432s ago: executing program 3 (id=548):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x12, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000280)=<r0=>0x0)
prlimit64(r0, 0x8, &(0x7f0000000140)={0x10001, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
openat$iommufd(0xffffffffffffff9c, 0x0, 0x64c842, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000001c0)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
unshare(0x2040400)
syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000180)=ANY=[], 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x118d, &(0x7f00000000c0)={0x0, 0x8d2dc, 0x0, 0xffffffff, 0xc2}, &(0x7f00000003c0)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
socket$inet6(0xa, 0x2, 0x0)
epoll_create1(0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00')
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r4, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(r5, 0x47f5, 0x0, 0x0, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)

4m50.021791331s ago: executing program 3 (id=553):
r0 = openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$CDROM_GET_MCN(r0, 0x324, 0x0)
openat$iommufd(0xffffff9c, &(0x7f0000000100), 0x2da041, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x20004080}, 0x2404c044)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000002c0), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c0100001d00100008000000fedbdf25fe880000ee9cdff1accd6cdf000000000008000000000000000000a0000000000088186d9ced6231cbbe3456edfa602cd092d1d48bfe8a6198c73ada9f9354f05aefb7349d5f4cf5706cbe1cdb4c92a2", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="e00000010000000000000000000000000000000033000000e00000010000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000200000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000800000008000000ffffffff04001b0024000900"/212], 0x11c}}, 0x0)
dup(0xffffffffffffffff)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x28}}, 0x4800)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x2)
write$UHID_INPUT(r5, &(0x7f00000025c0)={0x9, {"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", 0x1000}}, 0x1006)

4m49.007040981s ago: executing program 3 (id=555):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000440)={'#! ', './file1'}, 0xb)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r0, 0x0)
keyctl$join(0x1, &(0x7f0000000000)={'syz', 0x0})
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x46, &(0x7f0000000040)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x2, 0x5, 0x38, 0x66, 0x0, 0x8, 0x1, 0x0, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x17}}, @redirect={0x5, 0x2, 0x0, @multicast1, {0x5, 0x4, 0x3, 0x1f, 0x800, 0x69, 0x7f2, 0x48, 0x1, 0xf, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote}, "2b3e2a0daee29c99"}}}}}, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x37)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet(0xa, 0x801, 0x84)
listen(r3, 0x8)
r4 = syz_io_uring_setup(0x5ce, &(0x7f0000000240)={0x0, 0x6734, 0x80, 0x40000, 0x34f}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
unshare(0x2a020480)
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r7, 0x40000000af01, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r8 = openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(r8, &(0x7f000001a300)={&(0x7f000001a200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f000001a2c0)={&(0x7f000001a240)={0x6c, 0x1, 0x2, 0x3, 0x0, 0x0, {0xa, 0x0, 0x7}, [@CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x4}, @CTA_EXPECT_MASTER={0x44, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_EXPECT_HELP_NAME={0xa, 0x6, 'H.245\x00'}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x40081)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0xb2752a96f73d6e14, 0x0, 0x0, 0x0, 0x23456})
fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, 0x0)
io_uring_enter(r4, 0x57de, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f000001a140)=@IORING_OP_SEND={0x1a, 0x1, 0x0, r1, 0x0, &(0x7f0000019140)="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", 0x1000, 0x20040000, 0x1})
pread64(r1, &(0x7f0000000080)=""/102356, 0x18fd4, 0x200)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet_buf(r3, 0x0, 0x11, &(0x7f000001a180)="27b940eba1df1689a0db07650411622f2071f9d2852e8e21ec45613a1380cad7aa5fa7a4606b6985547860", 0x2b)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r9=>0xffffffffffffffff})
ioctl$FIDEDUPERANGE(r9, 0xc0189436, &(0x7f00000005c0)=ANY=[@ANYBLOB="fdffffffffcf3b316b9cffffffffffff7f"])

4m48.951953162s ago: executing program 3 (id=557):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000001f80)=ANY=[@ANYBLOB="9feb00000c0000000c00000005000400100000000000008c05000000000000e4000e006619794aeaeffb09161cb7fcef6a54587e3aa80fab2159043a72d8da4b7e9a804879a9aa3fe61a63fc04acf364b0e4e464d58f07eae788190b8aeaf956b7551e8288d5209ab801871c7130180aa87e0182da461c4b541a0bd5a8382560ba6e9b12818fa319abbf019e9e1fd463"], 0x0, 0x29, 0x0, 0x4}, 0x28)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', 0x0, 0x0, 0x101097, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, 0x0, 0xffffffffffffff9c, 0x0, 0x260)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0x74}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000800)={"54a41f7614f42e2f8c19cb810aea5bce", 0x0, 0x0, {0x2, 0x616}, {0x100, 0x4}, 0x2, [0x8, 0x0, 0x2, 0x1, 0x10000000, 0x7, 0x8, 0x5, 0x7, 0x2d, 0x0, 0x7, 0x6f740588, 0x1fffc0000000, 0x10000, 0x4]})
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
pipe(&(0x7f00000007c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
vmsplice(r4, &(0x7f00000000c0)=[{&(0x7f0000000180)='w', 0x1}], 0x1, 0x1)
close(r4)
r5 = socket(0x1e, 0x1, 0x0)
connect$tipc(r5, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r5, &(0x7f0000000340), 0x2000011a)
sendmmsg$sock(r5, &(0x7f0000001600)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)="15", 0x1}], 0x1}}], 0x1, 0x40001)
recvmsg$unix(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000000440)=""/4096, 0x1000}], 0x1}, 0x12000)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r4, 0x7b2, &(0x7f0000000600)={&(0x7f0000000f80)=[0x1, 0xfffffff7, 0xfffffffc, 0x8, 0x2, 0x0, 0x4, 0x6, 0xdfa8, 0x6, 0x4, 0x1, 0x81, 0x3, 0xfffffffb, 0xa, 0x4, 0x110, 0x1ff, 0x9, 0x2, 0x80000001, 0xd, 0x1, 0x9, 0x7, 0xfff, 0xbda, 0x3, 0xfffffffb, 0x0, 0xf3cd, 0x10001, 0x3, 0x4, 0x6, 0x401, 0x290d, 0x4, 0x2, 0x0, 0xca, 0x4, 0xc000000, 0x1, 0x8001, 0x4, 0xfffffff6, 0x1, 0x7, 0x0, 0x6, 0x57d5f43b, 0x400, 0x120, 0x4, 0x0, 0x1, 0x200, 0x3, 0x3, 0xff, 0x4, 0x9, 0x7, 0x2, 0x40057, 0xdc4, 0x5, 0x3, 0xf4, 0x2, 0x4, 0x85, 0x10001, 0x5, 0x0, 0x6, 0x2, 0x0, 0xfffffff8, 0x1, 0x8, 0x1, 0x8, 0x3d, 0x2, 0xfffffff8, 0x7, 0x0, 0x7, 0x7, 0x7, 0x8, 0x4, 0x3, 0x2, 0x400, 0x21e, 0x3, 0xa994, 0x8, 0x2, 0x3, 0xd59, 0x2, 0x8, 0x6c1f, 0x5, 0x9, 0x9, 0x8, 0x20, 0x4, 0x2, 0x8001, 0xd9, 0x7d76, 0x9, 0xfffff800, 0x80000000, 0x3, 0x2, 0x10001, 0xd, 0x0, 0x6, 0x8a, 0x8, 0x1, 0x8, 0x1, 0xd, 0xe9, 0x7, 0x8, 0xb2e2, 0x6, 0x7, 0x4, 0x401, 0xc, 0xdd4f, 0x15b6, 0x5, 0x1, 0x200, 0x4, 0x939e, 0x2, 0x4, 0x5, 0x3ff, 0x1, 0x7, 0x5d6ed544, 0x7, 0x9, 0x401, 0x9d, 0x7ff, 0x1ff, 0x0, 0x7ff, 0x3, 0xee93, 0x5, 0x8, 0x4, 0x80, 0x1ff, 0x1000, 0x7a, 0x4, 0x0, 0x9, 0x1, 0x9, 0xa, 0x0, 0x0, 0x80000000, 0x9, 0xfffffffb, 0xd6, 0x200, 0x3, 0x0, 0x6, 0xa, 0x5, 0x400, 0x83, 0x2, 0x9, 0x400, 0x2, 0x0, 0x5059, 0x6, 0x4, 0x9c, 0x66e67b20, 0x3, 0xec7, 0x7, 0x2, 0x4, 0x6, 0x1, 0xc20, 0x7d, 0x1, 0x1, 0x1ff, 0x800, 0x3ff, 0xfffffffe, 0x9, 0x3ff, 0x1, 0x5d7, 0x8, 0xb476, 0x2, 0x5, 0xb1, 0x9, 0xdb8, 0x7, 0x1, 0x8, 0xb, 0xa3, 0xec, 0x10, 0xaf, 0x7fff, 0xb2e7, 0x1, 0x81, 0x2, 0x3, 0x0, 0x3a, 0x42a, 0xffff0001, 0x4d31d16, 0x7, 0x0, 0x30, 0x4, 0x6, 0x1, 0x97, 0xeade, 0xa, 0x800, 0x0, 0x9, 0x7fffffff, 0xffff85da, 0x4, 0x5, 0x52, 0x6, 0x8, 0x1, 0x8, 0xac9, 0x6, 0xa, 0x7, 0x5, 0x9, 0x8, 0xb4f, 0x0, 0x7, 0x5, 0x3, 0xc, 0x35c8, 0xfffffffe, 0x3, 0x2ffb, 0x7f, 0x6, 0x6, 0x0, 0x200, 0x9, 0x4000000, 0x0, 0x8, 0x4, 0x8, 0x3, 0xda, 0x7, 0x5, 0x5, 0x100, 0x2, 0x7, 0xe4dd, 0xc, 0x3, 0xfff, 0x4, 0xf, 0x0, 0x6, 0x53e3, 0x31f, 0x6, 0x9, 0x10, 0x4, 0x1575, 0x0, 0xdad6, 0x5, 0x15, 0x80000000, 0x5, 0x0, 0x7, 0xbdf, 0x7, 0x80000000, 0x13f3, 0x4, 0x4, 0x9, 0xfffffff8, 0x2, 0x100, 0x6, 0x3, 0x54, 0x2, 0x0, 0x7, 0x101, 0x8, 0x4, 0x3, 0x87a, 0x8, 0xffffff80, 0xffffff00, 0x1f, 0xaf, 0xec3, 0x9, 0xc, 0x8, 0x7, 0x0, 0x7, 0x480000, 0x2, 0x77, 0x5, 0x2, 0xc, 0xfffffffe, 0x12d, 0xc2, 0x0, 0x7, 0xffffff81, 0x9, 0x5, 0x40, 0xe767, 0x4, 0x7, 0x200, 0x5, 0x3, 0x6, 0xffffffff, 0x9, 0xa, 0x0, 0x88, 0x10000, 0x7, 0xfffffffc, 0x2, 0x200, 0x6, 0x8, 0x4, 0x0, 0x8, 0xd803, 0x9, 0xa7, 0x847, 0x4, 0x5, 0x9, 0x4, 0xb, 0x4, 0x7fffffff, 0x81, 0x9, 0xa523, 0x6, 0x8, 0x4, 0x7, 0x7, 0x4, 0x100, 0x6, 0x9, 0x4, 0x7f, 0xce, 0x2, 0x80000000, 0x7ff, 0x1, 0x7, 0x2, 0x8, 0x7, 0x6, 0x7ff, 0xffffffff, 0x4ce, 0xb20, 0xc0, 0x3, 0x1e, 0x9, 0x9, 0x1, 0x444, 0x64, 0x7ff, 0x9, 0x5, 0x6, 0x55, 0x80000000, 0x7, 0x100, 0xabe, 0x0, 0x9, 0x208b, 0x3, 0xfffffffc, 0xe74, 0x2, 0xf, 0x5, 0x7, 0x0, 0xe, 0x3, 0x100, 0xe, 0x4, 0x8, 0xfffffffa, 0x3, 0x7fffffff, 0x7, 0x9, 0x0, 0x7, 0x418, 0x2, 0x3, 0xffffba71, 0x4, 0x80, 0x1000, 0x83e, 0x7, 0x8e8, 0x400, 0xf, 0x4, 0x8, 0x1, 0x7ff, 0xf43, 0xe, 0x7, 0x30000000, 0x5, 0x3, 0x5e, 0x6, 0xd, 0xf, 0x80000001, 0xffff, 0x40, 0xa, 0x9, 0xdcba, 0x200, 0x4, 0x84f7, 0xfffffff7, 0x400, 0x7, 0x1, 0x8000, 0x2, 0x100, 0x9, 0x8000, 0x4, 0x0, 0x3, 0x2, 0x6, 0xd, 0x3, 0x0, 0x81, 0x2, 0x1c34c00, 0xa5, 0xffffffff, 0x8, 0x9, 0x5, 0x4, 0xc71, 0xbcc8, 0x6, 0x9, 0xa, 0x49, 0x8, 0x507, 0x10000, 0xca, 0xe3e, 0x8000, 0x5, 0x5, 0x8, 0x80000001, 0x7fffffff, 0x1, 0x3ff, 0x8a49, 0x1b, 0xffffffff, 0x8, 0x92, 0x8, 0xffff, 0x7fffffff, 0x1, 0x800, 0xd2, 0xb, 0x10000, 0xb04, 0x10001, 0x0, 0x9, 0xfff, 0x7, 0x8001, 0xff, 0xfff, 0x2, 0x2, 0xba4, 0x401, 0x8, 0x10007, 0x7, 0x3ff, 0x9, 0x7, 0x1, 0x8, 0x9, 0x0, 0x10000, 0x4c1c, 0x10000, 0x2, 0x100, 0x3, 0x4, 0x509, 0x9, 0x9, 0xb, 0x7, 0x4, 0x8, 0x4, 0x2, 0xfffffff8, 0xffffff22, 0x8, 0x0, 0x5, 0x8000, 0x4, 0xb4, 0x6, 0x3f5, 0x8, 0x800, 0x3, 0x0, 0x941, 0x8, 0x5, 0xe, 0x7ff, 0x6, 0xf0, 0x800, 0xaa000000, 0x7, 0x8001, 0x400, 0x80, 0xfffffffd, 0x401, 0x14, 0x80000001, 0x2, 0x1, 0x4, 0x8001, 0x0, 0x5, 0x0, 0x7, 0x5, 0x10000, 0x7, 0xe2, 0x32, 0xf, 0x401, 0x100, 0x8, 0x0, 0x6, 0x5, 0x9, 0x6, 0xffffffff, 0x8001, 0x81, 0x2, 0x4, 0x10, 0x7fffffff, 0x9, 0x3, 0xfffffff8, 0x1c, 0x6, 0xf, 0x7, 0x800, 0x8, 0xd52, 0x5, 0x10, 0x400, 0x4, 0x90d, 0xcad, 0x7, 0x5, 0x802, 0xe, 0x3, 0x6, 0x0, 0x3, 0x6, 0xb, 0x50bb, 0x2, 0x0, 0x1, 0x8, 0x2, 0x7fffffff, 0x1, 0x7, 0x1, 0x4, 0x0, 0xc89, 0x1, 0x9, 0x1, 0x2, 0x5, 0x5, 0x7, 0x8, 0x1, 0x4, 0x8514, 0x6, 0x63a, 0xba7, 0xfffffff0, 0xc00, 0x4, 0x52d9b7db, 0x4, 0x1, 0x401, 0x2, 0x2, 0x2, 0x1, 0x3, 0x7fff, 0x5, 0x1, 0xd445, 0x3, 0x9, 0x7f, 0x1, 0x10002, 0xf2d4, 0x19f8, 0x7, 0xc1, 0x5, 0x3, 0x8, 0x401, 0x7, 0x10000, 0x0, 0x6, 0x0, 0x1, 0x48, 0x0, 0xbff, 0x8001, 0x101, 0x6, 0x7, 0x4, 0x6, 0x6, 0x3, 0x6e, 0xc, 0x607, 0x8, 0x0, 0xfff, 0x29c, 0xfc, 0x77b2, 0x101, 0x3, 0x5, 0x9, 0x8001, 0x5, 0x4, 0x582, 0x12b, 0x6, 0x6, 0x1, 0x6, 0x2, 0xf3, 0x8, 0x6, 0x70, 0x101, 0x7, 0x7ff, 0xa00, 0x5e, 0xf3bb, 0x153, 0xc5e, 0xffffffff, 0x4, 0x379b, 0x7, 0x8, 0xe52, 0x1000, 0x7d, 0x8, 0x8a, 0x40, 0x2e71, 0x200, 0x4000000, 0x23d, 0x81, 0x7fc, 0x800, 0x5, 0x40, 0x5, 0x5, 0x15, 0x1, 0x8, 0x5, 0x4a22f6d7, 0xeae, 0x3, 0x0, 0x14, 0x7, 0x7fffffff, 0x4ca9, 0x1d, 0x2acc, 0x8, 0x9, 0x8, 0x4a, 0x5, 0x80, 0x7, 0x2, 0x1, 0x65, 0xf, 0x1, 0x4459f3e1, 0x6, 0x7, 0x8, 0xebb, 0xffffffff, 0xd, 0x8, 0x3, 0xa, 0x7, 0xffffff00, 0x1, 0xfffffffd, 0x6, 0x5, 0xfb46, 0x100, 0xcc, 0x4c, 0x1, 0x7, 0x2, 0x2, 0x2, 0x1ff, 0x544b, 0x8, 0x17aa, 0x0, 0x8, 0x8001, 0x8, 0x1ff, 0xb5, 0xb3, 0x10000, 0x8, 0x2, 0xffff, 0x3, 0xffff0000, 0x4, 0x7fff, 0x7, 0x6, 0xa1, 0x0, 0x8, 0x9, 0x7f, 0x7, 0x4, 0x824, 0x9, 0x65, 0x7fff, 0xfffffee9, 0xf, 0x4, 0x2, 0x6, 0x7, 0x5, 0xfff, 0x9, 0x4, 0x2, 0x7fffffff, 0xc6, 0x2, 0xffffffff, 0xab4, 0x6, 0x7, 0x2, 0x10, 0x7fffffff, 0x8, 0x7, 0x9, 0x2, 0xb, 0x165, 0xffffffff, 0x6, 0x1, 0x2, 0x5953, 0x800, 0xfffffffa, 0x5, 0xdb6, 0x7000, 0x1, 0x5, 0xfffffffc, 0x10, 0x40, 0x4, 0x8, 0xf48d, 0x2, 0xa, 0x10001, 0x9, 0xfff, 0x1000, 0x1, 0x7, 0x3, 0x3, 0x8, 0x5, 0x10001, 0xf, 0x89c, 0x3, 0x1, 0x9a8c, 0x1, 0xfffffff8, 0x7, 0x800, 0x8, 0x6, 0x2, 0x1, 0x3, 0x6, 0x400, 0x101, 0x1, 0xffff, 0x1, 0x1, 0x100, 0x7fffffff, 0x6, 0x1000, 0x2, 0x31, 0x4, 0x5, 0x5, 0xfa, 0x6, 0x7, 0xf740, 0x3, 0x5, 0x7fffffff, 0x2, 0x81, 0x3, 0x6, 0x5, 0x4, 0x3, 0x9e, 0xffffffff, 0x6, 0x0, 0xffffffff, 0x1, 0x7ff, 0x3, 0x10, 0x7fffffff, 0xd945, 0x9, 0x3ff], 0x4, 0x400, 0x93})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x200000010, &(0x7f0000000040)=0x9, 0x65)
splice(r3, 0x0, r4, 0x0, 0xfffd, 0x0)

4m47.926871453s ago: executing program 3 (id=560):
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
rt_sigaction(0x19, &(0x7f00000000c0)={&(0x7f0000000080)="366465f029144d00000081f30fc27f5e06ae0d0fd82e2e460f01d626f00994aff7000000c4c1796f960600000040cd00c4e2f1453c99f340a56544ca0c00", 0x84000004, 0x0}, 0x0, 0x8, &(0x7f0000000000))
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xb, &(0x7f0000000080)=0x10f36, 0x4)
ftruncate(r0, 0x3292e291) (fail_nth: 5)

4m47.92652156s ago: executing program 3 (id=561):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_open_dev$hiddev(&(0x7f0000000000), 0x9, 0x500040)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r2, 0x0, 0x0)
write$char_usb(r1, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0) (fail_nth: 5)
write$char_usb(r1, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r3, 0x0, 0x0, 0x10041, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f0000000280), 0x7ff, 0x2000)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r4, 0x40405515, 0x0)
connect$can_bcm(0xffffffffffffffff, &(0x7f0000000140), 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x2400c800)

4m31.851450552s ago: executing program 32 (id=561):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_open_dev$hiddev(&(0x7f0000000000), 0x9, 0x500040)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r2, 0x0, 0x0)
write$char_usb(r1, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0) (fail_nth: 5)
write$char_usb(r1, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r3, 0x0, 0x0, 0x10041, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f0000000280), 0x7ff, 0x2000)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r4, 0x40405515, 0x0)
connect$can_bcm(0xffffffffffffffff, &(0x7f0000000140), 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x2400c800)

2m6.809110406s ago: executing program 1 (id=1288):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_sfeatures={0x12, 0x1, [{0xfe}]}})

2m6.514757238s ago: executing program 1 (id=1293):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=@updpolicy={0xc4, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in=@local, 0x0, 0x0, 0x4e23, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff5f, 0x0, 0xfffffffffffffffa}}, [@mark={0xc, 0x15, {0x35075d, 0x2}}]}, 0xc4}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="b8000000150001000000000000000000e0000002000000000000000000000000fe80000000000000000000000000000e4e200000000000000a00100000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\b'], 0xb8}}, 0x0) (fail_nth: 5)

2m6.420804997s ago: executing program 1 (id=1294):
socket$inet(0x2, 0x1, 0x100)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x12, 0x4, 0x8, 0x8002}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r0, 0x0, 0x0}, 0x20)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000100))
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r3 = dup3(r2, r1, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1c, 0x0, &(0x7f0000000240)="02844c94a28f6b6301c916c66b57f7cf7e25dbd6630f6d8c5279fddd"})
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r1, 0xfffffffe)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000004a40)={0x4c, 0x0, &(0x7f0000000940)=[@reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x1040}], 0x0, 0x0, 0x0})
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sched_setscheduler(r5, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)

2m5.499509882s ago: executing program 1 (id=1299):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xb500a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000540)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2145499, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x8c)

2m5.411133191s ago: executing program 1 (id=1302):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$kcm(0x10, 0x2, 0x0)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0x0, {0x4, @random="45e3f364e554", 'sit0\x00'}}, 0x1e)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './mnt\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x4041)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000040)={0x4001}, 0xfea3)
sendmsg$nl_route(r3, 0x0, 0x0)
socket$kcm(0x29, 0x4, 0x0)
sched_setattr(0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket(0x1e, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000040))
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x801, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc3ffffff}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x20048050}, 0x0)

2m4.752435173s ago: executing program 1 (id=1307):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000440)={'#! ', './file1'}, 0xb)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r0, 0x0)
keyctl$join(0x1, &(0x7f0000000000)={'syz', 0x0})
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x46, &(0x7f0000000040)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x2, 0x5, 0x38, 0x66, 0x0, 0x8, 0x1, 0x0, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x17}}, @redirect={0x5, 0x2, 0x0, @multicast1, {0x5, 0x4, 0x3, 0x1f, 0x800, 0x69, 0x7f2, 0x48, 0x1, 0xf, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote}, "2b3e2a0daee29c99"}}}}}, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x37)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet(0xa, 0x801, 0x84)
listen(r3, 0x8)
r4 = syz_io_uring_setup(0x5ce, &(0x7f0000000240)={0x0, 0x6734, 0x80, 0x40000, 0x34f}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
unshare(0x2a020480)
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r7, 0x40000000af01, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r8 = openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(r8, &(0x7f000001a300)={&(0x7f000001a200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f000001a2c0)={&(0x7f000001a240)={0x6c, 0x1, 0x2, 0x3, 0x0, 0x0, {0xa, 0x0, 0x7}, [@CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x4}, @CTA_EXPECT_MASTER={0x44, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_EXPECT_HELP_NAME={0xa, 0x6, 'H.245\x00'}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x40081)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0xb2752a96f73d6e14, 0x0, 0x0, 0x0, 0x23456})
fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, &(0x7f0000019100)=0x2)
io_uring_enter(r4, 0x57de, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f000001a140)=@IORING_OP_SEND={0x1a, 0x1, 0x0, r1, 0x0, &(0x7f0000019140)="ae0910ade0ec98b59a6a74ece9a4b33a18c669379a5089689d85f2e46c17f89ac70d568c1f571fc84edf3d57f43693ea61ee81bbdfad2e18c0add8a6c353e03087fa7753b4b245957c41faf51ae42a12b9f0ab1d3af0ae56576d6d4d4e1bf976341e9d568960a34a8f354d674765cd0bf250818c89dfe79767f2d942a10f1563e5d9f6a6512c18fa2847905707ade82ece5042cbe803e99868d49a887783dae56f2ee29897196b837bf7235d47cd39910c49a2b0615b7d0b9e14cae9f1af02f7eb99cebe979eb82688f76a3dcd755a4d4d0e2d5d8ecee27e10505130753bfb331984e9b8c6b6fb839efba0c951a00767604280bdf8c3648326cdaed3beaf62bf429fd929f74cc7fb5554c7aa94afae080d6154ecff74a61647a26538ed26006eaccb341bcdd9761f10b4db8366a65b9129aa0e0741ce3edee9a58be41bcf95a680c42ca1b0019eb5186e3d2ff15a3095c1005d3d8a1a0da0a86a90f9786f3b8107e88ceedd84923e8d79851d302cc2ed91253f9cca3a3218f1954c49a1652cd100f4e0b3edd68be8bc2ad811289f2439d1555052777c268a4cd3599082a03fd211238bea1e9d7ae10fd5341954696755e2cdadd324a1833d480e34b7e84d2c89226cfd3b090489ed824be95968341844bd063466b1ae659f1dedfb0c4b2e558fbc25f379bc70bc3a756b965a0a07aa51dbcdbed2060a4a090c47ec7702789879f2b5b8dd937861b8017777dd217ec080f567cc9d2a4d97d3d88f08da073cebee0320eab309849b4de946dcc53ff85a941ee81dcc41bb40dd0928a91de33f374dd95f08f564392596be6cb59cd20c275033b55da5a05493459f6c1412977ca2df9fd1ad3e2a23cfa70a1d57799e2baa5448711f273f66ed30c47f5ef23429c78afbe7b15ff4ea0381f82eec417f354f8dc082afc0601bee4b9595d19c6508cfab3449a90405bc12a2cc47c97374adb2f8c2bc41c6dbccf3d24f7c2282344ee09c747f233733c8eb137396757b1db6581ed9a3f8861af09bf1df5b8e8a697d97fe1eb4ad8592c9a98de6ae4502ba335c24dffff0db7ca608250f10f40ddde4ed197fbd6655ec728dc60030a534453b0aa4c395651938118400cccb60688c2375ab1ac425643be37320ca43ccd64f618a38fd317e7981eb03ac9d3a7752003a2b741808a0e4833d3edfd8aaf1fabdeba6988f5a1c00b8c8bc4b646c3f734c34cc69ef0ddf55f2684fe8996617a8c14684af41f3beadb2d03a1749705545a09e9a561f7c8dec01b586fde49f02c59890baf13509eff32e33c8ed278413081114dbd051ec2460c2ffd007bad3c4c2f6969e91ac9286341f125cbb0d5c4141e3b02ebae04fab1e4a6d0b814cd49a52aff73b71c1b31cee7266e1dda8c0df17e049885813ba57e55ca5d9571bb86db62a8db769546f072402b854f6613f3ec8a2f9056e476be90f79f78717fb432a4976443acfe62d908bf76fb0d5d435e88e8171c52c11c1d06e1ec2fe064bb624c99ca56833b24e2ad713a182910ec54f1704a5f0465df0aa3ae93e26781834948259aa8b0741d6daa7eecd474b27c521f3735665994d4737b0791981bdc2db4a61f20db5c2d1bcaa0aa28a3b2877a2411ee5ac3488d02ba7c7314e1e235e2535943efa32b83e3d49cfa841928f258dbde604cfdd94503dff542c53c98759dc20e51538640f85af92c4b455457074cee55c3e98763d6259d1b157efb967d865d6df6d8d04762b0076ea85379ecf01abc6cf7c76813759731311d976e7d90c95015f4c30d748dbc37bb8004bf16feced54d2bffa39ecb2fd730ce0145b203e2ab3b37555f2c82a8831c4db6ccad6941dc65e9756e0ae4f0a65c453e382236b4ab00544d9909fd00947ea5fb9b3de62da418e4734a387e75fd3bda1bc2e683f53c80a4a60c9d0454ecb27e0f26436880c41716647c40bc4a82cc61a7c94487bccf9672f7dfa282eb2616fc1fd194e892343d78468b9cf86f620e5ed16ab056b447890806fe531b94fa428b334fbbb5ed57835cf6a6f4bc0df21cc0ce6206b3a16877bd2aa686cee6d3db71de99e2df4994f6d1ae2a2541c6504842c033ddfd78b77a7a2c348b73120078482910603d72eab777d07e324f3b9ed779f0b34826f04705e5f3668b64049674144a2630e5d1f9d127328002834ff233db7d152ab43b1af4a695d8be57f3931931e3dcf697d7f6c9663a30fd217d6a77b32e7ee17aa2e707556d2c8a2626bf9d72a35c12be34b62914ecc32a35a28efa48f3911ce97d0906b1bff9df7f6ee83d575f5b290a87e1b6a0350ce113c2f5d441f680a5f7ab255b8b6a116ab3955342436ca52697d645b7ad8f4aa0ce9fe217f31c0046504adece07dec9b6b1eb0ce33866fa7bacabb5b7c3671b6432163898e67daad13f0f357d2e05b71b1229b871099543148305c09fbd13744b5b4251db6d19ea761083ffa427acfa47310c770a60f672cb58118a95c54d74b19e2d8e838d2a0b564290cc3e972b0c022613c8895b9329b590f2deb742e3dcbb8f3409d93940d29bcea7e05b34bd83886d7c7c3d792fc42c67a280eeee3df9bee3f50ea8982d8a5a7ce535ed924681a3bd38ec12cb3d0b7f0c271fdececd70a2215757dd24d120ecdc0e5aaaec226150d66d5e0f0f080a9fdbceba3506654eb50f56afb64ead116f0ba5b3191bff518f99a6df439b1e93e9f7c4111ec0f975066b69e198707b9eebeb42e699f5469947b1531e88138e59f673f453c3414207383cbf16d6ff0b5d8e70e92c6a6ddff41fc91ed8b6a81cb10361f3165be19a56735594f62a18c2e9cad1529c33979cc6072681695dfb4ebed30844c177eaa349f2a6a31ad5dbdba6c98f9faa82acc3908056887019b6dcd5b143aa1429253e1fc81028208957bda9dd57097a8bd1f96a9b92631f7ba7d333b1e553aeb1f95ed2d55ecdc4bf0dbd0db1951f1d0b1b22c96cd0f46d56c1b88db7cd679cadce1088d0df4c0066038e85326f532cf5d23548e4b6b7cb6c174b0206bed5df81ed7c34e4a0d8a1297c2432cecaf6c360caef23a6b8926fd1aa2ba3a936f27f29534cfc830d041e92621a000e9cdedb667bfd739b2d2af7543bdc8e4d10916c0b86c860ceea305d678bb49b43637d0b15733b2186a724ec7e364a345816529fdc9f6ac117d2bef32aad28b2b8be974ea1b603050a08a8d73986bde97191170a39c2d23d849718a95c7a0b850f2de712d946b46a0bddb386533cd647437535577df9b837c2969f21668751be14c07927323edc4921e1c8993a2e9ad22ce31799279f5644c5edf44e8c9592494445d507d66ef39613e1c5c835b5707865d31fb4e2488fd4679a5f77ea80cd1ed058999623c8ca22aee4a7c55bf93d3426353e0a7fe9aee0d818b08104bcf9e6d0beaf21143f70f492611d061a5940409a615be5a1aeb4ae079bc74b07ff2476209e7ce0016fe4e0a9cbe916e9df7d890c25bcbd9a33fc9fa4f284f82c356cb96a4b7b4c582de829473c383f5c6f964477021da2018ac1e030dd46db3b2b57b9400dc97bbbdbf0fa6abeb1f29e394112aa7ccfb60f9b3b096063ea4157b515a9c4c487b10f805c29fed7b5a0cceac3f1f90381aa541b5dfc96baf48a755e9a64c82ca1afb54dedd7f0e17f45c97338651007d6d518cc855f9eb6d7e2a1fd1855a37f7f5b30c4555d6b57474249db44755199174ce279a8f63cb6fc9ba4016c49f7f57da251b5d9103ae00a692ec7568e527a6cc2bb61e89232d715311d19931a9b2fafc9ec69444a834b383c38e7e0bbcc346d512a631246436035dc13d76701d5b97e5700d468117efbf91e1cb08cec43883b2aae21f8b5cfe5cc4f2a6854aff85f52a29fcf8cd1465ccde11f77477378402afd39c452dcca1fdd61bb7092551f7dc58e6cf0ae68a8d34d287556cf00e0427cf2def8c884076edd5464b8494fbf89483631fd1ec6368b6b4e7d244362ca66208347c7f12b042f351d3c71860755760e972d8f4cd493cb9772c0cf92f27b2acc8e4f201f05baafe499e2f225f113a746888b1bd18f58479e11796fe699f6ca89b92e0301e9f483f0a3cc4550539338abe093a6d3a4d3f03d4fd88a58bfcf3d5ceb9c19ed9bb6ca1170e080756b4edb919ef197ab0a740b604f5fb7ebcffdb2c8d75942ae1a387789c4c1cb3134f1a13c33b02df9262819386b81944fcce4f57e509f90a8cfabce73e39ee9cf5d34dd1e5ef3784497aa67bb284857ac7ae52669c28c3eb054f9f6edd2ae095e282217713f3caac8f54dd725f7cb0bc13cb66b63772d119eb604601e5527a9dcef9f5d228e62b3e9724fe075c723d23155756c36e26a2e9cb3c8bb838773e9edbdbe35a278a13ff138573c6e818cc2c5fd0973181021ff7f7db1ea96d2ae1878d30044a6885a402a89c46ca272d32414d06de36d5613b62531f33288f5d69f09ab5e7e8b89497a2cf0c1aa24bd8e8037595714d30ffbe1937a6fd87ab2ae62ef10ec60dd023989e1de8d260feae428e5857325a0aa6b76e749c15bee124c780d8f4f7d0df99bbe9019717fb9c390063082ce08fe2ebd692435dd24a4dc6cedde47c25297c01668a0e3bfb63792aaf57821d7a1afc9c0dc0a877ebf98d831eb62479a84f0563bd08933a0322316ba8ec52a5c9f789ba24ef10c6573a349cf221da6f634c2644b85330db1fd7e3b05a4961067ca87c0b05b79a9681c3f903f788229b4d81ed6b1e70fd31096ac92fecb5d55fdd922dc4d040cbb5834ae2a022f17d57adef18500c05818410f031c396d2969158d37757122c421e8a1b1072b1c73c459b6199f53328c6bcd5e71062a19f1c4117ef1c3513a95312ff6c7513f04878cdf65bc008f48c63735f75b4b8231655a4bb8ff1c22488f9c8e61cff2dd0a1a093cb9ae3bc64d063f815f7d67822301f459c9363c0c9d9894ad72138608f069d3bb79e991d5811df8261a748d56b59dad751f4e23d9f40457adc12728131060c6fd694091616bd68e82ef0ef8801dab5ffa636c4998e9fab1ab29f6f4e1ebb3b6db98d328c9ab6529259ddf34de0efef29c649551f4f454eedc25d11d14c501dafd76297b4904f31411133477f7ebf367501e9a9b15624bf9da0e695aac5ce37f7d6f186f8706095a828e2c6935d36bde40de461ea69f766c786f542ac6065cb8c6381baa396a9514126e68d4d96c71f92090a883cdeff6552740e5f4e007c7a009b3f792f34262fc7d9e785423f501910fe775ddf00eb68811dcd9f9640b04659ee231495c5cc253f920e49326e1ea87ecaa0fc1f1eb8ef9721a5543f69bde5062d5427fa6399e5a4ed22fa2064059b0e89e79e57368fb7dc0a0cd22f045d67a1e522177bdcbd2818dbdac0b4108a5d3fcae13bc1858a5a7da71014b608daceadd085d080839036c3164fd870b127e81cfd9c78091edd1424dca7a3c22bc56b1552424abbaa5d8149503c87c029ce6e97c9d4fea47438c61c3b9fb76535a239dfc4074c67b9e95ec2bfd1523d96187401ee60abaae88126ece35c7fb8b437a5203034291a3d99d3859f69a69df5c16c4834e08cbf5a303fd30520e985d6b8626c13f675a7acdc316ebc3e3d4b03d6db5893c9044a70ffdcb211bb88a833bda8c6ff17c76ae5816f79724e903668d6429f2d657a27c207ebaf5ba281fafaab6344e063963048e574c57e3107f6de86fefdf549893aa4b6abe4106336eb69ddd2916a49ef92e49a031752bfc5f54559012330d7e43c03d5850f34da089156b01e29daae9d9f92e88370757d8836e628206a4033459a590cda0de4", 0x1000, 0x20040000, 0x1})
pread64(r1, &(0x7f0000000080)=""/102356, 0x18fd4, 0x200)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet_buf(r3, 0x0, 0x11, &(0x7f000001a180)="27b940eba1df1689a0db07650411622f2071f9d2852e8e21ec45613a1380cad7aa5fa7a4606b6985547860", 0x2b)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r9=>0xffffffffffffffff})
ioctl$FIDEDUPERANGE(r9, 0xc0189436, &(0x7f00000005c0)=ANY=[@ANYBLOB="fdffffffffcf3b316b"])

2m4.673628994s ago: executing program 33 (id=1307):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000440)={'#! ', './file1'}, 0xb)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r0, 0x0)
keyctl$join(0x1, &(0x7f0000000000)={'syz', 0x0})
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x46, &(0x7f0000000040)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x2, 0x5, 0x38, 0x66, 0x0, 0x8, 0x1, 0x0, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x17}}, @redirect={0x5, 0x2, 0x0, @multicast1, {0x5, 0x4, 0x3, 0x1f, 0x800, 0x69, 0x7f2, 0x48, 0x1, 0xf, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote}, "2b3e2a0daee29c99"}}}}}, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x37)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet(0xa, 0x801, 0x84)
listen(r3, 0x8)
r4 = syz_io_uring_setup(0x5ce, &(0x7f0000000240)={0x0, 0x6734, 0x80, 0x40000, 0x34f}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
unshare(0x2a020480)
r7 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r7, 0x40000000af01, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r8 = openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(r8, &(0x7f000001a300)={&(0x7f000001a200)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f000001a2c0)={&(0x7f000001a240)={0x6c, 0x1, 0x2, 0x3, 0x0, 0x0, {0xa, 0x0, 0x7}, [@CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x4}, @CTA_EXPECT_MASTER={0x44, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_EXPECT_HELP_NAME={0xa, 0x6, 'H.245\x00'}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x40081)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0xb2752a96f73d6e14, 0x0, 0x0, 0x0, 0x23456})
fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, &(0x7f0000019100)=0x2)
io_uring_enter(r4, 0x57de, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f000001a140)=@IORING_OP_SEND={0x1a, 0x1, 0x0, r1, 0x0, &(0x7f0000019140)="ae0910ade0ec98b59a6a74ece9a4b33a18c669379a5089689d85f2e46c17f89ac70d568c1f571fc84edf3d57f43693ea61ee81bbdfad2e18c0add8a6c353e03087fa7753b4b245957c41faf51ae42a12b9f0ab1d3af0ae56576d6d4d4e1bf976341e9d568960a34a8f354d674765cd0bf250818c89dfe79767f2d942a10f1563e5d9f6a6512c18fa2847905707ade82ece5042cbe803e99868d49a887783dae56f2ee29897196b837bf7235d47cd39910c49a2b0615b7d0b9e14cae9f1af02f7eb99cebe979eb82688f76a3dcd755a4d4d0e2d5d8ecee27e10505130753bfb331984e9b8c6b6fb839efba0c951a00767604280bdf8c3648326cdaed3beaf62bf429fd929f74cc7fb5554c7aa94afae080d6154ecff74a61647a26538ed26006eaccb341bcdd9761f10b4db8366a65b9129aa0e0741ce3edee9a58be41bcf95a680c42ca1b0019eb5186e3d2ff15a3095c1005d3d8a1a0da0a86a90f9786f3b8107e88ceedd84923e8d79851d302cc2ed91253f9cca3a3218f1954c49a1652cd100f4e0b3edd68be8bc2ad811289f2439d1555052777c268a4cd3599082a03fd211238bea1e9d7ae10fd5341954696755e2cdadd324a1833d480e34b7e84d2c89226cfd3b090489ed824be95968341844bd063466b1ae659f1dedfb0c4b2e558fbc25f379bc70bc3a756b965a0a07aa51dbcdbed2060a4a090c47ec7702789879f2b5b8dd937861b8017777dd217ec080f567cc9d2a4d97d3d88f08da073cebee0320eab309849b4de946dcc53ff85a941ee81dcc41bb40dd0928a91de33f374dd95f08f564392596be6cb59cd20c275033b55da5a05493459f6c1412977ca2df9fd1ad3e2a23cfa70a1d57799e2baa5448711f273f66ed30c47f5ef23429c78afbe7b15ff4ea0381f82eec417f354f8dc082afc0601bee4b9595d19c6508cfab3449a90405bc12a2cc47c97374adb2f8c2bc41c6dbccf3d24f7c2282344ee09c747f233733c8eb137396757b1db6581ed9a3f8861af09bf1df5b8e8a697d97fe1eb4ad8592c9a98de6ae4502ba335c24dffff0db7ca608250f10f40ddde4ed197fbd6655ec728dc60030a534453b0aa4c395651938118400cccb60688c2375ab1ac425643be37320ca43ccd64f618a38fd317e7981eb03ac9d3a7752003a2b741808a0e4833d3edfd8aaf1fabdeba6988f5a1c00b8c8bc4b646c3f734c34cc69ef0ddf55f2684fe8996617a8c14684af41f3beadb2d03a1749705545a09e9a561f7c8dec01b586fde49f02c59890baf13509eff32e33c8ed278413081114dbd051ec2460c2ffd007bad3c4c2f6969e91ac9286341f125cbb0d5c4141e3b02ebae04fab1e4a6d0b814cd49a52aff73b71c1b31cee7266e1dda8c0df17e049885813ba57e55ca5d9571bb86db62a8db769546f072402b854f6613f3ec8a2f9056e476be90f79f78717fb432a4976443acfe62d908bf76fb0d5d435e88e8171c52c11c1d06e1ec2fe064bb624c99ca56833b24e2ad713a182910ec54f1704a5f0465df0aa3ae93e26781834948259aa8b0741d6daa7eecd474b27c521f3735665994d4737b0791981bdc2db4a61f20db5c2d1bcaa0aa28a3b2877a2411ee5ac3488d02ba7c7314e1e235e2535943efa32b83e3d49cfa841928f258dbde604cfdd94503dff542c53c98759dc20e51538640f85af92c4b455457074cee55c3e98763d6259d1b157efb967d865d6df6d8d04762b0076ea85379ecf01abc6cf7c76813759731311d976e7d90c95015f4c30d748dbc37bb8004bf16feced54d2bffa39ecb2fd730ce0145b203e2ab3b37555f2c82a8831c4db6ccad6941dc65e9756e0ae4f0a65c453e382236b4ab00544d9909fd00947ea5fb9b3de62da418e4734a387e75fd3bda1bc2e683f53c80a4a60c9d0454ecb27e0f26436880c41716647c40bc4a82cc61a7c94487bccf9672f7dfa282eb2616fc1fd194e892343d78468b9cf86f620e5ed16ab056b447890806fe531b94fa428b334fbbb5ed57835cf6a6f4bc0df21cc0ce6206b3a16877bd2aa686cee6d3db71de99e2df4994f6d1ae2a2541c6504842c033ddfd78b77a7a2c348b73120078482910603d72eab777d07e324f3b9ed779f0b34826f04705e5f3668b64049674144a2630e5d1f9d127328002834ff233db7d152ab43b1af4a695d8be57f3931931e3dcf697d7f6c9663a30fd217d6a77b32e7ee17aa2e707556d2c8a2626bf9d72a35c12be34b62914ecc32a35a28efa48f3911ce97d0906b1bff9df7f6ee83d575f5b290a87e1b6a0350ce113c2f5d441f680a5f7ab255b8b6a116ab3955342436ca52697d645b7ad8f4aa0ce9fe217f31c0046504adece07dec9b6b1eb0ce33866fa7bacabb5b7c3671b6432163898e67daad13f0f357d2e05b71b1229b871099543148305c09fbd13744b5b4251db6d19ea761083ffa427acfa47310c770a60f672cb58118a95c54d74b19e2d8e838d2a0b564290cc3e972b0c022613c8895b9329b590f2deb742e3dcbb8f3409d93940d29bcea7e05b34bd83886d7c7c3d792fc42c67a280eeee3df9bee3f50ea8982d8a5a7ce535ed924681a3bd38ec12cb3d0b7f0c271fdececd70a2215757dd24d120ecdc0e5aaaec226150d66d5e0f0f080a9fdbceba3506654eb50f56afb64ead116f0ba5b3191bff518f99a6df439b1e93e9f7c4111ec0f975066b69e198707b9eebeb42e699f5469947b1531e88138e59f673f453c3414207383cbf16d6ff0b5d8e70e92c6a6ddff41fc91ed8b6a81cb10361f3165be19a56735594f62a18c2e9cad1529c33979cc6072681695dfb4ebed30844c177eaa349f2a6a31ad5dbdba6c98f9faa82acc3908056887019b6dcd5b143aa1429253e1fc81028208957bda9dd57097a8bd1f96a9b92631f7ba7d333b1e553aeb1f95ed2d55ecdc4bf0dbd0db1951f1d0b1b22c96cd0f46d56c1b88db7cd679cadce1088d0df4c0066038e85326f532cf5d23548e4b6b7cb6c174b0206bed5df81ed7c34e4a0d8a1297c2432cecaf6c360caef23a6b8926fd1aa2ba3a936f27f29534cfc830d041e92621a000e9cdedb667bfd739b2d2af7543bdc8e4d10916c0b86c860ceea305d678bb49b43637d0b15733b2186a724ec7e364a345816529fdc9f6ac117d2bef32aad28b2b8be974ea1b603050a08a8d73986bde97191170a39c2d23d849718a95c7a0b850f2de712d946b46a0bddb386533cd647437535577df9b837c2969f21668751be14c07927323edc4921e1c8993a2e9ad22ce31799279f5644c5edf44e8c9592494445d507d66ef39613e1c5c835b5707865d31fb4e2488fd4679a5f77ea80cd1ed058999623c8ca22aee4a7c55bf93d3426353e0a7fe9aee0d818b08104bcf9e6d0beaf21143f70f492611d061a5940409a615be5a1aeb4ae079bc74b07ff2476209e7ce0016fe4e0a9cbe916e9df7d890c25bcbd9a33fc9fa4f284f82c356cb96a4b7b4c582de829473c383f5c6f964477021da2018ac1e030dd46db3b2b57b9400dc97bbbdbf0fa6abeb1f29e394112aa7ccfb60f9b3b096063ea4157b515a9c4c487b10f805c29fed7b5a0cceac3f1f90381aa541b5dfc96baf48a755e9a64c82ca1afb54dedd7f0e17f45c97338651007d6d518cc855f9eb6d7e2a1fd1855a37f7f5b30c4555d6b57474249db44755199174ce279a8f63cb6fc9ba4016c49f7f57da251b5d9103ae00a692ec7568e527a6cc2bb61e89232d715311d19931a9b2fafc9ec69444a834b383c38e7e0bbcc346d512a631246436035dc13d76701d5b97e5700d468117efbf91e1cb08cec43883b2aae21f8b5cfe5cc4f2a6854aff85f52a29fcf8cd1465ccde11f77477378402afd39c452dcca1fdd61bb7092551f7dc58e6cf0ae68a8d34d287556cf00e0427cf2def8c884076edd5464b8494fbf89483631fd1ec6368b6b4e7d244362ca66208347c7f12b042f351d3c71860755760e972d8f4cd493cb9772c0cf92f27b2acc8e4f201f05baafe499e2f225f113a746888b1bd18f58479e11796fe699f6ca89b92e0301e9f483f0a3cc4550539338abe093a6d3a4d3f03d4fd88a58bfcf3d5ceb9c19ed9bb6ca1170e080756b4edb919ef197ab0a740b604f5fb7ebcffdb2c8d75942ae1a387789c4c1cb3134f1a13c33b02df9262819386b81944fcce4f57e509f90a8cfabce73e39ee9cf5d34dd1e5ef3784497aa67bb284857ac7ae52669c28c3eb054f9f6edd2ae095e282217713f3caac8f54dd725f7cb0bc13cb66b63772d119eb604601e5527a9dcef9f5d228e62b3e9724fe075c723d23155756c36e26a2e9cb3c8bb838773e9edbdbe35a278a13ff138573c6e818cc2c5fd0973181021ff7f7db1ea96d2ae1878d30044a6885a402a89c46ca272d32414d06de36d5613b62531f33288f5d69f09ab5e7e8b89497a2cf0c1aa24bd8e8037595714d30ffbe1937a6fd87ab2ae62ef10ec60dd023989e1de8d260feae428e5857325a0aa6b76e749c15bee124c780d8f4f7d0df99bbe9019717fb9c390063082ce08fe2ebd692435dd24a4dc6cedde47c25297c01668a0e3bfb63792aaf57821d7a1afc9c0dc0a877ebf98d831eb62479a84f0563bd08933a0322316ba8ec52a5c9f789ba24ef10c6573a349cf221da6f634c2644b85330db1fd7e3b05a4961067ca87c0b05b79a9681c3f903f788229b4d81ed6b1e70fd31096ac92fecb5d55fdd922dc4d040cbb5834ae2a022f17d57adef18500c05818410f031c396d2969158d37757122c421e8a1b1072b1c73c459b6199f53328c6bcd5e71062a19f1c4117ef1c3513a95312ff6c7513f04878cdf65bc008f48c63735f75b4b8231655a4bb8ff1c22488f9c8e61cff2dd0a1a093cb9ae3bc64d063f815f7d67822301f459c9363c0c9d9894ad72138608f069d3bb79e991d5811df8261a748d56b59dad751f4e23d9f40457adc12728131060c6fd694091616bd68e82ef0ef8801dab5ffa636c4998e9fab1ab29f6f4e1ebb3b6db98d328c9ab6529259ddf34de0efef29c649551f4f454eedc25d11d14c501dafd76297b4904f31411133477f7ebf367501e9a9b15624bf9da0e695aac5ce37f7d6f186f8706095a828e2c6935d36bde40de461ea69f766c786f542ac6065cb8c6381baa396a9514126e68d4d96c71f92090a883cdeff6552740e5f4e007c7a009b3f792f34262fc7d9e785423f501910fe775ddf00eb68811dcd9f9640b04659ee231495c5cc253f920e49326e1ea87ecaa0fc1f1eb8ef9721a5543f69bde5062d5427fa6399e5a4ed22fa2064059b0e89e79e57368fb7dc0a0cd22f045d67a1e522177bdcbd2818dbdac0b4108a5d3fcae13bc1858a5a7da71014b608daceadd085d080839036c3164fd870b127e81cfd9c78091edd1424dca7a3c22bc56b1552424abbaa5d8149503c87c029ce6e97c9d4fea47438c61c3b9fb76535a239dfc4074c67b9e95ec2bfd1523d96187401ee60abaae88126ece35c7fb8b437a5203034291a3d99d3859f69a69df5c16c4834e08cbf5a303fd30520e985d6b8626c13f675a7acdc316ebc3e3d4b03d6db5893c9044a70ffdcb211bb88a833bda8c6ff17c76ae5816f79724e903668d6429f2d657a27c207ebaf5ba281fafaab6344e063963048e574c57e3107f6de86fefdf549893aa4b6abe4106336eb69ddd2916a49ef92e49a031752bfc5f54559012330d7e43c03d5850f34da089156b01e29daae9d9f92e88370757d8836e628206a4033459a590cda0de4", 0x1000, 0x20040000, 0x1})
pread64(r1, &(0x7f0000000080)=""/102356, 0x18fd4, 0x200)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet_buf(r3, 0x0, 0x11, &(0x7f000001a180)="27b940eba1df1689a0db07650411622f2071f9d2852e8e21ec45613a1380cad7aa5fa7a4606b6985547860", 0x2b)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r9=>0xffffffffffffffff})
ioctl$FIDEDUPERANGE(r9, 0xc0189436, &(0x7f00000005c0)=ANY=[@ANYBLOB="fdffffffffcf3b316b"])

5.520495564s ago: executing program 4 (id=1922):
r0 = openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$CDROM_GET_MCN(r0, 0x324, 0x0)
openat$iommufd(0xffffff9c, &(0x7f0000000100), 0x2da041, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x20004080}, 0x2404c044)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000002c0), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c0100001d00100008000000fedbdf25fe880000ee9cdff1accd6cdf000000000008000000000000000000a0000000000088186d9ced6231cbbe3456edfa602cd092d1d48bfe8a6198c73ada9f9354f05aefb7349d5f4cf5706cbe1cdb4c92a2", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="e00000010000000000000000000000000000000033000000e00000010000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000200000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000800000008000000ffffffff04001b0024000900"/212], 0x11c}}, 0x0)
dup(0xffffffffffffffff)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x28}}, 0x4800)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x2)
write$UHID_INPUT(r5, &(0x7f00000025c0)={0x9, {"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", 0x1000}}, 0x1006)

4.686610035s ago: executing program 5 (id=1923):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x9, 0x4, 0x4, 0x2}, 0x48)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
socket$alg(0x26, 0x5, 0x0)
r4 = openat$pidfd(0xffffff9c, &(0x7f0000000100), 0x80, 0x0)
pidfd_send_signal(r4, 0x30, &(0x7f0000000140)={0x11, 0x4, 0x6}, 0x0)
timer_create(0x9, &(0x7f0000000180)={0x0, 0x1e, 0x1}, &(0x7f0000000700)=<r5=>0x0)
timer_gettime(r5, &(0x7f0000000100))
r6 = socket$kcm(0x10, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000e00)=ANY=[@ANYBLOB="bf16000000000000b7070000010000004070000000000000500000000000e1ff95000000000000002ba76bb33123751c4e345c652fbc1626cca2a2ad75806150ae0209e62751ee04000000670d25010000020000040000009fc404000000c788b277beee11bf9b0a4def23d410f6accd3641110bec4e90a6341965dac03d04683712a0b09edc9e9ef8f6e396ad200e011ea665c45a3449abe802f5ab3e89cf40b8580218ce740068720000074e3e8eea3fd8cf49827ca311f5b87e1ca8433a8acd715f5888b2007f0000000000000000010000000000fb00010000000000414027efc84293af6a22000000005335001db43a5c000000000000000024000000000000000000e75a89faff01210cce39bf405f1e846c1242000000000000cad326ad7add65873d9f87463ad6f7c2e8ee1a39244960b318778f2a047f6d5bc24fef5d7d617da7fb5e2a431ab9142f3a06d55740a43088696daaed74b9c5c29647d2f950a959cf9938d6df8600a62e96b7cb8e52cbdc2ba9d580609e31c30891f7e5ff7fd6fce424c2200af6c3784a1975fa657de38a3a32a4fd67ce446ac5431d07db79240acaf091231b986e77d05d988d6edc71df48dca02113a38300c2bf2b5543ffc1669557b3819d8c396d2c2361629d1022f722ec23812770d72cd0010000007889b8c7044f563a1f68d4eff895fdbc463f747c08f40105869035000000000000000000000000000000000000000000000000080000003ddf4aa4b1c8baa0ae6feb6737c275dc2740f742b5425f1d581961471cdb0500000000000000d4123f955267fe4a75c114f874e086287547d4099aeec9f1538ee25a365ccf4a9b604e88e12ff25184d4e3c6f7f623559435b26b50fb7113000000f0bc440550ee91302f5a000000000000000000000000006d0000e67ccc00148ac4c43021cce9f24f4b2f9492c32e7af05c648978d9980ba49789906d923e4916f390ab7edcd3f5b9fe14446dd446a52131c464f2c08efb46d934615c8631b7c42efd0294bea179b0433f5c899119ec2c3f4523110c0acef5383b5a2720caeb68f1e9c05b05d89467ded84da093dea262e51811e2d7fa515722516bd5ef6c8c4966e5937562a5648a696ad3a042a7097ddefe0671f977fb145890f5bf41ba92b8c4c8b14f0d4a880ef4518bb32881dfd15dc84e79d326337e21e041654f06bd7f000000000000000000000000000000282ffe0000000009350cfa3ab109ab4a7d95938c5334a0dd177f1a7389ee570d95e543a27546d3770740f354df6dd6b1bfe4104d2262f33f596d606ccce75a3c3d5f9ad94a7316b0c6ad14f1398a6b39b07121f636da418b34d48677cf8d2d99ee8ac50142bcdcc73dd73cc6ec46896ffb35ac82ac7a9309ea07396d2814dc630ad1a9913934849be25f7b81b59aaa9fa2e9d6ecafcfa1de81b2d3581ab1138537f98d2240b6c2bf40569da4e2bb77532ab9220347d78319617d17e14f7331486e86b2145980b95c88ae11b1c6b6ea6c2b2311d6ce6315cc451dd50ac746acd59d075b41f9a747894956b10453ccf6527d8f579256e9849bbaf6c7c84362209d3d2320101d57"], &(0x7f0000000140)='GPL\x00'}, 0x48)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f00000002c0)=r7, 0x4)
sendmsg$kcm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000003c0)="d800000018007b18e00212ba0d8105040a0a1100fe0f040b067c55a1bc0009001e0006990300000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b01602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd601edef3d93452a92307f00000e97031e9f05e9f16e9cb5", 0xd2}, {&(0x7f00000004c0)="f80ec2e2badd", 0x6}], 0x2, 0x0, 0x0, 0x2663}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[], 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="020000000400000006000000aa0b"], 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, &(0x7f00000002c0)=""/251, &(0x7f0000000940), &(0x7f0000000200), 0xa7c, r8}, 0x38)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000001080)={r1, 0x58, &(0x7f00000010c0)}, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0xb8, r9, 0x400, 0x70bd25, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5, 0x83, 0x1}}]}, 0xb8}, 0x1, 0x0, 0x0, 0x20000004}, 0x2004c004)
mkdir(&(0x7f0000000000)='./file0\x00', 0x80)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x10000, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=virtio,access=', @ANYBLOB='3'])
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0)

4.684985769s ago: executing program 0 (id=1931):
bind$alg(0xffffffffffffffff, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000001c0)=0x7a, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f00000000c0)='cdg\x00', 0x4)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r1, 0x1)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}}], 0x414, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, &(0x7f0000000280)=0x1, 0x4)
syz_open_dev$evdev(0x0, 0x0, 0x60000)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='clear_refs\x00')
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r5, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newtfilter={0x68, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0xb, 0xfff3}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x38, 0x2, [@TCA_BASIC_EMATCHES={0x34, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x28, 0x2, 0x0, 0x1, [@TCF_EM_META={0x24, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}, [@TCA_EM_META_RVALUE={0x4}, @TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x1}, {0x5, 0x40}}}, @TCA_EM_META_LVALUE={0x8, 0x2, [@TCF_META_TYPE_INT=0x9]}]}}]}]}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x20041090}, 0x0)

4.515847674s ago: executing program 4 (id=1924):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x88, 0x30, 0x1, 0x0, 0x0, {}, [{0x74, 0x1, [@m_ct={0x44, 0x12, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x804}, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000280)=<r0=>0x0)
prlimit64(r0, 0x8, &(0x7f0000000140)={0x10001, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
openat$iommufd(0xffffffffffffff9c, 0x0, 0x64c842, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
unshare(0x2040400)
syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000180)=ANY=[], 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
socket$nl_route(0x10, 0x3, 0x0)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_io_uring_setup(0x118d, &(0x7f00000000c0)={0x0, 0x8d2dc, 0x0, 0xffffffff, 0xc2}, &(0x7f00000003c0)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
socket$inet6(0xa, 0x2, 0x0)
epoll_create1(0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00')
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r4, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(r5, 0x47f5, 0x0, 0x0, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)

3.991240005s ago: executing program 2 (id=1926):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f00000007c0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="060000000400000008000000"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='page_pool_release\x00', r2, 0x0, 0x4bbf}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b70300000000000085000000330000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r4, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
socket(0x1d, 0x2, 0x6)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r5, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, &(0x7f00000000c0)=@ccm_128={{0x304}, "c801beb100000047", "f8f26ae06508255f4c930e80aedcd08e", "6d81108a", "c440238952152069"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x8, 0x2)
syz_open_pts(0xffffffffffffffff, 0x1531c3)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

3.68351432s ago: executing program 0 (id=1927):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f00000007c0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="060000000400000008000000"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='page_pool_release\x00', r2, 0x0, 0x4bbf}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b70300000000000085000000330000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r4, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
socket(0x1d, 0x2, 0x6)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r5, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, &(0x7f00000000c0)=@ccm_128={{0x304}, "c801beb100000047", "f8f26ae06508255f4c930e80aedcd08e", "6d81108a", "c440238952152069"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x8, 0x2)
syz_open_pts(0xffffffffffffffff, 0x1531c3)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

3.388600344s ago: executing program 2 (id=1928):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x7dea6bc29d40f3c1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x800, {0x5, 0x2000000000000005, 0xfffffffffffffffc, 0x800000000000000, 0x8, 0x6, {0x2, 0x6, 0x3, 0x4, 0x0, 0xfffffffffffffffe, 0x47, 0x0, 0x126, 0x6000, 0x10000, r2, 0x0, 0x900, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x400040, 0x80, 0x2, 0xfffffffb, 0x2, 0x0, 0x0, 0x0, 0x1}}, 0x50)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3)
ioctl$TIOCGPTPEER(r3, 0x932, 0x5)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r5=>0x0})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b0000ddff000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xf, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000020000000000000060b4000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014001000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r7, r5, 0x25, 0x0, @void}, 0xf)
syz_emit_ethernet(0xd82, &(0x7f00000007c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @empty, @val={@val={0x88a8, 0x1}, {0x8100, 0x6, 0x1, 0x3}}, {@ipv6={0x86dd, @icmpv6={0x7, 0x6, "c098b6", 0xd44, 0x3a, 0x1, @mcast2, @remote, {[], @param_prob={0x4, 0x2, 0x0, 0x5, {0xa, 0x6, "012209", 0x8, 0x2f, 0xff, @private2, @private1={0xfc, 0x1, '\x00', 0x1}, [], "8aba784463e078c26097815508c7739ddbb06f6576061e807b8c8c8214df097bb871f6b104bdf9f26bdd1314bd5e7aa47a6abb54391c164e1cd64d59d76f2a86f051a68236bfd766d1fb1e9b28b429e48ae7b262521945721e27fff60ccc0ee786d9ca398ea864bba8cbb4499880ab0b57fac3220b2824ac76833539589dd5b996d000bc72967caf70c22fe859d75c1c9727b898af55d812b7fafa5e7aab0867854197006f784a6c2de8b8a2bac8860b453696375ab0ee524ab6ee30dd2ca14408d1c6971c719f6cfd144dee9caa36930bd97d5f04909bccdfa06684d6d1415f5af47ccbe99682024cb87b599891030cfc9df966a68d750fbb2dca427fcffae558e451a8b6d64444375d37a5847dbec3676cf075b61868fb57a79fcd4e0409412f36e077be9b4e064a980abd9a2a44bb82925b3552d0c50c2d9fc88f5af153ddce0c6a792c00649ce14c628f0c2510279606fbc45695edf125b30ac7bab046363bdffc14e0c934976fe763664adc7cdbd27abc8d46ccb0efcad38db851387dc3701f6842fd5822f1c224763e80673dce708d86e08c78462005c3431c05ceac607b411daffad1f602223e6e4d68cb311a427187454e90a2ec60e55b7bb6d5225b07cd648ff12295bae052d161002589324ead9d12c179dc16819c2f5db8ec1e10d5538f2ea83656583b6412588c6cf7b490e4213d51e3ef21d2caa0d720c77e3d9eace587bb3ba53b37501ff35aa0090b562637d88be9804ce608a8e4fd947a8f5c8cb1b33eebe9d4e387e898ff221ec3dae01ed131caed509393859566ffea4e2a4772bd93eb0df01463339f6a29f34f053c07c268a81942cbd050523027179be20f4a5fa4ce584e89a709128f2d4d22e7aa45721bfe49af23fc6a78455457344dc82bc14a40bf1ccddee74a16cbdcf82d2b74a25f13a73fc70f7e4daeaaee2e20160fbc9f64de171c245f6bd02eb236472da46fc83f43142a21347a1a77b2b7f40cab16edb34b4ab8152ef3fb62e17a56caf06fb715cf0b3e158b2afed6de20034f690fa83e284cd8b08488351408b5388eec3f8380490d5235c38d0394d47df628e590b69b501d0a8a6c5a9fa6d3c37434e33f38a98deff22580fd1ffbe512dc1cbe534a2b557e6134f7448e34278669daebb544d9b7c975490bbe6a418179b856ab0867b4cd3a090fec1e26690be7ec23ad184a09fbc81ddea6b26f650e4b3456e5bd99adec519f0275d4cfefea7f07d28401770dcaaff528745817996e7c58c722030e6a0593482dba04a28a10dac6a8fe7e91104dedbb956d413c6aa9ab0597a5a0a2c4b0898c299f8a73bfd184341cda65528c5503cb27eb191b1765ed1644428439fdd7b2fc8d887e5796538532b19af2e39ea2161d45cd802b7926519abf0dedc8da069130b4530b923ca54ead892ff687ef5e2e101bcc8957e17484f7553ee61079836b4bc0832b5835af17ef7d6d34205888b10265052330c202da91d9c3d462cd646d41c3878122a82e33bf792f80cc2741d71a9191af31ac44fdd9f80993ec9a31f22e87a2972b62f6125dd994fdec56d69f05a9e60ce6a4a7aa93d1ab6953ef4533183dd10053797065726b2f70a719fad35a47e772694a7e470bb986c2ec61e1ad36dec1747a355c495d769954cefbba9827cdc220048dd93a213965926a9e006251ef34d86a2fbaaee70c5a0d49bc067c59dc7bd0b18b5ab3947f7b7f34abdadfaad4397a4769394c985bb65d8282adfaae6605ced3aecba04e5e72e433a3ba6ff4058fe44c0871537d0e616c016f1acda0ae0202b6806ac664bd45ce5b66077b5270869db80917bcb29bc50626538ead8d7f3b9ea30beda4239b945be76ca340c631580186123d58a581487bea31d9a383cdee855701c831832989d8bef57419889f1ac6c43a627d8cc6378c1435a78428f114a62c00e0ec3b436a4b983c73e02a720486b3b9681cde7711e313e1de3759993bf1fc388b4c8131bf799cfd975c07518c76a790d1e722f76eca9ca32a56f7419d2cb6fbaf159f097f00089b36c3a814ece8891074c55ecf51b09b65671e41f7a1a43d797aee05cccaf3bb350da67eceb04bbf9c0a61861881f28cfe5ad0081f2c5014b6e69113ba5fc5c78716f527686ba859e38992484ddc03f4809176046246cc4ef5b376eb22af0430b2f8a6f7403875c188059fe23f23985ab069d2a23e89a2b41df72e00f41ffe03fd058a3b16fe9235f6911f56bd8d78fa8a82c08694b1837aac63d717b26f1056f0c30958d7d980c2fd5075bab22011c71d238435542871a838be59d3caac470697a0f344ab1d6cdbdc17cf6aa9778ba421ed764630953549b694faf5a24c74b1774f20fbe01a5d992a6c4ac6b0b18ca1ded4b2ed9900bd22eb8eabe02b8b5a64cd9658de9ad9c88eac0e0dee34066b57df3b3c6d8e21d28d31ba08970938a59fe199805c13f8f51daddeed5a353d710cb50968ed654119963ee4161a0ddb6e536eac91aeca93a68670ff4308ac0e2ec082203ec3ea896f35321dabcbaedf47a2f5e3e265393ab1fb08a49b834530f8c0362e52837310ea001b3c991f5dbe5743359014a6dcb9d10bee6a8f8ab751a281b0f8b4f041e4d1410096e07ec8a2c11bb4f977c51678fd8beb00e1e6791e718070be64b85ad98f012dc3b43300807b77cf9876f4bcf2e17bc0f570f498d0d39b94452e728049c078c9813b6afe055ff74761b4a79e311c47860e397b3e1e36a68a1bd2eee966725f625cef744f896f8115f75d510760c5f785691a7118b89f900c51be4af24106c86e99495059809fa7cbbf65ae7115d48bf64e997fa8ed4b867e19f2199704f42da9fa601e1aafda6fa41111b979dbe8aa6726070d89d777127ec4a4d34bf649a235869f4c87ad16caf746c852afd3137faaf87c7a1c5e7bac091424d907de772a75f6aa684d39eb2ecedcad2034bfd0870b7dc2b2a14f4b569e069833d22ccd87f17f7e49e97c192a98a6201d5be93eb4cb93df2d5bcc9741ac2bfed90ce2c7f33f62eb03967d4f247917b6a4f1d09a1707cca5f45698db2ce0a13bb57e5ea7ff72eef6641497d4d0a01e814471127fb709e8d7f9f876ffe97a07e7495822abc8ab5e26eceb4f7527699473a9c76a286fafd816a19460508ca59a2db1797808fdb5de3ce41d60be3731ff966a675f1de2e03e03f2c8e424c09542059544a75e8a20f0433ccb1d9fc3d59f14d334f59e1f99f4c011cfa650b84456feaaba37fed43912063298e43c44a8d7a33eac1485f6b04274d453f305f50534b357738161443ab28f86b2c2fd5d468a7037d1fcfc25096251dfa5bf46a03737ca13624e550e6c2198cf8d0fa3ba022fb462c779b33e8635882b57183d9b4ad6690aa6cb1f70d2765e8d0da26f8d248f913813bdddcf98dae531338e3e8553cb9b29b4dcd1b653a1ec03b3aedc10bcf548176e4f6a95690178adb6b61985c8550fc22942547f4ee966a09bb992b4e3f2cdfec156ae97c88c44a00b5dcfe6e6cd4dcd82566b5533640b16220fd720251c8fe9a45bf3c9f325d2d5b5f1fb527c5f7216b428d7e6641ba902f727dc6b224ae9a4c660eee599596c815b02c329dea88dfe39a655007b89680f9a3e2865afa1a7060b7f2e843d53831fea3874499667219580b3ddf490fa93ce54f29ad1b56ae2256c480d5892d3323874fe487c7639a3083cc62aa51f69816b8e7f2feab248f044ef4af8bc34732f21a70421227fa6020059111be9c4258210d86ee235e2132918deb94aca684ff17beb884f79a1496898178be853c64242336b1ebd0d6200eccfe88463dc3316538e52ff047a1755291b443cd65b15e74b622ad0e0b22be9736bac67f71f122d17c16c33fb3fdfe2cbd9e08949edfab490da1e5a8148fd9c713e9e1d6e7222d95862affd3cb8c260d10d474b5a66b7e98ae66d8ac19c71fea3e32933dfe1ce3b15a279f71157730a9342c672289944c04658d0d0292dbe51515468621604d8922afc70ebcbceffdd53217e147de3627938a17fa96fa5482cd289f49d96be3294ec5cb278b33013bb0026cccbd32d48d610fe5513c11e1b8b0cd7fedae6c499e07a5012de377341b0f3ab7bee1f32cf3ba5c806e449caf922e5af15de08cb2b39f9d503de64e769956b9d9940fe847df8d5a43de9e5950312803a9513b0f1b61722e8f3b1bff5442d144e1d3e93cffecbe6e19df6b907aacbb8f094f77b5d919e12a37a686b2b8895f31936ccd8c99671ba2463dcc020ce701adf97bd58e2c8dfe6c3695ddfd51498c6261a6fd3c2130fdc0c108c0ef8ad0a77405db2e0c3683096409d860f8af180c0cc257db32dca35dbb15b0cabf44940085599740af126896051b5a0b60ffa0b1fd3abd4b74a69e4a94c0c480bf0ea8ec6f77c72dd7009354fee927afbec04ba4287b1cc83fad9db96e4848fe3d67bfc5fc786bbb16d87b5586b00193da0c6a889467e53da614d02f0158f3a44e714e8b6fe2aaa725d86535a90007a2ddf311ab76563f3d298c5bf074ec89eaf1a524cbbd8e5a6989158af3149a286665ccea61abc00c0b8d05b3783b168229c713e3572039916fac7432eed8ee6be1838aeadcc1101b0e03f8313aeeb115d9d4e3eb2add2d38196411888eca6adb25562693609316a7f101f240b1352e2276a42d50068afab7e4c06d9679d2f0b1506254dd726bb7d340df6aab393c1107d393b7365eb6d341c9dc65be2f748e4574b"}}}}}}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f00000002c0)=[{0x6, 0x0, 0x0, 0x7}]})
setresuid(0xee01, 0xee00, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r8 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
syz_clone3(&(0x7f0000000340)={0x200103000, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r8}}, 0x58)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3)
ioctl$TIOCGPTPEER(r9, 0x4004092b, 0x7)

3.369960445s ago: executing program 5 (id=1929):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
mq_getsetattr(0xffffffffffffffff, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
syz_emit_ethernet(0x290, &(0x7f0000001300)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, '\x00', 0x25a, 0x11, 0x0, @local, @local, {[], {0x4e1d, 0x4e20, 0x25a, 0x0, @opaque="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"}}}}}}, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x78, 0x6, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0x8}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}]}, 0x78}, 0x1, 0x0, 0x0, 0x20004041}, 0x3fe82a79d6474134)
syz_emit_ethernet(0x86, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @broadcast, @val={@val={0x88a8, 0x3, 0x0, 0x1}, {0x8100, 0x6, 0x1, 0x4}}, {@ipv6={0x86dd, @udp={0xa, 0x6, '\x00', 0x48, 0x11, 0x0, @local, @private0={0xfc, 0x0, '\x00', 0x1}, {[], {0x4e1d, 0x4e20, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "dc521c259b538a2bf2a113dc2eeec0a072edf20b6d59027f", "d646c098cfc27eb8549d66e7b219c2c3b85e4508546e551af9e59631718ba089"}}}}}}}, 0x0)

2.752657939s ago: executing program 0 (id=1930):
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000004340)=""/102376, 0x18fe8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xe, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, 0x0)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r2)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
r4 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0)
write$binfmt_script(r4, &(0x7f0000000340)={'#! ', './file0'}, 0xb)
execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

2.752213238s ago: executing program 5 (id=1932):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000001f80)=ANY=[@ANYBLOB="9feb00000c0000000c00000005000400100000000000008c05000000000000e4000e006619794aeaeffb09161cb7fcef6a54587e3aa80fab2159043a72d8da4b7e9a804879a9aa3f"], 0x0, 0x29, 0x0, 0x4}, 0x28)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', 0x0, 0x0, 0x101097, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, 0x0, 0xffffffffffffff9c, 0x0, 0x260)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0x74}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000800)={"54a41f7614f42e2f8c19cb810aea5bce", 0x0, 0x0, {0x2, 0x616}, {0x100, 0x4}, 0x2, [0x8, 0x0, 0x2, 0x1, 0x10000000, 0x7, 0x8, 0x5, 0x7, 0x2d, 0x0, 0x7, 0x6f740588, 0x1fffc0000000, 0x10000, 0x4]})
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
pipe(&(0x7f00000007c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
vmsplice(r4, &(0x7f00000000c0)=[{&(0x7f0000000180)='w', 0x1}], 0x1, 0x1)
close(r4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
r6 = socket(0x1e, 0x1, 0x0)
connect$tipc(r6, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r6, &(0x7f0000000340), 0x2000011a)
sendmmsg$sock(r6, &(0x7f0000001600)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)="15", 0x1}], 0x1}}], 0x1, 0x40001)
recvmsg$unix(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000000440)=""/4096, 0x1000}], 0x1}, 0x12000)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r4, 0x7b2, &(0x7f0000000600)={&(0x7f0000000f80)=[0x1, 0xfffffff7, 0xfffffffc, 0x8, 0x2, 0x0, 0x4, 0x6, 0xdfa8, 0x6, 0x4, 0x1, 0x81, 0x3, 0xfffffffb, 0xa, 0x4, 0x110, 0x1ff, 0x9, 0x2, 0x80000001, 0xd, 0x1, 0x9, 0x7, 0xfff, 0xbda, 0x3, 0xfffffffb, 0x0, 0xf3cd, 0x10001, 0x3, 0x4, 0x6, 0x401, 0x290d, 0x4, 0x2, 0x0, 0xca, 0x4, 0xc000000, 0x1, 0x8001, 0x4, 0xfffffff6, 0x1, 0x7, 0x0, 0x6, 0x57d5f43b, 0x400, 0x120, 0x4, 0x0, 0x1, 0x200, 0x3, 0x3, 0xff, 0x4, 0x9, 0x7, 0x2, 0x40057, 0xdc4, 0x5, 0x3, 0xf4, 0x2, 0x4, 0x85, 0x10001, 0x5, 0x0, 0x6, 0x2, 0x0, 0xfffffff8, 0x1, 0x8, 0x1, 0x8, 0x3d, 0x2, 0xfffffff8, 0x7, 0x0, 0x7, 0x7, 0x7, 0x8, 0x4, 0x3, 0x2, 0x400, 0x21e, 0x3, 0xa994, 0x8, 0x2, 0x3, 0xd59, 0x2, 0x8, 0x6c1f, 0x5, 0x9, 0x9, 0x8, 0x20, 0x4, 0x2, 0x8001, 0xd9, 0x7d76, 0x9, 0xfffff800, 0x80000000, 0x3, 0x2, 0x10001, 0xd, 0x0, 0x6, 0x8a, 0x8, 0x1, 0x8, 0x1, 0xd, 0xe9, 0x7, 0x8, 0xb2e2, 0x6, 0x7, 0x4, 0x401, 0xc, 0xdd4f, 0x15b6, 0x5, 0x1, 0x200, 0x4, 0x939e, 0x2, 0x4, 0x5, 0x3ff, 0x1, 0x7, 0x5d6ed544, 0x7, 0x9, 0x401, 0x9d, 0x7ff, 0x1ff, 0x0, 0x7ff, 0x3, 0xee93, 0x5, 0x8, 0x4, 0x80, 0x1ff, 0x1000, 0x7a, 0x4, 0x0, 0x9, 0x1, 0x9, 0xa, 0x0, 0x0, 0x80000000, 0x9, 0xfffffffb, 0xd6, 0x200, 0x3, 0x0, 0x6, 0xa, 0x5, 0x400, 0x83, 0x2, 0x9, 0x400, 0x2, 0x0, 0x5059, 0x6, 0x4, 0x9c, 0x66e67b20, 0x3, 0xec7, 0x7, 0x2, 0x4, 0x6, 0x1, 0xc20, 0x7d, 0x1, 0x1, 0x1ff, 0x800, 0x3ff, 0xfffffffe, 0x9, 0x3ff, 0x1, 0x5d7, 0x8, 0xb476, 0x2, 0x5, 0xb1, 0x9, 0xdb8, 0x7, 0x1, 0x8, 0xb, 0xa3, 0xec, 0x10, 0xaf, 0x7fff, 0xb2e7, 0x1, 0x81, 0x2, 0x3, 0x0, 0x3a, 0x42a, 0xffff0001, 0x4d31d16, 0x7, 0x0, 0x30, 0x4, 0x6, 0x1, 0x97, 0xeade, 0xa, 0x800, 0x0, 0x9, 0x7fffffff, 0xffff85da, 0x4, 0x5, 0x52, 0x6, 0x8, 0x1, 0x8, 0xac9, 0x6, 0xa, 0x7, 0x5, 0x9, 0x8, 0xb4f, 0x0, 0x7, 0x5, 0x3, 0xc, 0x35c8, 0xfffffffe, 0x3, 0x2ffb, 0x7f, 0x6, 0x6, 0x0, 0x200, 0x9, 0x4000000, 0x0, 0x8, 0x4, 0x8, 0x3, 0xda, 0x7, 0x5, 0x5, 0x100, 0x2, 0x7, 0xe4dd, 0xc, 0x3, 0xfff, 0x4, 0xf, 0x0, 0x6, 0x53e3, 0x31f, 0x6, 0x9, 0x10, 0x4, 0x1575, 0x0, 0xdad6, 0x5, 0x15, 0x80000000, 0x5, 0x0, 0x7, 0xbdf, 0x7, 0x80000000, 0x13f3, 0x4, 0x4, 0x9, 0xfffffff8, 0x2, 0x100, 0x6, 0x3, 0x54, 0x2, 0x0, 0x7, 0x101, 0x8, 0x4, 0x3, 0x87a, 0x8, 0xffffff80, 0xffffff00, 0x1f, 0xaf, 0xec3, 0x9, 0xc, 0x8, 0x7, 0x0, 0x7, 0x480000, 0x2, 0x77, 0x5, 0x2, 0xc, 0xfffffffe, 0x12d, 0xc2, 0x0, 0x7, 0xffffff81, 0x9, 0x5, 0x40, 0xe767, 0x4, 0x7, 0x200, 0x5, 0x3, 0x6, 0xffffffff, 0x9, 0xa, 0x0, 0x88, 0x10000, 0x7, 0xfffffffc, 0x2, 0x200, 0x6, 0x8, 0x4, 0x0, 0x8, 0xd803, 0x9, 0xa7, 0x847, 0x4, 0x5, 0x9, 0x4, 0xb, 0x4, 0x7fffffff, 0x81, 0x9, 0xa523, 0x6, 0x8, 0x4, 0x7, 0x7, 0x4, 0x100, 0x6, 0x9, 0x4, 0x7f, 0xce, 0x2, 0x80000000, 0x7ff, 0x1, 0x7, 0x2, 0x8, 0x7, 0x6, 0x7ff, 0xffffffff, 0x4ce, 0xb20, 0xc0, 0x3, 0x1e, 0x9, 0x9, 0x1, 0x444, 0x64, 0x7ff, 0x9, 0x5, 0x6, 0x55, 0x80000000, 0x7, 0x100, 0xabe, 0x0, 0x9, 0x208b, 0x3, 0xfffffffc, 0xe74, 0x2, 0xf, 0x5, 0x7, 0x0, 0xe, 0x3, 0x100, 0xe, 0x4, 0x8, 0xfffffffa, 0x3, 0x7fffffff, 0x7, 0x9, 0x0, 0x7, 0x418, 0x2, 0x3, 0xffffba71, 0x4, 0x80, 0x1000, 0x83e, 0x7, 0x8e8, 0x400, 0xf, 0x4, 0x8, 0x1, 0x7ff, 0xf43, 0xe, 0x7, 0x30000000, 0x5, 0x3, 0x5e, 0x6, 0xd, 0xf, 0x80000001, 0xffff, 0x40, 0xa, 0x9, 0xdcba, 0x200, 0x4, 0x84f7, 0xfffffff7, 0x400, 0x7, 0x1, 0x8000, 0x2, 0x100, 0x9, 0x8000, 0x4, 0x0, 0x3, 0x2, 0x6, 0xd, 0x3, 0x0, 0x81, 0x2, 0x1c34c00, 0xa5, 0xffffffff, 0x8, 0x9, 0x5, 0x4, 0xc71, 0xbcc8, 0x6, 0x9, 0xa, 0x49, 0x8, 0x507, 0x10000, 0xca, 0xe3e, 0x8000, 0x5, 0x5, 0x8, 0x80000001, 0x7fffffff, 0x1, 0x3ff, 0x8a49, 0x1b, 0xffffffff, 0x8, 0x92, 0x8, 0xffff, 0x7fffffff, 0x1, 0x800, 0xd2, 0xb, 0x10000, 0xb04, 0x10001, 0x0, 0x9, 0xfff, 0x7, 0x8001, 0xff, 0xfff, 0x2, 0x2, 0xba4, 0x401, 0x8, 0x10007, 0x7, 0x3ff, 0x9, 0x7, 0x1, 0x8, 0x9, 0x0, 0x10000, 0x4c1c, 0x10000, 0x2, 0x100, 0x3, 0x4, 0x509, 0x9, 0x9, 0xb, 0x7, 0x4, 0x8, 0x4, 0x2, 0xfffffff8, 0xffffff22, 0x8, 0x0, 0x5, 0x8000, 0x4, 0xb4, 0x6, 0x3f5, 0x8, 0x800, 0x3, 0x0, 0x941, 0x8, 0x5, 0xe, 0x7ff, 0x6, 0xf0, 0x800, 0xaa000000, 0x7, 0x8001, 0x400, 0x80, 0xfffffffd, 0x401, 0x14, 0x80000001, 0x2, 0x1, 0x4, 0x8001, 0x0, 0x5, 0x0, 0x7, 0x5, 0x10000, 0x7, 0xe2, 0x32, 0xf, 0x401, 0x100, 0x8, 0x0, 0x6, 0x5, 0x9, 0x6, 0xffffffff, 0x8001, 0x81, 0x2, 0x4, 0x10, 0x7fffffff, 0x9, 0x3, 0xfffffff8, 0x1c, 0x6, 0xf, 0x7, 0x800, 0x8, 0xd52, 0x5, 0x10, 0x400, 0x4, 0x90d, 0xcad, 0x7, 0x5, 0x802, 0xe, 0x3, 0x6, 0x0, 0x3, 0x6, 0xb, 0x50bb, 0x2, 0x0, 0x1, 0x8, 0x2, 0x7fffffff, 0x1, 0x7, 0x1, 0x4, 0x0, 0xc89, 0x1, 0x9, 0x1, 0x2, 0x5, 0x5, 0x7, 0x8, 0x1, 0x4, 0x8514, 0x6, 0x63a, 0xba7, 0xfffffff0, 0xc00, 0x4, 0x52d9b7db, 0x4, 0x1, 0x401, 0x2, 0x2, 0x2, 0x1, 0x3, 0x7fff, 0x5, 0x1, 0xd445, 0x3, 0x9, 0x7f, 0x1, 0x10002, 0xf2d4, 0x19f8, 0x7, 0xc1, 0x5, 0x3, 0x8, 0x401, 0x7, 0x10000, 0x0, 0x6, 0x0, 0x1, 0x48, 0x0, 0xbff, 0x8001, 0x101, 0x6, 0x7, 0x4, 0x6, 0x6, 0x3, 0x6e, 0xc, 0x607, 0x8, 0x0, 0xfff, 0x29c, 0xfc, 0x77b2, 0x101, 0x3, 0x5, 0x9, 0x8001, 0x5, 0x4, 0x582, 0x12b, 0x6, 0x6, 0x1, 0x6, 0x2, 0xf3, 0x8, 0x6, 0x70, 0x101, 0x7, 0x7ff, 0xa00, 0x5e, 0xf3bb, 0x153, 0xc5e, 0xffffffff, 0x4, 0x379b, 0x7, 0x8, 0xe52, 0x1000, 0x7d, 0x8, 0x8a, 0x40, 0x2e71, 0x200, 0x4000000, 0x23d, 0x81, 0x7fc, 0x800, 0x5, 0x40, 0x5, 0x5, 0x15, 0x1, 0x8, 0x5, 0x4a22f6d7, 0xeae, 0x3, 0x0, 0x14, 0x7, 0x7fffffff, 0x4ca9, 0x1d, 0x2acc, 0x8, 0x9, 0x8, 0x4a, 0x5, 0x80, 0x7, 0x2, 0x1, 0x65, 0xf, 0x1, 0x4459f3e1, 0x6, 0x7, 0x8, 0xebb, 0xffffffff, 0xd, 0x8, 0x3, 0xa, 0x7, 0xffffff00, 0x1, 0xfffffffd, 0x6, 0x5, 0xfb46, 0x100, 0xcc, 0x4c, 0x1, 0x7, 0x2, 0x2, 0x2, 0x1ff, 0x544b, 0x8, 0x17aa, 0x0, 0x8, 0x8001, 0x8, 0x1ff, 0xb5, 0xb3, 0x10000, 0x8, 0x2, 0xffff, 0x3, 0xffff0000, 0x4, 0x7fff, 0x7, 0x6, 0xa1, 0x0, 0x8, 0x9, 0x7f, 0x7, 0x4, 0x824, 0x9, 0x65, 0x7fff, 0xfffffee9, 0xf, 0x4, 0x2, 0x6, 0x7, 0x5, 0xfff, 0x9, 0x4, 0x2, 0x7fffffff, 0xc6, 0x2, 0xffffffff, 0xab4, 0x6, 0x7, 0x2, 0x10, 0x7fffffff, 0x8, 0x7, 0x9, 0x2, 0xb, 0x165, 0xffffffff, 0x6, 0x1, 0x2, 0x5953, 0x800, 0xfffffffa, 0x5, 0xdb6, 0x7000, 0x1, 0x5, 0xfffffffc, 0x10, 0x40, 0x4, 0x8, 0xf48d, 0x2, 0xa, 0x10001, 0x9, 0xfff, 0x1000, 0x1, 0x7, 0x3, 0x3, 0x8, 0x5, 0x10001, 0xf, 0x89c, 0x3, 0x1, 0x9a8c, 0x1, 0xfffffff8, 0x7, 0x800, 0x8, 0x6, 0x2, 0x1, 0x3, 0x6, 0x400, 0x101, 0x1, 0xffff, 0x1, 0x1, 0x100, 0x7fffffff, 0x6, 0x1000, 0x2, 0x31, 0x4, 0x5, 0x5, 0xfa, 0x6, 0x7, 0xf740, 0x3, 0x5, 0x7fffffff, 0x2, 0x81, 0x3, 0x6, 0x5, 0x4, 0x3, 0x9e, 0xffffffff, 0x6, 0x0, 0xffffffff, 0x1, 0x7ff, 0x3, 0x10, 0x7fffffff, 0xd945, 0x9, 0x3ff], 0x4, 0x400, 0x93})
setsockopt$sock_int(r5, 0x1, 0x200000010, &(0x7f0000000040)=0x9, 0x65)
splice(r3, 0x0, r4, 0x0, 0xfffd, 0x0)

2.333082433s ago: executing program 4 (id=1933):
r0 = openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$CDROM_GET_MCN(r0, 0x324, 0x0)
openat$iommufd(0xffffff9c, &(0x7f0000000100), 0x2da041, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x20004080}, 0x2404c044)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000002c0), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c0100001d00100008000000fedbdf25fe880000ee9cdff1accd6cdf000000000008000000000000000000a0000000000088186d9ced6231cbbe3456edfa602cd092d1d48bfe8a6198c73ada9f9354f05aefb7349d5f4cf5706cbe1cdb4c92a2", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="e00000010000000000000000000000000000000033000000e00000010000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000200000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000800000008000000ffffffff04001b0024000900"/212], 0x11c}}, 0x0)
dup(0xffffffffffffffff)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x28}}, 0x4800)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x2)
write$UHID_INPUT(r5, &(0x7f00000025c0)={0x9, {"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", 0x1000}}, 0x1006)

2.332397457s ago: executing program 2 (id=1934):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xf8e14000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = syz_io_uring_setup(0x487, &(0x7f00000000c0)={0x0, 0x9010, 0x100, 0x4, 0x165}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000000c0)={0x78, 0x0, 0x1, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x59, 0x33, @beacon={{{}, {0xde1}, @broadcast}, 0x0, @default, 0x4001, @void, @val, @val={0x3, 0x1, 0x1}, @void, @val={0x6, 0x2, 0x4}, @void, @void, @val={0x2a, 0x1, {0x1, 0x1}}, @void, @val={0x2d, 0x1a, {0x2, 0x0, 0x3, 0x0, {0x2, 0x25c, 0x0, 0x1, 0x0, 0x1, 0x1, 0x3}, 0x7, 0x1000006, 0x4}}, @void, @val={0x71, 0x7, {0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x2, 0xd2}}, @void}}]}, 0x78}, 0x1, 0x0, 0x0, 0x880}, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x0, r3, 0x0, 0x0, 0x0, 0x60, 0x1, {0x1}})
io_uring_enter(r4, 0x3517, 0x173d, 0x42, 0x0, 0x0)

1.469895639s ago: executing program 4 (id=1935):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', &(0x7f0000000000), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=virtio,dfltuid=', @ANYRESHEX=0x0, @ANYBLOB='\x00\x00o\x00\x00\x00\x00\x00\x00\x00\x00'])
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000380)="84", 0x1, 0x0, 0x0, 0x0)
connect$inet(r0, &(0x7f0000000240)={0x2, 0x4e24, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000200)="8a8af8", 0x3, 0x40, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @window={0x3, 0x6, 0x7}, @mss={0x2, 0x7}, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x6}, @timestamp, @window={0x3, 0xfffe}, @sack_perm], 0x2000000000000061)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0)

1.384105474s ago: executing program 0 (id=1936):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xf8e14000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = syz_io_uring_setup(0x487, &(0x7f00000000c0)={0x0, 0x9010, 0x100, 0x4, 0x165}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r4, 0x16, &(0x7f0000000140)={&(0x7f0000001000)={[{0x0, 0x5, 0x3, 0x700}]}, 0x1, 0x1}, 0x1)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000000c0)={0x78, 0x0, 0x1, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0x59, 0x33, @beacon={{{}, {0xde1}, @broadcast}, 0x0, @default, 0x4001, @void, @val, @val={0x3, 0x1, 0x1}, @void, @val={0x6, 0x2, 0x4}, @void, @void, @val={0x2a, 0x1, {0x1, 0x1}}, @void, @val={0x2d, 0x1a, {0x2, 0x0, 0x3, 0x0, {0x2, 0x25c, 0x0, 0x1, 0x0, 0x1, 0x1, 0x3}, 0x7, 0x1000006, 0x4}}, @void, @val={0x71, 0x7, {0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x2, 0xd2}}, @void}}]}, 0x78}, 0x1, 0x0, 0x0, 0x880}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x0, r3, 0x0, 0x0, 0x0, 0x60, 0x1, {0x1}})
io_uring_enter(r4, 0x3517, 0x173d, 0x42, 0x0, 0x0)

1.319709124s ago: executing program 2 (id=1937):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f00000007c0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="060000000400000008000000"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='page_pool_release\x00', r2, 0x0, 0x4bbf}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b70300000000000085000000330000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r4, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
socket(0x1d, 0x2, 0x6)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r5, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, &(0x7f00000000c0)=@ccm_128={{0x304}, "c801beb100000047", "f8f26ae06508255f4c930e80aedcd08e", "6d81108a", "c440238952152069"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x8, 0x2)
syz_open_pts(0xffffffffffffffff, 0x1531c3)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.318867066s ago: executing program 4 (id=1938):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8500, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$kcm(0x29, 0x2, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000140)=@x86={0x9, 0x2, 0x40, 0x0, 0x8, 0x3, 0x7, 0x1, 0xd, 0x6e, 0xb, 0x7, 0x0, 0xffff, 0x101, 0x5, 0x8, 0xf0, 0xa, '\x00', 0x40, 0x2})

1.190617239s ago: executing program 5 (id=1939):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x9, 0x4, 0x4, 0x2}, 0x48)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x5bbf91a1e7f99074, &(0x7f0000000000))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r3 = dup(r2)
write$6lowpan_enable(r3, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
r4 = openat$pidfd(0xffffff9c, &(0x7f0000000100), 0x80, 0x0)
pidfd_send_signal(r4, 0x30, &(0x7f0000000140)={0x11, 0x4, 0x6}, 0x0)
timer_create(0x9, &(0x7f0000000180)={0x0, 0x1e, 0x1}, &(0x7f0000000700)=<r5=>0x0)
timer_gettime(r5, &(0x7f0000000100))
r6 = socket$kcm(0x10, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f00000002c0)=r7, 0x4)
sendmsg$kcm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000003c0)="d800000018007b18e00212ba0d8105040a0a1100fe0f040b067c55a1bc0009001e0006990300000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b01602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd601edef3d93452a92307f00000e97031e9f05e9f16e9cb5", 0xd2}, {&(0x7f00000004c0)="f80ec2e2badd", 0x6}], 0x2, 0x0, 0x0, 0x2663}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[], 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="020000000400000006000000aa0b"], 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, &(0x7f00000002c0)=""/251, &(0x7f0000000940), &(0x7f0000000200), 0xa7c, r8}, 0x38)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000001080)={r1, 0x58, &(0x7f00000010c0)}, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0xb8, r9, 0x400, 0x70bd25, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5, 0x83, 0x1}}]}, 0xb8}, 0x1, 0x0, 0x0, 0x20000004}, 0x2004c004)
mkdir(&(0x7f0000000000)='./file0\x00', 0x80)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x10000, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=virtio,access=', @ANYBLOB='3'])
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x118}}, 0x0)

1.138486414s ago: executing program 5 (id=1940):
bpf$ENABLE_STATS(0x20, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1802000003000000000000000000008b850000002800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0xf0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f86dd", 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.05082301s ago: executing program 4 (id=1941):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x54, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2}, [@CTA_ZONE={0x6}, @CTA_TUPLE_REPLY={0x30, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @initdev={0xac, 0x1e, 0xfc, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}]}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x2}]}, 0x54}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0x12a, &(0x7f0000000340)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x35, 0x4, 0x0, 0x0, 0x11c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@lsrr={0x83, 0xf, 0xc8, [@rand_addr=0x64010100, @dev={0xac, 0x14, 0x14, 0x36}, @broadcast]}, @cipso={0x86, 0x20, 0x1, [{0x1, 0x11, "5ac537452ea611d1afcebebe99ba0a"}, {0x4, 0x3, "8b"}, {0x6, 0x6, "7f33b39a"}]}, @timestamp_prespec={0x44, 0x14, 0x7f, 0x3, 0x6, [{@dev={0xac, 0x14, 0x14, 0x1b}, 0x20}, {@private=0xa010101, 0x1}]}, @cipso={0x86, 0x29, 0x2, [{0x2, 0xe, "3ea5e0dca8ded5922c5a097e"}, {0x6, 0xa, "60a660b6e0b3813b"}, {0x1, 0x8, "38c754e1404c"}, {0x2, 0x3, '-'}]}, @rr={0x7, 0xf, 0xa8, [@multicast2, @multicast2, @private=0xa010100]}, @cipso={0x86, 0x6, 0x5}, @cipso={0x86, 0x3f, 0x1, [{0x1, 0x4, "cf73"}, {0x6, 0x7, "f6f1cf2169"}, {0x2, 0xb, "4f2dfa6008d6b826eb"}, {0x7, 0x9, "6d45ffdf5f386e"}, {0x2, 0x5, "65aa2e"}, {0x6, 0xf, "28d1a608abfb51fffe63155991"}, {0x1, 0x4, "a403"}, {0x7, 0x2}]}]}}, {0x0, 0x4e20, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "2a23f3fd75cd759bde08494463cb174b132723042efd6835", "20fda25c456ffdfdc265f7aad10159394ae67cdf3e7a914b832b78894a9c5ec4"}}}}}}, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r8, 0x8933, &(0x7f0000004700)={'team0\x00', <r10=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r8, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32=r10, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000100004006c6f616462616c616e6365"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
syz_usb_connect$cdc_ncm(0x1, 0x0, 0x0, 0x0)
r11 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r11, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480f0000005e140602000000000e000a001000000002800000121f", 0x2e}], 0x1}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r10, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)

693.354637ms ago: executing program 5 (id=1942):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x7cb641, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0xa0800, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000007c0))
ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000000100)={'syzkaller0\x00'})
ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random="000008000002"})

376.410694ms ago: executing program 2 (id=1943):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000)=0x9, 0x4)
syz_emit_ethernet(0x290, &(0x7f0000001300)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, '\x00', 0x25a, 0x11, 0x0, @local, @local, {[], {0x4e1d, 0x4e20, 0x25a, 0x0, @opaque="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"}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0)
syz_emit_ethernet(0x7e, &(0x7f00000001c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @multicast, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, '\x00', 0x48, 0x11, 0x0, @local, @local, {[], {0x4e1d, 0x4e20, 0x4c, 0x0, @wg=@cookie={0x3, 0x0, "dc521c259b538a2bf2a113dc2eeec0a072edf20b6d59027f", "d646c098cfc27eb8549d66e7b219c2c3b85e4508546e551af9e59631718ba089"}}}}}}}, 0x0)

283.170571ms ago: executing program 2 (id=1944):
r0 = openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$CDROM_GET_MCN(r0, 0x324, 0x0)
openat$iommufd(0xffffff9c, &(0x7f0000000100), 0x2da041, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x20004080}, 0x2404c044)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000002c0), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c0100001d00100008000000fedbdf25fe880000ee9cdff1accd6cdf000000000008000000000000000000a0000000000088186d9ced6231cbbe3456edfa602cd092d1d48bfe8a6198c73ada9f9354f05aefb7349d5f4cf5706cbe1cdb4c92a2", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="e00000010000000000000000000000000000000033000000e00000010000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000200000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000800000008000000ffffffff04001b0024000900"/212], 0x11c}}, 0x0)
dup(0xffffffffffffffff)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x28}}, 0x4800)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x2)
write$UHID_INPUT(r5, &(0x7f00000025c0)={0x9, {"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", 0x1000}}, 0x1006)

1.466881ms ago: executing program 0 (id=1945):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x54, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x6}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010102}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80) (fail_nth: 2)

0s ago: executing program 0 (id=1946):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) (async)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket(0xa, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e20, @broadcast}, 0x10)
ptrace(0x10, r2) (async)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r2, 0x0, &(0x7f0000000700)=""/4096) (async)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='4', @ANYRES16=r4, @ANYBLOB="010026bd7000ffdbdf25010700000000000001410000001800170000001d000869623a"], 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x20020c0) (async)
r5 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x181440, 0x0)
ioctl$FIONREAD(r5, 0x541b, 0x0)
gettid() (async)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0xf) (async)
r8 = fcntl$dupfd(r7, 0x0, r7)
ioctl$TCFLSH(r8, 0x400455c8, 0x2) (async)
ioctl$TIOCSETD(r8, 0x5412, &(0x7f0000000140)=0xffffffc0) (async)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000040)=0xfc) (async)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000280)=0x4) (async)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000180)=0x98) (async)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000380)=0xff) (async)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f00000002c0)=0xff)
connect$inet(r6, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) (async)
sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0x60) (async)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000480)='\xf5\xfc\xd2\xec]\x95zx8*\xa2d\x11\xb5\xb1\x01\x00\x00\x00\xe49{\x8a{\x81s\xea$\xdfg\xb1\x03DY!\x97\xadM\xd7\xff\x8a\xcd[>\x12e\xc3]d8\xba\x8ec\x00\x00\x00\x00\x00\x00\x00\xa0\xe2\xd5y\xec\x90\x00\x98Y\x91\x19\x16\x89\xd0\x1a\xad\xcd\xd6\xd0\xc6\xb9\xeb\x95\xd3\x9cl\x9cu#\xb4\xee\xe5\x9d\t\fV\xd4\xda\xfc`2?\x15P\xba\x14b\x1c\xcc\xd5\xb9jA$s\xb9g3\x15[\xc7\xec\xa9;\xee\x01\xc9\xc4\x1f\xc3\xe4\xfa\xd3fU\x0e\x86\xc8\xa7\xaf\xaf\x04P\xa3\x8bb\xbf\\\xdb\x83\x00\x96sy\x14\x1eo\xcc9&\x946\xf9\xf5v\xee\xb5m$;\x01\xb8\xeau\x00\xd1S=\x920H\xc2z\xb5\xbe\x95\xef\xeb\xd1\xc8\xa1\xba\xach\xbef\xa8\x86\xc2\x18\x9cC\x15\x9c^\xcf\xe9\xbcp\xb4Ff\x00\x9d>p\"\x19\xd8}|\x92\x13\x874\xe3\x01\xfd-?\xba\xf2\x8e\xa5y\\\xf0\fkd??-\x983\xf3\x19\xc7\xc0/\xe9\x1a\x80=\xa72)\xd2\x00'/272, &(0x7f0000000240)='/\t\x00\x00\x00\x98', 0x0)

kernel console output (not intermixed with test programs):

eout
[  324.533583][ T1148] hsr_slave_0: left promiscuous mode
[  324.539434][ T1148] hsr_slave_1: left promiscuous mode
[  324.561520][ T1148] veth1_macvtap: left promiscuous mode
[  324.569539][ T1148] veth0_macvtap: left promiscuous mode
[  324.857209][T11133] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1321'.
[  325.056595][T11134] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  325.793784][T11130] veth0: entered promiscuous mode
[  325.799129][T11132] veth0: left promiscuous mode
[  325.963039][T11059] 8021q: adding VLAN 0 to HW filter on device batadv0
[  326.000106][T11144] fuse: Unknown parameter 'group_i00000000000000000000'
[  326.031889][   T40] kauditd_printk_skb: 461 callbacks suppressed
[  326.032173][   T40] audit: type=1326 audit(1757864868.119:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11141 comm="syz.4.1323" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f66579 code=0x0
[  326.033416][T11149] FAULT_INJECTION: forcing a failure.
[  326.033416][T11149] name failslab, interval 1, probability 0, space 0, times 0
[  326.047555][T11149] CPU: 2 UID: 0 PID: 11149 Comm: syz.0.1324 Not tainted syzkaller #0 PREEMPT(full) 
[  326.047570][T11149] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.047577][T11149] Call Trace:
[  326.047581][T11149]  <TASK>
[  326.047585][T11149]  dump_stack_lvl+0x16c/0x1f0
[  326.047610][T11149]  should_fail_ex+0x512/0x640
[  326.047642][T11149]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  326.047658][T11149]  should_failslab+0xc2/0x120
[  326.047672][T11149]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  326.047686][T11149]  ? getname_flags.part.0+0x4c/0x550
[  326.047705][T11149]  getname_flags.part.0+0x4c/0x550
[  326.047721][T11149]  ? _copy_from_user+0x93/0xd0
[  326.047734][T11149]  getname_flags+0x93/0xf0
[  326.047746][T11149]  user_path_at+0x24/0x60
[  326.047758][T11149]  __ia32_sys_mount+0x1fb/0x310
[  326.047773][T11149]  ? __pfx___ia32_sys_mount+0x10/0x10
[  326.047789][T11149]  ? rcu_is_watching+0x12/0xc0
[  326.047803][T11149]  __do_fast_syscall_32+0x7c/0x300
[  326.047821][T11149]  do_fast_syscall_32+0x32/0x80
[  326.047839][T11149]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  326.047856][T11149] RIP: 0023:0xf706e579
[  326.047865][T11149] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  326.047876][T11149] RSP: 002b:00000000f545e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  326.047887][T11149] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  326.047893][T11149] RDX: 0000000080004500 RSI: 0000000000000000 RDI: 00000000800008c0
[  326.047900][T11149] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  326.047906][T11149] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  326.047912][T11149] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  326.047925][T11149]  </TASK>
[  326.354293][ T1148] IPVS: stop unused estimator thread 0...
[  326.413232][T11059] veth0_vlan: entered promiscuous mode
[  326.419465][T11059] veth1_vlan: entered promiscuous mode
[  326.437581][T11059] veth0_macvtap: entered promiscuous mode
[  326.444106][T11059] veth1_macvtap: entered promiscuous mode
[  326.453175][T11059] batman_adv: batadv0: Interface activated: batadv_slave_0
[  326.460149][T11059] batman_adv: batadv0: Interface activated: batadv_slave_1
[  326.466491][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  326.469450][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  326.475491][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  326.479021][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  326.516250][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  326.519748][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  326.535531][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  326.538037][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  326.694511][T11176] netlink: 'syz.5.1327': attribute type 10 has an invalid length.
[  326.715683][T11176] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  326.724978][T11176] lo: entered promiscuous mode
[  326.727139][T11176] lo: entered allmulticast mode
[  326.729306][T11176] tunl0: entered promiscuous mode
[  326.731060][T11176] tunl0: entered allmulticast mode
[  326.733110][   T63] Bluetooth: hci2: command tx timeout
[  326.736038][T11176] gre0: entered promiscuous mode
[  326.737890][T11176] gre0: entered allmulticast mode
[  326.740058][T11176] gretap0: entered promiscuous mode
[  326.741931][T11176] gretap0: entered allmulticast mode
[  326.746535][T11176] erspan0: entered promiscuous mode
[  326.748362][T11176] erspan0: entered allmulticast mode
[  326.750722][T11176] ip_vti0: entered promiscuous mode
[  326.752533][T11176] ip_vti0: entered allmulticast mode
[  326.754746][T11176] ip6_vti0: entered promiscuous mode
[  326.756576][T11176] ip6_vti0: entered allmulticast mode
[  326.758828][T11176] sit0: entered promiscuous mode
[  326.760618][T11176] sit0: entered allmulticast mode
[  326.763085][T11176] ip6tnl0: entered promiscuous mode
[  326.765169][T11176] ip6tnl0: entered allmulticast mode
[  326.767347][T11176] ip6gre0: entered promiscuous mode
[  326.769167][T11176] ip6gre0: entered allmulticast mode
[  326.771287][T11176] syz_tun: entered promiscuous mode
[  326.773124][T11176] syz_tun: entered allmulticast mode
[  326.776294][T11176] ip6gretap0: entered promiscuous mode
[  326.778115][T11176] ip6gretap0: entered allmulticast mode
[  326.780505][T11176] bridge0: entered promiscuous mode
[  326.782302][T11176] bridge0: entered allmulticast mode
[  326.784584][T11176] vcan0: entered promiscuous mode
[  326.786693][T11176] vcan0: entered allmulticast mode
[  326.788665][T11176] bond0: entered promiscuous mode
[  326.790994][T11176] bond_slave_0: entered promiscuous mode
[  326.793177][T11176] bond_slave_1: entered promiscuous mode
[  326.795191][T11176] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  326.798945][T11176] bond0: entered allmulticast mode
[  326.800650][T11176] bond_slave_0: entered allmulticast mode
[  326.802524][T11176] bond_slave_1: entered allmulticast mode
[  326.804510][T11176] netdevsim netdevsim5 netdevsim0: entered allmulticast mode
[  326.809152][T11176] team0: entered promiscuous mode
[  326.810951][T11176] team_slave_0: entered promiscuous mode
[  326.813058][T11176] team_slave_1: entered promiscuous mode
[  326.815059][T11176] team0: entered allmulticast mode
[  326.816803][T11176] team_slave_0: entered allmulticast mode
[  326.819737][T11176] team_slave_1: entered allmulticast mode
[  326.822270][T11176] dummy0: entered promiscuous mode
[  326.824024][T11176] dummy0: entered allmulticast mode
[  326.826032][T11176] nlmon0: entered promiscuous mode
[  326.827793][T11176] nlmon0: entered allmulticast mode
[  326.830671][T11176] caif0: entered promiscuous mode
[  326.832391][T11176] caif0: entered allmulticast mode
[  326.834126][T11176] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  326.878761][T11180] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1328'.
[  326.883686][T11180] capability: warning: `syz.4.1328' uses deprecated v2 capabilities in a way that may be insecure
[  328.439717][T11210] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1335'.
[  328.717206][T11212] fuse: Unknown parameter 'group_id00000000000000000000'
[  328.751891][   T40] audit: type=1326 audit(1757864870.663:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11211 comm="syz.0.1336" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  328.791478][T11215] FAULT_INJECTION: forcing a failure.
[  328.791478][T11215] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  328.797924][T11215] CPU: 0 UID: 0 PID: 11215 Comm: syz.2.1337 Not tainted syzkaller #0 PREEMPT(full) 
[  328.797950][T11215] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  328.797961][T11215] Call Trace:
[  328.797968][T11215]  <TASK>
[  328.797974][T11215]  dump_stack_lvl+0x16c/0x1f0
[  328.798006][T11215]  should_fail_ex+0x512/0x640
[  328.798037][T11215]  _copy_to_iter+0x29f/0x1710
[  328.798062][T11215]  ? chacha_block_generic+0x211/0x330
[  328.798084][T11215]  ? __pfx__copy_to_iter+0x10/0x10
[  328.798110][T11215]  ? lockdep_hardirqs_on+0x7c/0x110
[  328.798150][T11215]  ? crng_make_state+0x48e/0x6d0
[  328.798176][T11215]  get_random_bytes_user+0x17f/0x3c0
[  328.798202][T11215]  ? __pfx_get_random_bytes_user+0x10/0x10
[  328.798230][T11215]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  328.798267][T11215]  ? import_ubuf+0x1b6/0x220
[  328.798289][T11215]  __ia32_sys_getrandom+0x186/0x2b0
[  328.798313][T11215]  ? __pfx___ia32_sys_getrandom+0x10/0x10
[  328.798340][T11215]  ? __do_compat_sys_rt_sigreturn+0x14d/0x1f0
[  328.798374][T11215]  ? rcu_is_watching+0x12/0xc0
[  328.798397][T11215]  __do_fast_syscall_32+0x7c/0x300
[  328.798427][T11215]  do_fast_syscall_32+0x32/0x80
[  328.798453][T11215]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  328.798475][T11215] RIP: 0023:0xf7fb7579
[  328.798489][T11215] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  328.798505][T11215] RSP: 002b:00000000f54b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000163
[  328.798522][T11215] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 00000000fffffdde
[  328.798533][T11215] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  328.798542][T11215] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  328.798552][T11215] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  328.798561][T11215] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  328.798583][T11215]  </TASK>
[  328.886794][    C0] vkms_vblank_simulate: vblank timer overrun
[  328.956013][   T63] Bluetooth: hci2: command tx timeout
[  329.340869][   T68] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  329.392407][T11228] netlink: 'syz.4.1341': attribute type 10 has an invalid length.
[  329.400952][T11228] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  329.501230][   T68] usb 10-1: Using ep0 maxpacket: 32
[  329.506112][   T68] usb 10-1: config 0 has an invalid interface number: 136 but max is 0
[  329.509250][   T68] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  329.512595][   T68] usb 10-1: config 0 has no interface number 0
[  329.514666][   T68] usb 10-1: config 0 interface 136 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  329.518137][   T68] usb 10-1: config 0 interface 136 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  329.522393][   T68] usb 10-1: New USB device found, idVendor=0763, idProduct=1021, bcdDevice=8e.c0
[  329.525579][   T68] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  329.529790][   T68] usb 10-1: config 0 descriptor??
[  329.537311][   T68] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  329.608228][   T68] snd-usb-audio 10-1:0.136: probe with driver snd-usb-audio failed with error -2
[  329.752811][T11223] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  329.757213][T11223] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  329.763297][   T68] usb 10-1: USB disconnect, device number 2
[  330.372517][T11243] FAULT_INJECTION: forcing a failure.
[  330.372517][T11243] name failslab, interval 1, probability 0, space 0, times 0
[  330.378643][T11243] CPU: 1 UID: 0 PID: 11243 Comm: syz.4.1347 Not tainted syzkaller #0 PREEMPT(full) 
[  330.378659][T11243] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  330.378667][T11243] Call Trace:
[  330.378671][T11243]  <TASK>
[  330.378675][T11243]  dump_stack_lvl+0x16c/0x1f0
[  330.378718][T11243]  should_fail_ex+0x512/0x640
[  330.378737][T11243]  ? __kvmalloc_node_noprof+0x124/0x620
[  330.378753][T11243]  should_failslab+0xc2/0x120
[  330.378769][T11243]  __kvmalloc_node_noprof+0x137/0x620
[  330.378782][T11243]  ? bpf_test_run_xdp_live+0x16b/0x500
[  330.378802][T11243]  ? bpf_test_run_xdp_live+0x16b/0x500
[  330.378818][T11243]  bpf_test_run_xdp_live+0x16b/0x500
[  330.378835][T11243]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  330.378857][T11243]  ? find_held_lock+0x2b/0x80
[  330.378872][T11243]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  330.378898][T11243]  ? 0xffffffffa0206200
[  330.378908][T11243]  ? 0xffffffffa0206200
[  330.378917][T11243]  ? 0xffffffffa0206200
[  330.378925][T11243]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  330.378942][T11243]  bpf_prog_test_run_xdp+0x824/0x1590
[  330.378965][T11243]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  330.378983][T11243]  ? __might_fault+0x80/0x190
[  330.378999][T11243]  ? fput+0x9b/0xd0
[  330.379015][T11243]  ? __bpf_prog_get+0x97/0x2a0
[  330.379030][T11243]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  330.379048][T11243]  __sys_bpf+0x1050/0x4de0
[  330.379067][T11243]  ? __pfx___sys_bpf+0x10/0x10
[  330.379084][T11243]  ? ksys_write+0x190/0x250
[  330.379100][T11243]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  330.379127][T11243]  ? fput+0x9b/0xd0
[  330.379143][T11243]  ? ksys_write+0x1ac/0x250
[  330.379156][T11243]  ? __pfx_ksys_write+0x10/0x10
[  330.379172][T11243]  __ia32_sys_bpf+0x76/0xe0
[  330.379183][T11243]  __do_fast_syscall_32+0x7c/0x300
[  330.379203][T11243]  do_fast_syscall_32+0x32/0x80
[  330.379221][T11243]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  330.379236][T11243] RIP: 0023:0xf7f66579
[  330.379245][T11243] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  330.379256][T11243] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  330.379268][T11243] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  330.379275][T11243] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  330.379282][T11243] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  330.379288][T11243] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  330.379295][T11243] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  330.379309][T11243]  </TASK>
[  330.541260][T11249] fuse: Unknown parameter 'group_id00000000000000000000'
[  330.549573][   T40] audit: type=1326 audit(1757864872.347:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11248 comm="syz.5.1350" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  331.179822][   T63] Bluetooth: hci2: command tx timeout
[  331.556722][T11268] netlink: 'syz.5.1355': attribute type 10 has an invalid length.
[  331.749261][T11268] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  331.870257][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  331.872939][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  332.765807][T11298] fuse: Unknown parameter 'group_id00000000000000000000'
[  332.771907][   T40] audit: type=1326 audit(1757864874.423:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11297 comm="syz.2.1364" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  333.227748][T11307] FAULT_INJECTION: forcing a failure.
[  333.227748][T11307] name failslab, interval 1, probability 0, space 0, times 0
[  333.231959][T11307] CPU: 1 UID: 0 PID: 11307 Comm: syz.0.1366 Not tainted syzkaller #0 PREEMPT(full) 
[  333.231973][T11307] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  333.231980][T11307] Call Trace:
[  333.231984][T11307]  <TASK>
[  333.231989][T11307]  dump_stack_lvl+0x16c/0x1f0
[  333.232009][T11307]  should_fail_ex+0x512/0x640
[  333.232026][T11307]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  333.232041][T11307]  should_failslab+0xc2/0x120
[  333.232098][T11307]  __kmalloc_cache_node_noprof+0x6d/0x420
[  333.232114][T11307]  ? __get_vm_area_node+0x101/0x330
[  333.232133][T11307]  __get_vm_area_node+0x101/0x330
[  333.232149][T11307]  ? __lock_acquire+0x62e/0x1ce0
[  333.232165][T11307]  __vmalloc_node_range_noprof+0x271/0x14b0
[  333.232176][T11307]  ? vhost_task_create+0x1d2/0x2e0
[  333.232192][T11307]  ? local_lock_release+0x99/0x140
[  333.232211][T11307]  ? vhost_task_create+0x1d2/0x2e0
[  333.232226][T11307]  ? rcu_read_unlock+0x17/0x60
[  333.232242][T11307]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  333.232252][T11307]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[  333.232272][T11307]  ? vhost_task_create+0x1d2/0x2e0
[  333.232287][T11307]  __vmalloc_node_noprof+0xad/0xf0
[  333.232297][T11307]  ? vhost_task_create+0x1d2/0x2e0
[  333.232314][T11307]  copy_process+0x2c70/0x7690
[  333.232336][T11307]  ? __pfx_copy_process+0x10/0x10
[  333.232352][T11307]  ? lockdep_init_map_type+0x5c/0x280
[  333.232368][T11307]  ? lockdep_init_map_type+0x5c/0x280
[  333.232383][T11307]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  333.232398][T11307]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  333.232415][T11307]  vhost_task_create+0x1d2/0x2e0
[  333.232431][T11307]  ? __pfx_vhost_task_create+0x10/0x10
[  333.232451][T11307]  ? __pfx_vhost_task_fn+0x10/0x10
[  333.232474][T11307]  kvm_mmu_post_init_vm+0x1b7/0x380
[  333.232487][T11307]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[  333.232507][T11307]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  333.232524][T11307]  kvm_vcpu_ioctl+0x5eb/0x1690
[  333.232540][T11307]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  333.232554][T11307]  ? tomoyo_path_number_perm+0x18d/0x580
[  333.232570][T11307]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  333.232588][T11307]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  333.232606][T11307]  ? do_vfs_ioctl+0x128/0x14f0
[  333.232623][T11307]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  333.232646][T11307]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  333.232661][T11307]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  333.232675][T11307]  ? __fget_files+0x20e/0x3c0
[  333.232689][T11307]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  333.232704][T11307]  __ia32_compat_sys_ioctl+0x242/0x370
[  333.232730][T11307]  __do_fast_syscall_32+0x7c/0x300
[  333.232756][T11307]  do_fast_syscall_32+0x32/0x80
[  333.232784][T11307]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  333.232803][T11307] RIP: 0023:0xf706e579
[  333.232812][T11307] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  333.232822][T11307] RSP: 002b:00000000f545e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  333.232833][T11307] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  333.232840][T11307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  333.232846][T11307] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  333.232853][T11307] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  333.232862][T11307] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  333.232883][T11307]  </TASK>
[  333.366744][T11307] syz.0.1366: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  333.373315][T11307] CPU: 1 UID: 0 PID: 11307 Comm: syz.0.1366 Not tainted syzkaller #0 PREEMPT(full) 
[  333.373337][T11307] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  333.373348][T11307] Call Trace:
[  333.373354][T11307]  <TASK>
[  333.373360][T11307]  dump_stack_lvl+0x16c/0x1f0
[  333.373389][T11307]  warn_alloc+0x248/0x3a0
[  333.373411][T11307]  ? __pfx_warn_alloc+0x10/0x10
[  333.373434][T11307]  ? rcu_is_watching+0x12/0xc0
[  333.373460][T11307]  ? trace_kmalloc+0x2b/0xd0
[  333.373480][T11307]  ? __kmalloc_cache_node_noprof+0x272/0x420
[  333.373501][T11307]  ? __kasan_kmalloc+0x8a/0xb0
[  333.373520][T11307]  ? __get_vm_area_node+0x208/0x330
[  333.373549][T11307]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  333.373569][T11307]  ? local_lock_release+0x99/0x140
[  333.373600][T11307]  ? vhost_task_create+0x1d2/0x2e0
[  333.373624][T11307]  ? rcu_read_unlock+0x17/0x60
[  333.373647][T11307]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  333.373661][T11307]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[  333.373691][T11307]  ? vhost_task_create+0x1d2/0x2e0
[  333.373712][T11307]  __vmalloc_node_noprof+0xad/0xf0
[  333.373731][T11307]  ? vhost_task_create+0x1d2/0x2e0
[  333.373760][T11307]  copy_process+0x2c70/0x7690
[  333.373791][T11307]  ? __pfx_copy_process+0x10/0x10
[  333.373815][T11307]  ? lockdep_init_map_type+0x5c/0x280
[  333.373838][T11307]  ? lockdep_init_map_type+0x5c/0x280
[  333.373860][T11307]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  333.373885][T11307]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  333.373913][T11307]  vhost_task_create+0x1d2/0x2e0
[  333.373935][T11307]  ? __pfx_vhost_task_create+0x10/0x10
[  333.373964][T11307]  ? __pfx_vhost_task_fn+0x10/0x10
[  333.373998][T11307]  kvm_mmu_post_init_vm+0x1b7/0x380
[  333.374017][T11307]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[  333.374045][T11307]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  333.374073][T11307]  kvm_vcpu_ioctl+0x5eb/0x1690
[  333.374096][T11307]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  333.374116][T11307]  ? tomoyo_path_number_perm+0x18d/0x580
[  333.374139][T11307]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  333.374166][T11307]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  333.374196][T11307]  ? do_vfs_ioctl+0x128/0x14f0
[  333.374224][T11307]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  333.374258][T11307]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  333.374279][T11307]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  333.374315][T11307]  ? __fget_files+0x20e/0x3c0
[  333.374342][T11307]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  333.374367][T11307]  __ia32_compat_sys_ioctl+0x242/0x370
[  333.374395][T11307]  __do_fast_syscall_32+0x7c/0x300
[  333.374422][T11307]  do_fast_syscall_32+0x32/0x80
[  333.374450][T11307]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  333.374470][T11307] RIP: 0023:0xf706e579
[  333.374485][T11307] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  333.374503][T11307] RSP: 002b:00000000f545e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  333.374521][T11307] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  333.374530][T11307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  333.374539][T11307] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  333.374548][T11307] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  333.374558][T11307] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  333.374579][T11307]  </TASK>
[  333.374698][T11307] Mem-Info:
[  333.521730][T11307] active_anon:9691 inactive_anon:70 isolated_anon:0
[  333.521730][T11307]  active_file:3401 inactive_file:36947 isolated_file:0
[  333.521730][T11307]  unevictable:1768 dirty:643 writeback:0
[  333.521730][T11307]  slab_reclaimable:7993 slab_unreclaimable:57172
[  333.521730][T11307]  mapped:25758 shmem:5233 pagetables:1360
[  333.521730][T11307]  sec_pagetables:319 bounce:0
[  333.521730][T11307]  kernel_misc_reclaimable:0
[  333.521730][T11307]  free:47992 free_pcp:15470 free_cma:0
[  333.539902][T11307] Node 0 active_anon:244kB inactive_anon:252kB active_file:2092kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2800kB dirty:4kB writeback:0kB shmem:3580kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7440kB pagetables:1296kB sec_pagetables:1148kB all_unreclaimable? no Balloon:0kB
[  333.553680][T11307] Node 1 active_anon:38520kB inactive_anon:28kB active_file:11512kB inactive_file:147788kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:100232kB dirty:2568kB writeback:0kB shmem:17352kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6104kB pagetables:4144kB sec_pagetables:128kB all_unreclaimable? no Balloon:0kB
[  333.566966][T11307] Node 0 DMA free:2124kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:456kB local_pcp:116kB free_cma:0kB
[  333.577826][T11307] lowmem_reserve[]: 0 288 288 288 288
[  333.579888][T11307] Node 0 DMA32 free:18332kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:4096KB free_highatomic:2340KB active_anon:216kB inactive_anon:252kB active_file:2092kB inactive_file:0kB unevictable:3536kB writepending:4kB present:1032196kB managed:295088kB mlocked:0kB bounce:0kB free_pcp:10016kB local_pcp:2820kB free_cma:0kB
[  333.591110][T11307] lowmem_reserve[]: 0 0 0 0 0
[  333.593125][T11307] Node 1 DMA32 free:171512kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:0KB free_highatomic:0KB active_anon:38520kB inactive_anon:28kB active_file:11512kB inactive_file:147788kB unevictable:3536kB writepending:2568kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:51408kB local_pcp:7216kB free_cma:0kB
[  333.604420][T11307] lowmem_reserve[]: 0 0 0 0 0
[  333.605991][T11307] Node 0 DMA: 19*4kB (U) 13*8kB (UM) 4*16kB (UM) 11*32kB (UM) 2*64kB (UM) 1*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2132kB
[  333.611787][T11307] Node 0 DMA32: 205*4kB (UMEH) 39*8kB (UEH) 87*16kB (UMEH) 134*32kB (UMEH) 68*64kB (UMEH) 24*128kB (UMEH) 6*256kB (UM) 3*512kB (ME) 1*1024kB (U) 0*2048kB 0*4096kB = 18332kB
[  333.618400][T11307] Node 1 DMA32: 963*4kB (UME) 204*8kB (UME) 480*16kB (UM) 232*32kB (UME) 118*64kB (UME) 96*128kB (UME) 86*256kB (UME) 49*512kB (UM) 20*1024kB (UM) 13*2048kB (UM) 9*4096kB (UM) = 171500kB
[  333.627050][T11307] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  333.630844][T11307] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  333.634463][T11307] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  333.638087][T11307] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  333.641640][T11307] 45769 total pagecache pages
[  333.643132][T11307] 192 pages in swap cache
[  333.644816][T11307] Free swap  = 121068kB
[  333.646501][T11307] Total swap = 124996kB
[  333.648224][T11307] 524155 pages RAM
[  333.649755][T11307] 0 pages HighMem/MovableOnly
[  333.651267][T11307] 209488 pages reserved
[  333.652981][T11307] 0 pages cma reserved
[  334.572599][T11321] netlink: 'syz.4.1369': attribute type 10 has an invalid length.
[  334.681572][T11321] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  334.871188][T11329] input: syz0 as /devices/virtual/input/input52
[  334.954346][T11335] netlink: 788 bytes leftover after parsing attributes in process `syz.2.1374'.
[  335.242024][ T6060] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  335.393405][T11340] FAULT_INJECTION: forcing a failure.
[  335.393405][T11340] name failslab, interval 1, probability 0, space 0, times 0
[  335.420901][T11340] CPU: 3 UID: 0 PID: 11340 Comm: syz.0.1375 Not tainted syzkaller #0 PREEMPT(full) 
[  335.420918][T11340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  335.420925][T11340] Call Trace:
[  335.420929][T11340]  <TASK>
[  335.420934][T11340]  dump_stack_lvl+0x16c/0x1f0
[  335.420955][T11340]  should_fail_ex+0x512/0x640
[  335.420976][T11340]  should_failslab+0xc2/0x120
[  335.420991][T11340]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  335.421005][T11340]  ? skb_clone+0x190/0x3f0
[  335.421024][T11340]  skb_clone+0x190/0x3f0
[  335.421041][T11340]  netlink_deliver_tap+0xabd/0xd30
[  335.421060][T11340]  netlink_unicast+0x64c/0x870
[  335.421080][T11340]  ? __pfx_netlink_unicast+0x10/0x10
[  335.421096][T11340]  ? __pfx___might_resched+0x10/0x10
[  335.421113][T11340]  netlink_sendmsg+0x8d1/0xdd0
[  335.421133][T11340]  ? __pfx_netlink_sendmsg+0x10/0x10
[  335.421151][T11340]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  335.421167][T11340]  ____sys_sendmsg+0xa98/0xc70
[  335.421180][T11340]  ? __pfx_____sys_sendmsg+0x10/0x10
[  335.421192][T11340]  ? get_compat_msghdr+0x11a/0x170
[  335.421213][T11340]  ___sys_sendmsg+0x134/0x1d0
[  335.421231][T11340]  ? __pfx____sys_sendmsg+0x10/0x10
[  335.421254][T11340]  ? find_held_lock+0x2b/0x80
[  335.421274][T11340]  __sys_sendmsg+0x16d/0x220
[  335.421290][T11340]  ? __pfx___sys_sendmsg+0x10/0x10
[  335.421306][T11340]  ? __pfx_bpf_trace_run2+0x10/0x10
[  335.421326][T11340]  ? syscall_trace_enter+0x1cb/0x240
[  335.421344][T11340]  ? rcu_is_watching+0x12/0xc0
[  335.421358][T11340]  __do_fast_syscall_32+0x7c/0x300
[  335.421377][T11340]  do_fast_syscall_32+0x32/0x80
[  335.421393][T11340]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  335.421407][T11340] RIP: 0023:0xf706e579
[  335.421415][T11340] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  335.421426][T11340] RSP: 002b:00000000f545e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  335.421437][T11340] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000580
[  335.421443][T11340] RDX: 000000002008c010 RSI: 0000000000000000 RDI: 0000000000000000
[  335.421450][T11340] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  335.421456][T11340] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  335.421462][T11340] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  335.421475][T11340]  </TASK>
[  335.425932][ T6060] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  335.562778][ T6060] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  335.566482][ T6060] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  335.569149][ T6060] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.584637][ T6060] usb 7-1: config 0 descriptor??
[  335.596248][ T6060] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  335.935266][T11354] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  335.937648][T11354] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  335.939905][T11354] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  335.942336][T11354] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  335.944544][T11354] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  335.947675][T11354] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  335.950579][T11354] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  335.953410][T11354] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  335.956031][T11354] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  335.958363][T11354] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  336.446115][T11368] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1384'.
[  336.516213][T11370] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1384'.
[  336.562901][T11364] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1374'.
[  338.199314][ T6059] usb 7-1: USB disconnect, device number 6
[  338.242891][ T6060] libceph: connect (1)[c::]:6789 error -101
[  338.245752][ T6060] libceph: mon0 (1)[c::]:6789 connect error
[  338.278302][T11392] ceph: No mds server is up or the cluster is laggy
[  338.361061][   T40] audit: type=1326 audit(1757864879.652:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11405 comm="syz.2.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  338.369428][   T40] audit: type=1326 audit(1757864879.652:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11405 comm="syz.2.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=29 compat=1 ip=0xf7fb7579 code=0x7ffc0000
[  338.716053][T11418] FAULT_INJECTION: forcing a failure.
[  338.716053][T11418] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  338.721756][T11418] CPU: 2 UID: 0 PID: 11418 Comm: syz.5.1392 Not tainted syzkaller #0 PREEMPT(full) 
[  338.721772][T11418] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  338.721792][T11418] Call Trace:
[  338.721797][T11418]  <TASK>
[  338.721801][T11418]  dump_stack_lvl+0x16c/0x1f0
[  338.721822][T11418]  should_fail_ex+0x512/0x640
[  338.721843][T11418]  _copy_from_user+0x2e/0xd0
[  338.721856][T11418]  blkdev_common_ioctl+0x13e2/0x2470
[  338.721872][T11418]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  338.721889][T11418]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  338.721906][T11418]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  338.721925][T11418]  ? do_vfs_ioctl+0x128/0x14f0
[  338.721944][T11418]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  338.721966][T11418]  ? find_held_lock+0x2b/0x80
[  338.721986][T11418]  compat_blkdev_ioctl+0x24f/0x7a0
[  338.722008][T11418]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  338.722037][T11418]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  338.722060][T11418]  __ia32_compat_sys_ioctl+0x242/0x370
[  338.722092][T11418]  __do_fast_syscall_32+0x7c/0x300
[  338.722121][T11418]  do_fast_syscall_32+0x32/0x80
[  338.722145][T11418]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  338.722168][T11418] RIP: 0023:0xf706e579
[  338.722181][T11418] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  338.722198][T11418] RSP: 002b:00000000f543d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  338.722216][T11418] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000127f
[  338.722226][T11418] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  338.722237][T11418] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  338.722246][T11418] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  338.722257][T11418] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  338.722281][T11418]  </TASK>
[  338.994578][ T6060] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  339.167072][ T6060] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  339.170940][ T6060] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  339.174006][ T6060] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  339.178436][ T6060] usb 9-1: config 0 descriptor??
[  339.369398][T11431] netlink: 'syz.5.1395': attribute type 10 has an invalid length.
[  339.458491][ T6060] usbhid 9-1:0.0: can't add hid device: -71
[  339.460565][ T6060] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  339.470275][ T6060] usb 9-1: USB disconnect, device number 3
[  339.711765][T11438] netlink: 'syz.0.1397': attribute type 10 has an invalid length.
[  339.715824][T11438] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1397'.
[  339.746141][T11442] FAULT_INJECTION: forcing a failure.
[  339.746141][T11442] name failslab, interval 1, probability 0, space 0, times 0
[  339.750195][T11442] CPU: 2 UID: 0 PID: 11442 Comm: syz.2.1399 Not tainted syzkaller #0 PREEMPT(full) 
[  339.750210][T11442] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.750217][T11442] Call Trace:
[  339.750221][T11442]  <TASK>
[  339.750226][T11442]  dump_stack_lvl+0x16c/0x1f0
[  339.750247][T11442]  should_fail_ex+0x512/0x640
[  339.750268][T11442]  should_failslab+0xc2/0x120
[  339.750283][T11442]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  339.750297][T11442]  ? skb_clone+0x190/0x3f0
[  339.750316][T11442]  skb_clone+0x190/0x3f0
[  339.750333][T11442]  netlink_deliver_tap+0xabd/0xd30
[  339.750352][T11442]  netlink_unicast+0x64c/0x870
[  339.750371][T11442]  ? __pfx_netlink_unicast+0x10/0x10
[  339.750388][T11442]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  339.750409][T11442]  netlink_sendmsg+0x8d1/0xdd0
[  339.750428][T11442]  ? __pfx_netlink_sendmsg+0x10/0x10
[  339.750447][T11442]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  339.750461][T11442]  ____sys_sendmsg+0xa98/0xc70
[  339.750480][T11442]  ? __pfx_____sys_sendmsg+0x10/0x10
[  339.750491][T11442]  ? get_compat_msghdr+0x11a/0x170
[  339.750513][T11442]  ___sys_sendmsg+0x134/0x1d0
[  339.750531][T11442]  ? __pfx____sys_sendmsg+0x10/0x10
[  339.750553][T11442]  ? find_held_lock+0x2b/0x80
[  339.750574][T11442]  __sys_sendmsg+0x16d/0x220
[  339.750590][T11442]  ? __pfx___sys_sendmsg+0x10/0x10
[  339.750613][T11442]  ? rcu_is_watching+0x12/0xc0
[  339.750626][T11442]  __do_fast_syscall_32+0x7c/0x300
[  339.750644][T11442]  do_fast_syscall_32+0x32/0x80
[  339.750661][T11442]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  339.750675][T11442] RIP: 0023:0xf7fb7579
[  339.750684][T11442] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  339.750695][T11442] RSP: 002b:00000000f54b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  339.750706][T11442] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000200
[  339.750712][T11442] RDX: 0000000020008084 RSI: 0000000000000000 RDI: 0000000000000000
[  339.750719][T11442] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  339.750725][T11442] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  339.750731][T11442] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  339.750744][T11442]  </TASK>
[  339.750757][T11442] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1399'.
[  340.010162][ T1703] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  340.081416][T11445] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  340.706772][ T1703] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  340.710842][ T1703] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  340.714150][ T1703] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.723208][ T1703] usb 9-1: config 0 descriptor??
[  340.943188][ T1703] usbhid 9-1:0.0: can't add hid device: -71
[  340.945649][ T1703] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  340.949361][ T1703] usb 9-1: USB disconnect, device number 4
[  341.421204][ T1703] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  341.508192][T11463] fuse: Bad value for 'fd'
[  341.515258][   T40] audit: type=1326 audit(1757864882.599:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11462 comm="syz.2.1406" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  341.603937][ T1703] usb 9-1: Using ep0 maxpacket: 32
[  341.608074][ T1703] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  341.612307][ T1703] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  341.616587][ T1703] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.622542][ T1703] usb 9-1: config 0 descriptor??
[  341.627369][ T1703] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  341.632901][ T1703] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  342.453162][T11476] fuse: Bad value for 'fd'
[  342.464408][   T40] audit: type=1326 audit(1757864883.496:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11474 comm="syz.0.1417" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  342.811624][  T842] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  343.078340][  T842] usb 7-1: Using ep0 maxpacket: 32
[  343.081737][  T842] usb 7-1: config 0 has an invalid interface number: 136 but max is 0
[  343.084277][  T842] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  343.087923][  T842] usb 7-1: config 0 has no interface number 0
[  343.089943][  T842] usb 7-1: config 0 interface 136 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  343.326525][  T842] usb 7-1: config 0 interface 136 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  343.330503][  T842] usb 7-1: New USB device found, idVendor=0763, idProduct=1021, bcdDevice=8e.c0
[  343.333290][  T842] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  343.339527][  T842] usb 7-1: config 0 descriptor??
[  343.349043][  T842] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  343.381120][ T6317] udevd[6317]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.136/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  343.392761][  T842] snd-usb-audio 7-1:0.136: probe with driver snd-usb-audio failed with error -2
[  343.497597][T11492] netlink: 'syz.0.1411': attribute type 10 has an invalid length.
[  343.500480][T11492] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1411'.
[  343.571220][T11477] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  343.576178][T11477] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  343.587709][   T68] usb 7-1: USB disconnect, device number 7
[  343.739553][ T1458] usb 9-1: USB disconnect, device number 5
[  343.742490][ T1458] ldusb 9-1:0.0: LD USB Device #0 now disconnected
[  346.372689][T11539] netlink: 'syz.4.1427': attribute type 10 has an invalid length.
[  346.378121][T11539] bond0: left promiscuous mode
[  346.381476][T11539] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[  346.385404][T11539] bond0: left allmulticast mode
[  346.390602][T11539] netdevsim netdevsim4 netdevsim0: left allmulticast mode
[  346.426797][T11539] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1427'.
[  346.820269][T11559] fuse: Bad value for 'fd'
[  346.826241][   T40] audit: type=1326 audit(1757864887.575:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.0.1432" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  347.028191][T11564] bridge_slave_0: left allmulticast mode
[  347.030296][T11564] bridge_slave_0: left promiscuous mode
[  347.032376][T11564] bridge0: port 1(bridge_slave_0) entered disabled state
[  347.039900][T11564] bridge_slave_1: left allmulticast mode
[  347.041781][T11564] bridge_slave_1: left promiscuous mode
[  347.043994][T11564] bridge0: port 2(bridge_slave_1) entered disabled state
[  347.053501][T11564] bond0: (slave bond_slave_0): Releasing backup interface
[  347.056677][T11564] bond_slave_0: left promiscuous mode
[  347.058438][T11564] bond_slave_0: left allmulticast mode
[  347.073915][T11564] bond0: (slave bond_slave_1): Releasing backup interface
[  347.080224][T11565] netlink: 'syz.5.1433': attribute type 10 has an invalid length.
[  347.083140][T11564] bond_slave_1: left promiscuous mode
[  347.085259][T11564] bond_slave_1: left allmulticast mode
[  347.091577][T11564] team_slave_0: left promiscuous mode
[  347.094064][T11564] team_slave_0: left allmulticast mode
[  347.105078][T11564] team0: Port device team_slave_0 removed
[  347.110105][T11564] team_slave_1: left promiscuous mode
[  347.112630][T11564] team_slave_1: left allmulticast mode
[  347.124676][T11564] team0: Port device team_slave_1 removed
[  347.128386][T11564] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  347.131660][T11564] batman_adv: batadv0: Removing interface: batadv_slave_0
[  347.141791][T11564] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  347.144239][T11564] batman_adv: batadv0: Removing interface: batadv_slave_1
[  347.151265][T11564] bond0: (slave netdevsim0): Releasing backup interface
[  347.154385][T11564] netdevsim netdevsim5 netdevsim0: left promiscuous mode
[  347.156622][T11564] netdevsim netdevsim5 netdevsim0: left allmulticast mode
[  347.170651][T11565] bond0: left promiscuous mode
[  347.172279][T11565] bond0: left allmulticast mode
[  347.178192][T11565] 8021q: adding VLAN 0 to HW filter on device bond0
[  347.180727][T11565] bond0: entered promiscuous mode
[  347.183575][T11565] bond0: entered allmulticast mode
[  347.185987][T11565] team0: Port device bond0 added
[  347.218394][T11563] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1433'.
[  347.823037][T11585] tipc: Can't bind to reserved service type 0
[  348.552748][T11589] netlink: 'syz.5.1442': attribute type 10 has an invalid length.
[  348.565893][T11589] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1442'.
[  348.981514][T11599] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1445'.
[  349.011656][T11600] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  349.051497][T11589] bond0: left promiscuous mode
[  349.054965][T11589] bond0: left allmulticast mode
[  349.071399][T11589] team0 (unregistering): Port device bond0 removed
[  349.465378][T11605] 9pnet_fd: Insufficient options for proto=fd
[  349.543320][T11607] fuse: Bad value for 'fd'
[  349.547084][   T40] audit: type=1326 audit(1757864890.119:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11606 comm="syz.2.1449" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  352.009845][T11645] input: syz0 as /devices/virtual/input/input53
[  352.417928][T11653] fuse: Bad value for 'fd'
[  352.428526][   T40] audit: type=1326 audit(1757864892.813:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11652 comm="syz.4.1462" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f66579 code=0x0
[  353.564067][T11673] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  353.566417][T11673] IPv6: NLM_F_CREATE should be set when creating new route
[  353.568744][T11673] IPv6: NLM_F_CREATE should be set when creating new route
[  353.570973][T11673] IPv6: NLM_F_CREATE should be set when creating new route
[  354.306149][T11676] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1468'.
[  354.495894][   T40] audit: type=1326 audit(1757864894.731:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11677 comm="syz.0.1469" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  354.772232][T11690] input: syz0 as /devices/virtual/input/input54
[  354.965815][T11695] fuse: Invalid rootmode
[  354.974047][   T40] audit: type=1326 audit(1757864895.189:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11694 comm="syz.2.1474" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  355.307113][    C3] vcan0: j1939_tp_rxtimer: 0xffff8880614e0c00: rx timeout, send abort
[  355.310995][    C3] vcan0: j1939_tp_rxtimer: 0xffff8880614e2c00: rx timeout, send abort
[  355.315059][    C3] vcan0: j1939_xtp_rx_abort_one: 0xffff8880614e0c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  355.319803][    C3] vcan0: j1939_xtp_rx_abort_one: 0xffff8880614e2c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  355.676857][T11706] FAULT_INJECTION: forcing a failure.
[  355.676857][T11706] name failslab, interval 1, probability 0, space 0, times 0
[  355.681385][T11706] CPU: 2 UID: 0 PID: 11706 Comm: syz.4.1477 Not tainted syzkaller #0 PREEMPT(full) 
[  355.681412][T11706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  355.681420][T11706] Call Trace:
[  355.681424][T11706]  <TASK>
[  355.681429][T11706]  dump_stack_lvl+0x16c/0x1f0
[  355.681471][T11706]  should_fail_ex+0x512/0x640
[  355.681494][T11706]  ? fs_reclaim_acquire+0xae/0x150
[  355.681512][T11706]  ? tomoyo_encode2+0x100/0x3e0
[  355.681528][T11706]  should_failslab+0xc2/0x120
[  355.681542][T11706]  __kmalloc_noprof+0xd2/0x510
[  355.681555][T11706]  ? d_absolute_path+0x136/0x1a0
[  355.681574][T11706]  tomoyo_encode2+0x100/0x3e0
[  355.681591][T11706]  tomoyo_encode+0x29/0x50
[  355.681606][T11706]  tomoyo_realpath_from_path+0x18f/0x6e0
[  355.681626][T11706]  tomoyo_path_number_perm+0x245/0x580
[  355.681639][T11706]  ? tomoyo_path_number_perm+0x237/0x580
[  355.681653][T11706]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  355.681681][T11706]  ? find_held_lock+0x2b/0x80
[  355.681692][T11706]  ? hook_file_ioctl_common+0x145/0x410
[  355.681710][T11706]  ? __fget_files+0x20e/0x3c0
[  355.681725][T11706]  security_file_ioctl_compat+0x9b/0x240
[  355.681740][T11706]  __ia32_compat_sys_ioctl+0xc3/0x370
[  355.681760][T11706]  __do_fast_syscall_32+0x7c/0x300
[  355.681778][T11706]  do_fast_syscall_32+0x32/0x80
[  355.681795][T11706]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  355.681809][T11706] RIP: 0023:0xf7f66579
[  355.681818][T11706] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  355.681828][T11706] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  355.681839][T11706] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000404c534a
[  355.681846][T11706] RDX: 0000000080000380 RSI: 0000000000000000 RDI: 0000000000000000
[  355.681852][T11706] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  355.681858][T11706] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  355.681865][T11706] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  355.681878][T11706]  </TASK>
[  355.681949][T11706] ERROR: Out of memory at tomoyo_realpath_from_path.
[  355.739076][T11708] netlink: 'syz.5.1476': attribute type 10 has an invalid length.
[  355.850508][T11711] loop8: detected capacity change from 0 to 16384
[  356.031417][T11714] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  357.035827][T11735] input: syz0 as /devices/virtual/input/input55
[  357.909257][T11746] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1488'.
[  358.005887][T11754] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1492'.
[  358.253568][T11765] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  358.258175][T11766] netlink: 'syz.5.1493': attribute type 10 has an invalid length.
[  358.905721][T11773] netlink: 'syz.2.1497': attribute type 10 has an invalid length.
[  358.911079][T11773] bond0: left promiscuous mode
[  358.913208][T11773] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[  358.916385][T11773] bond0: left allmulticast mode
[  358.918423][T11773] netdevsim netdevsim2 netdevsim0: left allmulticast mode
[  358.937433][T11773] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1497'.
[  359.088836][T11779] input: syz0 as /devices/virtual/input/input56
[  359.134267][T11782] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1500'.
[  359.617151][T11789] lo speed is unknown, defaulting to 1000
[  360.327892][T11813] net_ratelimit: 45 callbacks suppressed
[  360.327908][T11813] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  361.189170][T11821] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1511'.
[  361.343999][T11827] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  361.386281][T11829] input: syz0 as /devices/virtual/input/input57
[  361.466370][ T5991] Bluetooth: hci4: command 0x0406 tx timeout
[  361.580337][T11834] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  362.270837][T11852] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  362.520609][T11857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1521'.
[  362.968849][T11865] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  363.459329][T11873] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  363.526980][T11875] input: syz0 as /devices/virtual/input/input58
[  363.721081][T11882] FAULT_INJECTION: forcing a failure.
[  363.721081][T11882] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.727255][T11882] CPU: 2 UID: 0 PID: 11882 Comm: syz.5.1530 Not tainted syzkaller #0 PREEMPT(full) 
[  363.727281][T11882] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  363.727293][T11882] Call Trace:
[  363.727299][T11882]  <TASK>
[  363.727312][T11882]  dump_stack_lvl+0x16c/0x1f0
[  363.727344][T11882]  should_fail_ex+0x512/0x640
[  363.727377][T11882]  _copy_to_user+0x32/0xd0
[  363.727398][T11882]  simple_read_from_buffer+0xcb/0x170
[  363.727419][T11882]  proc_fail_nth_read+0x197/0x240
[  363.727446][T11882]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.727468][T11882]  ? rw_verify_area+0xcf/0x6c0
[  363.727506][T11882]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.727527][T11882]  vfs_read+0x1e1/0xcf0
[  363.727556][T11882]  ? __pfx_vfs_read+0x10/0x10
[  363.727575][T11882]  ? find_held_lock+0x2b/0x80
[  363.727601][T11882]  ? __fget_files+0x20e/0x3c0
[  363.727629][T11882]  ksys_read+0x12a/0x250
[  363.727649][T11882]  ? __pfx_ksys_read+0x10/0x10
[  363.727673][T11882]  ? rcu_is_watching+0x12/0xc0
[  363.727696][T11882]  __do_fast_syscall_32+0x7c/0x300
[  363.727726][T11882]  do_fast_syscall_32+0x32/0x80
[  363.727754][T11882]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  363.727775][T11882] RIP: 0023:0xf706e579
[  363.727810][T11882] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  363.727828][T11882] RSP: 002b:00000000f545e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  363.727849][T11882] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f545e620
[  363.727862][T11882] RDX: 000000000000000f RSI: 00000000f73f4ff4 RDI: 0000000000000000
[  363.727871][T11882] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  363.727882][T11882] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  363.727892][T11882] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  363.727921][T11882]  </TASK>
[  363.835318][T11884] gfs2: gfs2 mount does not exist
[  363.836392][T11885] gfs2: gfs2 mount does not exist
[  364.125136][T11892] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  364.522602][T11897] FAULT_INJECTION: forcing a failure.
[  364.522602][T11897] name failslab, interval 1, probability 0, space 0, times 0
[  364.522622][T11897] CPU: 1 UID: 0 PID: 11897 Comm: syz.2.1536 Not tainted syzkaller #0 PREEMPT(full) 
[  364.522635][T11897] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  364.522642][T11897] Call Trace:
[  364.522646][T11897]  <TASK>
[  364.522650][T11897]  dump_stack_lvl+0x16c/0x1f0
[  364.522671][T11897]  should_fail_ex+0x512/0x640
[  364.522691][T11897]  should_failslab+0xc2/0x120
[  364.522706][T11897]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  364.522720][T11897]  ? skb_clone+0x190/0x3f0
[  364.522739][T11897]  skb_clone+0x190/0x3f0
[  364.522756][T11897]  netlink_deliver_tap+0xabd/0xd30
[  364.522775][T11897]  netlink_unicast+0x64c/0x870
[  364.522794][T11897]  ? __pfx_netlink_unicast+0x10/0x10
[  364.522811][T11897]  ? __pfx___might_resched+0x10/0x10
[  364.522827][T11897]  netlink_sendmsg+0x8d1/0xdd0
[  364.522861][T11897]  ? __pfx_netlink_sendmsg+0x10/0x10
[  364.522880][T11897]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  364.522895][T11897]  ____sys_sendmsg+0xa98/0xc70
[  364.522909][T11897]  ? __pfx_____sys_sendmsg+0x10/0x10
[  364.522920][T11897]  ? get_compat_msghdr+0x11a/0x170
[  364.522942][T11897]  ___sys_sendmsg+0x134/0x1d0
[  364.522960][T11897]  ? __pfx____sys_sendmsg+0x10/0x10
[  364.522983][T11897]  ? find_held_lock+0x2b/0x80
[  364.523003][T11897]  __sys_sendmsg+0x16d/0x220
[  364.523019][T11897]  ? __pfx___sys_sendmsg+0x10/0x10
[  364.523042][T11897]  ? rcu_is_watching+0x12/0xc0
[  364.523055][T11897]  __do_fast_syscall_32+0x7c/0x300
[  364.523074][T11897]  do_fast_syscall_32+0x32/0x80
[  364.523091][T11897]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  364.523105][T11897] RIP: 0023:0xf7fb7579
[  364.523113][T11897] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  364.523124][T11897] RSP: 002b:00000000f54b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  364.523134][T11897] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  364.523141][T11897] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  364.523147][T11897] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  364.523153][T11897] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  364.523160][T11897] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  364.523173][T11897]  </TASK>
[  364.795352][T11903] block nbd0: server does not support multiple connections per device.
[  364.798570][T11903] block nbd0: shutting down sockets
[  364.890587][T11916] FAULT_INJECTION: forcing a failure.
[  364.890587][T11916] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  364.890617][T11916] CPU: 1 UID: 0 PID: 11916 Comm: syz.2.1538 Not tainted syzkaller #0 PREEMPT(full) 
[  364.890637][T11916] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  364.890648][T11916] Call Trace:
[  364.890654][T11916]  <TASK>
[  364.890660][T11916]  dump_stack_lvl+0x16c/0x1f0
[  364.890692][T11916]  should_fail_ex+0x512/0x640
[  364.890723][T11916]  _copy_from_user+0x2e/0xd0
[  364.890744][T11916]  get_compat_msghdr+0xa7/0x170
[  364.890769][T11916]  ? __pfx_get_compat_msghdr+0x10/0x10
[  364.890804][T11916]  ___sys_sendmsg+0x1ae/0x1d0
[  364.890833][T11916]  ? __pfx____sys_sendmsg+0x10/0x10
[  364.890872][T11916]  ? find_held_lock+0x2b/0x80
[  364.890908][T11916]  __sys_sendmsg+0x16d/0x220
[  364.890935][T11916]  ? __pfx___sys_sendmsg+0x10/0x10
[  364.890973][T11916]  ? rcu_is_watching+0x12/0xc0
[  364.890996][T11916]  __do_fast_syscall_32+0x7c/0x300
[  364.891026][T11916]  do_fast_syscall_32+0x32/0x80
[  364.891052][T11916]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  364.891074][T11916] RIP: 0023:0xf7fb7579
[  364.891087][T11916] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  364.891105][T11916] RSP: 002b:00000000f547455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  364.891122][T11916] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080000080
[  364.891133][T11916] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  364.891143][T11916] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  364.891152][T11916] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  364.891162][T11916] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  364.891184][T11916]  </TASK>
[  366.048645][T11934] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  366.137656][T11936] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1551'.
[  366.140671][T11936] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1551'.
[  366.346336][T11940] tipc: Started in network mode
[  366.348952][T11940] tipc: Node identity ac1414aa, cluster identity 4711
[  366.352932][T11940] tipc: Enabled bearer <udp:s>, priority 10
[  366.430264][T11944] netlink: 27 bytes leftover after parsing attributes in process `syz.5.1546'.
[  366.464930][T11947] fuse: Bad value for 'rootmode'
[  366.491553][   T40] audit: type=1326 audit(1757864905.965:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11946 comm="syz.5.1548" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  367.334379][T11970] netlink: 'syz.0.1554': attribute type 10 has an invalid length.
[  367.340754][T11970] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1554'.
[  367.549428][   T54] tipc: Node number set to 2886997162
[  367.863482][T11985] FAULT_INJECTION: forcing a failure.
[  367.863482][T11985] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  367.868838][T11985] CPU: 2 UID: 0 PID: 11985 Comm: syz.2.1558 Not tainted syzkaller #0 PREEMPT(full) 
[  367.868860][T11985] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  367.868871][T11985] Call Trace:
[  367.868878][T11985]  <TASK>
[  367.868885][T11985]  dump_stack_lvl+0x16c/0x1f0
[  367.868913][T11985]  should_fail_ex+0x512/0x640
[  367.868945][T11985]  _copy_to_user+0x32/0xd0
[  367.868965][T11985]  simple_read_from_buffer+0xcb/0x170
[  367.868987][T11985]  proc_fail_nth_read+0x197/0x240
[  367.869023][T11985]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  367.869042][T11985]  ? rw_verify_area+0xcf/0x6c0
[  367.869061][T11985]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  367.869082][T11985]  vfs_read+0x1e1/0xcf0
[  367.869104][T11985]  ? __pfx_vfs_read+0x10/0x10
[  367.869124][T11985]  ? find_held_lock+0x2b/0x80
[  367.869148][T11985]  ? __fget_files+0x20e/0x3c0
[  367.869177][T11985]  ksys_read+0x12a/0x250
[  367.869197][T11985]  ? __pfx_ksys_read+0x10/0x10
[  367.869217][T11985]  ? rcu_is_watching+0x12/0xc0
[  367.869242][T11985]  __do_fast_syscall_32+0x7c/0x300
[  367.869270][T11985]  do_fast_syscall_32+0x32/0x80
[  367.869298][T11985]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  367.869318][T11985] RIP: 0023:0xf7fb7579
[  367.869333][T11985] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  367.869350][T11985] RSP: 002b:00000000f5474590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  367.869365][T11985] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5474620
[  367.869376][T11985] RDX: 000000000000000f RSI: 00000000f7444ff4 RDI: 0000000000000000
[  367.869388][T11985] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  367.869397][T11985] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  367.869407][T11985] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  367.869434][T11985]  </TASK>
[  368.033337][T11990] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  368.659380][T12005] overlayfs: conflicting options: nfs_export=on,metacopy=on
[  369.250325][   T63] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  369.253242][   T63] Bluetooth: hci2: Injecting HCI hardware error event
[  369.257224][   T63] Bluetooth: hci2: hardware error 0x00
[  369.277710][T12026] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  369.325604][T12026] 9pnet_virtio: no channels available for device syz
[  369.497102][T12033] netlink: 'syz.4.1569': attribute type 10 has an invalid length.
[  369.502376][T12033] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1569'.
[  369.662874][T12038] FAULT_INJECTION: forcing a failure.
[  369.662874][T12038] name failslab, interval 1, probability 0, space 0, times 0
[  369.667589][T12038] CPU: 3 UID: 0 PID: 12038 Comm: syz.5.1571 Not tainted syzkaller #0 PREEMPT(full) 
[  369.667604][T12038] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.667611][T12038] Call Trace:
[  369.667614][T12038]  <TASK>
[  369.667619][T12038]  dump_stack_lvl+0x16c/0x1f0
[  369.667640][T12038]  should_fail_ex+0x512/0x640
[  369.667657][T12038]  ? __kmalloc_noprof+0xbf/0x510
[  369.667671][T12038]  ? comedi_compat_ioctl+0x406/0x990
[  369.667686][T12038]  should_failslab+0xc2/0x120
[  369.667700][T12038]  __kmalloc_noprof+0xd2/0x510
[  369.667716][T12038]  comedi_compat_ioctl+0x406/0x990
[  369.667757][T12038]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  369.667775][T12038]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  369.667793][T12038]  ? do_vfs_ioctl+0x128/0x14f0
[  369.667812][T12038]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  369.667833][T12038]  ? find_held_lock+0x2b/0x80
[  369.667845][T12038]  ? hook_file_ioctl_common+0x145/0x410
[  369.667862][T12038]  ? __fget_files+0x20e/0x3c0
[  369.667877][T12038]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  369.667892][T12038]  __ia32_compat_sys_ioctl+0x242/0x370
[  369.667911][T12038]  __do_fast_syscall_32+0x7c/0x300
[  369.667929][T12038]  do_fast_syscall_32+0x32/0x80
[  369.667946][T12038]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  369.667960][T12038] RIP: 0023:0xf706e579
[  369.667969][T12038] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  369.667980][T12038] RSP: 002b:00000000f545e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  369.667991][T12038] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000008008640b
[  369.667998][T12038] RDX: 0000000080113800 RSI: 0000000000000000 RDI: 0000000000000000
[  369.668004][T12038] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  369.668011][T12038] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  369.668017][T12038] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  369.668029][T12038]  </TASK>
[  369.813484][T12041] input: syz0 as /devices/virtual/input/input59
[  370.691487][T12056] FAULT_INJECTION: forcing a failure.
[  370.691487][T12056] name failslab, interval 1, probability 0, space 0, times 0
[  370.695937][T12056] CPU: 2 UID: 0 PID: 12056 Comm: syz.5.1576 Not tainted syzkaller #0 PREEMPT(full) 
[  370.695952][T12056] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  370.695959][T12056] Call Trace:
[  370.695963][T12056]  <TASK>
[  370.695967][T12056]  dump_stack_lvl+0x16c/0x1f0
[  370.695988][T12056]  should_fail_ex+0x512/0x640
[  370.696006][T12056]  ? fs_reclaim_acquire+0xae/0x150
[  370.696024][T12056]  should_failslab+0xc2/0x120
[  370.696039][T12056]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  370.696053][T12056]  ? p9_tag_alloc+0x9c/0x640
[  370.696071][T12056]  p9_tag_alloc+0x9c/0x640
[  370.696086][T12056]  ? destroy_inode+0x12c/0x1b0
[  370.696107][T12056]  ? __pfx_p9_tag_alloc+0x10/0x10
[  370.696122][T12056]  ? generic_shutdown_super+0x6c/0x390
[  370.696139][T12056]  ? kill_anon_super+0x3a/0x60
[  370.696148][T12056]  ? v9fs_kill_super+0x3d/0xa0
[  370.696158][T12056]  ? deactivate_locked_super+0xbe/0x1a0
[  370.696168][T12056]  ? deactivate_super+0xde/0x100
[  370.696178][T12056]  ? cleanup_mnt+0x225/0x450
[  370.696188][T12056]  ? task_work_run+0x14d/0x240
[  370.696197][T12056]  ? exit_to_user_mode_loop+0xeb/0x110
[  370.696213][T12056]  ? __do_fast_syscall_32+0x240/0x300
[  370.696230][T12056]  ? do_fast_syscall_32+0x32/0x80
[  370.696246][T12056]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  370.696262][T12056]  p9_client_prepare_req+0x19b/0x4d0
[  370.696279][T12056]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  370.696301][T12056]  p9_client_rpc+0x1c4/0xc50
[  370.696319][T12056]  ? __pfx_p9_client_rpc+0x10/0x10
[  370.696335][T12056]  ? __lock_acquire+0xb97/0x1ce0
[  370.696358][T12056]  ? destroy_inode+0x12c/0x1b0
[  370.696378][T12056]  p9_client_clunk+0x93/0x170
[  370.696397][T12056]  v9fs_dentry_release+0x130/0x260
[  370.696412][T12056]  ? __pfx_v9fs_dentry_release+0x10/0x10
[  370.696429][T12056]  ? __pfx_v9fs_dentry_release+0x10/0x10
[  370.696445][T12056]  __dentry_kill+0x23b/0x600
[  370.696461][T12056]  dput.part.0+0x4b1/0x9b0
[  370.696477][T12056]  shrink_dcache_for_umount+0x159/0x3e0
[  370.696494][T12056]  ? lockdep_hardirqs_on+0x7c/0x110
[  370.696519][T12056]  generic_shutdown_super+0x6c/0x390
[  370.696537][T12056]  kill_anon_super+0x3a/0x60
[  370.696547][T12056]  v9fs_kill_super+0x3d/0xa0
[  370.696557][T12056]  deactivate_locked_super+0xbe/0x1a0
[  370.696568][T12056]  deactivate_super+0xde/0x100
[  370.696580][T12056]  cleanup_mnt+0x225/0x450
[  370.696592][T12056]  task_work_run+0x14d/0x240
[  370.696602][T12056]  ? __pfx_task_work_run+0x10/0x10
[  370.696619][T12056]  ? __pfx___ia32_sys_umount+0x10/0x10
[  370.696635][T12056]  exit_to_user_mode_loop+0xeb/0x110
[  370.696651][T12056]  __do_fast_syscall_32+0x240/0x300
[  370.696669][T12056]  do_fast_syscall_32+0x32/0x80
[  370.696686][T12056]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  370.696698][T12056] RIP: 0023:0xf706e579
[  370.696707][T12056] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  370.696718][T12056] RSP: 002b:00000000f545e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000034
[  370.696728][T12056] RAX: 0000000000000000 RBX: 00000000800002c0 RCX: 0000000000000009
[  370.696735][T12056] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  370.696741][T12056] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  370.696747][T12056] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  370.696753][T12056] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  370.696767][T12056]  </TASK>
[  371.206119][T12065] bridge0: port 1(syz_tun) entered blocking state
[  371.209543][T12065] bridge0: port 1(syz_tun) entered disabled state
[  371.215953][T12065] bridge0: port 1(syz_tun) entered blocking state
[  371.218882][T12065] bridge0: port 1(syz_tun) entered forwarding state
[  371.226075][T12065] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1579'.
[  371.289763][T12065] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1579'.
[  371.560949][   T63] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  371.598403][T12061] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  372.063013][T12088] FAULT_INJECTION: forcing a failure.
[  372.063013][T12088] name failslab, interval 1, probability 0, space 0, times 0
[  372.068177][T12088] CPU: 1 UID: 0 PID: 12088 Comm: syz.5.1583 Not tainted syzkaller #0 PREEMPT(full) 
[  372.068210][T12088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  372.068220][T12088] Call Trace:
[  372.068225][T12088]  <TASK>
[  372.068231][T12088]  dump_stack_lvl+0x16c/0x1f0
[  372.068258][T12088]  should_fail_ex+0x512/0x640
[  372.068284][T12088]  should_failslab+0xc2/0x120
[  372.068305][T12088]  __kmalloc_cache_noprof+0x6a/0x3e0
[  372.068321][T12088]  ? __pfx_get_l2cap_conn.constprop.0+0x10/0x10
[  372.068342][T12088]  ? l2cap_chan_create+0x44/0x920
[  372.068368][T12088]  l2cap_chan_create+0x44/0x920
[  372.068396][T12088]  lowpan_control_write+0x2dc/0x740
[  372.068418][T12088]  ? __pfx_lowpan_control_write+0x10/0x10
[  372.068443][T12088]  ? __debugfs_file_get+0x1fe/0x840
[  372.068473][T12088]  full_proxy_write+0x131/0x1a0
[  372.068497][T12088]  ? __pfx_full_proxy_write+0x10/0x10
[  372.068519][T12088]  vfs_write+0x2a0/0x11d0
[  372.068543][T12088]  ? __pfx_vfs_write+0x10/0x10
[  372.068558][T12088]  ? find_held_lock+0x2b/0x80
[  372.068578][T12088]  ? __fget_files+0x20e/0x3c0
[  372.068593][T12088]  ? handle_mm_fault+0x200/0xd10
[  372.068614][T12088]  ksys_write+0x12a/0x250
[  372.068630][T12088]  ? __pfx_ksys_write+0x10/0x10
[  372.068650][T12088]  ? rcu_is_watching+0x12/0xc0
[  372.068668][T12088]  __do_fast_syscall_32+0x7c/0x300
[  372.068693][T12088]  do_fast_syscall_32+0x32/0x80
[  372.068715][T12088]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  372.068734][T12088] RIP: 0023:0xf706e579
[  372.068746][T12088] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  372.068761][T12088] RSP: 002b:00000000f543d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  372.068777][T12088] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080000040
[  372.068786][T12088] RDX: 000000000000001b RSI: 0000000000000000 RDI: 0000000000000000
[  372.068795][T12088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  372.068803][T12088] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  372.068812][T12088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  372.068831][T12088]  </TASK>
[  372.436267][T12095] input: syz0 as /devices/virtual/input/input60
[  372.559594][T12099] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  373.573636][T12114] netlink: 592 bytes leftover after parsing attributes in process `syz.4.1591'.
[  373.616886][T12111] FAULT_INJECTION: forcing a failure.
[  373.616886][T12111] name failslab, interval 1, probability 0, space 0, times 0
[  373.624280][T12111] CPU: 3 UID: 0 PID: 12111 Comm: syz.2.1590 Not tainted syzkaller #0 PREEMPT(full) 
[  373.624315][T12111] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  373.624325][T12111] Call Trace:
[  373.624331][T12111]  <TASK>
[  373.624337][T12111]  dump_stack_lvl+0x16c/0x1f0
[  373.624364][T12111]  should_fail_ex+0x512/0x640
[  373.624396][T12111]  should_failslab+0xc2/0x120
[  373.624417][T12111]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  373.624435][T12111]  ? skb_clone+0x190/0x3f0
[  373.624461][T12111]  skb_clone+0x190/0x3f0
[  373.624484][T12111]  netlink_deliver_tap+0xabd/0xd30
[  373.624511][T12111]  netlink_unicast+0x64c/0x870
[  373.624538][T12111]  ? __pfx_netlink_unicast+0x10/0x10
[  373.624562][T12111]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  373.624592][T12111]  netlink_sendmsg+0x8d1/0xdd0
[  373.624618][T12111]  ? __pfx_netlink_sendmsg+0x10/0x10
[  373.624644][T12111]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  373.624666][T12111]  ____sys_sendmsg+0xa98/0xc70
[  373.624685][T12111]  ? __pfx_____sys_sendmsg+0x10/0x10
[  373.624701][T12111]  ? get_compat_msghdr+0x11a/0x170
[  373.624732][T12111]  ___sys_sendmsg+0x134/0x1d0
[  373.624757][T12111]  ? __pfx____sys_sendmsg+0x10/0x10
[  373.624791][T12111]  ? find_held_lock+0x2b/0x80
[  373.624822][T12111]  __sys_sendmsg+0x16d/0x220
[  373.624845][T12111]  ? __pfx___sys_sendmsg+0x10/0x10
[  373.624877][T12111]  ? rcu_is_watching+0x12/0xc0
[  373.624896][T12111]  __do_fast_syscall_32+0x7c/0x300
[  373.624922][T12111]  do_fast_syscall_32+0x32/0x80
[  373.624945][T12111]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  373.624963][T12111] RIP: 0023:0xf7fb7579
[  373.624975][T12111] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  373.624989][T12111] RSP: 002b:00000000f54b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  373.625004][T12111] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000400
[  373.625014][T12111] RDX: 0000000020040080 RSI: 0000000000000000 RDI: 0000000000000000
[  373.625023][T12111] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  373.625032][T12111] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  373.625040][T12111] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  373.625059][T12111]  </TASK>
[  373.817930][T12124] input: syz0 as /devices/virtual/input/input61
[  374.477287][T12131] fuse: Unknown parameter 'use00000000000000000000'
[  374.483900][   T40] audit: type=1326 audit(1757864913.439:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12130 comm="syz.5.1595" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  376.091603][T12162] Bluetooth: MGMT ver 1.23
[  376.281998][T12173] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add()
[  376.529838][T12177] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  376.550571][ T6040] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  376.747438][ T6040] usb 7-1: Using ep0 maxpacket: 8
[  376.756156][ T6040] usb 7-1: config index 0 descriptor too short (expected 45382, got 27)
[  376.759216][ T6040] usb 7-1: config 154 has too many interfaces: 185, using maximum allowed: 32
[  376.762930][ T6040] usb 7-1: config 154 has an invalid descriptor of length 221, skipping remainder of the config
[  376.768002][ T6040] usb 7-1: config 154 has 0 interfaces, different from the descriptor's value: 185
[  376.782880][ T6040] usb 7-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=dc.4d
[  376.786803][ T6040] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.789370][ T6040] usb 7-1: Product: syz
[  376.790689][ T6040] usb 7-1: Manufacturer: syz
[  376.792634][ T6040] usb 7-1: SerialNumber: syz
[  376.961175][T12182] netlink: 'syz.5.1612': attribute type 10 has an invalid length.
[  376.966759][T12182] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1612'.
[  377.478452][ T6040] usb 7-1: USB disconnect, device number 8
[  377.729000][   T34] IPVS: starting estimator thread 0...
[  377.732564][T12194] tipc: Started in network mode
[  377.734631][T12194] tipc: Node identity ac1414aa, cluster identity 4711
[  377.738475][T12194] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  377.741619][T12194] tipc: Enabled bearer <udp:s>, priority 10
[  377.833965][T12195] IPVS: using max 26 ests per chain, 62400 per kthread
[  377.887045][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  378.036592][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  378.186230][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  378.239378][T12207] qnx4: no qnx4 filesystem (no root dir).
[  378.335910][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  378.485532][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  378.635219][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  378.784901][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  378.798191][T12213] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  378.935727][ T1025] tipc: Node number set to 2886997162
[  379.084279][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  379.372933][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  380.411364][T12239] netlink: 'syz.4.1626': attribute type 10 has an invalid length.
[  380.415999][T12239] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1626'.
[  381.443578][T12243] block nbd2: shutting down sockets
[  381.504149][T12253] netlink: 204 bytes leftover after parsing attributes in process `syz.0.1638'.
[  381.781572][T12261] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1631'.
[  382.552457][T12276] fuse: Unknown parameter 'user_i00000000000000000000'
[  382.558525][   T40] audit: type=1326 audit(1757864920.997:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12273 comm="syz.0.1635" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  382.609499][T12278] input: syz0 as /devices/virtual/input/input62
[  383.187735][T12286] FAULT_INJECTION: forcing a failure.
[  383.187735][T12286] name failslab, interval 1, probability 0, space 0, times 0
[  383.192569][T12286] CPU: 3 UID: 0 PID: 12286 Comm: syz.4.1640 Not tainted syzkaller #0 PREEMPT(full) 
[  383.192584][T12286] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  383.192591][T12286] Call Trace:
[  383.192595][T12286]  <TASK>
[  383.192599][T12286]  dump_stack_lvl+0x16c/0x1f0
[  383.192621][T12286]  should_fail_ex+0x512/0x640
[  383.192641][T12286]  should_failslab+0xc2/0x120
[  383.192657][T12286]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  383.192671][T12286]  ? skb_clone+0x190/0x3f0
[  383.192689][T12286]  skb_clone+0x190/0x3f0
[  383.192706][T12286]  netlink_deliver_tap+0xabd/0xd30
[  383.192725][T12286]  netlink_unicast+0x64c/0x870
[  383.192744][T12286]  ? __pfx_netlink_unicast+0x10/0x10
[  383.192761][T12286]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  383.192786][T12286]  netlink_sendmsg+0x8d1/0xdd0
[  383.192805][T12286]  ? __pfx_netlink_sendmsg+0x10/0x10
[  383.192824][T12286]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  383.192842][T12286]  ____sys_sendmsg+0xa98/0xc70
[  383.192856][T12286]  ? __pfx_____sys_sendmsg+0x10/0x10
[  383.192867][T12286]  ? get_compat_msghdr+0x11a/0x170
[  383.192884][T12286]  ? __pfx__kstrtoull+0x10/0x10
[  383.192902][T12286]  ___sys_sendmsg+0x134/0x1d0
[  383.192919][T12286]  ? __pfx____sys_sendmsg+0x10/0x10
[  383.192952][T12286]  __sys_sendmmsg+0x2f9/0x420
[  383.192975][T12286]  ? __pfx___sys_sendmmsg+0x10/0x10
[  383.193006][T12286]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  383.193044][T12286]  ? fput+0x9b/0xd0
[  383.193068][T12286]  ? ksys_write+0x1ac/0x250
[  383.193088][T12286]  ? __pfx_ksys_write+0x10/0x10
[  383.193113][T12286]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  383.193139][T12286]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  383.193166][T12286]  __do_fast_syscall_32+0x7c/0x300
[  383.193195][T12286]  do_fast_syscall_32+0x32/0x80
[  383.193221][T12286]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  383.193242][T12286] RIP: 0023:0xf7f66579
[  383.193262][T12286] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  383.193280][T12286] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  383.193295][T12286] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[  383.193302][T12286] RDX: 000000000000009f RSI: 0000000000000000 RDI: 0000000000000000
[  383.193308][T12286] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  383.193314][T12286] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  383.193320][T12286] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  383.193334][T12286]  </TASK>
[  383.255560][    T9] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  383.275086][    C2] net_ratelimit: 3 callbacks suppressed
[  383.275101][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  383.449362][    T9] usb 10-1: Using ep0 maxpacket: 16
[  383.452432][    T9] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  383.459925][    T9] usb 10-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  383.463211][    T9] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  383.466013][    T9] usb 10-1: Product: syz
[  383.467780][    T9] usb 10-1: Manufacturer: syz
[  383.469446][    T9] usb 10-1: SerialNumber: syz
[  383.473295][    T9] usb 10-1: config 0 descriptor??
[  383.477531][    T9] hub 10-1:0.0: bad descriptor, ignoring hub
[  383.480436][    T9] hub 10-1:0.0: probe with driver hub failed with error -5
[  383.490354][    T9] input: syz syz as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/input/input63
[  384.386798][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  385.487915][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  386.042374][T12344] fuse: Unknown parameter 'user_id00000000000000000000'
[  386.046721][   T40] audit: type=1326 audit(1757864924.261:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12343 comm="syz.2.1652" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  386.309817][   T40] audit: type=1326 audit(1757864924.504:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.0.1656" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706e579 code=0x0
[  386.599947][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  387.239486][T12363] TCP: TCP_TX_DELAY enabled
[  387.273546][   T54] usb 10-1: USB disconnect, device number 3
[  387.338489][   T40] audit: type=1326 audit(1757864925.477:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12360 comm="syz.5.1660" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  387.711547][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  388.521444][T12386] fuse: Unknown parameter 'user_id00000000000000000000'
[  388.531753][   T40] audit: type=1326 audit(1757864926.581:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12385 comm="syz.4.1665" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f66579 code=0x0
[  388.638241][T12389] fuse: Bad value for 'rootmode'
[  388.823390][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  389.429040][T12404] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1672'.
[  389.935381][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  391.047033][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  391.134847][T12433] fuse: Unknown parameter 'user_id00000000000000000000'
[  391.141779][   T40] audit: type=1326 audit(1757864929.022:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12432 comm="syz.2.1680" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  391.599944][T12441] tipc: Started in network mode
[  391.601847][T12441] tipc: Node identity e0000001, cluster identity 4711
[  391.604244][T12441] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  392.159000][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  393.270689][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  394.393185][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  394.421765][T12475] fuse: Bad value for 'fd'
[  394.427479][   T40] audit: type=1326 audit(1757864932.100:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12474 comm="syz.5.1694" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  395.494400][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  396.606155][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  396.815535][T12508] netlink: 'syz.4.1703': attribute type 12 has an invalid length.
[  396.819582][T12508] netlink: 9472 bytes leftover after parsing attributes in process `syz.4.1703'.
[  397.568146][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  397.586343][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  397.717954][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  398.039111][T12520] fuse: Bad value for 'fd'
[  398.059494][   T40] audit: type=1326 audit(1757864935.486:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12519 comm="syz.4.1706" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f66579 code=0x0
[  398.829787][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  399.941614][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  401.064136][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  401.873806][T12571] fuse: Bad value for 'fd'
[  401.878604][   T40] audit: type=1326 audit(1757864939.069:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12569 comm="syz.5.1721" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  401.905425][T12573] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1723'.
[  401.920866][T12573] netlink: 'syz.4.1723': attribute type 12 has an invalid length.
[  401.924412][T12573] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1723'.
[  402.082019][T12587] netlink: 'syz.2.1727': attribute type 10 has an invalid length.
[  402.085571][T12587] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1727'.
[  402.175983][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  402.707009][T12589] input: syz0 as /devices/virtual/input/input64
[  403.277089][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  404.116208][T12608] FAULT_INJECTION: forcing a failure.
[  404.116208][T12608] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  404.121923][T12608] CPU: 3 UID: 0 PID: 12608 Comm: syz.4.1734 Not tainted syzkaller #0 PREEMPT(full) 
[  404.121947][T12608] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  404.121958][T12608] Call Trace:
[  404.121965][T12608]  <TASK>
[  404.121971][T12608]  dump_stack_lvl+0x16c/0x1f0
[  404.122004][T12608]  should_fail_ex+0x512/0x640
[  404.122035][T12608]  strncpy_from_user+0x3b/0x2e0
[  404.122062][T12608]  getname_flags.part.0+0x8f/0x550
[  404.122093][T12608]  getname_flags+0x93/0xf0
[  404.122114][T12608]  user_path_at+0x24/0x60
[  404.122135][T12608]  __ia32_sys_quotactl+0x2fe/0x440
[  404.122154][T12608]  ? __pfx___ia32_sys_quotactl+0x10/0x10
[  404.122170][T12608]  ? ksys_write+0x1ac/0x250
[  404.122191][T12608]  ? __pfx_ksys_write+0x10/0x10
[  404.122214][T12608]  ? rcu_is_watching+0x12/0xc0
[  404.122239][T12608]  __do_fast_syscall_32+0x7c/0x300
[  404.122266][T12608]  do_fast_syscall_32+0x32/0x80
[  404.122293][T12608]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  404.122314][T12608] RIP: 0023:0xf7f66579
[  404.122331][T12608] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  404.122350][T12608] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000083
[  404.122366][T12608] RAX: ffffffffffffffda RBX: 0000000080000200 RCX: 0000000080000140
[  404.122379][T12608] RDX: 0000000000000000 RSI: 0000000080000400 RDI: 0000000000000000
[  404.122389][T12608] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  404.122399][T12608] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  404.122410][T12608] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  404.122433][T12608]  </TASK>
[  404.385586][T12608] Invalid ELF header len 8
[  404.399997][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  404.548839][T12611] Invalid ELF header len 8
[  405.500739][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  406.626917][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  406.747702][T12658] netlink: 'syz.2.1748': attribute type 10 has an invalid length.
[  406.750404][T12658] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1748'.
[  406.889451][T12661] fuse: Bad value for 'fd'
[  406.894294][   T40] audit: type=1326 audit(1757864943.764:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12659 comm="syz.4.1749" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f66579 code=0x0
[  407.066188][T12671] netlink: 'syz.0.1750': attribute type 10 has an invalid length.
[  407.070311][T12665] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1750'.
[  407.464394][T12675] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  407.735241][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  407.935044][T12692] FAULT_INJECTION: forcing a failure.
[  407.935044][T12692] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  407.939031][T12692] CPU: 1 UID: 0 PID: 12692 Comm: syz.5.1760 Not tainted syzkaller #0 PREEMPT(full) 
[  407.939057][T12692] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  407.939064][T12692] Call Trace:
[  407.939069][T12692]  <TASK>
[  407.939074][T12692]  dump_stack_lvl+0x16c/0x1f0
[  407.939095][T12692]  should_fail_ex+0x512/0x640
[  407.939120][T12692]  _copy_to_user+0x32/0xd0
[  407.939134][T12692]  simple_read_from_buffer+0xcb/0x170
[  407.939147][T12692]  proc_fail_nth_read+0x197/0x240
[  407.939161][T12692]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  407.939174][T12692]  ? rw_verify_area+0xcf/0x6c0
[  407.939185][T12692]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  407.939197][T12692]  vfs_read+0x1e1/0xcf0
[  407.939213][T12692]  ? __pfx_vfs_read+0x10/0x10
[  407.939224][T12692]  ? find_held_lock+0x2b/0x80
[  407.939240][T12692]  ? __fget_files+0x20e/0x3c0
[  407.939257][T12692]  ksys_read+0x12a/0x250
[  407.939269][T12692]  ? __pfx_ksys_read+0x10/0x10
[  407.939283][T12692]  ? rcu_is_watching+0x12/0xc0
[  407.939297][T12692]  __do_fast_syscall_32+0x7c/0x300
[  407.939316][T12692]  do_fast_syscall_32+0x32/0x80
[  407.939333][T12692]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  407.939347][T12692] RIP: 0023:0xf706e579
[  407.939356][T12692] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  407.939382][T12692] RSP: 002b:00000000f545e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  407.939394][T12692] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f545e620
[  407.939401][T12692] RDX: 000000000000000f RSI: 00000000f73f4ff4 RDI: 0000000000000000
[  407.939407][T12692] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  407.939414][T12692] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  407.939420][T12692] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  407.939434][T12692]  </TASK>
[  407.941364][T12694] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1759'.
[  408.142827][T12699] netlink: 'syz.5.1761': attribute type 10 has an invalid length.
[  408.153892][T12699] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1761'.
[  408.179895][T12706] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  408.836285][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  409.601350][T12725] FAULT_INJECTION: forcing a failure.
[  409.601350][T12725] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  409.606320][T12725] CPU: 3 UID: 0 PID: 12725 Comm: syz.5.1771 Not tainted syzkaller #0 PREEMPT(full) 
[  409.606336][T12725] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  409.606344][T12725] Call Trace:
[  409.606349][T12725]  <TASK>
[  409.606353][T12725]  dump_stack_lvl+0x16c/0x1f0
[  409.606374][T12725]  should_fail_ex+0x512/0x640
[  409.606394][T12725]  _copy_from_iter+0x29f/0x1720
[  409.606409][T12725]  ? __pfx__copy_from_iter+0x10/0x10
[  409.606420][T12725]  ? __pfx___might_resched+0x10/0x10
[  409.606435][T12725]  ? aa_sk_perm+0x2f4/0xb10
[  409.606451][T12725]  hci_sock_sendmsg+0x46d/0x25f0
[  409.606469][T12725]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  409.606484][T12725]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  409.606499][T12725]  sock_write_iter+0x4fc/0x5b0
[  409.606513][T12725]  ? __pfx_sock_write_iter+0x10/0x10
[  409.606530][T12725]  ? bpf_lsm_file_permission+0x9/0x10
[  409.606547][T12725]  ? security_file_permission+0x71/0x210
[  409.606564][T12725]  ? rw_verify_area+0xcf/0x6c0
[  409.606577][T12725]  vfs_write+0x7d3/0x11d0
[  409.606590][T12725]  ? __pfx_sock_write_iter+0x10/0x10
[  409.606616][T12725]  ? __pfx_vfs_write+0x10/0x10
[  409.606629][T12725]  ? find_held_lock+0x2b/0x80
[  409.606649][T12725]  ksys_write+0x1f8/0x250
[  409.606662][T12725]  ? __pfx_ksys_write+0x10/0x10
[  409.606675][T12725]  ? rcu_is_watching+0x12/0xc0
[  409.606689][T12725]  __do_fast_syscall_32+0x7c/0x300
[  409.606708][T12725]  do_fast_syscall_32+0x32/0x80
[  409.606747][T12725]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  409.606764][T12725] RIP: 0023:0xf706e579
[  409.606773][T12725] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  409.606784][T12725] RSP: 002b:00000000f545e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  409.606795][T12725] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000580
[  409.606802][T12725] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[  409.606808][T12725] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  409.606814][T12725] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  409.606820][T12725] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  409.606834][T12725]  </TASK>
[  409.821378][T12740] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  409.948150][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  410.057840][ T6059] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  410.322330][ T6059] usb 7-1: Using ep0 maxpacket: 32
[  410.326951][ T6059] usb 7-1: config 0 has no interfaces?
[  410.340703][ T6059] usb 7-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[  410.344407][ T6059] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  410.347598][ T6059] usb 7-1: Product: syz
[  410.349299][ T6059] usb 7-1: Manufacturer: syz
[  410.351135][ T6059] usb 7-1: SerialNumber: syz
[  410.357726][ T6059] usb 7-1: config 0 descriptor??
[  410.459412][T12753] batadv_slave_1: entered promiscuous mode
[  410.466593][T12753] cgroup: Name too long
[  410.576211][T12727] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  410.579178][T12727] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  410.709500][T12756] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  410.716481][ T6059] usb 7-1: USB disconnect, device number 9
[  410.722872][T12756] netlink: 14200 bytes leftover after parsing attributes in process `syz.2.1772'.
[  411.059934][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  411.237841][T12750] batadv_slave_1: left promiscuous mode
[  411.829606][   T63] Bluetooth: hci0: command 0x0c1a tx timeout
[  412.182393][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  412.185528][T12778] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  412.285222][T12780] netlink: 'syz.4.1788': attribute type 10 has an invalid length.
[  412.288687][T12780] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1788'.
[  412.582304][T12787] FAULT_INJECTION: forcing a failure.
[  412.582304][T12787] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  412.586425][T12787] CPU: 1 UID: 0 PID: 12787 Comm: syz.0.1790 Not tainted syzkaller #0 PREEMPT(full) 
[  412.586439][T12787] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  412.586447][T12787] Call Trace:
[  412.586451][T12787]  <TASK>
[  412.586456][T12787]  dump_stack_lvl+0x16c/0x1f0
[  412.586477][T12787]  should_fail_ex+0x512/0x640
[  412.586497][T12787]  _copy_to_user+0x32/0xd0
[  412.586511][T12787]  simple_read_from_buffer+0xcb/0x170
[  412.586524][T12787]  proc_fail_nth_read+0x197/0x240
[  412.586537][T12787]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  412.586550][T12787]  ? rw_verify_area+0xcf/0x6c0
[  412.586561][T12787]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  412.586573][T12787]  vfs_read+0x1e1/0xcf0
[  412.586589][T12787]  ? __pfx_vfs_read+0x10/0x10
[  412.586600][T12787]  ? find_held_lock+0x2b/0x80
[  412.586616][T12787]  ? __fget_files+0x20e/0x3c0
[  412.586633][T12787]  ksys_read+0x12a/0x250
[  412.586645][T12787]  ? __pfx_ksys_read+0x10/0x10
[  412.586659][T12787]  ? rcu_is_watching+0x12/0xc0
[  412.586673][T12787]  __do_fast_syscall_32+0x7c/0x300
[  412.586692][T12787]  do_fast_syscall_32+0x32/0x80
[  412.586709][T12787]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  412.586735][T12787] RIP: 0023:0xf706e579
[  412.586745][T12787] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  412.586756][T12787] RSP: 002b:00000000f545e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  412.586767][T12787] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f545e620
[  412.586774][T12787] RDX: 000000000000000f RSI: 00000000f73f4ff4 RDI: 0000000000000000
[  412.586781][T12787] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  412.586787][T12787] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  412.586793][T12787] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  412.586807][T12787]  </TASK>
[  413.283572][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  413.518750][T12807] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  414.270543][T12809] fuse: Unknown parameter '0x0000000000000003'
[  414.275810][   T40] audit: type=1326 audit(1757864950.658:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12808 comm="syz.0.1799" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  414.323599][T12811] netlink: 'syz.4.1800': attribute type 10 has an invalid length.
[  414.326244][T12811] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1800'.
[  414.406010][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  414.705395][ T6060] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  414.792290][   T40] audit: type=1326 audit(1757864951.154:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12823 comm="syz.5.1803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  414.799143][   T40] audit: type=1326 audit(1757864951.154:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12823 comm="syz.5.1803" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf706e579 code=0x7ffc0000
[  414.805953][   T40] audit: type=1326 audit(1757864951.154:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12823 comm="syz.5.1803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  414.813030][   T40] audit: type=1326 audit(1757864951.154:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12823 comm="syz.5.1803" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf706e579 code=0x7ffc0000
[  414.819816][   T40] audit: type=1326 audit(1757864951.154:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12823 comm="syz.5.1803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  414.827430][   T40] audit: type=1326 audit(1757864951.154:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12823 comm="syz.5.1803" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf706e579 code=0x7ffc0000
[  414.834374][   T40] audit: type=1326 audit(1757864951.154:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12823 comm="syz.5.1803" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000
[  414.841077][   T40] audit: type=1326 audit(1757864951.154:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12823 comm="syz.5.1803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  414.848494][   T40] audit: type=1326 audit(1757864951.154:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12823 comm="syz.5.1803" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf706e579 code=0x7ffc0000
[  414.865719][ T6060] usb 7-1: Using ep0 maxpacket: 16
[  414.878672][ T6060] usb 7-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  414.881547][ T6060] usb 7-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  414.884196][ T6060] usb 7-1: Product: syz
[  414.885545][ T6060] usb 7-1: Manufacturer: syz
[  414.887655][ T6060] usb 7-1: SerialNumber: syz
[  414.894556][ T6060] usb 7-1: config 0 descriptor??
[  415.049605][T12835] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  415.116309][T12820] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1801'.
[  415.120214][T12820] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1801'.
[  415.507209][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  415.950849][T12841] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1809'.
[  416.221778][T12851] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1812'.
[  416.224835][T12851] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1812'.
[  416.371381][T12861] netlink: 'syz.0.1813': attribute type 10 has an invalid length.
[  416.375358][T12861] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1813'.
[  416.521984][T12864] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1815'.
[  416.619051][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  417.690454][ T6040] usb 7-1: USB disconnect, device number 10
[  417.730814][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  417.855525][T12887] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1821'.
[  418.070127][T12889] FAULT_INJECTION: forcing a failure.
[  418.070127][T12889] name failslab, interval 1, probability 0, space 0, times 0
[  418.074097][T12889] CPU: 3 UID: 0 PID: 12889 Comm: syz.0.1822 Not tainted syzkaller #0 PREEMPT(full) 
[  418.074112][T12889] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  418.074120][T12889] Call Trace:
[  418.074124][T12889]  <TASK>
[  418.074129][T12889]  dump_stack_lvl+0x16c/0x1f0
[  418.074151][T12889]  should_fail_ex+0x512/0x640
[  418.074172][T12889]  should_failslab+0xc2/0x120
[  418.074187][T12889]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  418.074201][T12889]  ? skb_clone+0x190/0x3f0
[  418.074220][T12889]  skb_clone+0x190/0x3f0
[  418.074237][T12889]  netlink_deliver_tap+0xabd/0xd30
[  418.074258][T12889]  netlink_unicast+0x64c/0x870
[  418.074277][T12889]  ? __pfx_netlink_unicast+0x10/0x10
[  418.074294][T12889]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  418.074315][T12889]  netlink_sendmsg+0x8d1/0xdd0
[  418.074334][T12889]  ? __pfx_netlink_sendmsg+0x10/0x10
[  418.074353][T12889]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  418.074368][T12889]  ____sys_sendmsg+0xa98/0xc70
[  418.074382][T12889]  ? __pfx_____sys_sendmsg+0x10/0x10
[  418.074394][T12889]  ? get_compat_msghdr+0x11a/0x170
[  418.074416][T12889]  ___sys_sendmsg+0x134/0x1d0
[  418.074433][T12889]  ? __pfx____sys_sendmsg+0x10/0x10
[  418.074456][T12889]  ? find_held_lock+0x2b/0x80
[  418.074477][T12889]  __sys_sendmsg+0x16d/0x220
[  418.074494][T12889]  ? __pfx___sys_sendmsg+0x10/0x10
[  418.074517][T12889]  ? rcu_is_watching+0x12/0xc0
[  418.074531][T12889]  __do_fast_syscall_32+0x7c/0x300
[  418.074550][T12889]  do_fast_syscall_32+0x32/0x80
[  418.074567][T12889]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  418.074581][T12889] RIP: 0023:0xf706e579
[  418.074590][T12889] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  418.074602][T12889] RSP: 002b:00000000f545e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  418.074613][T12889] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000280
[  418.074620][T12889] RDX: 0000000000040004 RSI: 0000000000000000 RDI: 0000000000000000
[  418.074626][T12889] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  418.074632][T12889] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  418.074639][T12889] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  418.074652][T12889]  </TASK>
[  418.492108][T12907] netlink: 'syz.0.1824': attribute type 10 has an invalid length.
[  418.496566][T12898] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1824'.
[  418.521214][T12908] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  418.782397][T12915] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  418.842728][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  418.909402][T12915] 9pnet_virtio: no channels available for device syz
[  419.749531][T12929] netlink: 27 bytes leftover after parsing attributes in process `syz.2.1836'.
[  419.789868][T12931] binder: 12930:12931 ioctl c0306201 0 returned -14
[  419.894482][T12931] lo speed is unknown, defaulting to 1000
[  419.954468][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  419.998090][T12935] netlink: 'syz.0.1835': attribute type 9 has an invalid length.
[  420.655885][T12947] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  421.076947][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  422.000301][T12961] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  422.178167][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  422.369102][T12971] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  422.801102][T12978] 9pnet_virtio: no channels available for device syz
[  423.289922][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  423.511974][T12986] input: syz0 as /devices/virtual/input/input65
[  424.254882][T13006] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  424.401879][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  425.513595][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  425.615608][T13023] input: syz0 as /devices/virtual/input/input66
[  426.149901][   T40] kauditd_printk_skb: 24 callbacks suppressed
[  426.149918][   T40] audit: type=1804 audit(1757864961.499:710): pid=13029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1861" name="/newroot/135/file0/file0" dev="9p" ino=71827627 res=1 errno=0
[  426.625385][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  426.692916][T13033] input: syz0 as /devices/virtual/input/input67
[  427.052306][T13040] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  427.737210][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  428.091455][T13046] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  428.849002][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  429.651104][T13064] FAULT_INJECTION: forcing a failure.
[  429.651104][T13064] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  429.655434][T13064] CPU: 3 UID: 0 PID: 13064 Comm: syz.4.1875 Not tainted syzkaller #0 PREEMPT(full) 
[  429.655450][T13064] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  429.655458][T13064] Call Trace:
[  429.655463][T13064]  <TASK>
[  429.655467][T13064]  dump_stack_lvl+0x16c/0x1f0
[  429.655488][T13064]  should_fail_ex+0x512/0x640
[  429.655508][T13064]  _copy_to_user+0x32/0xd0
[  429.655522][T13064]  simple_read_from_buffer+0xcb/0x170
[  429.655535][T13064]  proc_fail_nth_read+0x197/0x240
[  429.655555][T13064]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  429.655568][T13064]  ? rw_verify_area+0xcf/0x6c0
[  429.655580][T13064]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  429.655591][T13064]  vfs_read+0x1e1/0xcf0
[  429.655607][T13064]  ? __pfx_vfs_read+0x10/0x10
[  429.655618][T13064]  ? find_held_lock+0x2b/0x80
[  429.655634][T13064]  ? __fget_files+0x20e/0x3c0
[  429.655650][T13064]  ksys_read+0x12a/0x250
[  429.655662][T13064]  ? __pfx_ksys_read+0x10/0x10
[  429.655675][T13064]  ? rcu_is_watching+0x12/0xc0
[  429.655689][T13064]  __do_fast_syscall_32+0x7c/0x300
[  429.655708][T13064]  do_fast_syscall_32+0x32/0x80
[  429.655725][T13064]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  429.655740][T13064] RIP: 0023:0xf7f66579
[  429.655749][T13064] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  429.655759][T13064] RSP: 002b:00000000f5466590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  429.655771][T13064] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5466620
[  429.655778][T13064] RDX: 000000000000000f RSI: 00000000f73f4ff4 RDI: 0000000000000000
[  429.655784][T13064] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  429.655791][T13064] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  429.655797][T13064] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  429.655810][T13064]  </TASK>
[  429.880445][T13075] loop6: detected capacity change from 0 to 7
[  429.971609][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  430.029537][   T40] audit: type=1326 audit(1757864965.400:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13080 comm="syz.4.1880" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f66579 code=0x0
[  430.118547][   T40] audit: type=1804 audit(1757864965.484:712): pid=13083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1874" name="/newroot/480/file0/file0" dev="9p" ino=71827627 res=1 errno=0
[  430.870080][T13093] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  431.083670][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  431.420569][T13092] 9pnet_virtio: no channels available for device syz
[  432.184679][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  432.586862][T13115] netlink: 'syz.4.1884': attribute type 10 has an invalid length.
[  432.608622][T13115] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1884'.
[  432.818770][   T40] audit: type=1326 audit(1757864968.010:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13122 comm="syz.2.1891" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  433.296437][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  433.676857][   T40] audit: type=1326 audit(1757864968.814:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.1892" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  433.687351][T13139] FAULT_INJECTION: forcing a failure.
[  433.687351][T13139] name failslab, interval 1, probability 0, space 0, times 0
[  433.693149][T13139] CPU: 1 UID: 0 PID: 13139 Comm: syz.2.1894 Not tainted syzkaller #0 PREEMPT(full) 
[  433.693173][T13139] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  433.693184][T13139] Call Trace:
[  433.693192][T13139]  <TASK>
[  433.693200][T13139]  dump_stack_lvl+0x16c/0x1f0
[  433.693247][T13139]  should_fail_ex+0x512/0x640
[  433.693280][T13139]  should_failslab+0xc2/0x120
[  433.693304][T13139]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  433.693326][T13139]  ? __lock_acquire+0xb97/0x1ce0
[  433.693349][T13139]  ? fdb_create+0x22d/0x1900
[  433.693376][T13139]  fdb_create+0x22d/0x1900
[  433.693404][T13139]  ? do_raw_spin_lock+0x12c/0x2b0
[  433.693431][T13139]  ? __pfx_fdb_create+0x10/0x10
[  433.693451][T13139]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  433.693478][T13139]  ? find_held_lock+0x2b/0x80
[  433.693501][T13139]  br_fdb_update+0x3d1/0x7c0
[  433.693526][T13139]  ? __pfx_br_fdb_update+0x10/0x10
[  433.693547][T13139]  ? br_allowed_ingress+0xdd/0x11b0
[  433.693580][T13139]  br_handle_frame_finish+0xdc0/0x1ca0
[  433.693609][T13139]  ? __netif_receive_skb_core.constprop.0+0xa25/0x48c0
[  433.693660][T13139]  ? __netif_receive_skb+0x1d/0x160
[  433.693683][T13139]  ? netif_receive_skb+0x137/0x7b0
[  433.693705][T13139]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  433.693732][T13139]  ? vfs_write+0x7d3/0x11d0
[  433.693752][T13139]  ? ksys_write+0x83/0x250
[  433.693771][T13139]  ? __do_fast_syscall_32+0x7c/0x300
[  433.693803][T13139]  ? insn_get_displacement+0x570/0x980
[  433.693828][T13139]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  433.693864][T13139]  ? nf_hook_slow+0x132/0x200
[  433.693893][T13139]  br_nf_hook_thresh+0x304/0x410
[  433.693911][T13139]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  433.693944][T13139]  ? __pfx_br_nf_hook_thresh+0x10/0x10
[  433.693966][T13139]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  433.693993][T13139]  ? __pfx_br_nf_pre_routing_finish+0x10/0x10
[  433.694019][T13139]  br_nf_pre_routing_finish+0x8a1/0x1810
[  433.694037][T13139]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  433.694074][T13139]  br_nf_pre_routing+0xf7b/0x15b0
[  433.694098][T13139]  br_handle_frame+0xad5/0x14b0
[  433.694130][T13139]  ? __pfx_br_handle_frame+0x10/0x10
[  433.694161][T13139]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  433.694189][T13139]  ? stack_depot_save_flags+0x29/0x9c0
[  433.694222][T13139]  ? __pfx_br_handle_frame+0x10/0x10
[  433.694249][T13139]  __netif_receive_skb_core.constprop.0+0xa25/0x48c0
[  433.694278][T13139]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  433.694307][T13139]  ? __skb_flow_dissect+0x11b2/0x7d90
[  433.694332][T13139]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[  433.694363][T13139]  ? __pfx___skb_flow_dissect+0x10/0x10
[  433.694394][T13139]  ? __lock_acquire+0x62e/0x1ce0
[  433.694423][T13139]  __netif_receive_skb_one_core+0xb0/0x1e0
[  433.694447][T13139]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  433.694472][T13139]  ? lock_acquire+0x179/0x350
[  433.694498][T13139]  ? __phys_addr+0xe8/0x180
[  433.694523][T13139]  __netif_receive_skb+0x1d/0x160
[  433.694547][T13139]  netif_receive_skb+0x137/0x7b0
[  433.694570][T13139]  ? __pfx_netif_receive_skb+0x10/0x10
[  433.694602][T13139]  tun_rx_batched.isra.0+0x3ee/0x740
[  433.694626][T13139]  ? __pfx_tun_rx_batched.isra.0+0x10/0x10
[  433.694654][T13139]  ? tun_get_user+0x1d8a/0x3ce0
[  433.694673][T13139]  ? rcu_is_watching+0x12/0xc0
[  433.694697][T13139]  tun_get_user+0x28e4/0x3ce0
[  433.694729][T13139]  ? __pfx_tun_get_user+0x10/0x10
[  433.694752][T13139]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  433.694783][T13139]  ? find_held_lock+0x2b/0x80
[  433.694802][T13139]  ? tun_get+0x191/0x370
[  433.694827][T13139]  tun_chr_write_iter+0xdc/0x210
[  433.694850][T13139]  vfs_write+0x7d3/0x11d0
[  433.694871][T13139]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  433.694895][T13139]  ? __pfx_vfs_write+0x10/0x10
[  433.694914][T13139]  ? find_held_lock+0x2b/0x80
[  433.694949][T13139]  ksys_write+0x12a/0x250
[  433.694970][T13139]  ? __pfx_ksys_write+0x10/0x10
[  433.694994][T13139]  ? rcu_is_watching+0x12/0xc0
[  433.695015][T13139]  __do_fast_syscall_32+0x7c/0x300
[  433.695046][T13139]  do_fast_syscall_32+0x32/0x80
[  433.695073][T13139]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  433.695094][T13139] RIP: 0023:0xf7fb7579
[  433.695109][T13139] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  433.695146][T13139] RSP: 002b:00000000f54b6520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  433.695165][T13139] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000180
[  433.695177][T13139] RDX: 0000000000000036 RSI: 00000000f7444ff4 RDI: 0000000000000000
[  433.695188][T13139] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  433.695199][T13139] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  433.695210][T13139] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  433.695235][T13139]  </TASK>
[  433.890827][T13153] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  434.408198][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  434.444176][   T40] audit: type=1326 audit(1757864969.535:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13165 comm="syz.2.1901" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  434.780435][T13173] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  435.520016][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  436.631855][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  436.795607][T13194] netlink: 'syz.5.1908': attribute type 10 has an invalid length.
[  436.798486][T13194] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1908'.
[  437.754415][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  438.866184][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  438.978796][   T24] IPVS: starting estimator thread 0...
[  439.080064][T13217] IPVS: using max 23 ests per chain, 55200 per kthread
[  439.870027][   T40] audit: type=1326 audit(1757864974.604:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13221 comm="syz.5.1913" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  439.967375][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  440.105202][   T40] audit: type=1326 audit(1757864974.820:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13226 comm="syz.2.1914" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  441.079117][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  441.206739][T13251] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  441.384426][T13261] netlink: 'syz.2.1921': attribute type 10 has an invalid length.
[  441.388393][T13261] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1921'.
[  442.190924][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  442.245209][T13269] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  442.358130][T13276] FAULT_INJECTION: forcing a failure.
[  442.358130][T13276] name failslab, interval 1, probability 0, space 0, times 0
[  442.372120][T13276] CPU: 2 UID: 0 PID: 13276 Comm: syz.2.1925 Not tainted syzkaller #0 PREEMPT(full) 
[  442.372148][T13276] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  442.372156][T13276] Call Trace:
[  442.372160][T13276]  <TASK>
[  442.372165][T13276]  dump_stack_lvl+0x16c/0x1f0
[  442.372186][T13276]  should_fail_ex+0x512/0x640
[  442.372204][T13276]  ? __kmalloc_noprof+0xbf/0x510
[  442.372219][T13276]  ? lsm_blob_alloc+0x68/0x90
[  442.372229][T13276]  should_failslab+0xc2/0x120
[  442.372244][T13276]  __kmalloc_noprof+0xd2/0x510
[  442.372260][T13276]  lsm_blob_alloc+0x68/0x90
[  442.372270][T13276]  security_sk_alloc+0x30/0x270
[  442.372283][T13276]  sk_prot_alloc+0x1c7/0x2a0
[  442.372297][T13276]  sk_alloc+0x36/0xc20
[  442.372313][T13276]  bpf_prog_test_run_skb+0x330/0x2280
[  442.372331][T13276]  ? __fget_files+0x204/0x3c0
[  442.372346][T13276]  ? __fget_files+0x20e/0x3c0
[  442.372358][T13276]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  442.372376][T13276]  ? fput+0x9b/0xd0
[  442.372393][T13276]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  442.372410][T13276]  __sys_bpf+0x1050/0x4de0
[  442.372427][T13276]  ? rcu_is_watching+0x12/0xc0
[  442.372440][T13276]  ? __pfx___sys_bpf+0x10/0x10
[  442.372469][T13276]  ? fput+0x9b/0xd0
[  442.372488][T13276]  ? ksys_write+0x1ac/0x250
[  442.372515][T13276]  __ia32_sys_bpf+0x76/0xe0
[  442.372527][T13276]  __do_fast_syscall_32+0x7c/0x300
[  442.372546][T13276]  do_fast_syscall_32+0x32/0x80
[  442.372563][T13276]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  442.372577][T13276] RIP: 0023:0xf7fb7579
[  442.372586][T13276] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  442.372597][T13276] RSP: 002b:00000000f54b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  442.372608][T13276] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  442.372615][T13276] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  442.372622][T13276] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  442.372628][T13276] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  442.372634][T13276] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  442.372648][T13276]  </TASK>
[  443.302739][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  443.479218][   T40] audit: type=1326 audit(1757864977.981:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13286 comm="syz.2.1928" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0
[  444.414564][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  445.526383][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  445.583405][T13319] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  445.777997][T13325] bond0: (slave netdevsim0): Releasing backup interface
[  445.893718][T13325] netlink: 'syz.4.1941': attribute type 10 has an invalid length.
[  445.897220][T13325] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1941'.
[  446.118424][T13331] syzkaller0: entered promiscuous mode
[  446.120352][T13331] syzkaller0: entered allmulticast mode
[  446.648896][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  446.661914][T13338] FAULT_INJECTION: forcing a failure.
[  446.661914][T13338] name failslab, interval 1, probability 0, space 0, times 0
[  446.667385][T13338] CPU: 1 UID: 0 PID: 13338 Comm: syz.0.1945 Not tainted syzkaller #0 PREEMPT(full) 
[  446.667411][T13338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  446.667422][T13338] Call Trace:
[  446.667429][T13338]  <TASK>
[  446.667443][T13338]  dump_stack_lvl+0x16c/0x1f0
[  446.667475][T13338]  should_fail_ex+0x512/0x640
[  446.667503][T13338]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  446.667530][T13338]  should_failslab+0xc2/0x120
[  446.667553][T13338]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  446.667575][T13338]  ? __alloc_skb+0x2b2/0x380
[  446.667605][T13338]  __alloc_skb+0x2b2/0x380
[  446.667630][T13338]  ? __pfx___alloc_skb+0x10/0x10
[  446.667658][T13338]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  446.667692][T13338]  netlink_alloc_large_skb+0x69/0x130
[  446.667720][T13338]  netlink_sendmsg+0x6a1/0xdd0
[  446.667754][T13338]  ? __pfx_netlink_sendmsg+0x10/0x10
[  446.667783][T13338]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  446.667807][T13338]  ____sys_sendmsg+0xa98/0xc70
[  446.667827][T13338]  ? __pfx_____sys_sendmsg+0x10/0x10
[  446.667844][T13338]  ? get_compat_msghdr+0x11a/0x170
[  446.667879][T13338]  ___sys_sendmsg+0x134/0x1d0
[  446.667905][T13338]  ? __pfx____sys_sendmsg+0x10/0x10
[  446.667943][T13338]  ? find_held_lock+0x2b/0x80
[  446.667973][T13338]  __sys_sendmsg+0x16d/0x220
[  446.667999][T13338]  ? __pfx___sys_sendmsg+0x10/0x10
[  446.668033][T13338]  ? rcu_is_watching+0x12/0xc0
[  446.668057][T13338]  __do_fast_syscall_32+0x7c/0x300
[  446.668084][T13338]  do_fast_syscall_32+0x32/0x80
[  446.668105][T13338]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  446.668120][T13338] RIP: 0023:0xf706e579
[  446.668129][T13338] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  446.668140][T13338] RSP: 002b:00000000f545e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  446.668150][T13338] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0
[  446.668157][T13338] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000000
[  446.668164][T13338] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  446.668170][T13338] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  446.668176][T13338] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  446.668189][T13338]  </TASK>
[  446.787732][T13343] Oops: general protection fault, probably for non-canonical address 0xdffffc000000005f: 0000 [#1] SMP KASAN NOPTI
[  446.792691][T13343] KASAN: null-ptr-deref in range [0x00000000000002f8-0x00000000000002ff]
[  446.797812][T13343] CPU: 0 UID: 0 PID: 13343 Comm: syz.0.1946 Not tainted syzkaller #0 PREEMPT(full) 
[  446.802126][T13343] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  446.806489][T13343] RIP: 0010:h5_recv+0x104/0x950
[  446.808515][T13343] Code: c1 e8 03 4c 01 f0 48 89 44 24 08 48 8d 83 08 03 00 00 48 89 44 24 30 48 c1 e8 03 48 89 44 24 10 e8 e1 a7 42 f9 48 8b 44 24 08 <80> 38 00 0f 85 ae 01 00 00 48 89 ea 48 89 e9 4c 8b bb f8 02 00 00
[  446.816338][T13343] RSP: 0018:ffffc90004a37ba8 EFLAGS: 00010293
[  446.818900][T13343] RAX: dffffc000000005f RBX: 0000000000000000 RCX: ffffffff8878634a
[  446.822220][T13343] RDX: ffff88801c3b0000 RSI: ffffffff8878638f RDI: 0000000000000005
[  446.825512][T13343] RBP: ffffc90004a37d30 R08: 0000000000000005 R09: 0000000000000000
[  446.828833][T13343] R10: 0000000000000001 R11: 000000000000001e R12: 0000000000000001
[  446.832134][T13343] R13: 0000000000000001 R14: dffffc0000000000 R15: ffffffff8cb48900
[  446.835495][T13343] FS:  0000000000000000(0000) GS:ffff8880974ba000(0063) knlGS:00000000f541cb40
[  446.839239][T13343] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  446.842057][T13343] CR2: 00000000f71c3b20 CR3: 0000000028d65000 CR4: 0000000000352ef0
[  446.845390][T13343] Call Trace:
[  446.846824][T13343]  <TASK>
[  446.848116][T13343]  ? __pfx_h5_recv+0x10/0x10
[  446.850089][T13343]  ? lock_acquire+0x62/0x350
[  446.852068][T13343]  hci_uart_tty_receive+0x254/0x7e0
[  446.854254][T13343]  ? __pfx_hci_uart_tty_receive+0x10/0x10
[  446.856670][T13343]  tty_ioctl+0x580/0x1680
[  446.858578][T13343]  ? __pfx_tty_ioctl+0x10/0x10
[  446.860628][T13343]  ? do_vfs_ioctl+0x128/0x14f0
[  446.862731][T13343]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  446.864885][T13343]  ? find_held_lock+0x2b/0x80
[  446.866902][T13343]  ? hook_file_ioctl_common+0x145/0x410
[  446.869250][T13343]  ? __fget_files+0x20e/0x3c0
[  446.871192][T13343]  tty_compat_ioctl+0x24a/0x4d0
[  446.873270][T13343]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  446.875574][T13343]  __ia32_compat_sys_ioctl+0x242/0x370
[  446.877879][T13343]  __do_fast_syscall_32+0x7c/0x300
[  446.880080][T13343]  do_fast_syscall_32+0x32/0x80
[  446.882141][T13343]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  446.884789][T13343] RIP: 0023:0xf706e579
[  446.886516][T13343] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  446.894652][T13343] RSP: 002b:00000000f541c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  446.898172][T13343] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000005412
[  446.901518][T13343] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  446.904845][T13343] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  446.908141][T13343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  446.911342][T13343] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  446.914646][T13343]  </TASK>
[  446.915982][T13343] Modules linked in:
[  446.918132][T13343] ---[ end trace 0000000000000000 ]---
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  446.970185][T13343] RIP: 0010:h5_recv+0x104/0x950
[  446.972230][T13343] Code: c1 e8 03 4c 01 f0 48 89 44 24 08 48 8d 83 08 03 00 00 48 89 44 24 30 48 c1 e8 03 48 89 44 24 10 e8 e1 a7 42 f9 48 8b 44 24 08 <80> 38 00 0f 85 ae 01 00 00 48 89 ea 48 89 e9 4c 8b bb f8 02 00 00
[  446.979881][T13343] RSP: 0018:ffffc90004a37ba8 EFLAGS: 00010293
[  447.019948][T13343] RAX: dffffc000000005f RBX: 0000000000000000 RCX: ffffffff8878634a
[  447.021872][T13331] syz.5.1942: vmalloc error: size 4194304, failed to allocated page array size 8192, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/
[  447.022516][T13343] RDX: ffff88801c3b0000 RSI: ffffffff8878638f RDI: 0000000000000005
[  447.022523][T13331] ,mems_allowed=0-1
[  447.035684][T13331] CPU: 0 UID: 0 PID: 13331 Comm: syz.5.1942 Tainted: G      D             syzkaller #0 PREEMPT(full) 
[  447.035725][T13331] Tainted: [D]=DIE
[  447.035731][T13331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  447.035743][T13331] Call Trace:
[  447.035749][T13331]  <TASK>
[  447.035757][T13331]  dump_stack_lvl+0x16c/0x1f0
[  447.035790][T13331]  warn_alloc+0x248/0x3a0
[  447.035813][T13331]  ? __pfx_warn_alloc+0x10/0x10
[  447.035839][T13331]  ? pfifo_fast_change_tx_queue_len+0x156/0xbb0
[  447.035871][T13331]  ? __vmalloc_node_noprof+0xad/0xf0
[  447.035891][T13331]  __vmalloc_node_range_noprof+0x101b/0x14b0
[  447.035914][T13331]  ? pfifo_fast_change_tx_queue_len+0x156/0xbb0
[  447.035941][T13331]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  447.035962][T13331]  ? ___kmalloc_large_node+0xed/0x160
[  447.035993][T13331]  __kvmalloc_node_noprof+0x30a/0x620
[  447.036014][T13331]  ? pfifo_fast_change_tx_queue_len+0x156/0xbb0
[  447.036058][T13331]  ? pfifo_fast_change_tx_queue_len+0x156/0xbb0
[  447.036086][T13331]  ? pfifo_fast_change_tx_queue_len+0x156/0xbb0
[  447.036110][T13331]  pfifo_fast_change_tx_queue_len+0x156/0xbb0
[  447.036137][T13331]  ? __pfx_dev_deactivate_many+0x10/0x10
[  447.036166][T13331]  ? __pfx_pfifo_fast_change_tx_queue_len+0x10/0x10
[  447.036191][T13331]  ? dev_deactivate+0x15c/0x1c0
[  447.036220][T13331]  ? __pfx_pfifo_fast_change_tx_queue_len+0x10/0x10
[  447.036244][T13331]  dev_qdisc_change_tx_queue_len+0x169/0x380
[  447.036275][T13331]  netif_change_tx_queue_len+0x1a1/0x1e0
[  447.036305][T13331]  ? __pfx_netif_change_tx_queue_len+0x10/0x10
[  447.036335][T13331]  ? full_name_hash+0xbc/0x110
[  447.036362][T13331]  dev_change_tx_queue_len+0xb2/0x260
[  447.036383][T13331]  dev_ifsioc+0x13e8/0x1ee0
[  447.036410][T13331]  ? __pfx_dev_ifsioc+0x10/0x10
[  447.036435][T13331]  ? __pfx___mutex_lock+0x10/0x10
[  447.036467][T13331]  ? dev_load+0x8e/0x240
[  447.036493][T13331]  dev_ioctl+0x223/0x1060
[  447.036525][T13331]  sock_do_ioctl+0x19d/0x280
[  447.036553][T13331]  ? __pfx_sock_do_ioctl+0x10/0x10
[  447.036582][T13331]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  447.036622][T13331]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  447.036657][T13331]  compat_sock_ioctl+0x301/0x730
[  447.036681][T13331]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  447.036707][T13331]  ? hook_file_ioctl_common+0x145/0x410
[  447.036735][T13331]  ? __fget_files+0x20e/0x3c0
[  447.036758][T13331]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  447.036785][T13331]  __ia32_compat_sys_ioctl+0x242/0x370
[  447.036823][T13331]  __do_fast_syscall_32+0x7c/0x300
[  447.036861][T13331]  do_fast_syscall_32+0x32/0x80
[  447.036888][T13331]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  447.036912][T13331] RIP: 0023:0xf706e579
[  447.036927][T13331] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  447.036946][T13331] RSP: 002b:00000000f545e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  447.036965][T13331] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000008943
[  447.036978][T13331] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[  447.036990][T13331] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  447.037001][T13331] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  447.037012][T13331] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  447.037029][T13331]  </TASK>
[  447.037052][T13331] Mem-Info:
[  447.042599][T13343] RBP: ffffc90004a37d30 R08: 0000000000000005 R09: 0000000000000000
[  447.043346][T13331] active_anon:10932 inactive_anon:70 isolated_anon:96
[  447.043346][T13331]  active_file:4027 inactive_file:18490 isolated_file:28
[  447.043346][T13331]  unevictable:1769 dirty:350 writeback:0
[  447.043346][T13331]  slab_reclaimable:8031 slab_unreclaimable:64260
[  447.043346][T13331]  mapped:17780 shmem:8933 pagetables:1403
[  447.043346][T13331]  sec_pagetables:323 bounce:0
[  447.043346][T13331]  kernel_misc_reclaimable:0
[  447.043346][T13331]  free:38640 free_pcp:805 free_cma:0
[  447.047956][T13343] R10: 0000000000000001 R11: 000000000000001e R12: 0000000000000001
[  447.078194][T13331] Node 0 active_anon:76kB inactive_anon:108kB active_file:0kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:728kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7384kB pagetables:1628kB sec_pagetables:1156kB all_unreclaimable? yes Balloon:0kB
[  447.079379][T13343] R13: 0000000000000001 R14: dffffc0000000000 R15: ffffffff8cb48900
[  447.081281][T13331] Node 1 active_anon:42812kB inactive_anon:164kB active_file:17564kB inactive_file:66712kB unevictable:3448kB isolated(anon):1188kB isolated(file):400kB mapped:49844kB dirty:1400kB writeback:0kB shmem:32140kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5804kB pagetables:3956kB sec_pagetables:136kB all_unreclaimable? no Balloon:0kB
[  447.083463][T13343] FS:  0000000000000000(0000) GS:ffff8880976ba000(0063) knlGS:00000000f541cb40
[  447.085952][T13331] Node 0 
[  447.087898][T13343] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  447.093447][T13331] DMA free:2008kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:184kB local_pcp:20kB free_cma:0kB
[  447.093944][T13343] CR2: 00007f15b9b0cb20 CR3: 0000000028d65000 CR4: 0000000000352ef0
[  447.095858][T13331] lowmem_reserve[]: 0
[  447.097609][T13343] Kernel panic - not syncing: Fatal exception
[  447.100333][T13343] Kernel Offset: disabled

VM DIAGNOSIS:
15:50:02  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8561de75 RDI=ffffffff9b102740 RBP=ffffffff9b102700 RSP=ffffc90004a375a0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=000000000000002d R14=ffffffff9b102700 R15=ffffffff8561de10
RIP=ffffffff8561de9f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880974ba000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71c3b20 CR3=0000000028d65000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=0000000000012a0b RCX=0000000000000000 RDX=1ffff1100fff9c80
RSI=0000000000012a0b RDI=ffff88803fffbc20 RBP=ffff88807ffce400 RSP=ffffc90004947110
R8 =0000000000000000 R9 =ffffea00004a82c0 R10=1ffff11007fff78a R11=dffffc0000000000
R12=0000000000000017 R13=0000000000000002 R14=ffff88803fffb400 R15=0000000000040001
RIP=ffffffff8212256d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880975ba000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000005656899c CR3=0000000077e14000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88801ca8f000 RCX=ffffffff84c13ca3 RDX=ffff888024f40000
RSI=ffffffff84c13cb1 RDI=ffff88801ca8f000 RBP=0000000000000000 RSP=ffffc900038c7520
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000012
R12=ffff888041bf21f8 R13=ffff88801ca8f000 R14=0000000000000000 R15=ffff8880441cf5c0
RIP=ffffffff84c3b480 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fa7d6da2300 ffffffff 00c00000
GS =0000 ffff8880976ba000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fa7d665f320 CR3=0000000049c6f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000003800000012 0004000000080024 002800000030003c
ZMM18=27fa91a0d8240047 4141c8ff56f8c94f 27fa91a0d8240047 4141c8ff56f8c94f 27fa91a0d8240047 4141c8ff56f8c94f 27fa91a0d8240047 4141c8ff56f8c94f
ZMM19=f111000000000000 0000000000000050 f111000000000000 000000000000004f f111000000000000 000000000000004e f111000000000000 000000000000004d
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=8700277287002772 8700277287002772 8700277287002772 8700277287002772 8700277287002772 8700277287002772 8700277287002772 8700277287002772
ZMM22=c842459bc842459b c842459bc842459b c842459bc842459b c842459bc842459b c842459bc842459b c842459bc842459b c842459bc842459b c842459bc842459b
ZMM23=33d421cb33d421cb 33d421cb33d421cb 33d421cb33d421cb 33d421cb33d421cb 33d421cb33d421cb 33d421cb33d421cb 33d421cb33d421cb 33d421cb33d421cb
ZMM24=56f8c94f56f8c94f 56f8c94f56f8c94f 56f8c94f56f8c94f 56f8c94f56f8c94f 56f8c94f56f8c94f 56f8c94f56f8c94f 56f8c94f56f8c94f 56f8c94f56f8c94f
ZMM25=4141c8ff4141c8ff 4141c8ff4141c8ff 4141c8ff4141c8ff 4141c8ff4141c8ff 4141c8ff4141c8ff 4141c8ff4141c8ff 4141c8ff4141c8ff 4141c8ff4141c8ff
ZMM26=d8240047d8240047 d8240047d8240047 d8240047d8240047 d8240047d8240047 d8240047d8240047 d8240047d8240047 d8240047d8240047 d8240047d8240047
ZMM27=27fa91a027fa91a0 27fa91a027fa91a0 27fa91a027fa91a0 27fa91a027fa91a0 27fa91a027fa91a0 27fa91a027fa91a0 27fa91a027fa91a0 27fa91a027fa91a0
ZMM28=000000500000004f 0000004e0000004d 0000004c0000004b 0000004a00000049 0000004800000047 0000004600000045 0000004400000043 0000004200000041
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=f1110000f1110000 f1110000f1110000 f1110000f1110000 f1110000f1110000 f1110000f1110000 f1110000f1110000 f1110000f1110000 f1110000f1110000
info registers vcpu 3

CPU#3
RAX=0000010fa3d8e6f4 RBX=ffff88802b523a00 RCX=00000000000006e0 RDX=000000000000010f
RSI=ffff88802b523a00 RDI=000000000002158d RBP=000000000002158d RSP=ffffc900005e8d30
R8 =0000000000000005 R9 =000000000000003f R10=0000000000000019 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000019 R15=ffff88802b527c80
RIP=ffffffff81680db5 RFL=00000007 [-----PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977ba000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000ffe20f80 CR3=0000000028d65000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000