last executing test programs:

4m5.644790305s ago: executing program 0 (id=143):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x4)
mount(&(0x7f0000000000)=@nullb, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='smb3\x00', 0x8002, 0x0)

4m5.629833816s ago: executing program 0 (id=144):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000040)={0x0, 0x4, 0x9, 0x2, @vifc_lcl_addr=@dev={0xac, 0x14, 0x14, 0x2e}, @loopback}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x8982, &(0x7f0000000140)={0x0, 'pimreg\x00'})
setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000000000)=0x9, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_open_dev$vbi(&(0x7f00000000c0), 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$alg(0x26, 0x5, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
openat$vhost_vsock(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r4=>0x0], 0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, &(0x7f0000000040)={{@my=0x1}, @any, 0x0, 0x2000000000000, 0x9})
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r5}, 0x20)
ioctl$DRM_IOCTL_MODE_ATOMIC(r3, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r4], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000040)})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
timer_settime(0x0, 0x1, 0x0, 0x0)

4m4.584042421s ago: executing program 0 (id=147):
r0 = socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xa2, &(0x7f0000000140)=""/162, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000240)={@multicast, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x20, 0x2c, 0x0, @remote, @local, {[], {{0x600, 0x3, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, {[@exp_fastopen={0xfe, 0x4}, @mss={0x2, 0x4, 0x1}, @window={0x3, 0x3, 0xf8}]}}}}}}}}, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000002440)={0x1, 0x0, 0x3, &(0x7f0000000340)={0x9, "f4e1a230be8f46463fb1a5f1b44f44eaa65e12638caf07677d18bc00"}})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x7, 0x0, 0x11, 0x7fdfffff}]})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r5, 0xc008aec1, &(0x7f00000000c0)=""/8)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INFO(r6, 0x0, 0x80, &(0x7f00000002c0)={'filter\x00', 0x88, 0x0, 0x0, [0x1, 0xffffffffffffffff, 0x0, 0xae, 0x401, 0x8]}, &(0x7f0000000280)=0x50)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = syz_open_procfs(0xffffffffffffffff, 0x0)
read$FUSE(r7, &(0x7f0000000400)={0x2020}, 0x2020)
getsockopt$inet6_udp_int(r7, 0x11, 0xa, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000d40)=ANY=[@ANYBLOB="1800fa00000000000000000000000000850000007b000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r8}, 0x10)
syz_emit_vhci(&(0x7f0000000640)=ANY=[], 0xd)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})

4m3.665909341s ago: executing program 0 (id=151):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
times(0x0)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='huge=always,mpol=interleave'])
chdir(&(0x7f0000000140)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000280), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r2, 0x0)
r3 = openat$cgroup_ro(r2, &(0x7f0000000000)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000580)={'#! ', '', [{0x20, '-.}'}, {0x20, 'freezer.self_freezing\x00'}, {0x20, '\\L'}, {0x20, '(-I\b\xaf{\xfc5:\x1f\xb7<\x95\x82\xdc?\x97T\x12\xa0\x91\xf9u\x83j\x0fG\xfb\xb8\x7f\x18\x88\xa8\xe6P\xc6y\xdf\x15g\x96\xa1\xd8\xe3\xe7\f\f\xb0\xaf\xea\xdd\x99\x00%\x91\x97\xc6^zG\x95\xe8I\xce\x9a\x1c\x1f:+\xb0<\x16A\xcftg.( B\x06^\x80\x0fKd\x8e\x19\x1d\x19\xa5\x8b4Z\xccFnw\x95\x0f\f\xf2]\x9ff\x1c\xd3v\xa1\x15r\xf8\x98\f\xf68\xf0\xb9 \b1\x1a\xbf\xe9ipz\x0e\x87\"\xa8\xfb\x0e\x15\xed\xc5\xf47\xd8;P\v\x9d\n-\x1e\x13\x8f\x00`\x9b\xd4x\x9f\xbd\xe4\x13\xf6v\xd8%\xc2}\xf9al\xe0\xd6\x17[\xc2mU\xf9@Z\xbf\xae\x9cq\xe0\x81\x99\xa8.\x94JZ\f\xa8\x03\xadB\'\x01\x06$\x85TK\xfb\xb8D\xb5e\xb9\xae\xa8?Dn1\x8bW\x9c\"\xcbB\xb1\vH\xf4\x9b^\x91\xb1\x1a\x01\xae\xdf\xaa\xb6?%\xedm5\x8e\xc1\x97\xf6\tGP\xdf\xfa\xe3Y\x81\x11\x06\xdfu6\x8e-\x94\x0eT\x06\xc3\x9a^\xb3\x81\xb0\xc8\xc8N\xc3\x89-+\x9e\xdc\xbc\xe0\xf6V<%\x92v\xc6t\xff\xc7\xb1\xe71\x1f\xf9\x00\x7f\xcaRO\xb0\xaa\nv\xe0%\xab\xe5\xc9J\x867%N\x97\x14\b\v|\xa2\xc8\t\xd1jk\f\xb29\xaf\x82\xc6\xe6\x90\xba\x98\x99K\x8eH\x95\x12\x9f\xfff\xb6w\x8b+F\v\xdf9\x88\x14\x16tPf\x7f\xb5Q\v~\\\x93\x8e\x8b\xf7~\x1b\xffq\x1f\x00\xf0'}, {0x20, 'M\\+\t.]'}, {}, {0x20, 'GPL\x00'}], 0xa, "cfdc412478e0ce906a98a20e"}, 0x1b0)
setreuid(0xee00, 0x0)
r4 = getuid()
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setreuid(0xee00, r4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = getpgid(0x0)
fcntl$setownex(r6, 0xf, &(0x7f0000000140)={0x2, r7})
sendmmsg$unix(r5, &(0x7f0000006c40)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="11", 0x1}], 0x1}}], 0x1, 0x40015)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x7, 0x10012, r3, 0x0)

4m3.382192823s ago: executing program 0 (id=152):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f00000006c0)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x1200, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x801, 0x0, 0x25dfdbfd, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r0}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)

4m2.776767426s ago: executing program 0 (id=155):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f00000006c0)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x801, 0x12, 0x25dfdbfd, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r0}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)

4m2.709948345s ago: executing program 32 (id=155):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f00000006c0)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x801, 0x12, 0x25dfdbfd, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r0}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)

1m30.278884945s ago: executing program 1 (id=1041):
r0 = socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xa2, &(0x7f0000000140)=""/162, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000240)={@multicast, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x20, 0x2c, 0x0, @remote, @local, {[], {{0x600, 0x3, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, {[@exp_fastopen={0xfe, 0x4}, @mss={0x2, 0x4, 0x1}, @window={0x3, 0x3, 0xf8}]}}}}}}}}, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000002440)={0x1, 0x0, 0x3, &(0x7f0000000340)={0x9, "f4e1a230be8f46463fb1a5f1b44f44eaa65e12638caf07677d18bc00"}})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x7, 0x0, 0x11, 0x7fdfffff}]})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r5, 0xc008aec1, &(0x7f00000000c0)=""/8)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INFO(r6, 0x0, 0x80, &(0x7f00000002c0)={'filter\x00', 0x88, 0x0, 0x0, [0x1, 0xffffffffffffffff, 0x0, 0xae, 0x401, 0x8]}, &(0x7f0000000280)=0x50)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = syz_open_procfs(0xffffffffffffffff, 0x0)
read$FUSE(r7, &(0x7f0000000400)={0x2020}, 0x2020)
getsockopt$inet6_udp_int(r7, 0x11, 0xa, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000fcff0000000000000000000000850000007b000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r8}, 0x10)
syz_emit_vhci(&(0x7f0000000640)=ANY=[], 0xd)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})

1m29.344321241s ago: executing program 1 (id=1045):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = gettid()
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000200)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB='7\x00\x00\x004'], 0x20)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dddb)
close(r1)
r2 = open(&(0x7f0000000480)='./file0\x00', 0x80, 0x8)
fcntl$setlease(r2, 0x400, 0x1)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f0000006300)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r3, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r3, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCGPGRP(r5, 0x800c6803, &(0x7f0000000100))

1m28.420257422s ago: executing program 1 (id=1052):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r0}, 0x18)
mknod(&(0x7f0000000080)='./bus\x00', 0xc000, 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000580)='./bus\x00', &(0x7f0000000040)='ntfs3\x00', 0x8080, &(0x7f00000001c0)='discard')

1m28.340991557s ago: executing program 1 (id=1053):
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$AUDIT_TTY_SET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040094}, 0x80)
add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x3}, &(0x7f00000003c0), 0x0, 0xfffffffffffffffe)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x401}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000580)={@local, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x3, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @multicast2, @empty}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x6, 0x10, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}]}}}}}}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x38011, r2, 0x0)
migrate_pages(0x0, 0x3, &(0x7f00000002c0)=0x7f, &(0x7f0000000300)=0xa)

1m27.611289362s ago: executing program 1 (id=1058):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x1e0)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', &(0x7f0000000100), 0xc, &(0x7f0000000140)={'trans=virtio,', {[{@dfltuid}]}})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb01001800000000000000810000008100000003000000090000000000000804000000000000000100000d0000000009000000040000000500000000000008050000000b00ace0487f50c580000000001201000000030000000400000f0100000002000000ff7f00000700000003000000b0000000000001000400000008000000018000000300000000a00000040000008e080000000000000902000000000000002e00b442921b4452f8ca828cfe6a3af7f33332"], &(0x7f00000004c0)=""/181, 0x9f, 0xb5, 0x1, 0x4, 0x10000, @value}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3f, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x208b}, 0x0)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000800)={<r3=>0xffffffffffffffff})
getsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000840), &(0x7f0000000880)=0x4)
syz_open_dev$vim2m(&(0x7f0000000080), 0x5, 0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="19000000"], 0x48)
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x400, &(0x7f0000000a40)=ANY=[@ANYBLOB=',debug=0x0000007,version=9p20\\++},%{!(6,afid=0x000000003f5689cf,nodevmap,fscache,afid=0x0000000000000f9c,msize=0x00', @ANYRESDEC])
r4 = fsopen(&(0x7f0000000100)='nfs4\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={0xffffffffffffffff, r5, 0x1, 0x0, @void}, 0x10)
r6 = socket(0x2, 0x3, 0xff)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
connect$inet(r6, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg$unix(r6, &(0x7f0000002fc0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="643c87cf08d21d994efea03321af0c6c7715a604", 0x14}], 0x1}}], 0x1, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x55920000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

1m27.500460173s ago: executing program 1 (id=1059):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x30)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
tee(r1, r4, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='./file0\x00')
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
set_mempolicy(0x1, &(0x7f0000000580)=0xd43, 0x7)
unshare(0x62040200)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = openat$sndseq(0xffffff9c, &(0x7f0000000180), 0x40)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0x4}, 'port1\x00', 0x786520dbf34c80fe, 0x20a03, 0x20000003, 0x0, 0x0, 0xc, 0x400, 0x0, 0x0, 0x87})
r9 = openat$sequencer2(0xffffff9c, &(0x7f0000000040), 0x123482, 0x0)
dup3(r9, r8, 0x0)
r10 = syz_open_dev$media(&(0x7f0000000300), 0x5, 0x48000)
ioctl$FS_IOC_MEASURE_VERITY(r10, 0xc0046686, &(0x7f0000000340)={0x2, 0x9e, "398e761ddaf97deed1be9cfd761901f4d6bf7a62262db7538e2f51f1791c347918845a7f1044421f015df646039cd8530ab47d2313c67b360222f267d93359feabbf339d84f75acaf8d6ce048c7345d83a9807216fc1c548d62a51fab0ab290e907e5d9057cd69376517ffb990cd21c08c21b7b8c351ce53fe42575321d83d3dc9feea64badf2ba4d14d44eed4db19512b778566e2b37498ee62002e4e87"})

1m12.39510235s ago: executing program 33 (id=1059):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x30)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
tee(r1, r4, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='./file0\x00')
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
set_mempolicy(0x1, &(0x7f0000000580)=0xd43, 0x7)
unshare(0x62040200)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = openat$sndseq(0xffffff9c, &(0x7f0000000180), 0x40)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0x4}, 'port1\x00', 0x786520dbf34c80fe, 0x20a03, 0x20000003, 0x0, 0x0, 0xc, 0x400, 0x0, 0x0, 0x87})
r9 = openat$sequencer2(0xffffff9c, &(0x7f0000000040), 0x123482, 0x0)
dup3(r9, r8, 0x0)
r10 = syz_open_dev$media(&(0x7f0000000300), 0x5, 0x48000)
ioctl$FS_IOC_MEASURE_VERITY(r10, 0xc0046686, &(0x7f0000000340)={0x2, 0x9e, "398e761ddaf97deed1be9cfd761901f4d6bf7a62262db7538e2f51f1791c347918845a7f1044421f015df646039cd8530ab47d2313c67b360222f267d93359feabbf339d84f75acaf8d6ce048c7345d83a9807216fc1c548d62a51fab0ab290e907e5d9057cd69376517ffb990cd21c08c21b7b8c351ce53fe42575321d83d3dc9feea64badf2ba4d14d44eed4db19512b778566e2b37498ee62002e4e87"})

4.496546506s ago: executing program 3 (id=1567):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
utimensat(0xffffffffffffffff, &(0x7f0000000240)='./bus\x00', &(0x7f0000000280)={{}, {0x0, 0xea60}}, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r0}, 0x18)
mknod(&(0x7f0000000080)='./bus\x00', 0xc000, 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000580)='./bus\x00', &(0x7f0000000040)='ntfs3\x00', 0x8080, &(0x7f00000001c0)='discard')
read(r1, &(0x7f0000000380)=""/237, 0xed)

4.496411114s ago: executing program 3 (id=1568):
syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f00000003c0), 0x4)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000003d80)={0xffffffffffffffff, 0x0, 0x0, 0x0, @vifc_lcl_ifindex, @dev={0xac, 0x14, 0x14, 0x42}}, 0x10)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, &(0x7f0000000040)={@remote, @rand_addr=0x64010101, 0x80, "881d3b24e009118e5e5c2bd5b64fb01582a1c9cfc53c43c4b776d30612334501", 0x1004003, 0x1, 0x1, 0x9}, 0xffffffffffffffbb)
close(0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYRES8, @ANYRES8, @ANYBLOB, @ANYRES16=0x0], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb, [{}, {}, {}, {0x3, 0xfffffffe}, {}, {}, {0x7}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r2, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x2000, 0x1)
unlink(&(0x7f0000000040)='./file0\x00')
mknod$loop(&(0x7f0000000200)='./file0\x00', 0x2000, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000000c0))
syz_usbip_server_init(0x4)
r3 = fsopen(&(0x7f0000000040)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000080)='iocharset', &(0x7f0000000580)='%\x8bR\xafH\xd6e\x11\'\xec\xbb\xcb\xa0/\x1f\x16\xcf\xe2\xb5\xfc\xeb1\x12\xfdC\xb8\xa0\x01\xa3~\x971W\x96\xec\xaf\x1c\x91\xeb\xa8e\xfe\x17\x02xEA\x0f\x14\r\xae\xc1\xfe\x06\x12\beSb{~R\xf0\x06\xfb\x00\x00\xf92\xce\x81p\x1fC\n\x9f(\x00\xc5\x1d\x9c\xccCq\x06\x1b-\f\xc9\xd9+\xa4\x14\xd8\xf4\xef\xf5^\xbb\x06\xc92\x01\xd92\x14\xb8=\x03\x00\xd5M\x04\xf4{H\xd0\xc8v\x10\xe1R \x9a^\xdfqpc\x00\x00\x00\x00\x00\x00&>\x94\x882\x1c_j\x15{ \xf08\xdf\x84\xe64{4\x81\xba\xfc\x93\xf4\xd8\xb5\x04\xcb\x98\xd1QF\xe5\x1b\xb30x/\x86\x02\x1ct\xc7\x88\xd2\xce\xd5\x9e1\xef`\xad\x05\x11\xc9\xd8<\xc6~\x97\xd5\xde\xe3Eh\\\x84\x14\x9e\b\xe1\x9b\x00\'\xe8!\x8c\xc3\x97\x8a\xcf\xfc\x8fe\xa6\x0f\x8b\x912c\x1b>8\xa3=\xab\xf1\xf5\r\xb6\f\xfcS9\xae.\x8b\xf3\xbc,?\xb2\x9aBDPY=r\xfa8I\x16\xa2\x18\xd4\xa5\x8b\xaf\xd1\x8a\xbb\x0e\x15O\xc9p@\xadaw\x84\xc9\xdd\x87a[\xdf\xc2\xa4\xf9@T/', 0x0)

4.35840393s ago: executing program 5 (id=1571):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000680)=ANY=[@ANYBLOB="b40600000000000071112400000000008510000002000000850000000700000095000000000000009500000000000000ce8920f29328b7ddd3856df677997bc5cafa405a82061c5386992ff41f5524a21802a859883d24cc98e697e9e2aa06a6ade7a79a62029a98a8e09c7c6edefac53c5f767377cfcd6bb593240100378e"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3e, 0x10, &(0x7f0000000380), &(0x7f00000003c0), 0x8, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r1, 0xe8, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x2, "2af01c3d0040fbffffffffffffff00"})
r2 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x13)

4.22854074s ago: executing program 5 (id=1573):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/mdstat\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000680)=""/220, 0xdc, 0x5)
pwrite64(r0, &(0x7f0000000000)="0de915a9a89f250ff844e03e1e94b57dde6311033abfb363f49f7accb5ad42dffab207631d757f58ac87099797d1f016500fe434aed603065f2c14c3c91208ea98d6d0372f87842c72ba4644eb7f38732bf9916330c793dd37d7a13a948abeb30e611abd9bff4eeb6ff44903f010ea5e3b5a1a0b4140b4b6d7839cea157a231b11511f7d4be093c221be4a4651f3798e44c1f8540e968a17ff3bb11f42b7ab73", 0xa0, 0x8000005)

4.157012255s ago: executing program 5 (id=1574):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000000))
bpf$TOKEN_CREATE(0x24, &(0x7f00000001c0)={0x0, r0}, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x3, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000050000fe0000000000000000001801000020205a2500001700002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7025b2cb0f55991a359eed53b97e09a000008000000b703000002000000850000007b0000009500000000000000"], &(0x7f0000000740)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="0000000000000000000051229dc9", 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$clear(0x3, r2)
r3 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000140)='_', 0x1, 0xfffffffffffffffe)
syz_emit_ethernet(0x7e, &(0x7f0000000240)={@multicast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x48, 0x3a, 0x0, @rand_addr=' \x01\x00', @mcast2, {[], @dest_unreach={0x1, 0x3, 0x0, 0x7f, '\x00', {0x0, 0x6, "e1f588", 0x7, 0x0, 0xff, @mcast2, @mcast2, [@fragment={0x2f, 0x0, 0xf, 0x0, 0x0, 0x0, 0x65}, @hopopts={0xbe}], "7bf354a4d44f873e"}}}}}}}, 0x0)
r4 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
r5 = add_key$user(&(0x7f0000006400), &(0x7f0000006c00)={'syz', 0x3}, &(0x7f0000006900)="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", 0x129, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r3, r4, r5}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'sha3-512-generic\x00'}})
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000009, 0x50, r1, 0x35949000)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)=@chain={'key_or_keyring:', r5})

4.098383782s ago: executing program 5 (id=1576):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
open(&(0x7f00000002c0)='./file0/file0\x00', 0x141840, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x4c, 0x4c, 0x4, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x1}}, @func_proto, @datasec={0x2, 0x1, 0x0, 0xf, 0x2, [{0x2, 0x0, 0x10001}], '9#'}, @datasec={0x0, 0x0, 0x0, 0xf, 0x2, [], "921c"}]}, {0x0, [0x0, 0x61]}}, &(0x7f00000006c0)=""/196, 0x68, 0xc4, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000280)='timer_start\x00'}, 0x18)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
syz_usb_connect(0x0, 0x72, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000c46f3d08a905302612550000000109026000010000000009040000000e010000192401"], 0x0)
r2 = syz_open_dev$ndb(&(0x7f0000000440), 0x0, 0x123040)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r2, 0xab00, r3)
ioctl$NBD_SET_FLAGS(0xffffffffffffffff, 0xab0a, 0x1000106)
ioctl$NBD_SET_SOCK(0xffffffffffffffff, 0xab00, r3)
ioctl$NBD_DO_IT(r2, 0xab03)

3.050041506s ago: executing program 3 (id=1590):
r0 = openat$drirender128(0xffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$DRM_IOCTL_CONTROL(r0, 0x40086414, &(0x7f0000000240)={0x1, 0x3})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="963b3f0df3f5d91af87ade5e6cdc4dba60ee4037dee1503337df9a52f27c815b34f2d9b138300e259a115bea664866c70e1107b6e83c78eee3d4ed8429516293933beda97658c2a4499982e8cb925dd986fbcdfcd9572148e0a0f4c60f958e65c59aa955701d50d850469bb79423184817ed3f29b63b74807bd084a5f4fa3ea4edaac5c5049c5cfd0c3efd20470638692badb184e9474ab8f5c7b6c1e775186151c106bee4eca07744f5b3be50dd14834b70897b", @ANYRES16=r2, @ANYBLOB="010029bd7000fcdbdf250a00000004000380"], 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
r3 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
ioctl$NBD_DO_IT(r3, 0xab03)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r4=>0x0)
ioctl$BLKTRACESETUP(r3, 0xc0401273, &(0x7f0000000080)={'\x00', 0x8, 0x4, 0xfffffeff, 0x7, 0x7, r4})
socket$igmp(0x2, 0x3, 0x2)
syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c200000eaaaaaaaaaa0008004500001c0000000000029078ac1e0001e07ac8e2aa3f2fde5e0e2356"], 0x0)
socketpair(0x2, 0x4, 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
r6 = syz_io_uring_setup(0x24fc, &(0x7f0000000400)={0x0, 0x0, 0x10100}, &(0x7f00000003c0)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r6, 0x1066, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'vcan0\x00', <r9=>0x0})
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000040)={0x1d, r9}, 0x18)
sendto(0xffffffffffffffff, 0x0, 0x0, 0x20044000, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e21, @remote}, 0x2, 0x1, 0x1, 0x3}}, 0x80)
r10 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r10, &(0x7f00000001c0)={0x1a, 0x0, 0x2, 0x4, 0x77, 0xa2, @remote}, 0x10)
shutdown(r5, 0x1)
ioctl$NBD_SET_SOCK(r3, 0xab00, 0xffffffffffffffff)
ioctl$NBD_DISCONNECT(r3, 0xab08)
ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000000100)=0x5)

2.849772615s ago: executing program 4 (id=1592):
r0 = socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xa2, &(0x7f0000000140)=""/162, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000240)={@multicast, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x20, 0x2c, 0x0, @remote, @local, {[], {{0x600, 0x3, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, {[@exp_fastopen={0xfe, 0x4}, @mss={0x2, 0x4, 0x1}, @window={0x3, 0x3, 0xf8}]}}}}}}}}, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000002440)={0x1, 0x0, 0x3, &(0x7f0000000340)={0x9, "f4e1a230be8f46463fb1a5f1b44f44eaa65e12638caf07677d18bc00"}})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x7, 0x0, 0x11, 0x7fdfffff}]})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r5, 0xc008aec1, &(0x7f00000000c0)=""/8)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INFO(r6, 0x0, 0x80, &(0x7f00000002c0)={'filter\x00', 0x88, 0x0, 0x0, [0x1, 0xffffffffffffffff, 0x0, 0xae, 0x401, 0x8]}, &(0x7f0000000280)=0x50)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = syz_open_procfs(0xffffffffffffffff, 0x0)
read$FUSE(r7, &(0x7f0000000400)={0x2020}, 0x2020)
getsockopt$inet6_udp_int(r7, 0x11, 0xa, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000fffffffffffffff80000000000850000007b000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r8}, 0x10)
syz_emit_vhci(&(0x7f0000000640)=ANY=[], 0xd)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})

2.849415444s ago: executing program 5 (id=1593):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r0}, 0x18)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x2}, {0x5, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
semget$private(0x0, 0x207, 0x480)
keyctl$dh_compute(0x17, &(0x7f0000000200), &(0x7f0000000040)=""/217, 0xd9, &(0x7f00000001c0)={&(0x7f0000000140)={'sha384-avx\x00'}})
r7 = socket$kcm(0x10, 0x2, 0x0)
openat$btrfs_control(0xffffff9c, &(0x7f0000000380), 0x2001, 0x0)
sendmsg$kcm(r7, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x32}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x300}]}]}], {0x14}}, 0xc8}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0x5, &(0x7f0000000300)=0x4, 0x4)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=@newqdisc={0x78, 0x24, 0x4, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0x0, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x7, 0xa, 0x7f, 0x7, 0x9}, 0x6, 0x0, 0x9, 0x8, 0x1, 0x16, 0x8, 0xa, 0x0, 0x3, {0x4, 0xffff12c6, 0x7fff, 0x800, 0x5, 0x7fff}}}}]}, 0x78}}, 0x20000850)

2.121969875s ago: executing program 3 (id=1594):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000180)={0x18, 0x2c, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}, [@nested={0x4, 0xe}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000) (fail_nth: 28)

1.94978377s ago: executing program 3 (id=1595):
r0 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
socketpair(0xa, 0x5, 0x10, 0x0)
ioctl$NBD_SET_SOCK(r0, 0xab00, 0xffffffffffffffff)
setrlimit(0x9, &(0x7f0000000580)={0x3, 0x4})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f00000007c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000ffdbdf2501"], 0x60}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff})
socketpair(0x1, 0x80001, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f00000005c0)={'ip_vti0\x00', &(0x7f0000000380)={'gretap0\x00', 0x0, 0x0, 0x7, 0x1, 0x7, {{0x6, 0x4, 0x0, 0x3c, 0x18, 0x67, 0x0, 0xfd, 0x4, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, {[@timestamp_prespec={0x44, 0x4, 0x94, 0x3, 0xc}]}}}}})
r6 = openat$btrfs_control(0xffffff9c, &(0x7f0000000140), 0x424081, 0x0)
r7 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r7)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r7, 0x89f3, &(0x7f00000000c0)={'syztnl1\x00', 0x0})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r8=>r0, {0x4}}, './file0\x00'})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r9=>0xffffffffffffffff})
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0xb4, r3, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0xe, 0xa, '/dev/nbd#\x80'}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BACKEND_IDENTIFIER={0x11, 0xa, '/[(}-%/*^(^\\}'}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x4}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x9}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_SOCKETS={0x3c, 0x7, 0x0, 0x1, [{0x8, 0x1, r4}, {0x8, 0x1, r5}, {0x8, 0x1, r0}, {0x8, 0x1, r6}, {0x8, 0x1, r7}, {0x8, 0x1, r8}, {0x8, 0x1, r9}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xb}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0xb4}, 0x1, 0x0, 0x0, 0x4000001}, 0x40084)
r10 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x7fff, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r10, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7})
ioctl$vim2m_VIDIOC_STREAMOFF(r10, 0x40045612, &(0x7f0000000000)=0x1)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
syz_open_dev$video(&(0x7f0000000040), 0x3ff, 0x0)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioperm(0x0, 0x9, 0x5)
inotify_init1(0x0)

1.911719843s ago: executing program 5 (id=1596):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r0 = open$dir(&(0x7f0000000180)='./file0\x00', 0x7e, 0x0)
r1 = openat$full(0xffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$IOC_PR_PREEMPT(r1, 0x401870cb, &(0x7f0000000040)={0x4, 0x9, 0xffffffff, 0x7})
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800e9ffffe4aa652189f17b08d25fc7bfe0c0b6db8400000c"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r3 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000240)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
ioperm(0xfffffffe, 0x40000007, 0x5)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xa, [{}, {0x10}, {}, {}, {}, {}, {0xfffffffc}, {0x400000}], 0x0, 0x4}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
eventfd(0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYRESDEC])
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(0xffffffffffffffff, 0x40045731, &(0x7f0000000180))
r5 = memfd_create(&(0x7f0000000200)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05', 0x0)
ftruncate(r5, 0x80079a0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r5, 0x0)
lseek(r5, 0x1003ff, 0x4)
keyctl$KEYCTL_WATCH_KEY(0x20, r3, 0xffffffffffffffff, 0x0)
keyctl$set_timeout(0x1d, r3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x42400)
open$dir(&(0x7f0000000180)='./file0\x00', 0x7e, 0x0)

1.8983189s ago: executing program 3 (id=1597):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff00000000000109022d000100000000090400001503000000092140000001220f00", @ANYRES32], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340), &(0x7f0000000280))
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="ecb6e7fe00910000000000c584578f2e9099ce87", @ANYRES32, @ANYBLOB="0200"/20, @ANYRES32=0x0, @ANYRES32=r3, @ANYBLOB="0000000001000000000000000100"/28], 0x50)
fsopen(&(0x7f0000000300)='anon_inodefs\x00', 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000001340)={{0x403, 0x3, 0x0, 0x8, 'syz0\x00'}, 0x3, 0x0, 0x8, 0x0, 0x2, 0x1, 'syz1\x00', &(0x7f0000000100)=['\xd3\xf4e\a\x00', '-[\'\x00'], 0x9})
r5 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r5, 0x501c4814, &(0x7f00000002c0)={0x2, 0xffffffff, 0x0, 0x9})

1.885578286s ago: executing program 4 (id=1599):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r0}, 0x18)
mknod(&(0x7f0000000080)='./bus\x00', 0xc000, 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000580)='./bus\x00', &(0x7f0000000040)='ntfs3\x00', 0x8080, &(0x7f00000001c0)='discard') (fail_nth: 24)

1.781419854s ago: executing program 2 (id=1600):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x1e0)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', &(0x7f0000000100), 0xc, &(0x7f0000000140)={'trans=virtio,', {[{@dfltuid}]}})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb01001800000000000000810000008100000003000000090000000000000804000000000000000100000d0000000009000000040000000500000000000008050000000b00ace0487f50c580000000001201000000030000000400000f0100000002000000ff7f00000700000003000000b0000000000001000400000008000000018000000300000000a00000040000008e080000000000000902000000000000002e00b442921b4452f8ca828cfe6a3af7f33332"], &(0x7f00000004c0)=""/181, 0x9f, 0xb5, 0x1, 0x4, 0x10000, @value}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3f, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x208b}, 0x0)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000800)={<r3=>0xffffffffffffffff})
getsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000840), &(0x7f0000000880)=0x4)
syz_open_dev$vim2m(&(0x7f0000000080), 0x5, 0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="19000000"], 0x48)
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x400, &(0x7f0000000a40)=ANY=[@ANYBLOB=',debug=0x0000007,version=9p20\\++},%{!(6,afid=0x000000003f5689cf,nodevmap,fscache,afid=0', @ANYRESDEC])
r4 = fsopen(&(0x7f0000000100)='nfs4\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={0xffffffffffffffff, r5, 0x1, 0x0, @void}, 0x10)
r6 = socket(0x2, 0x3, 0xff)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
connect$inet(r6, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg$unix(r6, &(0x7f0000002fc0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="643c87cf08d21d994efea03321af0c6c7715a604", 0x14}], 0x1}}], 0x1, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x55920000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

1.709565542s ago: executing program 4 (id=1601):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x1e0)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', &(0x7f0000000100), 0xc, &(0x7f0000000140)={'trans=virtio,', {[{@dfltuid}]}})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb01001800000000000000810000008100000003000000090000000000000804000000000000000100000d0000000009000000040000000500000000000008050000000b00ace0487f50c580000000001201000000030000000400000f0100000002000000ff7f00000700000003000000b0000000000001000400000008000000018000000300000000a00000040000008e080000000000000902000000000000002e00b442921b4452f8ca828cfe6a3af7f33332"], &(0x7f00000004c0)=""/181, 0x9f, 0xb5, 0x1, 0x4, 0x10000, @value}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3f, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x208b}, 0x0)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000800)={<r3=>0xffffffffffffffff})
getsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000840), &(0x7f0000000880)=0x4)
syz_open_dev$vim2m(&(0x7f0000000080), 0x5, 0x2)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="190000"], 0x48)
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x400, &(0x7f0000000a40)=ANY=[@ANYBLOB=',debug=0x0000007,version=9p20\\++},%{!(6,afid=0x000000003f5689cf,nodevmap,fscache,afid=0x0000000000000f9c,msize=0x00', @ANYRESDEC])
r4 = fsopen(&(0x7f0000000100)='nfs4\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={0xffffffffffffffff, r5, 0x1, 0x0, @void}, 0x10)
r6 = socket(0x2, 0x3, 0xff)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
connect$inet(r6, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg$unix(r6, &(0x7f0000002fc0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="643c87cf08d21d994efea03321af0c6c7715a604", 0x14}], 0x1}}], 0x1, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x55920000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

1.709130298s ago: executing program 2 (id=1602):
syz_emit_ethernet(0x114, &(0x7f0000000280)={@broadcast, @empty, @val={@val={0x88a8, 0x7, 0x1, 0x2}, {0x8100, 0x3, 0x0, 0x1}}, {@ipv4={0x800, @icmp={{0x20, 0x4, 0x3, 0x4, 0xfe, 0x64, 0x0, 0x43, 0x1, 0x0, @broadcast, @loopback, {[@ssrr={0x89, 0xb, 0x7f, [@local, @private=0xa010102]}, @ra={0x94, 0x4, 0x1}, @end, @lsrr={0x83, 0x17, 0xa2, [@dev={0xac, 0x14, 0x14, 0x14}, @rand_addr=0x64010101, @rand_addr=0x64010101, @broadcast, @loopback]}, @end, @lsrr={0x83, 0x27, 0xd4, [@local, @dev={0xac, 0x14, 0x14, 0x2a}, @multicast2, @remote, @empty, @rand_addr=0x64010101, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_prespec={0x44, 0x1c, 0x6b, 0x3, 0x5, [{@rand_addr=0x64010100, 0x6}, {@broadcast, 0x9}, {@dev={0xac, 0x14, 0x14, 0x2d}, 0x6}]}]}}, @time_exceeded={0xb, 0x0, 0x0, 0x0, 0x2, 0x0, {0x1c, 0x4, 0x0, 0x5, 0x7, 0x64, 0xff44, 0x3, 0x21, 0xe7b, @rand_addr=0x64010101, @broadcast, {[@timestamp={0x44, 0x18, 0x1b, 0x0, 0x5, [0x1, 0x7, 0x8, 0x98, 0x3]}, @timestamp_prespec={0x44, 0x14, 0x8e, 0x3, 0x2, [{@loopback, 0x8000}, {@broadcast, 0x4}]}, @cipso={0x86, 0x2d, 0xffffffffffffffff, [{0x6, 0xa, "b7fe08dcac870111"}, {0x0, 0xe, "7ae6f57aff47acb9bbff4bcc"}, {0x5, 0x5, "890a9a"}, {0x1, 0xa, "a580c064fef360a7"}]}]}}, "65f13f63f65a"}}}}}, 0x0)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000080)={{0xa, 0x4e21, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}, 0x3}, {0xa, 0x4e21, 0x2, @mcast1}, 0xffffffffffffffff, {[0xff, 0x3, 0x1db2, 0x7fff, 0x7, 0x4, 0x2, 0x3]}}, 0x5c)

1.697845058s ago: executing program 4 (id=1603):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
socket$inet6(0xa, 0x800000000000002, 0x0)
socket$inet6(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
r4 = io_uring_setup(0x194e, &(0x7f0000000280)={0x0, 0xd3c5, 0x400, 0x3, 0x352})
close_range(r4, 0xffffffffffffffff, 0x0)
connect$netrom(r0, &(0x7f0000000300)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)

1.575060728s ago: executing program 2 (id=1604):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, 0x0, &(0x7f0000000140))
socket(0x10, 0x3, 0x0)
r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$setperm(0x5, r1, 0x0)
keyctl$describe(0x11, r1, 0x0, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r3}, 0xc)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r4 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r4, &(0x7f0000000140)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r5 = syz_io_uring_setup(0xd2, &(0x7f0000000400)={0x0, 0xd9d6, 0x2, 0x0, 0x1e9}, &(0x7f0000000280)=<r6=>0x0, &(0x7f0000003800)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r5, 0x47ba, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r8=>0xffffffffffffffff})
pipe(&(0x7f00000002c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r8, 0x0, r10, 0x0, 0x7, 0x0)
write$P9_RWRITE(r10, &(0x7f0000000040)={0xb}, 0x11000)
write$P9_RATTACH(r9, &(0x7f0000003ac0)={0x14, 0x69, 0x1, {0x0, 0x1, 0x3}}, 0x14)
ioperm(0x4, 0x8, 0x5)
semctl$IPC_RMID(0x0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$netlink(0x10, 0x3, 0x4)
r11 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r11, 0x11b, 0x3, &(0x7f0000000080)=0x100000, 0x4)

787.863883ms ago: executing program 4 (id=1605):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/sockstat6\x00')
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0, r2}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000240)={0x7, 0x8, 0xfa00, {r2, 0x6}}, 0x10)
read$FUSE(r0, &(0x7f0000002a00)={0x2020}, 0x2020)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r3}, 0x18)
mknod(&(0x7f0000000080)='./bus\x00', 0xc000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x2, &(0x7f00000000c0)=@raw=[@call={0x85, 0x0, 0x0, 0xae}, @exit={0x95, 0x0, 0x9fff}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x800, 0x0, 0x103, 0x1}, 0x20)
sendmsg$inet6(r4, &(0x7f0000000100)={&(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="60000000290000000b0000000008000000000000c910fe880000000000000000000000000001c910ff020000000000000000000000000001072000000000060000000000000000000000000000000000000000000000000000000000f4c8591eae6163a8a6630a0fba71bc17b58bdc4cf6779be8b3cdee3d369e47de195de240ffaa24ff81b16ff3115a68c6a49c2bb5bcea547c28cf1fdd6c5e7f00d66048f6ada67d853443a5381a0916ff0faeb3860f473f24decd35dc957fafaf0094874bd35249958afaf63393a78bbdbf0d0670"], 0x60}, 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000580)='./bus\x00', &(0x7f0000000040)='ntfs3\x00', 0x8080, &(0x7f00000001c0)='discard')

712.796982ms ago: executing program 4 (id=1606):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000080)={0x0, 0x8001}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000280), 0x4)
r1 = openat$vimc2(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x40, 0x0, 0x20363159, 0x2, 0xb, [{0x20}, {0x0, 0x1}, {0x0, 0x5}, {0xfffffffd}, {}, {0x0, 0x1000000}], 0x0, 0x0, 0x3}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0xfffffcf9, &(0x7f0000000780)={&(0x7f0000000080)=ANY=[@ANYBLOB="3800000018000100000000000000000002000000fcffff0600000000060015000400000014001680100008800c0003800500010002"], 0x38}}, 0x0)
fsopen(0x0, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x0, 0x3, &(0x7f0000000240)=ANY=[@ANYRESHEX=r1], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x29)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x100000)
r5 = socket(0x2, 0x2, 0x0)
r6 = syz_open_dev$ndb(&(0x7f0000000080), 0x0, 0x80040)
ioctl$NBD_SET_SOCK(r4, 0xab00, r5)
ioctl$NBD_DO_IT(r6, 0xab03)
ioctl$NBD_SET_SIZE_BLOCKS(r4, 0xab07, 0x6)
ioctl$NBD_CLEAR_SOCK(r4, 0x125f)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioperm(0x0, 0x2, 0x7f)
keyctl$session_to_parent(0x12)

487.086345ms ago: executing program 2 (id=1607):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000180)={0x18, 0x2c, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}, [@nested={0x4, 0xe}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000) (fail_nth: 29)

209.74307ms ago: executing program 2 (id=1608):
r0 = io_uring_setup(0x766a, &(0x7f0000000880)={0x0, 0xd277, 0x0, 0x0, 0x128})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000180)={0x2, 0x6, 0x0, 'queue1\x00', 0xfffff001})
socket$nl_generic(0x14, 0x3, 0x10)
r2 = dup(r1)
r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "12f3ea420ebf00"})
writev(r3, &(0x7f0000000340)=[{&(0x7f0000000780)='\r', 0x1}], 0x1)
preadv(r2, &(0x7f0000000600)=[{&(0x7f000000c300)=""/102386, 0x18ff2}], 0x1, 0xa30a, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
fstat(r4, &(0x7f0000000100))
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000005200010000000000000000001c0000000c00010007"], 0x20}}, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r7 = syz_open_dev$vim2m(&(0x7f0000000580), 0x0, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r7, 0xc0d05605, &(0x7f0000000000)={0x2, @sdr={0x0, 0xfff}})
ioctl$vim2m_VIDIOC_S_FMT(r7, 0xc0d05605, &(0x7f00000002c0)={0x2, @pix={0x4, 0xfffffffd, 0x30323953, 0x4, 0x2, 0x4, 0x6, 0x4, 0x0, 0x4, 0x1, 0x7}})
fcntl$setstatus(r6, 0x4, 0x2000)
ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000940)={'bond_slave_1\x00', {0x2, 0x4e20, @private=0xa010101}})

0s ago: executing program 2 (id=1609):
socket(0x10, 0x3, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4048aecb, 0x0)
mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='udf\x00', 0x1000000, 0x0)
r0 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x109400, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$cdrom(0xffffff9c, &(0x7f0000000180), 0x80600, 0x0)
ioctl$DVD_READ_STRUCT(r3, 0x5390, &(0x7f0000000380)=@type=0x4)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r4, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
sendmsg$rds(r4, &(0x7f0000000680)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(r4, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x8)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f00000007c0)={0x1, 0x0, [{0x40000118, 0x0, 0xffff}]})
ioctl$NBD_CLEAR_SOCK(r0, 0x1261)

kernel console output (not intermixed with test programs):

: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  252.465369][ T5986] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.470959][ T5986] usb 8-1: rejected 1 configuration due to insufficient available bus power
[  252.474165][ T5986] usb 8-1: no configuration chosen from 1 choice
[  252.598981][T11042] FAULT_INJECTION: forcing a failure.
[  252.598981][T11042] name failslab, interval 1, probability 0, space 0, times 0
[  252.603125][T11042] CPU: 0 UID: 0 PID: 11042 Comm: syz.5.1337 Not tainted 6.14.0-rc5-syzkaller #0
[  252.603137][T11042] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  252.603143][T11042] Call Trace:
[  252.603147][T11042]  <TASK>
[  252.603152][T11042]  dump_stack_lvl+0x16c/0x1f0
[  252.603169][T11042]  should_fail_ex+0x50a/0x650
[  252.603199][T11042]  ? fs_reclaim_acquire+0xae/0x150
[  252.603213][T11042]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  252.603229][T11042]  should_failslab+0xc2/0x120
[  252.603239][T11042]  __kmalloc_noprof+0xcb/0x510
[  252.603254][T11042]  ? __pfx___mutex_trylock_common+0x10/0x10
[  252.603279][T11042]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  252.603298][T11042]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  252.603314][T11042]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  252.603329][T11042]  ? trace_cap_capable+0x1a2/0x210
[  252.603344][T11042]  ? bpf_lsm_capable+0x9/0x10
[  252.603354][T11042]  ? security_capable+0x7e/0x260
[  252.603367][T11042]  genl_rcv_msg+0x565/0x800
[  252.603384][T11042]  ? __pfx_genl_rcv_msg+0x10/0x10
[  252.603399][T11042]  ? __pfx_smc_pnet_flush+0x10/0x10
[  252.603411][T11042]  ? __pfx___lock_acquire+0x10/0x10
[  252.603428][T11042]  netlink_rcv_skb+0x16b/0x440
[  252.603442][T11042]  ? __pfx_genl_rcv_msg+0x10/0x10
[  252.603458][T11042]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  252.603476][T11042]  ? down_read+0xc9/0x330
[  252.603491][T11042]  ? __pfx_down_read+0x10/0x10
[  252.603504][T11042]  ? netlink_deliver_tap+0x1ae/0xd30
[  252.603519][T11042]  genl_rcv+0x28/0x40
[  252.603532][T11042]  netlink_unicast+0x53c/0x7f0
[  252.603547][T11042]  ? __pfx_netlink_unicast+0x10/0x10
[  252.603561][T11042]  ? __phys_addr_symbol+0x30/0x80
[  252.603572][T11042]  ? __check_object_size+0x488/0x710
[  252.603584][T11042]  netlink_sendmsg+0x8b8/0xd70
[  252.603599][T11042]  ? __pfx_netlink_sendmsg+0x10/0x10
[  252.603618][T11042]  ____sys_sendmsg+0xaaf/0xc90
[  252.603630][T11042]  ? __pfx_____sys_sendmsg+0x10/0x10
[  252.603641][T11042]  ? get_compat_msghdr+0x11b/0x170
[  252.603659][T11042]  ___sys_sendmsg+0x135/0x1e0
[  252.603674][T11042]  ? __pfx____sys_sendmsg+0x10/0x10
[  252.603694][T11042]  ? __pfx_lock_release+0x10/0x10
[  252.603707][T11042]  ? trace_lock_acquire+0x14e/0x1f0
[  252.603723][T11042]  ? __fget_files+0x206/0x3a0
[  252.603740][T11042]  __sys_sendmsg+0x16e/0x220
[  252.603755][T11042]  ? __pfx___sys_sendmsg+0x10/0x10
[  252.603778][T11042]  __do_fast_syscall_32+0x73/0x120
[  252.603792][T11042]  do_fast_syscall_32+0x32/0x80
[  252.603806][T11042]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  252.603822][T11042] RIP: 0023:0xf7f86579
[  252.603830][T11042] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  252.603840][T11042] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  252.603849][T11042] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000080
[  252.603855][T11042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  252.603861][T11042] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  252.603866][T11042] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  252.603872][T11042] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  252.603884][T11042]  </TASK>
[  252.889362][   T39] audit: type=1326 audit(2000000025.149:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  252.900863][   T39] audit: type=1326 audit(2000000025.149:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  252.909214][   T39] audit: type=1326 audit(2000000025.149:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  252.919120][   T39] audit: type=1326 audit(2000000025.149:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  252.928325][   T39] audit: type=1326 audit(2000000025.149:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  252.937589][   T39] audit: type=1326 audit(2000000025.149:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  252.945715][   T39] audit: type=1326 audit(2000000025.149:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  252.953898][   T39] audit: type=1326 audit(2000000025.149:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  252.962684][   T39] audit: type=1326 audit(2000000025.149:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  252.966745][T11048] 9pnet: Unknown protocol version 9p20\++}
[  253.656046][T11061] sp0: Synchronizing with TNC
[  253.688723][   T57] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  253.720991][   T57] hid-generic 0000:0000:0000.0009: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  254.300965][   T30] usb 7-1: USB disconnect, device number 12
[  254.679004][T11072] pim6reg: entered allmulticast mode
[  254.776373][T11075] 9pnet: Unknown protocol version 9p20\++}
[  254.927249][T11079] syz.4.1349: attempt to access beyond end of device
[  254.927249][T11079] nbd4: rw=0, sector=64, nr_sectors = 2 limit=0
[  254.932182][T11079] syz.4.1349: attempt to access beyond end of device
[  254.932182][T11079] nbd4: rw=0, sector=512, nr_sectors = 2 limit=0
[  254.936848][T11079] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  254.940361][T11079] syz.4.1349: attempt to access beyond end of device
[  254.940361][T11079] nbd4: rw=0, sector=1024, nr_sectors = 2 limit=0
[  254.952116][T11079] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  254.955789][T11079] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  254.958639][T11079] UDF-fs: Scanning with blocksize 1024 failed
[  254.961307][T11079] syz.4.1349: attempt to access beyond end of device
[  254.961307][T11079] nbd4: rw=0, sector=64, nr_sectors = 4 limit=0
[  254.971655][T11079] syz.4.1349: attempt to access beyond end of device
[  254.971655][T11079] nbd4: rw=0, sector=1024, nr_sectors = 4 limit=0
[  254.976426][T11079] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  254.986866][T11079] syz.4.1349: attempt to access beyond end of device
[  254.986866][T11079] nbd4: rw=0, sector=2048, nr_sectors = 4 limit=0
[  254.993743][T11079] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  255.001480][T11079] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  255.004260][T11079] UDF-fs: Scanning with blocksize 2048 failed
[  255.006782][T11079] syz.4.1349: attempt to access beyond end of device
[  255.006782][T11079] nbd4: rw=0, sector=64, nr_sectors = 8 limit=0
[  255.032833][ T5942] usb 8-1: USB disconnect, device number 9
[  255.041030][T11079] syz.4.1349: attempt to access beyond end of device
[  255.041030][T11079] nbd4: rw=0, sector=2048, nr_sectors = 8 limit=0
[  255.060858][T11079] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  255.072893][T11079] syz.4.1349: attempt to access beyond end of device
[  255.072893][T11079] nbd4: rw=0, sector=4096, nr_sectors = 8 limit=0
[  255.077653][T11079] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  255.081122][T11079] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  255.084491][T11079] UDF-fs: Scanning with blocksize 4096 failed
[  255.086817][T11079] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1)
[  255.711665][   T39] kauditd_printk_skb: 30914 callbacks suppressed
[  255.711679][   T39] audit: type=1326 audit(2000000027.969:31101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  255.722337][   T39] audit: type=1326 audit(2000000027.969:31102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  255.729798][   T39] audit: type=1326 audit(2000000027.969:31103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  255.737315][   T39] audit: type=1326 audit(2000000027.969:31104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  255.746285][   T39] audit: type=1326 audit(2000000027.969:31105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  255.756377][   T39] audit: type=1326 audit(2000000027.979:31106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  255.762041][T11100] 9pnet: Unknown protocol version 9p20\++}
[  255.766746][   T39] audit: type=1326 audit(2000000027.979:31107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  255.776715][   T39] audit: type=1326 audit(2000000027.979:31108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  255.784262][   T39] audit: type=1326 audit(2000000027.979:31109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  255.791633][   T39] audit: type=1326 audit(2000000027.979:31110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1338" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f86579 code=0x50000
[  256.055812][T11119] trusted_key: encrypted_key: keyword 'upcate' not recognized
[  256.105851][T11123] syz.5.1363: attempt to access beyond end of device
[  256.105851][T11123] nbd5: rw=0, sector=64, nr_sectors = 2 limit=0
[  256.109883][T11123] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  256.113513][T11123] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  256.116089][T11123] UDF-fs: warning (device nbd5): udf_load_vrs: No anchor found
[  256.118229][T11123] UDF-fs: Scanning with blocksize 1024 failed
[  256.120511][T11123] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  256.127575][T11123] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  256.130555][T11123] UDF-fs: warning (device nbd5): udf_load_vrs: No anchor found
[  256.133959][T11123] UDF-fs: Scanning with blocksize 2048 failed
[  256.136735][T11123] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  256.140403][T11123] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  256.149040][T11123] UDF-fs: warning (device nbd5): udf_load_vrs: No anchor found
[  256.152660][T11123] UDF-fs: Scanning with blocksize 4096 failed
[  256.154902][T11123] UDF-fs: warning (device nbd5): udf_fill_super: No partition found (1)
[  256.170458][  T833] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  256.328946][  T833] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  256.333287][  T833] usb 9-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  256.336846][  T833] usb 9-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  256.339424][  T833] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  256.342520][  T833] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.345860][  T833] usb 9-1: rejected 1 configuration due to insufficient available bus power
[  256.348324][  T833] usb 9-1: no configuration chosen from 1 choice
[  256.395835][T11129] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[  256.473334][T11131] 9pnet: Unknown protocol version 9p20\++}
[  258.821872][T11168] 9pnet: Unknown protocol version 9p20\++}
[  258.907578][   T57] usb 9-1: USB disconnect, device number 8
[  259.871787][T11180] 9pnet: Unknown protocol version 9p20\++}
[  259.874639][T11184] random: crng reseeded on system resumption
[  259.899263][T11172] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1376'.
[  260.076294][ T5295] block nbd2: Receive control failed (result -32)
[  260.094307][T11172] block nbd2: shutting down sockets
[  260.185777][T11195] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  260.187623][T11195] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  260.192569][T11195] vhci_hcd vhci_hcd.0: Device attached
[  260.461044][T11206] netlink: 'syz.4.1392': attribute type 10 has an invalid length.
[  260.466706][T11206] team0: Device ipvlan1 failed to register rx_handler
[  261.111626][   T25] usb 45-1: new low-speed USB device number 7 using vhci_hcd
[  261.222488][T11211] FAULT_INJECTION: forcing a failure.
[  261.222488][T11211] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  261.226711][T11196] vhci_hcd: connection reset by peer
[  261.227222][T11211] CPU: 0 UID: 0 PID: 11211 Comm: syz.3.1388 Not tainted 6.14.0-rc5-syzkaller #0
[  261.227240][T11211] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  261.227249][T11211] Call Trace:
[  261.227254][T11211]  <TASK>
[  261.227260][T11211]  dump_stack_lvl+0x16c/0x1f0
[  261.227284][T11211]  should_fail_ex+0x50a/0x650
[  261.227309][T11211]  _copy_from_user+0x2e/0xd0
[  261.227326][T11211]  copy_mount_options+0x76/0x190
[  261.227344][T11211]  __ia32_sys_mount+0x1ad/0x310
[  261.227357][T11211]  ? __pfx___ia32_sys_mount+0x10/0x10
[  261.227377][T11211]  __do_fast_syscall_32+0x73/0x120
[  261.227397][T11211]  do_fast_syscall_32+0x32/0x80
[  261.227415][T11211]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  261.227437][T11211] RIP: 0023:0xf73ce579
[  261.227448][T11211] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  261.227462][T11211] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  261.227477][T11211] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000080000580
[  261.227486][T11211] RDX: 0000000080000040 RSI: 0000000000008080 RDI: 00000000800001c0
[  261.227495][T11211] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  261.227503][T11211] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  261.227511][T11211] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  261.227530][T11211]  </TASK>
[  261.231297][T11211] ntfs3(nbd3): try to read out of volume at offset 0x0
[  261.238262][T10001] vhci_hcd: stop threads
[  261.283159][T10001] vhci_hcd: release socket
[  261.284556][T10001] vhci_hcd: disconnect device
[  261.380393][T11217] 9pnet: Unknown protocol version 9p20\++}
[  261.408440][T11219] netlink: 'syz.3.1391': attribute type 3 has an invalid length.
[  261.420272][T11219] Illegal XDP return value 614147136 on prog  (id 367) dev N/A, expect packet loss!
[  261.471046][T11224] raw_sendmsg: syz.3.1391 forgot to set AF_INET. Fix it!
[  261.482267][T11224] 9pnet_fd: Insufficient options for proto=fd
[  262.256022][T11228] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  262.258537][T11228] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  262.262169][T11228] vhci_hcd vhci_hcd.0: Device attached
[  262.297709][ T5295] block nbd2: Receive control failed (result -32)
[  262.322127][T11225] block nbd2: shutting down sockets
[  262.374309][T11239] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  262.376841][T11239] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  262.379805][T11239] vhci_hcd vhci_hcd.0: Device attached
[  262.517452][T11237] netlink: 'syz.4.1404': attribute type 10 has an invalid length.
[  262.520405][T11237] team0: Device ipvlan1 failed to register rx_handler
[  262.531531][T11242] block nbd5: Device being setup by another task
[  262.533852][T11236] block nbd5: NBD_DISCONNECT
[  262.577236][T11234] sp0: Synchronizing with TNC
[  262.598678][ T6907] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  262.603792][ T6907] hid-generic 0000:0000:0000.000A: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  262.608556][T11247] syz.5.1399: vmalloc error: size 2147483616, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  262.614572][T11247] CPU: 3 UID: 0 PID: 11247 Comm: syz.5.1399 Not tainted 6.14.0-rc5-syzkaller #0
[  262.614594][T11247] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  262.614606][T11247] Call Trace:
[  262.614611][T11247]  <TASK>
[  262.614619][T11247]  dump_stack_lvl+0x16c/0x1f0
[  262.614646][T11247]  warn_alloc+0x24d/0x3a0
[  262.614674][T11247]  ? __pfx_warn_alloc+0x10/0x10
[  262.614696][T11247]  ? stack_depot_save_flags+0x38f/0x9c0
[  262.614727][T11247]  ? mark_held_locks+0x9f/0xe0
[  262.614752][T11247]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  262.614771][T11247]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  262.614793][T11247]  __vmalloc_node_range_noprof+0x10dc/0x1530
[  262.614816][T11247]  ? kasan_save_stack+0x42/0x60
[  262.614838][T11247]  ? kasan_save_stack+0x33/0x60
[  262.614858][T11247]  ? kasan_save_track+0x14/0x30
[  262.614881][T11247]  ? kasan_save_free_info+0x3b/0x60
[  262.614898][T11247]  ? __kasan_slab_free+0x51/0x70
[  262.614920][T11247]  ? kfree+0x2c4/0x4d0
[  262.614939][T11247]  ? xt_compat_flush_offsets+0x8f/0x160
[  262.614962][T11247]  ? do_ebt_set_ctl+0x492/0x580
[  262.614982][T11247]  ? nf_setsockopt+0x8a/0xf0
[  262.615003][T11247]  ? do_replace_finish+0xe7/0x22b0
[  262.615023][T11247]  ? hlock_class+0x4e/0x130
[  262.615040][T11247]  ? mark_lock+0xb5/0xc60
[  262.615064][T11247]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  262.615094][T11247]  ? do_replace_finish+0xe7/0x22b0
[  262.615115][T11247]  vmalloc_noprof+0x6b/0x90
[  262.615144][T11247]  ? do_replace_finish+0xe7/0x22b0
[  262.615167][T11247]  do_replace_finish+0xe7/0x22b0
[  262.615190][T11247]  ? __pfx_lock_release+0x10/0x10
[  262.615216][T11247]  ? kasan_quarantine_put+0x10a/0x240
[  262.615241][T11247]  ? lockdep_hardirqs_on+0x7c/0x110
[  262.615263][T11247]  ? __pfx_do_replace_finish+0x10/0x10
[  262.615288][T11247]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  262.615311][T11247]  ? vfree+0x311/0x950
[  262.615334][T11247]  ? compat_do_replace+0x395/0x7b0
[  262.615358][T11247]  compat_do_replace+0x520/0x7b0
[  262.615382][T11247]  ? __pfx_compat_do_replace+0x10/0x10
[  262.615401][T11247]  ? aa_get_newest_label+0x376/0x680
[  262.615421][T11247]  ? __pfx_aa_get_newest_label+0x10/0x10
[  262.615448][T11247]  ? bpf_lsm_capable+0x9/0x10
[  262.615465][T11247]  ? security_capable+0x7e/0x260
[  262.615483][T11247]  do_ebt_set_ctl+0x492/0x580
[  262.615504][T11247]  ? sockopt_release_sock+0x52/0x60
[  262.615529][T11247]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  262.615552][T11247]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  262.615585][T11247]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  262.615609][T11247]  nf_setsockopt+0x8a/0xf0
[  262.615633][T11247]  ip_setsockopt+0xcb/0xf0
[  262.615659][T11247]  udp_setsockopt+0x7d/0xd0
[  262.615682][T11247]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  262.615700][T11247]  do_sock_setsockopt+0x222/0x480
[  262.615717][T11247]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  262.615735][T11247]  ? lock_acquire+0x2f/0xb0
[  262.615767][T11247]  __sys_setsockopt+0x1a0/0x230
[  262.615792][T11247]  __ia32_sys_setsockopt+0xbc/0x160
[  262.615813][T11247]  ? lockdep_hardirqs_on+0x7c/0x110
[  262.615831][T11247]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  262.615853][T11247]  __do_fast_syscall_32+0x73/0x120
[  262.615876][T11247]  do_fast_syscall_32+0x32/0x80
[  262.615897][T11247]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  262.615922][T11247] RIP: 0023:0xf7f86579
[  262.615936][T11247] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  262.615952][T11247] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  262.615967][T11247] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  262.615978][T11247] RDX: 0000000000000080 RSI: 00000000800002c0 RDI: 00000000000000e0
[  262.615987][T11247] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  262.615997][T11247] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  262.616006][T11247] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  262.616027][T11247]  </TASK>
[  262.616033][T11247] Mem-Info:
[  262.714745][T11250] netlink: 'syz.2.1398': attribute type 10 has an invalid length.
[  262.727454][T11247] active_anon:19801 inactive_anon:11 isolated_anon:0
[  262.727454][T11247]  active_file:3103 inactive_file:22533 isolated_file:0
[  262.727454][T11247]  unevictable:1766 dirty:278 writeback:0
[  262.727454][T11247]  slab_reclaimable:8027 slab_unreclaimable:64774
[  262.727454][T11247]  mapped:42595 shmem:15412 pagetables:980
[  262.727454][T11247]  sec_pagetables:302 bounce:0
[  262.727454][T11247]  kernel_misc_reclaimable:0
[  262.727454][T11247]  free:38175 free_pcp:1970 free_cma:0
[  262.730707][T11250] team0: Device ipvlan1 failed to register rx_handler
[  262.730975][T11247] Node 0 active_anon:3332kB inactive_anon:0kB active_file:0kB inactive_file:12024kB unevictable:3528kB isolated(anon):0kB isolated(file):0kB mapped:5132kB dirty:4kB writeback:0kB shmem:4308kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8696kB pagetables:804kB sec_pagetables:1116kB all_unreclaimable? yes
[  262.807886][T11247] Node 1 active_anon:81572kB inactive_anon:44kB active_file:12412kB inactive_file:78108kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:170748kB dirty:1108kB writeback:0kB shmem:62840kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5100kB pagetables:3116kB sec_pagetables:92kB all_unreclaimable? no
[  262.820129][T11247] Node 0 DMA free:1816kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:184kB local_pcp:0kB free_cma:0kB
[  262.830717][T11247] lowmem_reserve[]: 0 294 0 0 0
[  262.832863][T11247] Node 0 DMA32 free:37260kB boost:26624kB min:40184kB low:43572kB high:46960kB reserved_highatomic:4096KB active_anon:3332kB inactive_anon:0kB active_file:0kB inactive_file:12024kB unevictable:3528kB writepending:4kB present:1032196kB managed:301740kB mlocked:0kB bounce:0kB free_pcp:3052kB local_pcp:2792kB free_cma:0kB
[  262.844329][T11247] lowmem_reserve[]: 0 0 0 0 0
[  262.846319][T11247] Node 1 DMA32 free:104804kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:2048KB active_anon:81572kB inactive_anon:44kB active_file:12412kB inactive_file:78108kB unevictable:3536kB writepending:1108kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:6928kB local_pcp:1232kB free_cma:0kB
[  262.858197][T11247] lowmem_reserve[]: 0 0 0 0 0
[  262.859973][T11247] Node 0 DMA: 86*4kB (U) 24*8kB (U) 8*16kB (U) 10*32kB (U) 3*64kB (U) 1*128kB (U) 2*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 1816kB
[  262.864676][T11247] Node 0 DMA32: 321*4kB (UME) 203*8kB (UME) 95*16kB (UMEH) 268*32kB (UMEH) 105*64kB (UMEH) 33*128kB (UMEH) 12*256kB (UMEH) 10*512kB (UMH) 3*1024kB (MH) 1*2048kB (M) 0*4096kB = 37260kB
[  262.869565][T11247] Node 1 DMA32: 51*4kB (UME) 49*8kB (ME) 112*16kB (UME) 115*32kB (UME) 79*64kB (UME) 35*128kB (UME) 16*256kB (UME) 24*512kB (UM) 18*1024kB (M) 3*2048kB (UMH) 12*4096kB (UM) = 105716kB
[  262.875019][T11247] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  262.877589][T11247] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  262.880104][T11247] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  262.882974][T11247] Node 1 hugepages_total=5 hugepages_free=2 hugepages_surp=3 hugepages_size=2048kB
[  262.885681][T11247] 42423 total pagecache pages
[  262.886992][T11247] 0 pages in swap cache
[  262.888154][T11247] Free swap  = 124552kB
[  262.889318][T11247] Total swap = 124996kB
[  262.890475][T11247] 524155 pages RAM
[  262.891916][T11247] 0 pages HighMem/MovableOnly
[  262.893261][T11247] 207817 pages reserved
[  262.894430][T11247] 0 pages cma reserved
[  262.998005][ T5942] usb 41-1: new low-speed USB device number 4 using vhci_hcd
[  263.087826][T11229] vhci_hcd: connection closed
[  263.088077][T10001] vhci_hcd: stop threads
[  263.091323][T10001] vhci_hcd: release socket
[  263.093121][T10001] vhci_hcd: disconnect device
[  263.222343][T11240] vhci_hcd: connection reset by peer
[  263.222615][T11253] FAULT_INJECTION: forcing a failure.
[  263.222615][T11253] name failslab, interval 1, probability 0, space 0, times 0
[  263.227585][T10005] vhci_hcd: stop threads
[  263.227895][T11253] CPU: 1 UID: 0 PID: 11253 Comm: syz.3.1400 Not tainted 6.14.0-rc5-syzkaller #0
[  263.227909][T11253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  263.227916][T11253] Call Trace:
[  263.227919][T11253]  <TASK>
[  263.227924][T11253]  dump_stack_lvl+0x16c/0x1f0
[  263.227941][T11253]  should_fail_ex+0x50a/0x650
[  263.227958][T11253]  ? fs_reclaim_acquire+0xae/0x150
[  263.227971][T11253]  should_failslab+0xc2/0x120
[  263.227981][T11253]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  263.227997][T11253]  ? getname_flags.part.0+0x4c/0x550
[  263.228010][T11253]  getname_flags.part.0+0x4c/0x550
[  263.228023][T11253]  getname_flags+0x93/0xf0
[  263.228036][T11253]  user_path_at+0x24/0x60
[  263.228050][T11253]  __ia32_sys_mount+0x1fc/0x310
[  263.228060][T11253]  ? __pfx___ia32_sys_mount+0x10/0x10
[  263.228073][T11253]  __do_fast_syscall_32+0x73/0x120
[  263.228088][T11253]  do_fast_syscall_32+0x32/0x80
[  263.228101][T11253]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  263.228118][T11253] RIP: 0023:0xf73ce579
[  263.228126][T11253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  263.228136][T11253] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  263.228145][T11253] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000080000580
[  263.228151][T11253] RDX: 0000000080000040 RSI: 0000000000008080 RDI: 00000000800001c0
[  263.228157][T11253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  263.228162][T11253] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  263.228168][T11253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  263.228185][T11253]  </TASK>
[  263.294644][T10005] vhci_hcd: release socket
[  263.296424][T10005] vhci_hcd: disconnect device
[  263.868424][T11262] 9pnet: Unknown protocol version 9p20\++}
[  264.319653][T11282] netlink: 'syz.4.1410': attribute type 3 has an invalid length.
[  264.489277][T11287] FAULT_INJECTION: forcing a failure.
[  264.489277][T11287] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  264.494361][T11287] CPU: 2 UID: 0 PID: 11287 Comm: syz.5.1411 Not tainted 6.14.0-rc5-syzkaller #0
[  264.494386][T11287] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  264.494396][T11287] Call Trace:
[  264.494401][T11287]  <TASK>
[  264.494408][T11287]  dump_stack_lvl+0x16c/0x1f0
[  264.494433][T11287]  should_fail_ex+0x50a/0x650
[  264.494463][T11287]  strncpy_from_user+0x3b/0x2d0
[  264.494490][T11287]  getname_flags.part.0+0x8f/0x550
[  264.494513][T11287]  getname_flags+0x93/0xf0
[  264.494535][T11287]  user_path_at+0x24/0x60
[  264.494558][T11287]  __ia32_sys_mount+0x1fc/0x310
[  264.494573][T11287]  ? __pfx___ia32_sys_mount+0x10/0x10
[  264.494595][T11287]  __do_fast_syscall_32+0x73/0x120
[  264.494618][T11287]  do_fast_syscall_32+0x32/0x80
[  264.494639][T11287]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  264.494664][T11287] RIP: 0023:0xf7f86579
[  264.494676][T11287] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  264.494691][T11287] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  264.494707][T11287] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000080000580
[  264.494716][T11287] RDX: 0000000080000040 RSI: 0000000000008080 RDI: 00000000800001c0
[  264.494725][T11287] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  264.494734][T11287] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  264.494743][T11287] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  264.494763][T11287]  </TASK>
[  264.580277][T11289] 9pnet: Unknown protocol version 9p20\++}
[  264.667235][T11293] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  264.669793][T11293] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  264.677148][T11293] vhci_hcd vhci_hcd.0: Device attached
[  264.821546][ T9517] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  264.923886][   T35] usb 47-1: new low-speed USB device number 2 using vhci_hcd
[  264.944176][T11293] netlink: 'syz.5.1414': attribute type 10 has an invalid length.
[  264.950636][T11293] team0: Device ipvlan1 failed to register rx_handler
[  264.960011][T11294] vhci_hcd: connection reset by peer
[  264.962661][ T9997] vhci_hcd: stop threads
[  264.964390][ T9997] vhci_hcd: release socket
[  264.965793][ T9997] vhci_hcd: disconnect device
[  264.992929][ T9517] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  264.995377][ T9517] usb 7-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  264.998636][ T9517] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  265.003135][ T9517] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  265.006523][ T9517] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.016526][ T9517] usb 7-1: config 0 descriptor??
[  265.023316][ T9517] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  265.229605][T11301] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  265.286802][T11301] ALSA: mixer_oss: invalid OSS volume ''
[  265.733607][ T9517] IPVS: starting estimator thread 0...
[  265.841655][T11306] IPVS: using max 36 ests per chain, 86400 per kthread
[  266.231535][   T25] vhci_hcd: vhci_device speed not set
[  266.308460][T11317] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1420'.
[  266.377640][T11324] 9pnet: Unknown protocol version 9p20\++}
[  266.890733][T11347] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  266.893195][T11347] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  266.898277][T11347] vhci_hcd vhci_hcd.0: Device attached
[  267.205642][T11347] netlink: 'syz.4.1428': attribute type 10 has an invalid length.
[  267.208690][T11347] team0: Device ipvlan1 failed to register rx_handler
[  267.221586][   T25] usb 45-1: device descriptor read/64, error -110
[  267.342797][ T5295] block nbd3: Receive control failed (result -32)
[  267.348994][T11328] block nbd3: shutting down sockets
[  267.461653][   T25] usb 45-1: new low-speed USB device number 8 using vhci_hcd
[  267.562889][T11348] vhci_hcd: connection reset by peer
[  267.565448][ T9996] vhci_hcd: stop threads
[  267.567195][ T9996] vhci_hcd: release socket
[  267.569066][ T9996] vhci_hcd: disconnect device
[  267.888273][T11364] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1431'.
[  267.915988][T11367] usb usb1: usbfs: process 11367 (syz.3.1433) did not claim interface 0 before use
[  267.964442][T11369] netlink: 'syz.5.1434': attribute type 21 has an invalid length.
[  268.001541][T11369] block nbd5: Device being setup by another task
[  268.071626][T11369] block nbd5: Device being setup by another task
[  268.143766][ T5942] vhci_hcd: vhci_device speed not set
[  268.147045][T11370] block nbd5: Disconnected due to user request.
[  268.149257][T11370] block nbd5: shutting down sockets
[  268.381687][T11383] block nbd5: Device being setup by another task
[  268.640752][ T6907] usb 7-1: USB disconnect, device number 13
[  268.800222][T11389] netlink: 392 bytes leftover after parsing attributes in process `syz.3.1441'.
[  268.923438][ T6003] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  268.933658][T11396] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1442'.
[  268.970372][T11375] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  268.981671][T11375] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  268.995044][T11375] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  269.005057][T11375] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  269.007441][T11375] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  269.023766][T11375] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  269.027568][T11375] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  269.034118][T11375] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  269.035912][T11375] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  269.041500][T11375] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  269.083552][T11404] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  269.085432][T11404] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  269.087601][T11404] vhci_hcd vhci_hcd.0: Device attached
[  269.167264][T11410] bio_check_eod: 8 callbacks suppressed
[  269.167278][T11410] syz.2.1444: attempt to access beyond end of device
[  269.167278][T11410] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0
[  269.173698][T11410] syz.2.1444: attempt to access beyond end of device
[  269.173698][T11410] nbd2: rw=0, sector=512, nr_sectors = 2 limit=0
[  269.177799][T11410] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  269.188089][T11410] syz.2.1444: attempt to access beyond end of device
[  269.188089][T11410] nbd2: rw=0, sector=1024, nr_sectors = 2 limit=0
[  269.197011][T11410] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  269.202881][T11410] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  269.205035][T11410] UDF-fs: Scanning with blocksize 1024 failed
[  269.207475][T11410] syz.2.1444: attempt to access beyond end of device
[  269.207475][T11410] nbd2: rw=0, sector=64, nr_sectors = 4 limit=0
[  269.214138][T11410] syz.2.1444: attempt to access beyond end of device
[  269.214138][T11410] nbd2: rw=0, sector=1024, nr_sectors = 4 limit=0
[  269.217920][T11410] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  269.220571][T11410] syz.2.1444: attempt to access beyond end of device
[  269.220571][T11410] nbd2: rw=0, sector=2048, nr_sectors = 4 limit=0
[  269.251891][T11410] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  269.254607][T11410] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  269.258208][T11410] UDF-fs: Scanning with blocksize 2048 failed
[  269.260139][T11410] syz.2.1444: attempt to access beyond end of device
[  269.260139][T11410] nbd2: rw=0, sector=64, nr_sectors = 8 limit=0
[  269.274268][T11410] syz.2.1444: attempt to access beyond end of device
[  269.274268][T11410] nbd2: rw=0, sector=2048, nr_sectors = 8 limit=0
[  269.277956][T11410] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  269.280659][T11410] syz.2.1444: attempt to access beyond end of device
[  269.280659][T11410] nbd2: rw=0, sector=4096, nr_sectors = 8 limit=0
[  269.285179][T11410] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  269.287831][T11410] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  269.289942][T11410] UDF-fs: Scanning with blocksize 4096 failed
[  269.292478][T11410] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  269.389086][T11404] netlink: 'syz.4.1443': attribute type 10 has an invalid length.
[  269.392818][T11404] team0: Device ipvlan1 failed to register rx_handler
[  269.402020][T11405] vhci_hcd: connection closed
[  269.412574][ T9997] vhci_hcd: stop threads
[  269.419643][ T9997] vhci_hcd: release socket
[  269.422931][ T9997] vhci_hcd: disconnect device
[  270.191536][   T35] vhci_hcd: vhci_device speed not set
[  270.315723][ T5954] Bluetooth: hci1: command 0x0406 tx timeout
[  271.031699][ T5954] Bluetooth: hci3: command 0x0406 tx timeout
[  271.031711][ T5295] Bluetooth: hci2: command 0x0406 tx timeout
[  271.111763][ T5295] Bluetooth: hci4: command 0x0c1a tx timeout
[  272.391653][ T5295] Bluetooth: hci1: command 0x0406 tx timeout
[  272.551692][   T25] vhci_hcd: vhci_device speed not set
[  273.111706][ T5295] Bluetooth: hci2: command 0x0406 tx timeout
[  273.111863][ T5954] Bluetooth: hci3: command 0x0406 tx timeout
[  273.191542][ T5954] Bluetooth: hci4: command 0x0c1a tx timeout
[  274.471552][ T5954] Bluetooth: hci1: command 0x0406 tx timeout
[  275.271577][ T5954] Bluetooth: hci4: command 0x0c1a tx timeout
[  279.377482][T11459] 9pnet_virtio: no channels available for device syz
[  279.385825][T11459] 9pnet: Unknown protocol version 9p20\++}
[  279.501276][T11466] FAULT_INJECTION: forcing a failure.
[  279.501276][T11466] name failslab, interval 1, probability 0, space 0, times 0
[  279.506261][T11466] CPU: 2 UID: 0 PID: 11466 Comm: syz.4.1455 Not tainted 6.14.0-rc5-syzkaller #0
[  279.506289][T11466] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  279.506300][T11466] Call Trace:
[  279.506305][T11466]  <TASK>
[  279.506312][T11466]  dump_stack_lvl+0x16c/0x1f0
[  279.506338][T11466]  should_fail_ex+0x50a/0x650
[  279.506364][T11466]  ? fs_reclaim_acquire+0xae/0x150
[  279.506387][T11466]  ? device_create_groups_vargs+0x8a/0x270
[  279.506411][T11466]  should_failslab+0xc2/0x120
[  279.506427][T11466]  __kmalloc_cache_noprof+0x68/0x410
[  279.506448][T11466]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  279.506468][T11466]  ? __debug_object_init+0x2dd/0x3e0
[  279.506494][T11466]  device_create_groups_vargs+0x8a/0x270
[  279.506521][T11466]  device_create+0xe9/0x130
[  279.506545][T11466]  ? __pfx_device_create+0x10/0x10
[  279.506566][T11466]  ? rcu_is_watching+0x12/0xc0
[  279.506587][T11466]  ? do_init_timer+0xc9/0x110
[  279.506608][T11466]  ? ieee80211_roc_setup+0x136/0x270
[  279.506626][T11466]  ? ieee80211_alloc_hw_nm+0x231/0x2260
[  279.506653][T11466]  mac80211_hwsim_new_radio+0x36b/0x54e0
[  279.506689][T11466]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  279.506718][T11466]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  279.506750][T11466]  hwsim_new_radio_nl+0xb42/0x12b0
[  279.506775][T11466]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  279.506806][T11466]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  279.506833][T11466]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  279.506864][T11466]  genl_family_rcv_msg_doit+0x202/0x2f0
[  279.506892][T11466]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  279.506917][T11466]  ? trace_cap_capable+0x1a2/0x210
[  279.506939][T11466]  ? bpf_lsm_capable+0x9/0x10
[  279.506954][T11466]  ? security_capable+0x7e/0x260
[  279.506970][T11466]  ? ns_capable+0xd7/0x110
[  279.506994][T11466]  genl_rcv_msg+0x565/0x800
[  279.507022][T11466]  ? __pfx_genl_rcv_msg+0x10/0x10
[  279.507047][T11466]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  279.507080][T11466]  netlink_rcv_skb+0x16b/0x440
[  279.507103][T11466]  ? __pfx_genl_rcv_msg+0x10/0x10
[  279.507129][T11466]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  279.507163][T11466]  ? down_read+0xc9/0x330
[  279.507185][T11466]  ? __pfx_down_read+0x10/0x10
[  279.507209][T11466]  ? netlink_deliver_tap+0x1ae/0xd30
[  279.507234][T11466]  genl_rcv+0x28/0x40
[  279.507256][T11466]  netlink_unicast+0x53c/0x7f0
[  279.507286][T11466]  ? __pfx_netlink_unicast+0x10/0x10
[  279.507310][T11466]  ? __phys_addr_symbol+0x30/0x80
[  279.507326][T11466]  ? __check_object_size+0x488/0x710
[  279.507347][T11466]  netlink_sendmsg+0x8b8/0xd70
[  279.507373][T11466]  ? __pfx_netlink_sendmsg+0x10/0x10
[  279.507406][T11466]  ____sys_sendmsg+0xaaf/0xc90
[  279.507427][T11466]  ? __pfx_____sys_sendmsg+0x10/0x10
[  279.507444][T11466]  ? get_compat_msghdr+0x11b/0x170
[  279.507475][T11466]  ___sys_sendmsg+0x135/0x1e0
[  279.507501][T11466]  ? __pfx____sys_sendmsg+0x10/0x10
[  279.507536][T11466]  ? __pfx_lock_release+0x10/0x10
[  279.507559][T11466]  ? trace_lock_acquire+0x14e/0x1f0
[  279.507587][T11466]  ? __fget_files+0x206/0x3a0
[  279.507618][T11466]  __sys_sendmsg+0x16e/0x220
[  279.507643][T11466]  ? __pfx___sys_sendmsg+0x10/0x10
[  279.507684][T11466]  __do_fast_syscall_32+0x73/0x120
[  279.507708][T11466]  do_fast_syscall_32+0x32/0x80
[  279.507731][T11466]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  279.507757][T11466] RIP: 0023:0xf7fdf579
[  279.507770][T11466] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  279.507786][T11466] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  279.507801][T11466] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  279.507812][T11466] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  279.507821][T11466] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  279.507831][T11466] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  279.507840][T11466] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  279.507863][T11466]  </TASK>
[  279.671789][ T5942] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  279.703410][   T35] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  279.842847][ T5942] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  279.845862][ T5942] usb 8-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  279.849608][ T5942] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  279.851515][   T35] usb 7-1: Using ep0 maxpacket: 16
[  279.854708][ T5942] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  279.857283][   T35] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  279.859028][ T5942] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.862672][   T35] usb 7-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  279.867543][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.872818][ T5942] usb 8-1: config 0 descriptor??
[  279.875141][   T35] usb 7-1: config 0 descriptor??
[  279.878674][   T35] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input18
[  279.881288][ T5942] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  279.948036][T11474] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  279.950600][T11474] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  279.954683][T11474] vhci_hcd vhci_hcd.0: Device attached
[  280.055548][T11474] netlink: 'syz.4.1458': attribute type 10 has an invalid length.
[  280.058965][T11474] team0: Device ipvlan1 failed to register rx_handler
[  280.064711][T11475] vhci_hcd: connection closed
[  280.064995][   T12] vhci_hcd: stop threads
[  280.067655][   T12] vhci_hcd: release socket
[  280.069287][   T12] vhci_hcd: disconnect device
[  280.131670][   T35] vhci_hcd: vhci_device speed not set
[  280.138031][ T9517] usb 7-1: USB disconnect, device number 14
[  280.138048][ T5342] bcm5974 7-1:0.0: could not read from device
[  280.146587][T11464] bcm5974 7-1:0.0: could not read from device
[  280.150718][ T5342] bcm5974 7-1:0.0: could not read from device
[  280.154443][T11458] bcm5974 7-1:0.0: could not read from device
[  280.779905][T11490] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1460'.
[  283.487095][   T57] usb 8-1: USB disconnect, device number 10
[  285.451740][T11532] kernel profiling enabled (shift: 7)
[  285.981508][ T5942] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  286.131568][ T5942] usb 8-1: Using ep0 maxpacket: 16
[  286.134611][ T5942] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  286.137921][ T5942] usb 8-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  286.140543][ T5942] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.149696][ T5942] usb 8-1: config 0 descriptor??
[  286.154918][ T5942] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input19
[  286.416899][ T5342] bcm5974 8-1:0.0: could not read from device
[  286.425916][T11543] bcm5974 8-1:0.0: could not read from device
[  286.430775][ T5942] usb 8-1: USB disconnect, device number 11
[  286.490046][T11546] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1477'.
[  286.538497][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.541119][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.543404][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.545654][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.547786][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.549988][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.553064][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.556058][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.558324][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.560594][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.563550][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.565777][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.567957][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.571108][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.574338][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.576452][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.578583][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.580987][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.583347][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.585482][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.587631][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.589789][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.592115][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.594337][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.597151][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.599478][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.602440][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.604808][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.606954][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.609072][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.611229][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.613543][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.615710][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.617849][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.619972][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.622279][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.624596][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.626729][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.628858][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.630996][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.633654][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.635782][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.637890][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: unknown main item tag 0x0
[  286.642693][ T9517] hid-generic 0000:0000:FFFFFFFE.000B: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  287.133114][  T833] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  287.287524][  T833] usb 9-1: config index 0 descriptor too short (expected 45, got 36)
[  287.290449][  T833] usb 9-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  287.294032][  T833] usb 9-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  287.297628][  T833] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  287.300380][  T833] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.303928][  T833] usb 9-1: config 0 descriptor??
[  287.307839][  T833] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[  287.541727][T11564] block nbd5: Device being setup by another task
[  287.545415][T11564] netlink: 'syz.5.1483': attribute type 11 has an invalid length.
[  287.547970][T11564] netlink: 472 bytes leftover after parsing attributes in process `syz.5.1483'.
[  287.563477][T11566] block nbd2: NBD_DISCONNECT
[  287.566474][T11565] block nbd2: Disconnected due to user request.
[  287.569316][T11565] block nbd2: shutting down sockets
[  288.797854][T11584] netlink: 'syz.2.1487': attribute type 10 has an invalid length.
[  288.803628][T11584] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  288.920563][T11589] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1488'.
[  289.932732][T11597] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1490'.
[  290.040120][ T9517] usb 9-1: USB disconnect, device number 9
[  290.126217][T11604] FAULT_INJECTION: forcing a failure.
[  290.126217][T11604] name failslab, interval 1, probability 0, space 0, times 0
[  290.130171][T11604] CPU: 3 UID: 0 PID: 11604 Comm: syz.4.1492 Not tainted 6.14.0-rc5-syzkaller #0
[  290.130184][T11604] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  290.130190][T11604] Call Trace:
[  290.130193][T11604]  <TASK>
[  290.130197][T11604]  dump_stack_lvl+0x16c/0x1f0
[  290.130215][T11604]  should_fail_ex+0x50a/0x650
[  290.130231][T11604]  ? fs_reclaim_acquire+0xae/0x150
[  290.130245][T11604]  should_failslab+0xc2/0x120
[  290.130255][T11604]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  290.130271][T11604]  ? __kernfs_new_node+0xd3/0x890
[  290.130286][T11604]  __kernfs_new_node+0xd3/0x890
[  290.130302][T11604]  ? __pfx___kernfs_new_node+0x10/0x10
[  290.130321][T11604]  ? __pfx___lock_acquire+0x10/0x10
[  290.130338][T11604]  kernfs_new_node+0x186/0x240
[  290.130362][T11604]  __kernfs_create_file+0x53/0x350
[  290.130382][T11604]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  290.130405][T11604]  sysfs_create_file_ns+0x13e/0x1d0
[  290.130422][T11604]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[  290.130440][T11604]  ? down_read+0xc9/0x330
[  290.130461][T11604]  ? __pfx___up_read+0x10/0x10
[  290.130484][T11604]  ? kobject_put+0xab/0x5a0
[  290.130509][T11604]  device_create_file+0xf2/0x1e0
[  290.130533][T11604]  device_add+0x2c0/0x1a70
[  290.130555][T11604]  ? rcu_is_watching+0x12/0xc0
[  290.130571][T11604]  ? __pfx_device_add+0x10/0x10
[  290.130597][T11604]  device_create_groups_vargs+0x1f8/0x270
[  290.130620][T11604]  device_create+0xe9/0x130
[  290.130642][T11604]  ? __pfx_device_create+0x10/0x10
[  290.130660][T11604]  ? rcu_is_watching+0x12/0xc0
[  290.130677][T11604]  ? do_init_timer+0xc9/0x110
[  290.130695][T11604]  ? ieee80211_roc_setup+0x136/0x270
[  290.130712][T11604]  ? ieee80211_alloc_hw_nm+0x231/0x2260
[  290.130736][T11604]  mac80211_hwsim_new_radio+0x36b/0x54e0
[  290.130768][T11604]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  290.130791][T11604]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  290.130818][T11604]  hwsim_new_radio_nl+0xb42/0x12b0
[  290.130840][T11604]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  290.130868][T11604]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  290.130893][T11604]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  290.130918][T11604]  genl_family_rcv_msg_doit+0x202/0x2f0
[  290.130943][T11604]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  290.130966][T11604]  ? trace_cap_capable+0x1a2/0x210
[  290.130996][T11604]  ? bpf_lsm_capable+0x9/0x10
[  290.131011][T11604]  ? security_capable+0x7e/0x260
[  290.131028][T11604]  ? ns_capable+0xd7/0x110
[  290.131049][T11604]  genl_rcv_msg+0x565/0x800
[  290.131066][T11604]  ? __pfx_genl_rcv_msg+0x10/0x10
[  290.131081][T11604]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  290.131102][T11604]  netlink_rcv_skb+0x16b/0x440
[  290.131120][T11604]  ? __pfx_genl_rcv_msg+0x10/0x10
[  290.131142][T11604]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  290.131170][T11604]  ? down_read+0xc9/0x330
[  290.131191][T11604]  ? __pfx_down_read+0x10/0x10
[  290.131227][T11604]  ? netlink_deliver_tap+0x1ae/0xd30
[  290.131249][T11604]  genl_rcv+0x28/0x40
[  290.131268][T11604]  netlink_unicast+0x53c/0x7f0
[  290.131290][T11604]  ? __pfx_netlink_unicast+0x10/0x10
[  290.131312][T11604]  ? __phys_addr_symbol+0x30/0x80
[  290.131327][T11604]  ? __check_object_size+0x488/0x710
[  290.131345][T11604]  netlink_sendmsg+0x8b8/0xd70
[  290.131369][T11604]  ? __pfx_netlink_sendmsg+0x10/0x10
[  290.131398][T11604]  ____sys_sendmsg+0xaaf/0xc90
[  290.131417][T11604]  ? __pfx_____sys_sendmsg+0x10/0x10
[  290.131431][T11604]  ? get_compat_msghdr+0x11b/0x170
[  290.131460][T11604]  ___sys_sendmsg+0x135/0x1e0
[  290.131485][T11604]  ? __pfx____sys_sendmsg+0x10/0x10
[  290.131517][T11604]  ? __pfx_lock_release+0x10/0x10
[  290.131535][T11604]  ? trace_lock_acquire+0x14e/0x1f0
[  290.131561][T11604]  ? __fget_files+0x206/0x3a0
[  290.131589][T11604]  __sys_sendmsg+0x16e/0x220
[  290.131616][T11604]  ? __pfx___sys_sendmsg+0x10/0x10
[  290.131653][T11604]  __do_fast_syscall_32+0x73/0x120
[  290.131675][T11604]  do_fast_syscall_32+0x32/0x80
[  290.131694][T11604]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  290.131717][T11604] RIP: 0023:0xf7fdf579
[  290.131728][T11604] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  290.131742][T11604] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  290.131757][T11604] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  290.131766][T11604] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  290.131775][T11604] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  290.131783][T11604] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  290.131791][T11604] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  290.131812][T11604]  </TASK>
[  290.373471][T11601] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1499'.
[  290.952200][T11617] netlink: 'syz.3.1495': attribute type 12 has an invalid length.
[  291.433584][T11625] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  291.495004][T11630] ntfs3(nbd3): try to read out of volume at offset 0x0
[  291.620581][T11639] netlink: 'syz.2.1502': attribute type 2 has an invalid length.
[  291.801596][   T25] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  291.802170][T11648] block nbd4: NBD_DISCONNECT
[  291.848633][T11653] FAULT_INJECTION: forcing a failure.
[  291.848633][T11653] name failslab, interval 1, probability 0, space 0, times 0
[  291.852576][T11653] CPU: 0 UID: 0 PID: 11653 Comm: syz.4.1510 Not tainted 6.14.0-rc5-syzkaller #0
[  291.852589][T11653] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  291.852595][T11653] Call Trace:
[  291.852598][T11653]  <TASK>
[  291.852603][T11653]  dump_stack_lvl+0x16c/0x1f0
[  291.852620][T11653]  should_fail_ex+0x50a/0x650
[  291.852637][T11653]  ? fs_reclaim_acquire+0xae/0x150
[  291.852651][T11653]  ? tomoyo_realpath_from_path+0xb9/0x720
[  291.852665][T11653]  should_failslab+0xc2/0x120
[  291.852675][T11653]  __kmalloc_noprof+0xcb/0x510
[  291.852690][T11653]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  291.852706][T11653]  tomoyo_realpath_from_path+0xb9/0x720
[  291.852720][T11653]  ? tomoyo_path_number_perm+0x235/0x590
[  291.852732][T11653]  ? tomoyo_path_number_perm+0x235/0x590
[  291.852745][T11653]  tomoyo_path_number_perm+0x248/0x590
[  291.852756][T11653]  ? tomoyo_path_number_perm+0x235/0x590
[  291.852768][T11653]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  291.852792][T11653]  ? __pfx_lock_release+0x10/0x10
[  291.852805][T11653]  ? trace_lock_acquire+0x14e/0x1f0
[  291.852817][T11653]  ? lock_acquire+0x2f/0xb0
[  291.852830][T11653]  ? __fget_files+0x40/0x3a0
[  291.852846][T11653]  ? __fget_files+0x206/0x3a0
[  291.852862][T11653]  security_file_ioctl_compat+0x9b/0x240
[  291.852876][T11653]  __do_compat_sys_ioctl+0x4e/0x2c0
[  291.852894][T11653]  __do_fast_syscall_32+0x73/0x120
[  291.852908][T11653]  do_fast_syscall_32+0x32/0x80
[  291.852922][T11653]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  291.852944][T11653] RIP: 0023:0xf7fdf579
[  291.852952][T11653] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  291.852961][T11653] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  291.852971][T11653] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000ab08
[  291.852977][T11653] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  291.852982][T11653] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  291.852988][T11653] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  291.852993][T11653] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  291.853005][T11653]  </TASK>
[  291.853009][T11653] ERROR: Out of memory at tomoyo_realpath_from_path.
[  291.920798][T11654] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1509'.
[  291.924899][T11653] block nbd4: NBD_DISCONNECT
[  291.956023][   T25] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  291.956132][T11654] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  291.958323][   T25] usb 8-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  291.961797][T11654] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  291.965091][   T25] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  291.967729][T11654] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  291.967759][T11654] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  291.974401][   T25] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  291.982493][   T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.991606][   T25] usb 8-1: config 0 descriptor??
[  291.999956][   T25] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  292.013891][T11654] vxlan0: entered promiscuous mode
[  292.119943][T11658] block nbd4: NBD_DISCONNECT
[  292.719388][T11669] syz.2.1514: attempt to access beyond end of device
[  292.719388][T11669] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0
[  292.724408][T11669] syz.2.1514: attempt to access beyond end of device
[  292.724408][T11669] nbd2: rw=0, sector=512, nr_sectors = 2 limit=0
[  292.728870][T11669] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  292.733595][T11669] syz.2.1514: attempt to access beyond end of device
[  292.733595][T11669] nbd2: rw=0, sector=1024, nr_sectors = 2 limit=0
[  292.737503][T11669] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  292.740978][T11669] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  292.744297][T11669] UDF-fs: Scanning with blocksize 1024 failed
[  292.746981][T11669] syz.2.1514: attempt to access beyond end of device
[  292.746981][T11669] nbd2: rw=0, sector=64, nr_sectors = 4 limit=0
[  292.752218][T11669] syz.2.1514: attempt to access beyond end of device
[  292.752218][T11669] nbd2: rw=0, sector=1024, nr_sectors = 4 limit=0
[  292.756957][T11669] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  292.760420][T11669] syz.2.1514: attempt to access beyond end of device
[  292.760420][T11669] nbd2: rw=0, sector=2048, nr_sectors = 4 limit=0
[  292.766418][T11669] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  292.770061][T11669] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  292.772714][T11669] UDF-fs: Scanning with blocksize 2048 failed
[  292.774962][T11669] syz.2.1514: attempt to access beyond end of device
[  292.774962][T11669] nbd2: rw=0, sector=64, nr_sectors = 8 limit=0
[  292.779697][T11669] syz.2.1514: attempt to access beyond end of device
[  292.779697][T11669] nbd2: rw=0, sector=2048, nr_sectors = 8 limit=0
[  292.785179][T11669] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  292.788704][T11669] syz.2.1514: attempt to access beyond end of device
[  292.788704][T11669] nbd2: rw=0, sector=4096, nr_sectors = 8 limit=0
[  292.793786][T11669] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  292.797259][T11669] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  292.799938][T11669] UDF-fs: Scanning with blocksize 4096 failed
[  292.802556][T11669] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  292.956102][T11678] syz.2.1517: attempt to access beyond end of device
[  292.956102][T11678] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0
[  292.960995][T11678] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  292.965383][T11678] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  292.968059][T11678] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  292.970126][T11678] UDF-fs: Scanning with blocksize 1024 failed
[  292.974337][T11678] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  292.976958][T11678] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  292.979748][T11678] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  292.984469][T11678] UDF-fs: Scanning with blocksize 2048 failed
[  292.986951][T11678] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  292.989671][T11678] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  292.993083][T11678] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  292.995158][T11678] UDF-fs: Scanning with blocksize 4096 failed
[  292.996849][T11678] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  293.003979][T11678] FAULT_INJECTION: forcing a failure.
[  293.003979][T11678] name failslab, interval 1, probability 0, space 0, times 0
[  293.007527][T11678] CPU: 2 UID: 0 PID: 11678 Comm: syz.2.1517 Not tainted 6.14.0-rc5-syzkaller #0
[  293.007540][T11678] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.007546][T11678] Call Trace:
[  293.007550][T11678]  <TASK>
[  293.007554][T11678]  dump_stack_lvl+0x16c/0x1f0
[  293.007570][T11678]  should_fail_ex+0x50a/0x650
[  293.007598][T11678]  ? fs_reclaim_acquire+0xae/0x150
[  293.007612][T11678]  ? tomoyo_realpath_from_path+0xb9/0x720
[  293.007626][T11678]  should_failslab+0xc2/0x120
[  293.007636][T11678]  __kmalloc_noprof+0xcb/0x510
[  293.007651][T11678]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  293.007668][T11678]  tomoyo_realpath_from_path+0xb9/0x720
[  293.007682][T11678]  ? tomoyo_path_number_perm+0x235/0x590
[  293.007694][T11678]  ? tomoyo_path_number_perm+0x235/0x590
[  293.007707][T11678]  tomoyo_path_number_perm+0x248/0x590
[  293.007718][T11678]  ? tomoyo_path_number_perm+0x235/0x590
[  293.007731][T11678]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  293.007755][T11678]  ? __pfx_lock_release+0x10/0x10
[  293.007768][T11678]  ? trace_lock_acquire+0x14e/0x1f0
[  293.007781][T11678]  ? lock_acquire+0x2f/0xb0
[  293.007794][T11678]  ? __fget_files+0x40/0x3a0
[  293.007810][T11678]  ? __fget_files+0x206/0x3a0
[  293.007826][T11678]  security_file_ioctl_compat+0x9b/0x240
[  293.007840][T11678]  __do_compat_sys_ioctl+0x4e/0x2c0
[  293.007854][T11678]  __do_fast_syscall_32+0x73/0x120
[  293.007869][T11678]  do_fast_syscall_32+0x32/0x80
[  293.007883][T11678]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  293.007899][T11678] RIP: 0023:0xf7f31579
[  293.007907][T11678] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  293.007917][T11678] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  293.007927][T11678] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000001261
[  293.007933][T11678] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  293.007938][T11678] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  293.007943][T11678] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  293.007949][T11678] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  293.007961][T11678]  </TASK>
[  293.007975][T11678] ERROR: Out of memory at tomoyo_realpath_from_path.
[  293.469728][T11687] bridge_slave_1: left allmulticast mode
[  293.471732][T11687] bridge_slave_1: left promiscuous mode
[  293.473951][T11687] bridge0: port 2(bridge_slave_1) entered disabled state
[  294.319121][T11693] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  294.322449][T11693] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  294.325317][T11693] UDF-fs: warning (device nbd5): udf_load_vrs: No anchor found
[  294.327516][T11693] UDF-fs: Scanning with blocksize 1024 failed
[  294.329554][T11693] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  294.332321][T11693] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  294.335017][T11693] UDF-fs: warning (device nbd5): udf_load_vrs: No anchor found
[  294.337903][T11693] UDF-fs: Scanning with blocksize 2048 failed
[  294.340590][T11693] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  294.344986][T11693] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  294.348603][T11693] UDF-fs: warning (device nbd5): udf_load_vrs: No anchor found
[  294.350793][T11693] UDF-fs: Scanning with blocksize 4096 failed
[  294.352657][T11693] UDF-fs: warning (device nbd5): udf_fill_super: No partition found (1)
[  294.486384][T11697] FAULT_INJECTION: forcing a failure.
[  294.486384][T11697] name failslab, interval 1, probability 0, space 0, times 0
[  294.489948][T11697] CPU: 0 UID: 0 PID: 11697 Comm: syz.5.1522 Not tainted 6.14.0-rc5-syzkaller #0
[  294.489961][T11697] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  294.489967][T11697] Call Trace:
[  294.489970][T11697]  <TASK>
[  294.489975][T11697]  dump_stack_lvl+0x16c/0x1f0
[  294.489991][T11697]  should_fail_ex+0x50a/0x650
[  294.490007][T11697]  ? fs_reclaim_acquire+0xae/0x150
[  294.490021][T11697]  ? alloc_super+0x52/0xbd0
[  294.490033][T11697]  should_failslab+0xc2/0x120
[  294.490043][T11697]  __kmalloc_cache_noprof+0x68/0x410
[  294.490056][T11697]  ? sget_fc+0xd3/0xc20
[  294.490068][T11697]  ? __pfx_lock_release+0x10/0x10
[  294.490083][T11697]  ? __pfx_super_s_dev_test+0x10/0x10
[  294.490094][T11697]  alloc_super+0x52/0xbd0
[  294.490105][T11697]  ? lock_acquire+0x2f/0xb0
[  294.490118][T11697]  ? sget_fc+0xaf/0xc20
[  294.490131][T11697]  ? __pfx_super_s_dev_test+0x10/0x10
[  294.490142][T11697]  sget_fc+0x116/0xc20
[  294.490155][T11697]  ? __pfx_super_s_dev_set+0x10/0x10
[  294.490167][T11697]  get_tree_bdev_flags+0x1bc/0x620
[  294.490184][T11697]  ? __pfx_ntfs_fill_super+0x10/0x10
[  294.490197][T11697]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  294.490211][T11697]  ? apparmor_capable+0x114/0x1d0
[  294.490222][T11697]  ? bpf_lsm_capable+0x9/0x10
[  294.490244][T11697]  ? security_capable+0x7e/0x260
[  294.490256][T11697]  vfs_get_tree+0x8b/0x340
[  294.490267][T11697]  path_mount+0x14e6/0x1f10
[  294.490283][T11697]  ? kmem_cache_free+0x2e2/0x4d0
[  294.490297][T11697]  ? __pfx_path_mount+0x10/0x10
[  294.490314][T11697]  ? putname+0x13c/0x180
[  294.490325][T11697]  __ia32_sys_mount+0x28d/0x310
[  294.490334][T11697]  ? __pfx___ia32_sys_mount+0x10/0x10
[  294.490347][T11697]  __do_fast_syscall_32+0x73/0x120
[  294.490362][T11697]  do_fast_syscall_32+0x32/0x80
[  294.490375][T11697]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  294.490391][T11697] RIP: 0023:0xf7f86579
[  294.490399][T11697] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  294.490409][T11697] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  294.490419][T11697] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000080000580
[  294.490425][T11697] RDX: 0000000080000040 RSI: 0000000000008080 RDI: 00000000800001c0
[  294.490431][T11697] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  294.490436][T11697] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  294.490442][T11697] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  294.490453][T11697]  </TASK>
[  294.868918][T11709] block nbd5: NBD_DISCONNECT
[  294.870273][T11709] block nbd5: Send disconnect failed -32
[  294.915548][T11711] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1529'.
[  294.923890][T11711] block nbd5: NBD_DISCONNECT
[  294.929561][T11711] block nbd5: Send disconnect failed -32
[  295.095982][T11716] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  295.098663][T11716] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  295.101343][T11716] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  295.111564][T11716] UDF-fs: Scanning with blocksize 1024 failed
[  295.118433][T11716] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  295.121147][T11716] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  295.124954][T11716] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  295.127256][T11716] UDF-fs: Scanning with blocksize 2048 failed
[  295.129242][T11716] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  295.132142][T11716] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  295.134632][T11716] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  295.136717][T11716] UDF-fs: Scanning with blocksize 4096 failed
[  295.138346][T11716] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1)
[  295.144623][T11716] FAULT_INJECTION: forcing a failure.
[  295.144623][T11716] name failslab, interval 1, probability 0, space 0, times 0
[  295.148170][T11716] CPU: 3 UID: 0 PID: 11716 Comm: syz.4.1531 Not tainted 6.14.0-rc5-syzkaller #0
[  295.148182][T11716] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  295.148189][T11716] Call Trace:
[  295.148193][T11716]  <TASK>
[  295.148198][T11716]  dump_stack_lvl+0x16c/0x1f0
[  295.148218][T11716]  should_fail_ex+0x50a/0x650
[  295.148234][T11716]  ? fs_reclaim_acquire+0xae/0x150
[  295.148250][T11716]  ? tomoyo_encode2+0x100/0x3e0
[  295.148263][T11716]  should_failslab+0xc2/0x120
[  295.148273][T11716]  __kmalloc_noprof+0xcb/0x510
[  295.148288][T11716]  ? d_absolute_path+0x137/0x1b0
[  295.148299][T11716]  ? rcu_is_watching+0x12/0xc0
[  295.148311][T11716]  tomoyo_encode2+0x100/0x3e0
[  295.148326][T11716]  tomoyo_encode+0x29/0x50
[  295.148339][T11716]  tomoyo_realpath_from_path+0x19d/0x720
[  295.148356][T11716]  tomoyo_path_number_perm+0x248/0x590
[  295.148367][T11716]  ? tomoyo_path_number_perm+0x235/0x590
[  295.148380][T11716]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  295.148403][T11716]  ? __pfx_lock_release+0x10/0x10
[  295.148416][T11716]  ? trace_lock_acquire+0x14e/0x1f0
[  295.148430][T11716]  ? lock_acquire+0x2f/0xb0
[  295.148442][T11716]  ? __fget_files+0x40/0x3a0
[  295.148458][T11716]  ? __fget_files+0x206/0x3a0
[  295.148473][T11716]  security_file_ioctl_compat+0x9b/0x240
[  295.148488][T11716]  __do_compat_sys_ioctl+0x4e/0x2c0
[  295.148501][T11716]  __do_fast_syscall_32+0x73/0x120
[  295.148516][T11716]  do_fast_syscall_32+0x32/0x80
[  295.148529][T11716]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  295.148545][T11716] RIP: 0023:0xf7fdf579
[  295.148553][T11716] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  295.148562][T11716] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  295.148572][T11716] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000001261
[  295.148578][T11716] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  295.148583][T11716] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  295.148589][T11716] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  295.148594][T11716] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  295.148606][T11716]  </TASK>
[  295.148615][T11716] ERROR: Out of memory at tomoyo_realpath_from_path.
[  295.320283][T11725] FAULT_INJECTION: forcing a failure.
[  295.320283][T11725] name failslab, interval 1, probability 0, space 0, times 0
[  295.325139][T11725] CPU: 2 UID: 0 PID: 11725 Comm: syz.4.1534 Not tainted 6.14.0-rc5-syzkaller #0
[  295.325159][T11725] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  295.325169][T11725] Call Trace:
[  295.325174][T11725]  <TASK>
[  295.325181][T11725]  dump_stack_lvl+0x16c/0x1f0
[  295.325219][T11725]  should_fail_ex+0x50a/0x650
[  295.325246][T11725]  ? fs_reclaim_acquire+0xae/0x150
[  295.325270][T11725]  should_failslab+0xc2/0x120
[  295.325298][T11725]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  295.325323][T11725]  ? __asan_memcpy+0x3c/0x60
[  295.325344][T11725]  ? __kernfs_new_node+0xd3/0x890
[  295.325371][T11725]  __kernfs_new_node+0xd3/0x890
[  295.325396][T11725]  ? __pfx___kernfs_new_node+0x10/0x10
[  295.325417][T11725]  ? __pfx_lock_release+0x10/0x10
[  295.325441][T11725]  ? kernfs_add_one+0x39d/0x520
[  295.325468][T11725]  ? lock_acquire.part.0+0x11b/0x380
[  295.325491][T11725]  ? find_held_lock+0x2d/0x110
[  295.325517][T11725]  kernfs_new_node+0x186/0x240
[  295.325545][T11725]  kernfs_create_link+0xcc/0x240
[  295.325566][T11725]  sysfs_do_create_link_sd+0x90/0x140
[  295.325588][T11725]  sysfs_create_link+0x61/0xc0
[  295.325610][T11725]  device_add+0x62e/0x1a70
[  295.325634][T11725]  ? rcu_is_watching+0x12/0xc0
[  295.325651][T11725]  ? __pfx_device_add+0x10/0x10
[  295.325683][T11725]  device_create_groups_vargs+0x1f8/0x270
[  295.325710][T11725]  device_create+0xe9/0x130
[  295.325734][T11725]  ? __pfx_device_create+0x10/0x10
[  295.325755][T11725]  ? rcu_is_watching+0x12/0xc0
[  295.325774][T11725]  ? do_init_timer+0xc9/0x110
[  295.325795][T11725]  ? ieee80211_roc_setup+0x136/0x270
[  295.325813][T11725]  ? ieee80211_alloc_hw_nm+0x231/0x2260
[  295.325840][T11725]  mac80211_hwsim_new_radio+0x36b/0x54e0
[  295.325874][T11725]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  295.325902][T11725]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  295.325933][T11725]  hwsim_new_radio_nl+0xb42/0x12b0
[  295.325960][T11725]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  295.325991][T11725]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  295.326018][T11725]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  295.326051][T11725]  genl_family_rcv_msg_doit+0x202/0x2f0
[  295.326079][T11725]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  295.326103][T11725]  ? trace_cap_capable+0x1a2/0x210
[  295.326134][T11725]  ? bpf_lsm_capable+0x9/0x10
[  295.326151][T11725]  ? security_capable+0x7e/0x260
[  295.326169][T11725]  ? ns_capable+0xd7/0x110
[  295.326194][T11725]  genl_rcv_msg+0x565/0x800
[  295.326222][T11725]  ? __pfx_genl_rcv_msg+0x10/0x10
[  295.326246][T11725]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  295.326278][T11725]  netlink_rcv_skb+0x16b/0x440
[  295.326301][T11725]  ? __pfx_genl_rcv_msg+0x10/0x10
[  295.326327][T11725]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  295.326361][T11725]  ? down_read+0xc9/0x330
[  295.326384][T11725]  ? __pfx_down_read+0x10/0x10
[  295.326406][T11725]  ? netlink_deliver_tap+0x1ae/0xd30
[  295.326433][T11725]  genl_rcv+0x28/0x40
[  295.326455][T11725]  netlink_unicast+0x53c/0x7f0
[  295.326480][T11725]  ? __pfx_netlink_unicast+0x10/0x10
[  295.326503][T11725]  ? __phys_addr_symbol+0x30/0x80
[  295.326520][T11725]  ? __check_object_size+0x488/0x710
[  295.326541][T11725]  netlink_sendmsg+0x8b8/0xd70
[  295.326568][T11725]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.326600][T11725]  ____sys_sendmsg+0xaaf/0xc90
[  295.326621][T11725]  ? __pfx_____sys_sendmsg+0x10/0x10
[  295.326638][T11725]  ? get_compat_msghdr+0x11b/0x170
[  295.326670][T11725]  ___sys_sendmsg+0x135/0x1e0
[  295.326696][T11725]  ? __pfx____sys_sendmsg+0x10/0x10
[  295.326730][T11725]  ? __pfx_lock_release+0x10/0x10
[  295.326751][T11725]  ? trace_lock_acquire+0x14e/0x1f0
[  295.326779][T11725]  ? __fget_files+0x206/0x3a0
[  295.326809][T11725]  __sys_sendmsg+0x16e/0x220
[  295.326833][T11725]  ? __pfx___sys_sendmsg+0x10/0x10
[  295.326873][T11725]  __do_fast_syscall_32+0x73/0x120
[  295.326897][T11725]  do_fast_syscall_32+0x32/0x80
[  295.326919][T11725]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  295.326945][T11725] RIP: 0023:0xf7fdf579
[  295.326958][T11725] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  295.326973][T11725] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  295.326989][T11725] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  295.326999][T11725] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  295.327009][T11725] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  295.327017][T11725] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  295.327026][T11725] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  295.327048][T11725]  </TASK>
[  295.516635][   T30] usb 8-1: USB disconnect, device number 12
[  295.576282][T11732] sctp: [Deprecated]: syz.3.1538 (pid 11732) Use of int in max_burst socket option.
[  295.576282][T11732] Use struct sctp_assoc_value instead
[  296.556875][T11747] FAULT_INJECTION: forcing a failure.
[  296.556875][T11747] name failslab, interval 1, probability 0, space 0, times 0
[  296.560168][T11747] CPU: 2 UID: 0 PID: 11747 Comm: syz.4.1541 Not tainted 6.14.0-rc5-syzkaller #0
[  296.560180][T11747] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  296.560186][T11747] Call Trace:
[  296.560189][T11747]  <TASK>
[  296.560194][T11747]  dump_stack_lvl+0x16c/0x1f0
[  296.560211][T11747]  should_fail_ex+0x50a/0x650
[  296.560227][T11747]  ? fs_reclaim_acquire+0xae/0x150
[  296.560240][T11747]  ? lsm_blob_alloc+0x68/0x90
[  296.560255][T11747]  should_failslab+0xc2/0x120
[  296.560264][T11747]  __kmalloc_noprof+0xcb/0x510
[  296.560282][T11747]  lsm_blob_alloc+0x68/0x90
[  296.560297][T11747]  security_sb_alloc+0x28/0x230
[  296.560309][T11747]  alloc_super+0x245/0xbd0
[  296.560327][T11747]  ? lock_acquire+0x2f/0xb0
[  296.560350][T11747]  ? __pfx_super_s_dev_test+0x10/0x10
[  296.560367][T11747]  sget_fc+0x116/0xc20
[  296.560385][T11747]  ? __pfx_super_s_dev_set+0x10/0x10
[  296.560404][T11747]  get_tree_bdev_flags+0x1bc/0x620
[  296.560422][T11747]  ? __pfx_ntfs_fill_super+0x10/0x10
[  296.560439][T11747]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  296.560453][T11747]  ? apparmor_capable+0x114/0x1d0
[  296.560464][T11747]  ? bpf_lsm_capable+0x9/0x10
[  296.560475][T11747]  ? security_capable+0x7e/0x260
[  296.560485][T11747]  vfs_get_tree+0x8b/0x340
[  296.560496][T11747]  path_mount+0x14e6/0x1f10
[  296.560513][T11747]  ? kmem_cache_free+0x2e2/0x4d0
[  296.560527][T11747]  ? __pfx_path_mount+0x10/0x10
[  296.560544][T11747]  ? putname+0x13c/0x180
[  296.560555][T11747]  __ia32_sys_mount+0x28d/0x310
[  296.560564][T11747]  ? __pfx___ia32_sys_mount+0x10/0x10
[  296.560577][T11747]  __do_fast_syscall_32+0x73/0x120
[  296.560592][T11747]  do_fast_syscall_32+0x32/0x80
[  296.560605][T11747]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  296.560622][T11747] RIP: 0023:0xf7fdf579
[  296.560630][T11747] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  296.560639][T11747] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  296.560649][T11747] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000080000580
[  296.560655][T11747] RDX: 0000000080000040 RSI: 0000000000008080 RDI: 00000000800001c0
[  296.560661][T11747] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  296.560666][T11747] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  296.560672][T11747] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  296.560683][T11747]  </TASK>
[  296.696633][T11749] netlink: 'syz.2.1542': attribute type 8 has an invalid length.
[  296.709041][T11751] 9pnet: Unknown protocol version 9p20\++}
[  296.868896][T11765] 9pnet: Unknown protocol version 9p20\++}
[  297.076774][T11770] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  297.079733][T11770] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  297.083820][T11770] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  297.086882][T11770] UDF-fs: Scanning with blocksize 1024 failed
[  297.093992][T11770] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  297.098232][T11770] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  297.102259][T11770] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  297.105230][T11770] UDF-fs: Scanning with blocksize 2048 failed
[  297.110697][T11770] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  297.115850][T11770] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  297.119785][T11770] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  297.123318][T11770] UDF-fs: Scanning with blocksize 4096 failed
[  297.126516][T11770] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1)
[  297.645283][T11775] 9pnet: Unknown protocol version 9p20\++}
[  297.731826][T11784] FAULT_INJECTION: forcing a failure.
[  297.731826][T11784] name failslab, interval 1, probability 0, space 0, times 0
[  297.736368][T11784] CPU: 2 UID: 0 PID: 11784 Comm: syz.4.1552 Not tainted 6.14.0-rc5-syzkaller #0
[  297.736387][T11784] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  297.736397][T11784] Call Trace:
[  297.736402][T11784]  <TASK>
[  297.736408][T11784]  dump_stack_lvl+0x16c/0x1f0
[  297.736434][T11784]  should_fail_ex+0x50a/0x650
[  297.736458][T11784]  ? fs_reclaim_acquire+0xae/0x150
[  297.736478][T11784]  should_failslab+0xc2/0x120
[  297.736492][T11784]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  297.736514][T11784]  ? __kernfs_new_node+0xd3/0x890
[  297.736538][T11784]  __kernfs_new_node+0xd3/0x890
[  297.736558][T11784]  ? __pfx___lock_acquire+0x10/0x10
[  297.736581][T11784]  ? __pfx___kernfs_new_node+0x10/0x10
[  297.736609][T11784]  ? find_held_lock+0x2d/0x110
[  297.736630][T11784]  kernfs_new_node+0x186/0x240
[  297.736656][T11784]  kernfs_create_dir_ns+0x4c/0x150
[  297.736693][T11784]  internal_create_group+0x34e/0xf10
[  297.736720][T11784]  ? __pfx_internal_create_group+0x10/0x10
[  297.736744][T11784]  ? __pfx_dev_add_physical_location+0x10/0x10
[  297.736763][T11784]  ? bus_to_subsys+0x12d/0x160
[  297.736789][T11784]  dpm_sysfs_add+0x80/0x280
[  297.736809][T11784]  device_add+0x9a8/0x1a70
[  297.736831][T11784]  ? __pfx_device_add+0x10/0x10
[  297.736859][T11784]  device_create_groups_vargs+0x1f8/0x270
[  297.736883][T11784]  device_create+0xe9/0x130
[  297.736905][T11784]  ? __pfx_device_create+0x10/0x10
[  297.736924][T11784]  ? rcu_is_watching+0x12/0xc0
[  297.736940][T11784]  ? do_init_timer+0xc9/0x110
[  297.736959][T11784]  ? ieee80211_roc_setup+0x136/0x270
[  297.736977][T11784]  ? ieee80211_alloc_hw_nm+0x231/0x2260
[  297.737000][T11784]  mac80211_hwsim_new_radio+0x36b/0x54e0
[  297.737032][T11784]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  297.737079][T11784]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  297.737108][T11784]  hwsim_new_radio_nl+0xb42/0x12b0
[  297.737130][T11784]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  297.737158][T11784]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  297.737182][T11784]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  297.737211][T11784]  genl_family_rcv_msg_doit+0x202/0x2f0
[  297.737236][T11784]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  297.737259][T11784]  ? trace_cap_capable+0x1a2/0x210
[  297.737281][T11784]  ? bpf_lsm_capable+0x9/0x10
[  297.737296][T11784]  ? security_capable+0x7e/0x260
[  297.737311][T11784]  ? ns_capable+0xd7/0x110
[  297.737334][T11784]  genl_rcv_msg+0x565/0x800
[  297.737359][T11784]  ? __pfx_genl_rcv_msg+0x10/0x10
[  297.737383][T11784]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  297.737412][T11784]  netlink_rcv_skb+0x16b/0x440
[  297.737432][T11784]  ? __pfx_genl_rcv_msg+0x10/0x10
[  297.737455][T11784]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  297.737485][T11784]  ? down_read+0xc9/0x330
[  297.737506][T11784]  ? __pfx_down_read+0x10/0x10
[  297.737527][T11784]  ? netlink_deliver_tap+0x1ae/0xd30
[  297.737550][T11784]  genl_rcv+0x28/0x40
[  297.737570][T11784]  netlink_unicast+0x53c/0x7f0
[  297.737592][T11784]  ? __pfx_netlink_unicast+0x10/0x10
[  297.737613][T11784]  ? __phys_addr_symbol+0x30/0x80
[  297.737628][T11784]  ? __check_object_size+0x488/0x710
[  297.737646][T11784]  netlink_sendmsg+0x8b8/0xd70
[  297.737670][T11784]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.737699][T11784]  ____sys_sendmsg+0xaaf/0xc90
[  297.737717][T11784]  ? __pfx_____sys_sendmsg+0x10/0x10
[  297.737733][T11784]  ? get_compat_msghdr+0x11b/0x170
[  297.737761][T11784]  ___sys_sendmsg+0x135/0x1e0
[  297.737784][T11784]  ? __pfx____sys_sendmsg+0x10/0x10
[  297.737814][T11784]  ? __pfx_lock_release+0x10/0x10
[  297.737834][T11784]  ? trace_lock_acquire+0x14e/0x1f0
[  297.737857][T11784]  ? __fget_files+0x206/0x3a0
[  297.737885][T11784]  __sys_sendmsg+0x16e/0x220
[  297.737906][T11784]  ? __pfx___sys_sendmsg+0x10/0x10
[  297.737943][T11784]  __do_fast_syscall_32+0x73/0x120
[  297.737964][T11784]  do_fast_syscall_32+0x32/0x80
[  297.737984][T11784]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  297.738008][T11784] RIP: 0023:0xf7fdf579
[  297.738019][T11784] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  297.738033][T11784] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  297.738047][T11784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  297.738062][T11784] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  297.738070][T11784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  297.738079][T11784] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  297.738087][T11784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  297.738108][T11784]  </TASK>
[  297.745202][T11786] block nbd2: NBD_DISCONNECT
[  297.746137][T11782] 9pnet: Unknown protocol version 9p20\++}
[  297.783509][T11788] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1554'.
[  297.784818][T11786] FAULT_INJECTION: forcing a failure.
[  297.784818][T11786] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.805721][T11788] ntfs3(nbd4): try to read out of volume at offset 0x0
[  297.809320][T11786] CPU: 3 UID: 0 PID: 11786 Comm: syz.2.1550 Not tainted 6.14.0-rc5-syzkaller #0
[  297.809333][T11786] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  297.809340][T11786] Call Trace:
[  297.809343][T11786]  <TASK>
[  297.809347][T11786]  dump_stack_lvl+0x16c/0x1f0
[  297.809364][T11786]  should_fail_ex+0x50a/0x650
[  297.809382][T11786]  _copy_to_user+0x32/0xd0
[  297.809394][T11786]  simple_read_from_buffer+0xd0/0x160
[  297.809408][T11786]  proc_fail_nth_read+0x198/0x270
[  297.809420][T11786]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  297.809433][T11786]  ? rw_verify_area+0xcf/0x680
[  297.809445][T11786]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  297.809457][T11786]  vfs_read+0x1df/0xbf0
[  297.809471][T11786]  ? __fget_files+0x1fc/0x3a0
[  297.809485][T11786]  ? __pfx___mutex_lock+0x10/0x10
[  297.809499][T11786]  ? __pfx_vfs_read+0x10/0x10
[  297.809528][T11786]  ? __fget_files+0x206/0x3a0
[  297.809546][T11786]  ksys_read+0x12b/0x250
[  297.809559][T11786]  ? __pfx_ksys_read+0x10/0x10
[  297.809576][T11786]  __do_fast_syscall_32+0x73/0x120
[  297.809590][T11786]  do_fast_syscall_32+0x32/0x80
[  297.809603][T11786]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  297.809620][T11786] RIP: 0023:0xf7f31579
[  297.809628][T11786] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  297.809637][T11786] RSP: 002b:00000000f5056590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  297.809647][T11786] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5056620
[  297.809652][T11786] RDX: 000000000000000f RSI: 00000000f73bcff4 RDI: 0000000000000000
[  297.809658][T11786] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  297.809663][T11786] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  297.809668][T11786] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  297.809680][T11786]  </TASK>
[  298.475334][T11807] block nbd2: NBD_DISCONNECT
[  298.665907][T11814] 9pnet: Unknown protocol version 9p20\++}
[  298.780132][T11817] bio_check_eod: 35 callbacks suppressed
[  298.780147][T11817] syz.3.1564: attempt to access beyond end of device
[  298.780147][T11817] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[  298.787733][T11817] syz.3.1564: attempt to access beyond end of device
[  298.787733][T11817] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0
[  298.792788][T11817] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  298.796366][T11817] syz.3.1564: attempt to access beyond end of device
[  298.796366][T11817] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0
[  298.799958][T11817] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  298.802720][T11817] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  298.805430][T11817] UDF-fs: Scanning with blocksize 1024 failed
[  298.808064][T11817] syz.3.1564: attempt to access beyond end of device
[  298.808064][T11817] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0
[  298.812999][T11817] syz.3.1564: attempt to access beyond end of device
[  298.812999][T11817] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0
[  298.817691][T11817] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  298.821293][T11817] syz.3.1564: attempt to access beyond end of device
[  298.821293][T11817] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0
[  298.826284][T11817] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  298.829945][T11817] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  298.832998][T11817] UDF-fs: Scanning with blocksize 2048 failed
[  298.835491][T11817] syz.3.1564: attempt to access beyond end of device
[  298.835491][T11817] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[  298.840985][T11817] syz.3.1564: attempt to access beyond end of device
[  298.840985][T11817] nbd3: rw=0, sector=2048, nr_sectors = 8 limit=0
[  298.845436][T11817] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  298.848378][T11817] syz.3.1564: attempt to access beyond end of device
[  298.848378][T11817] nbd3: rw=0, sector=4096, nr_sectors = 8 limit=0
[  298.852214][T11817] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  298.854865][T11817] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  298.856902][T11817] UDF-fs: Scanning with blocksize 4096 failed
[  298.858608][T11817] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1)
[  299.056706][T11820] ntfs3(nbd3): try to read out of volume at offset 0x0
[  299.057669][T11823] FAULT_INJECTION: forcing a failure.
[  299.057669][T11823] name failslab, interval 1, probability 0, space 0, times 0
[  299.062244][T11823] CPU: 3 UID: 0 PID: 11823 Comm: syz.5.1566 Not tainted 6.14.0-rc5-syzkaller #0
[  299.062266][T11823] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  299.062273][T11823] Call Trace:
[  299.062277][T11823]  <TASK>
[  299.062281][T11823]  dump_stack_lvl+0x16c/0x1f0
[  299.062299][T11823]  should_fail_ex+0x50a/0x650
[  299.062315][T11823]  ? fs_reclaim_acquire+0xae/0x150
[  299.062330][T11823]  should_failslab+0xc2/0x120
[  299.062341][T11823]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  299.062356][T11823]  ? __kernfs_new_node+0xd3/0x890
[  299.062372][T11823]  __kernfs_new_node+0xd3/0x890
[  299.062385][T11823]  ? __pfx___lock_acquire+0x10/0x10
[  299.062400][T11823]  ? __pfx___kernfs_new_node+0x10/0x10
[  299.062418][T11823]  ? find_held_lock+0x2d/0x110
[  299.062432][T11823]  kernfs_new_node+0x186/0x240
[  299.062450][T11823]  kernfs_create_dir_ns+0x4c/0x150
[  299.062467][T11823]  internal_create_group+0x34e/0xf10
[  299.062484][T11823]  ? __pfx_internal_create_group+0x10/0x10
[  299.062499][T11823]  ? __pfx_dev_add_physical_location+0x10/0x10
[  299.062513][T11823]  ? bus_to_subsys+0x12d/0x160
[  299.062529][T11823]  dpm_sysfs_add+0x80/0x280
[  299.062543][T11823]  device_add+0x9a8/0x1a70
[  299.062558][T11823]  ? __pfx_device_add+0x10/0x10
[  299.062576][T11823]  device_create_groups_vargs+0x1f8/0x270
[  299.062592][T11823]  device_create+0xe9/0x130
[  299.062606][T11823]  ? __pfx_device_create+0x10/0x10
[  299.062619][T11823]  ? rcu_is_watching+0x12/0xc0
[  299.062630][T11823]  ? do_init_timer+0xc9/0x110
[  299.062642][T11823]  ? ieee80211_roc_setup+0x136/0x270
[  299.062654][T11823]  ? ieee80211_alloc_hw_nm+0x231/0x2260
[  299.062670][T11823]  mac80211_hwsim_new_radio+0x36b/0x54e0
[  299.062689][T11823]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  299.062706][T11823]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  299.062724][T11823]  hwsim_new_radio_nl+0xb42/0x12b0
[  299.062740][T11823]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  299.062758][T11823]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  299.062776][T11823]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  299.062794][T11823]  genl_family_rcv_msg_doit+0x202/0x2f0
[  299.062815][T11823]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  299.062830][T11823]  ? trace_cap_capable+0x1a2/0x210
[  299.062844][T11823]  ? bpf_lsm_capable+0x9/0x10
[  299.062855][T11823]  ? security_capable+0x7e/0x260
[  299.062865][T11823]  ? ns_capable+0xd7/0x110
[  299.062880][T11823]  genl_rcv_msg+0x565/0x800
[  299.062897][T11823]  ? __pfx_genl_rcv_msg+0x10/0x10
[  299.062912][T11823]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  299.062931][T11823]  netlink_rcv_skb+0x16b/0x440
[  299.062944][T11823]  ? __pfx_genl_rcv_msg+0x10/0x10
[  299.062959][T11823]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  299.062978][T11823]  ? down_read+0xc9/0x330
[  299.062992][T11823]  ? __pfx_down_read+0x10/0x10
[  299.063006][T11823]  ? netlink_deliver_tap+0x1ae/0xd30
[  299.063021][T11823]  genl_rcv+0x28/0x40
[  299.063034][T11823]  netlink_unicast+0x53c/0x7f0
[  299.063049][T11823]  ? __pfx_netlink_unicast+0x10/0x10
[  299.063063][T11823]  ? __phys_addr_symbol+0x30/0x80
[  299.063073][T11823]  ? __check_object_size+0x488/0x710
[  299.063085][T11823]  netlink_sendmsg+0x8b8/0xd70
[  299.063101][T11823]  ? __pfx_netlink_sendmsg+0x10/0x10
[  299.063119][T11823]  ____sys_sendmsg+0xaaf/0xc90
[  299.063132][T11823]  ? __pfx_____sys_sendmsg+0x10/0x10
[  299.063142][T11823]  ? get_compat_msghdr+0x11b/0x170
[  299.063159][T11823]  ___sys_sendmsg+0x135/0x1e0
[  299.063175][T11823]  ? __pfx____sys_sendmsg+0x10/0x10
[  299.063195][T11823]  ? __pfx_lock_release+0x10/0x10
[  299.063208][T11823]  ? trace_lock_acquire+0x14e/0x1f0
[  299.063223][T11823]  ? __fget_files+0x206/0x3a0
[  299.063241][T11823]  __sys_sendmsg+0x16e/0x220
[  299.063255][T11823]  ? __pfx___sys_sendmsg+0x10/0x10
[  299.063278][T11823]  __do_fast_syscall_32+0x73/0x120
[  299.063293][T11823]  do_fast_syscall_32+0x32/0x80
[  299.063306][T11823]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  299.063322][T11823] RIP: 0023:0xf7f86579
[  299.063331][T11823] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  299.063340][T11823] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  299.063350][T11823] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  299.063356][T11823] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  299.063362][T11823] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  299.063367][T11823] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  299.063372][T11823] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  299.063384][T11823]  </TASK>
[  299.174929][T11834] block nbd4: NBD_DISCONNECT
[  299.202639][T11832] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  299.204472][T11832] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  299.206905][T11832] vhci_hcd vhci_hcd.0: Device attached
[  299.223013][T11832] CIFS: iocharset name too long
[  299.250539][T11839] vivid-007: disconnect
[  299.391515][ T5942] vhci_hcd: vhci_device speed not set
[  299.439785][T11838] vivid-007: reconnect
[  299.485415][T11851] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1577'.
[  299.512800][ T5942] usb 43-1: new full-speed USB device number 9 using vhci_hcd
[  299.531820][T11856] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1575'.
[  299.593248][T11860] syz.4.1579: attempt to access beyond end of device
[  299.593248][T11860] nbd4: rw=0, sector=64, nr_sectors = 2 limit=0
[  299.596960][T11860] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  299.599734][T11860] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  299.602939][T11860] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  299.605005][T11860] UDF-fs: Scanning with blocksize 1024 failed
[  299.607080][T11860] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  299.609883][T11860] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  299.612664][T11860] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  299.614746][T11860] UDF-fs: Scanning with blocksize 2048 failed
[  299.616619][T11860] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  299.619305][T11860] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  299.622141][T11860] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  299.624226][T11860] UDF-fs: Scanning with blocksize 4096 failed
[  299.625910][T11860] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1)
[  299.711546][   T25] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  299.824576][T11866] ntfs3: Unknown parameter 'discardfiniband/rdma_cm'
[  299.861666][   T25] usb 10-1: Using ep0 maxpacket: 8
[  299.872914][   T25] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  299.876410][   T25] usb 10-1: New USB device found, idVendor=05a9, idProduct=2630, bcdDevice=55.12
[  299.879517][   T25] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  299.894842][   T25] usb 10-1: config 0 descriptor??
[  299.906200][   T25] usb 10-1: Found UVC 0.00 device <unnamed> (05a9:2630)
[  299.908524][   T25] usb 10-1: No valid video chain found.
[  300.000151][T11835] vhci_hcd: connection reset by peer
[  300.002275][T10001] vhci_hcd: stop threads
[  300.004498][T10001] vhci_hcd: release socket
[  300.005922][T10001] vhci_hcd: disconnect device
[  300.120952][T11876] FAULT_INJECTION: forcing a failure.
[  300.120952][T11876] name failslab, interval 1, probability 0, space 0, times 0
[  300.125721][T11876] CPU: 1 UID: 0 PID: 11876 Comm: syz.2.1584 Not tainted 6.14.0-rc5-syzkaller #0
[  300.125734][T11876] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  300.125740][T11876] Call Trace:
[  300.125743][T11876]  <TASK>
[  300.125747][T11876]  dump_stack_lvl+0x16c/0x1f0
[  300.125765][T11876]  should_fail_ex+0x50a/0x650
[  300.125781][T11876]  ? fs_reclaim_acquire+0xae/0x150
[  300.125795][T11876]  should_failslab+0xc2/0x120
[  300.125805][T11876]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  300.125821][T11876]  ? __kernfs_new_node+0xd3/0x890
[  300.125837][T11876]  __kernfs_new_node+0xd3/0x890
[  300.125851][T11876]  ? __pfx___kernfs_new_node+0x10/0x10
[  300.125865][T11876]  ? __pfx_lock_release+0x10/0x10
[  300.125879][T11876]  ? kernfs_add_one+0x39d/0x520
[  300.125898][T11876]  ? up_write+0x1b2/0x520
[  300.125915][T11876]  kernfs_new_node+0x186/0x240
[  300.125932][T11876]  __kernfs_create_file+0x53/0x350
[  300.125944][T11876]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  300.125960][T11876]  sysfs_merge_group+0x1b1/0x340
[  300.125974][T11876]  ? __pfx_sysfs_merge_group+0x10/0x10
[  300.125990][T11876]  ? __pfx_dev_add_physical_location+0x10/0x10
[  300.126003][T11876]  ? bus_to_subsys+0x12d/0x160
[  300.126020][T11876]  dpm_sysfs_add+0x237/0x280
[  300.126033][T11876]  device_add+0x9a8/0x1a70
[  300.126048][T11876]  ? __pfx_device_add+0x10/0x10
[  300.126071][T11876]  device_create_groups_vargs+0x1f8/0x270
[  300.126088][T11876]  device_create+0xe9/0x130
[  300.126102][T11876]  ? __pfx_device_create+0x10/0x10
[  300.126115][T11876]  ? rcu_is_watching+0x12/0xc0
[  300.126127][T11876]  ? do_init_timer+0xc9/0x110
[  300.126140][T11876]  ? ieee80211_roc_setup+0x136/0x270
[  300.126152][T11876]  ? ieee80211_alloc_hw_nm+0x231/0x2260
[  300.126167][T11876]  mac80211_hwsim_new_radio+0x36b/0x54e0
[  300.126188][T11876]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  300.126205][T11876]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  300.126223][T11876]  hwsim_new_radio_nl+0xb42/0x12b0
[  300.126238][T11876]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  300.126256][T11876]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  300.126273][T11876]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  300.126291][T11876]  genl_family_rcv_msg_doit+0x202/0x2f0
[  300.126307][T11876]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  300.126323][T11876]  ? trace_cap_capable+0x1a2/0x210
[  300.126337][T11876]  ? bpf_lsm_capable+0x9/0x10
[  300.126347][T11876]  ? security_capable+0x7e/0x260
[  300.126358][T11876]  ? ns_capable+0xd7/0x110
[  300.126373][T11876]  genl_rcv_msg+0x565/0x800
[  300.126389][T11876]  ? __pfx_genl_rcv_msg+0x10/0x10
[  300.126405][T11876]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  300.126419][T11876]  ? __pfx___lock_acquire+0x10/0x10
[  300.126435][T11876]  netlink_rcv_skb+0x16b/0x440
[  300.126449][T11876]  ? __pfx_genl_rcv_msg+0x10/0x10
[  300.126464][T11876]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  300.126483][T11876]  ? down_read+0xc9/0x330
[  300.126497][T11876]  ? __pfx_down_read+0x10/0x10
[  300.126511][T11876]  ? netlink_deliver_tap+0x1ae/0xd30
[  300.126526][T11876]  genl_rcv+0x28/0x40
[  300.126539][T11876]  netlink_unicast+0x53c/0x7f0
[  300.126554][T11876]  ? __pfx_netlink_unicast+0x10/0x10
[  300.126568][T11876]  ? __phys_addr_symbol+0x30/0x80
[  300.126578][T11876]  ? __check_object_size+0x488/0x710
[  300.126589][T11876]  netlink_sendmsg+0x8b8/0xd70
[  300.126605][T11876]  ? __pfx_netlink_sendmsg+0x10/0x10
[  300.126623][T11876]  ____sys_sendmsg+0xaaf/0xc90
[  300.126635][T11876]  ? __pfx_____sys_sendmsg+0x10/0x10
[  300.126646][T11876]  ? get_compat_msghdr+0x11b/0x170
[  300.126663][T11876]  ___sys_sendmsg+0x135/0x1e0
[  300.126678][T11876]  ? __pfx____sys_sendmsg+0x10/0x10
[  300.126698][T11876]  ? __pfx_lock_release+0x10/0x10
[  300.126711][T11876]  ? trace_lock_acquire+0x14e/0x1f0
[  300.126726][T11876]  ? __fget_files+0x206/0x3a0
[  300.126744][T11876]  __sys_sendmsg+0x16e/0x220
[  300.126758][T11876]  ? __pfx___sys_sendmsg+0x10/0x10
[  300.126781][T11876]  __do_fast_syscall_32+0x73/0x120
[  300.126795][T11876]  do_fast_syscall_32+0x32/0x80
[  300.126808][T11876]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  300.126824][T11876] RIP: 0023:0xf7f31579
[  300.126833][T11876] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  300.126842][T11876] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  300.126852][T11876] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  300.126858][T11876] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  300.126863][T11876] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  300.126868][T11876] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  300.126874][T11876] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  300.126886][T11876]  </TASK>
[  300.161398][T11847] block nbd5: Device being setup by another task
[  300.193870][T11879] block nbd2: NBD_DISCONNECT
[  300.202729][   T25] usb 10-1: USB disconnect, device number 2
[  300.337269][T11885] fuse: Bad value for 'user_id'
[  300.338631][T11885] fuse: Bad value for 'user_id'
[  300.446436][T11888] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1589'.
[  300.556475][T11894] 9pnet: Unknown protocol version 9p20\++}
[  300.603602][T11895] block nbd3: NBD_DISCONNECT
[  300.672959][T11897] 9pnet: Unknown protocol version 9p20\++}
[  300.983076][T11904] netlink: 'syz.5.1593': attribute type 10 has an invalid length.
[  301.117757][T11904] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  301.425486][T11908] FAULT_INJECTION: forcing a failure.
[  301.425486][T11908] name failslab, interval 1, probability 0, space 0, times 0
[  301.429065][T11908] CPU: 1 UID: 0 PID: 11908 Comm: syz.3.1594 Not tainted 6.14.0-rc5-syzkaller #0
[  301.429077][T11908] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  301.429083][T11908] Call Trace:
[  301.429087][T11908]  <TASK>
[  301.429091][T11908]  dump_stack_lvl+0x16c/0x1f0
[  301.429108][T11908]  should_fail_ex+0x50a/0x650
[  301.429125][T11908]  ? fs_reclaim_acquire+0xae/0x150
[  301.429139][T11908]  should_failslab+0xc2/0x120
[  301.429149][T11908]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  301.429164][T11908]  ? __kernfs_new_node+0xd3/0x890
[  301.429180][T11908]  __kernfs_new_node+0xd3/0x890
[  301.429195][T11908]  ? __pfx___kernfs_new_node+0x10/0x10
[  301.429208][T11908]  ? __pfx_lock_release+0x10/0x10
[  301.429222][T11908]  ? kernfs_add_one+0x39d/0x520
[  301.429241][T11908]  ? up_write+0x1b2/0x520
[  301.429258][T11908]  kernfs_new_node+0x186/0x240
[  301.429275][T11908]  __kernfs_create_file+0x53/0x350
[  301.429288][T11908]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  301.429304][T11908]  sysfs_merge_group+0x1b1/0x340
[  301.429318][T11908]  ? __pfx_sysfs_merge_group+0x10/0x10
[  301.429333][T11908]  ? __pfx_dev_add_physical_location+0x10/0x10
[  301.429347][T11908]  ? bus_to_subsys+0x12d/0x160
[  301.429364][T11908]  dpm_sysfs_add+0x237/0x280
[  301.429378][T11908]  device_add+0x9a8/0x1a70
[  301.429393][T11908]  ? __pfx_device_add+0x10/0x10
[  301.429411][T11908]  device_create_groups_vargs+0x1f8/0x270
[  301.429427][T11908]  device_create+0xe9/0x130
[  301.429441][T11908]  ? __pfx_device_create+0x10/0x10
[  301.429454][T11908]  ? rcu_is_watching+0x12/0xc0
[  301.429465][T11908]  ? do_init_timer+0xc9/0x110
[  301.429478][T11908]  ? ieee80211_roc_setup+0x136/0x270
[  301.429489][T11908]  ? ieee80211_alloc_hw_nm+0x231/0x2260
[  301.429505][T11908]  mac80211_hwsim_new_radio+0x36b/0x54e0
[  301.429525][T11908]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  301.429542][T11908]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  301.429560][T11908]  hwsim_new_radio_nl+0xb42/0x12b0
[  301.429575][T11908]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  301.429593][T11908]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  301.429610][T11908]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  301.429628][T11908]  genl_family_rcv_msg_doit+0x202/0x2f0
[  301.429644][T11908]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  301.429659][T11908]  ? trace_cap_capable+0x1a2/0x210
[  301.429674][T11908]  ? bpf_lsm_capable+0x9/0x10
[  301.429684][T11908]  ? security_capable+0x7e/0x260
[  301.429694][T11908]  ? ns_capable+0xd7/0x110
[  301.429709][T11908]  genl_rcv_msg+0x565/0x800
[  301.429726][T11908]  ? __pfx_genl_rcv_msg+0x10/0x10
[  301.429741][T11908]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  301.429755][T11908]  ? irqentry_exit+0x3b/0x90
[  301.429767][T11908]  ? __pfx___lock_acquire+0x10/0x10
[  301.429783][T11908]  netlink_rcv_skb+0x16b/0x440
[  301.429797][T11908]  ? __pfx_genl_rcv_msg+0x10/0x10
[  301.429812][T11908]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  301.429835][T11908]  ? down_read+0xc9/0x330
[  301.429849][T11908]  ? __pfx_down_read+0x10/0x10
[  301.429863][T11908]  ? netlink_deliver_tap+0x1ae/0xd30
[  301.429878][T11908]  genl_rcv+0x28/0x40
[  301.429891][T11908]  netlink_unicast+0x53c/0x7f0
[  301.429906][T11908]  ? __pfx_netlink_unicast+0x10/0x10
[  301.429919][T11908]  ? __phys_addr_symbol+0x30/0x80
[  301.429930][T11908]  ? __check_object_size+0x488/0x710
[  301.429942][T11908]  netlink_sendmsg+0x8b8/0xd70
[  301.429957][T11908]  ? __pfx_netlink_sendmsg+0x10/0x10
[  301.429976][T11908]  ____sys_sendmsg+0xaaf/0xc90
[  301.429988][T11908]  ? __pfx_____sys_sendmsg+0x10/0x10
[  301.429999][T11908]  ? get_compat_msghdr+0x11b/0x170
[  301.430016][T11908]  ___sys_sendmsg+0x135/0x1e0
[  301.430032][T11908]  ? __pfx____sys_sendmsg+0x10/0x10
[  301.430051][T11908]  ? __pfx_lock_release+0x10/0x10
[  301.430064][T11908]  ? trace_lock_acquire+0x14e/0x1f0
[  301.430080][T11908]  ? __fget_files+0x206/0x3a0
[  301.430098][T11908]  __sys_sendmsg+0x16e/0x220
[  301.430112][T11908]  ? __pfx___sys_sendmsg+0x10/0x10
[  301.430135][T11908]  __do_fast_syscall_32+0x73/0x120
[  301.430150][T11908]  do_fast_syscall_32+0x32/0x80
[  301.430163][T11908]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  301.430180][T11908] RIP: 0023:0xf73ce579
[  301.430188][T11908] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  301.430198][T11908] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  301.430207][T11908] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  301.430213][T11908] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  301.430219][T11908] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  301.430224][T11908] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  301.430229][T11908] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  301.430242][T11908]  </TASK>
[  301.618876][T11910] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1595'.
[  301.621472][T11910] nbd: must specify at least one socket
[  301.712039][T11916] FAULT_INJECTION: forcing a failure.
[  301.712039][T11916] name failslab, interval 1, probability 0, space 0, times 0
[  301.716779][T11916] CPU: 3 UID: 0 PID: 11916 Comm: syz.4.1599 Not tainted 6.14.0-rc5-syzkaller #0
[  301.716800][T11916] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  301.716810][T11916] Call Trace:
[  301.716816][T11916]  <TASK>
[  301.716823][T11916]  dump_stack_lvl+0x16c/0x1f0
[  301.716850][T11916]  should_fail_ex+0x50a/0x650
[  301.716874][T11916]  ? fs_reclaim_acquire+0xae/0x150
[  301.716897][T11916]  ? __list_lru_init+0xe8/0x4c0
[  301.716912][T11916]  should_failslab+0xc2/0x120
[  301.716927][T11916]  __kmalloc_noprof+0xcb/0x510
[  301.716952][T11916]  ? lockdep_init_map_type+0x16d/0x7d0
[  301.716982][T11916]  __list_lru_init+0xe8/0x4c0
[  301.717001][T11916]  alloc_super+0x8c4/0xbd0
[  301.717046][T11916]  ? __pfx_super_s_dev_test+0x10/0x10
[  301.717065][T11916]  sget_fc+0x116/0xc20
[  301.717088][T11916]  ? __pfx_super_s_dev_set+0x10/0x10
[  301.717126][T11916]  get_tree_bdev_flags+0x1bc/0x620
[  301.717147][T11916]  ? __pfx_ntfs_fill_super+0x10/0x10
[  301.717169][T11916]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  301.717192][T11916]  ? apparmor_capable+0x114/0x1d0
[  301.717212][T11916]  ? bpf_lsm_capable+0x9/0x10
[  301.717229][T11916]  ? security_capable+0x7e/0x260
[  301.717248][T11916]  vfs_get_tree+0x8b/0x340
[  301.717268][T11916]  path_mount+0x14e6/0x1f10
[  301.717296][T11916]  ? kmem_cache_free+0x2e2/0x4d0
[  301.717316][T11916]  ? __pfx_path_mount+0x10/0x10
[  301.717343][T11916]  ? putname+0x13c/0x180
[  301.717361][T11916]  __ia32_sys_mount+0x28d/0x310
[  301.717376][T11916]  ? __pfx___ia32_sys_mount+0x10/0x10
[  301.717398][T11916]  __do_fast_syscall_32+0x73/0x120
[  301.717422][T11916]  do_fast_syscall_32+0x32/0x80
[  301.717443][T11916]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  301.717469][T11916] RIP: 0023:0xf7fdf579
[  301.717481][T11916] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  301.717497][T11916] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  301.717513][T11916] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000080000580
[  301.717524][T11916] RDX: 0000000080000040 RSI: 0000000000008080 RDI: 00000000800001c0
[  301.717534][T11916] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  301.717543][T11916] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  301.717553][T11916] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  301.717575][T11916]  </TASK>
[  301.828994][T11922] 9pnet_virtio: no channels available for device syz
[  301.832597][T11920] 9pnet: Unknown protocol version 9p20\++}
[  301.833789][T11922] 9pnet: Unknown protocol version 9p20\++}
[  301.961653][ T5986] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  302.260086][ T5986] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  302.270313][ T5986] usb 8-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  302.287498][ T5986] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  302.303105][ T5986] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  302.314552][ T5986] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.332249][ T5986] usb 8-1: config 0 descriptor??
[  302.365924][ T5986] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  302.831899][T11937] ntfs3: Unknown parameter 'discardfiniband/rdma_cm'
[  303.113072][T11944] FAULT_INJECTION: forcing a failure.
[  303.113072][T11944] name failslab, interval 1, probability 0, space 0, times 0
[  303.116502][T11944] CPU: 3 UID: 0 PID: 11944 Comm: syz.2.1607 Not tainted 6.14.0-rc5-syzkaller #0
[  303.116515][T11944] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  303.116521][T11944] Call Trace:
[  303.116524][T11944]  <TASK>
[  303.116529][T11944]  dump_stack_lvl+0x16c/0x1f0
[  303.116545][T11944]  should_fail_ex+0x50a/0x650
[  303.116561][T11944]  ? fs_reclaim_acquire+0xae/0x150
[  303.116575][T11944]  should_failslab+0xc2/0x120
[  303.116585][T11944]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  303.116600][T11944]  ? __kernfs_new_node+0xd3/0x890
[  303.116617][T11944]  __kernfs_new_node+0xd3/0x890
[  303.116631][T11944]  ? __pfx___kernfs_new_node+0x10/0x10
[  303.116644][T11944]  ? __pfx_lock_release+0x10/0x10
[  303.116658][T11944]  ? kernfs_add_one+0x39d/0x520
[  303.116677][T11944]  ? up_write+0x1b2/0x520
[  303.116695][T11944]  kernfs_new_node+0x186/0x240
[  303.116712][T11944]  __kernfs_create_file+0x53/0x350
[  303.116724][T11944]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  303.116744][T11944]  sysfs_merge_group+0x1b1/0x340
[  303.116764][T11944]  ? __pfx_sysfs_merge_group+0x10/0x10
[  303.116784][T11944]  ? __pfx_dev_add_physical_location+0x10/0x10
[  303.116801][T11944]  ? bus_to_subsys+0x12d/0x160
[  303.116825][T11944]  dpm_sysfs_add+0x237/0x280
[  303.116842][T11944]  device_add+0x9a8/0x1a70
[  303.116857][T11944]  ? __pfx_device_add+0x10/0x10
[  303.116875][T11944]  device_create_groups_vargs+0x1f8/0x270
[  303.116891][T11944]  device_create+0xe9/0x130
[  303.116905][T11944]  ? __pfx_device_create+0x10/0x10
[  303.116918][T11944]  ? rcu_is_watching+0x12/0xc0
[  303.116930][T11944]  ? do_init_timer+0xc9/0x110
[  303.116942][T11944]  ? ieee80211_roc_setup+0x136/0x270
[  303.116954][T11944]  ? ieee80211_alloc_hw_nm+0x231/0x2260
[  303.116970][T11944]  mac80211_hwsim_new_radio+0x36b/0x54e0
[  303.116990][T11944]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  303.117033][T11944]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  303.117056][T11944]  hwsim_new_radio_nl+0xb42/0x12b0
[  303.117071][T11944]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  303.117089][T11944]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  303.117106][T11944]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  303.117125][T11944]  genl_family_rcv_msg_doit+0x202/0x2f0
[  303.117142][T11944]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  303.117157][T11944]  ? trace_cap_capable+0x1a2/0x210
[  303.117171][T11944]  ? bpf_lsm_capable+0x9/0x10
[  303.117181][T11944]  ? security_capable+0x7e/0x260
[  303.117192][T11944]  ? ns_capable+0xd7/0x110
[  303.117208][T11944]  genl_rcv_msg+0x565/0x800
[  303.117225][T11944]  ? __pfx_genl_rcv_msg+0x10/0x10
[  303.117240][T11944]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  303.117255][T11944]  ? __pfx___lock_acquire+0x10/0x10
[  303.117271][T11944]  netlink_rcv_skb+0x16b/0x440
[  303.117284][T11944]  ? __pfx_genl_rcv_msg+0x10/0x10
[  303.117300][T11944]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  303.117319][T11944]  ? down_read+0xc9/0x330
[  303.117332][T11944]  ? __pfx_down_read+0x10/0x10
[  303.117346][T11944]  ? netlink_deliver_tap+0x1ae/0xd30
[  303.117361][T11944]  genl_rcv+0x28/0x40
[  303.117374][T11944]  netlink_unicast+0x53c/0x7f0
[  303.117389][T11944]  ? __pfx_netlink_unicast+0x10/0x10
[  303.117403][T11944]  ? __phys_addr_symbol+0x30/0x80
[  303.117413][T11944]  ? __check_object_size+0x488/0x710
[  303.117425][T11944]  netlink_sendmsg+0x8b8/0xd70
[  303.117440][T11944]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.117459][T11944]  ____sys_sendmsg+0xaaf/0xc90
[  303.117471][T11944]  ? __pfx_____sys_sendmsg+0x10/0x10
[  303.117481][T11944]  ? get_compat_msghdr+0x11b/0x170
[  303.117499][T11944]  ___sys_sendmsg+0x135/0x1e0
[  303.117515][T11944]  ? __pfx____sys_sendmsg+0x10/0x10
[  303.117535][T11944]  ? __pfx_lock_release+0x10/0x10
[  303.117548][T11944]  ? trace_lock_acquire+0x14e/0x1f0
[  303.117563][T11944]  ? __fget_files+0x206/0x3a0
[  303.117581][T11944]  __sys_sendmsg+0x16e/0x220
[  303.117596][T11944]  ? __pfx___sys_sendmsg+0x10/0x10
[  303.117619][T11944]  __do_fast_syscall_32+0x73/0x120
[  303.117633][T11944]  do_fast_syscall_32+0x32/0x80
[  303.117646][T11944]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.117662][T11944] RIP: 0023:0xf7f31579
[  303.117671][T11944] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  303.117680][T11944] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  303.117689][T11944] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  303.117695][T11944] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  303.117701][T11944] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  303.117706][T11944] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  303.117711][T11944] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  303.117723][T11944]  </TASK>
[  303.363334][T11945] nbd4: detected capacity change from 0 to 12
[  303.369832][T11460] block nbd4: Send control failed (result -89)
[  303.375898][T11460] block nbd4: Request send failed, requeueing
[  303.380461][ T5954] block nbd4: Receive control failed (result -32)
[  303.387080][ T9979] block nbd4: Dead connection, failed to find a fallback
[  303.389350][ T9979] block nbd4: shutting down sockets
[  303.390936][ T9979] blk_print_req_error: 24 callbacks suppressed
[  303.390944][ T9979] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  303.395732][ T9979] buffer_io_error: 24 callbacks suppressed
[  303.395740][ T9979] Buffer I/O error on dev nbd4, logical block 0, async page read
[  303.400741][T11460] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  303.403638][T11460] Buffer I/O error on dev nbd4, logical block 0, async page read
[  303.408971][T11460] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  303.411627][T11460] Buffer I/O error on dev nbd4, logical block 0, async page read
[  303.414852][T11460] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  303.417406][T11460] Buffer I/O error on dev nbd4, logical block 0, async page read
[  303.420505][T11460] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  303.423270][T11460] Buffer I/O error on dev nbd4, logical block 0, async page read
[  303.425508][T11460] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  303.427991][T11460] Buffer I/O error on dev nbd4, logical block 0, async page read
[  303.430266][T11460] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  303.433787][T11460] Buffer I/O error on dev nbd4, logical block 0, async page read
[  303.435980][T11460] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  303.438479][T11460] Buffer I/O error on dev nbd4, logical block 0, async page read
[  303.440787][T11460] ldm_validate_partition_table(): Disk read failed.
[  303.442793][T11460] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  303.445286][T11460] Buffer I/O error on dev nbd4, logical block 0, async page read
[  303.447391][T11460] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  303.449867][T11460] Buffer I/O error on dev nbd4, logical block 0, async page read
[  303.452970][T11460] Dev nbd4: unable to read RDB block 0
[  303.454733][T11460]  nbd4: unable to read partition table
[  303.456439][T11460] nbd4: partition table beyond EOD, truncated
[  303.491970][T11460] ldm_validate_partition_table(): Disk read failed.
[  303.584136][T11957] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  303.587883][T11957] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  303.598397][T11957] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  303.600486][T11957] UDF-fs: Scanning with blocksize 1024 failed
[  303.604060][T11957] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  303.607450][T11957] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  303.610209][T11957] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  303.621868][T11957] UDF-fs: Scanning with blocksize 2048 failed
[  303.626480][T11957] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  303.642952][T11957] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  303.646538][T11957] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  303.649592][T11957] UDF-fs: Scanning with blocksize 4096 failed
[  303.660259][T11957] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  303.671887][T11460] Dev nbd4: unable to read RDB block 0
[  303.673749][T11460]  nbd4: unable to read partition table
[  303.675436][T11460] nbd4: partition table beyond EOD, truncated
[  303.679099][T11460] 
[  303.680098][T11460] ======================================================
[  303.682347][T11460] WARNING: possible circular locking dependency detected
[  303.684819][T11460] 6.14.0-rc5-syzkaller #0 Not tainted
[  303.687505][T11460] ------------------------------------------------------
[  303.690630][T11460] udevd/11460 is trying to acquire lock:
[  303.692192][T11460] ffff888024972e98 (&q->q_usage_counter(io)#53){++++}-{0:0}, at: __submit_bio+0x3d1/0x690
[  303.694901][T11460] 
[  303.694901][T11460] but task is already holding lock:
[  303.696933][T11460] ffff8880458dfc40 (mapping.invalidate_lock#2){.+.+}-{4:4}, at: filemap_get_pages+0x54a/0x1c30
[  303.699800][T11460] 
[  303.699800][T11460] which lock already depends on the new lock.
[  303.699800][T11460] 
[  303.702485][T11460] 
[  303.702485][T11460] the existing dependency chain (in reverse order) is:
[  303.704867][T11460] 
[  303.704867][T11460] -> #6 (mapping.invalidate_lock#2){.+.+}-{4:4}:
[  303.707148][T11460]        down_read+0x9a/0x330
[  303.708469][T11460]        page_cache_ra_unbounded+0x173/0x7d0
[  303.710158][T11460]        page_cache_ra_order+0x9cd/0xd00
[  303.712066][T11460]        page_cache_async_ra+0x645/0x930
[  303.714245][T11460]        filemap_fault+0xf38/0x2ca0
[  303.715684][T11460]        __do_fault+0x10a/0x490
[  303.717098][T11460]        do_pte_missing+0xecf/0x3e10
[  303.718561][T11460]        __handle_mm_fault+0x1166/0x2c60
[  303.720111][T11460]        handle_mm_fault+0x3fa/0xaa0
[  303.721693][T11460]        do_user_addr_fault+0x7a3/0x13f0
[  303.723266][T11460]        exc_page_fault+0x5c/0xc0
[  303.724665][T11460]        asm_exc_page_fault+0x26/0x30
[  303.726168][T11460]        _copy_from_user+0x93/0xd0
[  303.727582][T11460]        do_tcp_setsockopt+0x2282/0x24a0
[  303.729147][T11460]        tcp_setsockopt+0xe2/0x100
[  303.730580][T11460]        do_sock_setsockopt+0x222/0x480
[  303.732374][T11460]        __sys_setsockopt+0x1a0/0x230
[  303.734075][T11460]        __ia32_sys_setsockopt+0xbc/0x160
[  303.736045][T11460]        __do_fast_syscall_32+0x73/0x120
[  303.737908][T11460]        do_fast_syscall_32+0x32/0x80
[  303.739391][T11460]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.741232][T11460] 
[  303.741232][T11460] -> #5 (sk_lock-AF_INET){+.+.}-{0:0}:
[  303.743470][T11460]        lock_sock_nested+0x3a/0xf0
[  303.744914][T11460]        inet_autobind+0x1a/0x1a0
[  303.746325][T11460]        inet_send_prepare+0x317/0x530
[  303.747824][T11460]        inet_sendmsg+0x43/0x140
[  303.749202][T11460]        sock_sendmsg+0x389/0x490
[  303.750570][T11460]        __sock_xmit+0x1e8/0x4f0
[  303.751934][T11460]        nbd_send_cmd+0x8ec/0x1c90
[  303.753448][T11460]        nbd_queue_rq+0x941/0x1220
[  303.754880][T11460]        blk_mq_dispatch_rq_list+0x443/0x1dc0
[  303.757040][T11460]        __blk_mq_sched_dispatch_requests+0xcdf/0x1620
[  303.759686][T11460]        blk_mq_sched_dispatch_requests+0xd8/0x1b0
[  303.762229][T11460]        blk_mq_run_hw_queue+0x239/0x670
[  303.764301][T11460]        blk_mq_flush_plug_list+0x673/0x1c60
[  303.766497][T11460]        __blk_flush_plug+0x2c5/0x4b0
[  303.768530][T11460]        __submit_bio+0x547/0x690
[  303.770451][T11460]        submit_bio_noacct_nocheck+0x698/0xd70
[  303.772213][T11460]        submit_bio_noacct+0x50d/0x1ec0
[  303.773777][T11460]        block_read_full_folio+0x812/0xa50
[  303.775588][T11460]        filemap_read_folio+0xc6/0x2a0
[  303.777589][T11460]        do_read_cache_folio+0x263/0x5c0
[  303.779684][T11460]        read_part_sector+0xd4/0x310
[  303.781712][T11460]        adfspart_check_ICS+0x94/0x940
[  303.783761][T11460]        bdev_disk_changed+0x71f/0x1520
[  303.785854][T11460]        blkdev_get_whole+0x187/0x290
[  303.787417][T11460]        bdev_open+0x2c7/0xe20
[  303.788783][T11460]        blkdev_open+0x27b/0x3f0
[  303.790223][T11460]        do_dentry_open+0x735/0x1c40
[  303.791733][T11460]        vfs_open+0x82/0x3f0
[  303.793079][T11460]        path_openat+0x1e88/0x2d80
[  303.794644][T11460]        do_filp_open+0x20c/0x470
[  303.796179][T11460]        do_sys_openat2+0x17a/0x1e0
[  303.797670][T11460]        __x64_sys_openat+0x175/0x210
[  303.799180][T11460]        do_syscall_64+0xcd/0x250
[  303.800636][T11460]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.802485][T11460] 
[  303.802485][T11460] -> #4 (&nsock->tx_lock){+.+.}-{4:4}:
[  303.805018][T11460]        __mutex_lock+0x19b/0xb10
[  303.806964][T11460]        nbd_queue_rq+0x424/0x1220
[  303.808909][T11460]        blk_mq_dispatch_rq_list+0x443/0x1dc0
[  303.811412][T11460]        __blk_mq_sched_dispatch_requests+0xcdf/0x1620
[  303.814114][T11460]        blk_mq_sched_dispatch_requests+0xd8/0x1b0
[  303.816580][T11460]        blk_mq_run_hw_queue+0x239/0x670
[  303.818742][T11460]        blk_mq_flush_plug_list+0x673/0x1c60
[  303.820935][T11460]        __blk_flush_plug+0x2c5/0x4b0
[  303.822514][T11460]        __submit_bio+0x547/0x690
[  303.823991][T11460]        submit_bio_noacct_nocheck+0x698/0xd70
[  303.825705][T11460]        submit_bio_noacct+0x50d/0x1ec0
[  303.827229][T11460]        block_read_full_folio+0x812/0xa50
[  303.829148][T11460]        filemap_read_folio+0xc6/0x2a0
[  303.830949][T11460]        do_read_cache_folio+0x263/0x5c0
[  303.832676][T11460]        read_part_sector+0xd4/0x310
[  303.834726][T11460]        adfspart_check_ICS+0x94/0x940
[  303.836763][T11460]        bdev_disk_changed+0x71f/0x1520
[  303.838903][T11460]        blkdev_get_whole+0x187/0x290
[  303.840960][T11460]        bdev_open+0x2c7/0xe20
[  303.842852][T11460]        blkdev_open+0x27b/0x3f0
[  303.844782][T11460]        do_dentry_open+0x735/0x1c40
[  303.846848][T11460]        vfs_open+0x82/0x3f0
[  303.848645][T11460]        path_openat+0x1e88/0x2d80
[  303.850601][T11460]        do_filp_open+0x20c/0x470
[  303.852593][T11460]        do_sys_openat2+0x17a/0x1e0
[  303.854594][T11460]        __x64_sys_openat+0x175/0x210
[  303.856191][T11460]        do_syscall_64+0xcd/0x250
[  303.857609][T11460]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.859389][T11460] 
[  303.859389][T11460] -> #3 (&cmd->lock){+.+.}-{4:4}:
[  303.861934][T11460]        __mutex_lock+0x19b/0xb10
[  303.863871][T11460]        nbd_queue_rq+0xbe/0x1220
[  303.865298][T11460]        blk_mq_dispatch_rq_list+0x443/0x1dc0
[  303.866978][T11460]        __blk_mq_sched_dispatch_requests+0xcdf/0x1620
[  303.868823][T11460]        blk_mq_sched_dispatch_requests+0xd8/0x1b0
[  303.870629][T11460]        blk_mq_run_hw_queue+0x239/0x670
[  303.872296][T11460]        blk_mq_flush_plug_list+0x673/0x1c60
[  303.874548][T11460]        __blk_flush_plug+0x2c5/0x4b0
[  303.876091][T11460]        __submit_bio+0x547/0x690
[  303.877537][T11460]        submit_bio_noacct_nocheck+0x698/0xd70
[  303.879292][T11460]        submit_bio_noacct+0x50d/0x1ec0
[  303.880907][T11460]        block_read_full_folio+0x812/0xa50
[  303.882922][T11460]        filemap_read_folio+0xc6/0x2a0
[  303.884906][T11460]        do_read_cache_folio+0x263/0x5c0
[  303.887060][T11460]        read_part_sector+0xd4/0x310
[  303.888854][T11460]        adfspart_check_ICS+0x94/0x940
[  303.890439][T11460]        bdev_disk_changed+0x71f/0x1520
[  303.892007][T11460]        blkdev_get_whole+0x187/0x290
[  303.893775][T11460]        bdev_open+0x2c7/0xe20
[  303.895148][T11460]        blkdev_open+0x27b/0x3f0
[  303.896618][T11460]        do_dentry_open+0x735/0x1c40
[  303.898203][T11460]        vfs_open+0x82/0x3f0
[  303.899520][T11460]        path_openat+0x1e88/0x2d80
[  303.900987][T11460]        do_filp_open+0x20c/0x470
[  303.902377][T11460]        do_sys_openat2+0x17a/0x1e0
[  303.904143][T11460]        __x64_sys_openat+0x175/0x210
[  303.906243][T11460]        do_syscall_64+0xcd/0x250
[  303.908001][T11460]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.909823][T11460] 
[  303.909823][T11460] -> #2 (set->srcu){.+.+}-{0:0}:
[  303.911829][T11460]        __synchronize_srcu+0xa9/0x2a0
[  303.913435][T11460]        blk_mq_quiesce_queue+0x149/0x1b0
[  303.915116][T11460]        elevator_disable+0xe9/0x570
[  303.916753][T11460]        blk_mq_update_nr_hw_queues+0x41c/0x1360
[  303.919157][T11460]        nbd_start_device+0x172/0xcd0
[  303.921070][T11460]        nbd_ioctl+0x21a/0xd60
[  303.922884][T11460]        compat_blkdev_ioctl+0x2eb/0x7a0
[  303.924863][T11460]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  303.927088][T11460]        __do_fast_syscall_32+0x73/0x120
[  303.928737][T11460]        do_fast_syscall_32+0x32/0x80
[  303.930271][T11460]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.932200][T11460] 
[  303.932200][T11460] -> #1 (&q->sysfs_lock){+.+.}-{4:4}:
[  303.934329][T11460]        __mutex_lock+0x19b/0xb10
[  303.935751][T11460]        blk_mq_update_nr_hw_queues+0x4a7/0x1360
[  303.937560][T11460]        nbd_start_device+0x172/0xcd0
[  303.939065][T11460]        nbd_ioctl+0x21a/0xd60
[  303.940405][T11460]        compat_blkdev_ioctl+0x2eb/0x7a0
[  303.941986][T11460]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  303.943507][T11460]        __do_fast_syscall_32+0x73/0x120
[  303.945057][T11460]        do_fast_syscall_32+0x32/0x80
[  303.946800][T11460]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  303.948996][T11460] 
[  303.948996][T11460] -> #0 (&q->q_usage_counter(io)#53){++++}-{0:0}:
[  303.951771][T11460]        __lock_acquire+0x249e/0x3c40
[  303.953253][T11460]        lock_acquire.part.0+0x11b/0x380
[  303.954748][T11460]        blk_mq_submit_bio+0x20f5/0x2610
[  303.956246][T11460]        __submit_bio+0x3d1/0x690
[  303.958044][T11460]        submit_bio_noacct_nocheck+0x698/0xd70
[  303.960239][T11460]        submit_bio_noacct+0x50d/0x1ec0
[  303.962305][T11460]        block_read_full_folio+0x812/0xa50
[  303.964470][T11460]        filemap_read_folio+0xc6/0x2a0
[  303.966501][T11460]        filemap_get_pages+0x10ad/0x1c30
[  303.968629][T11460]        filemap_read+0x3c5/0xe70
[  303.970525][T11460]        blkdev_read_iter+0x187/0x4b0
[  303.972497][T11460]        vfs_read+0x886/0xbf0
[  303.974330][T11460]        ksys_read+0x12b/0x250
[  303.976152][T11460]        do_syscall_64+0xcd/0x250
[  303.977691][T11460]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.979606][T11460] 
[  303.979606][T11460] other info that might help us debug this:
[  303.979606][T11460] 
[  303.982303][T11460] Chain exists of:
[  303.982303][T11460]   &q->q_usage_counter(io)#53 --> sk_lock-AF_INET --> mapping.invalidate_lock#2
[  303.982303][T11460] 
[  303.986312][T11460]  Possible unsafe locking scenario:
[  303.986312][T11460] 
[  303.988698][T11460]        CPU0                    CPU1
[  303.990648][T11460]        ----                    ----
[  303.992585][T11460]   rlock(mapping.invalidate_lock#2);
[  303.994522][T11460]                                lock(sk_lock-AF_INET);
[  303.996536][T11460]                                lock(mapping.invalidate_lock#2);
[  303.998713][T11460]   rlock(&q->q_usage_counter(io)#53);
[  304.000809][T11460] 
[  304.000809][T11460]  *** DEADLOCK ***
[  304.000809][T11460] 
[  304.003780][T11460] 1 lock held by udevd/11460:
[  304.005224][T11460]  #0: ffff8880458dfc40 (mapping.invalidate_lock#2){.+.+}-{4:4}, at: filemap_get_pages+0x54a/0x1c30
[  304.009215][T11460] 
[  304.009215][T11460] stack backtrace:
[  304.011481][T11460] CPU: 2 UID: 0 PID: 11460 Comm: udevd Not tainted 6.14.0-rc5-syzkaller #0
[  304.011499][T11460] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  304.011508][T11460] Call Trace:
[  304.011515][T11460]  <TASK>
[  304.011526][T11460]  dump_stack_lvl+0x116/0x1f0
[  304.011552][T11460]  print_circular_bug+0x490/0x760
[  304.011576][T11460]  check_noncircular+0x31a/0x400
[  304.011595][T11460]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  304.011617][T11460]  ? __pfx_check_noncircular+0x10/0x10
[  304.011638][T11460]  ? __pfx_mark_lock+0x10/0x10
[  304.011658][T11460]  ? bpf_ksym_find+0x124/0x1c0
[  304.011675][T11460]  ? lockdep_lock+0x1b8/0x200
[  304.011693][T11460]  ? __pfx_lockdep_lock+0x10/0x10
[  304.011712][T11460]  __lock_acquire+0x249e/0x3c40
[  304.011738][T11460]  ? __pfx___lock_acquire+0x10/0x10
[  304.011759][T11460]  ? hlock_class+0x4e/0x130
[  304.011775][T11460]  ? mark_lock+0xb5/0xc60
[  304.011795][T11460]  ? mark_lock+0xb5/0xc60
[  304.011816][T11460]  lock_acquire.part.0+0x11b/0x380
[  304.011837][T11460]  ? __submit_bio+0x3d1/0x690
[  304.011855][T11460]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  304.011878][T11460]  ? rcu_is_watching+0x12/0xc0
[  304.011895][T11460]  ? trace_lock_acquire+0x14e/0x1f0
[  304.011912][T11460]  ? __submit_bio+0x3d1/0x690
[  304.011929][T11460]  ? lock_acquire+0x2f/0xb0
[  304.011949][T11460]  ? __submit_bio+0x3d1/0x690
[  304.011966][T11460]  blk_mq_submit_bio+0x20f5/0x2610
[  304.011985][T11460]  ? __submit_bio+0x3d1/0x690
[  304.012003][T11460]  ? __pfx_blk_mq_submit_bio+0x10/0x10
[  304.012021][T11460]  ? mark_lock+0xb5/0xc60
[  304.012041][T11460]  ? __pfx___lock_acquire+0x10/0x10
[  304.012066][T11460]  ? __pfx___lock_acquire+0x10/0x10
[  304.012088][T11460]  ? __pfx_mark_lock+0x10/0x10
[  304.012112][T11460]  __submit_bio+0x3d1/0x690
[  304.012130][T11460]  ? __pfx___submit_bio+0x10/0x10
[  304.012147][T11460]  ? trace_lock_acquire+0x14e/0x1f0
[  304.012171][T11460]  ? submit_bio_noacct_nocheck+0x698/0xd70
[  304.012189][T11460]  submit_bio_noacct_nocheck+0x698/0xd70
[  304.012208][T11460]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[  304.012229][T11460]  ? __pfx___might_resched+0x10/0x10
[  304.012255][T11460]  submit_bio_noacct+0x50d/0x1ec0
[  304.012275][T11460]  block_read_full_folio+0x812/0xa50
[  304.012300][T11460]  ? __pfx_blkdev_get_block+0x10/0x10
[  304.012321][T11460]  ? __pfx_block_read_full_folio+0x10/0x10
[  304.012344][T11460]  ? filemap_get_pages+0x54a/0x1c30
[  304.012365][T11460]  ? lock_acquire+0x2f/0xb0
[  304.012385][T11460]  ? filemap_get_pages+0x54a/0x1c30
[  304.012407][T11460]  ? __pfx_blkdev_read_folio+0x10/0x10
[  304.012427][T11460]  filemap_read_folio+0xc6/0x2a0
[  304.012446][T11460]  ? __pfx_filemap_read_folio+0x10/0x10
[  304.012466][T11460]  ? hlock_class+0x4e/0x130
[  304.012481][T11460]  ? __lock_acquire+0xcc5/0x3c40
[  304.012503][T11460]  filemap_get_pages+0x10ad/0x1c30
[  304.012528][T11460]  ? __pfx_filemap_get_pages+0x10/0x10
[  304.012551][T11460]  ? __pfx___might_resched+0x10/0x10
[  304.012577][T11460]  filemap_read+0x3c5/0xe70
[  304.012597][T11460]  ? trace_lock_acquire+0x14e/0x1f0
[  304.012619][T11460]  ? __pfx_filemap_read+0x10/0x10
[  304.012647][T11460]  ? apparmor_file_permission+0x251/0x400
[  304.012667][T11460]  blkdev_read_iter+0x187/0x4b0
[  304.012689][T11460]  vfs_read+0x886/0xbf0
[  304.012712][T11460]  ? __pfx_vfs_read+0x10/0x10
[  304.012733][T11460]  ? blkdev_llseek+0x9b/0xd0
[  304.012752][T11460]  ? __pfx_lock_release+0x10/0x10
[  304.012775][T11460]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  304.012801][T11460]  ksys_read+0x12b/0x250
[  304.012821][T11460]  ? __pfx_ksys_read+0x10/0x10
[  304.012844][T11460]  do_syscall_64+0xcd/0x250
[  304.012866][T11460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.012888][T11460] RIP: 0033:0x7fe139d16b6a
[  304.012901][T11460] Code: 00 3d 00 00 41 00 75 0d 50 48 8d 3d 2d 08 0a 00 e8 ea 7d 01 00 31 c0 e9 07 ff ff ff 64 8b 04 25 18 00 00 00 85 c0 75 1b 0f 05 <48> 3d 00 f0 ff ff 76 6c 48 8b 15 8f a2 0d 00 f7 d8 64 89 02 48 83
[  304.012916][T11460] RSP: 002b:00007ffd36c41b68 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  304.012933][T11460] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe139d16b6a
[  304.012943][T11460] RDX: 0000000000000400 RSI: 000055ff54f91ab8 RDI: 0000000000000009
[  304.012953][T11460] RBP: 0000000000000400 R08: 000055ff54f91a90 R09: 0000000000000008
[  304.012963][T11460] R10: 0000000000000051 R11: 0000000000000246 R12: 000055ff54f91a90
[  304.012973][T11460] R13: 000055ff54f91aa8 R14: 000055ff54f8c1d8 R15: 000055ff54f8c180
[  304.012988][T11460]  </TASK>
[  304.441466][   T30] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  304.601480][   T30] usb 9-1: Using ep0 maxpacket: 8
[  304.604632][   T30] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  304.607793][   T30] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  304.610361][   T30] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  304.613106][   T30] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  304.617323][   T30] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  304.620582][   T30] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.641489][ T5942] vhci_hcd: vhci_device speed not set
[  304.827260][T11962] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  304.829752][T11962] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  304.833067][T11962] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  304.836492][T11962] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  304.840154][T11962] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  304.843517][T11962] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  304.845953][T11962] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  304.848397][T11962] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  304.850810][T11962] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  304.853839][T11962] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  304.867129][   T30] usb 9-1: GET_CAPABILITIES returned 0
[  304.868833][   T30] usbtmc 9-1:16.0: can't read capabilities
[  304.981837][ T6003] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  305.069761][ T6003] usb 9-1: USB disconnect, device number 10
[  305.426001][   T30] usb 8-1: USB disconnect, device number 13

VM DIAGNOSIS:
20:49:49  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=000000000000e692 RCX=ffffffff81a7d505 RDX=ffffffff8de97740
RSI=0000000000000000 RDI=0000000000000001 RBP=dffffc0000000000 RSP=ffffffff8de07c88
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=ffff88802b53fb60
R12=0000000000000000 R13=1ffffffff1bc0f98 R14=0000000000000000 R15=00000004350e5180
RIP=ffffffff81b9e12c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f4ca1da4 CR3=0000000053aae000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000979a5c RBX=0000000000000001 RCX=ffffffff8b553469 RDX=ffffed10056a6f86
RSI=ffffffff8bd34920 RDI=ffffffff81907579 RBP=ffffed1003ad5910 RSP=ffffc9000047fdd8
R8 =0000000000000000 R9 =ffffed10056a6f85 R10=ffff88802b537c2b R11=0000000000000001
R12=0000000000000001 R13=ffff88801d6ac880 R14=ffffffff90627b10 R15=0000000000000000
RIP=ffffffff810014f0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008002e000 CR3=0000000053aae000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853e6f35 RDI=ffffffff9ab6ee60 RBP=ffffffff9ab6ee20 RSP=ffffc900031a6b48
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=000000000000002d R14=ffffffff9ab6ee20 R15=0000000000000000
RIP=ffffffff853e6f5f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe13a1a1280 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5035da4 CR3=0000000070620000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000b0200000 Opmask01=0000000000000000 Opmask02=00000000ffffbdff Opmask03=0104100080810010
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd36c41be0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a2a2a2a2a2a2a2a 2a2a2a2a2a2a2a2a
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000 00ff000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff00000000ff 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737382 7316101201077341
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4203734142034373 431e161e035c1810
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20676e6964616572 004b4f2034366f66 6e695f706f6f6c20 676e696461657200
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 05424b4c41444057 004b4f0511134a43 4b4c5f554a4a4905 424b4c4144405700
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000051 0000000000000040 000000000034346d 697377682f6d6973
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2d002a5d392d305b 7466717761726e00 2a5d392d305b7466 717761720000312d
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055ff54f80c40 000055ff54f913c0 000055ff54f82ea0 000055ff54f7b720
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055ff54f8a500 000055ff54f7bdd0 000055ff54f94d60 000055ff54f95020
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a3a263e383a3a26 39383a3a2638383a 3a263b383a3a263a 383a3a26493b3a3a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffffff9103e3d6 RDX=1ffff9200092cecc
RSI=0000000000000001 RDI=ffffffff907cb118 RBP=ffffc90004967670 RSP=ffffc900049675b8
R8 =ffffffff9103e3fa R9 =ffffffff9103e3da R10=ffffc90004967628 R11=0000000000011bee
R12=ffffc90004967678 R13=ffffc90004967628 R14=0000000000000005 R15=0000000000000000
RIP=ffffffff81692ef8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c446c8b CR3=0000000022aee000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000000020000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=00000000fffbffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff0f9142c0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2042445220646165 72206f7420656c62 616e75203a346462 6e20766544205d00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2042445220646165 7220657420656662 6164752030346462 6420766544205700
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2038203030203030 2030302000002030 2020302020302020 3020203020203020
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2030202030202030 2020302000002020 2020202020202020 2020202020202020
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a33322a3f3f2a38 3f2a3b3f2a3a3a2a 3a3a2a3a3a2a3a3a 2a3a3a2a3a3a2a3a
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e322a3a3a2a3a3a 2a3a3a2a3a3a2a3c 382a3e682a6e322a 3a332a3a332a3a33
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000