last executing test programs:

2m46.399520207s ago: executing program 2 (id=1372):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r1, 0x84, 0x7d, &(0x7f0000000000)="03020000008002ff", 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x804)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
sendmmsg$inet(r5, &(0x7f0000001540)=[{{0x0, 0x5b, 0x0}}], 0x800000000000214, 0x20000001)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000008600)={0x2c, 0x3e, 0x107, 0xfffffffe, 0x0, {0x8, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x8, 0x2, 0x0, 0x1, [@nested={0x4, 0x12}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20001}, 0xc000)
openat$nullb(0xffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
io_setup(0x30, &(0x7f0000000600)=<r7=>0x0)
pipe2$9p(&(0x7f0000000300), 0x4000)
r8 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r7, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r8, &(0x7f00000000c0)="01", 0x24}])
bpf$MAP_CREATE(0x0, 0x0, 0x0)

2m44.897758511s ago: executing program 2 (id=1376):
r0 = fsopen(&(0x7f0000000040)='f2fs\x00', 0x1)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x1e, 0x1, 0x0)
connect$tipc(r4, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x1, {0x1, 0x1, 0x2}}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r10 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x101121)
close_range(r5, r8, 0x2)
r11 = dup(r10)
write$6lowpan_enable(r11, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$LOOP_CHANGE_FD(r11, 0x4c06, 0xffffffffffffffff)
r12 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r11}, &(0x7f0000000180), &(0x7f00000001c0))
r13 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r13, 0x0, 0x0)
io_uring_enter(r12, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000022c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="1000797fef152423", @ANYRES32=r7, @ANYBLOB='\b\x00\r\x00\x00\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x814}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="254b9eb68d1a29f5d5a1f1458c00", @ANYRES16=r1, @ANYBLOB="010000000000030000000200000008000300", @ANYRES32=0x0, @ANYBLOB="0c00990008000000630000000800269d3d2a5800"], 0x30}}, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000100)='test_dummy_encryption', &(0x7f0000000240)='v2\x00ul\x00\x00\x00\x00\x00loc\x8d\x8b#\xe0\xb9\xbd\"\xeb.\xc7]\xa67\x97 \xc9\xfc|\x85o7Z\xdc}U\x8c\xdd\n\xaa?4\xafq\x1d\xf6(\xe6\x9em_\x1a\xbfDi\x15\x81\xd47\x8e\x86\xa2u~FC\x9c\xe3\x98\x87\x98\xf7\xa2\xb5\x12\x8cv\xe4_\x91\xa8G!mm\f\xcf\xfb[\xd5Qf\x15\xfe\xc80\xad\xaa\xe9', 0x0)

2m43.973701855s ago: executing program 2 (id=1379):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r1, 0x84, 0x7d, &(0x7f0000000000)="03020000008002ff", 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x804)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
sendmmsg$inet(r5, &(0x7f0000001540)=[{{0x0, 0x5b, 0x0}}], 0x800000000000214, 0x20000001)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000008600)={0x2c, 0x3e, 0x107, 0xfffffffe, 0x0, {0x8, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x8, 0x2, 0x0, 0x1, [@nested={0x4, 0x12}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20001}, 0xc000)
openat$nullb(0xffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0)
io_setup(0x30, &(0x7f0000000600)=<r7=>0x0)
pipe2$9p(&(0x7f0000000300), 0x4000)
r8 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r7, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r8, &(0x7f00000000c0)="01", 0x24}])
bpf$MAP_CREATE(0x0, 0x0, 0x0)

2m42.141404035s ago: executing program 2 (id=1384):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@bridge_newneigh={0x30, 0x1c, 0x1, 0x70bd28, 0x25dfdbfe, {0x2, 0x0, 0x0, r2, 0x3f, 0x0, 0x4}, [@NDA_DST_IPV4={0x8, 0x1, @empty}, @NDA_LLADDR={0xa, 0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}]}, 0x30}}, 0x4000004)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2814002, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x9d)
write$P9_RREADLINK(r6, &(0x7f0000000180)={0x10, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
r7 = socket$igmp(0x2, 0x3, 0x2)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000280)=@o_path={&(0x7f0000000100)='./file0\x00', r6, 0x4000, r7}, 0x14)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000005000)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x74, 0x30, 0xeaa3ef926154e70d, 0x0, 0x0, {}, [{0x60, 0x1, [@m_vlan={0x5c, 0x1, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6}, @TCA_VLAN_PARMS={0x1c, 0x2, {{}, 0x2}}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)=ANY=[@ANYRESDEC=r3], 0x6c}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000900)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb010018000000000000000000000000080000000000000000"], 0x0, 0x1a}, 0x28)

2m40.981720582s ago: executing program 2 (id=1388):
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x80108907, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x40c}, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x1, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff000000009408048000001700638af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000008000000850000006900000095"], &(0x7f0000005d80)='syzkaller\x00', 0xc}, 0x94)
r5 = socket$kcm(0x10, 0x2, 0x0)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000400)=r4, 0x4)
sendmsg$kcm(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000004c0)="d80000001a0081044e81f782db4cb904021d0800fe0055a1150015000200142603600e12080005007a010401a8001600200002400400027c035c0461c1d67f6f94007134cf6efb8000a007a290457fffffffffffff0001bace8017cbec4c2ee5a7cef4090000001fb79164d322fe7c9f8775d3f2d5d0683f5aeb4edbb57a5025ccca9e00360db785262f3d40fad95667e006dcdf61951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a94100000000000000000000000000d4da15", 0xd8}], 0x1}, 0x0)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
readlinkat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)=""/36, 0x24)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x14)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
r6 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r6, 0xc0045627, &(0x7f0000000100)=0x3)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x2002, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)
sysfs$1(0x1, &(0x7f0000000080)='\x00')
io_uring_setup(0x29f8, &(0x7f0000000180)={0x0, 0xfffffffc, 0x0, 0x20000000})
openat$kvm(0xffffff9c, &(0x7f0000000000), 0x800, 0x0)

2m40.192302984s ago: executing program 2 (id=1389):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00'})
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x1, 0x8010000000000084)
r4 = socket(0x10, 0x3, 0x0)
write(r4, 0x0, 0x0)
r5 = fanotify_init(0x200, 0x0)
ioctl$sock_qrtr_TIOCINQ(r5, 0x541b, &(0x7f0000000200))
r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1)
r7 = eventfd(0x5f0)
ioctl$KVM_IOEVENTFD(r6, 0x40a0ae49, &(0x7f0000000080)={0x7ff, 0x8080000, 0x0, r7})
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r6, 0x4020aed2, &(0x7f0000000000)={0x8000000, 0x101000, 0x8})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@ipv6_newroute={0x1c, 0x18, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0xff, 0x0, 0xff, 0x8}}, 0x1c}, 0x1, 0x0, 0x0, 0x84}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)

2m40.069486986s ago: executing program 32 (id=1389):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00'})
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x1, 0x8010000000000084)
r4 = socket(0x10, 0x3, 0x0)
write(r4, 0x0, 0x0)
r5 = fanotify_init(0x200, 0x0)
ioctl$sock_qrtr_TIOCINQ(r5, 0x541b, &(0x7f0000000200))
r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1)
r7 = eventfd(0x5f0)
ioctl$KVM_IOEVENTFD(r6, 0x40a0ae49, &(0x7f0000000080)={0x7ff, 0x8080000, 0x0, r7})
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r6, 0x4020aed2, &(0x7f0000000000)={0x8000000, 0x101000, 0x8})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@ipv6_newroute={0x1c, 0x18, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0xff, 0x0, 0xff, 0x8}}, 0x1c}, 0x1, 0x0, 0x0, 0x84}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)

1m59.654957666s ago: executing program 4 (id=1506):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r1, 0x84, 0x7d, &(0x7f0000000000)="03020000008002ff", 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x804)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
sendmmsg$inet(r5, &(0x7f0000001540)=[{{0x0, 0x5b, 0x0}}], 0x800000000000214, 0x20000001)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000008600)={0x2c, 0x3e, 0x107, 0xfffffffe, 0x0, {0x8, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x8, 0x2, 0x0, 0x1, [@nested={0x4, 0x12}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20001}, 0xc000)
openat$nullb(0xffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0)
io_setup(0x30, &(0x7f0000000600)=<r7=>0x0)
pipe2$9p(&(0x7f0000000300), 0x4000)
r8 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r7, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r8, &(0x7f00000000c0)="01", 0x24}])
bpf$MAP_CREATE(0x0, 0x0, 0x0)

1m58.422527296s ago: executing program 4 (id=1511):
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4001, 0x0, 0x7, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xe4ffffff00000000, &(0x7f0000000700)=ANY=[@ANYBLOB, @ANYBLOB="59327542b72291c34331a1d058761703d766baf24537f032efb62886c108276268e16914b28d6b0670763466297419f927d127ad33d4ce319b6ac866ac9dfab31739100a51276ad6fa0e8d0216c04cda26ee91ead2e5944695c3d4e8de147f83be9e43f94d", @ANYBLOB="000000000000da0000", @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="020000000100"], 0x50)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000040)={0xa0, 0x258, 0x690, 0x384, 0xda, 0x10000, 0x20, 0x0, {0x4, 0x7}, {0x5, 0x1}, {0xfffffffe, 0x2, 0x1}, {0x800, 0x5, 0x1}, 0x5, 0x1, 0x3ff, 0x1000, 0x1, 0x7, 0x63, 0x10002, 0x5, 0x7fff, 0x10001, 0x7, 0x24, 0x100, 0x0, 0x2})
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x4)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000200), 0x1, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000100000095"], &(0x7f0000000100)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r3, 0xc1205531, &(0x7f0000000540)={0x1, 0x6, 0x0, 0x0, '\x00', '\x00', '\x00', 0x0, 0x0, 0x0, 0x0, "b6855a32474ffa64f778ddcf29c94337"})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0a00000004000000dd0000000a0000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000f830096aa6370000000000000022f8491b0000000000000000"], 0x50)
close(0x3)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r6, 0x0, &(0x7f0000000000), 0x2}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r7}, 0x10)

1m56.898161804s ago: executing program 4 (id=1514):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
setreuid(0x0, 0x0)
setreuid(0x0, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
pwritev2(r0, &(0x7f0000000980)=[{0x0, 0x1e}, {&(0x7f0000000500)="be81e1310fb465f31a42f6efa58772d291c57be2782f6ff63ea3517e50771580447f7d195ee15e186027d518b2c77a051895fece1dc014c33d6928ab0376cf4077399b51451472f53be50af6897bc0fa353cad9156d19de3665191fdf17a2f07f4286cea5c10fbb81feb85e406524a47b1978139eaa8", 0x76}, {0x0}], 0x3, 0x5, 0xa, 0x14)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000240)=@req3={0x1000, 0x1, 0x1000, 0x1, 0x7ff, 0xf84, 0x3}, 0x1c)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0x5}, 0x10)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r3, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
recvmmsg$unix(r2, &(0x7f00000043c0)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000002c0)=""/240, 0xf0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000640)=""/187, 0xbb}], 0x1}}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000000900)=""/174, 0xae}], 0x1}}], 0x3, 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x20100, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
ioctl$KVM_CREATE_PIT2(r5, 0x4040ae77, &(0x7f0000000140))
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = syz_io_uring_setup(0x24fc, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_UNLINKAT={0x24, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x1})
io_uring_enter(r7, 0x2d3e, 0x0, 0x56, 0x0, 0xffffffffffffff59)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000100)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_PIT(r5, 0x8048ae66, &(0x7f0000000080)={[{0x9, 0x3, 0x5, 0x1c, 0x8, 0x2, 0x4, 0x2, 0xfa, 0x2, 0x81, 0xc, 0x8000000000002000}, {0x6, 0x80, 0x8, 0xc0, 0x2, 0x6, 0x6, 0x4, 0x4, 0xff, 0x0, 0x7d}, {0x7, 0x7, 0x4, 0x8, 0x2, 0x6, 0x8, 0xb, 0xfd, 0x0, 0x56, 0x3, 0x100}]})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000005c0)={[0xfffffffffffffffd, 0x0, 0x100000024c8, 0x40, 0x0, 0xffffffffffffffff, 0x2004cb, 0x0, 0xfffffffffffffffe, 0x1, 0x0, 0x9, 0x2, 0x0, 0x1000000000002, 0x7fffffff], 0x80a0000, 0x100000})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

1m55.80042137s ago: executing program 4 (id=1516):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@bridge_newneigh={0x30, 0x1c, 0x1, 0x70bd28, 0x25dfdbfe, {0x2, 0x0, 0x0, r2, 0x3f, 0x0, 0x4}, [@NDA_DST_IPV4={0x8, 0x1, @empty}, @NDA_LLADDR={0xa, 0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}]}, 0x30}}, 0x4000004)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2814002, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x9d)
write$P9_RREADLINK(r6, &(0x7f0000000180)={0x10, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
r7 = socket$igmp(0x2, 0x3, 0x2)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000280)=@o_path={&(0x7f0000000100)='./file0\x00', r6, 0x4000, r7}, 0x14)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000005000)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x74, 0x30, 0xeaa3ef926154e70d, 0x0, 0x0, {}, [{0x60, 0x1, [@m_vlan={0x5c, 0x1, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6}, @TCA_VLAN_PARMS={0x1c, 0x2, {{}, 0x2}}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)=ANY=[@ANYRESDEC=r3], 0x6c}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000900)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb010018000000000000000000000000080000000000000000"], 0x0, 0x1a}, 0x28)

1m54.579906331s ago: executing program 4 (id=1519):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x40, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_DESC={0x14, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0xe3}]}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x68}, 0x1, 0x0, 0x0, 0x4000850}, 0x4040)
r1 = gettid()
timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
clock_nanosleep(0x2, 0x0, &(0x7f0000000040)={0x0, 0x989680}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc}, 0x48)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800e80010000d0428bd7000fcdbff2500008000", @ANYRES32=r0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002800500190084"], 0x48}}, 0x4084)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)
syz_open_dev$sg(&(0x7f0000000140), 0x5c2c, 0x2040)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="880000000208010300000000000000000a0000030600024088e700001c00048008000140000081000800024000001f0f08000240000000064400048008000140000000d3e09af44080000000080002400000095c080001400000000208000240000000090800014000000000080001ad000000b008000140000000070c0004800800024000000100cc3d8e4696b269cd50289dda0973b573dbcb8f78fd78681a41928c6b4cd52683c0c719d5585def31e1d34b23d982ff81f5f089ad382aedf2cf1e01f1efccf390c72d00863f7d4cc1006e01c9ed27831ad971a67b94701e0dab61fd73d4222d6a308bf8e6d727ee52"], 0x88}, 0x1, 0x0, 0x0, 0x4884}, 0x40)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0xa, 0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000800)=@can_newroute={0x14c, 0x18, 0x1, 0x70bd29, 0x25dfdbfd, {0x1d, 0x1, 0x4}, [@CGW_CS_CRC8={0x11e, 0x6, {0x1, 0xe, 0x3, 0x0, 0xff, "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", 0x0, "5c8d586b2a88d818b56d2a5e15c8a95d29e5b2ea"}}, @CGW_MOD_SET={0x15, 0x4, {{{0x3, 0x1, 0x0, 0x1}, 0x0, 0x5, 0x0, 0x0, '\t\x00'}, 0x1}}]}, 0x14c}}, 0x4c0c8)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
socket$inet_sctp(0x2, 0x5, 0x84)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$dsp(0xffffff9c, &(0x7f0000000040), 0x121800, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x80a02, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)

1m54.353057463s ago: executing program 4 (id=1522):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @private}}, 0x80, 0x0, 0x0, &(0x7f00000001c0)=ANY=[], 0x10}, 0x8000)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40046f41, &(0x7f0000000440)=0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000280)='rxrpc_local\x00', r4, 0x0, 0x5}, 0xfffffe2e)
kexec_load(0x0, 0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x7ffdd000, 0x8000}], 0x320000)
r5 = socket$inet6(0xa, 0x80002, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x80082, 0x0)
connect$llc(0xffffffffffffffff, &(0x7f0000000180)={0x1a, 0xffff, 0x3, 0x3, 0x8, 0x0, @local}, 0x10)
connect$inet6(r5, 0x0, 0x0)
sendmmsg$inet6(r5, &(0x7f0000001fc0)=[{{0x0, 0x0, &(0x7f0000003980)}}, {{&(0x7f0000000400)={0xa, 0x4e20, 0x11c, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x9}, 0x1c, &(0x7f0000001780)=[{&(0x7f00000004c0)="761521", 0x3}, {&(0x7f0000000680)="3fdfc640809a40bb268c5ba4", 0xc}, {&(0x7f0000000700)="1a4ec6ac1d86c677e6c7ee966002b9f8181257a3e137727797b1c013e55ff9b0f0ed2937d1b03b968357b3ad83978955358f579b219bbb5cb05a9fac4757e297f653789e7124680e11fe0a638409568151465343c909aff2b5490dc6f46877857d", 0x61}, {&(0x7f0000000780)="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", 0x1000}], 0x4, &(0x7f00000017c0)}}, {{&(0x7f0000001800)={0xa, 0x4e23, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}, 0xbbe}, 0x1c, &(0x7f0000001a00)=[{&(0x7f0000001840)="9dccd25554ef7e558af13bc8c0ac5f0aca164d5dacac4c1a28848d30c36a51094436e036ec7f73318679b37e307451f2ca4b992d1684dfcb6368fe5dc3ec6678c98ea3e4be1e3e83b12bc094f442b140fd5c115d5fb7c530dde9b9ada0705c818de724f49e1e76ec86996ee9f00dc383da75bd1b9ae3b124a74506925b5ffea8d68083e1e984b0e859d894f8598b02af588443d7d29e7116a6af92a134a199ec6827b7d0e19c0d322d466325acd78a25cec96cb29fc295ca2809b5ab3f89e015399d", 0xc2}, {&(0x7f0000001940)="8eb0afe64c1bbb70280d85f768f7916942fe3cb2d73f2453d20f116267aca3b5a7ed816deb5add539a7cd92bf3319cac26f9e3a81675cc140fe6ab2281c87df1a2050eb2f64abe50e36c7281514a91f6578b2e8e53d8852210e8b5c0c88ac6d02bcd1eb1a83be2ff1723999bc996a3c97a32587f74d06f9f02d8f6030d6fcd703b", 0x81}], 0x2, &(0x7f0000002040)=ANY=[@ANYBLOB="000000002900000032000000ff020000000000000000000000000001", @ANYRES32=0x0, @ANYBLOB="000000002900000043000000070000000000000029000000370000000c00000000000000c900fc010000000000000000000000000063f456625ff54ea2000000000000c204000000040700000000030004cf2f010000000000000000000000d0000000000000000029000000390000001100010c00000000fc020000000000000000000000000000ccbc6606000000000000000000000001fe80000000000000000000000000001ffe8000000000000000000000000000aa00000000290000000b0000000000000800000000290000003600000084000000000000000001000401fc040104000100c204000000030000000000002d45700e10c7ce850f24b10a694052bf7fda2710c8128b1b5e4d7d3beba8241ccb23ad6fd00fc5b35da123422bd1d20a4ff2ee335eb910565012871f798b944551227cb7ac4f3276eea9dd4102cfc5635aa8d00fa30d196c3e554d48e41dcd336759a332b851f948265ca0ae7a3b62666d5bd95fe2514fff41b48f5a997ea1bce9d71c12f7225abc57d4cabef4d272387d4f02b2a4a49bb30d9db7d130fb7117810b1a02b6514026661e1b2203e22b7485c5dc30b7b5679090639fc0a3cf80d1898ada1be22379ca762f9214e33fd8afb1a5ea125621c4ab059224caddf66b5b4248ad460a2f9f39aa5980b254e746050e6f3ecc4752d5cf84a4efa25fc3010318b4bdd2caf8e40fe3e18ed4810f2a04228200de4c31cea03933141b3384a02ed5"]}}, {{0x0, 0x0, &(0x7f0000001f80)=[{&(0x7f0000001bc0)="097fa58b0485843cdec8315a577b364823baf815cfa94dcd29347eaa84034b1fbb1075f550f42e66e0218524aad16fb0f243040ab7", 0x35}, {&(0x7f0000001c00)="a03d24ebee6335d2c31d0a31b0ff00f26f97a75a52b2335cec1c66238417d797f813137a67a5e951acfa9a27571a8e538b9ad3ca630132b0bd29e74fb30fe3fd4e0bebfd6c3363a054a6ff694b3508a76ebe563d28d277b007ef859460660dc545b8d60255fb6bba0d32d613d28c5cc7f898394093cfa4bd7383e3203f38d797449d4b049d15b78221ba956088d64e0884c81727", 0x94}, {&(0x7f0000001cc0)="5313ca280b05e9997bccb63d0fb1a81550081ac2c63c23c0e33af2ce0ec177bd91ce9794453cd1cd702da383a42ae98b3de35470b5037308a48799fa56a22e805fc62f0fdfe9fe447a92f893c647db2a85ade4b464", 0x55}, {&(0x7f0000001d40)="e50d7d317f7195c8c01b145af8564887bb7c904c8d9bee42a48eb881", 0x1c}, {&(0x7f0000001d80)="e9e44ac01644522e65c6577c54f3e7c41268924dbb5f06477f5acffb74220d81f8942bb5e15d78a0d34a07d0afd13005664d374ecb68b0dca387739e8fcef68a79a94258426c4e1f0979e44841832d88f4b3ad5011e4afeb1e54568ea119ad8f6561379cbb849dfc51358250601ab871472e70eae9fc7dc7d1e5aa80a439566c153169151503ed232c1ac6ad29151584b6bae8fb7135b7ec62f75f93c1521a3ab2b1b6249fe2c197ce88f07c7470074a99e0d0eca262c2b4d1cc7812b0ada0597b87828db7b9fb5999f6", 0xca}, {&(0x7f0000001e80)="bc1c17e929f32e7e50575920d2dde5dd632c927675a06d32ab0bf3a117b7494337f44e18662dab1f74ec60cdef0cba4dd7f7bb5df415869d5c4db3829654b699e699e61eebaca6f17d6aeb646f45fd0759796c01f030c3a813db3c90a315c81044cb5a4f22c8aa606660c4bf8e5b7cc600c65f6c466fbc73763a208d96ca78a846f9af1e19e7664430cf83f2cd97ee7af1822d7a634a54aa6497e2480a71bcb2263184265d744b16222a864efd2f1c77b73446c4d2c944b44cfeb0778f0e92d057483a6a643c5412813650c381c1c616754b1d2c24793e", 0xd7}], 0x6}}], 0x4, 0x4001c00)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000500)={[&(0x7f0000000000)='.+-:\x00', &(0x7f0000000540)=' T\xfc\x81\x8e\x9f5\x0e \x043[B\xad\x13\x9f\xae\x8f\xbb\x9a\x0f\x9f\x13\xa5\xfc9\xbb\xa4.\xf4\xeb\x03\xf1\xb6\x8c\xc4E\x93\n&k\xec\xc8\\h\xd6\x1e\xcb\fA\\da/O\xdcn7\x1b@\xbf\xfb\x17J\xaaD\xe4\x01\xbc\xdc\n\x88\xfc\xcci\xc1\xe8\xf8\x1e6&\bE\x8f\x9b\xc6\x8d0\xa7 -\xecC8O*7\xfa&\xf9\aC\xab\x03g\x06<Z\x16\x94\x9a\xe6\x8d\x10Y-\xf9\xd1\x8a\x8e\xc8\x0f\x89<O>\xda\x8c)\xae\xe3\x16\x9dz\x87\xd6OZX\xa4\xee\xa7\xebe\x14Qp\x96\x00\xd0VK\xe2$i\xd4\xcb-\xd4\x82w\x13\x98\xfcW\x9d\xff\xed\xd4\x14;]\xf8\xccS\xddl\x96v\x97\x988\xa7sQ\x1aN\xbdU.\x89\\\xfa\xc2\xcd\xde', &(0x7f0000000300)='urity.\x15\x00\x00_\x1b\xcf\xff\xf9G\x84\x87D\x91\xff\xe0\xf3b\xe2\x8di\xc8qk\x80F\x86F\x9a\xc7\xe9\xec?\b\xe5\x93\x0e!P$D?(C\xc4\x87_\x9d\xe2S1\x0fV\xab*\xe9\xdfu\x8e\x1d\xe3\x82R\x82\x0f\xd6\xadb\xd7\xad\n\t\xb2\x06\xa5UK\xaa\xdc<\xc8\xfa\x17t\x15 Ui\xd9\xfd\xd0\xe9\xe8\xcc7\x10Bf\xc2\x8f\x85\x04\x0f\xf9\xac\x0e\xce\x93mJU\x03\xef[d\xdf\xbd)\xc6T\xc1y\x03\xd8(H\xa2~aP\x98\x01\vpi\x03\xac\xdcj5a\xc9\ru\x19La\xe8Y\xc3\x85\x01\xc1G*8\x04\xc9\x11\xab\xbd\v\x9d\xbfy\xfd\xc55\t\x11', &(0x7f0000000440)='\x00', &(0x7f0000000480)='+.\x00', 0x0]})
openat$fuse(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0)
pipe(&(0x7f00000000c0))
mount$fuseblk(&(0x7f0000000600), &(0x7f0000000640)='./file1\x00', 0x0, 0x1000810, &(0x7f0000000ac0)=ANY=[])

1m54.080559863s ago: executing program 33 (id=1522):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @private}}, 0x80, 0x0, 0x0, &(0x7f00000001c0)=ANY=[], 0x10}, 0x8000)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40046f41, &(0x7f0000000440)=0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000280)='rxrpc_local\x00', r4, 0x0, 0x5}, 0xfffffe2e)
kexec_load(0x0, 0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x7ffdd000, 0x8000}], 0x320000)
r5 = socket$inet6(0xa, 0x80002, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x80082, 0x0)
connect$llc(0xffffffffffffffff, &(0x7f0000000180)={0x1a, 0xffff, 0x3, 0x3, 0x8, 0x0, @local}, 0x10)
connect$inet6(r5, 0x0, 0x0)
sendmmsg$inet6(r5, &(0x7f0000001fc0)=[{{0x0, 0x0, &(0x7f0000003980)}}, {{&(0x7f0000000400)={0xa, 0x4e20, 0x11c, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x9}, 0x1c, &(0x7f0000001780)=[{&(0x7f00000004c0)="761521", 0x3}, {&(0x7f0000000680)="3fdfc640809a40bb268c5ba4", 0xc}, {&(0x7f0000000700)="1a4ec6ac1d86c677e6c7ee966002b9f8181257a3e137727797b1c013e55ff9b0f0ed2937d1b03b968357b3ad83978955358f579b219bbb5cb05a9fac4757e297f653789e7124680e11fe0a638409568151465343c909aff2b5490dc6f46877857d", 0x61}, {&(0x7f0000000780)="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", 0x1000}], 0x4, &(0x7f00000017c0)}}, {{&(0x7f0000001800)={0xa, 0x4e23, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}, 0xbbe}, 0x1c, &(0x7f0000001a00)=[{&(0x7f0000001840)="9dccd25554ef7e558af13bc8c0ac5f0aca164d5dacac4c1a28848d30c36a51094436e036ec7f73318679b37e307451f2ca4b992d1684dfcb6368fe5dc3ec6678c98ea3e4be1e3e83b12bc094f442b140fd5c115d5fb7c530dde9b9ada0705c818de724f49e1e76ec86996ee9f00dc383da75bd1b9ae3b124a74506925b5ffea8d68083e1e984b0e859d894f8598b02af588443d7d29e7116a6af92a134a199ec6827b7d0e19c0d322d466325acd78a25cec96cb29fc295ca2809b5ab3f89e015399d", 0xc2}, {&(0x7f0000001940)="8eb0afe64c1bbb70280d85f768f7916942fe3cb2d73f2453d20f116267aca3b5a7ed816deb5add539a7cd92bf3319cac26f9e3a81675cc140fe6ab2281c87df1a2050eb2f64abe50e36c7281514a91f6578b2e8e53d8852210e8b5c0c88ac6d02bcd1eb1a83be2ff1723999bc996a3c97a32587f74d06f9f02d8f6030d6fcd703b", 0x81}], 0x2, &(0x7f0000002040)=ANY=[@ANYBLOB="000000002900000032000000ff020000000000000000000000000001", @ANYRES32=0x0, @ANYBLOB="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"]}}, {{0x0, 0x0, &(0x7f0000001f80)=[{&(0x7f0000001bc0)="097fa58b0485843cdec8315a577b364823baf815cfa94dcd29347eaa84034b1fbb1075f550f42e66e0218524aad16fb0f243040ab7", 0x35}, {&(0x7f0000001c00)="a03d24ebee6335d2c31d0a31b0ff00f26f97a75a52b2335cec1c66238417d797f813137a67a5e951acfa9a27571a8e538b9ad3ca630132b0bd29e74fb30fe3fd4e0bebfd6c3363a054a6ff694b3508a76ebe563d28d277b007ef859460660dc545b8d60255fb6bba0d32d613d28c5cc7f898394093cfa4bd7383e3203f38d797449d4b049d15b78221ba956088d64e0884c81727", 0x94}, {&(0x7f0000001cc0)="5313ca280b05e9997bccb63d0fb1a81550081ac2c63c23c0e33af2ce0ec177bd91ce9794453cd1cd702da383a42ae98b3de35470b5037308a48799fa56a22e805fc62f0fdfe9fe447a92f893c647db2a85ade4b464", 0x55}, {&(0x7f0000001d40)="e50d7d317f7195c8c01b145af8564887bb7c904c8d9bee42a48eb881", 0x1c}, {&(0x7f0000001d80)="e9e44ac01644522e65c6577c54f3e7c41268924dbb5f06477f5acffb74220d81f8942bb5e15d78a0d34a07d0afd13005664d374ecb68b0dca387739e8fcef68a79a94258426c4e1f0979e44841832d88f4b3ad5011e4afeb1e54568ea119ad8f6561379cbb849dfc51358250601ab871472e70eae9fc7dc7d1e5aa80a439566c153169151503ed232c1ac6ad29151584b6bae8fb7135b7ec62f75f93c1521a3ab2b1b6249fe2c197ce88f07c7470074a99e0d0eca262c2b4d1cc7812b0ada0597b87828db7b9fb5999f6", 0xca}, {&(0x7f0000001e80)="bc1c17e929f32e7e50575920d2dde5dd632c927675a06d32ab0bf3a117b7494337f44e18662dab1f74ec60cdef0cba4dd7f7bb5df415869d5c4db3829654b699e699e61eebaca6f17d6aeb646f45fd0759796c01f030c3a813db3c90a315c81044cb5a4f22c8aa606660c4bf8e5b7cc600c65f6c466fbc73763a208d96ca78a846f9af1e19e7664430cf83f2cd97ee7af1822d7a634a54aa6497e2480a71bcb2263184265d744b16222a864efd2f1c77b73446c4d2c944b44cfeb0778f0e92d057483a6a643c5412813650c381c1c616754b1d2c24793e", 0xd7}], 0x6}}], 0x4, 0x4001c00)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000500)={[&(0x7f0000000000)='.+-:\x00', &(0x7f0000000540)=' T\xfc\x81\x8e\x9f5\x0e \x043[B\xad\x13\x9f\xae\x8f\xbb\x9a\x0f\x9f\x13\xa5\xfc9\xbb\xa4.\xf4\xeb\x03\xf1\xb6\x8c\xc4E\x93\n&k\xec\xc8\\h\xd6\x1e\xcb\fA\\da/O\xdcn7\x1b@\xbf\xfb\x17J\xaaD\xe4\x01\xbc\xdc\n\x88\xfc\xcci\xc1\xe8\xf8\x1e6&\bE\x8f\x9b\xc6\x8d0\xa7 -\xecC8O*7\xfa&\xf9\aC\xab\x03g\x06<Z\x16\x94\x9a\xe6\x8d\x10Y-\xf9\xd1\x8a\x8e\xc8\x0f\x89<O>\xda\x8c)\xae\xe3\x16\x9dz\x87\xd6OZX\xa4\xee\xa7\xebe\x14Qp\x96\x00\xd0VK\xe2$i\xd4\xcb-\xd4\x82w\x13\x98\xfcW\x9d\xff\xed\xd4\x14;]\xf8\xccS\xddl\x96v\x97\x988\xa7sQ\x1aN\xbdU.\x89\\\xfa\xc2\xcd\xde', &(0x7f0000000300)='urity.\x15\x00\x00_\x1b\xcf\xff\xf9G\x84\x87D\x91\xff\xe0\xf3b\xe2\x8di\xc8qk\x80F\x86F\x9a\xc7\xe9\xec?\b\xe5\x93\x0e!P$D?(C\xc4\x87_\x9d\xe2S1\x0fV\xab*\xe9\xdfu\x8e\x1d\xe3\x82R\x82\x0f\xd6\xadb\xd7\xad\n\t\xb2\x06\xa5UK\xaa\xdc<\xc8\xfa\x17t\x15 Ui\xd9\xfd\xd0\xe9\xe8\xcc7\x10Bf\xc2\x8f\x85\x04\x0f\xf9\xac\x0e\xce\x93mJU\x03\xef[d\xdf\xbd)\xc6T\xc1y\x03\xd8(H\xa2~aP\x98\x01\vpi\x03\xac\xdcj5a\xc9\ru\x19La\xe8Y\xc3\x85\x01\xc1G*8\x04\xc9\x11\xab\xbd\v\x9d\xbfy\xfd\xc55\t\x11', &(0x7f0000000440)='\x00', &(0x7f0000000480)='+.\x00', 0x0]})
openat$fuse(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0)
pipe(&(0x7f00000000c0))
mount$fuseblk(&(0x7f0000000600), &(0x7f0000000640)='./file1\x00', 0x0, 0x1000810, &(0x7f0000000ac0)=ANY=[])

9.49634936s ago: executing program 0 (id=1815):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00'], 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x48c00, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/mcfilter\x00')
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0x2def, 0x0, 0x0, 0x0, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000800)={'syz1\x00', {0x0, 0x401, 0x2}, 0x2c, [0x0, 0x101, 0x0, 0xfffffffd, 0x6, 0x2, 0xfffffffc, 0x3, 0x0, 0x7fffffff, 0xfffffffe, 0xc0, 0x0, 0x0, 0x8, 0x0, 0x4000, 0x10, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x84fd, 0x0, 0x7, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x6, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x5f1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x8, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x4, 0x0, 0x7ff, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0xe, 0x0, 0x2, 0x20, 0x0, 0xeae2, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x400, 0x40000000, 0x80000, 0x0, 0xfffffffd, 0x0, 0xfffffffc, 0x2, 0x3, 0x7, 0x0, 0x0, 0x80000000, 0xffff], [0x4, 0x20e4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0xffffffff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x80, 0x100, 0x0, 0x0, 0x0, 0x2, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x800, 0x2, 0xffffff00, 0x3, 0x0, 0x0, 0x0, 0xfff, 0x71f, 0x0, 0x0, 0xffffffff, 0x20, 0x8], [0x40000000, 0x4, 0x74e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x40, 0x0, 0x0, 0xbd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0xfffffffc, 0xfffffffc, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcaa, 0x6, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x3]}, 0x45c)
ioctl$UI_DEV_CREATE(r2, 0x5501)
readv(r1, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1000001, 0x0, 0x0, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r6, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe8)
sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0x1c)
exit(0x7)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)

8.541414739s ago: executing program 3 (id=1820):
socket$nl_route(0x10, 0x3, 0x0)
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
close(r1)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100002e0001b7b70000000000000001"], 0x114}], 0x1, 0x0, 0x0, 0x80}, 0x810)
recvmmsg(r2, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x40000000, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00#\f!\x00'})
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r5, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x0, @remote}, {0xa, 0x4e22, 0x0, @mcast1}}, 0x5c)
r6 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r6, &(0x7f00000001c0)={0x1f, @none, 0x1}, 0xa)
listen(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0xa17, &(0x7f0000000200)={0x0, 0xcc75, 0x400, 0x3, 0x4}, &(0x7f0000000140), &(0x7f0000000280))
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="1400000034000701fcffffff00000000017c00000e92d2a51ee9c95592df6907c37102521ed11c296ad340d4b241ff9da63ba73a50417b6ec1f3663a2c85fc661a6f6559e868b38ec0307ad0d0bad8a32207a82835af41a07359ec71a652f3adc94e830ee4f1e11a583504be119e52722789782aaf44ade4663846e3dc6e22a01594d91ff02e9973f0622f12e5100ec602eb5b7967e7efbe268fc5acb50423eb83a03c30dee95b0bfbc18c64c235e2cec6853da93a2d00b2d2f31298eca2a0fc"], 0x14}, 0x1, 0x0, 0x0, 0x488c0}, 0x4c044)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x20004000)
r8 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x4, 0x85}, 0x0, &(0x7f0000000280))
io_uring_register$IORING_REGISTER_FILES(r8, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)

7.297570521s ago: executing program 0 (id=1821):
r0 = syz_open_dev$sg(0x0, 0x400009, 0x8002)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, 0x0, 0x0)
read$snapshot(r1, 0x0, 0xffffffbf)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(0xffffffffffffffff, 0x2, 0x0, 0xfe)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, 0x0, 0x8, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x82e, 0x0, &(0x7f0000000100), 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_usb_connect(0x6, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x24, &(0x7f0000001500)=ANY=[@ANYBLOB="1800000000000000000000000000000085200000040000008520000003e9e2d029598b8815000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000098630000110000000000000001000100b7080000000000007b8af8ff00000000b7080000070000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="00004e330b84db00385e000000000000b7050000080000008500000085100000030000001803600000060000000000000003000000cc67300008000000181200b792decf4bbdb4cee39748ce9569cd34a6c173b8f152e3b6fcef8d57ca78fdf242283eb93e17eae295677c62a8bf8a7bd83eded0321a6a2a50f97701ea9760f396f7c504657d16e76b92bd6265f02dfbf3fa2c80869aab9db57835c7a51dfae59cd8522eb76b555db31be16857e39c60c0bf48769919afd4062a5ec7fdbe2bd9ddeb49cad10f5eb7a31a2e458b0ccd00b1095c0ea75e4bef0c1b9accc512995c44790a01155cc577feba4921ac57e8525f73a000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000009500000000000000"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, @sock_ops, r1}, 0x94)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sessionid\x00')
read$FUSE(r4, 0x0, 0x0)
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000580), 0x100007, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2002)

5.80124104s ago: executing program 3 (id=1827):
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4001, 0x0, 0x7, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xe4ffffff00000000, &(0x7f0000000700)=ANY=[@ANYBLOB, @ANYBLOB="59327542b72291c34331a1d058761703d766baf24537f032efb62886c108276268e16914b28d6b0670763466297419f927d127ad33d4ce319b6ac866ac9dfab31739100a51276ad6fa0e8d0216c04cda26ee91ead2e5944695c3d4e8de147f83be9e43f94d", @ANYBLOB="000000000000da0000", @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="020000000100"], 0x50)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000040)={0xa0, 0x258, 0x690, 0x384, 0xda, 0x10000, 0x20, 0x0, {0x4, 0x7}, {0x5, 0x1}, {0xfffffffe, 0x2, 0x1}, {0x800, 0x5, 0x1}, 0x5, 0x1, 0x3ff, 0x1000, 0x1, 0x7, 0x63, 0x10002, 0x5, 0x7fff, 0x10001, 0x7, 0x24, 0x100, 0x0, 0x2})
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x4)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000200), 0x1, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000100000095"], &(0x7f0000000100)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r3, 0xc1205531, &(0x7f0000000540)={0x1, 0x6, 0x0, 0x0, '\x00', '\x00', '\x00', 0x0, 0x0, 0x0, 0x0, "b6855a32474ffa64f778ddcf29c94337"})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0a00000004000000dd0000000a0000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000f830096aa6370000000000000022f8491b0000000000000000"], 0x50)
close(0x3)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r6, 0x0, &(0x7f0000000000), 0x2}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r7}, 0x10)

5.484240055s ago: executing program 5 (id=1829):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r1, 0x84, 0x7d, &(0x7f0000000000)="03020000008002ff", 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x804)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
sendmmsg$inet(r4, &(0x7f0000001540)=[{{0x0, 0x5b, 0x0}}], 0x800000000000214, 0x20000001)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000008600)={0x2c, 0x3e, 0x107, 0xfffffffe, 0x0, {0x8, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x8, 0x2, 0x0, 0x1, [@nested={0x4, 0x12}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20001}, 0xc000)
openat$nullb(0xffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0)
io_setup(0x30, &(0x7f0000000600)=<r6=>0x0)
pipe2$9p(&(0x7f0000000300), 0x4000)
r7 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r6, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r7, &(0x7f00000000c0)="01", 0x24}])
bpf$MAP_CREATE(0x0, 0x0, 0x0)

4.904916764s ago: executing program 3 (id=1830):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100002e0001b7b700000000"], 0x114}], 0x1, 0x0, 0x0, 0x80}, 0x810)
recvmmsg(r0, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x40000000, 0x0)

4.841664439s ago: executing program 3 (id=1831):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={0x60, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x20, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x60}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
r4 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000004700)={'team0\x00', <r9=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r7, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)={0x60, r8, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r9}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$cdc_ncm(0x1, 0x0, 0x0, 0x0)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480f0000005e140602000000000e000a001000000002800000121f", 0x2e}], 0x1}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r9, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)
r11 = socket$netlink(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r11, &(0x7f0000000080)={0x0, 0x3f00, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r12, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

4.594230693s ago: executing program 1 (id=1832):
r0 = fsopen(&(0x7f0000000040)='f2fs\x00', 0x1)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x1e, 0x1, 0x0)
connect$tipc(r4, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x1, {0x1, 0x1, 0x2}}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r6=>0x0})
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r9 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x101121)
close_range(r5, r7, 0x2)
r10 = dup(r9)
write$6lowpan_enable(r10, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$LOOP_CHANGE_FD(r10, 0x4c06, 0xffffffffffffffff)
r11 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r10}, &(0x7f0000000180)=<r12=>0x0, &(0x7f00000001c0)=<r13=>0x0)
r14 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r14, 0x0, 0x0)
syz_io_uring_submit(r12, r13, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r9})
io_uring_enter(r11, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000022c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="1000797fef152423", @ANYRES32=r6, @ANYBLOB='\b\x00\r\x00\x00\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x814}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="254b9eb68d1a29f5d5a1f1458c00", @ANYRES16=r1, @ANYBLOB="010000000000030000000200000008000300", @ANYRES32=0x0, @ANYBLOB="0c00990008000000630000000800269d3d2a5800"], 0x30}}, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000100)='test_dummy_encryption', &(0x7f0000000240)='v2\x00ul\x00\x00\x00\x00\x00loc\x8d\x8b#\xe0\xb9\xbd\"\xeb.\xc7]\xa67\x97 \xc9\xfc|\x85o7Z\xdc}U\x8c\xdd\n\xaa?4\xafq\x1d\xf6(\xe6\x9em_\x1a\xbfDi\x15\x81\xd47\x8e\x86\xa2u~FC\x9c\xe3\x98\x87\x98\xf7\xa2\xb5\x12\x8cv\xe4_\x91\xa8G!mm\f\xcf\xfb[\xd5Qf\x15\xfe\xc80\xad\xaa\xe9', 0x0)

4.430158395s ago: executing program 5 (id=1833):
socket$nl_route(0x10, 0x3, 0x0)
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
close(r1)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100002e0001b7b70000000000000001"], 0x114}], 0x1, 0x0, 0x0, 0x80}, 0x810)
recvmmsg(r2, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x40000000, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00#\f!\x00'})
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r5, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x0, @remote}, {0xa, 0x4e22, 0x0, @mcast1}}, 0x5c)
r6 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r6, &(0x7f00000001c0)={0x1f, @none, 0x1}, 0xa)
listen(0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="1400000034000701fcffffff00000000017c00000e92d2a51ee9c95592df6907c37102521ed11c296ad340d4b241ff9da63ba73a50417b6ec1f3663a2c85fc661a6f6559e868b38ec0307ad0d0bad8a32207a82835af41a07359ec71a652f3adc94e830ee4f1e11a583504be119e52722789782aaf44ade4663846e3dc6e22a01594d91ff02e9973f0622f12e5100ec602eb5b7967e7efbe268fc5acb50423eb83a03c30dee95b0bfbc18c64c235e2cec6853da93a2d00b2d2f31298eca2a0fc"], 0x14}, 0x1, 0x0, 0x0, 0x488c0}, 0x4c044)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x20004000)
r8 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x4, 0x85}, 0x0, &(0x7f0000000280))
io_uring_register$IORING_REGISTER_FILES(r8, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)

4.173340706s ago: executing program 0 (id=1834):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r1, 0x84, 0x7d, &(0x7f0000000000)="03020000008002ff", 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x804)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
sendmmsg$inet(r3, &(0x7f0000001540)=[{{0x0, 0x5b, 0x0}}], 0x800000000000214, 0x20000001)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000008600)={0x2c, 0x3e, 0x107, 0xfffffffe, 0x0, {0x8, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x8, 0x2, 0x0, 0x1, [@nested={0x4, 0x12}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20001}, 0xc000)
openat$nullb(0xffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0)
io_setup(0x30, &(0x7f0000000600)=<r5=>0x0)
pipe2$9p(&(0x7f0000000300), 0x4000)
r6 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r5, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r6, &(0x7f00000000c0)="01", 0x24}])
bpf$MAP_CREATE(0x0, 0x0, 0x0)

3.762554949s ago: executing program 0 (id=1835):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_open_dev$sg(0x0, 0x0, 0x38dd80)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0xc8000)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x24004080)
syz_open_procfs$pagemap(0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/rt_acct\x00')
r2 = socket(0x18, 0x0, 0x1)
connect$pppoe(r2, &(0x7f0000000100)={0x18, 0x0, {0x2, @broadcast, 'vxcan1\x00'}}, 0x1e)
sendfile(r2, r1, 0x0, 0x8)
socket$nl_route(0x10, 0x3, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
sendmsg$sock(r1, &(0x7f0000000cc0)={&(0x7f0000000400)=@qipcrtr={0x2a, 0x3, 0x7fff}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000840)="7fe479e60344153474f5d3078a2094ae66bd8edcbbf6d22071361d973956dbcd56229985426dd79aef7a2c6b1ddcd2c5cfbe3ff63ae56bfc6ed95fd0fab30aa3ed89d445d29153cbddecdec8b9d605a3db8a44e17b4b04ed8624d258eb7ab30d4352963d3cb50c54e62d26", 0x6b}, {&(0x7f00000008c0)="d14090ff5418578c9cff363439722b3fb3ff9764f444da508afe7b3af604c41284318f36303da796b44983ecd59b460f1f53f64ea5e451782f690009948860c35b91cf64f0178edb8ab928", 0x4b}, {&(0x7f0000000940)="8398a5a9498bad8da4ba5049f94c1e3ff65439e55785b892d3f79e9d8ba9dac048e810e6bc273d6981dfca3112407d42a7f17c6132e0183082b78d6e30701a07bbe49ff83955409172373b138546c638131643897af6389689984207b52f612fef8d46abed15bbe1baff899eecf1ab99002f79885120c7eb256828365084b73fc260cee56603f09358b4418717aa8144896148323efcb2520e53ca323da2b6ca5dd3862cce5f6210a9fda1e6e17c1251c071c774b956", 0xb6}, {&(0x7f0000000a00)="88d04a6bd4c5e62ab4bd76899f4cf39a624956e06647011224e5624a4dcf906963444f0ae209cda91c839b6e82f3f3cd56df805b1b8fbd577810afa495dab32c456cd1527c3cdfc3f334b7587e189ad6247fe3b81713bd6d95ffde04dfe5d6bc5897fdad5d40a585ae0b40c26c0c1bd63aea2afff54dbc4febd3583b85", 0x7d}, {&(0x7f0000000a80)="53246089249eb8ee3190907c8f0f51c1150fa118d68ea54c461147ac25933c28e6a6d564a4fa09661d105ec5000429ecaba75cee300ea53b253756bb9d6663e38883ee99d89c3a1ce2dc92663ddfe8576e31a25e4b4d9aba01d58318b18dd7dbfe23b307fb236748cd777ca633cfbadd2fe77999fa31938654a5a69d047df94900d96e3c041597942e4862633482e7a2595a961a2a14bc211020b9e562ff1dee4e6ced436a3b", 0xa6}, {&(0x7f0000000b40)="77b03f362c974a3f68e82b9527eb49f420712193554bde4709edc4adb2ccfa0d856496d1bc1e6c9ffa41ca33ce4d2a9533c4b6ad9771267324b517f18a3efd21949642f824bf2746561237a46204b70ae09b76f2aab3cc8a846d16d59093cc6f3fcaa7e06a2bb4d6bd24761eadff7c4ac25ff46da79e2d4bce372afb8c113ef2ef5bd25ab337f6792fa02182e4f15d9f0367e47e92d7208b493306c8f0568e4b0cf37df9", 0xa4}], 0x6, &(0x7f0000000c40)=[@txtime={{0x14, 0x1, 0x3d, 0x8000000000000800}}, @timestamping={{0x10, 0x1, 0x25, 0x3}}, @timestamping={{0x10, 0x1, 0x25, 0x6}}, @mark={{0x10, 0x1, 0x24, 0xfc000000}}, @mark={{0x10, 0x1, 0x24, 0x15}}], 0x54}, 0x4)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x80242, 0x1df2a23c5997fa7b)
socket$inet6_tcp(0xa, 0x1, 0x0)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000500)={0xa0, 0x0, 0x0, {{0x80000000, 0x3, 0xfffffffffffffffb, 0xfffffffffedfff83, 0x3, 0x1, {0xffffffffffffffff, 0x3ff, 0x20ff, 0x7ff, 0xf7c, 0x800000000000d615, 0x3fb, 0x7fffffff, 0x6, 0x1000, 0x8, 0x0, 0x0, 0x3ff, 0x8ea2}}, {0x0, 0x12}}}, 0xa0)
sendfile(r3, r3, &(0x7f0000000080), 0x7f04)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r4}, 0x10)
kexec_load(0x1, 0x3, &(0x7f0000000280)=[{&(0x7f0000000300)="6ece7c0afafabc0a21335081658eac8b2babd77252488ff8bfd30aa23224f0099d0b858f017bdde0158f6babbb4e7f3617e9f42ab64243a20f31ce2ad7c5858eadf807402a340dc78ac99050825b3101e633a8a4320af15a252ea0285d1db27caf167edc12a4a6ab7c6fe8df9a29ea04de7640fe9a55f9db5456dd87b8aa2abfe157f7d5e90096ad1fa38c6aa6e2dd6993db3a83a065fced312b99ae80275b4a9d8e92a0cf8b3f79d82f5328204d6fe290617331a32c90b00c05511b9e7bf297bb7f3c760288b0073050d5b9", 0xcc, 0xfffe0000, 0x7a02}, {&(0x7f00000006c0)="d48ab1cd2142110bdb5d697b0cc606487b7c8ff24569a404b012162eb93036c8648ddb8256fb61f97f85c63a44c396212567f6f10cf10124b9c5a00d46e850f26d16d4465499303f4465c2c3a1b690b7e62180fa7160b18ab41bf44aaa9d6750471123557666aa371a7a85d871f9fc0b5a7ebee780826993fffa0781baf9e346d40c0694bab41c75a0ea31d566308b105b37feda4019f10be1ca72dbebd7a5b66c2e6eceff29348abeac019458564417d7b7ffcc06d8a471a4", 0xb9, 0x5, 0x6}, {&(0x7f0000000780)="f8a5ae4bb66b9c2489f4c50b67cfd6a55871163cf3bdc28faf2ecc1198a3e7bc310090509e8b0e48f4f3a1e97c274b3a92705bc7aeb3a9bf95a358feee8adab61266385b9559292eb3ddac6464f48745b7b707dc1586634467f28b6269a3e28fa3ea4854c9b3fd3dd1459658125d3bab8a9f131a5d2f3990925714aaa51e8b458a2ca7b4ec3efb97746f9a501eb3432d0af91b3c850df156210f1ae77ade44", 0x9f, 0x3, 0x1f}], 0x2)
r5 = syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502)
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file0\x00')
ioctl$MEDIA_IOC_G_TOPOLOGY(r5, 0xc0487c04, &(0x7f0000000080)={0x0, 0xfffffffffffffd4c, 0x0, 0x0, 0x62, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000200)=[{}, {}, {}, {}], 0xfffffffffffffde0, 0x0, 0x0})

3.610668015s ago: executing program 1 (id=1836):
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r1, 0x0, 0xd}, 0x18)
syz_genetlink_get_family_id$smc(&(0x7f00000003c0), 0xffffffffffffffff)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000001c0), 0x4)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$kcm(0x29, 0x2, 0x0)
sendmsg$inet(r4, 0x0, 0x8040)
close(r4)
getsockopt$llc_int(r3, 0x10c, 0x7, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a01000000000000000000010000000900010073797a30000000000900020073797a300000000040000380080001400000000008000240000000002c0003801400010063616966300000000000000000000000140001006d6163766c616e3100000000000000005c000000160a0101000b0000"], 0x110}}, 0x800)
sendmsg$NFT_BATCH(r5, 0x0, 0x0)
connect$bt_l2cap(r2, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
r7 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f0000000100)={r2, r2, 0x8, 0x0, 0x0, 0x82, 0x4a, 0x15c2, 0x5886, 0x801, 0x0, 0x9, 'syz0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
shutdown(r2, 0x1)
r8 = socket(0x15, 0x5, 0x0)
getsockopt(r8, 0x200000000114, 0x2717, 0x0, &(0x7f00000000c0))
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a00034002c3000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4ed", 0xcb}], 0x1}, 0x60044884)
r9 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r9, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r9, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r10 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r10, &(0x7f0000000280)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x1}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r10, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1, 0x1}, 0x10)

3.524667764s ago: executing program 1 (id=1837):
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0x0, 0x60, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0xef92, 0x0, 0x0, 0x0)
r6 = openat$misdntimer(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
readv(r6, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfdffa000)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r7, &(0x7f0000000000)="fa", 0xfffffdef)
pipe(&(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
splice(r11, 0x0, r9, 0x0, 0x2, 0x0)
fcntl$setstatus(r9, 0x4, 0x2000)
vmsplice(r8, &(0x7f0000000180)=[{&(0x7f0000000080)="a1", 0x1}], 0x1, 0x8)
write$binfmt_elf64(r10, &(0x7f0000000000)=ANY=[], 0x18c6)
sysinfo(0x0)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0x0, 0x60, &(0x7f00000007c0)={'filter\x00', 0x7, 0x4, 0x3d8, 0x218, 0x218, 0x10c, 0x2f8, 0x2f8, 0x2f8, 0x4, 0x0, {[{{@arp={@local, @rand_addr=0x64010102, 0xffffffff, 0xff000000, 0x5, 0x0, {@mac, {[0x0, 0xff, 0x0, 0xff, 0xff]}}, {@empty, {[0x0, 0x0, 0xff]}}, 0x3, 0x7, 0x7fff, 0x0, 0x9, 0x1, 'ip6erspan0\x00', 'syz_tun\x00', {}, {}, 0x0, 0x2}, 0xbc, 0x10c}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@broadcast, @empty, @private=0xa010101, @multicast2, 0x7}}}, {{@uncond, 0xbc, 0x10c}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@local, @remote, @multicast2, 0x8, 0x1}}}, {{@uncond, 0xbc, 0xe0}, @unspec=@AUDIT={0x24, 'AUDIT\x00', 0x0, {0x1}}}], {{'\x00', 0xbc, 0xe0}, {0x24}}}}, 0x424)
ioctl$TFD_IOC_SET_TICKS(r1, 0x40085400, 0x0)
r12 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r13, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r13, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @target={{0xb}, @void}}, {0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_ID={0x8}]}], {0x14}}, 0x74}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendto$inet6(r12, &(0x7f0000000080)="b3019c28", 0x4, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2}, 0x1c)
setsockopt$inet6_int(r12, 0x29, 0x33, &(0x7f0000000140)=0x10001, 0x4)

3.299058437s ago: executing program 3 (id=1838):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xff72, &(0x7f0000000180)={&(0x7f0000000100)={0x34, 0x3e, 0x107, 0x3, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x84;'}]}, @nested={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x17}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc080)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f0000000240)={0x210, r1, 0x8, 0x70bd2b, 0x25dfdbfe, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x800}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8001}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xf}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x400}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7d}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x579}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x71c}]}, @TIPC_NLA_LINK={0x64, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x9}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}]}, @TIPC_NLA_NODE={0xb8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x51, 0x3, "af111e601443584dc90ac07a0efca4cc71428fb499f41650f1c2119b7e28a4833477f186bc260c9764d189e39960f6b0af2fe9782f02a2a11aaa63f27449062d5dbdf3fc608d01e3e221d31c72"}, @TIPC_NLA_NODE_ID={0x3e, 0x3, "870856074d1535b9d5006cbded5f4a381d2c89ceb5607a313207a549a4ef23ae656b9ee7ab49e611b5b5b2a8821cbbac0fbd35c7c641f4381e33"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xffff}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xe00}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x10001}]}, @TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_MEDIA={0x38, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x97}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x210}, 0x1, 0x0, 0x0, 0x1}, 0x20000010)
creat(&(0x7f0000000080)='./file0\x00', 0xa)
pipe2$9p(&(0x7f00000001c0), 0x0)
socket(0x1d, 0x2, 0x6)
socket$igmp6(0xa, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xfe5d, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000280), 0x3, 0x389001)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r5, 0x400455c8, 0x4)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000180))
r7 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$USBDEVFS_CONTROL(r6, 0xc0105500, &(0x7f0000000500)={0x40, 0xf, 0x5, 0x1ff, 0x0, 0x5, 0x0})
ioctl$SNDCTL_DSP_CHANNELS(r7, 0xc0045006, &(0x7f0000000080)=0x7f)
ioctl$SNDCTL_DSP_SPEED(r7, 0xc0045002, &(0x7f0000000000)=0x40000001)

3.028930619s ago: executing program 5 (id=1839):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100002e0001b7b7000000000000"], 0x114}], 0x1, 0x0, 0x0, 0x80}, 0x810)
recvmmsg(r0, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x40000000, 0x0)

2.95195821s ago: executing program 5 (id=1840):
socket$nl_route(0x10, 0x3, 0x0)
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
close(r1)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100002e0001b7b70000000000000001"], 0x114}], 0x1, 0x0, 0x0, 0x80}, 0x810)
recvmmsg(r2, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x40000000, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00#\f!\x00'})
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r5, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x0, @remote}, {0xa, 0x4e22, 0x0, @mcast1}}, 0x5c)
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
listen(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0xa17, &(0x7f0000000200)={0x0, 0xcc75, 0x400, 0x3, 0x4}, &(0x7f0000000140), &(0x7f0000000280))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="1400000034000701fcffffff00000000017c00000e92d2a51ee9c95592df6907c37102521ed11c296ad340d4b241ff9da63ba73a50417b6ec1f3663a2c85fc661a6f6559e868b38ec0307ad0d0bad8a32207a82835af41a07359ec71a652f3adc94e830ee4f1e11a583504be119e52722789782aaf44ade4663846e3dc6e22a01594d91ff02e9973f0622f12e5100ec602eb5b7967e7efbe268fc5acb50423eb83a03c30dee95b0bfbc18c64c235e2cec6853da93a2d00b2d2f31298eca2a0fc"], 0x14}, 0x1, 0x0, 0x0, 0x488c0}, 0x4c044)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x20004000)
r7 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x4, 0x85}, 0x0, &(0x7f0000000280))
io_uring_register$IORING_REGISTER_FILES(r7, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)

2.678481807s ago: executing program 0 (id=1841):
r0 = fsopen(&(0x7f0000000040)='f2fs\x00', 0x1)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x1e, 0x1, 0x0)
connect$tipc(r4, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x1, {0x1, 0x1, 0x2}}, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r6=>0x0})
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r9 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x101121)
close_range(0xffffffffffffffff, r7, 0x2)
r10 = dup(r9)
write$6lowpan_enable(r10, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$LOOP_CHANGE_FD(r10, 0x4c06, 0xffffffffffffffff)
r11 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r10}, &(0x7f0000000180)=<r12=>0x0, &(0x7f00000001c0)=<r13=>0x0)
r14 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r14, 0x0, 0x0)
syz_io_uring_submit(r12, r13, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r9})
io_uring_enter(r11, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000022c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="1000797fef152423", @ANYRES32=r6, @ANYBLOB='\b\x00\r\x00\x00\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x814}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="254b9eb68d1a29f5d5a1f1458c00", @ANYRES16=r1, @ANYBLOB="010000000000030000000200000008000300", @ANYRES32=0x0, @ANYBLOB="0c00990008000000630000000800269d3d2a5800"], 0x30}}, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000100)='test_dummy_encryption', &(0x7f0000000240)='v2\x00ul\x00\x00\x00\x00\x00loc\x8d\x8b#\xe0\xb9\xbd\"\xeb.\xc7]\xa67\x97 \xc9\xfc|\x85o7Z\xdc}U\x8c\xdd\n\xaa?4\xafq\x1d\xf6(\xe6\x9em_\x1a\xbfDi\x15\x81\xd47\x8e\x86\xa2u~FC\x9c\xe3\x98\x87\x98\xf7\xa2\xb5\x12\x8cv\xe4_\x91\xa8G!mm\f\xcf\xfb[\xd5Qf\x15\xfe\xc80\xad\xaa\xe9', 0x0)

2.451542903s ago: executing program 1 (id=1842):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000080)=0x2, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_setup(0x10b, &(0x7f0000000580)={0x0, 0x2127, 0x1000, 0x3, 0x14e}, &(0x7f0000000040), 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f00000009c0)=ANY=[@ANYBLOB, @ANYRES32=0x0], 0xcc}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x51e1, 0x3ff)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, 0x0, 0x0, 0x700, 0x0)
sendfile(r3, r2, 0x0, 0x578410eb)
socket$kcm(0x10, 0x2, 0x0)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
acct(&(0x7f00000001c0)='./file0\x00')
acct(0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
socket$inet6(0xa, 0x80002, 0x0)
socket$inet6(0xa, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)

1.871914859s ago: executing program 1 (id=1843):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r1, 0x84, 0x7d, &(0x7f0000000000)="03020000008002ff", 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x804)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
sendmmsg$inet(r3, &(0x7f0000001540)=[{{0x0, 0x5b, 0x0}}], 0x800000000000214, 0x20000001)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000008600)={0x2c, 0x3e, 0x107, 0xfffffffe, 0x0, {0x8, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x8, 0x2, 0x0, 0x1, [@nested={0x4, 0x12}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20001}, 0xc000)
openat$nullb(0xffffff9c, &(0x7f00000000c0), 0x224400, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020800000100000000000001000000000100140003"], 0x18}}, 0x0)
io_setup(0x30, &(0x7f0000000600)=<r5=>0x0)
pipe2$9p(&(0x7f0000000300), 0x4000)
r6 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r5, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r6, &(0x7f00000000c0)="01", 0x24}])
bpf$MAP_CREATE(0x0, 0x0, 0x0)

1.795318759s ago: executing program 5 (id=1844):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000033922d2fd04dd3e77e3e6a94a8dd96e2dbb7f618e59e870000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000ffffffff00"/28], 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/rcu_expedited', 0x48a82, 0x9)
write$P9_RGETLOCK(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="2d000000370100000700000000000000090000000069630097c1289a111e8e46680826462755cf3df4de39ef9fc049f1e90de94ac3041f27307c8260f467874b593204eadd4d5b9187d4009e22e853c4594450a5b5b63f72fe249d4770e2cacf6f004bb6368eb845bd410d8534bace9c9e00"/126, @ANYRES32=0x0, @ANYBLOB="0f006e65746c696e6b5f65787461636b00"], 0x2d)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
close(r1)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r3 = fanotify_init(0x200, 0x40000)
fanotify_mark(r3, 0x1, 0x48000003, r2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r4}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = creat(&(0x7f0000000180)='./cgroup.cpu/cgroup.procs\x00', 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x12, r6, 0x0)
r7 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f0000000080))
ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000340)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}, 0x1})
write$UHID_CREATE2(r6, &(0x7f0000000340)=ANY=[], 0x118)
ioctl$UFFDIO_ZEROPAGE(r7, 0xc020aa07, &(0x7f0000000280)={{&(0x7f0000ffc000/0x2000)=nil, 0x2000}})
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r5}}, 0x58)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
writev(r8, &(0x7f0000000140)=[{&(0x7f0000000080)}], 0x1)

790.177039ms ago: executing program 1 (id=1845):
socket$nl_route(0x10, 0x3, 0x0)
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
close(r1)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100002e0001b7b70000000000000001"], 0x114}], 0x1, 0x0, 0x0, 0x80}, 0x810)
recvmmsg(r2, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x40000000, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00#\f!\x00'})
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r5, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x0, @remote}, {0xa, 0x4e22, 0x0, @mcast1}}, 0x5c)
r6 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r6, &(0x7f00000001c0)={0x1f, @none, 0x1}, 0xa)
syz_io_uring_setup(0xa17, &(0x7f0000000200)={0x0, 0xcc75, 0x400, 0x3, 0x4}, &(0x7f0000000140), &(0x7f0000000280))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="1400000034000701fcffffff00000000017c00000e92d2a51ee9c95592df6907c37102521ed11c296ad340d4b241ff9da63ba73a50417b6ec1f3663a2c85fc661a6f6559e868b38ec0307ad0d0bad8a32207a82835af41a07359ec71a652f3adc94e830ee4f1e11a583504be119e52722789782aaf44ade4663846e3dc6e22a01594d91ff02e9973f0622f12e5100ec602eb5b7967e7efbe268fc5acb50423eb83a03c30dee95b0bfbc18c64c235e2cec6853da93a2d00b2d2f31298eca2a0fc"], 0x14}, 0x1, 0x0, 0x0, 0x488c0}, 0x4c044)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x20004000)
r8 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x4, 0x85}, 0x0, &(0x7f0000000280))
io_uring_register$IORING_REGISTER_FILES(r8, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)

751.661396ms ago: executing program 5 (id=1846):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x5, 0x9, 0xcd}, 0x50)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x100004, 0xffff, 0xb, 0x1, 0x1, 0x1}, 0x50)
r6 = syz_open_procfs(0xffffffffffffffff, 0x0)
preadv(r6, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, r5}, 0x38)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x44, 0x0, 0x20, 0x70bd2d, 0x25dfdbfc, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x3}}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x1)
sendmsg$nl_generic(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB="b40000001900010000000000000000001d0109004d0011806f9886ff8308eb1d7c03414adb7fa1c790a421ea2a089f6ab00ada4e5605b2e72655b3cc4c48e609000cf5329cb7f1821ec7ecca1db0eb2d7144f29af11fe655838a74d923d12c78e80000004d0010"], 0xb4}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x44}}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\t\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000c32c4ca828dc235959d6ef7a55ed3f810884233b63022bedfccbe9c5365ec3ba836a740448bcb6e405000000d3b7cd6e0fc22999eff1e1728c6f09008c22e36be211cfa3a24c384a907bd4664105569a3ae590ed2e7cca8fef981450518445e5bb57b2f125d8a1e24a50b4ecabee3a04a8636f2579f18b4b685d6f31721aa8fc622704e9c7c8cd43ac19b0d720b3a8b875a6ea01e2ac9c5786ee5322b735895e8a2ea3c811b694b53bd231028891d149cc88734e236e734a873095bc9dfc51e6d97f16a9d1d4926e5c7e3b694eef81dfca21de8183827ddb5102a97f42f8ba74aedd574de2ab59e5a02e731cdbbd09c3ae70da14e0f222e85902af2c8dceffdbcf03f7da50"], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r10 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x3)
execveat(r10, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f00000059c0)='./file0\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r9}, 0x10)

744.862671ms ago: executing program 0 (id=1847):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000080)={{0x3, 0x1}})
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)
ioctl$SNDRV_TIMER_IOCTL_STOP(r1, 0x54a1)
r2 = dup(r0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r3 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
write$USERIO_CMD_REGISTER(r3, &(0x7f00000020c0)={0x0, 0x2}, 0x2)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r4, 0xc06864b8, 0x0)
syz_io_uring_setup(0x8005e2, &(0x7f0000000340)={0x0, 0xaf0a, 0x1000, 0xa, 0x200000, 0x0, r2}, &(0x7f0000000440)=<r5=>0x0, &(0x7f0000000140))
socket$inet_sctp(0x2, 0x5, 0x84)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0601, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000003c0)=0x14)
r7 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
r8 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x0}, 0x0, 0x0, r7)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x8001af84, 0x0)
pipe2$watch_queue(&(0x7f00000003c0)={<r9=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r7, r9, 0x1e)
r10 = add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f0000000280)={'fscrypt:', @auto=[0x36, 0x30, 0x0, 0x0, 0x61, 0x0, 0x0, 0x38, 0x65, 0x0, 0x64, 0x35, 0x0, 0xd, 0x65]}, &(0x7f0000000180)={0x0, "de8d0d27ca969fa15f8b3b7bae39c1b3327d4332f8c149d2d65a347d67f6db7eb90dfdad3cdebaaf421412f812305c9da91699b5a02c1295596f0fd9ec78f2fd", 0x2d}, 0x48, r7)
keyctl$KEYCTL_MOVE(0x1e, r10, r7, r8, 0x0)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000180)={0x0, 0x0, 0x1000000, 0x9, 0x0, 0x5})
syz_io_uring_submit(r5, 0x0, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
io_uring_enter(0xffffffffffffffff, 0xa3d, 0x0, 0x0, 0x0, 0x0)
r11 = mq_open(&(0x7f000084dff0)='!sali\x1cqxte&\xac\xe87x\x00', 0x6e93ebbbcc0884f2, 0x12e, &(0x7f0000000300)={0xfffffffe, 0x1, 0x7, 0x200000})
madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x14)
mq_timedsend(r11, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 3 (id=1848):
socket$nl_route(0x10, 0x3, 0x0)
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
close(r1)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100002e0001b7b70000000000000001"], 0x114}], 0x1, 0x0, 0x0, 0x80}, 0x810)
recvmmsg(r2, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x40000000, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00#\f!\x00'})
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r5, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x0, @remote}, {0xa, 0x4e22, 0x0, @mcast1}}, 0x5c)
r6 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r6, &(0x7f00000001c0)={0x1f, @none, 0x1}, 0xa)
syz_io_uring_setup(0xa17, &(0x7f0000000200)={0x0, 0xcc75, 0x400, 0x3, 0x4}, &(0x7f0000000140), &(0x7f0000000280))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="1400000034000701fcffffff00000000017c00000e92d2a51ee9c95592df6907c37102521ed11c296ad340d4b241ff9da63ba73a50417b6ec1f3663a2c85fc661a6f6559e868b38ec0307ad0d0bad8a32207a82835af41a07359ec71a652f3adc94e830ee4f1e11a583504be119e52722789782aaf44ade4663846e3dc6e22a01594d91ff02e9973f0622f12e5100ec602eb5b7967e7efbe268fc5acb50423eb83a03c30dee95b0bfbc18c64c235e2cec6853da93a2d00b2d2f31298eca2a0fc"], 0x14}, 0x1, 0x0, 0x0, 0x488c0}, 0x4c044)
sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x20004000)
r8 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x4, 0x85}, 0x0, &(0x7f0000000280))
io_uring_register$IORING_REGISTER_FILES(r8, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)

kernel console output (not intermixed with test programs):

v1 removed
[  423.880133][T11421] team0: Mode changed to "loadbalance"
[  423.885061][T11421] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1101'.
[  424.304837][T11431] wireguard0: entered promiscuous mode
[  424.309616][T11431] wireguard0: entered allmulticast mode
[  424.818706][ T6359] hid-generic 0000:0000:0000.0094: unknown main item tag 0x0
[  424.821930][ T6359] hid-generic 0000:0000:0000.0094: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  425.810975][T11452] comedi comedi0: Minor 7 could not be opened
[  426.441051][   T61] hid-generic 0000:0000:0000.0095: unknown main item tag 0x0
[  426.450173][   T61] hid-generic 0000:0000:0000.0095: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  427.454238][T11472] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  428.184558][T11486] tipc: Started in network mode
[  428.186585][T11486] tipc: Node identity 4, cluster identity 4711
[  428.189101][T11486] tipc: Node number set to 4
[  428.376281][T11480] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  428.473387][T11488] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1115'.
[  428.477229][T11488] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1115'.
[  428.583993][ T6359] hid-generic 0000:0000:0000.0096: unknown main item tag 0x0
[  428.595289][ T6359] hid-generic 0000:0000:0000.0096: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  429.917571][T11505] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  430.069594][   T72] hid-generic 0000:0000:0000.0097: unknown main item tag 0x0
[  430.075187][   T72] hid-generic 0000:0000:0000.0097: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  430.725159][T11516] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  430.728179][T11516] IPv6: NLM_F_CREATE should be set when creating new route
[  432.245574][T11524] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  433.657951][T11537] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1128'.
[  434.252866][T11542] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  435.381954][T11541] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1129'.
[  435.385998][T11541] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1129'.
[  435.719937][T11560] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1133'.
[  435.800410][   T40] kauditd_printk_skb: 94 callbacks suppressed
[  435.800426][   T40] audit: type=1326 audit(1756668925.753:1359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.2.1134" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  435.814883][   T40] audit: type=1326 audit(1756668925.753:1360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.2.1134" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  435.833442][   T40] audit: type=1326 audit(1756668925.753:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.2.1134" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf707e579 code=0x7ffc0000
[  435.856678][    T9] hid-generic 0000:0000:0000.0098: unknown main item tag 0x0
[  435.862395][    T9] hid-generic 0000:0000:0000.0098: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  435.863190][   T83] Bluetooth: hci4: Frame reassembly failed (-84)
[  435.864693][   T40] audit: type=1326 audit(1756668925.753:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.2.1134" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  435.864741][   T40] audit: type=1326 audit(1756668925.753:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.2.1134" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  435.864778][   T40] audit: type=1326 audit(1756668925.753:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.2.1134" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf707e579 code=0x7ffc0000
[  435.864813][   T40] audit: type=1326 audit(1756668925.753:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.2.1134" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  435.864850][   T40] audit: type=1326 audit(1756668925.753:1366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.2.1134" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  435.864887][   T40] audit: type=1326 audit(1756668925.753:1367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.2.1134" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf707e579 code=0x7ffc0000
[  435.864922][   T40] audit: type=1326 audit(1756668925.753:1368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11558 comm="syz.2.1134" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  437.538168][T11574] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  437.769463][ T6212] hid-generic 0000:0000:0000.0099: unknown main item tag 0x0
[  437.807025][ T6212] hid-generic 0000:0000:0000.0099: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  437.854565][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  438.156450][T11585] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  438.338727][T11589] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  438.691486][T11596] ubi: mtd0 is already attached to ubi31
[  438.827535][T11598] tipc: Started in network mode
[  438.836036][T11598] tipc: Node identity 4, cluster identity 4711
[  438.843079][T11598] tipc: Node number set to 4
[  439.534934][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  441.067105][T11629] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1148'.
[  441.454019][T11631] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  441.456647][T11631] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  441.459805][T11631] vhci_hcd vhci_hcd.0: Device attached
[  441.721997][T11632] vhci_hcd: connection closed
[  441.722149][   T60] vhci_hcd: stop threads
[  441.725115][   T60] vhci_hcd: release socket
[  441.726541][   T60] vhci_hcd: disconnect device
[  441.780923][ T6402] usb 43-1: new low-speed USB device number 3 using vhci_hcd
[  441.783509][ T6402] usb 43-1: enqueue for inactive port 0
[  441.854419][ T6402] vhci_hcd: vhci_device speed not set
[  442.207750][   T40] kauditd_printk_skb: 35 callbacks suppressed
[  442.207763][   T40] audit: type=1326 audit(1756668932.163:1404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.0.1150" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  442.218877][   T40] audit: type=1326 audit(1756668932.163:1405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.0.1150" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  442.226208][   T40] audit: type=1326 audit(1756668932.163:1406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.0.1150" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  442.233041][   T40] audit: type=1326 audit(1756668932.163:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.0.1150" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  442.263895][   T40] audit: type=1326 audit(1756668932.183:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.0.1150" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  442.272054][   T40] audit: type=1326 audit(1756668932.183:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.0.1150" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  442.280104][   T40] audit: type=1326 audit(1756668932.183:1410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.0.1150" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  442.287481][   T40] audit: type=1326 audit(1756668932.183:1411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.0.1150" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  442.294236][   T40] audit: type=1326 audit(1756668932.183:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.0.1150" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  442.301307][   T40] audit: type=1326 audit(1756668932.183:1413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11635 comm="syz.0.1150" exe="/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  442.315723][   T60] Bluetooth: hci4: Frame reassembly failed (-84)
[  442.423660][   T72] hid-generic 0000:0000:0000.009A: unknown main item tag 0x0
[  442.450664][   T72] hid-generic 0000:0000:0000.009A: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  443.315207][T11649] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  444.314475][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  444.315981][ T5978] Bluetooth: hci4: command 0x1003 tx timeout
[  444.543429][ T6025] hid-generic 0000:0000:0000.009B: unknown main item tag 0x0
[  444.548837][ T6025] hid-generic 0000:0000:0000.009B: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  445.926165][T11685] wireguard0: entered promiscuous mode
[  445.928086][T11685] wireguard0: entered allmulticast mode
[  445.946859][T11693] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1162'.
[  446.263237][   T72] hid-generic 0000:0000:0000.009C: unknown main item tag 0x0
[  446.279630][   T72] hid-generic 0000:0000:0000.009C: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  446.846446][T11699] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  447.126361][ T6025] hid-generic 0000:0000:0000.009D: unknown main item tag 0x0
[  447.525395][ T6025] hid-generic 0000:0000:0000.009D: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  447.967303][T11713] fido_id[11713]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  449.954062][ T6025] hid-generic 0000:0000:0000.009E: unknown main item tag 0x0
[  450.019513][ T6025] hid-generic 0000:0000:0000.009E: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  450.698063][T11741] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  450.933557][T11743] trusted_key: encrypted_key: insufficient parameters specified
[  450.950841][ T6359] hid-generic 0000:0000:0000.009F: unknown main item tag 0x0
[  450.979791][ T6359] hid-generic 0000:0000:0000.009F: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  451.285352][T11756] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1177'.
[  451.288841][T11756] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1177'.
[  452.968199][T11771] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1180'.
[  453.139031][T11770] : entered promiscuous mode
[  453.682149][T11681] Set syz1 is full, maxelem 65536 reached
[  459.675071][T11848] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  459.948183][T11857] wireguard0: entered promiscuous mode
[  459.950010][T11857] wireguard0: entered allmulticast mode
[  461.036376][T11875] tipc: Started in network mode
[  461.038514][T11875] tipc: Node identity 4, cluster identity 4711
[  461.041173][T11875] tipc: Node number set to 4
[  462.291070][   T61] hid-generic 0000:0000:0000.00A0: unknown main item tag 0x0
[  462.352632][   T61] hid-generic 0000:0000:0000.00A0: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  464.225719][   T40] kauditd_printk_skb: 37 callbacks suppressed
[  464.225730][   T40] audit: type=1326 audit(1756668954.103:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11904 comm="syz.1.1212" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  464.237050][ T1147] Bluetooth: hci4: Frame reassembly failed (-84)
[  464.347494][   T40] audit: type=1326 audit(1756668954.103:1452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11904 comm="syz.1.1212" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf711e579 code=0x7ffc0000
[  464.358181][   T40] audit: type=1326 audit(1756668954.103:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11904 comm="syz.1.1212" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  464.375591][   T40] audit: type=1326 audit(1756668954.103:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11904 comm="syz.1.1212" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf711e579 code=0x7ffc0000
[  464.382494][   T40] audit: type=1326 audit(1756668954.103:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11904 comm="syz.1.1212" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  464.396845][   T40] audit: type=1326 audit(1756668954.103:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11904 comm="syz.1.1212" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf711e579 code=0x7ffc0000
[  464.403616][   T40] audit: type=1326 audit(1756668954.103:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11904 comm="syz.1.1212" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  464.414574][   T40] audit: type=1326 audit(1756668954.103:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11904 comm="syz.1.1212" exe="/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf711e579 code=0x7ffc0000
[  464.425811][   T40] audit: type=1326 audit(1756668954.103:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11904 comm="syz.1.1212" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  464.432565][   T40] audit: type=1326 audit(1756668954.103:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11904 comm="syz.1.1212" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf711e579 code=0x7ffc0000
[  464.686829][T11920] wireguard0: entered promiscuous mode
[  464.689273][T11920] wireguard0: entered allmulticast mode
[  465.964656][   T24] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  466.125843][   T24] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  466.129809][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  466.133257][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  466.138167][   T24] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  466.143604][   T24] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  466.148576][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  466.158042][   T24] usb 7-1: config 0 descriptor??
[  466.244617][ T5978] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  466.600269][   T24] plantronics 0003:047F:FFFF.00A1: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  466.929740][T11959] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  467.401908][   T24] usb 7-1: USB disconnect, device number 7
[  467.416876][T11966] team0: Mode changed to "loadbalance"
[  467.422121][T11966] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1221'.
[  467.427913][T11968] random: crng reseeded on system resumption
[  468.606400][T11988] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  469.252578][   T40] kauditd_printk_skb: 20 callbacks suppressed
[  469.252597][   T40] audit: type=1326 audit(1756668959.183:1481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  469.275136][   T40] audit: type=1326 audit(1756668959.183:1482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  469.283656][   T40] audit: type=1326 audit(1756668959.183:1483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf708e579 code=0x7ffc0000
[  469.293253][   T40] audit: type=1326 audit(1756668959.183:1484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  469.304456][   T40] audit: type=1326 audit(1756668959.183:1485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  469.317882][   T40] audit: type=1326 audit(1756668959.193:1486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf708e579 code=0x7ffc0000
[  469.325595][   T40] audit: type=1326 audit(1756668959.193:1487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  469.332013][   T40] audit: type=1326 audit(1756668959.193:1488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  469.338657][   T40] audit: type=1326 audit(1756668959.193:1489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf708e579 code=0x7ffc0000
[  469.345473][   T40] audit: type=1326 audit(1756668959.193:1490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  469.956487][    T9] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  470.150609][ T6769] hid-generic 0000:0000:0000.00A2: unknown main item tag 0x0
[  470.165182][ T6769] hid-generic 0000:0000:0000.00A2: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  470.351032][    T9] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  470.744129][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  470.747419][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  470.750186][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  470.755288][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  470.758423][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  470.761437][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  470.764640][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  470.767838][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  470.770608][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  470.773536][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  470.776796][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  470.779557][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  470.782382][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  470.794604][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  470.804422][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  470.817436][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  470.820576][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  470.823303][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  470.833045][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  470.836235][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  470.839016][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  470.841848][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  470.845103][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  470.847928][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  470.865984][    T9] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  470.868936][    T9] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  470.871581][    T9] usb 5-1: Product: syz
[  470.872932][    T9] usb 5-1: Manufacturer: syz
[  470.875226][    T9] usb 5-1: SerialNumber: syz
[  470.879918][    T9] usb 5-1: config 0 descriptor??
[  470.889262][    T9] yurex 5-1:0.0: Could not find endpoints
[  471.199263][    T9] usb 5-1: USB disconnect, device number 5
[  472.406764][T12041] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1238'.
[  473.761417][   T61] hid-generic 0000:0000:0000.00A3: unknown main item tag 0x0
[  473.766103][   T61] hid-generic 0000:0000:0000.00A3: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  474.041189][T12064] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1243'.
[  475.574118][T12085] wireguard0: entered promiscuous mode
[  475.576716][T12085] wireguard0: entered allmulticast mode
[  477.166758][   T24] hid-generic 0000:0000:0000.00A4: unknown main item tag 0x0
[  477.171260][   T24] hid-generic 0000:0000:0000.00A4: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  477.483310][T12109] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(16)
[  477.485877][T12109] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  477.488767][T12109] vhci_hcd vhci_hcd.0: Device attached
[  477.512510][T12109] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(18)
[  477.514950][T12109] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  477.517904][T12109] vhci_hcd vhci_hcd.0: Device attached
[  477.526639][T12109] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(20)
[  477.528702][T12109] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  477.531124][T12109] vhci_hcd vhci_hcd.0: Device attached
[  477.552355][T12109] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  477.558940][T12109] vhci_hcd vhci_hcd.0: pdev(3) rhport(4) sockfd(25)
[  477.561465][T12109] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  477.565369][T12109] vhci_hcd vhci_hcd.0: Device attached
[  477.569652][T12109] vhci_hcd vhci_hcd.0: pdev(3) rhport(5) sockfd(27)
[  477.572293][T12109] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  477.575503][T12109] vhci_hcd vhci_hcd.0: Device attached
[  477.582439][T12109] vhci_hcd vhci_hcd.0: pdev(3) rhport(6) sockfd(29)
[  477.584738][T12109] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  477.593556][T12109] vhci_hcd vhci_hcd.0: Device attached
[  477.598121][T12109] vhci_hcd vhci_hcd.0: pdev(3) rhport(7) sockfd(31)
[  477.600269][T12109] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  477.612869][T12109] vhci_hcd vhci_hcd.0: Device attached
[  477.617097][T12109] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  477.632144][T12120] vhci_hcd: connection closed
[  477.632252][T12116] vhci_hcd: connection closed
[  477.632486][T12114] vhci_hcd: connection closed
[  477.634415][T12118] vhci_hcd: connection closed
[  477.637887][ T1141] vhci_hcd: stop threads
[  477.638688][T12112] vhci_hcd: connection closed
[  477.640223][T12110] vhci_hcd: connection closed
[  477.642536][ T1141] vhci_hcd: release socket
[  477.646907][ T1141] vhci_hcd: disconnect device
[  477.648610][ T1141] vhci_hcd: stop threads
[  477.649990][ T1141] vhci_hcd: release socket
[  477.651479][ T1141] vhci_hcd: disconnect device
[  477.653085][ T1141] vhci_hcd: stop threads
[  477.654678][ T1141] vhci_hcd: release socket
[  477.656132][ T1141] vhci_hcd: disconnect device
[  477.657741][ T1141] vhci_hcd: stop threads
[  477.659130][ T1141] vhci_hcd: release socket
[  477.660620][ T1141] vhci_hcd: disconnect device
[  477.662478][ T1141] vhci_hcd: stop threads
[  477.664253][ T1141] vhci_hcd: release socket
[  477.666550][ T1141] vhci_hcd: disconnect device
[  477.668373][ T1141] vhci_hcd: stop threads
[  477.670105][ T1141] vhci_hcd: release socket
[  477.671918][ T1141] vhci_hcd: disconnect device
[  477.674823][   T24] vhci_hcd: vhci_device speed not set
[  477.986331][T12130] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1255'.
[  478.018409][T12130] bridge0: entered promiscuous mode
[  478.071034][   T40] kauditd_printk_skb: 24 callbacks suppressed
[  478.071045][   T40] audit: type=1400 audit(1756668968.023:1515): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3A30206B420A4C617A79467265653A202020202020202020202020202030206B420A416E6F6E4875676550616765733A20202020202020202030206B420A53686D656D506D644D61707065643A202020202020202030206B420A46696C65506D644D61707065643A20202020202020202030206B420A5368617265645F48756765746C623A202020202020202030206B420A507269766174 pid=12131 comm="syz.0.1257"
[  478.179121][T12122] vhci_hcd: connection closed
[  478.185201][   T60] vhci_hcd: stop threads
[  478.188801][   T60] vhci_hcd: release socket
[  478.190620][   T60] vhci_hcd: disconnect device
[  478.555974][   T40] audit: type=1326 audit(1756668968.403:1516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12139 comm="syz.0.1259" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  478.636418][   T40] audit: type=1326 audit(1756668968.403:1517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12139 comm="syz.0.1259" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  478.636935][T12145] wireguard0: entered promiscuous mode
[  478.647164][T12145] wireguard0: entered allmulticast mode
[  478.714781][   T40] audit: type=1326 audit(1756668968.403:1518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12139 comm="syz.0.1259" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  478.721446][   T40] audit: type=1326 audit(1756668968.403:1519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12139 comm="syz.0.1259" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  478.850803][   T40] audit: type=1326 audit(1756668968.403:1520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12139 comm="syz.0.1259" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  478.862056][   T40] audit: type=1326 audit(1756668968.413:1521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12139 comm="syz.0.1259" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  478.879589][   T40] audit: type=1326 audit(1756668968.413:1522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12139 comm="syz.0.1259" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  478.887237][   T40] audit: type=1326 audit(1756668968.413:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12139 comm="syz.0.1259" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  478.896452][   T40] audit: type=1326 audit(1756668968.413:1524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12139 comm="syz.0.1259" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  479.869239][T12159] fuse: Unknown parameter 'user_id0000000000000000000000000000000000000000'
[  480.065658][   T61] hid-generic 0000:0000:0000.00A5: unknown main item tag 0x0
[  480.074034][   T61] hid-generic 0000:0000:0000.00A5: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  480.908959][   T29] hid-generic 0000:0000:0000.00A6: unknown main item tag 0x0
[  481.498091][   T29] hid-generic 0000:0000:0000.00A6: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  481.705511][T12176] fido_id[12176]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  481.831711][T12184] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1268'.
[  482.749552][T12204] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1281'.
[  482.803105][T12206] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1273'.
[  483.711500][    T9] hid-generic 0000:0000:0000.00A7: unknown main item tag 0x0
[  483.719930][    T9] hid-generic 0000:0000:0000.00A7: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  484.347912][T12230] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1277'.
[  484.359283][T12230] bridge0: entered promiscuous mode
[  485.309512][T12238] netlink: 'syz.2.1279': attribute type 4 has an invalid length.
[  485.349028][   T29] lo speed is unknown, defaulting to 1000
[  485.353820][   T29] syz2: Port: 1 Link DOWN
[  485.670426][T12246] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  488.724672][    T9] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  488.955214][    T9] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  488.960872][    T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  488.966045][    T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  488.969835][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  488.973506][    T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  488.977199][    T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  488.980198][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  488.983863][    T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  488.988508][    T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  488.992454][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  488.997728][    T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  489.002070][    T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  489.008256][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  489.014081][    T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  489.017783][    T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  489.020865][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  489.024741][    T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  489.028362][    T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  489.031353][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  489.035057][    T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  489.040880][    T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  489.043787][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  489.046759][    T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  489.050040][    T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  489.052885][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  489.058487][    T9] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  489.061949][    T9] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  489.064643][    T9] usb 7-1: Product: syz
[  489.066025][    T9] usb 7-1: Manufacturer: syz
[  489.067562][    T9] usb 7-1: SerialNumber: syz
[  489.071994][    T9] usb 7-1: config 0 descriptor??
[  489.077857][    T9] yurex 7-1:0.0: Could not find endpoints
[  489.361999][   T61] usb 7-1: USB disconnect, device number 8
[  490.394536][T12326] ceph: No mds server is up or the cluster is laggy
[  490.554814][   T29] libceph: connect (1)[c::]:6789 error -101
[  490.593284][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  490.866599][   T29] libceph: connect (1)[c::]:6789 error -101
[  490.869906][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  491.806338][ T6769] hid-generic 0000:0000:0000.00A8: unknown main item tag 0x0
[  491.915672][ T6769] hid-generic 0000:0000:0000.00A8: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  492.049067][T12345] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  492.091572][   T40] kauditd_printk_skb: 29 callbacks suppressed
[  492.091590][   T40] audit: type=1804 audit(1756668982.033:1554): pid=12347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1292" name="/newroot/327/file0" dev="tmpfs" ino=1753 res=1 errno=0
[  492.300710][T12343] /dev/sr0: Can't open blockdev
[  493.797760][   T40] audit: type=1326 audit(1756668983.753:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.3.1300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  493.805574][   T40] audit: type=1326 audit(1756668983.753:1556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.3.1300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  493.813469][   T40] audit: type=1326 audit(1756668983.753:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.3.1300" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf708e579 code=0x7ffc0000
[  493.888274][   T40] audit: type=1326 audit(1756668983.753:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.3.1300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  493.888497][ T1147] Bluetooth: hci4: Frame reassembly failed (-84)
[  493.906442][   T40] audit: type=1326 audit(1756668983.753:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.3.1300" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf708e579 code=0x7ffc0000
[  493.913988][   T40] audit: type=1326 audit(1756668983.753:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.3.1300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  493.924068][   T40] audit: type=1326 audit(1756668983.753:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.3.1300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  493.956547][   T40] audit: type=1326 audit(1756668983.763:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.3.1300" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf708e579 code=0x7ffc0000
[  493.975906][   T40] audit: type=1326 audit(1756668983.763:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.3.1300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  495.284524][    T9] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  495.595248][    T9] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  495.599173][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  495.603140][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  495.609570][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  495.613223][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  495.617537][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  495.621068][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  495.624841][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  495.628891][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  495.632383][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  495.636264][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  495.640222][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  495.643691][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  495.650230][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  495.654403][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  495.661646][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  495.665823][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  495.669922][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  495.673410][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  495.682727][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  495.687293][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  495.690941][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  495.695169][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  495.699159][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  495.703365][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  495.711565][    T9] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  495.716969][    T9] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  495.720247][    T9] usb 6-1: Product: syz
[  495.721684][    T9] usb 6-1: Manufacturer: syz
[  495.723134][    T9] usb 6-1: SerialNumber: syz
[  495.731774][    T9] usb 6-1: config 0 descriptor??
[  495.735337][    T9] yurex 6-1:0.0: Could not find endpoints
[  495.914478][   T63] Bluetooth: hci4: command 0x1003 tx timeout
[  495.918125][ T5978] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  495.984864][   T29] usb 6-1: USB disconnect, device number 4
[  496.588809][T12394] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  497.399198][T12411] siw: device registration error -23
[  497.422196][T12411] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1314'.
[  498.591700][T12433] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  499.645071][T12442] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1328'.
[  500.124476][    T9] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  500.957325][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  501.234909][T12454] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  501.263831][    T9] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  501.272067][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  501.276568][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.283494][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.290226][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  501.291719][   T40] kauditd_printk_skb: 25 callbacks suppressed
[  501.291730][   T40] audit: type=1326 audit(1756668991.243:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.0.1323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  501.294097][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.302390][   T40] audit: type=1326 audit(1756668991.253:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.0.1323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  501.312202][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.324415][   T40] audit: type=1326 audit(1756668991.253:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.0.1323" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  501.334655][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  501.336303][   T40] audit: type=1326 audit(1756668991.253:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.0.1323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  501.339233][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.345581][   T40] audit: type=1326 audit(1756668991.253:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.0.1323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  501.355401][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.358326][   T40] audit: type=1326 audit(1756668991.253:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.0.1323" exe="/syz-executor" sig=0 arch=40000003 syscall=265 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  501.358838][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  501.367080][   T40] audit: type=1326 audit(1756668991.253:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.0.1323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  501.373037][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.379225][   T40] audit: type=1326 audit(1756668991.253:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.0.1323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  501.382487][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.392610][   T40] audit: type=1326 audit(1756668991.253:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.0.1323" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  501.397991][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  501.406186][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.409384][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.416931][   T40] audit: type=1326 audit(1756668991.253:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12451 comm="syz.0.1323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  501.419835][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  501.429861][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.438352][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.454152][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  501.466873][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.488748][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.653807][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  501.657266][    T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  501.660588][   T83] Bluetooth: hci4: Frame reassembly failed (-84)
[  501.664521][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  501.670681][    T9] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  501.673562][    T9] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  501.684613][    T9] usb 6-1: Product: syz
[  501.686075][    T9] usb 6-1: Manufacturer: syz
[  501.687631][    T9] usb 6-1: SerialNumber: syz
[  501.693449][    T9] usb 6-1: config 0 descriptor??
[  501.698339][    T9] yurex 6-1:0.0: Could not find endpoints
[  501.936341][    T9] usb 6-1: USB disconnect, device number 5
[  502.724453][ T6769] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  502.894621][ T6769] usb 6-1: Using ep0 maxpacket: 32
[  502.982294][T12479] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  503.059204][ T6769] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  503.067048][ T6769] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  503.069971][ T6769] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  503.072508][ T6769] usb 6-1: Product: syz
[  503.073870][ T6769] usb 6-1: Manufacturer: syz
[  503.075660][ T6769] usb 6-1: SerialNumber: syz
[  503.081355][ T6769] usb 6-1: config 0 descriptor??
[  503.083397][T12473] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  503.674639][ T5978] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  504.510122][T12490] fuse: Unknown parameter 'user_id0000000000000000000000000000000000000000'
[  505.491981][    T9] usb 6-1: USB disconnect, device number 6
[  505.590788][T12497] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  505.593220][T12497] IPv6: NLM_F_CREATE should be set when creating new route
[  507.037717][T12524] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1336'.
[  507.051563][T12524] bridge0: entered promiscuous mode
[  509.154598][ T6359] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  509.314569][ T6359] usb 8-1: Using ep0 maxpacket: 32
[  509.322286][ T6359] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  509.329262][ T6359] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  509.333114][ T6359] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  509.339073][ T6359] usb 8-1: Product: syz
[  509.340979][ T6359] usb 8-1: Manufacturer: syz
[  509.343050][ T6359] usb 8-1: SerialNumber: syz
[  509.349478][ T6359] usb 8-1: config 0 descriptor??
[  509.353191][T12547] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  511.290692][T12571] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1356'.
[  511.441344][T12571] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1356'.
[  511.982474][   T29] usb 8-1: USB disconnect, device number 5
[  512.904454][    T9] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  513.026158][   T40] kauditd_printk_skb: 68 callbacks suppressed
[  513.026204][   T40] audit: type=1326 audit(1756669002.983:1667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12587 comm="syz.1.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  513.037735][   T40] audit: type=1326 audit(1756669002.993:1668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12587 comm="syz.1.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  513.080451][   T40] audit: type=1326 audit(1756669003.003:1669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12587 comm="syz.1.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf711e579 code=0x7ffc0000
[  513.090035][   T40] audit: type=1326 audit(1756669003.003:1670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12587 comm="syz.1.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  513.097037][   T40] audit: type=1326 audit(1756669003.003:1671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12587 comm="syz.1.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  513.101260][ T1147] Bluetooth: hci4: Frame reassembly failed (-84)
[  513.103871][   T40] audit: type=1326 audit(1756669003.003:1672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12587 comm="syz.1.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf711e579 code=0x7ffc0000
[  513.114785][   T40] audit: type=1326 audit(1756669003.003:1673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12587 comm="syz.1.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  513.121398][   T40] audit: type=1326 audit(1756669003.003:1674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12587 comm="syz.1.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf711e579 code=0x7ffc0000
[  513.129559][   T40] audit: type=1326 audit(1756669003.003:1675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12587 comm="syz.1.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  513.136526][   T40] audit: type=1326 audit(1756669003.003:1676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12587 comm="syz.1.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf711e579 code=0x7ffc0000
[  513.159461][    T9] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  513.163292][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  513.167155][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  513.169902][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  513.177773][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  513.181276][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  513.184735][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  513.188122][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  513.191832][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  513.196045][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  513.205309][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  513.208507][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  513.211263][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  513.214191][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  513.219252][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  513.222193][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  513.226070][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  513.232717][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  513.236906][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  513.251287][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  513.256440][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  513.260118][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  513.270045][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  513.275727][    T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  513.283293][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  513.297577][    T9] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  513.302223][    T9] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  513.306607][    T9] usb 5-1: Product: syz
[  513.308450][    T9] usb 5-1: Manufacturer: syz
[  513.310422][    T9] usb 5-1: SerialNumber: syz
[  513.322210][    T9] usb 5-1: config 0 descriptor??
[  513.330777][    T9] yurex 5-1:0.0: Could not find endpoints
[  513.343325][T12599] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1353'.
[  513.453286][T12599] dummy0: left promiscuous mode
[  513.459580][T12599] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  513.601957][    T9] usb 5-1: USB disconnect, device number 6
[  514.810837][T12613] netlink: 'syz.3.1359': attribute type 4 has an invalid length.
[  514.814138][T12613] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1359'.
[  514.899692][T12613] delete_channel: no stack
[  515.114428][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  516.411367][T12654] netlink: 'syz.2.1365': attribute type 3 has an invalid length.
[  516.414810][T12654] netlink: 666 bytes leftover after parsing attributes in process `syz.2.1365'.
[  516.519763][T12660] netlink: 'syz.0.1363': attribute type 4 has an invalid length.
[  517.393519][ T6769] hid-generic 0000:0000:0000.00A9: unknown main item tag 0x0
[  517.404753][ T6769] hid-generic 0000:0000:0000.00A9: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  519.971067][T12703] siw: device registration error -23
[  519.976701][T12703] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1375'.
[  521.017327][T12727] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  521.630057][ T6769] hid-generic 0000:0000:0000.00AA: unknown main item tag 0x0
[  521.638661][ T6769] hid-generic 0000:0000:0000.00AA: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  522.302345][T12744] netlink: 'syz.3.1382': attribute type 27 has an invalid length.
[  522.496076][T12744] batadv_slave_0: left promiscuous mode
[  522.638354][T12744] geneve2: left promiscuous mode
[  522.640233][T12744] geneve2: left allmulticast mode
[  522.658711][T12744] bridge0: left promiscuous mode
[  522.726364][T12746] 8021q: adding VLAN 0 to HW filter on device bond0
[  522.732373][T12746] 8021q: adding VLAN 0 to HW filter on device team0
[  522.745513][T12746] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  522.761002][   T60] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 256 - 0
[  522.765032][   T60] netdevsim netdevsim3 eth0: unset [1, 1] type 2 family 0 port 6081 - 0
[  522.774901][   T60] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 256 - 0
[  522.778346][   T60] netdevsim netdevsim3 eth1: unset [1, 1] type 2 family 0 port 6081 - 0
[  522.784172][   T60] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 256 - 0
[  522.787297][   T60] netdevsim netdevsim3 eth2: unset [1, 1] type 2 family 0 port 6081 - 0
[  522.790233][   T60] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 256 - 0
[  522.792797][   T60] netdevsim netdevsim3 eth3: unset [1, 1] type 2 family 0 port 6081 - 0
[  524.986295][   T63] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  524.994268][   T63] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  524.999603][   T63] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  525.006401][   T63] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  525.011558][   T63] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  525.041235][ T5978] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  525.045004][ T5978] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  525.048461][ T5978] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  525.053126][ T5978] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  525.055743][ T5978] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  525.431036][ T1147] bond0 (unregistering): Released all slaves
[  525.497058][ T1147] tipc: Left network mode
[  525.511984][T12768] lo speed is unknown, defaulting to 1000
[  525.515093][T12768] lo speed is unknown, defaulting to 1000
[  525.599934][T12768] chnl_net:caif_netlink_parms(): no params data found
[  525.691756][T12768] bridge0: port 1(bridge_slave_0) entered blocking state
[  525.694109][T12768] bridge0: port 1(bridge_slave_0) entered disabled state
[  525.696624][T12768] bridge_slave_0: entered allmulticast mode
[  525.699276][T12768] bridge_slave_0: entered promiscuous mode
[  525.702912][T12768] bridge0: port 2(bridge_slave_1) entered blocking state
[  525.705904][T12768] bridge0: port 2(bridge_slave_1) entered disabled state
[  525.708611][T12768] bridge_slave_1: entered allmulticast mode
[  525.711405][T12768] bridge_slave_1: entered promiscuous mode
[  525.756074][T12768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  525.771797][T12768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  525.829830][T12768] team0: Port device team_slave_0 added
[  525.836112][T12768] team0: Port device team_slave_1 added
[  525.888076][T12768] batman_adv: batadv0: Adding interface: batadv_slave_0
[  525.891005][T12768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  525.901237][T12768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  525.908386][T12768] batman_adv: batadv0: Adding interface: batadv_slave_1
[  525.911275][T12768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  525.924127][T12768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  526.015758][T12768] hsr_slave_0: entered promiscuous mode
[  526.018955][T12768] hsr_slave_1: entered promiscuous mode
[  526.021864][T12768] debugfs: 'hsr0' already exists in 'hsr'
[  526.024292][T12768] Cannot create hsr debugfs directory
[  526.221655][T12768] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  526.228693][T12768] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  526.233354][T12768] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  526.241877][T12768] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  526.269409][T12768] bridge0: port 2(bridge_slave_1) entered blocking state
[  526.271757][T12768] bridge0: port 2(bridge_slave_1) entered forwarding state
[  526.274120][T12768] bridge0: port 1(bridge_slave_0) entered blocking state
[  526.276438][T12768] bridge0: port 1(bridge_slave_0) entered forwarding state
[  526.312357][T12768] 8021q: adding VLAN 0 to HW filter on device bond0
[  526.333641][   T83] bridge0: port 1(bridge_slave_0) entered disabled state
[  526.340278][   T83] bridge0: port 2(bridge_slave_1) entered disabled state
[  526.359057][T12768] 8021q: adding VLAN 0 to HW filter on device team0
[  526.369332][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[  526.373290][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  526.383341][   T83] bridge0: port 2(bridge_slave_1) entered blocking state
[  526.385404][   T83] bridge0: port 2(bridge_slave_1) entered forwarding state
[  526.541288][T12768] 8021q: adding VLAN 0 to HW filter on device batadv0
[  526.724616][T12768] veth0_vlan: entered promiscuous mode
[  526.734256][T12768] veth1_vlan: entered promiscuous mode
[  526.763110][T12768] veth0_macvtap: entered promiscuous mode
[  526.781225][T12768] veth1_macvtap: entered promiscuous mode
[  526.797070][T12768] batman_adv: batadv0: Interface activated: batadv_slave_0
[  526.803348][T12768] batman_adv: batadv0: Interface activated: batadv_slave_1
[  526.809419][   T60] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  526.813088][   T60] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  526.818175][   T60] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  526.822568][   T60] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  526.909646][   T83] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  526.912944][   T83] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  526.962117][   T83] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  526.965713][   T83] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  527.057940][   T40] kauditd_printk_skb: 37 callbacks suppressed
[  527.057951][   T40] audit: type=1326 audit(1756669017.013:1714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12827 comm="syz.1.1399" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  527.067007][   T40] audit: type=1326 audit(1756669017.013:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12827 comm="syz.1.1399" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  527.073581][   T40] audit: type=1326 audit(1756669017.013:1716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12827 comm="syz.1.1399" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf711e579 code=0x7ffc0000
[  527.080786][   T40] audit: type=1326 audit(1756669017.013:1717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12827 comm="syz.1.1399" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  527.095755][   T40] audit: type=1326 audit(1756669017.013:1718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12827 comm="syz.1.1399" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  527.114512][   T63] Bluetooth: hci2: command tx timeout
[  527.115692][   T40] audit: type=1326 audit(1756669017.013:1719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12827 comm="syz.1.1399" exe="/syz-executor" sig=0 arch=40000003 syscall=265 compat=1 ip=0xf711e579 code=0x7ffc0000
[  527.124991][   T40] audit: type=1326 audit(1756669017.013:1720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12827 comm="syz.1.1399" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  527.133411][   T40] audit: type=1326 audit(1756669017.013:1721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12827 comm="syz.1.1399" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  527.150661][   T40] audit: type=1326 audit(1756669017.013:1722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12827 comm="syz.1.1399" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf711e579 code=0x7ffc0000
[  527.169138][   T40] audit: type=1326 audit(1756669017.013:1723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12827 comm="syz.1.1399" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  527.879140][T12834] orangefs_mount: mount request failed with -4
[  528.038268][ T6769] hid-generic 0000:0000:0000.00AB: unknown main item tag 0x0
[  528.048145][ T6769] hid-generic 0000:0000:0000.00AB: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  529.023299][ T1147] hsr_slave_0: left promiscuous mode
[  529.031421][ T1147] hsr_slave_1: left promiscuous mode
[  529.194498][ T5978] Bluetooth: hci2: command tx timeout
[  529.839486][ T6769] hid-generic 0000:0000:0000.00AC: unknown main item tag 0x0
[  529.843397][ T6769] hid-generic 0000:0000:0000.00AC: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  530.329819][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  531.284617][   T63] Bluetooth: hci2: command tx timeout
[  531.461462][ T6359] syz1: Port: 1 Link DOWN
[  532.878926][ T1147] IPVS: stop unused estimator thread 0...
[  533.378596][   T63] Bluetooth: hci2: command tx timeout
[  534.363136][T12914] binder: 12912:12914 ioctl c0306201 80000240 returned -14
[  535.359727][T12917] ALSA: mixer_oss: invalid OSS volume ''
[  535.848946][T12937] block device autoloading is deprecated and will be removed.
[  539.691806][T12995] netlink: 'syz.4.1422': attribute type 10 has an invalid length.
[  539.952459][T13014] netlink: 'syz.4.1422': attribute type 10 has an invalid length.
[  539.955859][T13014] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1422'.
[  540.168572][T12995] batman_adv: batadv0: Adding interface: team0
[  540.171298][T12995] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  540.181589][T12995] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  540.186261][T13014] team0: entered promiscuous mode
[  540.209654][T13014] team_slave_0: entered promiscuous mode
[  540.211509][T13014] team_slave_1: entered promiscuous mode
[  540.214307][T13014] 8021q: adding VLAN 0 to HW filter on device team0
[  540.216662][T13014] batman_adv: batadv0: Interface activated: team0
[  540.218667][T13014] batman_adv: batadv0: Interface deactivated: team0
[  540.220735][T13014] batman_adv: batadv0: Removing interface: team0
[  540.225422][T13014] bridge0: port 3(team0) entered blocking state
[  540.228298][T13014] bridge0: port 3(team0) entered disabled state
[  540.231635][T13014] team0: entered allmulticast mode
[  540.233763][T13014] team_slave_0: entered allmulticast mode
[  540.237043][T13014] team_slave_1: entered allmulticast mode
[  540.240145][T13014] bridge0: port 3(team0) entered blocking state
[  540.242198][T13014] bridge0: port 3(team0) entered forwarding state
[  540.395397][ T6711] hid-generic 0000:0000:0000.00AD: unknown main item tag 0x0
[  540.444620][ T6711] hid-generic 0000:0000:0000.00AD: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  540.797600][T13028] netlink: 'syz.1.1427': attribute type 1 has an invalid length.
[  540.887551][   T40] kauditd_printk_skb: 49 callbacks suppressed
[  540.887661][   T40] audit: type=1800 audit(1756669030.843:1773): pid=13017 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1424" name="SYSV00000000" dev="tmpfs" ino=2 res=0 errno=0
[  541.289965][T13028] 8021q: adding VLAN 0 to HW filter on device bond3
[  541.333575][T13028] bond3: (slave geneve3): making interface the new active one
[  541.337055][T13028] bond3: (slave geneve3): Enslaving as an active interface with an up link
[  541.347974][T13036] syzkaller0: entered promiscuous mode
[  541.349789][T13036] syzkaller0: entered allmulticast mode
[  541.362420][T13036] vivid-000: =================  START STATUS  =================
[  541.367412][T13036] vivid-000: Test Pattern: 75% Colorbar
[  541.369509][T13036] vivid-000: Fill Percentage of Frame: 100
[  541.371360][T13036] vivid-000: Horizontal Movement: No Movement
[  541.374594][T13036] vivid-000: Vertical Movement: No Movement
[  541.377152][T13036] vivid-000: OSD Text Mode: All
[  541.378864][T13036] vivid-000: Show Border: false
[  541.380443][T13036] vivid-000: Show Square: false
[  541.380644][T13026] bond3: entered promiscuous mode
[  541.381978][T13036] vivid-000: Sensor Flipped Horizontally: false
[  541.383687][T13026] geneve3: entered promiscuous mode
[  541.387177][T13036] vivid-000: Sensor Flipped Vertically: false
[  541.389503][T13036] vivid-000: Insert SAV Code in Image: false
[  541.391376][T13036] vivid-000: Insert EAV Code in Image: false
[  541.393423][T13036] vivid-000: Insert Video Guard Band: false
[  541.396963][T13036] vivid-000: Reduced Framerate: false
[  541.404773][T13036] vivid-000: HDMI 000-0 Is Connected To: None
[  541.406829][T13036] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  541.423513][T13036] vivid-000: Enable Capture Cropping: true
[  541.425814][T13036] vivid-000: Enable Capture Composing: true
[  541.428021][T13036] vivid-000: Enable Capture Scaler: true
[  541.430005][T13036] vivid-000: Timestamp Source: End of Frame
[  541.431916][T13036] vivid-000: Colorspace: Rec. 709
[  541.434010][T13036] vivid-000: Transfer Function: Default
[  541.437009][T13036] vivid-000: Y'CbCr Encoding: Default
[  541.439211][T13036] vivid-000: HSV Encoding: Hue 0-179
[  541.441439][T13036] vivid-000: Quantization: Default
[  541.443500][T13036] vivid-000: Apply Alpha To Red Only: false
[  541.446774][T13036] vivid-000: Standard Aspect Ratio: 4x3
[  541.448563][T13036] vivid-000: DV Timings Signal Mode: Current DV Timings
[  541.451051][T13036] vivid-000: DV Timings: 640x480p59 inactive
[  541.453852][T13036] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  541.457211][T13036] vivid-000: Maximum EDID Blocks: 2
[  541.459454][T13036] vivid-000: Limited RGB Range (16-235): true
[  541.462520][T13036] vivid-000: Rx RGB Quantization Range: Automatic
[  541.465641][T13036] vivid-000: Power Present: 0x00000000
[  541.469284][T13036] tpg source WxH: 1280x720 (Y'CbCr)
[  541.473647][T13036] tpg field: 1
[  541.475936][T13036] tpg crop: (0,0)/768x720
[  541.477804][T13036] tpg compose: (0,0)/1280x720
[  541.483765][T13036] tpg colorspace: 3
[  541.487613][T13036] tpg transfer function: 0/0
[  541.489624][T13036] tpg Y'CbCr encoding: 0/0
[  541.491510][T13036] tpg quantization: 0/0
[  541.493601][T13036] tpg RGB range: 0/1
[  541.496227][T13036] vivid-000: ==================  END STATUS  ==================
[  542.356771][   T24] hid-generic 0000:0000:0000.00AE: unknown main item tag 0x0
[  542.361505][   T24] hid-generic 0000:0000:0000.00AE: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  544.456402][ T6025] hid-generic 0000:0000:0000.00AF: unknown main item tag 0x0
[  544.460441][ T6025] hid-generic 0000:0000:0000.00AF: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  544.621496][T13081] netlink: 'syz.0.1444': attribute type 4 has an invalid length.
[  544.625210][T13081] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1444'.
[  544.754634][T13081] delete_channel: no stack
[  545.652426][ T6359] hid-generic 0000:0000:0000.00B0: unknown main item tag 0x0
[  545.667115][ T6359] hid-generic 0000:0000:0000.00B0: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  547.055680][T13110] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1443'.
[  547.058625][T13110] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1443'.
[  547.320554][T13112] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  547.461793][T13114] bridge0: port 3(team0) entered disabled state
[  547.464177][T13114] bridge0: port 2(bridge_slave_1) entered disabled state
[  547.466767][T13114] bridge0: port 1(bridge_slave_0) entered disabled state
[  547.533422][T13120] overlayfs: failed to resolve './file0': -2
[  547.565925][T13120] afs: Unknown parameter 'dyeà'
[  547.599448][T13114] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  547.612231][T13114] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  548.007960][   T89] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  548.014650][ T7958] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  548.053771][T13127] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  548.073091][ T7958] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  548.085193][ T7958] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  548.156595][T12752] hid-generic 0000:0000:0000.00B1: unknown main item tag 0x0
[  548.173842][T12752] hid-generic 0000:0000:0000.00B1: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  549.971366][T13161] fuse: Unknown parameter 'user_id0000000000000000000000000000000000000000'
[  550.155374][T13165] netlink: 'syz.1.1456': attribute type 4 has an invalid length.
[  550.157981][T13165] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1456'.
[  550.182257][T13165] delete_channel: no stack
[  551.674472][   T63] Bluetooth: hci2: command 0x0c1a tx timeout
[  551.677259][T13145] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  551.914438][   T24] page_pool_release_retry() stalled pool shutdown: id 34, 51 inflight 60 sec
[  552.049889][T13145] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  552.057788][T13145] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  553.491195][ T6769] libceph: connect (1)[c::]:6789 error -13
[  553.493909][ T6769] libceph: mon0 (1)[c::]:6789 connect error
[  553.535419][T13208] ceph: No mds server is up or the cluster is laggy
[  553.754462][   T63] Bluetooth: hci2: command 0x0c1a tx timeout
[  554.161805][ T6025] hid-generic 0000:0000:0000.00B2: unknown main item tag 0x0
[  554.174551][ T6025] hid-generic 0000:0000:0000.00B2: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  554.230941][T13233] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1471'.
[  554.238737][T13233] bridge1: entered promiscuous mode
[  554.694542][T13241] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  554.696806][T13241] IPv6: NLM_F_CREATE should be set when creating new route
[  556.014496][   T63] Bluetooth: hci2: command 0x0c1a tx timeout
[  556.390747][T13255] trusted_key: syz.3.1476 sent an empty control message without MSG_MORE.
[  556.463403][T13258] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1477'.
[  556.674417][   T24] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  556.824458][   T24] usb 8-1: Using ep0 maxpacket: 8
[  556.828408][   T24] usb 8-1: config 0 interface 0 has no altsetting 0
[  556.831391][   T24] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  556.835878][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  556.843958][   T24] usb 8-1: config 0 descriptor??
[  557.171466][T13266] virtio-fs: tag <c:::> not found
[  557.173799][T13266] netlink: 88 bytes leftover after parsing attributes in process `syz.4.1479'.
[  557.177425][T13266] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1479'.
[  557.348137][   T24] mcp2221 0003:04D8:00DD.00B3: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[  557.625366][T12752] hid-generic 0000:0000:0000.00B4: unknown main item tag 0x0
[  557.642748][T12752] hid-generic 0000:0000:0000.00B4: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  557.651379][T13276] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1480'.
[  557.658011][T13277] netlink: 'syz.0.1481': attribute type 1 has an invalid length.
[  557.673767][T13277] 8021q: adding VLAN 0 to HW filter on device bond1
[  557.703293][T13277] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1481'.
[  557.719843][T13276] bridge0: left promiscuous mode
[  557.731753][T13276] bond3: left promiscuous mode
[  557.733591][T13276] geneve3: left promiscuous mode
[  557.754440][T13276] bridge1: left promiscuous mode
[  557.923306][T13277] bond1 (unregistering): Released all slaves
[  558.024511][ T6769] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  558.530413][ T6769] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  558.544010][ T6769] usb 5-1: config 0 interface 0 has no altsetting 0
[  558.556097][ T6769] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  558.560588][ T6769] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  558.563994][ T6769] usb 5-1: Product: syz
[  558.564804][   T24] hid-generic 0000:0000:0000.00B5: unknown main item tag 0x0
[  558.565555][ T6769] usb 5-1: Manufacturer: syz
[  558.569359][ T6769] usb 5-1: SerialNumber: syz
[  558.575180][   T24] hid-generic 0000:0000:0000.00B5: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  558.575389][ T6769] usb 5-1: config 0 descriptor??
[  558.596781][ T6769] usb 5-1: selecting invalid altsetting 0
[  559.557491][   T24] usb 8-1: USB disconnect, device number 6
[  559.661183][T12752] hid-generic 0000:0000:0000.00B6: unknown main item tag 0x0
[  559.670256][T13297] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  559.673683][T12752] hid-generic 0000:0000:0000.00B6: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  559.706825][T13299] autofs: Unknown parameter 'ZùqDõâÚCé7Dì�Û&C$§”뙾‡4ã_É4DY!˜Iè�u•²�&¢}Æ‹žm{DL•"fa&Ñ]‘»¢J‡¨A'
[  559.956612][T13293] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  559.959671][T13293] IPv6: NLM_F_CREATE should be set when creating new route
[  560.809736][ T6769] usb 5-1: USB disconnect, device number 7
[  561.153135][T13313] mac80211_hwsim hwsim108 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  561.402309][T13322] netlink: 'syz.0.1489': attribute type 10 has an invalid length.
[  561.407841][T13322] netlink: 'syz.0.1489': attribute type 10 has an invalid length.
[  561.410729][T13322] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1489'.
[  561.845775][   T24] hid-generic 0000:0000:0000.00B7: unknown main item tag 0x0
[  561.849013][   T24] hid-generic 0000:0000:0000.00B7: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  562.406949][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  562.414646][   T63] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  562.827871][   T40] audit: type=1800 audit(1756669052.783:1774): pid=13344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1497" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0
[  563.112978][T13338] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  563.151597][   T24] hid-generic 0000:0000:0000.00B8: unknown main item tag 0x0
[  563.157748][   T24] hid-generic 0000:0000:0000.00B8: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  563.840583][T13363] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  565.018990][T13375] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  565.039887][T12752] hid-generic 0000:0000:0000.00B9: unknown main item tag 0x0
[  565.043191][T12752] hid-generic 0000:0000:0000.00B9: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  565.114431][ T5978] Bluetooth: hci2: command 0x0c1a tx timeout
[  566.367657][   T40] audit: type=1800 audit(1756669056.313:1775): pid=13394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1509" name="SYSV00000000" dev="tmpfs" ino=3 res=0 errno=0
[  566.471733][T13401] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  566.474088][T13401] IPv6: NLM_F_CREATE should be set when creating new route
[  566.819878][   T24] hid-generic 0000:0000:0000.00BA: unknown main item tag 0x0
[  566.878664][   T24] hid-generic 0000:0000:0000.00BA: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  567.853583][   T40] audit: type=1326 audit(1756669057.773:1776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13406 comm="syz.1.1512" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  567.872766][   T40] audit: type=1326 audit(1756669057.773:1777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13406 comm="syz.1.1512" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  567.881785][   T40] audit: type=1326 audit(1756669057.783:1778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13406 comm="syz.1.1512" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf711e579 code=0x7ffc0000
[  567.904528][   T40] audit: type=1326 audit(1756669057.783:1779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13406 comm="syz.1.1512" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  567.913638][   T40] audit: type=1326 audit(1756669057.783:1780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13406 comm="syz.1.1512" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf711e579 code=0x7ffc0000
[  567.922979][   T40] audit: type=1326 audit(1756669057.783:1781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13406 comm="syz.1.1512" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  567.931714][   T40] audit: type=1326 audit(1756669057.793:1782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13406 comm="syz.1.1512" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf711e579 code=0x7ffc0000
[  567.940551][   T40] audit: type=1326 audit(1756669057.793:1783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13406 comm="syz.1.1512" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  567.951999][   T40] audit: type=1326 audit(1756669057.803:1784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13406 comm="syz.1.1512" exe="/syz-executor" sig=0 arch=40000003 syscall=228 compat=1 ip=0xf711e579 code=0x7ffc0000
[  567.961045][   T40] audit: type=1326 audit(1756669057.803:1785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13406 comm="syz.1.1512" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  568.409543][T13420] pim6reg: entered allmulticast mode
[  568.561542][T13415] kvm: requested 7542 ns i8254 timer period limited to 200000 ns
[  568.617665][T13406] pim6reg: left allmulticast mode
[  568.799674][   T24] hid-generic 0000:0000:0000.00BB: unknown main item tag 0x0
[  568.805931][   T24] hid-generic 0000:0000:0000.00BB: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  570.394820][ T6025] hid-generic 0000:0000:0000.00BC: unknown main item tag 0x0
[  570.402884][ T6025] hid-generic 0000:0000:0000.00BC: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  570.981524][ T1141] team0: left allmulticast mode
[  570.983302][ T1141] team_slave_0: left allmulticast mode
[  570.985244][ T1141] team_slave_1: left allmulticast mode
[  570.989327][ T1141] bridge0: port 3(team0) entered disabled state
[  570.998182][ T1141] bridge_slave_1: left allmulticast mode
[  570.999992][ T1141] bridge_slave_1: left promiscuous mode
[  571.002254][ T1141] bridge0: port 2(bridge_slave_1) entered disabled state
[  571.008453][ T1141] bridge_slave_0: left allmulticast mode
[  571.009342][   T63] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  571.010812][ T1141] bridge_slave_0: left promiscuous mode
[  571.014477][   T63] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  571.019799][ T1141] bridge0: port 1(bridge_slave_0) entered disabled state
[  571.020409][   T63] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  571.027973][   T63] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  571.037285][   T63] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  571.369731][ T1141] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  571.377718][ T1141] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  571.418898][ T1141] bond0 (unregistering): Released all slaves
[  571.445773][T13463] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  571.662915][T13456] lo speed is unknown, defaulting to 1000
[  572.076864][ T1141] hsr_slave_0: left promiscuous mode
[  572.079551][ T1141] hsr_slave_1: left promiscuous mode
[  572.081820][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_0
[  572.091201][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_1
[  572.422906][T13496] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1528'.
[  572.654282][T13498] ceph: No mds server is up or the cluster is laggy
[  572.707097][T12752] libceph: connect (1)[c::]:6789 error -13
[  572.709780][T12752] libceph: mon0 (1)[c::]:6789 connect error
[  573.126426][   T63] Bluetooth: hci2: command tx timeout
[  573.281670][ T1141] team_slave_1 (unregistering): left promiscuous mode
[  573.289931][ T1141] team0 (unregistering): Port device team_slave_1 removed
[  573.460000][ T1141] team_slave_0 (unregistering): left promiscuous mode
[  573.463890][ T1141] team0 (unregistering): Port device team_slave_0 removed
[  574.222539][T13456] chnl_net:caif_netlink_parms(): no params data found
[  574.236102][T13496] bridge2: entered promiscuous mode
[  574.370329][T13504] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  574.373618][T13504] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  574.390092][T13514] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  574.398157][T13504] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  574.477604][T13456] bridge0: port 1(bridge_slave_0) entered blocking state
[  574.483280][T13456] bridge0: port 1(bridge_slave_0) entered disabled state
[  574.487947][T13456] bridge_slave_0: entered allmulticast mode
[  574.497451][T13456] bridge_slave_0: entered promiscuous mode
[  574.503636][T13456] bridge0: port 2(bridge_slave_1) entered blocking state
[  574.510267][T13456] bridge0: port 2(bridge_slave_1) entered disabled state
[  574.513520][T13456] bridge_slave_1: entered allmulticast mode
[  574.533560][T13456] bridge_slave_1: entered promiscuous mode
[  574.625474][T13456] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  574.641644][T13456] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  574.721265][T13456] team0: Port device team_slave_0 added
[  574.731587][T13456] team0: Port device team_slave_1 added
[  574.817384][T13456] batman_adv: batadv0: Adding interface: batadv_slave_0
[  574.820359][T13456] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  574.832105][T13456] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  574.842205][T13456] batman_adv: batadv0: Adding interface: batadv_slave_1
[  574.844836][T13456] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  574.853833][T13456] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  574.913287][T13456] hsr_slave_0: entered promiscuous mode
[  574.919306][T13456] hsr_slave_1: entered promiscuous mode
[  574.922265][T13456] debugfs: 'hsr0' already exists in 'hsr'
[  574.926977][T13456] Cannot create hsr debugfs directory
[  575.172571][T13456] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  575.189699][T13456] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  575.208368][T13456] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  575.215305][T13456] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  575.253681][T13456] bridge0: port 2(bridge_slave_1) entered blocking state
[  575.256070][T13456] bridge0: port 2(bridge_slave_1) entered forwarding state
[  575.258456][T13456] bridge0: port 1(bridge_slave_0) entered blocking state
[  575.260732][T13456] bridge0: port 1(bridge_slave_0) entered forwarding state
[  575.287926][   T89] bridge0: port 1(bridge_slave_0) entered disabled state
[  575.293462][   T89] bridge0: port 2(bridge_slave_1) entered disabled state
[  575.363054][T13456] 8021q: adding VLAN 0 to HW filter on device bond0
[  575.400569][T13456] 8021q: adding VLAN 0 to HW filter on device team0
[  575.410272][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[  575.412666][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  575.425236][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  575.427509][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  575.676060][T13456] 8021q: adding VLAN 0 to HW filter on device batadv0
[  575.887494][T13456] veth0_vlan: entered promiscuous mode
[  575.902177][T13456] veth1_vlan: entered promiscuous mode
[  575.926931][T13456] veth0_macvtap: entered promiscuous mode
[  575.955861][T13456] veth1_macvtap: entered promiscuous mode
[  575.998914][T13456] batman_adv: batadv0: Interface activated: batadv_slave_0
[  576.012309][T13456] batman_adv: batadv0: Interface activated: batadv_slave_1
[  576.019101][ T7958] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  576.022488][ T7958] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  576.028768][ T7958] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  576.047605][ T7958] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  576.105431][ T7958] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  576.108750][ T7958] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  576.111117][T13565] binder: 13564:13565 unknown command 0
[  576.113664][T13565] binder: 13564:13565 ioctl c0306201 80000080 returned -22
[  576.123176][T13565] binder: 13564:13565 ioctl 7af 80000300 returned -22
[  576.133550][ T7958] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  576.137081][ T7958] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  576.404628][ T5978] Bluetooth: hci2: command 0x040f tx timeout
[  577.963670][T13597] could not allocate digest TFM handle sha1-ssse3
[  578.474480][ T5978] Bluetooth: hci2: command 0x040f tx timeout
[  579.011310][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  579.011322][   T40] audit: type=1804 audit(1756669068.963:1797): pid=13613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1543" name="/newroot/391/file0" dev="tmpfs" ino=2078 res=1 errno=0
[  579.058283][T13612] /dev/sr0: Can't open blockdev
[  579.125241][ T6711] hid-generic 0000:0000:0000.00BD: unknown main item tag 0x0
[  579.142762][ T6711] hid-generic 0000:0000:0000.00BD: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  579.176295][T13619] bond0: (slave rose0): Enslaving as an active interface with an up link
[  580.554508][ T5978] Bluetooth: hci2: command 0x040f tx timeout
[  580.574470][ T6359] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  580.735593][ T6359] usb 10-1: Using ep0 maxpacket: 8
[  580.745905][ T6359] usb 10-1: config 0 interface 0 has no altsetting 0
[  580.751234][ T6359] usb 10-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  580.756760][ T6359] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.763426][ T6359] usb 10-1: config 0 descriptor??
[  581.378291][ T6359] mcp2221 0003:04D8:00DD.00BE: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.5-1/input0
[  581.543645][T13652] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  582.261394][ T6769] hid-generic 0000:0000:0000.00BF: unknown main item tag 0x0
[  582.449406][T13663] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  582.551187][ T6769] hid-generic 0000:0000:0000.00BF: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  583.054671][ T5978] Bluetooth: hci2: command 0x040f tx timeout
[  583.177013][T13115] usb 10-1: USB disconnect, device number 2
[  583.220897][T13117] hid-generic 0000:0000:0000.00C0: unknown main item tag 0x0
[  583.237195][T13117] hid-generic 0000:0000:0000.00C0: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  583.257476][ T6359] hid-generic 0000:0000:0000.00C1: unknown main item tag 0x0
[  583.263534][ T6359] hid-generic 0000:0000:0000.00C1: hidraw2: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  583.368856][T13117] hid-generic 0006:0004:0009.00C2: unknown main item tag 0x0
[  583.371882][T13117] hid-generic 0006:0004:0009.00C2: unknown main item tag 0x0
[  583.379384][T13117] hid-generic 0006:0004:0009.00C2: unknown main item tag 0x0
[  583.387777][T13117] hid-generic 0006:0004:0009.00C2: unknown main item tag 0x0
[  583.390729][T13117] hid-generic 0006:0004:0009.00C2: unknown main item tag 0x0
[  583.393855][T13117] hid-generic 0006:0004:0009.00C2: unknown main item tag 0x0
[  583.582634][T13117] hid-generic 0006:0004:0009.00C2: hidraw3: VIRTUAL HID v0.04 Device [syz1] on syz0
[  583.891305][T13682] fido_id[13682]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  583.911742][T13683] tipc: Failed to remove unknown binding: 66,1,1/4:1866732773/1866732775
[  583.924042][T13683] tipc: Failed to remove unknown binding: 66,1,1/4:1866732773/1866732775
[  584.556800][   T40] audit: type=1326 audit(1756669074.473:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13689 comm="syz.5.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  584.563687][   T40] audit: type=1326 audit(1756669074.473:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13689 comm="syz.5.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  584.600736][   T40] audit: type=1326 audit(1756669074.473:1800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13689 comm="syz.5.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  584.609334][   T40] audit: type=1326 audit(1756669074.473:1801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13689 comm="syz.5.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  584.619309][   T40] audit: type=1326 audit(1756669074.473:1802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13689 comm="syz.5.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  584.627096][   T40] audit: type=1326 audit(1756669074.473:1803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13689 comm="syz.5.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  584.651398][   T40] audit: type=1326 audit(1756669074.473:1804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13689 comm="syz.5.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  584.674241][   T40] audit: type=1326 audit(1756669074.473:1805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13689 comm="syz.5.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  584.712274][T13693] pim6reg: entered allmulticast mode
[  584.723883][   T40] audit: type=1326 audit(1756669074.473:1806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13689 comm="syz.5.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  584.732936][   T40] audit: type=1326 audit(1756669074.473:1807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13689 comm="syz.5.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=228 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  585.115701][ T5978] Bluetooth: hci2: command 0x040f tx timeout
[  585.436021][T13689] pim6reg: left allmulticast mode
[  585.703789][   T61] hid_parser_main: 11 callbacks suppressed
[  585.703809][   T61] hid-generic 0000:0000:0000.00C3: unknown main item tag 0x0
[  585.710582][   T61] hid-generic 0000:0000:0000.00C3: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  585.781308][T13726] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1563'.
[  585.795054][T13726] bridge1: entered promiscuous mode
[  585.913527][T13728] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  587.194525][ T5978] Bluetooth: hci2: command 0x040f tx timeout
[  587.361075][T13743] blktrace: Concurrent blktraces are not allowed on nbd3
[  587.486236][ T6711] hid-generic 0006:0004:0009.00C4: unknown main item tag 0x0
[  587.491958][ T6711] hid-generic 0006:0004:0009.00C4: unknown main item tag 0x0
[  587.498776][ T6711] hid-generic 0006:0004:0009.00C4: unknown main item tag 0x0
[  587.501345][ T6711] hid-generic 0006:0004:0009.00C4: unknown main item tag 0x0
[  587.503668][ T6711] hid-generic 0006:0004:0009.00C4: unknown main item tag 0x0
[  587.514525][ T6711] hid-generic 0006:0004:0009.00C4: unknown main item tag 0x0
[  587.517769][ T6711] hid-generic 0006:0004:0009.00C4: unknown main item tag 0x0
[  587.521321][ T6711] hid-generic 0006:0004:0009.00C4: unknown main item tag 0x0
[  587.524714][ T6711] hid-generic 0006:0004:0009.00C4: unknown main item tag 0x0
[  587.571734][ T6711] hid-generic 0006:0004:0009.00C4: hidraw1: VIRTUAL HID v0.04 Device [syz1] on syz0
[  587.601709][T13748] tipc: Failed to remove unknown binding: 66,1,1/2800372513:4179013497/4179013499
[  587.604988][T13748] tipc: Failed to remove unknown binding: 66,1,1/2800372513:4179013497/4179013499
[  587.701327][T13749] fido_id[13749]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  588.238146][T13765] netfs: Couldn't get user pages (rc=-14)
[  588.445649][T13770] kvm: requested 7542 ns i8254 timer period limited to 200000 ns
[  589.071691][T13777] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  590.221530][T13791] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  590.364303][ T6025] hid-generic 0000:0000:0000.00C5: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  590.623867][T13802] netlink: 'syz.3.1578': attribute type 1 has an invalid length.
[  590.697937][T13802] 8021q: adding VLAN 0 to HW filter on device bond2
[  590.707949][T13805] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1578'.
[  591.077231][T13805] bond2 (unregistering): Released all slaves
[  591.365969][   T72] hid_parser_main: 9 callbacks suppressed
[  591.365982][   T72] hid-generic 0006:0004:0009.00C6: unknown main item tag 0x0
[  591.425027][   T72] hid-generic 0006:0004:0009.00C6: unknown main item tag 0x0
[  591.464174][   T72] hid-generic 0006:0004:0009.00C6: unknown main item tag 0x0
[  591.470784][   T72] hid-generic 0006:0004:0009.00C6: unknown main item tag 0x0
[  591.473968][   T72] hid-generic 0006:0004:0009.00C6: unknown main item tag 0x0
[  591.477680][   T72] hid-generic 0006:0004:0009.00C6: unknown main item tag 0x0
[  591.480956][   T72] hid-generic 0006:0004:0009.00C6: unknown main item tag 0x0
[  591.484386][   T72] hid-generic 0006:0004:0009.00C6: unknown main item tag 0x0
[  591.487442][   T72] hid-generic 0006:0004:0009.00C6: unknown main item tag 0x0
[  591.490635][   T72] hid-generic 0006:0004:0009.00C6: unknown main item tag 0x0
[  591.495524][   T72] hid-generic 0006:0004:0009.00C6: hidraw1: VIRTUAL HID v0.04 Device [syz1] on syz0
[  591.565554][T13809] tipc: Failed to remove unknown binding: 66,1,1/4:328545449/328545451
[  591.568451][T13809] tipc: Failed to remove unknown binding: 66,1,1/4:328545449/328545451
[  591.572351][T13816] fido_id[13816]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  593.903878][T13841] ceph: No mds server is up or the cluster is laggy
[  594.664618][   T72] hid-generic 0000:0000:0000.00C7: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  595.358637][T13860] openvswitch: : Dropping previously announced user features
[  596.217529][ T6025] hid-generic 0006:0004:0009.00C8: hidraw1: VIRTUAL HID v0.04 Device [syz1] on syz0
[  596.247116][T13871] tipc: Failed to remove unknown binding: 66,1,1/0:3740306446/3740306448
[  596.249826][T13871] tipc: Failed to remove unknown binding: 66,1,1/0:3740306446/3740306448
[  596.275120][T13872] fido_id[13872]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  597.049817][T13883] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  597.485640][T13894] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  598.954495][   T63] Bluetooth: hci2: command 0x040f tx timeout
[  599.110774][T13908] mac80211_hwsim hwsim110 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  599.175025][T13910] netfs: Couldn't get user pages (rc=-14)
[  599.505551][T13910] kvm: requested 7542 ns i8254 timer period limited to 200000 ns
[  599.654466][   T61] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  599.804544][   T61] usb 5-1: Using ep0 maxpacket: 8
[  599.817579][   T61] usb 5-1: config 0 interface 0 has no altsetting 0
[  599.820257][   T61] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  599.823730][   T61] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  599.836891][   T61] usb 5-1: config 0 descriptor??
[  600.684891][T13937] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  600.688032][T13937] IPv6: NLM_F_CREATE should be set when creating new route
[  600.868055][T13934] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1606'.
[  600.880657][T13934] netlink: 260 bytes leftover after parsing attributes in process `syz.1.1606'.
[  600.904459][   T61] mcp2221 0003:04D8:00DD.00C9: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[  601.275635][ T1141] wlan1: Trigger new scan to find an IBSS to join
[  601.285738][ T5978] Bluetooth: hci2: command 0x040f tx timeout
[  601.294802][T13917] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  601.296740][T13917] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  601.370845][   T61] hid_parser_main: 25 callbacks suppressed
[  601.370858][   T61] hid-generic 0000:0000:0000.00CA: unknown main item tag 0x0
[  601.378401][   T61] hid-generic 0000:0000:0000.00CA: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  601.561931][T13935] lo speed is unknown, defaulting to 1000
[  602.319064][   T61] usb 5-1: USB disconnect, device number 8
[  603.261254][T13961] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  603.517790][T13115] hid-generic 0000:0000:0000.00CB: unknown main item tag 0x0
[  603.522197][T13115] hid-generic 0000:0000:0000.00CB: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  604.945435][T13988] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  605.281552][   T60] wlan1: Trigger new scan to find an IBSS to join
[  605.986429][T13997] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1618'.
[  606.410779][ T7958] wlan1: Creating new IBSS network, BSSID de:d6:32:62:f4:af
[  606.758191][T14004] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  609.365498][T14044] ceph: No mds server is up or the cluster is laggy
[  609.383990][T13115] libceph: connect (1)[c::]:6789 error -13
[  609.386080][T13115] libceph: mon0 (1)[c::]:6789 connect error
[  609.536526][T14048] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1627'.
[  609.558491][T14048] 8021q: adding VLAN 0 to HW filter on device bond0
[  609.563441][T14048] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  609.569576][   T72] lo speed is unknown, defaulting to 1000
[  609.572116][   T72] syz0: Port: 1 Link ACTIVE
[  611.914626][   T24] page_pool_release_retry() stalled pool shutdown: id 34, 51 inflight 120 sec
[  612.087309][T14071] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  612.374915][T14079] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1634'.
[  614.039754][T14098] mac80211_hwsim hwsim110 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  614.042125][   T60] wlan1: Selected IBSS BSSID de:d6:32:62:f4:af based on configured SSID
[  614.293201][T13115] libceph: connect (1)[c::]:6789 error -13
[  614.296024][T13115] libceph: mon0 (1)[c::]:6789 connect error
[  614.359122][T14103] ceph: No mds server is up or the cluster is laggy
[  614.625809][   T40] kauditd_printk_skb: 32 callbacks suppressed
[  614.637376][   T40] audit: type=1326 audit(1756669104.573:1840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14107 comm="syz.0.1642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  614.650661][   T40] audit: type=1326 audit(1756669104.573:1841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14107 comm="syz.0.1642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  614.659810][   T40] audit: type=1326 audit(1756669104.573:1842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14107 comm="syz.0.1642" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  614.671212][   T40] audit: type=1326 audit(1756669104.573:1843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14107 comm="syz.0.1642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  614.715882][   T40] audit: type=1326 audit(1756669104.573:1844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14107 comm="syz.0.1642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  614.728061][   T40] audit: type=1326 audit(1756669104.573:1845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14107 comm="syz.0.1642" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  614.740349][   T40] audit: type=1326 audit(1756669104.573:1846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14107 comm="syz.0.1642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  614.757420][   T40] audit: type=1326 audit(1756669104.573:1847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14107 comm="syz.0.1642" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  614.765830][   T40] audit: type=1326 audit(1756669104.573:1848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14107 comm="syz.0.1642" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  614.772858][   T40] audit: type=1326 audit(1756669104.573:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14107 comm="syz.0.1642" exe="/syz-executor" sig=0 arch=40000003 syscall=228 compat=1 ip=0xf7fc6579 code=0x7ffc0000
[  614.841147][T14114] pim6reg: entered allmulticast mode
[  616.914746][T14107] pim6reg: left allmulticast mode
[  617.372305][T14132] could not allocate digest TFM handle sha1-ssse3
[  618.254549][T14137] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1647'.
[  618.695459][T14160] netlink: 'syz.3.1652': attribute type 1 has an invalid length.
[  618.698916][T14160] netlink: 236 bytes leftover after parsing attributes in process `syz.3.1652'.
[  619.669989][   T61] hid-generic 0000:0000:0000.00CC: unknown main item tag 0x0
[  619.684613][   T61] hid-generic 0000:0000:0000.00CC: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  620.022169][T14176] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  620.900486][T14185] Invalid source name
[  620.901853][T14185] UBIFS error (pid: 14185): cannot open "./file0", error -22
[  623.565506][T14216] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1663'.
[  623.796063][   T61] hid-generic 0000:0000:0000.00CD: unknown main item tag 0x0
[  623.799765][   T61] hid-generic 0000:0000:0000.00CD: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  623.836820][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  626.014568][T14259] mac80211_hwsim hwsim110 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  626.015898][   T13] wlan1: Selected IBSS BSSID de:d6:32:62:f4:af based on configured SSID
[  626.573860][T14274] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1674'.
[  627.053966][   T61] hid-generic 0000:0000:0000.00CE: unknown main item tag 0x0
[  627.058054][   T61] hid-generic 0000:0000:0000.00CE: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  627.062462][T14274] 8021q: adding VLAN 0 to HW filter on device bond0
[  627.165936][T14274] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  628.101903][T14291] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  628.420304][T14297] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  628.506359][T14300] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1680'.
[  629.857980][ T6359] hid-generic 0000:0000:0000.00CF: unknown main item tag 0x0
[  629.867031][ T6359] hid-generic 0000:0000:0000.00CF: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  630.165796][T14328] capability: warning: `syz.1.1684' uses 32-bit capabilities (legacy support in use)
[  630.337156][T14326] could not allocate digest TFM handle sha1-ssse3
[  633.235442][T13117] hid-generic 0000:0000:0000.00D0: unknown main item tag 0x0
[  633.240645][T13117] hid-generic 0000:0000:0000.00D0: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  633.604422][T14350] 9pnet_virtio: no channels available for device syz
[  634.047677][T14350] kvm: requested 7542 ns i8254 timer period limited to 200000 ns
[  634.383486][T14366] Invalid source name
[  634.385045][T14366] UBIFS error (pid: 14366): cannot open "./file0", error -22
[  634.605595][T14367] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1694'.
[  634.996019][ T6769] hid-generic 0000:0000:0000.00D1: unknown main item tag 0x0
[  635.002421][ T6769] hid-generic 0000:0000:0000.00D1: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  635.244938][ T6359] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  635.425980][ T6359] usb 10-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  635.451252][ T6359] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  635.463981][ T6359] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  635.479005][ T6359] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  635.488214][ T6359] usb 10-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  635.493164][ T6359] usb 10-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  635.506825][ T6359] usb 10-1: Manufacturer: syz
[  635.525951][ T6359] usb 10-1: config 0 descriptor??
[  635.923721][T14375] netlink: 320 bytes leftover after parsing attributes in process `syz.5.1696'.
[  636.058247][T14393] Bluetooth: hci0: load_link_keys: too big key_count value 28530
[  636.136218][ T6359] appleir 0003:05AC:8243.00D2: unknown main item tag 0x0
[  636.209072][ T6359] appleir 0003:05AC:8243.00D2: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  636.921866][T14405] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  637.097781][T14407] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1701'.
[  637.247934][T14407] 8021q: adding VLAN 0 to HW filter on device bond0
[  637.266708][T14407] 8021q: adding VLAN 0 to HW filter on device team0
[  637.459103][T14407] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  637.499855][T12752] syz1: Port: 1 Link ACTIVE
[  638.063994][ T6769] usb 10-1: USB disconnect, device number 3
[  638.511448][ T1147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  638.515046][ T1147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  642.979184][T14497] lo speed is unknown, defaulting to 1000
[  644.149627][T14515] mac80211_hwsim hwsim110 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  644.154468][   T89] wlan1: Selected IBSS BSSID de:d6:32:62:f4:af based on configured SSID
[  644.697184][ T6025] hid-generic 0000:0000:0000.00D3: unknown main item tag 0x0
[  644.700139][ T6025] hid-generic 0000:0000:0000.00D3: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  645.676414][T14531] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  647.322964][T14556] overlay: ./file1 is not a directory
[  647.727915][T14554] netlink: 'syz.1.1729': attribute type 1 has an invalid length.
[  647.731572][T14554] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1729'.
[  648.142235][T14569] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1733'.
[  648.326986][ T6769] hid-generic 0000:0000:0000.00D4: unknown main item tag 0x0
[  648.335465][ T6769] hid-generic 0000:0000:0000.00D4: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  649.178323][T14584] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  649.928440][T14597] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  650.010277][T14598] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1740'.
[  650.462500][T14607] mkiss: ax0: crc mode is auto.
[  650.889073][T14614] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1744'.
[  652.846166][T14646] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1750'.
[  653.905473][T14666] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  653.908795][T14666] IPv6: NLM_F_CREATE should be set when creating new route
[  654.864059][T14678] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1756'.
[  654.983380][T14679] lo speed is unknown, defaulting to 1000
[  657.048291][T14707] bond3: (slave geneve3): Releasing active interface
[  657.175407][T14707] netlink: 'syz.1.1764': attribute type 10 has an invalid length.
[  657.195771][T14707] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1764'.
[  657.787702][   T40] kauditd_printk_skb: 19 callbacks suppressed
[  657.787718][   T40] audit: type=1326 audit(1756669147.743:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14716 comm="syz.5.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  657.798820][   T40] audit: type=1326 audit(1756669147.743:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14716 comm="syz.5.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  657.808022][   T40] audit: type=1326 audit(1756669147.743:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14716 comm="syz.5.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  657.826861][   T40] audit: type=1326 audit(1756669147.743:1872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14716 comm="syz.5.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  657.839072][   T40] audit: type=1326 audit(1756669147.743:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14716 comm="syz.5.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  657.846097][   T40] audit: type=1326 audit(1756669147.743:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14716 comm="syz.5.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  657.868483][   T40] audit: type=1326 audit(1756669147.743:1875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14716 comm="syz.5.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  657.880605][   T40] audit: type=1326 audit(1756669147.743:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14716 comm="syz.5.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  657.888525][   T40] audit: type=1326 audit(1756669147.743:1877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14716 comm="syz.5.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  657.900406][   T40] audit: type=1326 audit(1756669147.743:1878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14716 comm="syz.5.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  658.194287][T14728] syz.0.1767 (14728): drop_caches: 2
[  658.198312][T14728] syz.0.1767 (14728): drop_caches: 2
[  658.358472][T14729] input: syz1 as /devices/virtual/input/input18
[  659.095641][T14740] lo speed is unknown, defaulting to 1000
[  660.020929][T14790] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  660.765423][T14807] siw: device registration error -23
[  660.783014][T14807] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1774'.
[  661.300822][T14811] Invalid source name
[  661.302608][T14811] UBIFS error (pid: 14811): cannot open "./file0", error -22
[  662.278454][T14818] netlink: 'syz.0.1778': attribute type 1 has an invalid length.
[  662.283446][T14818] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1778'.
[  663.266610][T14835] 9pnet_virtio: no channels available for device syz
[  663.287668][T14835] overlayfs: failed to resolve './file1': -2
[  663.333734][T14831] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1780'.
[  663.383151][T14843] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1781'.
[  663.426028][T14843] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  663.888020][T14848] =======================================================
[  663.888020][T14848] WARNING: The mand mount option has been deprecated and
[  663.888020][T14848]          and is ignored by this kernel. Remove the mand
[  663.888020][T14848]          option from the mount to silence this warning.
[  663.888020][T14848] =======================================================
[  663.890753][ T6769] hid-generic 0000:0000:0000.00D5: unknown main item tag 0x0
[  663.905027][ T6769] hid-generic 0000:0000:0000.00D5: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  663.909992][T14848] tmpfs: Bad value for 'mpol'
[  665.267502][T14873] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1788'.
[  665.431406][T14864] netlink: 'syz.3.1791': attribute type 1 has an invalid length.
[  665.433925][T14864] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1791'.
[  666.196632][ T7958] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  666.199920][ T7958] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  666.336541][T14881] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  667.090381][ T6359] hid-generic 0000:0000:0000.00D6: unknown main item tag 0x0
[  667.096225][ T6359] hid-generic 0000:0000:0000.00D6: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  667.242817][ T6359] hid-generic 0000:0000:0000.00D7: unknown main item tag 0x0
[  667.249019][ T6359] hid-generic 0000:0000:0000.00D7: hidraw2: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  669.237928][T15151] mkiss: ax0: crc mode is auto.
[  669.272965][T15146] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1799'.
[  669.278266][T15146] bridge_slave_1: left allmulticast mode
[  669.280776][T15146] bridge_slave_1: left promiscuous mode
[  669.286108][T15146] bridge0: port 2(bridge_slave_1) entered disabled state
[  669.395857][T15146] bridge_slave_0: left allmulticast mode
[  669.398566][T15146] bridge_slave_0: left promiscuous mode
[  669.402774][T15146] bridge0: port 1(bridge_slave_0) entered disabled state
[  669.794587][T15159] input: syz1 as /devices/virtual/input/input19
[  670.140896][T15163] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1803'.
[  670.144871][T15163] netlink: 5948 bytes leftover after parsing attributes in process `syz.1.1803'.
[  670.149169][T15163] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1803'.
[  671.991859][   T40] kauditd_printk_skb: 149 callbacks suppressed
[  671.991949][   T40] audit: type=1326 audit(1756669161.943:2028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15188 comm="syz.1.1805" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  672.032588][   T40] audit: type=1326 audit(1756669161.943:2029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15188 comm="syz.1.1805" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  672.048394][   T40] audit: type=1326 audit(1756669161.943:2030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15188 comm="syz.1.1805" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf711e579 code=0x7ffc0000
[  672.057376][T15197] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  672.058847][   T40] audit: type=1326 audit(1756669161.943:2031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15188 comm="syz.1.1805" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  672.073371][   T40] audit: type=1326 audit(1756669161.943:2032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15188 comm="syz.1.1805" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  672.083914][   T40] audit: type=1326 audit(1756669161.943:2033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15188 comm="syz.1.1805" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf711e579 code=0x7ffc0000
[  672.097055][   T40] audit: type=1326 audit(1756669161.943:2034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15188 comm="syz.1.1805" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  672.107512][   T40] audit: type=1326 audit(1756669161.943:2035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15188 comm="syz.1.1805" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  672.114703][   T40] audit: type=1326 audit(1756669161.943:2036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15188 comm="syz.1.1805" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  672.124808][   T40] audit: type=1326 audit(1756669161.953:2037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15188 comm="syz.1.1805" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  672.141894][T15199] futex_wake_op: syz.5.1806 tries to shift op by -1; fix this program
[  672.421957][T15208] syz.1.1808 (15208): drop_caches: 2
[  672.425825][T15208] syz.1.1808 (15208): drop_caches: 2
[  672.634495][   T24] page_pool_release_retry() stalled pool shutdown: id 34, 51 inflight 181 sec
[  673.336993][T15219] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1811'.
[  674.396749][T14777] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  675.401047][T15244] input: syz1 as /devices/virtual/input/input20
[  676.360185][T15273] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  677.480218][T15275] wg2: entered allmulticast mode
[  677.765080][T15293] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1823'.
[  678.265667][T15300] bridge0: the hash_elasticity option has been deprecated and is always 16
[  678.268465][T15300] bridge0: entered allmulticast mode
[  679.085117][ T6025] hid-generic 0000:0000:0000.00D8: unknown main item tag 0x0
[  679.088320][ T6025] hid-generic 0000:0000:0000.00D8: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  679.159410][   T40] kauditd_printk_skb: 59 callbacks suppressed
[  679.159422][   T40] audit: type=1326 audit(1756669169.113:2097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.5.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  679.168386][   T40] audit: type=1326 audit(1756669169.113:2098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.5.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  679.175181][   T40] audit: type=1326 audit(1756669169.113:2099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.5.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  679.181750][   T40] audit: type=1326 audit(1756669169.113:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.5.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  679.204647][   T40] audit: type=1326 audit(1756669169.113:2101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.5.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  679.211330][   T40] audit: type=1326 audit(1756669169.113:2102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.5.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  679.234427][   T40] audit: type=1326 audit(1756669169.113:2103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.5.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  679.241806][   T40] audit: type=1326 audit(1756669169.113:2104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.5.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  679.255059][   T40] audit: type=1326 audit(1756669169.113:2105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.5.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  679.262192][   T40] audit: type=1326 audit(1756669169.113:2106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.5.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[  680.089179][T15324] team0: Mode changed to "loadbalance"
[  680.102220][T15324] netlink: 'syz.3.1831': attribute type 10 has an invalid length.
[  680.109908][T15324] 8021q: adding VLAN 0 to HW filter on device bond0
[  680.116038][T15324] team0: Port device bond0 added
[  680.136800][T15324] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1831'.
[  680.259803][T15324] team0 (unregistering): Port device bond0 removed
[  680.430079][T15331] mac80211_hwsim hwsim110 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  681.248823][T15341] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1836'.
[  681.710860][T15349] openvswitch: netlink: Message has 8 unknown bytes.
[  681.714208][T15349] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  681.861493][T15354] mac80211_hwsim hwsim110 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  682.232116][ T1147] Bluetooth: hci4: Frame reassembly failed (-84)
[  682.237368][T15357] Bluetooth: hci4: Frame reassembly failed (-84)
[  682.764915][ T6025] Process accounting resumed
[  683.650180][T15376] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  684.102175][T15381] misc userio: No port type given on /dev/userio
[  684.234546][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  684.234598][ T5978] Bluetooth: hci4: command 0x1003 tx timeout
[  684.238964][T14777] wlan1: Trigger new scan to find an IBSS to join
[  684.881094][T15399] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  685.277363][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  685.454642][ T1420] ==================================================================
[  685.457159][ T1420] BUG: KASAN: slab-use-after-free in handle_tx+0x5dc/0x630
[  685.459431][ T1420] Read of size 1 at addr ffff888066153490 by task aoe_tx0/1420
[  685.462668][ T1420] 
[  685.464128][ T1420] CPU: 2 UID: 0 PID: 1420 Comm: aoe_tx0 Not tainted syzkaller #0 PREEMPT(full) 
[  685.464142][ T1420] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  685.464148][ T1420] Call Trace:
[  685.464153][ T1420]  <TASK>
[  685.464158][ T1420]  dump_stack_lvl+0x116/0x1f0
[  685.464175][ T1420]  print_report+0xcd/0x630
[  685.464188][ T1420]  ? __virt_addr_valid+0x81/0x610
[  685.464201][ T1420]  ? __phys_addr+0xe8/0x180
[  685.464212][ T1420]  ? handle_tx+0x5dc/0x630
[  685.464222][ T1420]  kasan_report+0xe0/0x110
[  685.464235][ T1420]  ? handle_tx+0x5dc/0x630
[  685.464246][ T1420]  handle_tx+0x5dc/0x630
[  685.464257][ T1420]  dev_hard_start_xmit+0x94/0x740
[  685.464270][ T1420]  __dev_queue_xmit+0xa46/0x4490
[  685.464282][ T1420]  ? lockdep_hardirqs_on+0x7c/0x110
[  685.464295][ T1420]  ? finish_task_switch.isra.0+0x221/0xc10
[  685.464325][ T1420]  ? rcu_is_watching+0x12/0xc0
[  685.464337][ T1420]  ? __pfx___dev_queue_xmit+0x10/0x10
[  685.464348][ T1420]  ? __schedule+0x11a3/0x5de0
[  685.464365][ T1420]  ? __lock_acquire+0xb97/0x1ce0
[  685.464381][ T1420]  ? do_raw_spin_lock+0x12c/0x2b0
[  685.464405][ T1420]  ? rcu_is_watching+0x12/0xc0
[  685.464421][ T1420]  tx+0xcc/0x190
[  685.464436][ T1420]  ? __pfx_tx+0x10/0x10
[  685.464447][ T1420]  kthread+0x1e1/0x3e0
[  685.464458][ T1420]  ? find_held_lock+0x2b/0x80
[  685.464468][ T1420]  ? __pfx_kthread+0x10/0x10
[  685.464479][ T1420]  ? __pfx_default_wake_function+0x10/0x10
[  685.464489][ T1420]  ? lockdep_hardirqs_on+0x7c/0x110
[  685.464502][ T1420]  ? __kthread_parkme+0x19e/0x250
[  685.464514][ T1420]  ? __pfx_kthread+0x10/0x10
[  685.464525][ T1420]  kthread+0x3c5/0x780
[  685.464539][ T1420]  ? __pfx_kthread+0x10/0x10
[  685.464553][ T1420]  ? rcu_is_watching+0x12/0xc0
[  685.464562][ T1420]  ? __pfx_kthread+0x10/0x10
[  685.464576][ T1420]  ret_from_fork+0x5d7/0x6f0
[  685.464592][ T1420]  ? __pfx_kthread+0x10/0x10
[  685.464607][ T1420]  ret_from_fork_asm+0x1a/0x30
[  685.464622][ T1420]  </TASK>
[  685.464626][ T1420] 
[  685.527873][ T1420] Allocated by task 15376:
[  685.529337][ T1420]  kasan_save_stack+0x33/0x60
[  685.530946][ T1420]  kasan_save_track+0x14/0x30
[  685.532588][ T1420]  __kasan_kmalloc+0xaa/0xb0
[  685.534365][ T1420]  alloc_tty_struct+0x96/0x8c0
[  685.536051][ T1420]  tty_init_dev.part.0+0x1e/0x500
[  685.537997][ T1420]  tty_open+0xa50/0xf90
[  685.539392][ T1420]  chrdev_open+0x231/0x6a0
[  685.540911][ T1420]  do_dentry_open+0x97f/0x1530
[  685.542648][ T1420]  vfs_open+0x82/0x3f0
[  685.544223][ T1420]  path_openat+0x1de4/0x2cb0
[  685.546000][ T1420]  do_filp_open+0x20b/0x470
[  685.547727][ T1420]  do_sys_openat2+0x11b/0x1d0
[  685.549455][ T1420]  __ia32_compat_sys_openat+0x16d/0x210
[  685.551431][ T1420]  __do_fast_syscall_32+0x7c/0x3a0
[  685.553300][ T1420]  do_fast_syscall_32+0x32/0x80
[  685.555094][ T1420]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  685.557325][ T1420] 
[  685.558267][ T1420] Freed by task 13115:
[  685.559823][ T1420]  kasan_save_stack+0x33/0x60
[  685.561602][ T1420]  kasan_save_track+0x14/0x30
[  685.563415][ T1420]  kasan_save_free_info+0x3b/0x60
[  685.565285][ T1420]  __kasan_slab_free+0x60/0x70
[  685.567085][ T1420]  kfree+0x2b4/0x4d0
[  685.568539][ T1420]  process_one_work+0x9cf/0x1b70
[  685.570401][ T1420]  worker_thread+0x6c8/0xf10
[  685.572146][ T1420]  kthread+0x3c5/0x780
[  685.573712][ T1420]  ret_from_fork+0x5d7/0x6f0
[  685.575445][ T1420]  ret_from_fork_asm+0x1a/0x30
[  685.577232][ T1420] 
[  685.578155][ T1420] Last potentially related work creation:
[  685.580341][ T1420]  kasan_save_stack+0x33/0x60
[  685.582124][ T1420]  kasan_record_aux_stack+0xa7/0xc0
[  685.583949][ T1420]  insert_work+0x36/0x230
[  685.585623][ T1420]  __queue_work+0x97e/0x1160
[  685.587393][ T1420]  queue_work_on+0x1a4/0x1f0
[  685.589152][ T1420]  release_tty+0x4de/0x5d0
[  685.590835][ T1420]  tty_release_struct+0xb7/0xe0
[  685.592659][ T1420]  tty_release+0xe2d/0x1430
[  685.594372][ T1420]  __fput+0x3ff/0xb70
[  685.595873][ T1420]  task_work_run+0x14d/0x240
[  685.597645][ T1420]  exit_to_user_mode_loop+0xeb/0x110
[  685.599676][ T1420]  __do_fast_syscall_32+0x2ac/0x3a0
[  685.601602][ T1420]  do_fast_syscall_32+0x32/0x80
[  685.603452][ T1420]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  685.605705][ T1420] 
[  685.606637][ T1420] The buggy address belongs to the object at ffff888066153000
[  685.606637][ T1420]  which belongs to the cache kmalloc-cg-2k of size 2048
[  685.611904][ T1420] The buggy address is located 1168 bytes inside of
[  685.611904][ T1420]  freed 2048-byte region [ffff888066153000, ffff888066153800)
[  685.616957][ T1420] 
[  685.617827][ T1420] The buggy address belongs to the physical page:
[  685.620166][ T1420] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888066151000 pfn:0x66150
[  685.623809][ T1420] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  685.626838][ T1420] memcg:ffff888070aed181
[  685.628429][ T1420] flags: 0x4fff00000000240(workingset|head|node=1|zone=1|lastcpupid=0x7ff)
[  685.631687][ T1420] page_type: f5(slab)
[  685.633250][ T1420] raw: 04fff00000000240 ffff88801b84c140 ffffea0001af0c10 ffffea0001449e10
[  685.636396][ T1420] raw: ffff888066151000 0000000000080006 00000000f5000000 ffff888070aed181
[  685.639604][ T1420] head: 04fff00000000240 ffff88801b84c140 ffffea0001af0c10 ffffea0001449e10
[  685.642716][ T1420] head: ffff888066151000 0000000000080006 00000000f5000000 ffff888070aed181
[  685.645920][ T1420] head: 04fff00000000003 ffffea0001985401 00000000ffffffff 00000000ffffffff
[  685.649086][ T1420] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  685.652247][ T1420] page dumped because: kasan: bad access detected
[  685.654680][ T1420] page_owner tracks the page as allocated
[  685.656859][ T1420] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 15240, tgid 15237 (syz.5.1814), ts 675519812886, free_ts 547850856334
[  685.664650][ T1420]  post_alloc_hook+0x1c0/0x230
[  685.666402][ T1420]  get_page_from_freelist+0x132b/0x38e0
[  685.668423][ T1420]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  685.670639][ T1420]  alloc_pages_mpol+0x1fb/0x550
[  685.672437][ T1420]  new_slab+0x247/0x330
[  685.674003][ T1420]  ___slab_alloc+0xcf2/0x1740
[  685.675762][ T1420]  __slab_alloc.constprop.0+0x56/0xb0
[  685.677783][ T1420]  __kmalloc_cache_noprof+0xfb/0x3e0
[  685.679831][ T1420]  copy_verifier_state+0xbad/0xfb0
[  685.681812][ T1420]  push_stack+0x1ca/0x370
[  685.683505][ T1420]  check_cond_jmp_op+0xaf1/0x72d0
[  685.685421][ T1420]  do_check_common+0xa13e/0xb410
[  685.687302][ T1420]  bpf_check+0x8763/0xc4d0
[  685.688973][ T1420]  bpf_prog_load+0xe41/0x2490
[  685.690745][ T1420]  __sys_bpf+0x4a3f/0x4de0
[  685.692500][ T1420]  __ia32_sys_bpf+0x76/0xe0
[  685.694247][ T1420] page last free pid 6769 tgid 6769 stack trace:
[  685.696658][ T1420]  __free_frozen_pages+0x7d5/0x10f0
[  685.698558][ T1420]  pcpu_free_pages.constprop.0+0x126/0x210
[  685.700606][ T1420]  pcpu_balance_workfn+0x26b/0xe00
[  685.702522][ T1420]  process_one_work+0x9cf/0x1b70
[  685.704405][ T1420]  worker_thread+0x6c8/0xf10
[  685.706111][ T1420]  kthread+0x3c5/0x780
[  685.707652][ T1420]  ret_from_fork+0x5d7/0x6f0
[  685.709388][ T1420]  ret_from_fork_asm+0x1a/0x30
[  685.711224][ T1420] 
[  685.712137][ T1420] Memory state around the buggy address:
[  685.714287][ T1420]  ffff888066153380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  685.717769][ T1420]  ffff888066153400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  685.720942][ T1420] >ffff888066153480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  685.723439][ T1420]                          ^
[  685.724927][ T1420]  ffff888066153500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  685.727661][ T1420]  ffff888066153580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  685.730333][ T1420] ==================================================================
[  685.732937][ T1420] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  685.735506][ T1420] CPU: 2 UID: 0 PID: 1420 Comm: aoe_tx0 Not tainted syzkaller #0 PREEMPT(full) 
[  685.738804][ T1420] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  685.742440][ T1420] Call Trace:
[  685.743777][ T1420]  <TASK>
[  685.744913][ T1420]  dump_stack_lvl+0x3d/0x1f0
[  685.746643][ T1420]  vpanic+0x6e8/0x7a0
[  685.747968][ T1420]  ? __pfx_vpanic+0x10/0x10
[  685.749656][ T1420]  ? handle_tx+0x5dc/0x630
[  685.751315][ T1420]  panic+0xca/0xd0
[  685.752753][ T1420]  ? __pfx_panic+0x10/0x10
[  685.754404][ T1420]  ? check_panic_on_warn+0x1f/0xb0
[  685.756312][ T1420]  check_panic_on_warn+0xab/0xb0
[  685.758124][ T1420]  end_report+0x107/0x170
[  685.759783][ T1420]  kasan_report+0xee/0x110
[  685.761528][ T1420]  ? handle_tx+0x5dc/0x630
[  685.763269][ T1420]  handle_tx+0x5dc/0x630
[  685.764917][ T1420]  dev_hard_start_xmit+0x94/0x740
[  685.766766][ T1420]  __dev_queue_xmit+0xa46/0x4490
[  685.768619][ T1420]  ? lockdep_hardirqs_on+0x7c/0x110
[  685.770614][ T1420]  ? finish_task_switch.isra.0+0x221/0xc10
[  685.772794][ T1420]  ? rcu_is_watching+0x12/0xc0
[  685.774560][ T1420]  ? __pfx___dev_queue_xmit+0x10/0x10
[  685.776626][ T1420]  ? __schedule+0x11a3/0x5de0
[  685.778423][ T1420]  ? __lock_acquire+0xb97/0x1ce0
[  685.780369][ T1420]  ? do_raw_spin_lock+0x12c/0x2b0
[  685.782326][ T1420]  ? rcu_is_watching+0x12/0xc0
[  685.784256][ T1420]  tx+0xcc/0x190
[  685.785701][ T1420]  ? __pfx_tx+0x10/0x10
[  685.787281][ T1420]  kthread+0x1e1/0x3e0
[  685.788806][ T1420]  ? find_held_lock+0x2b/0x80
[  685.790592][ T1420]  ? __pfx_kthread+0x10/0x10
[  685.792312][ T1420]  ? __pfx_default_wake_function+0x10/0x10
[  685.794532][ T1420]  ? lockdep_hardirqs_on+0x7c/0x110
[  685.796433][ T1420]  ? __kthread_parkme+0x19e/0x250
[  685.798277][ T1420]  ? __pfx_kthread+0x10/0x10
[  685.799998][ T1420]  kthread+0x3c5/0x780
[  685.801536][ T1420]  ? __pfx_kthread+0x10/0x10
[  685.803237][ T1420]  ? rcu_is_watching+0x12/0xc0
[  685.804742][ T1420]  ? __pfx_kthread+0x10/0x10
[  685.806227][ T1420]  ret_from_fork+0x5d7/0x6f0
[  685.807695][ T1420]  ? __pfx_kthread+0x10/0x10
[  685.809149][ T1420]  ret_from_fork_asm+0x1a/0x30
[  685.810661][ T1420]  </TASK>
[  685.812404][ T1420] Kernel Offset: disabled
[  685.813801][ T1420] Rebooting in 86400 seconds..

VM DIAGNOSIS:
19:39:35  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000003 RCX=0000000000000002 RDX=ffff888027bda440
RSI=ffffffff816a0d21 RDI=ffffffff8c162e00 RBP=ffff88805ff87540 RSP=ffffc900079af6a8
R8 =0000000000000001 R9 =0000000000000001 R10=ffffffff90ab8897 R11=0000000000000000
R12=0000000000000003 R13=0000000000000003 R14=ffff88802b23b3c0 R15=ffffed100bff0ea8
RIP=ffffffff8b90c75f RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000325ecff8 CR3=0000000053c4b000 CR4=00352ef0
DR0=000000005ffffffd DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000018755b1 RBX=0000000000000001 RCX=ffffffff8b90dbf9 RDX=0000000000000000
RSI=ffffffff8de4d2e1 RDI=ffffffff8c162e00 RBP=ffffed1003bda488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000000
R12=0000000000000001 R13=ffff88801ded2440 R14=ffffffff90ab8890 R15=0000000000000000
RIP=ffffffff8b90c75f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880975c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000325ebff8 CR3=0000000053c4b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff85617170 RDI=ffffffff9b0fc700 RBP=ffffffff9b0fc6c0 RSP=ffffc90007b5f460
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000032343154
R12=0000000000000000 R13=ffffffff9b0fc710 R14=ffffffff9b0fc6c0 R15=ffffffff9b0fc980
RIP=ffffffff85617197 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880976c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73423ac CR3=0000000053c4b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000e95215 RBX=0000000000000003 RCX=ffffffff8b90dbf9 RDX=0000000000000000
RSI=ffffffff8de4d2e1 RDI=ffffffff8c162e00 RBP=ffffed1003864000 RSP=ffffc9000048fdf8
R8 =0000000000000001 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000000
R12=0000000000000003 R13=ffff88801c320000 R14=ffffffff90ab8890 R15=0000000000000000
RIP=ffffffff8b90c75f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f53d7da4 CR3=0000000053c4b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000