last executing test programs:

2m19.553012803s ago: executing program 3 (id=92):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x1f, &(0x7f0000000380)={&(0x7f0000001000)}, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(r1)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10003, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000010000e1250000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000000c0)=r5, 0x4)
sendmsg$unix(r4, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc0843, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
mount$nfs(&(0x7f00000000c0)='@\x00', &(0x7f0000000040)='./file1\x00', 0x0, 0x28, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018007000100637400001c0002800800014000000002080002400000000b05000300000000000900010073797a30000000000900020073797a320000000014000000110001"], 0x80}}, 0x0)
syz_emit_ethernet(0xfc8, &(0x7f00000021c0)=ANY=[@ANYBLOB="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"], 0x0)

2m19.552726232s ago: executing program 3 (id=93):
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7734, 0x80, 0xfffffffd, 0xd3}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x54, 0x0, 0x0, 0x0, 0x23456})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

2m19.47309241s ago: executing program 3 (id=95):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xc, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
io_setup(0x4082, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
mkdirat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x100)
r5 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r5, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x0, @multicast, 'lo\x00'}})
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/profiling', 0xa0042, 0x0)
write$tcp_mem(r6, &(0x7f0000000280)={0x7, 0x2d, 0xffffffffffffffff, 0x3a, 0x0, 0x2c}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r7=>0x0})
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x600, 0x0, '\x00', r7, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000240)={r8, r7, 0x25, 0x8, @val=@iter={0x0}}, 0x20)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001880)={'bond_slave_0\x00'})

2m18.453777499s ago: executing program 3 (id=99):
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8992, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
syz_emit_vhci(&(0x7f0000000f00)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x0, 0x1, 0x80b}}}, 0x7)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000080)={0x1f, 0x0, @none, 0x4}, 0xe)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
syz_open_dev$evdev(0x0, 0x2, 0x862b01)
r4 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee0, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r4, 0x75fa, 0xe475, 0x0, 0x0, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r3, &(0x7f0000000140))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000480))
connect$bt_l2cap(r2, &(0x7f0000000200)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r1, &(0x7f0000000140)={0x30000004})
socket$inet6_sctp(0xa, 0x5, 0x84)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r8, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f00000004c0)=0x27)
pipe(&(0x7f0000000240))

2m17.552861648s ago: executing program 3 (id=103):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_emit_ethernet(0x5e, &(0x7f00000003c0)={@random="e33110495bfd", @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb653e", 0x28, 0x3a, 0xff, @dev, @local, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @rand_addr=' \x01\x00', @mcast1}}}}}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000180)={0xcb, 0x200, 0xfff, 0x401, 0x81, 0x10})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x20010, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r4 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r4, 0x40049366, 0x0)

2m17.473679127s ago: executing program 3 (id=104):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000180)={0x1, 0x2, 0x4, 0x10001, 0x8, "008ef14ba278887cb0baba08431799317e6324"})
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001040)={0x18, {"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", 0x100d}}, 0xfffffdef)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04065b0c"], 0x7)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x48, &(0x7f0000000140)=ANY=[@ANYBLOB="0804"], 0x22)
socket$unix(0x1, 0x5, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x3d1, 0x1fe)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="02c800360032000100020004000010018002090400030001fc0d02090005000000ffff0200070804000300050006020400001006001105"], 0x3b)
r4 = socket$igmp6(0xa, 0x3, 0x3a)
getsockopt$MRT6(r4, 0x29, 0xd0, 0xffffffffffffffff, 0x0)
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), r5)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r7, 0x84, 0x80, &(0x7f0000000000)="0000001809000000", 0x8)
sendmsg$DEVLINK_CMD_RATE_SET(r5, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)={0x64, r6, 0x2, 0x70bd26, 0x25dfdbfc, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_TX_MAX={0xc, 0xa7, 0x7}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x5}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x7e}, @DEVLINK_ATTR_PORT_INDEX={0x8}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}]}, 0x64}, 0x1, 0x0, 0x0, 0x40080}, 0x4000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x1, 0x10, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000800000000006000000184600000400", @ANYRES32, @ANYBLOB], &(0x7f0000000440)='GPL\x00', 0x84, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000480)={0x1, 0xb, 0x9, 0xc}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000004c0), 0x0, 0x10, 0xf36, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r8}, 0x18)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r9, 0x0, 0x2000, 0x2000, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0xc4, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee523318878ee704a8d9502b566cad45587cb74ea8259c1c0a926fc09499395b2db5af40bb6f4c526", 0x0, 0x8000}, 0x24)
setgroups(0x0, 0x0)
getgroups(0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0xf}, {0x8, 0xffff}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0xb}]}, 0x2c}}, 0x0)

2m2.39242007s ago: executing program 32 (id=104):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000180)={0x1, 0x2, 0x4, 0x10001, 0x8, "008ef14ba278887cb0baba08431799317e6324"})
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001040)={0x18, {"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", 0x100d}}, 0xfffffdef)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04065b0c"], 0x7)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x48, &(0x7f0000000140)=ANY=[@ANYBLOB="0804"], 0x22)
socket$unix(0x1, 0x5, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x3d1, 0x1fe)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="02c800360032000100020004000010018002090400030001fc0d02090005000000ffff0200070804000300050006020400001006001105"], 0x3b)
r4 = socket$igmp6(0xa, 0x3, 0x3a)
getsockopt$MRT6(r4, 0x29, 0xd0, 0xffffffffffffffff, 0x0)
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), r5)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r7, 0x84, 0x80, &(0x7f0000000000)="0000001809000000", 0x8)
sendmsg$DEVLINK_CMD_RATE_SET(r5, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)={0x64, r6, 0x2, 0x70bd26, 0x25dfdbfc, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_TX_MAX={0xc, 0xa7, 0x7}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x5}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x7e}, @DEVLINK_ATTR_PORT_INDEX={0x8}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}]}, 0x64}, 0x1, 0x0, 0x0, 0x40080}, 0x4000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x1, 0x10, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000800000000006000000184600000400", @ANYRES32, @ANYBLOB], &(0x7f0000000440)='GPL\x00', 0x84, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000480)={0x1, 0xb, 0x9, 0xc}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000004c0), 0x0, 0x10, 0xf36, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r8}, 0x18)
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r9, 0x0, 0x2000, 0x2000, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0xc4, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee523318878ee704a8d9502b566cad45587cb74ea8259c1c0a926fc09499395b2db5af40bb6f4c526", 0x0, 0x8000}, 0x24)
setgroups(0x0, 0x0)
getgroups(0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0xf}, {0x8, 0xffff}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0xb}]}, 0x2c}}, 0x0)

3.540349124s ago: executing program 4 (id=1328):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
getgroups(0x6, &(0x7f0000000200)=[0xffffffffffffffff, 0x0, 0x0, 0xee00, 0xee01, 0x0])
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r1 = openat$dir(0xffffff9c, &(0x7f0000000080)='./file0/../file0/file0\x00', 0x80000, 0x1)
read$FUSE(r0, &(0x7f00000102c0)={0x2020, 0x0, <r2=>0x0, 0x0, <r3=>0x0, <r4=>0x0}, 0x2046)
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r2, {0x7, 0x27, 0x0, 0x1001a, 0x0, 0x632, 0x0, 0x0, 0x0, 0x0, 0x100}}, 0x50)
rename(&(0x7f0000000100)='./file0/../file0/file0\x00', &(0x7f0000000140)='./file0/../file0/file0\x00')
fcntl$lock(r1, 0x24, &(0x7f0000000540)={0x0, 0x4, 0x5, 0x99dd, r4})
syz_fuse_handle_req(r0, &(0x7f000000a280)="1695367704d10dd832678e4e2d01860484a69eaac410e2d6cf3b3d3925f9a3cb602592377170dffdc4de86f163e390e21d07459b0f058cfc248c4bcbe896f3c68006f3c2cbe07c55b87170871c1d364d740faeb750c8c8acb76aca18bc0c018ed341b55b0ef80cefe95b85756aac978a0e0b5ce59cae6657643e7ada0c1336bab310888351664553c2faa6dd39054e19e23cc7c4b4d33546407f880194aa0761f2a9360c4ba26de342328b92db81ae84fc9c1e9eefb4b7ec3f58a6d5d23b907327b14480a37f3c84305729a91c28807f8809b997235bfa2d4b6f45ee9568bb4a416df34f4140c5e272bfc068ea61a48b365490ccb02772a906dad457f5d2dd1a57cc1209e8897c8115049d7e4e3c756a7f5ad0c004ef66c8bf91f600910e73b4aa5f516bab5cd62ad93642960ab32b7fdaeacb1a9587a389a529c231f8a47a65fb6d27ba6a0eeb46660cd75dbf47df89e9f578eafa6992a12d9d7de56d69fd0e30b15caabd13c28d63921597466292f8c4e87f23d53d52e6e8f1c9295af0743c8c671a49273074ba44dbce9e9b1136a93dbc19d2b8e60cda5f50eba2d814822a68a0fd4ff5e6a25dd5346f96b26b5e1563ebb97829a76fd8c2aa467499fdced91b05b193b68316494f11f5ce97ed8e13d474b03c6f6eda4eff54b0ec362fda53003e6e2a3868a5d57e2426aed5adccdac8e162c6cc20361dd4709889b79b2810ba42f531fdd3746562a00da65b4211fb7d8f482a3610748d3b80d2942d8432471f98c6e9036cb57f3913b31dd8baddd6d85b44e8463b838fcfb6979628c5fa3dbd30688e10b9ede257ebc7b96d4092f38d11b9e6a4d10490a9df1387b3743cf51e206c7dbc0741c408bbebaae7f36d81b5ce5b21bb9fe992c8a0cb3a91ea2df21e571ff094b53b17c46fe22c0cead29144d203294eb42c984790a6b6348ed8b7b0317ee5b2353cc54bcfd808bf0f61f73917584e17bd9259c8a04d2ba3b4f931571947c77035975933471fb1203088dce478eb4e411ddb7b88caeb02e1cda741245df701a2b5c29c48a631eaf18549bd90c70222fd6dafe5550726bb58dd0fbf84ffeeae683a0379505f03740a652025add8e0e4e6b5bfb4bd0876dfe1ecb639acc110eba97294a4e4642aefbcad04ba50d830e945fd9900ee7e02488694041f43cbaa86280c1df64e8f1f81f7cd5130914efd19b58262f3bd2c43bd8b4a5beac09f1ba27020521994465e62c329debb50efe0716d22cf0056febc7cb95aa818e10639077e91cac3c80b37d6eebc6907dde971b578383ee04086a0dad18750ceff6b8d6d373afa93a51fee65fe1318c1ac291b784e45d66962c8b54571bc1e92a996c11561d94af6ecdd37948d35adbd1ad63c1c05c31c7f4afd707aa1956d1444fec1137fb6d81f56566887131777e5fe3e2fafe8af8f21ed34480afe74afb25d8d16f8089fcb851ac49dd826b7f273aa3d771856d712c62397d49c72d93e3c2a5e6b9767fcff0fc5b3d70dcd70ff8bad5dfd7f5a84c194f99450601f970104f9be026852ead21824152dd8f6536fcd01a69177a65f2af266e619d61d20de0c738680fbec29e7c594cad29f009d46d87908c951b2e4ad8d9a67db8be6f570fe5416d9e4dd22a108140a1c95369731807325ee7f4201209a795fa1609ce8fa27384677816f651a96cc08400e1b647bdddfb851313e3ccaa472b9a6a1da3a0936e119a6d7808f09de244d739c39df3ed36004b77cb54b6b1396b718c87fba28cb1439c7d1d140dae1ee2c2a7d647427b1e7472710c7ac4f1fb0fc0c9d15ecce28167d23e2e42474dbf1c63c0819606be9c9b6dc2eb59bf9932568ef408c20e9498cf105e84eee30460d4348f4cdfab623b416adadb4427887d9b1b6b8db75b224e8a55fa0351d21093b2b7e42e6685491cbfce100d602d0281f4bd086b50612f3ccf055fab1aad97a52695a233c3d458be4536b66b0acdda5ce0aaab48bb7d7f39a8af473c4478991f1c4569839eab0c1d684001ee1772290871653a2293bb7754c1eac178c60f86e2a98e1992dee198c76365f2d04d159d7c210c6cc58764e3b7dfb5bc15190555febd01c69cab8f55926c28a13fa4f9060dde1ca2df7e1f71fd99a0c350d7f0e341ece8e0685e9c205b486ef400910211b688f07fb05b542261c74b45f4ac23ff53e9e620ab12dad7b5131f67128bb8ed6a4a70caec437f2157f8bcb3d080091e5715dfc7d7539dd0320c90d0aab6a6d7a447ebeea893a0efa2176292c648c62cedd4138c9d0535ab0621855484fc43e0e3e84357db6951bb21fe2f4e99fa188ebecbc23f73ea879bd304408acd1c470fd112606ccfd7b7970e950ebd363afbba359a51877248a42845097094ff785dc82264225752f3aefa980d9ed5309b48f47a5b5ef49f69808b91bde955277b6525f55436ffeba0bfa8c13f6314c57ec97eea295afc66a9f4ec844474c0da6ff1ef0c6c65c035f3bb74a70ffa668359b58a46af97600c428626b45c81a4e372e198894c02e2bee8010fb4c2c075ea623a6ee24a99e225f809322df6ea6f39b1566b1aee5403d45ba648f94f70976013199b3241744458d030a5319360780897413289d89267c389e04f23de79adf4b864c5ca76efc225eb1ecf6424887f0d8b3ac13cbe9df4eb69f7b702e85fb396dc4a030d57a8c4edd227ee568fb11a9859935ad53dcfdb01727f106af352c569a020b7e405a1ad4c6b39e2e8796fe9f16db3794550f5ef3ecd6af2b2ab0383e6c198f17ada5840bde84ccbaa661d9c456d9ddaf92763ba450098cd5a971d847fd5030a4c9b066ab3b0096dfdf7e5ce2f8349165f94c493b7e4192e85239bb11552f910fb41c5e96ee10fc8dce711e88e0572ce0bbbd9c9f3b7c9dae89f1dfa6af309c4321755a5b19070c8731ac590c30fffb69feeb75f699aebb101d3a30f784f1745182cb4f0bf63a148b521f0a03c691927694ee453b278523e3ed256c150098a932f62c90ac65faa4b9782c27a3ef6ca2b5ecae6a01d8a1d7096bf6a7d1b317a9eab22ef4907c631bcca224f723f5fb9a44d7e1295186cf37fd71343919aa167fa70a505a73e9f52a11cfbd40d8c1087d4ffdfe45a40ed5aebfa4b0c3622c78a914d68dd92f46478711437ff88803ab28cd9ce2223aa0fa37eb9d9a4a7866dec4ca6bb66e794ccac6bd19b11daa0b6d4d42cbcf7d6426b5718030ca51bf92b3d8ea0b11c46ec5c0c6e3805c88b39731b2b751d9928ed1ddba7c66bcc5273d709fd295aa0792384435b98c1f44575c028ff2869074156713931f7e62f8b0f8c7ee9dfeaeb2e096e77600586a47d6f6a2e13a17dfceae46ad84858bf8873f9f1e35fc700aef0a648af168ab0774a3441a203ef325577f2c76f5f0e5808acdc7965bc65e8ad1ca816bc3b67711ea42e619c957d0f26b394be1f3b0c4ac9af8558eaebf5c1c27b6549022513479b4c28dbe3f1c3131cc9211eee768f96a9c8b5e0e6425bef921a355faccf0072ba19b16d88b75feb5dc8fcfc1b7b5973eb9654ca3dcfd482831ff5d1fe09fe7ae43cf129c8c17a6686685a13ed076f34608b7ac16eb8e9de6a44418c4e3f8162e6a679bc9482df96a04b14575ebf093b99bf5cc26495f5dd6e571129d9760de3f801b001a1f3248d14f579bc519de2b656641a88da758a2ed3baf15fdf2739ddb44f0e5892de7ea48e9302129d0c939137b9d0687b296577675bcbf433a53f6a9816797cbfef1ba0caa2b8602387b5a8bae24d3e15d42b34d81708738fd269c3e8cbacdc3ff5ab1d4816a783d7be0f0a8086e345a6b4c231ffd61745f6c45cfceaf6089e70542aea1574e3c78740f77a08eb55b37f03549c1dd318cb5a76094210e8cf800c350d328fbf9442d0437e7affd54b3bfc33da3f24558f3ea8e59da8e61ae60e7e7b4de7179b8cf941d51d420c8eee69143966800dc4f7bcb50a033331fcac02a65e88de28ab219c68388a9da9196e044dd1ebbd3994bf8cc862f6f8b419fa1f4f4e5427f10866b498935fa28b8e6f9c5e48be8b74b9c2262823390480f71aff6cf72281f526265877d223eef9ad7a4be7438f9afb6aff0e80c5125c2c612ceb83f0470ea04479979c0a10fbbd0bed7379e949cc19fe36fbcbcc59a9fe30a2662d3e4d22862e8841b587b8995ef8482bc60fe0863b41752ef3dd44a387eff101595822bf1ce440ff9e5f73e560e4f7fbfe4754d9dabbcd92de02017eb43d3cf7c75e45ba04009a782a68ce11eefd52253c721daa5f37c6408e37b48d1f2e36d7c1793300f2c9039e69a52057486b63c0fa644d00528ce48f2e551ca88e356ac25ae74c73492ed3e6233490acfbe7ed8244f23e2af86e0ade6b78bb34a75a86f6cbadbd39762680cb0821d6d28f18d427df13d0e747f6da54be970e43ef8ca8285dc8bf44e3cecdbf2d8757a9800bb889b846d58cc636a2648809451a95736a0ecec6ea3fe61fb24dcd8a00ac0b8933918189cda555b17e431d99ee190d6d0d9f769e665ec193ba8889ae72a01e18b98cebb75d20ed778e5778ef657ce85d40eafa44b46f293d64023b877e8c5d58587c3abecf9a1ad8d874a4cdba0bfbea61b7eb19e81f7c932be12a83bacc51017b42dbe2931dc11c742a5a942cb6ed9bd9922ad78f55b0f6cbae0e8d4235140263ed8c83ab22e71a0f0a62b6920b5d5109e415254e527546546bd025cf1583e3e8d9d5bf735a4651fa2e5c3c86a185bb77e9b75224cdda8cb0eb21d9e3bb19e286832aa5dce19f055539a0a5caccfd752742a31d0af882c4f02c29cbd90ac2cdf5cc61c448cd09eb7b82b930ca99962c0e5ed84124fe37f7d30aad0296ee340377a7e0aa7413c495ac8ab0b482c4c5f59872efd5a1ceadbc7606e67d3c79a77d095bd82519db0893b9d2bbc2b2f3a7391826840e49424703c006399cde5f2a52a9383e89dfbfca284be4d75dd3aafd8a43dc6c71bd7fde9460647eb5c97707e96ddb9124d6020da38ee7ad743db8fd0377a8711905194c496e39a2132d7bbf35b79f920b6dcaa73625bf8b5320da250513cd45bf42c8072809ad59d69c02f0554cf82b79ff291e42d9227de1948352b0dba0281b69876ae0ca24972a5e75aee7e0a46bd4fc83f5a0dd3f22d666f2d950ca580c6da6dfaaa293beded10d1328613611b6e01d5d8567541e81466467302d8050a3ae4791fbddc1aec749edb68173be5341166c1d5c42d63e7368473e48bafa43459de3fa3a5550a4ac979711dd9a2d6796b0bcf9b5881124ade4b12bf64fa55724976a0da9d642e76a036c430f5fb2c06d599b0f78e978580f8eb763d2846177ff18b9b5cf8c76197ed809ef24212bc5563a1713214ce78e0e6cced6e41578d46a07839795c83c189610244bc1b680535fce39f290da90d719078015d90020b1d4567a97081b48514709df8e327d814e8c15496d90efacae6b13e297ed520d280203896bbc3a23f3b638adf594de03a782bb292a93ef0b14b8b3e13c01787a0b7bfb3abd8ab15eebbc651b7b054d3e56ebb7808de9b9bd067560ec6a6432455b37054292a3d9d32434506bf84b2907560017089de3f60c2deb4dfb7371f96d65a575d446aa1d2df81867135120df4e24e9227f72ff9f8f015a7754948704ecd084a1a93fbeb5a44af086ef73e9fc1c072b7d5473e92558fc2824acf27f1dbe9b019247d3074bf4256a966ceb674a2c4222632c8e4b6c0736de019ccfe4cca40b9b07f8c4df9753cdfb4ad66643ed71510983e29c2b5f9ae7db4913cb74d9dd0461a900810650d0da73f766aa6882385f3bb40644bf43f01faf2aa4cd187659edb0498527f201442b64349afa814b3dae5ce815971f3b11d177e3e1aaf90c7674c097d475640218ad27e63f9071c9081c06d9b5d1f3a070da3eed4f4080190a74063e7f97b5f35706dd1173dcbfa13a70d5362e50d57d0c5105c8d3beb926d93f61699e737ebe1a935839c3aa5b629dc93aa209d9e7774c40de7f59fca1eb274a8280022a15934e5dd2579a8cf5cd16a3b0a1ff3ea712c4258164fe2fa17a4cbfa5630f4041bad4204605eb2e762d610fa17dafa415ed8a678da1d4b5a6618d71d0066d66e3ac10b3ce65137a5a02344abc57f1be4ce0cbf1a2ac66dcb5e94495e863819c627e4704fb479c232b27aa4a5dfca8896a7eb8e0592b6b392ec9fa2767f569d5c1356d7ef7a909d8ee344ba017c75ca664d98f5288230b7f1ffa2fa7a5d07fab5f4b53b7f19c3fb361795fd632fa8a654004d931b4b7fc0890927aec727160cded3c01b7e40e6b81ce015796895f9c007762a1c22acfb9513eccd93c845e91ea8b0960b299b3ce788cbcce5bea9a94325289d2c3573975c512d56e19c4655f849b3652f8b5f9fa6f49e03202f2031debe3c299c3ceceb1febf4b285da9033493088a36f885ed6d3958b8d05cc6be00f3465de8bf6e41796d17e393067585b459b143d592cea102f584e48676a45f896cf662bd6b3b2309aa7f46d2b8ec6597a063f12bcc88922050c8c1e070134ce77ab1cb7a7f29983a0b30d9b2abeca5cfbfc55e941376c616c2834b1c1c9a9473b531c86c3b708478ee95923fe6a8108c2c4dc8a78a9d5e995f6c815b292b986cab0afa233ef10567a49d4e8dc17f438b90b620df4d291b52549ac8e1b69078b62011ed4bb0e288db740817ff07d01e779e11cb8e0606b5ca3aac6c7b262499f5a115acdad8a67b6eb77503318ef3bf0008347b270aa986d9e79e2af174f38a4743250c1091e6053a7a785464483161aad3ef3ad976e5329b71afe9bbfd93d7541a1014db4cc159ac266021e841c665217fa150e130f921ebd4cfb5accdb87f5f9bc0fd94b402289db4d0ac3f0906a689aef044c09fc2c5a00f7795ea935aeb943eb32826bd2176c1d1cb058195e3229d293595ebc07514c6b038a1d964199c59e59d4fc621c54b7bbd3410ccec22f7fb6751527c2aa0940ed2f0c9dcfc4e99ced91d09ba4a37042b5f48b127439cad24df2951ff1e769d3892dc4788dbbe27cce60f7f0138789444712e84e059ac0a4e87557f6c3369fc61b9a843c816df3cb4ec77a11e16390234da24dc0420f6a44554fc7954cc74d63ec030d4d964898e14500d0dacdbb2959f7a8a191773f66448348f36c3f4904187088bcfeafda7dd721236810d04469e93ca4e7926305c25b1ef1380d775008fd238e33e8dd2dc5a9783f97414487a7ef70eba3dcf71331803fad223f65aadfc87d79512bf311c14926d619a089f5e84c46f4a9ff393969f8eacc8fa20acaa9eb01a8aab625853e415d3871e555a11ee71ee93cba85ee9cde60b3962e294c2c840f0a1ba87714bac54f1ca0ebda74daa3e8e19d382b951d64a22da48c632ec5754f42129214a807427e69a93c128b6b0a8697c9ee375818dd79244a38287fe8f66c7cc3aa18aee2fbf804fc1aadcc7d2daf75be82a60276b6902a51f2bbb64c261915b80053fb9635f405f1fa855d1ec8adc0ebe9648b8151eda70ec5ad5f704fa2a337bcfb7ecbc845a11cae7a68d6bc58f107ac7bb0c2f6b83edc48703ba00c94036b9af4ada51d6d78bfe697df06f47573c14cd7191ec52dc0f208ecdcf54669529bba2c2fb7a6b38f6f2b5ec5fe876f03c096ae092b6f881a84b00edd1e9f67449069d876afaa99eb1a446f20656b5104c72ed28bd8553c724785f4e8bfdc33194409960de4969b708ce26e4cd608d21ace0c38e27d54b55369a9e807cfda9a6240466dd94f6150d4b0105f7b9ae392009b2cf146d1dad5d7c8664463d7d60d11b45f30d01db7364e21ac557d37a4c9ad88926c472e98710d2cbfc4b70d6a5dbb128d46909e634761c6f6952bf9021aa5282c391dcee3278a25e3e2ee31a7f6713979a546084fb2e598214c36a3b7618bf23c57bb23b33e9c98dfe5192ef257dc2d891a6f7c11be334fbdab015eedafe1c4aea95ff1fa6d340d0cade542f3f782c1589470fa64c6fd9ac0c31536ecee0ae312f992733beea6fcaf7562dd6e0f2c016f712ce14d93f02a54f577c75b444fd7f46e9bd2cd9cd1f89195781d88f984eca45c97355095d3b48b0d9bd730c7d6f63b1dc78d2344bdb0f18c4e1554822345c11efa2ba32bcef4f29ed05315cf44617a80d7d1392de077bbda08669c8c3cb6c0b12f872f1247bc1d07634bf5bf4acc3a4ecdae7e6acd7c4af9820147afe55500a7270d7eb511f907339e5af54cfaf33e2364f54091ebee2a245ba048452d383cd441604c4dd1c6376e4df8b83ebf6070d2be248174fc1dc0a1352c103325360aeb3ab71cb73bb646ac6247dd68155fd48b90250c3b0f250a74f827780367e117a94094e5005e2f926accaef0b3e36c25e315c1e80cd4c3481f3465d99025c7de91c45bb8dd0a5577174c1f366017d87d2033239a8b6f399a9095845b5fafe9cca113b93f455bb790709b6c93fcbbd0c4bd7b5d621088dca06802e241836291226ad56d40b3b4e90eb68bd5845742baf4cb4a69b4bdb07f02d0bd6fbb5a5fad3af030816b254725e6db4073b7a0536b884c8985c3a159cdb105c73f7e0e03546248336449eff6afeb96cf8ad3617df18ee2247bc2d11ebbe10e0379f5578c41611872c5461541fb4da5be3f3348e0592982a61c352315370a9b452306c9f31f9040ef755ad096a8733dd9daf6bdbcb7a3521ad2282ae4fa7bfdb9cda5997ba3a6652af46c6d0205bb356dfb411e2b931b357723bb70254211819b74a461ed5c126cec6573cda4f6107fc3ebc76483621e9ab5789a5575ea3a91463f76138ea0f3ec9c44e1cddb2de59bef83333d235e922b920e267453676575b38e6415bd136534b8df2360ab489fb69eefd04b66758ab5dd105be7b0635f7194f9e4b158b22b21ac97fda4e804747a9718b40a32531cd5c3fd1d3c1dd8ba5ef9c86d3c8df8c71f81da1a9756e5db4dddf70755053f7129d656a8069fe83c39ab240cf7a73f0f880ec7a791c5115ab262184839b906c238eaabf2268dfcd6560c5bcb70fea00b580ad52e7de0333e6de63ae351952e6e5dee6edf284de0a2f53e2089db13bd5eca5f98883a24eb2e1a58ae199f8db9c60a5b6b85585b2d2a17d6b5406e5668685d95c4718c375db05f7953b363c25d2ed0906eda70eb659845acd31fec9b8e4d5951d12fd50bbb969dd824a78c72622c8311a980f0f2e6a1ddc368879a1f3a07d3c0780e85a4e5d13223a3424782e3f77bf6a1ebf823f468d41b777ff61345064f1096ed653c277bab90ca5afc8ad6d25f4447236cdd82950afff27763f3fef5308f034379f4ad4955cb8cc5280d51b5427de4eba374f64dde2f1e7a6ae628aa4696160a5cf0ae9fc70e307b4eb19c0a5af2c2855710c8e117211d73a7e7f3f7f2ba55d03a4b73d816c9c3fc1edb86ec95ddcd77884a913805ad6549e7a5f776a1c2385dd6d83877727f128207cda29f83462269a7f606fa31934d06a6e0efd238d0a180c754a9d2e85609fd20c880ea0e79cbe887c442f9f682801da783529e1e45eb3e70195fa2711fa291dca43ee0672b7afc14cf87b9506a7ebe223019c856777e1783f6ae1b0ed90486b32e3b6f7ff77be834c7b6676da6c8052fa49450e3e16a6f90ee33742bbfe3dc025832e0bbc7abeb625077b8c1ea07dee89c7dc26fa42514ff9ac21e848e32309bc2862a873fb57796e05923fce42fa2833c73866e22a04497ec13acebcdff6ae1df71dd8756f1febac04f2034c1f3e1d401ddbdb7f2ef676d5c85437830d527a5fb04c9bbf0d892ee1306d2d2df37008916a3a66e70f865cd6d25de16fdb4bb4f2616204cf86a3ffdbf147223968c092a46dc2aae4aedb32fb850b85d4adb87bfada328bce4c2c70ec42affde442179fcc1d3d9f5e4a848c8ba03b0df3065d1b2d5f1b08d8c25148c51bb54e191a87ea59903084000b4b520fffda111fe831d4bdcf62423c1fcd673b020c5f2c41973dd1b9698054368081f917715e1c1592bc78dd265e051bcda5bf5877821fedfcf7790a58b328cf780f71ee71491e59194504bc800d319251607e53ba0e1ed15cd4fd5c959eaff4d3a1c7cb28c479f2776256633ef7c0f0e98688b54e8c8634cf57e27e5c1ee1e43573ae23bfbb1ff1bef6cabd33c02ff165c44f0f190426ba8391ba4f03458be3351869c5c5c9d5fa5600edbcce523525b9cd9c3bb040e34771ea277d05cb76302c72fac5edc815412dbbbc651371d70d044c4f89a68da7abd836fb3a495e212b5fd13819c41c9a240405582ae69b7c35b30935af3085d457a4d76a94c9272c5eafcecc4c92dd4f314b04b4739864e626a5bab27fa2f345f052afe3bae2ff4c442c42a1c83091bfcc23a3b5e06a511d02cefcd618a6d9761de00af192cf1aacc902cf3ba98f898c48fbc74b6710db7ac890b4f7ed7377e0fa3b4c46a131e775130a80db5014a79e674c8fc8b45495066e88201d2e320320fa4561abab617d0e67e9e879b0080a8ab404f4eb007a088990aa6a7b29afce5b8dd038ce96d43e1271315f6070e761e759c44fba1ce78730e35ca31e0bf5840cc01289c81613a07c497f288ed70a6d10d9f58fe135558b2a862bd877fcc939d7536e7dc988409290cd73da04a3b1399b0a2637f737d5f86bba4a31019546e2000a3ca57f8291cd9af28299eb93909061200c9738cca998add04e7bb0137ecc460fc3ef72872e7d13c159914fcdf577910e6c5d7a1636b13b78c5088551c614e3c75befb0f37fb89b918f4aad0126a9efd3390d6a0cab97ed0e01c7eae0e798a4142345578beb10d6b61a90b4d1fe836022def90bb8e37e07428a4592e7bf30e935951e492234a8db96f081379e7c4e18c3b6ce4ed1f97698dc1da940f14217e877bb8e0f33b392d801a01c48ec62ce2774d2e4e55e9415c063e1bfa31a8f0633443ec19c5fab977c1485147e46c06f86742278fd071de4a165dff7eddd5390a1e031d80e3d44477f6009c9fc27a7d92b865a292b0d586083f681c2d92da7e7f42eabd076fa7d61eba0c2b406c75f1cec561b1a523dd4c6f344b02ed59bd473d7d30a24144e981fc8da434931adeb841d63bb705485f8f58a180da91af64bad1379356787b37467dc9b4a0d12496e5048e7ccb40a978eebee5eaac4e9dd96faf194aa93a22333d7f68cccde147dce26c9ff18d7c8ffe0d1377c70dd1057d54473b2c2b2b3eea82fb223952c0dc3796efd0cd94afea38341ab9a83c6a9ee77f26bf8dea8510dfc964f9b9b4942c08ade50e43f06e5101f2e6b68b6a7f9cc5443c862b1198627461938daf4bd1fc7b21d6d7fd3f775f0e4a1f60434a242b049f159dbe5de145e741c5c9b4e59a7f5d7de54a6d51cd87845dde819ca74e3abf60356fbcf18bfff3b6ae1c545e243c08f9f41b86e55ed6e71be453843e0bffc5b6bdcfeefd33075ee5110627d4f05e008e54ddd62fb6979d9c2a5e4a2cb45fad7b2d77bd17508952889b30df2124cdc2fe6a749a12c9f6dbbd01226cc4ba2693b7e6a858d3c36ac6519ee70e896588a6df81b0e3be3604bbbe1a845088cf1834a04368dde8b6ee76d0492911dc09b05cf6642e0003cd8faafd398872c1a8dc3e85d3658ec8", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)={0x90, 0x0, 0x0, {0x3, 0x0, 0xfffffffffffffffa, 0x0, 0x0, 0x38800000, {0x5, 0x0, 0x802, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x8000, 0x0, 0x0, r3, 0x40000002, 0x8009}}}, 0x0, 0x0, 0x0, 0x0, 0x0})

3.503891948s ago: executing program 4 (id=1329):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_int(r3, 0x29, 0x3e, 0x0, &(0x7f0000000640))
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r4=>0x0})
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f00000002c0), 0x0)
getsockopt$inet_tcp_buf(r6, 0x6, 0x1c, &(0x7f0000000900)=""/203, &(0x7f0000000680)=0xcb)
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x44, r1, 0x200, 0x0, 0x0, {}, [@NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x7}, @NL80211_ATTR_WIPHY_COVERAGE_CLASS={0x5, 0x59, 0x9e}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8, 0x40, 0x2c5}, @NL80211_ATTR_WIPHY_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x48c0}, 0x0)
r7 = syz_open_dev$vcsa(&(0x7f0000000380), 0x7b95b611, 0x802)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r8 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r9 = dup(r8)
write$6lowpan_enable(r9, &(0x7f0000000000)='0', 0xfffffd2c)
r10 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r11 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r11, r10, &(0x7f0000002080)=0x64, 0x23b)
writev(r7, &(0x7f0000000240)=[{&(0x7f0000000200)='3V', 0x2}, {0x0, 0x300}], 0x2)
sendmmsg$inet6(r7, &(0x7f0000000880)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x5a, @private0, 0x8}, 0x1c, &(0x7f00000001c0)=[{&(0x7f0000000240)="882cae4a1e26eb4e4b0e8afa5a5fa0a091483916af8ea8443eb92586bbf1b05722bb44e09af3425b6c8ba0d2a895c67ac480cb439cfafab8e35258e458c6a1a6204a7286bbc9bdc644fed650aeab84897d9ec9b6cdfccb75a6eb09125c42b4ef0cfec5455c5cad7dcefc10bc0ff1e0e85227d6b03c0ea9e5cc09bc3c8b78053f15e0265b5f0742a08cd88a9ffb3261e5cbd12c407bc775aa6caed9e22b6b49eb2a9e0228f6e9e95eb8494b279a02b21654dce0b2ba8e82738d227992054ab42e82e3c6fdab161f89e296897ee4d523755741d8b2468a65570ac5", 0xda}, {&(0x7f00000000c0)="898e76f01197", 0x6}, {&(0x7f0000000340)="55a1e420b1cff9d2a321c489d35728337254641b1c543dce814bc1d5cceaa746589e92edf28545533e1c5bb40a44dc2ace6a300de4b5e872712ec9c070c2aed254a89bbb6ce20067b1b6e3c1a0d05deaf3293fa960df951b1eabb94aa3d3f7d38f884c5665e1af06113ff334923d23b49727825865764057e503b0f29a05150b864c0b7c91a5d2829e0ecdc5678f1fa1779290763dedd65711165b799e9a7cc5c426364b38e413d7d279f75bccaa53b68d9221b88445d231f4ae41adf8", 0xbd}, {&(0x7f0000000400)="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", 0xfa}], 0x4, &(0x7f0000000500)=[@rthdr={{0x54, 0x29, 0x39, {0x9c797e10e57858e2, 0x8, 0x2, 0x2, 0x0, [@local, @remote, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast2]}}}], 0x54}}, {{&(0x7f0000000580)={0xa, 0x4e23, 0x2, @dev={0xfe, 0x80, '\x00', 0x36}, 0x9}, 0x1c, &(0x7f0000000640)=[{&(0x7f00000005c0)="5c04e0e6a05fb082d2cbb2f98f02ef5d7b8933835daa3029e324ca4c94ef5b6ce12608e05162cb8bc06be466e1f1ca6c054b8bcd3a50e991d4cefb5f706cea2ca91d832f7b4e3d", 0x47}, {&(0x7f0000000b40)="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", 0x1000}], 0x2, &(0x7f0000000680)}}, {{&(0x7f00000006c0)={0xa, 0x4e20, 0x6, @local, 0x9}, 0x1c, &(0x7f0000000840)=[{&(0x7f0000000700)="76e7161862ea2342a32264cf6e595649641f7f1a0e5729ddfe7bf6c2cb6cd8bfa14495536c88117d4216f8b7ee2e172c78e39acb64e53a25df3c052f16c8bd7b90056236edc8305b6cbd6b5a9dcd62959d9359eb0ef991a9646a5c48c4aa9d746e0b168f572c9fc6d29fb9a99a9ef1620502c898fe42824282e5d08aba2c2154cbfebee5787139f85074c881441fcce9d1f6ef18dfab1e6fe76b0bab119253b41378d37d7e7f57b42fc358b351ac230d72ef16b4e7c9dccda4a6c5845cee68ec3ea19baafa2497f12c37b4bf0a7ed7f86fd0ac", 0xd3}, {&(0x7f0000000800)="5fc9df1a8bff320528045b8e40572141bdee8711cc6669d701a7210e8e50bbe45e78", 0x22}], 0x2, &(0x7f0000001b40)=[@tclass={{0x10, 0x29, 0x43, 0x7}}, @rthdr={{0x24, 0x29, 0x39, {0x87, 0x2, 0x2, 0x3, 0x0, [@loopback]}}}, @dstopts={{0x144, 0x29, 0x37, {0x3c, 0x25, '\x00', [@enc_lim={0x4, 0x1, 0x6d}, @calipso={0x7, 0x20, {0x3, 0x6, 0xf6, 0x6, [0xffffffffffff8001, 0x2, 0x0]}}, @jumbo={0xc2, 0x4, 0x10000}, @enc_lim={0x4, 0x1, 0x2}, @generic={0xd4, 0xa0, "a3964ad5907f7ecae34c01a5b964d6cae728c6f2b07ff90dd53cb5b35f8be7113faf57bf1c5b30b7f35ce541a22565d3552440fc243c6bd80a97c0dd4aedf55a4227e46f23a6041857f8aa49611cdcff4fb08422bc5b167b1ab5340b00e303552045722c26657049801ff1d4e7ef3bbaab07fc855d2d7ef9ca2709b62e2d02c22a3eb0ae66f7ee58cdaa4d9d0ce0c42b9b02a92a976db8628779135cef65a312"}, @pad1, @calipso={0x7, 0x50, {0x0, 0x12, 0xb, 0x8, [0x40, 0x8, 0x8, 0xa6f8, 0x6, 0x1, 0xffffffff, 0x4, 0xffffffff]}}, @ra={0x5, 0x2, 0x8000}, @ra={0x5, 0x2, 0x5868}]}}}, @hoplimit_2292={{0x10, 0x29, 0x8, 0x6}}, @dstopts_2292={{0xbc, 0x29, 0x4, {0x2b, 0x15, '\x00', [@jumbo={0xc2, 0x4, 0x79b}, @pad1, @generic={0x81, 0x7c, "54e92a35bab1ee73b38efa748dafb8d9655ba96b1e53b1d770f396f1c4c36acddfd76f81dda39592e5fc9835e70a25a3bc332ac70942ed705791f9d633a7652273e8814e4650217619881060601ba248bdd028f38ea7dd24e98ffbcf25b553256e05e5cced1f87f46ea94b40d33b4c1228b3edfaa02378357eaea247"}, @ra={0x5, 0x2, 0x299f}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @mcast2}]}}}, @dstopts_2292={{0x94, 0x29, 0x4, {0x3a, 0x10, '\x00', [@enc_lim={0x4, 0x1, 0x7}, @padn={0x1, 0x1, [0x0]}, @enc_lim={0x4, 0x1, 0xe3}, @pad1, @calipso={0x7, 0x40, {0x2, 0xe, 0x6, 0x81, [0xfffffffffffffffe, 0xfffffffffffffffe, 0x6, 0x80000000, 0x3, 0xc, 0x100000001]}}, @calipso={0x7, 0x28, {0x3, 0x8, 0x64, 0x8, [0x1, 0x151, 0xfffffffffffffffa, 0x3]}}, @generic={0xf8}, @jumbo={0xc2, 0x4, 0x3}]}}}, @hoplimit={{0x10, 0x29, 0x34, 0x407de1d8}}], 0x2e8}}], 0x3, 0x0)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r1, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r4}, @void}}}, 0x28}, 0x1, 0x6c00}, 0x0)

2.994050958s ago: executing program 4 (id=1335):
openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x402, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @loopback, 0x0, 0x0, 'rr\x00'}, 0x2c)
sched_setscheduler(0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmmsg$inet_sctp(r1, &(0x7f0000001680)=[{&(0x7f0000000000)=@in={0x2, 0x0, @loopback}, 0x7c, &(0x7f0000000100)=[{&(0x7f0000000040)="9e", 0x1}], 0x1, 0x0, 0x0, 0x12c}], 0x1, 0xfc)

2.912438104s ago: executing program 4 (id=1336):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2a, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x7f}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000140)=0x12)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000040)=0x11)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000640)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
pivot_root(&(0x7f0000000340)='.\x00', &(0x7f0000000180)='./file0/../file0/../file0\x00')
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000440)='1', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[])
chdir(&(0x7f0000000100)='./file0\x00')
symlink(&(0x7f00000003c0)='./file0\x00', 0x0)
rename(&(0x7f0000001540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000240)='./file0\x00')
io_setup(0x20000000001005, &(0x7f0000000880))

2.371215838s ago: executing program 2 (id=1344):
creat(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)=@newtfilter={0x5c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, 0x0, {0xc, 0x7}, {}, {0xfff3, 0x5}}, [@filter_kind_options=@f_flower={{0xb}, {0x2c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xffffff8d}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x20, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x1c, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x8}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x161}, @TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0xd785}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40}, 0x800)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r8, 0x201, 0x0, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0xffffffff}}}, 0x24}}, 0x20000010)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)={0x14, r1, 0x333, 0x70bd27, 0x4}, 0x14}}, 0x80)
mount(&(0x7f0000000180), &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='ubifs\x00', 0x8000, 0x0)

1.922530121s ago: executing program 4 (id=1345):
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x7)
setfsuid(0xee00)
r0 = openat$binfmt_register(0xffffff9c, &(0x7f0000000080), 0x1, 0x0)
lseek(r0, 0x40010005, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r1, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r6 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
readv(r6, &(0x7f0000001800)=[{&(0x7f00000000c0)=""/92, 0x5c}], 0x1)
ioctl$SIOCGETNODEID(0xffffffffffffffff, 0x89e1, &(0x7f00000000c0)={0x1})

1.908640725s ago: executing program 0 (id=1346):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x441, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x8, [{0x0, 0x2, 0x3}]}, @ptr]}}, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
r3 = openat$vhost_vsock(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000340))
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x1, 0x1, 0x0, &(0x7f0000000380)=""/223, &(0x7f00000000c0)=""/6, 0x8080000})
r4 = dup(r1)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r4})
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000200)=@req={0x0, 0x3, 0x4, 0x28000000}, 0xfffffffffffffd0c)
statx(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0xffff4a9c0080ffff, &(0x7f0000000240))
ioctl$IOCTL_STOP_ACCEL_DEV(0xffffffffffffffff, 0x40096101, &(0x7f0000000800)={{}, 0xfe})
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r5, &(0x7f00000003c0)='@', 0x1, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, &(0x7f0000000180)=0x9c)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCXONC(r0, 0x540a, 0x2)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x3)

1.731352305s ago: executing program 4 (id=1347):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
getsockopt$PNPIPE_INITSTATE(r0, 0x113, 0x4, &(0x7f0000000240), &(0x7f0000000280)=0x4)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000180)={<r3=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000080)={0x13, 0x10, 0xfa00, {0x0, r3, 0x2000000}}, 0x18)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x24020000)
r6 = syz_clone(0x16040000, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = syz_pidfd_open(r6, 0x0)
setns(r7, 0x10000000)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000240)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r1, 0x7a9, &(0x7f00000003c0)={{@my=0x1}, 0xfff, 0x3, 0x0, 0x0, 0x80000, 0x0, 0x1000000000ff8})

1.73071966s ago: executing program 33 (id=1347):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
getsockopt$PNPIPE_INITSTATE(r0, 0x113, 0x4, &(0x7f0000000240), &(0x7f0000000280)=0x4)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000180)={<r3=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000080)={0x13, 0x10, 0xfa00, {0x0, r3, 0x2000000}}, 0x18)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x24020000)
r6 = syz_clone(0x16040000, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = syz_pidfd_open(r6, 0x0)
setns(r7, 0x10000000)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000240)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r1, 0x7a9, &(0x7f00000003c0)={{@my=0x1}, 0xfff, 0x3, 0x0, 0x0, 0x80000, 0x0, 0x1000000000ff8})

1.468154402s ago: executing program 2 (id=1350):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x9)
getsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0x13, 0x0, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = openat$ptmx(0xffffff9c, &(0x7f0000000080), 0x141300, 0x0)
ioctl$KDFONTOP_SET(r2, 0x4b72, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = dup(0xffffffffffffffff)
write$6lowpan_enable(r3, 0x0, 0x0)
r4 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7734, 0x80, 0xfffffffd, 0xd3}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x54, 0x0, 0x0, 0x0, 0x23456})
io_uring_enter(r4, 0x47bc, 0x0, 0x0, 0x0, 0x0)

1.464104805s ago: executing program 1 (id=1351):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x3}, &(0x7f0000000000)='/', 0x1, 0xfffffffffffffffe)
r2 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d80)={&(0x7f0000000d40)='mmap_lock_acquire_returned\x00', r3}, 0x10)
init_module(0x0, 0x300, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r1, r1, r2}, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r4)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_GET_WIPHY(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)={0x28, r5, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x2, 0x3}}}}}, 0x28}}, 0x40)

1.341842395s ago: executing program 1 (id=1352):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
bind$ax25(r1, &(0x7f0000000380)={{0x3, @default, 0x1}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r0)
sendmsg$NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r2)
sendmsg$NLBL_MGMT_C_ADDDEF(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x2c, r5, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x1d}}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, 0x2c}}, 0x0)
connect$ax25(r1, &(0x7f0000000000)={{0x3, @null}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @bcast]}, 0x48)
r6 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000240)='ns/net\x00')
ioctl$NS_GET_OWNER_UID(r6, 0xb704, 0x0)
r7 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r7, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="3400000010"], 0x34}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x5, 0xa5bfce5, 0x0, 0x0, 0x1d, 0x1, "646b4c7fed409e3eedca8000f500000080000000008474071e9f67cc6481368e22ccf521b6bbe3a6a0157ada941ad42d2b62cb6d7dc5352a94b52ae0bde3bb2c", "0db14295dccd224f8b5ef2619871507eddc5fcc80afaa01d4c3b062568a39748aa00fab4400f982510e9de5b54ae1d7051b12a0cb84eb89391fef5ca6b49111e", "d05ec8eb94ee9afa9810416be0e28111a4a710927747eda9cb44bcdc7563144f", [0xa, 0x7fffffffffffffff]})
timer_create(0xb, 0x0, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}, 0x1, 0x0, 0x0, 0x2}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x800, 0x70bd2c}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x34}, 0x4}, 0x1c)
writev(0xffffffffffffffff, 0x0, 0x0)
r9 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
sched_setaffinity(r9, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$xdp(0x2c, 0x3, 0x0)

1.341539687s ago: executing program 2 (id=1353):
unshare(0x62040200)
r0 = openat$fb0(0xffffff9c, &(0x7f0000000000), 0x28080, 0x0)
ioctl$FBIOPUTCMAP(r0, 0x4605, &(0x7f0000000240)={0x0, 0x1, &(0x7f00000000c0)=[0x2], &(0x7f0000000140), &(0x7f00000001c0), &(0x7f0000000200)}) (async)
r1 = fsopen(&(0x7f0000000140)='nfsd\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) (async)
fsmount(r1, 0x0, 0x0) (async)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0xfffffffffffffffe) (async)
r3 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000280)={'syz_tun\x00', <r4=>0x0})
bind$packet(r3, &(0x7f0000000080)={0x11, 0x800, r4, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14) (async)
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@remote, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x1, 0x0, 0x0, 0x67, 0x0, @rand_addr, @broadcast}, @time_exceeded={0x21, 0x1, 0x0, 0x12, 0x0, 0x2802, {0x5, 0x2, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @rand_addr=0xe0000000}}}}}}, 0x0) (async)
readlinkat(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
close_range(r2, 0xffffffffffffffff, 0x3e00000000000000)

1.212368268s ago: executing program 1 (id=1354):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket(0x10, 0x80002, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc010643a, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x3, &(0x7f0000000280)=""/4096, &(0x7f0000000000)=0x1000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000010001fff0000056800080000faff0000", @ANYRES32=0x0, @ANYBLOB="c30c424700000000280012800a00010076786c616e00000018000280140010"], 0x48}}, 0x0)
sendmmsg$alg(r1, &(0x7f00000000c0), 0x492492492492627, 0x0)
syz_emit_ethernet(0x7a, &(0x7f00000001c0)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd60bed0c000442f1b00000000000000000000ffff00000000fe8000000000000000000000000000aa042065580000000000000800000086dd080088df"], 0x0)

1.01232435s ago: executing program 0 (id=1355):
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0xc0086202, &(0x7f0000000040)=0x1)
ioprio_get$uid(0x0, 0xee01)
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000000c0), r3)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r3, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000600000914000200fe80000000000000000000000000002e2e0007007379656d5f753a6f626a6563745f723a73656d616e6167655f726561645f6c6f636b5f743173300000000000"], 0x58}, 0x2, 0x34005}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r7, 0xc048aec8, &(0x7f0000000700)={0x2, 0x0, @ioapic={0x10000, 0x3, 0x1, 0x7, 0x0, [{0x6, 0x80}, {0xe7, 0x0, 0xfb, '\x00', 0x7f}, {0x0, 0x9, 0xc, '\x00', 0x92}, {0x2, 0xc6, 0xe, '\x00', 0xfa}, {0x0, 0x3, 0x7, '\x00', 0x9}, {0x5, 0x8, 0x6, '\x00', 0x1}, {0x16, 0x2, 0x6, '\x00', 0xcd}, {0x2, 0x4, 0x2, '\x00', 0x48}, {0x9, 0x3, 0x1a, '\x00', 0x7}, {0x5, 0x8, 0xdb, '\x00', 0x1}, {0x0, 0x7, 0x7, '\x00', 0x75}, {0x8, 0x0, 0xb, '\x00', 0xf}, {0x2, 0x0, 0x9, '\x00', 0xc3}, {0x9, 0x9, 0x6, '\x00', 0x85}, {0xfa, 0x81, 0x44, '\x00', 0x8}, {0x9, 0x9, 0x2, '\x00', 0x1}, {0x5c, 0xc2, 0x40, '\x00', 0x8}, {0x4a, 0x6, 0x8, '\x00', 0x6}, {0x8, 0x3, 0x2, '\x00', 0x14}, {0x6, 0x4, 0x80, '\x00', 0x46}, {0x7, 0x4, 0xf1, '\x00', 0x8}, {0x6, 0xf9, 0xf, '\x00', 0x10}, {0x8, 0x8, 0x81, '\x00', 0x3}, {0x0, 0x7f, 0x7, '\x00', 0x2}]}})
r8 = syz_io_uring_setup(0x6d8a, &(0x7f0000000300)={0x0, 0x37b2, 0x10100}, &(0x7f0000000180)=<r9=>0x0, &(0x7f00000001c0)=<r10=>0x0)
r11 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r11, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r11, 0x0)
syz_emit_ethernet(0x2ca, &(0x7f0000000940)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd602a84350294060000000000000000000000000000000000fe8000000000000000000000000000bb020500000000000000010004010fc20400000200072000000002060602000000000000000000070000000000000005000000000000000000330200000000000004016b0101000104000000000001000502097200000000002b000000000000000001000502008000880a000900000000fe8000000000000000000000000000aa00000000000000000000ffff6401010100000000000000000000000008000001fc010000000000000000000000000001fc0200000000000000000000000000013b0600000000000001030000000728000000010840030004000000000000000c000000000000000800000000000000030000000000000001030000000000000062000519670000001610000000000000c9100000000000000000000000000000000001050000000000010a000000000000000000000740000000000e04060009000000000000006a00000000000000790c0000000000000010000000000000c0000000000000000500000000000000060000000000000005020eda071800000000040105000500000000000000fe8e000000000000000000890800810000000000000000000000000000ffff7f000001fe800000000000000000000000000037ff01000000000000000000000000000120010000000000000000000000000000321004087f100100ff0200000000000000000000000000012001000000000000000000000000000120010000000000000000000000000001ff010000000000000000000000000001fe88000000000000000000000000010100000000000000000000000000000000fe88000000000000000000000000000100000000000000000000ffff64010101fffd5e262a6b9cf4fa016399167485485d6e053ce43a9e202c7b4db9c0bd4764f13445296eb2c1b07ecd8c81515c76a0095c7312dee480e1249f18d352c1d710b521d0db4f", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="b8c2000090780000010302131204000000000100"/32], 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r1})
io_uring_enter(r8, 0x2def, 0x4000, 0x0, 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0xf9ba, 0x80500)
r12 = syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r12, 0xc0844123, &(0x7f0000002fc0))
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

931.811946ms ago: executing program 0 (id=1356):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r1, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x203, 0x0)
sendfile(r2, r2, 0x0, 0x40008)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r3, &(0x7f0000000040)="14000000140005b7ffccca38b9000000010860eb", 0x14)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000180), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

931.398009ms ago: executing program 1 (id=1357):
personality(0xbe4e602dc9e6c1d3)
prctl$PR_SET_MM(0x23, 0x2, &(0x7f0000ff6000/0x2000)=nil)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000839e860000f4ffff09000000b82cb37b460779dba186161a547bba884859dc6fd0d97165a5c78d09a5966c7577e1ab59fbd91ed0177660c19354b88635638385997e8a1fffdbc85f7d971898b350b61485fb86919d23f6a4014a2cb22505c73a3e9a05169b1b99fdd463f5ebf218b206bd765b7216a84cbcd6e177c5748e9280d5ea8be8b00d0edfff9b13137fe01759cfd9d7"], 0x50)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r1, &(0x7f0000000040)='./file0\x00', 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@newqdisc={0x78, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x18, 0x2, {{0x0, 0x0, 0x1}}}}]}, 0x78}}, 0x0)

842.538672ms ago: executing program 1 (id=1358):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000010c0)={<r1=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000100)={'netdevsim0\x00', &(0x7f0000000040)=@ethtool_ringparam={0x33, 0x7f, 0x20000a2e, 0x0, 0x0, 0x3, 0x2000000, 0x0, 0x3000000}})
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000003100)=@gcm_128={{0x303}, "0400", "0d07080d004fcf0000e8ffff1a8600", "cf0d00", "8657e2b7e43b34e4"}, 0x28)
socket$packet(0x11, 0x2, 0x300)
syz_emit_ethernet(0x82, &(0x7f0000000680)={@local, @empty, @val, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "00be2e", 0x44, 0x2f, 0x0, @private0, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x6558, 0x3e8}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {0x8, 0x88be, 0x86ddffff}}}}}}}, 0x0)

791.496368ms ago: executing program 0 (id=1359):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="2c0000002a000b00000000000000000008000000040003000c0001800600000088480000080002"], 0x2c}}, 0x0)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x7f, 0xb, 0x49, 0x3ff}})

791.281656ms ago: executing program 2 (id=1360):
pipe2$watch_queue(&(0x7f0000000580)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000), &(0x7f0000000000)) (async)
r1 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r4, 0x1, 0x3c, &(0x7f0000000300)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) (async)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff) (async)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000007000000080001006e00000008000300", @ANYRES32=r8, @ANYBLOB="0c0099000000000000000000050053000100000014000400776c616e310000000000000000000000140006"], 0x60}}, 0x0)
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000400)={'wlan1\x00', <r11=>0x0})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), r10) (async)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), r10)
sendmsg$NL80211_CMD_SET_KEY(r10, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x1c, r12, 0x1, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r11}, @void}}}, 0x1c}}, 0x4044004)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x3c, r6, 0x8, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x1}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0xef7}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x9d5}, @NL80211_ATTR_CRIT_PROT_ID={0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40010)
sendmmsg$inet(r4, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000600)="cad23ca6b3253669fcd4ff", 0xb}], 0x1}}], 0x1, 0x4048841)
close(0x3)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
setsockopt$inet_tcp_buf(r4, 0x6, 0xd, &(0x7f0000000100)="33fecc93373b13f6eceb3c416fc6dafbb54fca3f78226692d08f2ee1e0e994db573c63396f9d44325833f588f91772bcd004963a2eb50598964a71c945d6b604e77ad3ea8c02dd0d5942adf9a2f40d975ae1d083515877c5f748f04c50369f94dbdd4c4b2cd8f0542d417294baa1ab528b5acffef0b61afd03cc", 0x7a)
io_uring_enter(r1, 0x48e9, 0x0, 0x2, 0x0, 0x0)

790.981813ms ago: executing program 0 (id=1361):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=@newtaction={0x44, 0x30, 0x1, 0x0, 0x0, {}, [{0x30, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="020000000000000014001280090001007665746800000000040002800a0001002aaaaaaaaa000000080004"], 0x48}}, 0x0)

724.386933ms ago: executing program 0 (id=1362):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x441, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x8, [{0x0, 0x2, 0x3}]}, @ptr]}}, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
r3 = openat$vhost_vsock(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000340))
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x1, 0x1, 0x0, &(0x7f0000000380)=""/223, &(0x7f00000000c0)=""/6, 0x8080000})
r4 = dup(r1)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r4})
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000200)=@req={0x0, 0x3, 0x4, 0x28000000}, 0xfffffffffffffd0c)
statx(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0xffff4a9c0080ffff, &(0x7f0000000240))
ioctl$IOCTL_STOP_ACCEL_DEV(0xffffffffffffffff, 0x40096101, &(0x7f0000000800)={{}, 0xfe})
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r5, &(0x7f00000003c0)='@', 0x1, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, &(0x7f0000000180)=0x9c)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCXONC(r0, 0x540a, 0x2)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x3)

724.205168ms ago: executing program 2 (id=1363):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$inet6(0xa, 0x200000000003, 0x87)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffff00005403cb0086dd6003116c00088700fe8000000000000010000000000000aaff0200000000000000000000000000017ab004"], 0x0)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f0000000080)=0xb0000)
iopl(0x3)
modify_ldt$read(0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r0, 0x8010661b, &(0x7f0000000040))
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mtu(r4, 0x0, 0xa, &(0x7f0000000100)=0x3, 0x4)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001a1401002abd700001dcdf250800010000000000090002"], 0x24}, 0x1, 0x0, 0x0, 0x4000801}, 0x40800)
sendto$inet(r4, &(0x7f0000000040)="0400", 0xffec, 0x0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
r6 = fsopen(&(0x7f00000001c0)='ocfs2_dlmfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x0)
fchdir(r7)
mkdir(&(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x8d)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

649.524403ms ago: executing program 2 (id=1364):
arch_prctl$ARCH_SHSTK_ENABLE(0x5001, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=@newtaction={0x198, 0x30, 0x400, 0x0, 0x25dfdbfb, {}, [{0x184, 0x1, [@m_nat={0x138, 0x7, 0x0, 0x0, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x7, 0x81000000, 0x0, 0x3, 0x80000001}, @local, @local, 0xff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x8, 0x80000001, 0xffffffffffffffff, 0xfffffff7, 0xfffffffa}, @local, @multicast2, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x5, 0x14000000, 0x6, 0x1c1f9754}, @rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xff}}]}, {0x97, 0x6, "7bf78ca6452575bc5a4f14e740f32ecc8b3d221e2b603e5b10f20219fb9e346cd56ae9951f6ea77036df9a9ae8fa149dc9922127b4ab7a25ab2d05135cf862b07d1bf950f48b880210bea0227eba46c0802f28c698428ab8b4ff5b394d162d7fa09024829d4e3ab8d8e54e38eace89b89bd1d99dda509afa9ccebc08415433fe40390b9833df3d8df15bb4ce1e01ffc4078d39"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x6, 0x1}}}}, @m_ife={0x48, 0x15, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x198}, 0x1, 0x0, 0x0, 0x804}, 0x44800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0xffffffffffffff36)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f00000bd000), 0x492492492492846, 0x0)
fcntl$setstatus(r5, 0x4, 0x42000)
connect$unix(r4, 0x0, 0x0)
dup3(0xffffffffffffffff, r3, 0x0)
ioctl$TIOCSTI(r3, 0x5412, 0x0)
bind$rds(0xffffffffffffffff, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000180))
r6 = syz_open_dev$dri(&(0x7f00000002c0), 0x200001, 0x4a2500)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r6, 0x4010640d, &(0x7f0000000000)={0x12, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r6, 0xc01064b5, &(0x7f0000000300)={&(0x7f00000001c0)=[<r7=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r6, 0xc02064b6, &(0x7f00000000c0)={r7, <r8=>0x0, <r9=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETPLANE(r6, 0xc03064b7, &(0x7f0000000200)={r7, r8, r9, 0x4, 0x80000003, 0x7fffffff, 0x0, 0x8, 0x6, 0x800011, 0x200400, 0x31e})
unshare(0x40010900)
socket$nl_route(0x10, 0x3, 0x0)
openat$vcs(0xffffff9c, &(0x7f0000000280), 0x22602, 0x0)

0s ago: executing program 1 (id=1365):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000000)={0x1c, 0x2c, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}, [@typed={0x5, 0xb, 0x0, 0x0, @str='\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x404000d}, 0x20000000) (fail_nth: 8)

kernel console output (not intermixed with test programs):

 75.651946][   T40] audit: type=1326 audit(1742970279.582:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6637 comm="syz.0.175" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7fc00000
[   75.691059][ T6652] netlink: 'syz.0.180': attribute type 4 has an invalid length.
[   75.706538][ T6652] netlink: 'syz.0.180': attribute type 4 has an invalid length.
[   75.713156][ T6652] warning: `syz.0.180' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   75.882989][ T6662] macsec1: entered promiscuous mode
[   76.674322][ T5961] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   76.678257][ T5961] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   76.681184][ T5961] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   76.684227][ T5961] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   76.688023][ T5961] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   76.692071][ T5961] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   76.773593][ T6679] chnl_net:caif_netlink_parms(): no params data found
[   76.835434][ T6679] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.839217][ T6679] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.841994][ T6679] bridge_slave_0: entered allmulticast mode
[   76.844893][ T6679] bridge_slave_0: entered promiscuous mode
[   76.847597][ T6679] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.849646][ T6679] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.851661][ T6679] bridge_slave_1: entered allmulticast mode
[   76.853732][ T6679] bridge_slave_1: entered promiscuous mode
[   76.870039][ T5961] Bluetooth: hci2: Malformed LE Event: 0x0d
[   76.891323][ T6679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.900943][ T6679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.924081][ T6679] team0: Port device team_slave_0 added
[   76.927711][ T6679] team0: Port device team_slave_1 added
[   76.949407][ T6679] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.951318][ T6679] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.960640][ T6679] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.965378][ T6679] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.967814][ T6679] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.975249][ T6679] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.000428][ T6679] hsr_slave_0: entered promiscuous mode
[   77.002471][ T6679] hsr_slave_1: entered promiscuous mode
[   77.004656][ T6679] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.007801][ T6679] Cannot create hsr debugfs directory
[   77.027792][  T106] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.099346][ T6679] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   77.104217][ T6679] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   77.108466][ T6679] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   77.126184][  T106] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.128318][ T6679] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   77.163603][ T6679] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.181537][ T6679] 8021q: adding VLAN 0 to HW filter on device team0
[   77.196120][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.196162][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.213452][  T106] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.221832][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.221885][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.299788][  T106] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.376634][  T106] bridge_slave_1: left allmulticast mode
[   77.378543][  T106] bridge_slave_1: left promiscuous mode
[   77.381166][  T106] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.385309][  T106] bridge_slave_0: left allmulticast mode
[   77.387739][  T106] bridge_slave_0: left promiscuous mode
[   77.390045][  T106] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.622379][  T106] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   77.626920][  T106] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   77.630051][  T106] bond0 (unregistering): Released all slaves
[   77.642195][ T6703] overlayfs: statfs failed on './file0'
[   77.667124][ T6679] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.892098][ T6679] veth0_vlan: entered promiscuous mode
[   77.915425][ T6679] veth1_vlan: entered promiscuous mode
[   77.927809][ T6679] veth0_macvtap: entered promiscuous mode
[   77.932093][ T6679] veth1_macvtap: entered promiscuous mode
[   77.939412][ T6679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.942298][ T6679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.945188][ T6679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.949156][ T6679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.951921][ T6679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.954861][ T6679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.968418][ T6679] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.974095][ T6679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.977532][ T6679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.980346][ T6679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.983265][ T6679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.988968][ T6679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.991911][ T6679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.009730][ T6679] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.023461][ T6679] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.032555][ T6679] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.034987][ T6679] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.054994][ T6679] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.066805][ T6734] netlink: 244 bytes leftover after parsing attributes in process `syz.0.196'.
[   78.076729][  T106] hsr_slave_0: left promiscuous mode
[   78.079923][  T106] hsr_slave_1: left promiscuous mode
[   78.084236][  T106] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.089765][  T106] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.093502][  T106] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.096976][ T6735] netlink: 12 bytes leftover after parsing attributes in process `syz.1.197'.
[   78.098678][  T106] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.129317][  T106] veth1_macvtap: left promiscuous mode
[   78.131101][  T106] veth0_macvtap: left promiscuous mode
[   78.133191][  T106] veth1_vlan: left promiscuous mode
[   78.134790][  T106] veth0_vlan: left promiscuous mode
[   78.137596][ T6733] syz.1.197 (6733): drop_caches: 2
[   78.140975][ T6733] syz.1.197 (6733): drop_caches: 2
[   78.640931][  T106] team0 (unregistering): Port device team_slave_1 removed
[   78.704689][  T106] team0 (unregistering): Port device team_slave_0 removed
[   78.739183][ T5961] Bluetooth: hci3: command tx timeout
[   78.924438][ T6746] Invalid source name
[   79.147474][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.151395][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.174615][ T6748] netlink: 4 bytes leftover after parsing attributes in process `syz.1.200'.
[   79.176845][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.180200][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.394193][ T6769] Invalid source name
[   79.471203][ T6772] tipc: Started in network mode
[   79.473147][ T6772] tipc: Node identity e2f50122161f, cluster identity 4711
[   79.480904][ T6772] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   79.572742][ T6762] syz.0.201 (6762): drop_caches: 2
[   79.579493][ T6762] syz.0.201 (6762): drop_caches: 2
[   79.688958][ T6783] ax25_connect(): syz.2.202 uses autobind, please contact jreuter@yaina.de
[   79.736041][ T6762] netlink: 12 bytes leftover after parsing attributes in process `syz.0.201'.
[   79.961949][ T6799] netlink: 'syz.0.203': attribute type 1 has an invalid length.
[   80.077977][ T6758] tipc: Resetting bearer <eth:syzkaller0>
[   80.496257][ T4243] tipc: Node number set to 4108976418
[   80.785089][ T6828] netlink: 'syz.2.208': attribute type 1 has an invalid length.
[   80.792713][ T6828] netlink: 224 bytes leftover after parsing attributes in process `syz.2.208'.
[   80.804174][ T6826] syz.0.207 (6826): drop_caches: 2
[   80.808853][ T6826] syz.0.207 (6826): drop_caches: 2
[   80.817277][ T6826] netlink: 12 bytes leftover after parsing attributes in process `syz.0.207'.
[   80.830750][ T5961] Bluetooth: hci3: command tx timeout
[   81.075825][   T71] cfg80211: failed to load regulatory.db
[   81.200513][ T6758] tipc: Disabling bearer <eth:syzkaller0>
[   81.273346][ T5961] Bluetooth: hci2: unexpected event for opcode 0x080b
[   81.332981][ T6846] fuse: Unknown parameter 'HÙ1pé·Ý„Á—ʽ& ‚Ö‰'
[   81.364698][ T6846] netlink: 'syz.4.214': attribute type 27 has an invalid length.
[   81.385090][ T6846] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.388310][ T6846] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.423758][ T6846] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.430075][ T6846] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.484606][ T6846] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.499125][ T6846] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.501686][ T6846] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.515719][ T6846] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.547143][ T6849] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.549575][ T6849] 8021q: adding VLAN 0 to HW filter on device team0
[   81.553355][ T6849] net_ratelimit: 10 callbacks suppressed
[   81.553361][ T6849] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   81.565909][   T40] audit: type=1326 audit(1742970285.492:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.1.213" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f25579 code=0x0
[   81.584935][ T6846] netlink: 4 bytes leftover after parsing attributes in process `syz.4.214'.
[   82.090637][   T40] audit: type=1326 audit(1742970286.022:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.0.212" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7fc00000
[   82.096512][   T40] audit: type=1326 audit(1742970286.022:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.0.212" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7fc00000
[   82.102360][   T40] audit: type=1326 audit(1742970286.022:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6838 comm="syz.0.212" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7fc00000
[   82.194776][ T6864] netlink: 12 bytes leftover after parsing attributes in process `syz.0.216'.
[   82.222950][ T6867] netlink: 4 bytes leftover after parsing attributes in process `syz.0.217'.
[   82.438211][ T6875] Bluetooth: MGMT ver 1.23
[   82.773324][ T6883] syz.2.221 (6883): drop_caches: 2
[   82.780648][ T6883] syz.2.221 (6883): drop_caches: 2
[   82.788565][ T6883] netlink: 12 bytes leftover after parsing attributes in process `syz.2.221'.
[   82.895902][ T5961] Bluetooth: hci3: command tx timeout
[   83.880038][ T6899] autofs4:pid:6899:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(4294967071.1), cmd(0xc018937e)
[   83.884568][ T6899] autofs4:pid:6899:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e)
[   84.231336][ T6911] Cannot find add_set index 3 as target
[   84.752297][ T6920] netlink: 4 bytes leftover after parsing attributes in process `syz.2.231'.
[   84.966835][ T5961] Bluetooth: hci3: command tx timeout
[   85.159434][ T6926] netlink: 24 bytes leftover after parsing attributes in process `syz.1.233'.
[   85.166596][ T6926] netlink: 'syz.1.233': attribute type 39 has an invalid length.
[   85.169892][ T6926] veth0_macvtap: left promiscuous mode
[   85.304925][ T6935] netlink: 'syz.0.232': attribute type 1 has an invalid length.
[   85.308114][ T6935] netlink: 'syz.0.232': attribute type 3 has an invalid length.
[   85.312183][ T6935] netlink: 224 bytes leftover after parsing attributes in process `syz.0.232'.
[   86.065395][ T6960] netlink: 'syz.0.243': attribute type 2 has an invalid length.
[   86.272516][ T6966] RDS: rds_bind could not find a transport for ::ffff:172.30.0.1, load rds_tcp or rds_rdma?
[   86.285281][ T6968] netlink: 'syz.4.245': attribute type 1 has an invalid length.
[   86.288703][ T6968] netlink: 4 bytes leftover after parsing attributes in process `syz.4.245'.
[   86.373254][ T6968] could not allocate digest TFM handle ghash-ce-sync
[   86.677201][ T6986] autofs: Unknown parameter 'no9á ‘ýPƒ¹G!8°‰™�…EŸ8-ö¤ ™�ŠÇÅ–èEeÕ¬(�	IrÝ\•žu}ibˆŒ�ÞêT0;´Œmy´[Gc¯î#Ï>QkÏübYü&“àÌ#“w„@/VV¼Lë~1ƒ2§÷lÿh<yÞ¯ðÕMÈv÷«^7 !JÐ>–O„h'®ÈûrK1‚\kU{!�e½úó¬Üš7»ßß
[   86.677201][ T6986] ÄUúeâ[¦ÓÎ%#s'
[   86.717822][ T6986] netlink: 4 bytes leftover after parsing attributes in process `syz.1.248'.
[   86.721243][ T6986] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   86.723880][ T6986] batman_adv: batadv0: Removing interface: batadv_slave_0
[   86.728467][ T6986] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   86.730617][ T6986] batman_adv: batadv0: Removing interface: batadv_slave_1
[   86.938652][ T6993] sg_write: data in/out 489/14 bytes for SCSI command 0x0-- guessing data in;
[   86.938652][ T6993]    program syz.4.247 not setting count and/or reply_len properly
[   87.585788][ T7014] syz.4.254 (7014): drop_caches: 2
[   87.606680][ T7014] syz.4.254 (7014): drop_caches: 2
[   87.625027][ T7014] netlink: 12 bytes leftover after parsing attributes in process `syz.4.254'.
[   87.792969][ T7020] CIFS: iocharset name too long
[   88.220396][ T7030] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   88.223552][ T7030] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[   88.227457][ T7030] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[   88.349344][ T5961] Bluetooth: hci0: Malformed LE Event: 0x1b
[   88.711533][ T7053] netlink: 24 bytes leftover after parsing attributes in process `syz.4.265'.
[   88.755716][ T5988] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   88.915791][ T5988] usb 7-1: Using ep0 maxpacket: 8
[   88.918426][ T5988] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   88.922714][ T5988] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   88.926726][ T5988] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.931909][ T5988] usb 7-1: config 0 descriptor??
[   89.149823][ T5988] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[   89.158718][ T5988] usb 7-1: USB disconnect, device number 4
[   89.718197][ T7077] FAULT_INJECTION: forcing a failure.
[   89.718197][ T7077] name failslab, interval 1, probability 0, space 0, times 0
[   89.721587][ T7077] CPU: 0 UID: 0 PID: 7077 Comm: syz.0.272 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[   89.721601][ T7077] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.721607][ T7077] Call Trace:
[   89.721611][ T7077]  <TASK>
[   89.721614][ T7077]  dump_stack_lvl+0x16c/0x1f0
[   89.721631][ T7077]  should_fail_ex+0x512/0x640
[   89.721643][ T7077]  should_failslab+0xc2/0x120
[   89.721659][ T7077]  __kmalloc_node_noprof+0xd8/0x500
[   89.721673][ T7077]  ? mark_held_locks+0x49/0x80
[   89.721686][ T7077]  ? alloc_slab_obj_exts+0x41/0xa0
[   89.721699][ T7077]  alloc_slab_obj_exts+0x41/0xa0
[   89.721711][ T7077]  __memcg_slab_post_alloc_hook+0x27b/0x940
[   89.721728][ T7077]  ? kasan_save_track+0x14/0x30
[   89.721742][ T7077]  kmem_cache_alloc_noprof+0x307/0x3b0
[   89.721755][ T7077]  ? lock_acquire+0x179/0x350
[   89.721768][ T7077]  ? dst_alloc+0x99/0x1a0
[   89.721779][ T7077]  ? __pfx_ip6_dst_gc+0x10/0x10
[   89.721793][ T7077]  dst_alloc+0x99/0x1a0
[   89.721804][ T7077]  ip6_pol_route+0x96b/0x1230
[   89.721817][ T7077]  ? __pfx_ip6_pol_route+0x10/0x10
[   89.721830][ T7077]  ? stack_trace_save+0x8e/0xc0
[   89.721842][ T7077]  ? stack_depot_save_flags+0x29/0x9c0
[   89.721853][ T7077]  ? __pfx_ip6_pol_route_output+0x10/0x10
[   89.721866][ T7077]  fib6_rule_lookup+0x24c/0x720
[   89.721878][ T7077]  ? __pfx_fib6_rule_lookup+0x10/0x10
[   89.721888][ T7077]  ? ___sys_sendmsg+0x134/0x1d0
[   89.721900][ T7077]  ? __sys_sendmsg+0x16d/0x220
[   89.721912][ T7077]  ? __do_fast_syscall_32+0x73/0x120
[   89.721925][ T7077]  ? do_fast_syscall_32+0x32/0x80
[   89.721941][ T7077]  ip6_route_output_flags+0x1d0/0x640
[   89.721953][ T7077]  rxrpc_init_peer+0x316/0xc70
[   89.721965][ T7077]  ? __pfx_rxrpc_init_peer+0x10/0x10
[   89.721979][ T7077]  ? trace_rxrpc_peer+0x195/0x220
[   89.721990][ T7077]  ? rxrpc_alloc_peer+0x2f8/0x400
[   89.722003][ T7077]  rxrpc_lookup_peer+0x197/0x670
[   89.722014][ T7077]  ? _raw_read_unlock+0x28/0x50
[   89.722026][ T7077]  rxrpc_do_sendmsg+0x99c/0x15d0
[   89.722041][ T7077]  ? __pfx_rxrpc_do_sendmsg+0x10/0x10
[   89.722058][ T7077]  ? __local_bh_enable_ip+0xa4/0x120
[   89.722071][ T7077]  rxrpc_sendmsg+0x427/0x5f0
[   89.722083][ T7077]  ____sys_sendmsg+0xa8d/0xc60
[   89.722093][ T7077]  ? __pfx_____sys_sendmsg+0x10/0x10
[   89.722102][ T7077]  ? get_compat_msghdr+0x11a/0x170
[   89.722116][ T7077]  ___sys_sendmsg+0x134/0x1d0
[   89.722129][ T7077]  ? __pfx____sys_sendmsg+0x10/0x10
[   89.722151][ T7077]  __sys_sendmsg+0x16d/0x220
[   89.722164][ T7077]  ? __pfx___sys_sendmsg+0x10/0x10
[   89.722181][ T7077]  ? rcu_is_watching+0x12/0xc0
[   89.722191][ T7077]  __do_fast_syscall_32+0x73/0x120
[   89.722204][ T7077]  do_fast_syscall_32+0x32/0x80
[   89.722217][ T7077]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.722230][ T7077] RIP: 0023:0xf7f17579
[   89.722237][ T7077] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.722246][ T7077] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   89.722256][ T7077] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000080
[   89.722262][ T7077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   89.722267][ T7077] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.722272][ T7077] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.722277][ T7077] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.722286][ T7077]  </TASK>
[   89.754970][ T7079] syz.4.271 (7079): drop_caches: 2
[   89.823858][ T7087] netlink: 24 bytes leftover after parsing attributes in process `syz.2.274'.
[   89.829323][ T7079] syz.4.271 (7079): drop_caches: 2
[   90.010678][ T7074] netlink: 12 bytes leftover after parsing attributes in process `syz.4.271'.
[   90.097376][ T7104] tipc: Enabling of bearer <eth:ipvlan0> rejected, failed to enable media
[   90.121255][ T7104] netlink: 4 bytes leftover after parsing attributes in process `syz.4.281'.
[   90.123752][ T7104] netlink: 14 bytes leftover after parsing attributes in process `syz.4.281'.
[   90.163091][ T7111] netlink: 36 bytes leftover after parsing attributes in process `syz.4.282'.
[   90.165903][ T7111] netlink: 'syz.4.282': attribute type 1 has an invalid length.
[   90.198421][ T7114] netlink: 24 bytes leftover after parsing attributes in process `syz.4.283'.
[   90.368446][ T7118] sp0: Synchronizing with TNC
[   90.889225][ T7135] netlink: 8 bytes leftover after parsing attributes in process `syz.0.288'.
[   90.900912][ T7135] FAULT_INJECTION: forcing a failure.
[   90.900912][ T7135] name failslab, interval 1, probability 0, space 0, times 0
[   90.904579][ T7135] CPU: 2 UID: 0 PID: 7135 Comm: syz.0.288 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[   90.904597][ T7135] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.904603][ T7135] Call Trace:
[   90.904606][ T7135]  <TASK>
[   90.904609][ T7135]  dump_stack_lvl+0x16c/0x1f0
[   90.904638][ T7135]  should_fail_ex+0x512/0x640
[   90.904650][ T7135]  should_failslab+0xc2/0x120
[   90.904666][ T7135]  kmem_cache_alloc_noprof+0x6d/0x3b0
[   90.904681][ T7135]  ? skb_clone+0x190/0x3f0
[   90.904696][ T7135]  skb_clone+0x190/0x3f0
[   90.904710][ T7135]  netlink_deliver_tap+0xabd/0xd30
[   90.904725][ T7135]  netlink_unicast+0x6b2/0x7f0
[   90.904738][ T7135]  ? __pfx_netlink_unicast+0x10/0x10
[   90.904753][ T7135]  netlink_ack+0x696/0xb80
[   90.904767][ T7135]  netlink_rcv_skb+0x347/0x440
[   90.904780][ T7135]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   90.904795][ T7135]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   90.904807][ T7135]  ? __pfx_aa_get_newest_label+0x10/0x10
[   90.904822][ T7135]  ? bpf_lsm_capable+0x9/0x10
[   90.904832][ T7135]  ? security_capable+0x7e/0x260
[   90.904843][ T7135]  ? ns_capable+0xd7/0x110
[   90.904854][ T7135]  nfnetlink_rcv+0x1b3/0x430
[   90.904868][ T7135]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   90.904884][ T7135]  netlink_unicast+0x53a/0x7f0
[   90.904897][ T7135]  ? __pfx_netlink_unicast+0x10/0x10
[   90.904910][ T7135]  ? __phys_addr_symbol+0x30/0x80
[   90.904923][ T7135]  ? __check_object_size+0x4c7/0x710
[   90.904939][ T7135]  netlink_sendmsg+0x8da/0xd70
[   90.904952][ T7135]  ? __pfx_netlink_sendmsg+0x10/0x10
[   90.904965][ T7135]  ? __import_iovec+0x1c8/0x660
[   90.904979][ T7135]  ____sys_sendmsg+0xa8d/0xc60
[   90.904990][ T7135]  ? __pfx_____sys_sendmsg+0x10/0x10
[   90.904999][ T7135]  ? get_compat_msghdr+0x11a/0x170
[   90.905013][ T7135]  ___sys_sendmsg+0x134/0x1d0
[   90.905027][ T7135]  ? __pfx____sys_sendmsg+0x10/0x10
[   90.905050][ T7135]  __sys_sendmsg+0x16d/0x220
[   90.905063][ T7135]  ? __pfx___sys_sendmsg+0x10/0x10
[   90.905080][ T7135]  ? rcu_is_watching+0x12/0xc0
[   90.905091][ T7135]  __do_fast_syscall_32+0x73/0x120
[   90.905105][ T7135]  do_fast_syscall_32+0x32/0x80
[   90.905118][ T7135]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   90.905130][ T7135] RIP: 0023:0xf7f17579
[   90.905138][ T7135] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   90.905148][ T7135] RSP: 002b:00000000f501555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   90.905157][ T7135] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000800001c0
[   90.905163][ T7135] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   90.905168][ T7135] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   90.905174][ T7135] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   90.905179][ T7135] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   90.905188][ T7135]  </TASK>
[   91.416675][ T7157] ax25_connect(): syz.4.293 uses autobind, please contact jreuter@yaina.de
[   92.765769][ T5988] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   93.022528][ T7230] netlink: 4 bytes leftover after parsing attributes in process `syz.1.297'.
[   93.040065][ T7230] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   93.042557][ T7230] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   93.044870][ T7230] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   93.047192][ T7230] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   93.056359][ T7230] vxlan0: entered promiscuous mode
[   93.068360][ T7230] overlayfs: unescaped trailing colons in lowerdir mount option.
[   94.068808][ T7236] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[   94.071018][ T7236] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   94.074392][ T7236] vhci_hcd vhci_hcd.0: Device attached
[   94.079542][ T7236] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(11)
[   94.081298][ T7236] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   94.083396][ T7236] vhci_hcd vhci_hcd.0: Device attached
[   94.189507][ T7238] vhci_hcd: connection closed
[   94.192402][   T12] vhci_hcd: stop threads
[   94.198225][ T7240] vhci_hcd: connection closed
[   94.199877][   T12] vhci_hcd: release socket
[   94.204659][   T12] vhci_hcd: disconnect device
[   94.208811][   T12] vhci_hcd: stop threads
[   94.210556][   T12] vhci_hcd: release socket
[   94.212476][   T12] vhci_hcd: disconnect device
[   94.255856][ T4243] vhci_hcd: vhci_device speed not set
[   95.539103][ T5988] usb 7-1: unable to get BOS descriptor or descriptor too short
[   95.541825][ T5988] usb 7-1: unable to read config index 0 descriptor/start: -71
[   95.543942][ T5988] usb 7-1: can't read configurations, error -71
[   95.560541][ T7261] QAT: Stopping all acceleration devices.
[   95.707365][ T7266] syz.4.305 (7266): drop_caches: 2
[   95.710837][ T7266] syz.4.305 (7266): drop_caches: 2
[   95.955232][ T7266] netlink: 12 bytes leftover after parsing attributes in process `syz.4.305'.
[   96.660792][ T7289] @: renamed from vlan0
[   97.211648][ T7302] team0: No ports can be present during mode change
[   98.223324][ T7325] syz.0.321 (7325): drop_caches: 2
[   98.226545][ T7325] syz.0.321 (7325): drop_caches: 2
[   98.305315][ T7325] netlink: 12 bytes leftover after parsing attributes in process `syz.0.321'.
[   98.394168][ T5961] Bluetooth: hci1: unexpected event for opcode 0x0c5b
[   98.397242][ T5961] Bluetooth: hci1: ACL packet for unknown connection handle 200
[   98.425581][ T5961] Bluetooth: hci1: unexpected event for opcode 0x0000
[   98.428323][ T5961] Bluetooth: hci1: unexpected event for opcode 0x1408
[   98.844702][ T5961] Bluetooth: hci0: SCO packet for unknown connection handle 172
[   99.283328][ T7339] netlink: 'syz.2.327': attribute type 10 has an invalid length.
[   99.288840][ T7339] netlink: 40 bytes leftover after parsing attributes in process `syz.2.327'.
[   99.313760][ T7339] team0: Port device geneve0 added
[   99.967347][ T5961] Bluetooth: hci0: unexpected event for opcode 0x0c5b
[   99.969429][ T5961] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  100.175348][ T7369] FAULT_INJECTION: forcing a failure.
[  100.175348][ T7369] name failslab, interval 1, probability 0, space 0, times 0
[  100.179918][ T7369] CPU: 3 UID: 0 PID: 7369 Comm: syz.0.336 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  100.179940][ T7369] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  100.179949][ T7369] Call Trace:
[  100.179954][ T7369]  <TASK>
[  100.179960][ T7369]  dump_stack_lvl+0x16c/0x1f0
[  100.179982][ T7369]  should_fail_ex+0x512/0x640
[  100.180000][ T7369]  should_failslab+0xc2/0x120
[  100.180024][ T7369]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  100.180047][ T7369]  ? skb_clone+0x190/0x3f0
[  100.180072][ T7369]  skb_clone+0x190/0x3f0
[  100.180094][ T7369]  netlink_deliver_tap+0xabd/0xd30
[  100.180124][ T7369]  netlink_unicast+0x6b2/0x7f0
[  100.180145][ T7369]  ? __pfx_netlink_unicast+0x10/0x10
[  100.180170][ T7369]  netlink_ack+0x696/0xb80
[  100.180195][ T7369]  netlink_rcv_skb+0x347/0x440
[  100.180215][ T7369]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  100.180238][ T7369]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  100.180269][ T7369]  ? netlink_deliver_tap+0x1ae/0xd30
[  100.180292][ T7369]  netlink_unicast+0x53a/0x7f0
[  100.180315][ T7369]  ? __pfx_netlink_unicast+0x10/0x10
[  100.180336][ T7369]  ? __phys_addr_symbol+0x30/0x80
[  100.180358][ T7369]  ? __check_object_size+0x4c7/0x710
[  100.180385][ T7369]  netlink_sendmsg+0x8da/0xd70
[  100.180408][ T7369]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.180430][ T7369]  ? __import_iovec+0x1c8/0x660
[  100.180454][ T7369]  ____sys_sendmsg+0xa8d/0xc60
[  100.180473][ T7369]  ? __pfx_____sys_sendmsg+0x10/0x10
[  100.180488][ T7369]  ? get_compat_msghdr+0x11a/0x170
[  100.180513][ T7369]  ___sys_sendmsg+0x134/0x1d0
[  100.180535][ T7369]  ? __pfx____sys_sendmsg+0x10/0x10
[  100.180576][ T7369]  __sys_sendmsg+0x16d/0x220
[  100.180599][ T7369]  ? __pfx___sys_sendmsg+0x10/0x10
[  100.180627][ T7369]  ? rcu_is_watching+0x12/0xc0
[  100.180646][ T7369]  __do_fast_syscall_32+0x73/0x120
[  100.180669][ T7369]  do_fast_syscall_32+0x32/0x80
[  100.180690][ T7369]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  100.180710][ T7369] RIP: 0023:0xf7f17579
[  100.180721][ T7369] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  100.180736][ T7369] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  100.180752][ T7369] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  100.180762][ T7369] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  100.180771][ T7369] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  100.180779][ T7369] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  100.180788][ T7369] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  100.180804][ T7369]  </TASK>
[  100.188423][ T7367] fuse: Unknown parameter '
'
[  100.265194][ T6016] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  100.358639][ T7374] syz.0.337 (7374): drop_caches: 2
[  100.364357][ T7374] syz.0.337 (7374): drop_caches: 2
[  100.382540][ T7374] netlink: 12 bytes leftover after parsing attributes in process `syz.0.337'.
[  100.418396][ T6016] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  100.421000][ T6016] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  100.423285][ T6016] usb 6-1: Product: syz
[  100.424506][ T6016] usb 6-1: Manufacturer: syz
[  100.426139][ T6016] usb 6-1: SerialNumber: syz
[  100.428790][ T6016] usb 6-1: config 0 descriptor??
[  100.626790][ T7378] syz.2.338 (7378): drop_caches: 2
[  100.628802][ T7378] syz.2.338 (7378): drop_caches: 2
[  100.634786][ T6016] usb 6-1: USB disconnect, device number 7
[  100.666176][ T7378] netlink: 12 bytes leftover after parsing attributes in process `syz.2.338'.
[  100.666751][   T40] audit: type=1804 audit(1742970304.592:13): pid=7380 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.339" name="/newroot/92/file0" dev="tmpfs" ino=519 res=1 errno=0
[  100.742870][ T7380] batman_adv: batadv0: Interface deactivated: dummy0
[  100.745453][ T7380] batman_adv: batadv0: Removing interface: dummy0
[  100.750125][ T7380] bridge_slave_0: left allmulticast mode
[  100.752274][ T7380] bridge_slave_0: left promiscuous mode
[  100.754511][ T7380] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.759550][ T7380] bridge_slave_1: left allmulticast mode
[  100.761386][ T7380] bridge_slave_1: left promiscuous mode
[  100.763055][ T7380] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.769276][ T7380] bond0: (slave bond_slave_0): Releasing backup interface
[  100.772841][ T7380] bond0: (slave bond_slave_1): Releasing backup interface
[  100.782180][ T7380] team0: Port device team_slave_0 removed
[  100.788442][ T7380] team0: Port device team_slave_1 removed
[  100.791356][ T7380] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  100.796244][ T7380] batman_adv: batadv0: Removing interface: batadv_slave_0
[  100.800018][ T7380] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  100.802326][ T7380] batman_adv: batadv0: Removing interface: batadv_slave_1
[  100.823135][ T7381] team0: Mode changed to "loadbalance"
[  101.415790][ T6009] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  101.567356][ T6009] usb 6-1: config 0 has an invalid interface number: 207 but max is 0
[  101.570572][ T6009] usb 6-1: config 0 has no interface number 0
[  101.572914][ T6009] usb 6-1: config 0 interface 207 has no altsetting 0
[  101.575567][ T6009] usb 6-1: New USB device found, idVendor=2013, idProduct=025e, bcdDevice=5c.ee
[  101.579075][ T6009] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.583612][ T6009] usb 6-1: config 0 descriptor??
[  101.797523][   T71] usb 6-1: USB disconnect, device number 8
[  101.972217][ T7411] Cannot find add_set index 3 as target
[  102.486911][ T5961] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  102.489814][ T5961] Bluetooth: hci1: Injecting HCI hardware error event
[  102.492889][ T5961] Bluetooth: hci1: hardware error 0x00
[  103.284219][ T7428] netlink: 'syz.1.352': attribute type 10 has an invalid length.
[  104.559832][ T7460] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  104.566708][ T5961] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  104.746823][ T7467] x_tables: ip6_tables: mh match: only valid for protocol 135
[  105.216147][ T7484] CIFS mount error: No usable UNC path provided in device string!
[  105.216147][ T7484] 
[  105.219005][ T7484] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  105.295866][ T7488] netlink: 20 bytes leftover after parsing attributes in process `syz.2.368'.
[  105.300037][ T7482] netlink: 20 bytes leftover after parsing attributes in process `syz.2.368'.
[  105.641524][   T40] audit: type=1326 audit(1742970309.572:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7489 comm="syz.2.369" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7fc00000
[  105.648609][ T7490] netlink: 12 bytes leftover after parsing attributes in process `syz.2.369'.
[  105.666049][   T40] audit: type=1326 audit(1742970309.602:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7489 comm="syz.2.369" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7fc00000
[  106.389174][ T5961] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  107.318245][ T7526] FAULT_INJECTION: forcing a failure.
[  107.318245][ T7526] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  107.323215][ T7526] CPU: 1 UID: 0 PID: 7526 Comm: syz.1.383 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  107.323230][ T7526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.323236][ T7526] Call Trace:
[  107.323240][ T7526]  <TASK>
[  107.323244][ T7526]  dump_stack_lvl+0x16c/0x1f0
[  107.323280][ T7526]  should_fail_ex+0x512/0x640
[  107.323298][ T7526]  _copy_from_user+0x2e/0xd0
[  107.323311][ T7526]  input_event_from_user+0x22b/0x3b0
[  107.323326][ T7526]  ? __pfx_input_event_from_user+0x10/0x10
[  107.323339][ T7526]  ? input_inject_event+0x1a5/0x390
[  107.323352][ T7526]  evdev_write+0x37b/0x750
[  107.323365][ T7526]  ? __pfx_evdev_write+0x10/0x10
[  107.323378][ T7526]  ? bpf_lsm_file_permission+0x9/0x10
[  107.323393][ T7526]  ? security_file_permission+0x71/0x210
[  107.323414][ T7526]  ? rw_verify_area+0xcf/0x680
[  107.323431][ T7526]  vfs_write+0x25c/0x1180
[  107.323444][ T7526]  ? __pfx_evdev_write+0x10/0x10
[  107.323458][ T7526]  ? __pfx_vfs_write+0x10/0x10
[  107.323470][ T7526]  ? find_held_lock+0x2b/0x80
[  107.323481][ T7526]  ? __fget_files+0x204/0x3c0
[  107.323497][ T7526]  ? __fget_files+0x20e/0x3c0
[  107.323513][ T7526]  ksys_write+0x205/0x240
[  107.323526][ T7526]  ? __pfx_ksys_write+0x10/0x10
[  107.323540][ T7526]  ? rcu_is_watching+0x12/0xc0
[  107.323552][ T7526]  __do_fast_syscall_32+0x73/0x120
[  107.323567][ T7526]  do_fast_syscall_32+0x32/0x80
[  107.323581][ T7526]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  107.323594][ T7526] RIP: 0023:0xf7f25579
[  107.323602][ T7526] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  107.323611][ T7526] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  107.323621][ T7526] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  107.323627][ T7526] RDX: 00000000000012d8 RSI: 0000000000000000 RDI: 0000000000000000
[  107.323633][ T7526] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  107.323638][ T7526] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  107.323644][ T7526] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  107.323654][ T7526]  </TASK>
[  107.699035][ T7547] fuseblk: Unknown parameter 'root†-õRmode�ü°ìN_Úiä*'
[  107.768841][ T5961] Bluetooth: hci0: unexpected event for opcode 0x080b
[  108.597625][ T7581] netlink: 4 bytes leftover after parsing attributes in process `syz.4.395'.
[  108.602005][ T7581] netlink: 12 bytes leftover after parsing attributes in process `syz.4.395'.
[  108.604480][ T7581] netlink: 12 bytes leftover after parsing attributes in process `syz.4.395'.
[  109.017785][ T7595] netlink: 28 bytes leftover after parsing attributes in process `syz.4.401'.
[  109.036555][ T7595] netlink: 'syz.4.401': attribute type 1 has an invalid length.
[  109.044888][ T7595] bond1: entered promiscuous mode
[  109.046539][ T7595] bond1: entered allmulticast mode
[  109.067601][ T7595] bond2: entered allmulticast mode
[  109.070711][ T7595] bond2 (unregistering): Released all slaves
[  109.176076][ T7603] netlink: 12 bytes leftover after parsing attributes in process `syz.0.403'.
[  109.897168][ T7618] QAT: Stopping all acceleration devices.
[  109.925276][ T7623] fuse: Bad value for 'fd'
[  109.969069][ T7632] Driver unsupported XDP return value 0 on prog  (id 126) dev N/A, expect packet loss!
[  110.226797][ T5961] Bluetooth: hci2: unexpected event for opcode 0x080b
[  111.152716][ T7686] overlayfs: failed to clone upperpath
[  111.227596][ T7691] cgroup: No subsys list or none specified
[  111.443774][ T7707] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  111.464679][ T7703] tipc: Started in network mode
[  111.466278][ T7703] tipc: Node identity ffffffff, cluster identity 4711
[  111.468130][ T7703] tipc: Node number set to 4294967295
[  112.133449][ T7722] syz.4.437: vmalloc error: size 32768, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  112.139089][ T7722] CPU: 2 UID: 0 PID: 7722 Comm: syz.4.437 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  112.139110][ T7722] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.139119][ T7722] Call Trace:
[  112.139124][ T7722]  <TASK>
[  112.139130][ T7722]  dump_stack_lvl+0x16c/0x1f0
[  112.139154][ T7722]  warn_alloc+0x248/0x3a0
[  112.139177][ T7722]  ? __pfx_warn_alloc+0x10/0x10
[  112.139203][ T7722]  ? trace_kmalloc+0x2b/0xd0
[  112.139218][ T7722]  ? __pfx___might_resched+0x10/0x10
[  112.139241][ T7722]  __vmalloc_node_range_noprof+0x12d2/0x1540
[  112.139266][ T7722]  ? ipcomp_init_state+0x3f9/0xc30
[  112.139291][ T7722]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  112.139310][ T7722]  ? pcpu_alloc_noprof+0x1f4/0x14b0
[  112.139328][ T7722]  ? ipcomp_init_state+0x3f9/0xc30
[  112.139355][ T7722]  vmalloc_node_noprof+0x6f/0x90
[  112.139373][ T7722]  ? ipcomp_init_state+0x3f9/0xc30
[  112.139403][ T7722]  ipcomp_init_state+0x3f9/0xc30
[  112.139426][ T7722]  ipcomp6_init_state+0xca/0x7e0
[  112.139449][ T7722]  ? __xfrm_init_state+0x77d/0x1fe0
[  112.139473][ T7722]  __xfrm_init_state+0x81f/0x1fe0
[  112.139496][ T7722]  xfrm_init_state+0x1f/0x80
[  112.139516][ T7722]  pfkey_add+0x24f8/0x2ec0
[  112.139541][ T7722]  ? __pfx_pfkey_add+0x10/0x10
[  112.139562][ T7722]  ? kfree_skbmem+0x1a4/0x1f0
[  112.139577][ T7722]  ? sk_skb_reason_drop+0x136/0x1a0
[  112.139600][ T7722]  ? pfkey_broadcast+0x2af/0x460
[  112.139614][ T7722]  ? __pfx_pfkey_add+0x10/0x10
[  112.139635][ T7722]  pfkey_process+0x6d9/0x840
[  112.139652][ T7722]  ? __pfx_pfkey_process+0x10/0x10
[  112.139664][ T7722]  ? trace_contention_end+0xdd/0x130
[  112.139694][ T7722]  ? __virt_addr_valid+0x5e/0x590
[  112.139714][ T7722]  ? __phys_addr_symbol+0x30/0x80
[  112.139736][ T7722]  pfkey_sendmsg+0x445/0x850
[  112.139752][ T7722]  ____sys_sendmsg+0xa8d/0xc60
[  112.139767][ T7722]  ? __pfx_____sys_sendmsg+0x10/0x10
[  112.139782][ T7722]  ? get_compat_msghdr+0x11a/0x170
[  112.139801][ T7722]  ? __pfx__kstrtoull+0x10/0x10
[  112.139826][ T7722]  ___sys_sendmsg+0x134/0x1d0
[  112.139847][ T7722]  ? __pfx____sys_sendmsg+0x10/0x10
[  112.139874][ T7722]  ? find_held_lock+0x2b/0x80
[  112.139899][ T7722]  __sys_sendmmsg+0x2f9/0x420
[  112.139922][ T7722]  ? __pfx___sys_sendmmsg+0x10/0x10
[  112.139949][ T7722]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  112.139977][ T7722]  ? fput+0x70/0xf0
[  112.139991][ T7722]  ? ksys_write+0x1b9/0x240
[  112.140008][ T7722]  ? __pfx_ksys_write+0x10/0x10
[  112.140028][ T7722]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  112.140046][ T7722]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  112.140066][ T7722]  __do_fast_syscall_32+0x73/0x120
[  112.140086][ T7722]  do_fast_syscall_32+0x32/0x80
[  112.140106][ T7722]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  112.140125][ T7722] RIP: 0023:0xf7f5f579
[  112.140137][ T7722] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  112.140152][ T7722] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  112.140167][ T7722] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[  112.140177][ T7722] RDX: 000000000400008a RSI: 0000000000000000 RDI: 0000000000000000
[  112.140186][ T7722] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  112.140194][ T7722] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  112.140203][ T7722] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  112.140218][ T7722]  </TASK>
[  112.140224][ T7722] Mem-Info:
[  112.247930][ T7722] active_anon:15350 inactive_anon:16 isolated_anon:0
[  112.247930][ T7722]  active_file:4171 inactive_file:44699 isolated_file:0
[  112.247930][ T7722]  unevictable:1768 dirty:340 writeback:0
[  112.247930][ T7722]  slab_reclaimable:5700 slab_unreclaimable:55460
[  112.247930][ T7722]  mapped:29612 shmem:11632 pagetables:960
[  112.247930][ T7722]  sec_pagetables:297 bounce:0
[  112.247930][ T7722]  kernel_misc_reclaimable:0
[  112.247930][ T7722]  free:41242 free_pcp:6429 free_cma:0
[  112.266971][ T7722] Node 0 active_anon:2760kB inactive_anon:0kB active_file:704kB inactive_file:15720kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:6932kB dirty:20kB writeback:0kB shmem:4196kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9260kB pagetables:700kB sec_pagetables:1120kB all_unreclaimable? yes
[  112.273404][ T7730] capability: warning: `syz.1.440' uses 32-bit capabilities (legacy support in use)
[  112.286739][ T7722] Node 1 active_anon:63264kB inactive_anon:64kB active_file:15980kB inactive_file:163076kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:114080kB dirty:1340kB writeback:0kB shmem:44932kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3300kB pagetables:3024kB sec_pagetables:68kB all_unreclaimable? no
[  112.295883][ T7722] Node 0 DMA free:3568kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:192kB local_pcp:12kB free_cma:0kB
[  112.295927][ T7722] lowmem_reserve[]: 0 294 294 294 294
[  112.295948][ T7722] Node 0 DMA32 free:33312kB boost:14336kB min:27900kB low:31288kB high:34676kB reserved_highatomic:4096KB active_anon:2760kB inactive_anon:0kB active_file:704kB inactive_file:15720kB unevictable:3536kB writepending:20kB present:1032196kB managed:301448kB mlocked:0kB bounce:0kB free_pcp:1724kB local_pcp:952kB free_cma:0kB
[  112.295975][ T7722] lowmem_reserve[]: 0 0 0 0 0
[  112.295995][ T7722] Node 1 DMA32 free:139564kB boost:0kB min:47148kB low:58932kB high:70716kB reserved_highatomic:0KB active_anon:61364kB inactive_anon:64kB active_file:15980kB inactive_file:163076kB unevictable:3536kB writepending:1340kB present:1048432kB managed:948292kB mlocked:0kB bounce:0kB free_pcp:10084kB local_pcp:296kB free_cma:0kB
[  112.296022][ T7722] lowmem_reserve[]: 0 0 0 0 0
[  112.296041][ T7722] Node 0 DMA: 54*4kB (U) 35*8kB (U) 24*16kB (U) 18*32kB (U) 5*64kB (U) 2*128kB (U) 0*256kB 1*512kB (U) 1*1024kB (U) 0*2048kB 0*4096kB = 3568kB
[  112.296147][ T7722] Node 0 DMA32: 454*4kB (UEH) 255*8kB (UMEH) 63*16kB (UMEH) 97*32kB (UMEH) 96*64kB (UMEH) 46*128kB (UME) 14*256kB (UEH) 9*512kB (UE) 1*1024kB (M) 2*2048kB (M) 0*4096kB = 33312kB
[  112.296232][ T7722] Node 1 DMA32: 97*4kB (UME) 190*8kB (UME) 371*16kB (UME) 293*32kB (UME) 322*64kB (UME) 92*128kB (UME) 71*256kB (UME) 18*512kB (UME) 9*1024kB (UM) 4*2048kB (UM) 11*4096kB (UM) = 139460kB
[  112.296325][ T7722] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  112.296334][ T7722] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  112.296342][ T7722] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  112.296349][ T7722] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  112.296357][ T7722] 61152 total pagecache pages
[  112.296361][ T7722] 0 pages in swap cache
[  112.296365][ T7722] Free swap  = 124868kB
[  112.296369][ T7722] Total swap = 124996kB
[  112.296373][ T7722] 524155 pages RAM
[  112.296376][ T7722] 0 pages HighMem/MovableOnly
[  112.296380][ T7722] 207880 pages reserved
[  112.296384][ T7722] 0 pages cma reserved
[  112.498363][ T7741] syz.4.442 (7741): drop_caches: 2
[  112.500273][ T7741] syz.4.442 (7741): drop_caches: 2
[  112.509222][ T7741] netlink: 12 bytes leftover after parsing attributes in process `syz.4.442'.
[  112.635768][  T836] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  112.785764][  T836] usb 6-1: Using ep0 maxpacket: 8
[  112.789212][  T836] usb 6-1: unable to get BOS descriptor or descriptor too short
[  112.792300][  T836] usb 6-1: config 192 has an invalid interface number: 17 but max is 0
[  112.794604][  T836] usb 6-1: config 192 has no interface number 0
[  112.796528][  T836] usb 6-1: config 192 interface 17 has no altsetting 0
[  112.800229][  T836] usb 6-1: New USB device found, idVendor=0bfd, idProduct=000f, bcdDevice=89.07
[  112.802763][  T836] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.804981][  T836] usb 6-1: Product: syz
[  112.806260][  T836] usb 6-1: Manufacturer: syz
[  112.807645][  T836] usb 6-1: SerialNumber: syz
[  113.019255][  T836] kvaser_usb 6-1:192.17: error -ENODEV: Cannot get usb endpoint(s)
[  113.024422][  T836] usb 6-1: USB disconnect, device number 9
[  113.612008][ T7777] netlink: 12 bytes leftover after parsing attributes in process `syz.0.458'.
[  113.855838][ T7791] bridge0: entered allmulticast mode
[  113.865514][ T7792] netlink: 'syz.0.464': attribute type 10 has an invalid length.
[  113.874649][ T7792] 8021q: adding VLAN 0 to HW filter on device batadv0
[  113.878646][ T7792] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  113.881662][ T7792] netlink: 'syz.0.464': attribute type 10 has an invalid length.
[  113.899189][ T7792] netlink: 'syz.0.464': attribute type 10 has an invalid length.
[  113.901849][ T7792] netlink: 'syz.0.464': attribute type 10 has an invalid length.
[  113.904681][ T7792] netlink: 'syz.0.464': attribute type 10 has an invalid length.
[  113.909110][ T7792] netlink: 'syz.0.464': attribute type 10 has an invalid length.
[  113.911537][ T7792] netlink: 'syz.0.464': attribute type 10 has an invalid length.
[  113.914396][ T7792] netlink: 'syz.0.464': attribute type 10 has an invalid length.
[  113.917811][ T7792] netlink: 'syz.0.464': attribute type 10 has an invalid length.
[  115.239400][ T7822] ptrace attach of ""[7824] was attempted by "/syz-executor exec"[7822]
[  115.240000][ T7823] QAT: Stopping all acceleration devices.
[  115.634245][ T7832] Bluetooth: MGMT ver 1.23
[  116.418681][ T7858] 9pnet: p9_errstr2errno: server reported unknown error 18446744
[  116.679476][ T7884] QAT: Stopping all acceleration devices.
[  117.412783][   T40] audit: type=1326 audit(1742970321.342:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  117.420732][   T40] audit: type=1326 audit(1742970321.342:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  117.430665][   T40] audit: type=1326 audit(1742970321.342:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.498" exe="/syz-executor" sig=0 arch=40000003 syscall=171 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  117.437184][   T40] audit: type=1326 audit(1742970321.342:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  117.444301][   T40] audit: type=1326 audit(1742970321.342:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  117.452722][   T40] audit: type=1326 audit(1742970321.342:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.498" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  117.459613][   T40] audit: type=1326 audit(1742970321.342:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  117.465847][   T40] audit: type=1326 audit(1742970321.342:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  117.471868][   T40] audit: type=1326 audit(1742970321.342:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.498" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  117.479802][   T40] audit: type=1326 audit(1742970321.342:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz.2.498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  118.061813][ T7959] batman_adv: batadv0: Adding interface: gretap1
[  118.063612][ T7959] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  118.115077][ T7966] netlink: 12 bytes leftover after parsing attributes in process `syz.2.513'.
[  118.588552][ T7995] FAULT_INJECTION: forcing a failure.
[  118.588552][ T7995] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.592895][ T7995] CPU: 0 UID: 0 PID: 7995 Comm: syz.1.524 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  118.592910][ T7995] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  118.592916][ T7995] Call Trace:
[  118.592919][ T7995]  <TASK>
[  118.592923][ T7995]  dump_stack_lvl+0x16c/0x1f0
[  118.592940][ T7995]  should_fail_ex+0x512/0x640
[  118.592953][ T7995]  _copy_from_user+0x2e/0xd0
[  118.592966][ T7995]  kvm_vm_ioctl+0x50f/0x3d40
[  118.592978][ T7995]  ? stack_trace_save+0x8e/0xc0
[  118.592989][ T7995]  ? __pfx_stack_trace_save+0x10/0x10
[  118.592999][ T7995]  ? stack_depot_save_flags+0x29/0x9c0
[  118.593010][ T7995]  ? __lock_acquire+0xaa4/0x1ba0
[  118.593024][ T7995]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  118.593041][ T7995]  ? kasan_save_stack+0x42/0x60
[  118.593055][ T7995]  ? kasan_save_stack+0x33/0x60
[  118.593067][ T7995]  ? kasan_save_track+0x14/0x30
[  118.593080][ T7995]  ? kasan_save_free_info+0x3b/0x60
[  118.593091][ T7995]  ? __kasan_slab_free+0x51/0x70
[  118.593104][ T7995]  ? kfree+0x2b6/0x4d0
[  118.593115][ T7995]  ? tomoyo_path_number_perm+0x470/0x580
[  118.593128][ T7995]  ? security_file_ioctl_compat+0x9b/0x240
[  118.593142][ T7995]  ? __do_compat_sys_ioctl+0x4e/0x2c0
[  118.593153][ T7995]  ? __do_fast_syscall_32+0x73/0x120
[  118.593166][ T7995]  ? do_fast_syscall_32+0x32/0x80
[  118.593194][ T7995]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  118.593209][ T7995]  ? kvm_arch_vm_compat_ioctl+0x2d0/0x470
[  118.593223][ T7995]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  118.593246][ T7995]  ? find_held_lock+0x2b/0x80
[  118.593256][ T7995]  ? tomoyo_path_number_perm+0x295/0x580
[  118.593270][ T7995]  ? tomoyo_path_number_perm+0x18d/0x580
[  118.593283][ T7995]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  118.593296][ T7995]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  118.593312][ T7995]  ? do_vfs_ioctl+0x512/0x1990
[  118.593322][ T7995]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  118.593338][ T7995]  kvm_vm_compat_ioctl+0x393/0x430
[  118.593349][ T7995]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  118.593361][ T7995]  ? find_held_lock+0x2b/0x80
[  118.593372][ T7995]  ? __fget_files+0x20e/0x3c0
[  118.593388][ T7995]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  118.593399][ T7995]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  118.593411][ T7995]  __do_fast_syscall_32+0x73/0x120
[  118.593424][ T7995]  do_fast_syscall_32+0x32/0x80
[  118.593437][ T7995]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  118.593448][ T7995] RIP: 0023:0xf7f25579
[  118.593456][ T7995] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  118.593465][ T7995] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  118.593475][ T7995] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000004068aea3
[  118.593480][ T7995] RDX: 0000000080000240 RSI: 0000000000000000 RDI: 0000000000000000
[  118.593486][ T7995] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  118.593491][ T7995] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  118.593496][ T7995] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  118.593506][ T7995]  </TASK>
[  119.012540][ T8001] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  119.015089][ T8001] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  119.017608][ T8001] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  119.020033][ T8001] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  119.022462][ T8001] vxlan0: entered promiscuous mode
[  119.023925][ T8001] vxlan0: entered allmulticast mode
[  119.027796][ T8001] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  119.030324][ T8001] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  119.033048][ T8001] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  119.035890][ T8001] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  119.151084][ T8013] rpc_pipefs: Unknown parameter 'usrquota'
[  119.159752][ T8013] overlayfs: missing 'lowerdir'
[  119.349214][ T8021] netlink: 16 bytes leftover after parsing attributes in process `syz.1.529'.
[  120.039079][ T7867] Bluetooth: hci4: Frame reassembly failed (-84)
[  120.205588][ T8058] netlink: 12 bytes leftover after parsing attributes in process `syz.0.546'.
[  120.340429][ T8030] [U] .ú
[  121.645898][ T6009] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  121.809280][ T6009] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  121.821801][ T6009] usb 9-1: config 0 interface 0 has no altsetting 0
[  121.831835][ T6009] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  121.842756][ T6009] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  121.853134][ T6009] usb 9-1: Product: syz
[  121.858101][ T6009] usb 9-1: Manufacturer: syz
[  121.863398][ T6009] usb 9-1: SerialNumber: syz
[  121.874988][ T6009] usb 9-1: config 0 descriptor??
[  121.885034][ T6009] usb 9-1: selecting invalid altsetting 0
[  122.085831][ T5961] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  122.165815][ T8087] =======================================================
[  122.165815][ T8087] WARNING: The mand mount option has been deprecated and
[  122.165815][ T8087]          and is ignored by this kernel. Remove the mand
[  122.165815][ T8087]          option from the mount to silence this warning.
[  122.165815][ T8087] =======================================================
[  122.917650][ T8104] netlink: 56 bytes leftover after parsing attributes in process `syz.2.562'.
[  122.929396][ T5961] Bluetooth: hci2: unexpected event 0x06 length: 4 > 3
[  122.939547][ T6009] usb 9-1: USB disconnect, device number 2
[  122.965812][ T5961] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  123.033522][ T5961] Bluetooth: hci2: unexpected event for opcode 0x080b
[  123.216391][ T8125] overlayfs: failed to clone upperpath
[  123.318907][ T8130] Invalid source name
[  123.521461][ T8135] QAT: Stopping all acceleration devices.
[  124.062281][ T5961] Bluetooth: hci2: unexpected event for opcode 0x0000
[  124.398222][ T8146] syz.1.575: attempt to access beyond end of device
[  124.398222][ T8146] nbd1: rw=0, sector=64, nr_sectors = 1 limit=0
[  124.414449][ T8146] syz.1.575: attempt to access beyond end of device
[  124.414449][ T8146] nbd1: rw=0, sector=256, nr_sectors = 1 limit=0
[  124.420458][ T8146] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  124.429325][ T8146] syz.1.575: attempt to access beyond end of device
[  124.429325][ T8146] nbd1: rw=0, sector=512, nr_sectors = 1 limit=0
[  124.435137][ T8146] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  124.439225][ T8146] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  124.445289][ T8146] UDF-fs: Scanning with blocksize 512 failed
[  124.459534][ T8146] syz.1.575: attempt to access beyond end of device
[  124.459534][ T8146] nbd1: rw=0, sector=64, nr_sectors = 2 limit=0
[  124.464375][ T8146] syz.1.575: attempt to access beyond end of device
[  124.464375][ T8146] nbd1: rw=0, sector=512, nr_sectors = 2 limit=0
[  124.471964][ T8146] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  124.478242][ T8146] syz.1.575: attempt to access beyond end of device
[  124.478242][ T8146] nbd1: rw=0, sector=1024, nr_sectors = 2 limit=0
[  124.483223][ T8146] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  124.493109][ T8146] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  124.499471][ T8146] UDF-fs: Scanning with blocksize 1024 failed
[  124.515018][ T8146] syz.1.575: attempt to access beyond end of device
[  124.515018][ T8146] nbd1: rw=0, sector=64, nr_sectors = 4 limit=0
[  124.520037][ T8146] syz.1.575: attempt to access beyond end of device
[  124.520037][ T8146] nbd1: rw=0, sector=1024, nr_sectors = 4 limit=0
[  124.545296][ T8146] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  124.550753][ T8146] syz.1.575: attempt to access beyond end of device
[  124.550753][ T8146] nbd1: rw=0, sector=2048, nr_sectors = 4 limit=0
[  124.554566][ T8146] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  124.558705][ T8146] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  124.561379][ T8146] UDF-fs: Scanning with blocksize 2048 failed
[  124.564286][ T8146] syz.1.575: attempt to access beyond end of device
[  124.564286][ T8146] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[  124.570452][ T8146] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  124.574209][ T8146] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  124.578130][ T8146] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  124.581061][ T8146] UDF-fs: Scanning with blocksize 4096 failed
[  124.583457][ T8146] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1)
[  124.734421][ T8163] netlink: 12 bytes leftover after parsing attributes in process `syz.2.579'.
[  124.786071][ T8165] overlayfs: failed to clone upperpath
[  125.067195][ T8187] netlink: 4 bytes leftover after parsing attributes in process `syz.1.591'.
[  125.294062][ T8203] Invalid source name
[  125.730745][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  125.730759][   T40] audit: type=1326 audit(2000000002.759:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8214 comm="syz.0.599" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  125.740109][   T40] audit: type=1326 audit(2000000002.769:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8214 comm="syz.0.599" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  125.754565][   T40] audit: type=1326 audit(2000000002.769:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8214 comm="syz.0.599" exe="/syz-executor" sig=0 arch=40000003 syscall=448 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  125.762161][   T40] audit: type=1326 audit(2000000002.769:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8214 comm="syz.0.599" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  125.770474][   T40] audit: type=1326 audit(2000000002.769:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8214 comm="syz.0.599" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  125.778540][   T40] audit: type=1326 audit(2000000002.789:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8214 comm="syz.0.599" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  125.785969][   T40] audit: type=1326 audit(2000000002.789:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8214 comm="syz.0.599" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  125.792729][   T40] audit: type=1326 audit(2000000002.789:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8214 comm="syz.0.599" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  125.798712][   T40] audit: type=1326 audit(2000000002.789:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8214 comm="syz.0.599" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  125.935843][  T835] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  126.087486][  T835] usb 9-1: Using ep0 maxpacket: 16
[  126.091117][  T835] usb 9-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  126.093855][  T835] usb 9-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  126.097308][  T835] usb 9-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  126.099936][  T835] usb 9-1: config 0 interface 0 has no altsetting 0
[  126.104385][  T835] usb 9-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  126.107817][  T835] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.110634][  T835] usb 9-1: Product: syz
[  126.112266][  T835] usb 9-1: Manufacturer: syz
[  126.113922][  T835] usb 9-1: SerialNumber: syz
[  126.115406][ T5961] Bluetooth: hci2: unexpected event for opcode 0x080b
[  126.122819][  T835] usb 9-1: config 0 descriptor??
[  126.280269][ T8229] macsec0: entered promiscuous mode
[  126.282108][ T8229] macsec0: entered allmulticast mode
[  126.283748][ T8229] veth1_macvtap: entered allmulticast mode
[  126.333524][  T835] input: syz syz as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input19
[  126.343103][ T5347] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  126.351060][ T5347] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  126.357820][ T5347] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  126.362729][ T5347] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  126.390902][ T5347] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  126.398402][ T5947] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  126.402620][ T5347] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  126.408664][ T5347] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  126.434759][ T8246] netlink: 8 bytes leftover after parsing attributes in process `syz.2.613'.
[  127.130564][ T8279] netlink: 4 bytes leftover after parsing attributes in process `syz.2.622'.
[  127.276551][ T8284] overlayfs: failed to clone lowerpath
[  127.864572][ T8305] 9pnet_fd: Insufficient options for proto=fd
[  127.868966][ T8305] validate_nla: 24 callbacks suppressed
[  127.868976][ T8305] netlink: 'syz.0.629': attribute type 10 has an invalid length.
[  127.881213][ T8305] team0: Device veth0_vlan failed to register rx_handler
[  128.236507][ T5988] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  128.389624][ T5988] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  128.393162][ T5988] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  128.396755][ T5988] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.407508][ T8319] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  128.411477][ T5988] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  128.741778][  T836] usb 9-1: USB disconnect, device number 3
[  128.786529][ T8327] Cannot find add_set index 1 as target
[  128.789669][ T8328] Cannot find add_set index 1 as target
[  129.598023][ T8352] syz.4.646 (8352): drop_caches: 2
[  129.600695][ T8352] syz.4.646 (8352): drop_caches: 2
[  129.748424][ T8352] netlink: 12 bytes leftover after parsing attributes in process `syz.4.646'.
[  131.812889][   T59] usb 6-1: USB disconnect, device number 10
[  131.814979][ T8380] ERROR: device name not specified.
[  132.249485][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  132.251324][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  132.520895][ T8401] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  132.697550][ T8408] netlink: 'syz.4.664': attribute type 1 has an invalid length.
[  132.718284][ T8408] 8021q: adding VLAN 0 to HW filter on device bond2
[  132.726861][ T8408] netlink: 'syz.4.664': attribute type 1 has an invalid length.
[  133.014019][ T8424] vlan2: entered promiscuous mode
[  133.016827][ T8424] vlan2: entered allmulticast mode
[  133.018695][ T8424] hsr_slave_1: entered allmulticast mode
[  133.576220][ T8434] netlink: 12 bytes leftover after parsing attributes in process `syz.2.673'.
[  133.791920][ T8443] trusted_key: syz.2.677 sent an empty control message without MSG_MORE.
[  134.287263][ T8461] netlink: 'syz.0.682': attribute type 12 has an invalid length.
[  134.488814][ T8472] FAULT_INJECTION: forcing a failure.
[  134.488814][ T8472] name failslab, interval 1, probability 0, space 0, times 0
[  134.494437][ T8472] CPU: 1 UID: 0 PID: 8472 Comm: syz.1.685 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  134.494463][ T8472] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.494472][ T8472] Call Trace:
[  134.494476][ T8472]  <TASK>
[  134.494482][ T8472]  dump_stack_lvl+0x16c/0x1f0
[  134.494506][ T8472]  should_fail_ex+0x512/0x640
[  134.494523][ T8472]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  134.494543][ T8472]  should_failslab+0xc2/0x120
[  134.494565][ T8472]  __kmalloc_cache_noprof+0x6a/0x3e0
[  134.494584][ T8472]  ? snd_seq_oss_timer_new+0x43/0x230
[  134.494605][ T8472]  snd_seq_oss_timer_new+0x43/0x230
[  134.494622][ T8472]  snd_seq_oss_open+0x5ce/0xa20
[  134.494640][ T8472]  odev_open+0x6f/0x90
[  134.494661][ T8472]  ? __pfx_odev_open+0x10/0x10
[  134.494682][ T8472]  soundcore_open+0x409/0x580
[  134.494706][ T8472]  ? __pfx_soundcore_open+0x10/0x10
[  134.494728][ T8472]  chrdev_open+0x231/0x6a0
[  134.494750][ T8472]  ? __pfx_apparmor_file_open+0x10/0x10
[  134.494772][ T8472]  ? __pfx_chrdev_open+0x10/0x10
[  134.494796][ T8472]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  134.494821][ T8472]  do_dentry_open+0x741/0x1c10
[  134.494843][ T8472]  ? __pfx_chrdev_open+0x10/0x10
[  134.494864][ T8472]  ? inode_permission+0xdd/0x5f0
[  134.494882][ T8472]  vfs_open+0x82/0x3f0
[  134.494896][ T8472]  ? may_open+0x1f2/0x400
[  134.494914][ T8472]  path_openat+0x1e5e/0x2d40
[  134.494941][ T8472]  ? __pfx_path_openat+0x10/0x10
[  134.494966][ T8472]  do_filp_open+0x20b/0x470
[  134.494986][ T8472]  ? __pfx_do_filp_open+0x10/0x10
[  134.495005][ T8472]  ? find_held_lock+0x2b/0x80
[  134.495033][ T8472]  ? alloc_fd+0x420/0x760
[  134.495058][ T8472]  do_sys_openat2+0x11b/0x1d0
[  134.495073][ T8472]  ? __pfx_do_sys_openat2+0x10/0x10
[  134.495090][ T8472]  ? __fget_files+0x20e/0x3c0
[  134.495122][ T8472]  __ia32_compat_sys_openat+0x16d/0x210
[  134.495140][ T8472]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  134.495157][ T8472]  ? ksys_write+0x1b9/0x240
[  134.495181][ T8472]  ? rcu_is_watching+0x12/0xc0
[  134.495198][ T8472]  __do_fast_syscall_32+0x73/0x120
[  134.495223][ T8472]  do_fast_syscall_32+0x32/0x80
[  134.495244][ T8472]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  134.495264][ T8472] RIP: 0023:0xf7f25579
[  134.495277][ T8472] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  134.495293][ T8472] RSP: 002b:00000000f502555c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  134.495310][ T8472] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000000
[  134.495321][ T8472] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  134.495346][ T8472] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  134.495356][ T8472] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  134.495366][ T8472] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.495384][ T8472]  </TASK>
[  134.495436][ T8472] ALSA: seq_oss: can't alloc timer
[  134.866424][ T8477] Falling back ldisc for ttyS3.
[  134.883678][ T8480] tmpfs: Unknown parameter 'h'
[  134.885752][ T8480] netlink: 96 bytes leftover after parsing attributes in process `syz.2.688'.
[  134.940076][ T8482] team0: Port device geneve0 removed
[  134.943214][ T8477] tipc: New replicast peer: 255.255.255.255
[  134.945132][ T8477] tipc: Enabled bearer <udp:syz2>, priority 10
[  135.422155][ T8493] syz.1.693 (8493): drop_caches: 2
[  135.435757][ T8493] syz.1.693 (8493): drop_caches: 2
[  135.462553][ T8493] netlink: 12 bytes leftover after parsing attributes in process `syz.1.693'.
[  137.295420][ T8536] netlink: 1256 bytes leftover after parsing attributes in process `syz.0.708'.
[  137.297950][ T8536] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  137.371787][ T8542] dccp_invalid_packet: P.CsCov 4 exceeds packet length 28
[  137.374999][ T8542] could not open pipe file descriptor
[  137.729632][ T5961] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[  137.732234][ T5961] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  138.141984][ T8580] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.722'.
[  138.723354][ T8592] netlink: 12 bytes leftover after parsing attributes in process `syz.0.727'.
[  139.143273][ T8610] pim6reg: entered allmulticast mode
[  139.147220][ T8610] pim6reg: left allmulticast mode
[  139.213320][ T8613] IPVS: Error connecting to the multicast addr
[  139.635985][ T8621] fuse: Bad value for 'fd'
[  140.144748][ T8634] netlink: 4 bytes leftover after parsing attributes in process `syz.4.740'.
[  140.449216][ T8646] Invalid source name
[  140.497805][ T8648] loop6: detected capacity change from 0 to 64
[  140.500366][ T8648] netlink: 12 bytes leftover after parsing attributes in process `syz.1.745'.
[  140.544168][ T8652] netlink: 12 bytes leftover after parsing attributes in process `syz.2.746'.
[  141.751285][ T8689] "syz.2.757" (8689) uses obsolete ecb(arc4) skcipher
[  142.341338][ T8707] netlink: 32 bytes leftover after parsing attributes in process `syz.0.763'.
[  142.616874][ T8726] netlink: 24 bytes leftover after parsing attributes in process `syz.1.766'.
[  142.669213][ T8726] netlink: 12 bytes leftover after parsing attributes in process `syz.1.766'.
[  143.105361][ T8772] netlink: 'syz.2.777': attribute type 29 has an invalid length.
[  143.109062][ T8772] netlink: 'syz.2.777': attribute type 29 has an invalid length.
[  143.111745][ T8772] netlink: 'syz.2.777': attribute type 29 has an invalid length.
[  143.114912][ T8772] netlink: 'syz.2.777': attribute type 29 has an invalid length.
[  143.240936][ T8780] netlink: 'syz.2.781': attribute type 29 has an invalid length.
[  143.244394][ T8780] netlink: 'syz.2.781': attribute type 29 has an invalid length.
[  143.247571][ T8780] netlink: 'syz.2.781': attribute type 29 has an invalid length.
[  143.250291][ T8780] netlink: 'syz.2.781': attribute type 29 has an invalid length.
[  143.284874][ T8782] netlink: 'syz.0.782': attribute type 29 has an invalid length.
[  143.291580][ T8782] netlink: 'syz.0.782': attribute type 29 has an invalid length.
[  143.446571][ T8802] 8021q: adding VLAN 0 to HW filter on device bond0
[  143.449843][ T8802] team0: Port device bond0 added
[  143.476049][ T8804] netlink: 9814 bytes leftover after parsing attributes in process `syz.0.793'.
[  143.524195][ T8810] netlink: 132 bytes leftover after parsing attributes in process `syz.0.796'.
[  143.819320][ T8847] sctp: [Deprecated]: syz.2.813 (pid 8847) Use of int in maxseg socket option.
[  143.819320][ T8847] Use struct sctp_assoc_value instead
[  144.307525][ T8866] Invalid source name
[  144.553397][ T8871] netlink: 12 bytes leftover after parsing attributes in process `syz.0.822'.
[  144.808085][ T8884] FAULT_INJECTION: forcing a failure.
[  144.808085][ T8884] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.811796][ T8884] CPU: 0 UID: 0 PID: 8884 Comm: syz.4.827 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  144.811811][ T8884] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.811817][ T8884] Call Trace:
[  144.811820][ T8884]  <TASK>
[  144.811825][ T8884]  dump_stack_lvl+0x16c/0x1f0
[  144.811842][ T8884]  should_fail_ex+0x512/0x640
[  144.811855][ T8884]  _copy_from_user+0x2e/0xd0
[  144.811868][ T8884]  move_addr_to_kernel+0x74/0x160
[  144.811880][ T8884]  __sys_connect+0xaf/0x170
[  144.811891][ T8884]  ? __pfx___sys_connect+0x10/0x10
[  144.811906][ T8884]  ? __pfx_ksys_write+0x10/0x10
[  144.811924][ T8884]  __ia32_sys_connect+0x71/0xb0
[  144.811935][ T8884]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  144.811949][ T8884]  __do_fast_syscall_32+0x73/0x120
[  144.811962][ T8884]  do_fast_syscall_32+0x32/0x80
[  144.811979][ T8884]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.811992][ T8884] RIP: 0023:0xf7f5f579
[  144.812000][ T8884] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  144.812010][ T8884] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[  144.812020][ T8884] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000200
[  144.812026][ T8884] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000000
[  144.812032][ T8884] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  144.812037][ T8884] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  144.812043][ T8884] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  144.812053][ T8884]  </TASK>
[  144.948877][ T5961] Bluetooth: Unknown BR/EDR signaling command 0x0d
[  144.951336][ T5961] Bluetooth: Wrong link type (-22)
[  144.953268][ T5961] Bluetooth: hci3: link tx timeout
[  144.955290][ T5961] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  145.406553][ T5961] Bluetooth: hci3: unexpected event for opcode 0x0804
[  145.575400][ T8915] FAULT_INJECTION: forcing a failure.
[  145.575400][ T8915] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  145.579757][ T8915] CPU: 0 UID: 0 PID: 8915 Comm: syz.1.838 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  145.579772][ T8915] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  145.579778][ T8915] Call Trace:
[  145.579781][ T8915]  <TASK>
[  145.579785][ T8915]  dump_stack_lvl+0x16c/0x1f0
[  145.579801][ T8915]  should_fail_ex+0x512/0x640
[  145.579813][ T8915]  _copy_to_user+0x32/0xd0
[  145.579826][ T8915]  simple_read_from_buffer+0xe0/0x170
[  145.579841][ T8915]  proc_fail_nth_read+0x197/0x270
[  145.579854][ T8915]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  145.579867][ T8915]  ? rw_verify_area+0xcf/0x680
[  145.579878][ T8915]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  145.579891][ T8915]  vfs_read+0x1de/0xc70
[  145.579903][ T8915]  ? fdget_pos+0x2a2/0x370
[  145.579918][ T8915]  ? __pfx___mutex_lock+0x10/0x10
[  145.579931][ T8915]  ? __pfx_vfs_read+0x10/0x10
[  145.579945][ T8915]  ? __fget_files+0x20e/0x3c0
[  145.579961][ T8915]  ksys_read+0x12a/0x240
[  145.579978][ T8915]  ? __pfx_ksys_read+0x10/0x10
[  145.579992][ T8915]  ? rcu_is_watching+0x12/0xc0
[  145.580003][ T8915]  __do_fast_syscall_32+0x73/0x120
[  145.580017][ T8915]  do_fast_syscall_32+0x32/0x80
[  145.580030][ T8915]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  145.580042][ T8915] RIP: 0023:0xf7f25579
[  145.580050][ T8915] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  145.580060][ T8915] RSP: 002b:00000000f5046590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  145.580069][ T8915] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f5046620
[  145.580075][ T8915] RDX: 000000000000000f RSI: 00000000f73acff4 RDI: 0000000000000000
[  145.580081][ T8915] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  145.580086][ T8915] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  145.580091][ T8915] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  145.580102][ T8915]  </TASK>
[  145.680861][ T8921] netlink: 4 bytes leftover after parsing attributes in process `syz.1.840'.
[  146.061899][ T8928] Invalid source name
[  146.728301][ T8947] netlink: 20 bytes leftover after parsing attributes in process `syz.0.844'.
[  146.734214][ T8947] netlink: 20 bytes leftover after parsing attributes in process `syz.0.844'.
[  146.969337][ T8956] netlink: 88 bytes leftover after parsing attributes in process `syz.2.851'.
[  147.033729][ T8958] netlink: 'syz.2.852': attribute type 11 has an invalid length.
[  147.091118][ T8966] fuse: Unknown parameter 'appraise_type'
[  147.695004][ T8975] netlink: 4 bytes leftover after parsing attributes in process `syz.4.856'.
[  147.702894][ T8976] xt_connbytes: Forcing CT accounting to be enabled
[  147.705121][ T8976] SET target dimension over the limit!
[  148.019192][ T8982] Invalid source name
[  148.121601][ T8985] syz.1.858 (8985): drop_caches: 2
[  148.124247][ T8985] syz.1.858 (8985): drop_caches: 2
[  148.202695][ T8985] netlink: 12 bytes leftover after parsing attributes in process `syz.1.858'.
[  149.195977][ T9018] syz.1.868 (9018): drop_caches: 2
[  149.207417][ T9018] syz.1.868 (9018): drop_caches: 2
[  149.221878][ T9018] netlink: 12 bytes leftover after parsing attributes in process `syz.1.868'.
[  149.692127][ T9043] input: syz0 as /devices/virtual/input/input25
[  149.858251][ T9053] Invalid source name
[  149.965981][ T9056] syz.4.880 (9056): drop_caches: 2
[  149.971955][ T9056] syz.4.880 (9056): drop_caches: 2
[  150.022123][ T9056] netlink: 12 bytes leftover after parsing attributes in process `syz.4.880'.
[  150.427662][ T5941] libceph: connect (1)[c::]:6789 error -101
[  150.429424][ T5941] libceph: mon0 (1)[c::]:6789 connect error
[  150.688510][ T5941] libceph: connect (1)[c::]:6789 error -101
[  150.691033][ T5941] libceph: mon0 (1)[c::]:6789 connect error
[  151.196227][ T5941] libceph: connect (1)[c::]:6789 error -101
[  151.198544][ T5941] libceph: mon0 (1)[c::]:6789 connect error
[  151.216515][ T9091] netlink: 12 bytes leftover after parsing attributes in process `syz.0.891'.
[  151.235774][ T9074] ceph: No mds server is up or the cluster is laggy
[  152.230546][ T9123] syz.1.901 (9123): drop_caches: 2
[  152.233542][ T9123] syz.1.901 (9123): drop_caches: 2
[  152.265923][ T9123] netlink: 12 bytes leftover after parsing attributes in process `syz.1.901'.
[  152.393736][ T9128] overlayfs: failed to resolve './file1': -2
[  152.539334][   T40] audit: type=1326 audit(2000000029.569:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.1.905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000
[  152.547508][   T40] audit: type=1326 audit(2000000029.569:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.1.905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000
[  152.555430][   T40] audit: type=1326 audit(2000000029.569:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.1.905" exe="/syz-executor" sig=0 arch=40000003 syscall=16 compat=1 ip=0xf7f25579 code=0x7ffc0000
[  152.563155][   T40] audit: type=1326 audit(2000000029.569:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.1.905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000
[  152.573145][   T40] audit: type=1326 audit(2000000029.569:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.1.905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000
[  152.579387][   T40] audit: type=1326 audit(2000000029.569:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.1.905" exe="/syz-executor" sig=0 arch=40000003 syscall=65 compat=1 ip=0xf7f25579 code=0x7ffc0000
[  152.585267][   T40] audit: type=1326 audit(2000000029.569:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.1.905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000
[  152.591764][   T40] audit: type=1326 audit(2000000029.569:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.1.905" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f25579 code=0x7ffc0000
[  152.599240][   T40] audit: type=1326 audit(2000000029.569:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.1.905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000
[  152.606682][   T40] audit: type=1326 audit(2000000029.569:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.1.905" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f25579 code=0x7ffc0000
[  153.151562][ T9149] nfs: Unknown parameter '^!/&R)'
[  153.277887][ T9158] netlink: 12 bytes leftover after parsing attributes in process `syz.2.913'.
[  153.605367][ T9165] QAT: Stopping all acceleration devices.
[  153.915732][ T1451] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  154.050273][ T5961] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[  154.053329][ T5961] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  154.077227][ T1451] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  154.080740][ T1451] usb 9-1: config 0 interface 0 has no altsetting 0
[  154.084719][ T1451] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  154.087706][ T1451] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  154.090663][ T1451] usb 9-1: Product: syz
[  154.092213][ T1451] usb 9-1: Manufacturer: syz
[  154.093994][ T1451] usb 9-1: SerialNumber: syz
[  154.098181][ T1451] usb 9-1: config 0 descriptor??
[  154.104671][ T1451] usb 9-1: selecting invalid altsetting 0
[  154.305221][ T5941] usb 9-1: USB disconnect, device number 4
[  154.466565][ T9184] netlink: 8 bytes leftover after parsing attributes in process `syz.1.921'.
[  154.608248][ T9189] netlink: 12 bytes leftover after parsing attributes in process `syz.2.922'.
[  154.748030][ T9191] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.798527][ T9191] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.851307][ T9191] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.986951][ T9191] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.045863][ T9191] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.051559][ T9191] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.055782][ T9191] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.059828][ T9191] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.067155][ T5961] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[  155.069057][ T5961] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  155.136907][ T5961] Bluetooth: hci3: command 0x0406 tx timeout
[  155.842512][ T9213] netlink: 8 bytes leftover after parsing attributes in process `syz.0.929'.
[  155.878876][ T9220] netlink: 12 bytes leftover after parsing attributes in process `syz.1.931'.
[  155.883736][ T1451] IPVS: starting estimator thread 0...
[  155.903172][ T9219] syz.1.931 (9219): drop_caches: 2
[  155.905092][ T9219] syz.1.931 (9219): drop_caches: 2
[  155.980001][ T9223] netlink: 4 bytes leftover after parsing attributes in process `syz.4.932'.
[  155.985929][ T9221] IPVS: using max 48 ests per chain, 115200 per kthread
[  156.111978][ T9227] netlink: 148 bytes leftover after parsing attributes in process `syz.0.934'.
[  156.114400][ T9227] A link change request failed with some changes committed already. Interface ip_vti0 may have been left with an inconsistent configuration, please check.
[  156.125520][ T9230] xt_CT: You must specify a L4 protocol and not use inversions on it
[  156.168669][ T5952] Bluetooth: hci0: unexpected event for opcode 0x0c5b
[  156.174127][ T5952] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  156.225048][ T9242] Invalid source name
[  156.539119][ T9244] netlink: 12 bytes leftover after parsing attributes in process `syz.0.941'.
[  157.008613][ T5952] Bluetooth: hci3: unexpected event for opcode 0x0c5b
[  157.010469][ T5952] Bluetooth: Unknown BR/EDR signaling command 0x0d
[  157.012197][ T5952] Bluetooth: Wrong link type (-22)
[  157.424552][ T9275] netlink: 12 bytes leftover after parsing attributes in process `syz.2.952'.
[  157.512713][ T9282] bridge0: port 1(team0) entered blocking state
[  157.516502][ T9282] bridge0: port 1(team0) entered disabled state
[  157.518372][ T9282] team0: entered allmulticast mode
[  157.523310][ T9282] bond0: entered allmulticast mode
[  157.525524][ T9282] batadv0: entered allmulticast mode
[  157.529876][ T9282] team0: entered promiscuous mode
[  157.531479][ T9282] bond0: entered promiscuous mode
[  157.532852][ T9282] batadv0: entered promiscuous mode
[  157.539248][ T7866] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  157.542418][ T7866] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  157.571959][ T9284] netlink: 8 bytes leftover after parsing attributes in process `syz.1.951'.
[  157.620745][ T9284] dvmrp0: entered allmulticast mode
[  157.960535][ T5952] Bluetooth: hci3: unexpected event for opcode 0x0c5b
[  157.962818][ T5952] Bluetooth: Unknown BR/EDR signaling command 0x0d
[  157.964653][ T5952] Bluetooth: Wrong link type (-22)
[  157.992634][ T9305] QAT: Stopping all acceleration devices.
[  158.040086][ T9307] Invalid source name
[  158.539542][ T9320] syz.1.962 (9320): drop_caches: 2
[  158.541969][ T9320] syz.1.962 (9320): drop_caches: 2
[  158.562371][ T9320] netlink: 12 bytes leftover after parsing attributes in process `syz.1.962'.
[  159.849009][ T9349] QAT: Stopping all acceleration devices.
[  159.966156][ T9358] dccp_close: ABORT with 20 bytes unread
[  159.980873][ T9364] netlink: 40 bytes leftover after parsing attributes in process `syz.0.978'.
[  160.599652][ T9383] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.601999][ T9383] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.604328][ T9383] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.607324][ T9383] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.677438][   T40] kauditd_printk_skb: 64 callbacks suppressed
[  160.677450][   T40] audit: type=1326 audit(2000000037.709:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.2.984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  160.685439][   T40] audit: type=1326 audit(2000000037.709:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.2.984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  160.691327][   T40] audit: type=1326 audit(2000000037.709:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.2.984" exe="/syz-executor" sig=0 arch=40000003 syscall=445 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  160.697249][   T40] audit: type=1326 audit(2000000037.709:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.2.984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  160.703100][   T40] audit: type=1326 audit(2000000037.709:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.2.984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  160.708973][   T40] audit: type=1326 audit(2000000037.709:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.2.984" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  160.714644][   T40] audit: type=1326 audit(2000000037.709:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.2.984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  160.720764][   T40] audit: type=1326 audit(2000000037.709:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.2.984" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  160.726682][   T40] audit: type=1326 audit(2000000037.709:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.2.984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  160.732519][   T40] audit: type=1326 audit(2000000037.709:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9381 comm="syz.2.984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[  160.960686][ T9398] netlink: 12 bytes leftover after parsing attributes in process `syz.0.989'.
[  161.264717][ T9410] Invalid source name
[  161.601695][ T5952] Bluetooth: hci0: unexpected event for opcode 0x0c5b
[  161.604623][ T5952] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  161.738728][ T9425] netlink: 8 bytes leftover after parsing attributes in process `syz.1.999'.
[  161.743953][ T9425] netlink: 16 bytes leftover after parsing attributes in process `syz.1.999'.
[  162.616002][ T9471] QAT: Stopping all acceleration devices.
[  162.722406][ T9476] Invalid source name
[  162.938058][ T5952] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[  162.940551][ T5952] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  163.775760][ T5952] Bluetooth: hci0: command 0x0c1a tx timeout
[  164.094560][ T9537] Invalid source name
[  164.391350][ T5952] Bluetooth: hci3: unexpected event for opcode 0x0c5b
[  164.393428][ T5952] Bluetooth: Unknown BR/EDR signaling command 0x0d
[  164.395214][ T5952] Bluetooth: Wrong link type (-22)
[  164.591196][ T9552] FAULT_INJECTION: forcing a failure.
[  164.591196][ T9552] name failslab, interval 1, probability 0, space 0, times 0
[  164.594870][ T9552] CPU: 1 UID: 0 PID: 9552 Comm: syz.1.1037 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  164.594895][ T9552] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  164.594902][ T9552] Call Trace:
[  164.594906][ T9552]  <TASK>
[  164.594911][ T9552]  dump_stack_lvl+0x16c/0x1f0
[  164.594928][ T9552]  should_fail_ex+0x512/0x640
[  164.594939][ T9552]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  164.594953][ T9552]  should_failslab+0xc2/0x120
[  164.594969][ T9552]  __kmalloc_cache_noprof+0x6a/0x3e0
[  164.594981][ T9552]  ? snd_seq_port_connect+0x61/0x550
[  164.594999][ T9552]  snd_seq_port_connect+0x61/0x550
[  164.595013][ T9552]  ? _raw_read_unlock+0x28/0x50
[  164.595025][ T9552]  ? check_subscription_permission.isra.0+0xf5/0x240
[  164.595042][ T9552]  snd_seq_ioctl_subscribe_port+0x211/0x450
[  164.595060][ T9552]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[  164.595080][ T9552]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  164.595096][ T9552]  snd_seq_oss_midi_open+0x442/0x660
[  164.595109][ T9552]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[  164.595121][ T9552]  ? lockdep_hardirqs_on+0x7c/0x110
[  164.595135][ T9552]  ? snd_seq_oss_midi_open_all+0x84/0xe0
[  164.595148][ T9552]  snd_seq_oss_midi_open_all+0x91/0xe0
[  164.595161][ T9552]  snd_seq_oss_open+0x810/0xa20
[  164.595172][ T9552]  odev_open+0x6f/0x90
[  164.595186][ T9552]  ? __pfx_odev_open+0x10/0x10
[  164.595204][ T9552]  soundcore_open+0x409/0x580
[  164.595223][ T9552]  ? __pfx_soundcore_open+0x10/0x10
[  164.595238][ T9552]  chrdev_open+0x231/0x6a0
[  164.595252][ T9552]  ? __pfx_apparmor_file_open+0x10/0x10
[  164.595267][ T9552]  ? __pfx_chrdev_open+0x10/0x10
[  164.595282][ T9552]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  164.595298][ T9552]  do_dentry_open+0x741/0x1c10
[  164.595311][ T9552]  ? __pfx_chrdev_open+0x10/0x10
[  164.595326][ T9552]  ? inode_permission+0xdd/0x5f0
[  164.595337][ T9552]  vfs_open+0x82/0x3f0
[  164.595346][ T9552]  ? may_open+0x1f2/0x400
[  164.595357][ T9552]  path_openat+0x1e5e/0x2d40
[  164.595374][ T9552]  ? __pfx_path_openat+0x10/0x10
[  164.595390][ T9552]  do_filp_open+0x20b/0x470
[  164.595404][ T9552]  ? __pfx_do_filp_open+0x10/0x10
[  164.595418][ T9552]  ? find_held_lock+0x2b/0x80
[  164.595434][ T9552]  ? alloc_fd+0x420/0x760
[  164.595450][ T9552]  do_sys_openat2+0x11b/0x1d0
[  164.595459][ T9552]  ? __pfx_do_sys_openat2+0x10/0x10
[  164.595469][ T9552]  ? __pfx___schedule+0x10/0x10
[  164.595480][ T9552]  ? __fget_files+0x20e/0x3c0
[  164.595495][ T9552]  __ia32_compat_sys_openat+0x16d/0x210
[  164.595506][ T9552]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  164.595516][ T9552]  ? ksys_write+0x1b9/0x240
[  164.595530][ T9552]  ? rcu_is_watching+0x12/0xc0
[  164.595541][ T9552]  __do_fast_syscall_32+0x73/0x120
[  164.595561][ T9552]  do_fast_syscall_32+0x32/0x80
[  164.595574][ T9552]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  164.595587][ T9552] RIP: 0023:0xf7f25579
[  164.595595][ T9552] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  164.595605][ T9552] RSP: 002b:00000000f500455c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  164.595614][ T9552] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000040
[  164.595621][ T9552] RDX: 0000000000008002 RSI: 0000000000000000 RDI: 0000000000000000
[  164.595626][ T9552] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  164.595631][ T9552] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  164.595637][ T9552] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  164.595647][ T9552]  </TASK>
[  165.514750][ T9575] fuse: Bad value for 'fd'
[  165.796400][ T5952] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[  165.798361][ T5952] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  166.031177][ T9587] Invalid source name
[  166.565809][ T5952] Bluetooth: hci0: command 0x0c1a tx timeout
[  166.566342][ T9549] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  167.311996][ T9606] cgroup: subsys name conflicts with all
[  167.415625][ T9549] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  167.417564][ T9549] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  167.419267][ T9549] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  167.545604][ T9624] tap0: tun_chr_ioctl cmd 1074025672
[  167.547659][ T9624] tap0: ignored: set checksum enabled
[  167.549356][ T9624] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1062'.
[  167.644049][ T9626] Cannot find add_set index 3 as target
[  167.776764][ T9633] Invalid source name
[  167.941505][ T9634] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1064'.
[  168.450519][ T5952] Bluetooth: hci3: unexpected event for opcode 0x0c5b
[  168.453518][ T5952] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  168.645832][   T67] Bluetooth: hci2: command 0x0c1a tx timeout
[  168.721904][ T9666] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1075'.
[  168.724516][ T9666] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1075'.
[  169.048972][ T9679] Invalid source name
[  169.431769][ T9683] QAT: Stopping all acceleration devices.
[  170.070157][ T9699] validate_nla: 7 callbacks suppressed
[  170.070168][ T9699] netlink: 'syz.2.1085': attribute type 1 has an invalid length.
[  170.079352][ T9699] bond1: entered promiscuous mode
[  170.080965][ T9699] 8021q: adding VLAN 0 to HW filter on device bond1
[  170.094781][ T9699] veth5: entered promiscuous mode
[  170.096831][ T9699] veth5: entered allmulticast mode
[  170.101118][ T9699] bond1: (slave veth5): making interface the new active one
[  170.103560][ T9699] bond1: (slave veth5): Enslaving as an active interface with an up link
[  170.286826][ T9710] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1089'.
[  170.697447][ T9720] Invalid source name
[  170.808508][ T9722] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1093'.
[  170.869506][ T9730] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1095'.
[  171.153256][   T40] kauditd_printk_skb: 41 callbacks suppressed
[  171.153268][   T40] audit: type=1326 audit(2000000048.179:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9733 comm="syz.2.1096" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0
[  171.272424][   T67] Bluetooth: hci3: unexpected event for opcode 0x0c5b
[  171.274376][   T67] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  171.285349][ T9739] QAT: Stopping all acceleration devices.
[  171.606327][ T9757] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1103'.
[  172.093258][ T9776] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1110'.
[  172.169292][ T9779] Invalid source name
[  172.586844][   T40] audit: type=1800 audit(2000000049.609:175): pid=9800 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1116" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0
[  172.642866][   T67] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[  172.645456][   T67] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  172.797234][ T9811] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1116'.
[  173.414291][ T9813] netlink: 'syz.4.1119': attribute type 1 has an invalid length.
[  173.427409][ T9813] 8021q: adding VLAN 0 to HW filter on device bond3
[  173.439954][ T9813] 8021q: adding VLAN 0 to HW filter on device bond3
[  173.442667][ T9813] bond3: (slave vxcan3): The slave device specified does not support setting the MAC address
[  173.447667][ T9813] bond3: (slave vxcan3): Error -95 calling set_mac_address
[  173.488423][ T9815] ip6erspan0: entered promiscuous mode
[  173.492566][ T9815] bond3: (slave ip6erspan0): making interface the new active one
[  173.493781][ T9817] QAT: Stopping all acceleration devices.
[  173.495370][ T9815] bond3: (slave ip6erspan0): Enslaving as an active interface with an up link
[  173.539804][ T9822] netlink: 'syz.0.1121': attribute type 1 has an invalid length.
[  173.966282][ T9833] netlink: 124 bytes leftover after parsing attributes in process `syz.4.1124'.
[  174.352559][ T9835] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1125'.
[  174.544259][   T67] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[  174.546743][   T67] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  174.611883][ T9845] Invalid source name
[  175.448456][ T9859] QAT: Stopping all acceleration devices.
[  176.307077][ T9882] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1140'.
[  176.497278][ T9889] Invalid source name
[  176.599387][   T67] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[  176.601891][   T67] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  176.699338][ T9907] 9pnet_fd: Insufficient options for proto=fd
[  178.274785][   T67] Bluetooth: hci3: unexpected event for opcode 0x0c5b
[  178.280617][   T67] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  178.635467][ T9939] FAULT_INJECTION: forcing a failure.
[  178.635467][ T9939] name failslab, interval 1, probability 0, space 0, times 0
[  178.639569][ T9939] CPU: 1 UID: 0 PID: 9939 Comm: syz.4.1156 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  178.639593][ T9939] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.639599][ T9939] Call Trace:
[  178.639602][ T9939]  <TASK>
[  178.639606][ T9939]  dump_stack_lvl+0x16c/0x1f0
[  178.639624][ T9939]  should_fail_ex+0x512/0x640
[  178.639635][ T9939]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  178.639649][ T9939]  should_failslab+0xc2/0x120
[  178.639664][ T9939]  __kmalloc_cache_noprof+0x6a/0x3e0
[  178.639675][ T9939]  ? lock_acquire+0x179/0x350
[  178.639689][ T9939]  ? snd_info_text_entry_write+0x3c6/0x4f0
[  178.639701][ T9939]  snd_info_text_entry_write+0x3c6/0x4f0
[  178.639712][ T9939]  ? __pfx_snd_info_text_entry_write+0x10/0x10
[  178.639723][ T9939]  proc_reg_write+0x23d/0x330
[  178.639733][ T9939]  vfs_write+0x25c/0x1180
[  178.639745][ T9939]  ? __pfx_proc_reg_write+0x10/0x10
[  178.639755][ T9939]  ? __pfx___mutex_lock+0x10/0x10
[  178.639768][ T9939]  ? __pfx_vfs_write+0x10/0x10
[  178.639784][ T9939]  ? __fget_files+0x20e/0x3c0
[  178.639800][ T9939]  ksys_write+0x12a/0x240
[  178.639812][ T9939]  ? __pfx_ksys_write+0x10/0x10
[  178.639826][ T9939]  ? rcu_is_watching+0x12/0xc0
[  178.639837][ T9939]  __do_fast_syscall_32+0x73/0x120
[  178.639851][ T9939]  do_fast_syscall_32+0x32/0x80
[  178.639864][ T9939]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.639876][ T9939] RIP: 0023:0xf7f5f579
[  178.639884][ T9939] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  178.639894][ T9939] RSP: 002b:00000000f504455c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  178.639903][ T9939] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000100
[  178.639910][ T9939] RDX: 00000000000000b0 RSI: 0000000000000000 RDI: 0000000000000000
[  178.639915][ T9939] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  178.639920][ T9939] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  178.639926][ T9939] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.639936][ T9939]  </TASK>
[  178.954200][ T9944] Invalid source name
[  179.288204][ T9950] QAT: Stopping all acceleration devices.
[  179.648516][   T67] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[  179.650656][   T67] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  179.678496][ T9963] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1165'.
[  179.811088][ T9970] input: syz1 as /devices/virtual/input/input32
[  180.278529][ T9976] ip6tnl0 speed is unknown, defaulting to 1000
[  180.281536][ T9976] ip6tnl0 speed is unknown, defaulting to 1000
[  180.284845][ T9976] ip6tnl0 speed is unknown, defaulting to 1000
[  180.334706][ T9976] infiniband syz0: set active
[  180.338926][ T1451] ip6tnl0 speed is unknown, defaulting to 1000
[  180.341165][ T9976] infiniband syz0: added ip6tnl0
[  180.368318][ T9976] RDS/IB: syz0: added
[  180.369829][ T9976] smc: adding ib device syz0 with port count 1
[  180.371707][ T9976] smc:    ib device syz0 port 1 has pnetid 
[  180.376534][ T1451] ip6tnl0 speed is unknown, defaulting to 1000
[  180.379250][ T9976] ip6tnl0 speed is unknown, defaulting to 1000
[  180.413212][ T9976] ip6tnl0 speed is unknown, defaulting to 1000
[  180.444703][ T9976] ip6tnl0 speed is unknown, defaulting to 1000
[  180.474423][ T9976] ip6tnl0 speed is unknown, defaulting to 1000
[  180.568539][   T67] Bluetooth: hci2: unexpected event for opcode 0x0c5b
[  180.570444][   T67] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  180.659605][ T9993] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1176'.
[  180.714626][ T9996] netlink: 'syz.4.1176': attribute type 4 has an invalid length.
[  181.208967][ T9999] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1177'.
[  181.517104][T10009] sp0: Synchronizing with TNC
[  181.586079][T10009] [U] è
[  182.073443][   T67] Bluetooth: hci0: unexpected event for opcode 0x0c5b
[  182.076795][   T67] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  182.290872][T10027] syz.4.1186 (10027): drop_caches: 2
[  182.295912][T10027] syz.4.1186 (10027): drop_caches: 2
[  182.303143][T10027] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1186'.
[  183.041399][ T5952] Bluetooth: hci4: sending frame failed (-49)
[  183.043627][   T67] Bluetooth: hci4: Opcode 0x1003 failed: -49
[  183.170496][T10034] trusted_key: encrypted_key: hex blob is missing
[  183.198236][T10044] overlayfs: failed to clone upperpath
[  183.899651][T10070] syz.4.1195 (10070): drop_caches: 2
[  183.901524][T10070] syz.4.1195 (10070): drop_caches: 2
[  183.906625][T10070] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1195'.
[  184.229785][T10086] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1199'.
[  184.255754][ T5988] IPVS: starting estimator thread 0...
[  184.263011][   T67] Bluetooth: hci3: unexpected event for opcode 0x0c5b
[  184.264952][   T67] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  184.280511][T10092] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1202'.
[  184.306839][T10098] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1205'.
[  184.355736][T10089] IPVS: using max 49 ests per chain, 117600 per kthread
[  184.879875][T10117] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1212'.
[  184.932214][T10123] overlayfs: failed to clone upperpath
[  184.958844][T10125] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1215'.
[  185.281503][T10140] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1221'.
[  185.314074][T10142] tmpfs: Bad value for 'mpol'
[  185.423336][T10156] QAT: Stopping all acceleration devices.
[  185.476877][T10157] syz.4.1224 (10157): drop_caches: 2
[  185.485550][T10157] syz.4.1224 (10157): drop_caches: 2
[  185.500196][T10157] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1224'.
[  186.102000][T10174] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1231'.
[  186.298907][T10185] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1235'.
[  186.310419][T10185] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1235'.
[  186.407601][T10191] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  186.409436][T10191] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  186.413476][T10191] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  186.479743][T10193] bridge0: port 1(vlan2) entered blocking state
[  186.481642][T10193] bridge0: port 1(vlan2) entered disabled state
[  186.483632][T10193] vlan2: entered allmulticast mode
[  186.503595][T10193] vlan2: left allmulticast mode
[  187.134688][T10209] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1240'.
[  187.464133][T10230] netlink: 'syz.2.1245': attribute type 21 has an invalid length.
[  187.466459][T10230] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1245'.
[  187.469362][T10230] netlink: 'syz.2.1245': attribute type 4 has an invalid length.
[  187.471554][T10230] netlink: 'syz.2.1245': attribute type 3 has an invalid length.
[  187.473667][T10230] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1245'.
[  188.485837][ T5961] Bluetooth: hci3: command 0x0406 tx timeout
[  188.485894][   T67] Bluetooth: hci2: command 0x0c1a tx timeout
[  188.485906][ T5952] Bluetooth: hci0: command 0x0c1a tx timeout
[  188.563332][T10266] ptrace attach of ""[10267] was attempted by "/syz-executor exec"[10266]
[  188.978563][T10289] lo speed is unknown, defaulting to 1000
[  188.980723][T10289] lo speed is unknown, defaulting to 1000
[  188.982588][T10289] lo speed is unknown, defaulting to 1000
[  189.007885][T10290] Invalid source name
[  189.023488][T10289] infiniband s
z1: set active
[  189.026628][ T6016] lo speed is unknown, defaulting to 1000
[  189.028879][T10289] infiniband s
z1: added lo
[  189.035705][T10292] »»»»»»7: renamed from lo (while UP)
[  189.051865][T10289] RDS/IB: s
z1: added
[  189.053126][T10289] smc: adding ib device s
z1 with port count 1
[  189.054901][T10289] smc:    ib device s
z1 port 1 has pnetid 
[  189.056622][ T6016] »»»»»»7 speed is unknown, defaulting to 1000
[  189.058598][T10289] »»»»»»7 speed is unknown, defaulting to 1000
[  189.109817][T10289] »»»»»»7 speed is unknown, defaulting to 1000
[  189.146462][T10289] »»»»»»7 speed is unknown, defaulting to 1000
[  189.176632][T10289] »»»»»»7 speed is unknown, defaulting to 1000
[  189.779531][T10321] befs: (nullb0): No write support. Marking filesystem read-only
[  189.782731][T10321] befs: (nullb0): invalid magic header
[  190.354545][T10340] ip6tnl0 speed is unknown, defaulting to 1000
[  190.505175][T10340] »»»»»»7 speed is unknown, defaulting to 1000
[  190.565867][   T67] Bluetooth: hci3: command 0x0406 tx timeout
[  190.795087][T10355] Invalid source name
[  191.127128][T10366] netlink: 'syz.2.1286': attribute type 6 has an invalid length.
[  191.218382][T10370] fuse: Bad value for 'fd'
[  191.358467][T10374] netlink: 'syz.4.1289': attribute type 10 has an invalid length.
[  191.362740][T10374] can0: slcan on ptm0.
[  191.433765][T10379] __nla_validate_parse: 2 callbacks suppressed
[  191.433775][T10379] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1292'.
[  191.553249][T10383] QAT: Stopping all acceleration devices.
[  191.576156][T10380] can0 (unregistered): slcan off ptm0.
[  192.210922][T10398] fuse: Bad value for 'fd'
[  192.497416][   T59] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  192.549172][T10407] Invalid source name
[  192.612221][T10409] ax25_connect(): syz.1.1302 uses autobind, please contact jreuter@yaina.de
[  192.645845][   T67] Bluetooth: hci3: command 0x0406 tx timeout
[  192.665910][   T59] usb 9-1: Using ep0 maxpacket: 32
[  192.670558][   T59] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  192.673881][   T59] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  192.685864][   T59] usb 9-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  192.688609][   T59] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.696446][   T59] usb 9-1: config 0 descriptor??
[  192.727584][   T40] audit: type=1800 audit(2000000069.759:176): pid=10411 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1303" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0
[  193.113668][   T59] savu 0003:1E7D:2D5A.0003: hiddev0,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.4-1/input0
[  193.292703][T10423] fuse: Bad value for 'fd'
[  193.378806][   T71] usb 9-1: USB disconnect, device number 5
[  193.393319][T10421] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  193.395690][T10421] team0: Device ipvlan2 is already an upper device of the team interface
[  193.445515][T10429] QAT: Stopping all acceleration devices.
[  193.687118][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  193.688967][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  193.903498][T10438] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1312'.
[  194.155726][T10448] Invalid source name
[  195.166025][T10465] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  195.168898][T10465] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  195.171496][T10465] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  195.174144][T10465] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  195.231880][T10465] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  195.234611][T10465] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  195.237276][T10465] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  195.239778][T10465] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  195.243542][T10465] vxlan0: left promiscuous mode
[  195.400090][   T67] Bluetooth: hci0: unexpected event for opcode 0x0c12
[  195.507236][T10502] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1330'.
[  195.572853][T10509] syz.4.1329 (10509): drop_caches: 2
[  195.578848][T10509] syz.4.1329 (10509): drop_caches: 2
[  195.618870][T10509] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1329'.
[  195.752274][T10515] Invalid source name
[  195.964003][   T71] IPVS: starting estimator thread 0...
[  196.065877][T10518] IPVS: using max 48 ests per chain, 115200 per kthread
[  196.396821][T10530] siw: device registration error -23
[  196.735115][   T40] audit: type=1326 audit(2000000073.759:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10542 comm="syz.1.1343" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x0
[  196.787320][T10550] Invalid source name
[  197.311816][ T5961] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  197.314520][ T5961] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  197.317282][ T5961] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  197.320940][ T5961] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  197.324051][ T5961] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  197.326276][ T5961] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  197.348915][T10555] ip6tnl0 speed is unknown, defaulting to 1000
[  197.378955][T10555] »»»»»»7 speed is unknown, defaulting to 1000
[  197.441652][T10560] netlink: 88 bytes leftover after parsing attributes in process `syz.1.1349'.
[  197.444304][T10560] unsupported nla_type 256
[  197.457360][T10555] chnl_net:caif_netlink_parms(): no params data found
[  197.518108][T10555] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.520197][T10555] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.522303][T10555] bridge_slave_0: entered allmulticast mode
[  197.524492][T10555] bridge_slave_0: entered promiscuous mode
[  197.535047][T10555] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.542982][T10555] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.545084][T10555] bridge_slave_1: entered allmulticast mode
[  197.547281][T10555] bridge_slave_1: entered promiscuous mode
[  197.570608][T10555] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  197.574202][T10555] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  197.576845][ T7867] bridge_slave_1: left allmulticast mode
[  197.578527][ T7867] bridge_slave_1: left promiscuous mode
[  197.580262][ T7867] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.587136][ T7867] bridge_slave_0: left allmulticast mode
[  197.588779][ T7867] bridge_slave_0: left promiscuous mode
[  197.590397][ T7867] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.635579][ T7867] bond3 (unregistering): (slave ip6erspan0): Releasing active interface
[  197.675204][ T7867] batman_adv: batadv0: Removing interface: gretap1
[  197.814007][ T7867] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  197.817247][ T7867] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  197.819975][ T7867] bond0 (unregistering): Released all slaves
[  197.823622][ T7867] bond1 (unregistering): Released all slaves
[  197.890365][ T7867] bond2 (unregistering): Released all slaves
[  197.969748][ T7867] bond3 (unregistering): Released all slaves
[  197.988347][T10581] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  197.990871][T10581] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  197.993309][T10581] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  197.995873][T10581] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  198.012133][T10555] team0: Port device team_slave_0 added
[  198.017961][T10555] team0: Port device team_slave_1 added
[  198.042201][T10588] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1357'.
[  198.060041][ T7867] tipc: Disabling bearer <udp:syz2>
[  198.061716][ T7867] tipc: Left network mode
[  198.064103][T10555] batman_adv: batadv0: Adding interface: batadv_slave_0
[  198.067823][T10555] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  198.074994][T10555] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  198.080854][T10555] batman_adv: batadv0: Adding interface: batadv_slave_1
[  198.082792][T10555] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  198.089979][T10555] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  198.098491][T10590] netdevsim netdevsim1: Direct firmware load for .
[  198.098491][T10590]  failed with error -2
[  198.103631][T10590] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  198.103631][T10590] 
[  198.122980][T10555] hsr_slave_0: entered promiscuous mode
[  198.123438][T10592] netlink: 'syz.0.1359': attribute type 1 has an invalid length.
[  198.124871][T10555] hsr_slave_1: entered promiscuous mode
[  198.127238][T10592] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1359'.
[  198.128822][T10555] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  198.133790][T10555] Cannot create hsr debugfs directory
[  198.156860][T10595] netlink: 'syz.2.1360': attribute type 11 has an invalid length.
[  198.214361][T10603] (syz.2.1363,10603,1):dlmfs_mkdir:421 ERROR: invalid domain name for directory.
[  198.227483][T10555] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  198.230962][T10555] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  198.234322][T10555] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  198.239113][T10555] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  198.248276][T10555] bridge0: port 2(bridge_slave_1) entered blocking state
[  198.250763][T10555] bridge0: port 2(bridge_slave_1) entered forwarding state
[  198.253300][T10555] bridge0: port 1(bridge_slave_0) entered blocking state
[  198.255328][T10555] bridge0: port 1(bridge_slave_0) entered forwarding state
[  198.281156][T10555] 8021q: adding VLAN 0 to HW filter on device bond0
[  198.288225][T10555] 8021q: adding VLAN 0 to HW filter on device team0
[  198.313683][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  198.374005][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  198.376086][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  198.472010][T10555] 8021q: adding VLAN 0 to HW filter on device batadv0
[  198.638418][T10555] veth0_vlan: entered promiscuous mode
[  198.641786][T10555] veth1_vlan: entered promiscuous mode
[  198.647337][ T7867] hsr_slave_0: left promiscuous mode
[  198.649275][ T7867] hsr_slave_1: left promiscuous mode
[  198.651026][ T7867] batman_adv: batadv0: Removing interface: batadv_slave_0
[  198.653432][ T7867] batman_adv: batadv0: Removing interface: batadv_slave_1
[  198.944774][T10621] FAULT_INJECTION: forcing a failure.
[  198.944774][T10621] name failslab, interval 1, probability 0, space 0, times 0
[  198.948429][T10621] CPU: 1 UID: 0 PID: 10621 Comm: syz.1.1365 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  198.948468][T10621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  198.948474][T10621] Call Trace:
[  198.948477][T10621]  <TASK>
[  198.948481][T10621]  dump_stack_lvl+0x16c/0x1f0
[  198.948498][T10621]  should_fail_ex+0x512/0x640
[  198.948509][T10621]  ? __kmalloc_noprof+0xbf/0x510
[  198.948524][T10621]  ? rfkill_alloc+0xac/0x330
[  198.948537][T10621]  should_failslab+0xc2/0x120
[  198.948552][T10621]  __kmalloc_noprof+0xd2/0x510
[  198.948568][T10621]  rfkill_alloc+0xac/0x330
[  198.948582][T10621]  wiphy_new_nm+0x1217/0x2160
[  198.948595][T10621]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[  198.948610][T10621]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[  198.948624][T10621]  ieee80211_alloc_hw_nm+0x1b7a/0x2260
[  198.948637][T10621]  ? __local_bh_enable_ip+0xa4/0x120
[  198.948651][T10621]  mac80211_hwsim_new_radio+0x1d4/0x54f0
[  198.948670][T10621]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  198.948698][T10621]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  198.948715][T10621]  hwsim_new_radio_nl+0xb51/0x12c0
[  198.948731][T10621]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  198.948758][T10621]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  198.948776][T10621]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  198.948793][T10621]  genl_family_rcv_msg_doit+0x206/0x2f0
[  198.948808][T10621]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  198.948822][T10621]  ? trace_cap_capable+0x18d/0x200
[  198.948836][T10621]  ? bpf_lsm_capable+0x9/0x10
[  198.948846][T10621]  ? security_capable+0x7e/0x260
[  198.948857][T10621]  ? ns_capable+0xd7/0x110
[  198.948868][T10621]  genl_rcv_msg+0x55c/0x800
[  198.948884][T10621]  ? __pfx_genl_rcv_msg+0x10/0x10
[  198.948898][T10621]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  198.948913][T10621]  ? __lock_acquire+0xaa4/0x1ba0
[  198.948928][T10621]  netlink_rcv_skb+0x16a/0x440
[  198.948941][T10621]  ? __pfx_genl_rcv_msg+0x10/0x10
[  198.948955][T10621]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  198.948972][T10621]  ? __pfx_down_read+0x10/0x10
[  198.948987][T10621]  ? netlink_deliver_tap+0x1ae/0xd30
[  198.949000][T10621]  genl_rcv+0x28/0x40
[  198.949012][T10621]  netlink_unicast+0x53a/0x7f0
[  198.949026][T10621]  ? __pfx_netlink_unicast+0x10/0x10
[  198.949038][T10621]  ? __phys_addr_symbol+0x30/0x80
[  198.949052][T10621]  ? __check_object_size+0x4c7/0x710
[  198.949068][T10621]  netlink_sendmsg+0x8da/0xd70
[  198.949082][T10621]  ? __pfx_netlink_sendmsg+0x10/0x10
[  198.949095][T10621]  ? __import_iovec+0x1c8/0x660
[  198.949109][T10621]  ____sys_sendmsg+0xa8d/0xc60
[  198.949120][T10621]  ? __pfx_____sys_sendmsg+0x10/0x10
[  198.949129][T10621]  ? get_compat_msghdr+0x11a/0x170
[  198.949144][T10621]  ___sys_sendmsg+0x134/0x1d0
[  198.949158][T10621]  ? __pfx____sys_sendmsg+0x10/0x10
[  198.949179][T10621]  ? rcu_watching_snap_stopped_since+0xb0/0x110
[  198.949193][T10621]  __sys_sendmsg+0x16d/0x220
[  198.949207][T10621]  ? __pfx___sys_sendmsg+0x10/0x10
[  198.949225][T10621]  ? rcu_is_watching+0x12/0xc0
[  198.949236][T10621]  __do_fast_syscall_32+0x73/0x120
[  198.949250][T10621]  do_fast_syscall_32+0x32/0x80
[  198.949263][T10621]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  198.949276][T10621] RIP: 0023:0xf7f25579
[  198.949284][T10621] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  198.949294][T10621] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  198.949304][T10621] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  198.949310][T10621] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  198.949315][T10621] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  198.949321][T10621] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  198.949327][T10621] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  198.949336][T10621]  </TASK>
[  198.949588][T10621] INFO: trying to register non-static key.
SYZFAIL: failed to recv rpc
[  199.057975][T10621] The code is fine but needs lockdep annotation, or maybe
[  199.060124][T10621] you didn't initialize this object before use?
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  199.062952][T10621] turning off the locking correctness validator.
[  199.065050][T10621] CPU: 1 UID: 0 PID: 10621 Comm: syz.1.1365 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  199.065065][T10621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  199.065071][T10621] Call Trace:
[  199.065075][T10621]  <TASK>
[  199.065079][T10621]  dump_stack_lvl+0x116/0x1f0
[  199.065096][T10621]  register_lock_class+0x4a3/0x4c0
[  199.065112][T10621]  __lock_acquire+0x99/0x1ba0
[  199.065125][T10621]  ? lockdep_hardirqs_on+0x7c/0x110
[  199.065138][T10621]  lock_acquire+0x179/0x350
[  199.065150][T10621]  ? cfg80211_dev_free+0x30/0x3d0
[  199.065166][T10621]  _raw_spin_lock_irqsave+0x3a/0x60
[  199.065177][T10621]  ? cfg80211_dev_free+0x30/0x3d0
[  199.065195][T10621]  cfg80211_dev_free+0x30/0x3d0
[  199.065209][T10621]  ? __pfx_wiphy_dev_release+0x10/0x10
[  199.065224][T10621]  device_release+0xa1/0x240
[  199.065236][T10621]  kobject_put+0x1e4/0x5a0
[  199.065250][T10621]  put_device+0x1f/0x30
[  199.065259][T10621]  wiphy_new_nm+0x1c1f/0x2160
[  199.065272][T10621]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[  199.065287][T10621]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[  199.065300][T10621]  ieee80211_alloc_hw_nm+0x1b7a/0x2260
[  199.065313][T10621]  ? __local_bh_enable_ip+0xa4/0x120
[  199.065326][T10621]  mac80211_hwsim_new_radio+0x1d4/0x54f0
[  199.065343][T10621]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  199.065358][T10621]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  199.065374][T10621]  hwsim_new_radio_nl+0xb51/0x12c0
[  199.065389][T10621]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  199.065404][T10621]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  199.065421][T10621]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  199.065437][T10621]  genl_family_rcv_msg_doit+0x206/0x2f0
[  199.065452][T10621]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  199.065466][T10621]  ? trace_cap_capable+0x18d/0x200
[  199.065479][T10621]  ? bpf_lsm_capable+0x9/0x10
[  199.065489][T10621]  ? security_capable+0x7e/0x260
[  199.065499][T10621]  ? ns_capable+0xd7/0x110
[  199.065510][T10621]  genl_rcv_msg+0x55c/0x800
[  199.065525][T10621]  ? __pfx_genl_rcv_msg+0x10/0x10
[  199.065539][T10621]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  199.065553][T10621]  ? __lock_acquire+0xaa4/0x1ba0
[  199.065566][T10621]  netlink_rcv_skb+0x16a/0x440
[  199.065579][T10621]  ? __pfx_genl_rcv_msg+0x10/0x10
[  199.065593][T10621]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  199.065607][T10621]  ? __pfx_down_read+0x10/0x10
[  199.065621][T10621]  ? netlink_deliver_tap+0x1ae/0xd30
[  199.065632][T10621]  genl_rcv+0x28/0x40
[  199.065645][T10621]  netlink_unicast+0x53a/0x7f0
[  199.065658][T10621]  ? __pfx_netlink_unicast+0x10/0x10
[  199.065670][T10621]  ? __phys_addr_symbol+0x30/0x80
[  199.065683][T10621]  ? __check_object_size+0x4c7/0x710
[  199.065699][T10621]  netlink_sendmsg+0x8da/0xd70
[  199.065712][T10621]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.065725][T10621]  ? __import_iovec+0x1c8/0x660
[  199.065738][T10621]  ____sys_sendmsg+0xa8d/0xc60
[  199.065748][T10621]  ? __pfx_____sys_sendmsg+0x10/0x10
[  199.065757][T10621]  ? get_compat_msghdr+0x11a/0x170
[  199.065769][T10621]  ___sys_sendmsg+0x134/0x1d0
[  199.065782][T10621]  ? __pfx____sys_sendmsg+0x10/0x10
[  199.065799][T10621]  ? rcu_watching_snap_stopped_since+0xb0/0x110
[  199.065811][T10621]  __sys_sendmsg+0x16d/0x220
[  199.065824][T10621]  ? __pfx___sys_sendmsg+0x10/0x10
[  199.065839][T10621]  ? rcu_is_watching+0x12/0xc0
[  199.065848][T10621]  __do_fast_syscall_32+0x73/0x120
[  199.065862][T10621]  do_fast_syscall_32+0x32/0x80
[  199.065875][T10621]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  199.065887][T10621] RIP: 0023:0xf7f25579
[  199.065895][T10621] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  199.065905][T10621] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  199.065915][T10621] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  199.065921][T10621] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  199.065926][T10621] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  199.065932][T10621] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  199.065937][T10621] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  199.065945][T10621]  </TASK>
[  199.066313][T10621] ------------[ cut here ]------------
[  199.182125][T10621] WARNING: CPU: 1 PID: 10621 at net/wireless/core.c:1197 cfg80211_dev_free+0x2e7/0x3d0
[  199.184800][T10621] Modules linked in:
[  199.185881][T10621] CPU: 1 UID: 0 PID: 10621 Comm: syz.1.1365 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  199.189010][T10621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  199.191941][T10621] RIP: 0010:cfg80211_dev_free+0x2e7/0x3d0
[  199.193540][T10621] Code: 00 00 49 8b bd e0 08 00 00 e8 c5 21 66 f7 4c 89 ef 48 83 c4 10 5b 5d 41 5c 41 5d 41 5e 41 5f e9 af 21 66 f7 e8 ba 3f 0e f7 90 <0f> 0b 90 e9 6f fd ff ff 4c 89 ff e8 09 f0 70 f7 e9 aa fe ff ff 4c
[  199.198845][T10621] RSP: 0018:ffffc9000304f1a0 EFLAGS: 00010093
[  199.200531][T10621] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff819820dc
[  199.202716][T10621] RDX: ffff88802258c880 RSI: ffffffff8aacb5d6 RDI: ffffc9000304f110
[  199.204914][T10621] RBP: ffff888012ad86a8 R08: 0000000000000001 R09: fffff52000609e22
[  199.207096][T10621] R10: 0000000000000003 R11: ffff888012ad86d0 R12: ffff888012ad86b8
[  199.209325][T10621] R13: ffff888012ad8000 R14: ffff888025bb9d80 R15: 0000000000000000
[  199.211508][T10621] FS:  0000000000000000(0000) GS:ffff888097d5a000(0063) knlGS:00000000f5046b40
[  199.213969][T10621] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  199.215820][T10621] CR2: 00000000f50a4401 CR3: 0000000012a74000 CR4: 0000000000352ef0
[  199.218053][T10621] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  199.220233][T10621] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  199.222429][T10621] Call Trace:
[  199.223377][T10621]  <TASK>
[  199.224240][T10621]  ? __warn+0xea/0x3c0
[  199.225425][T10621]  ? cfg80211_dev_free+0x2e7/0x3d0
[  199.226856][T10621]  ? report_bug+0x3c3/0x580
[  199.228128][T10621]  ? cfg80211_dev_free+0x2e7/0x3d0
[  199.229607][T10621]  ? handle_bug+0x184/0x210
[  199.230880][T10621]  ? exc_invalid_op+0x17/0x50
[  199.232205][T10621]  ? asm_exc_invalid_op+0x1a/0x20
[  199.233621][T10621]  ? do_raw_spin_lock+0x12c/0x2b0
[  199.235039][T10621]  ? cfg80211_dev_free+0x2e6/0x3d0
[  199.236493][T10621]  ? cfg80211_dev_free+0x2e7/0x3d0
[  199.237938][T10621]  ? __pfx_wiphy_dev_release+0x10/0x10
[  199.239470][T10621]  device_release+0xa1/0x240
[  199.240781][T10621]  kobject_put+0x1e4/0x5a0
[  199.242040][T10621]  put_device+0x1f/0x30
[  199.243265][T10621]  wiphy_new_nm+0x1c1f/0x2160
[  199.244628][T10621]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[  199.246458][T10621]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[  199.248357][T10621]  ieee80211_alloc_hw_nm+0x1b7a/0x2260
[  199.249897][T10621]  ? __local_bh_enable_ip+0xa4/0x120
[  199.251383][T10621]  mac80211_hwsim_new_radio+0x1d4/0x54f0
[  199.252969][T10621]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  199.254658][T10621]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  199.256364][T10621]  hwsim_new_radio_nl+0xb51/0x12c0
[  199.257830][T10621]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  199.259384][T10621]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  199.261437][T10621]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  199.263488][T10621]  genl_family_rcv_msg_doit+0x206/0x2f0
[  199.265063][T10621]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  199.266771][T10621]  ? trace_cap_capable+0x18d/0x200
[  199.268206][T10621]  ? bpf_lsm_capable+0x9/0x10
[  199.269529][T10621]  ? security_capable+0x7e/0x260
[  199.270907][T10621]  ? ns_capable+0xd7/0x110
[  199.272150][T10621]  genl_rcv_msg+0x55c/0x800
[  199.273444][T10621]  ? __pfx_genl_rcv_msg+0x10/0x10
[  199.274866][T10621]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  199.276406][T10621]  ? __lock_acquire+0xaa4/0x1ba0
[  199.277810][T10621]  netlink_rcv_skb+0x16a/0x440
[  199.279145][T10621]  ? __pfx_genl_rcv_msg+0x10/0x10
[  199.280555][T10621]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  199.282029][T10621]  ? __pfx_down_read+0x10/0x10
[  199.283371][T10621]  ? netlink_deliver_tap+0x1ae/0xd30
[  199.284878][T10621]  genl_rcv+0x28/0x40
[  199.286007][T10621]  netlink_unicast+0x53a/0x7f0
[  199.287374][T10621]  ? __pfx_netlink_unicast+0x10/0x10
[  199.288898][T10621]  ? __phys_addr_symbol+0x30/0x80
[  199.290305][T10621]  ? __check_object_size+0x4c7/0x710
[  199.291774][T10621]  netlink_sendmsg+0x8da/0xd70
[  199.293117][T10621]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.294613][T10621]  ? __import_iovec+0x1c8/0x660
[  199.295978][T10621]  ____sys_sendmsg+0xa8d/0xc60
[  199.297346][T10621]  ? __pfx_____sys_sendmsg+0x10/0x10
[  199.298813][T10621]  ? get_compat_msghdr+0x11a/0x170
[  199.300258][T10621]  ___sys_sendmsg+0x134/0x1d0
[  199.301592][T10621]  ? __pfx____sys_sendmsg+0x10/0x10
[  199.303054][T10621]  ? rcu_watching_snap_stopped_since+0xb0/0x110
[  199.304830][T10621]  __sys_sendmsg+0x16d/0x220
[  199.306138][T10621]  ? __pfx___sys_sendmsg+0x10/0x10
[  199.307581][T10621]  ? rcu_is_watching+0x12/0xc0
[  199.308938][T10621]  __do_fast_syscall_32+0x73/0x120
[  199.310378][T10621]  do_fast_syscall_32+0x32/0x80
[  199.311752][T10621]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  199.313520][T10621] RIP: 0023:0xf7f25579
[  199.314712][T10621] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  199.320014][T10621] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  199.322342][T10621] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  199.324565][T10621] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  199.326753][T10621] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  199.328940][T10621] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  199.331130][T10621] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  199.333348][T10621]  </TASK>
[  199.334253][T10621] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  199.336278][T10621] CPU: 1 UID: 0 PID: 10621 Comm: syz.1.1365 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(full) 
[  199.339513][T10621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  199.342497][T10621] Call Trace:
[  199.343455][T10621]  <TASK>
[  199.344318][T10621]  dump_stack_lvl+0x3d/0x1f0
[  199.345630][T10621]  panic+0x71c/0x800
[  199.346741][T10621]  ? __pfx_panic+0x10/0x10
[  199.347993][T10621]  ? show_trace_log_lvl+0x29c/0x3c0
[  199.349458][T10621]  ? check_panic_on_warn+0x1f/0xb0
[  199.350891][T10621]  ? cfg80211_dev_free+0x2e7/0x3d0
[  199.352330][T10621]  check_panic_on_warn+0xab/0xb0
[  199.353740][T10621]  __warn+0xf6/0x3c0
[  199.354873][T10621]  ? cfg80211_dev_free+0x2e7/0x3d0
[  199.356307][T10621]  report_bug+0x3c3/0x580
[  199.357568][T10621]  ? cfg80211_dev_free+0x2e7/0x3d0
[  199.358999][T10621]  handle_bug+0x184/0x210
[  199.360214][T10621]  exc_invalid_op+0x17/0x50
[  199.361498][T10621]  asm_exc_invalid_op+0x1a/0x20
[  199.362856][T10621] RIP: 0010:cfg80211_dev_free+0x2e7/0x3d0
[  199.364489][T10621] Code: 00 00 49 8b bd e0 08 00 00 e8 c5 21 66 f7 4c 89 ef 48 83 c4 10 5b 5d 41 5c 41 5d 41 5e 41 5f e9 af 21 66 f7 e8 ba 3f 0e f7 90 <0f> 0b 90 e9 6f fd ff ff 4c 89 ff e8 09 f0 70 f7 e9 aa fe ff ff 4c
[  199.369609][T10621] RSP: 0018:ffffc9000304f1a0 EFLAGS: 00010093
[  199.371241][T10621] RAX: 0000000000000000 RBX: 0000000000000293 RCX: ffffffff819820dc
[  199.373435][T10621] RDX: ffff88802258c880 RSI: ffffffff8aacb5d6 RDI: ffffc9000304f110
[  199.375609][T10621] RBP: ffff888012ad86a8 R08: 0000000000000001 R09: fffff52000609e22
[  199.377818][T10621] R10: 0000000000000003 R11: ffff888012ad86d0 R12: ffff888012ad86b8
[  199.379984][T10621] R13: ffff888012ad8000 R14: ffff888025bb9d80 R15: 0000000000000000
[  199.382165][T10621]  ? do_raw_spin_lock+0x12c/0x2b0
[  199.383574][T10621]  ? cfg80211_dev_free+0x2e6/0x3d0
[  199.385038][T10621]  ? __pfx_wiphy_dev_release+0x10/0x10
[  199.386562][T10621]  device_release+0xa1/0x240
[  199.387866][T10621]  kobject_put+0x1e4/0x5a0
[  199.389133][T10621]  put_device+0x1f/0x30
[  199.390332][T10621]  wiphy_new_nm+0x1c1f/0x2160
[  199.391648][T10621]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[  199.393457][T10621]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[  199.395332][T10621]  ieee80211_alloc_hw_nm+0x1b7a/0x2260
[  199.396861][T10621]  ? __local_bh_enable_ip+0xa4/0x120
[  199.398350][T10621]  mac80211_hwsim_new_radio+0x1d4/0x54f0
[  199.399911][T10621]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  199.401567][T10621]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  199.403253][T10621]  hwsim_new_radio_nl+0xb51/0x12c0
[  199.404689][T10621]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  199.406226][T10621]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  199.408253][T10621]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  199.410301][T10621]  genl_family_rcv_msg_doit+0x206/0x2f0
[  199.411841][T10621]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  199.413544][T10621]  ? trace_cap_capable+0x18d/0x200
[  199.414983][T10621]  ? bpf_lsm_capable+0x9/0x10
[  199.416310][T10621]  ? security_capable+0x7e/0x260
[  199.417710][T10621]  ? ns_capable+0xd7/0x110
[  199.418962][T10621]  genl_rcv_msg+0x55c/0x800
[  199.420244][T10621]  ? __pfx_genl_rcv_msg+0x10/0x10
[  199.421663][T10621]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  199.423208][T10621]  ? __lock_acquire+0xaa4/0x1ba0
[  199.424636][T10621]  netlink_rcv_skb+0x16a/0x440
[  199.425981][T10621]  ? __pfx_genl_rcv_msg+0x10/0x10
[  199.427365][T10621]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  199.428835][T10621]  ? __pfx_down_read+0x10/0x10
[  199.430152][T10621]  ? netlink_deliver_tap+0x1ae/0xd30
[  199.431579][T10621]  genl_rcv+0x28/0x40
[  199.432679][T10621]  netlink_unicast+0x53a/0x7f0
[  199.433998][T10621]  ? __pfx_netlink_unicast+0x10/0x10
[  199.435448][T10621]  ? __phys_addr_symbol+0x30/0x80
[  199.436849][T10621]  ? __check_object_size+0x4c7/0x710
[  199.438332][T10621]  netlink_sendmsg+0x8da/0xd70
[  199.439636][T10621]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.441079][T10621]  ? __import_iovec+0x1c8/0x660
[  199.442408][T10621]  ____sys_sendmsg+0xa8d/0xc60
[  199.443729][T10621]  ? __pfx_____sys_sendmsg+0x10/0x10
[  199.445187][T10621]  ? get_compat_msghdr+0x11a/0x170
[  199.446576][T10621]  ___sys_sendmsg+0x134/0x1d0
[  199.447875][T10621]  ? __pfx____sys_sendmsg+0x10/0x10
[  199.449316][T10621]  ? rcu_watching_snap_stopped_since+0xb0/0x110
[  199.450974][T10621]  __sys_sendmsg+0x16d/0x220
[  199.452234][T10621]  ? __pfx___sys_sendmsg+0x10/0x10
[  199.453635][T10621]  ? rcu_is_watching+0x12/0xc0
[  199.454939][T10621]  __do_fast_syscall_32+0x73/0x120
[  199.456346][T10621]  do_fast_syscall_32+0x32/0x80
[  199.457682][T10621]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  199.459411][T10621] RIP: 0023:0xf7f25579
[  199.460532][T10621] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  199.465715][T10621] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  199.467953][T10621] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  199.470080][T10621] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  199.472184][T10621] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  199.474375][T10621] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  199.476526][T10621] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  199.478684][T10621]  </TASK>
[  199.480007][T10621] Kernel Offset: disabled
[  199.481209][T10621] Rebooting in 86400 seconds..

VM DIAGNOSIS:
06:26:43  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88802b53f640 RCX=ffffffff81aed259 RDX=ffff8880234ca440
RSI=ffffffff81aed233 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc90002f2f938
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffed10056a7ec9 R13=0000000000000001 R14=dffffc0000000000 R15=ffff88802b43b140
RIP=ffffffff81aed235 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097c5a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5025bac CR3=000000000df82000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e207c69355cd729f 452172bc776e74f9
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0931e1dc35b925a9 6a3aa01e1177f2af
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 06f37b632a2fbd46 219707f0fcbaa929
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fcbf7b06b7aeb04a d54ca372b4379d1c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ca14cb9f98e36dc9 898317bc19da55d1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 998328cd893a1251 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a15b0497856e29d c49f7266ad9d46b4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c6e3c3800000000 287e6d329d2b4bad
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5cacd4922cc0fecf e338197ac8a25696
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a30a98e93fdd4f1 e84dd03c7f28258e
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85413635 RDI=ffffffff9ab72ba0 RBP=ffffffff9ab72b60 RSP=ffffc9000304eb40
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6e64696420756f79
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9ab72b60 R15=ffffffff854135d0
RIP=ffffffff8541365f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097d5a000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50a4401 CR3=0000000012a74000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=1ffff920006c1f98 RBX=800000005da7c025 RCX=ffffffff816b1c13 RDX=ffff8880253c4880
RSI=ffffffff816b1c1d RDI=ffffc9000360fcc0 RBP=0000000000000000 RSP=ffffc9000360f828
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=00000000ffffffff
R12=0000000000000000 R13=ffffc9000360f998 R14=dffffc0000000000 R15=ffff88804a4c5c98
RIP=ffffffff820454ce RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097e5a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f16e40 CR3=000000000df82000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73acff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000001e6eec RBX=0000000000000003 RCX=ffffffff8b5b82f9 RDX=ffffed10056e65be
RSI=ffffffff8bd35720 RDI=ffffffff819161d1 RBP=ffffed1003ad5000 RSP=ffffc9000048fe00
R8 =0000000000000000 R9 =ffffed10056e65bd R10=ffff88802b732deb R11=0000000000000001
R12=0000000000000003 R13=ffff88801d6a8000 R14=ffffffff90629210 R15=0000000000000000
RIP=ffffffff8b5b96ef RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097f5a000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080001ac0 CR3=0000000012a74000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000