last executing test programs:

44m1.477763955s ago: executing program 0 (id=6):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x3, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
timer_settime(0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000680)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@metacopy_on}]})

44m0.133445798s ago: executing program 0 (id=7):
syz_open_procfs(0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
flistxattr(r2, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x1a, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44020}, 0x4af584f73556a3c8)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)

43m59.83720602s ago: executing program 4 (id=5):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0, 0x0, 0x4}, 0x18)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socket(0x2a, 0x80000, 0xb)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x15)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0x208e24b)

43m56.628804423s ago: executing program 0 (id=9):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = creat(&(0x7f0000000140)='./bus\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
r3 = getpid()
pipe2(0x0, 0x0)
r4 = syz_pidfd_open(r3, 0x0)
setns(r4, 0x24020000)
umount2(&(0x7f00000001c0)='.\x00', 0x9)
io_setup(0x1ff, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x2600, 0xc8, 0x8, 0x1, 0x0, r1, 0x0}])
getpeername$l2tp6(r1, &(0x7f0000000040), &(0x7f0000000080)=0x20)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0xa, "02810040"}]}}, 0x0}, 0x0)
r5 = syz_usb_connect(0x2, 0x0, 0x0, 0x0)
syz_usb_control_io$printer(r5, 0x0, &(0x7f0000000340)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r5, &(0x7f0000000380)={0x14, 0x0, &(0x7f0000000100)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x2001}}}, &(0x7f00000005c0)={0x34, &(0x7f00000003c0)={0x40, 0x0, 0x10, "69d55e3d53019a2d2914a43dee481a41"}, 0x0, &(0x7f0000000440)={0x0, 0x8, 0x1, 0xaa}, 0x0, &(0x7f0000000500)={0x20, 0x1, 0x1, 0xfc}, &(0x7f0000000580)={0x20, 0x0, 0x1, 0x7f}})
getsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x3f, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

43m53.871841163s ago: executing program 4 (id=12):
socket$kcm(0x2, 0x3, 0x2)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x35c, 0x0)
r0 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0x312, 0x400, 0x200001, 0x2aa}, &(0x7f00000006c0)=<r1=>0x0, &(0x7f0000000240))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
r2 = getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$tipc(0x1e, 0x2, 0x0)
getsockopt$TIPC_NODE_RECVQ_DEPTH(r5, 0x10f, 0x83, 0x0, &(0x7f0000000480))
io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)

43m53.670849218s ago: executing program 0 (id=13):
ioctl$KVM_SET_DEVICE_ATTR_vm(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000100)=@attr_other={0x0, 0x8000, 0x2d85, 0x0})
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = dup(r0)
r2 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r2, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x88)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r1, 0x3554000)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x5e21, 0x100, @mcast1, 0x1000}, 0x1c)
socket$caif_stream(0x25, 0x1, 0x5)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r4, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10)

43m48.659108412s ago: executing program 0 (id=19):
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
syz_open_dev$mouse(0x0, 0x714, 0x2003)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, 0x0, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000180)='htcp', 0x4)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r2, &(0x7f0000000580)="17", 0xfdef, 0x10008095, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
syz_usb_connect$cdc_ncm(0x6, 0x76, 0x0, 0x0)

43m47.01606348s ago: executing program 4 (id=20):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet6(0xa, 0x2, 0x102)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000940)=ANY=[], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x200, {0x0, 0x0, 0x0, r7, {0xfff2, 0x9}, {0x10}, {0x9, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r8, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
setsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f0000000bc0)={{{@in=@loopback, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x2, 0x0, 0x8, 0x8, 0x4}, {0x4}}, {{@in=@local, 0x80, 0x32}, 0x0, @in6=@empty, 0x0, 0x0, 0x0, 0x8}}, 0xe8)

43m41.563508699s ago: executing program 0 (id=24):
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, 0x0, 0x2000000)
syz_genetlink_get_family_id$netlbl_calipso(0x0, 0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, 0x0)
ioctl$int_out(0xffffffffffffffff, 0x5460, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1, 0x5, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r1, 0x89e3, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x1802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x66, &(0x7f0000000040)=0xffffffffffffffde)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
connect$packet(r3, &(0x7f0000000200)={0x1f, 0x18, 0x0, 0x1, 0x4, 0x6, @remote}, 0x14)
shutdown(r3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x4000004}, [@call={0x85, 0x0, 0x0, 0x2a}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

43m41.27642726s ago: executing program 4 (id=26):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000d00000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000002c80)={0xa, 0x14e24}, 0x1c)
connect$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0)

43m38.734629896s ago: executing program 4 (id=29):
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000280)={0xf0f023})
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = creat(&(0x7f0000000580)='./file1\x00', 0x0)
r4 = fanotify_init(0xf00, 0x1)
fanotify_mark(r4, 0x105, 0x40009975, r3, 0x0)
fallocate(r2, 0x0, 0x1000000, 0x3)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0)

43m26.186403663s ago: executing program 32 (id=24):
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, 0x0, 0x2000000)
syz_genetlink_get_family_id$netlbl_calipso(0x0, 0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, 0x0)
ioctl$int_out(0xffffffffffffffff, 0x5460, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1, 0x5, 0x1, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r1, 0x89e3, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x1802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x66, &(0x7f0000000040)=0xffffffffffffffde)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
connect$packet(r3, &(0x7f0000000200)={0x1f, 0x18, 0x0, 0x1, 0x4, 0x6, @remote}, 0x14)
shutdown(r3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x4000004}, [@call={0x85, 0x0, 0x0, 0x2a}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

43m22.092233053s ago: executing program 33 (id=29):
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000280)={0xf0f023})
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = creat(&(0x7f0000000580)='./file1\x00', 0x0)
r4 = fanotify_init(0xf00, 0x1)
fanotify_mark(r4, 0x105, 0x40009975, r3, 0x0)
fallocate(r2, 0x0, 0x1000000, 0x3)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0)

42m55.56378101s ago: executing program 3 (id=71):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x801, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x54, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x31}, @NFTA_SET_DATA_TYPE={0x8}]}, @NFT_MSG_NEWSETELEM={0x44, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x5}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_DATA={0x8, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x4}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xe0}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000005500e50200"], 0x38}}, 0x0)
r1 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2037)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r3, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x7, {0x0, 0x1b}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
close(r3)
flock(r5, 0x6)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r6, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_LOG_STATUS(r2, 0x5646, 0x0)
prctl$PR_SCHED_CORE(0x26, 0x1, 0x0, 0x1, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
preadv2(r7, &(0x7f0000000340)=[{&(0x7f0000000380)=""/258, 0x102}], 0x1, 0x8, 0x0, 0x31)
signalfd4(r1, &(0x7f0000000000)={[0x100000000]}, 0x8, 0x80000)

42m54.293051483s ago: executing program 3 (id=73):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40186f40, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x80)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x80, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000440)='./bus\x00')
r3 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x1000000000003, 0x3, 0x8000000000007, 0xaa, 0x3, 0x80001, {0x0, 0x180, 0x20fe, 0x0, 0x87, 0xd615, 0x9, 0x9, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r3, r3, &(0x7f0000000080), 0x7f03)

42m53.000325126s ago: executing program 3 (id=74):
sched_setscheduler(0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000002c80)={0xa, 0x14e24}, 0x1c)
connect$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0x0)

42m50.848039238s ago: executing program 3 (id=77):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e27}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000100)={0x9, 0x504, 0x1, 0x7a5, 0x2}, 0x14)
fsmount(r0, 0x0, 0x0)
getpid()
r6 = socket$inet(0x2, 0x3, 0x6)
ioctl$sock_inet_SIOCSARP(r6, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @broadcast}, {0x1, @local}, 0x4a, {0x2, 0x103, @multicast2}, 'veth1_to_bridge\x00'})
r7 = socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000080)="290000001e00190f00003fffffffda060200000000e80001dd0008040d000800250000000005", 0x26}], 0x1)

42m48.048305298s ago: executing program 3 (id=80):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000ac0), r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40005}, 0x8000)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_BT_SECURITY(r5, 0x112, 0x4, 0x0, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000002140)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r6, &(0x7f00000093c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r6, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20, 0x0, 0x0, {0x0, 0xe}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x40)
ioctl$NBD_SET_SIZE(r7, 0xc0046686, 0xfffffffffffff001)

42m46.46771262s ago: executing program 3 (id=81):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x884}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_QOS_MAP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x6c, 0x0, 0xa0c, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7, 0x45}}}}, [@NL80211_ATTR_QOS_MAP={0x10, 0xc7, {[{0x0, 0x3}, {0x8, 0x6}], "c00b4f7168984363"}}, @NL80211_ATTR_QOS_MAP={0x26, 0xc7, {[{0x3, 0x4}, {0xd7, 0x2}, {0x8, 0x3}, {0x0, 0x5}, {0x1, 0x6}, {0x4, 0x1}, {0xac, 0x7}, {0xd}, {0x3, 0x2}, {0x6f, 0xff}, {0x8, 0x4}, {0xe}, {0x0, 0x5}], "20d37f2bd97c061c"}}, @NL80211_ATTR_QOS_MAP={0xc, 0xc7, {[], "2840c26f1d3ca129"}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40}, 0x4)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_MULTI_BOOLOPT={0xc, 0x2e, {0x3, 0x3}}]}}}]}, 0x40}}, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4001, 0xb, @loopback, 0x9}, 0x1c)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r4, 0xfffffffc)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r6, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)

42m30.372040892s ago: executing program 34 (id=81):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x884}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_QOS_MAP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x6c, 0x0, 0xa0c, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7, 0x45}}}}, [@NL80211_ATTR_QOS_MAP={0x10, 0xc7, {[{0x0, 0x3}, {0x8, 0x6}], "c00b4f7168984363"}}, @NL80211_ATTR_QOS_MAP={0x26, 0xc7, {[{0x3, 0x4}, {0xd7, 0x2}, {0x8, 0x3}, {0x0, 0x5}, {0x1, 0x6}, {0x4, 0x1}, {0xac, 0x7}, {0xd}, {0x3, 0x2}, {0x6f, 0xff}, {0x8, 0x4}, {0xe}, {0x0, 0x5}], "20d37f2bd97c061c"}}, @NL80211_ATTR_QOS_MAP={0xc, 0xc7, {[], "2840c26f1d3ca129"}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40}, 0x4)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_MULTI_BOOLOPT={0xc, 0x2e, {0x3, 0x3}}]}}}]}, 0x40}}, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4001, 0xb, @loopback, 0x9}, 0x1c)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r4, 0xfffffffc)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r6, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)

39m47.28530165s ago: executing program 7 (id=206):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f00000001c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$x25(r4, &(0x7f00000004c0)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}}, 0x12)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r7)
r8 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r8, 0x0)
r9 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r9, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
accept(r7, 0x0, 0x0)
recvfrom(r9, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='cubic', 0x4)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x503}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x80}, @IFLA_BR_MAX_AGE={0x8, 0x3, 0xa}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

39m43.923314722s ago: executing program 7 (id=209):
clock_settime(0x700, 0x0)

39m43.625250796s ago: executing program 7 (id=210):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@call={0x85, 0x0, 0x0, 0x11}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_emit_ethernet(0x4a, &(0x7f00000004c0)={@local, @random="0020e0ffff07", @void, {@ipv4={0x800, @tcp={{0xa, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @dev, @dev, {[@ssrr={0x89, 0x7, 0x6f, [@broadcast]}, @timestamp={0x44, 0x4, 0xf1, 0x3}, @cipso={0x86, 0x6}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f0000000040)=0x39cb, 0x4)
shutdown(r2, 0x1)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
r5 = socket$kcm(0x1e, 0x5, 0x0)
sendmsg$kcm(r5, &(0x7f0000000580)={&(0x7f0000000100)=@tipc=@id, 0x80, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x220}, 0x0)
recvmsg$kcm(r5, &(0x7f0000001740)={0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f00000005c0)=""/4096, 0x1000}], 0x1}, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000003c0)=0x11)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x2)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x2})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x20004041, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x618b37b523276f6c}, 0x20000000)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_ERRQUEUE(r6, 0x6b, 0x3, 0x0, &(0x7f0000000040))

39m39.439054826s ago: executing program 7 (id=214):
openat$qrtrtun(0xffffffffffffff9c, 0x0, 0x8000)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1401, 0x0)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000000c0)="5bffd08307d80c79b1cb7b5f0c5b4d719c69c8513f748fbe425a7bc388c9019bef114779f7a10dc03a883d6e16a0a704f74297f381ff1db75098a9b38bb67206a7ff22e6ca46dc760bdad8a79d5951988c55a368dd1132ba7f129c2e65441eaa27492c069488df0881f123ca01ae873f5b36eb0fddb8f07420f5484d81cabde167c87ffbab6a94b24b5537bb1a08d56469f516fd4b7c66e2ac50d5ff4e52c628d0a89e53d0e78582a5ab2a2c714f66", 0xfe7c}], 0x1)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000200), 0x105080, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x63)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i'])
read$FUSE(0xffffffffffffffff, &(0x7f000000a400)={0x2020, 0x0, <r5=>0x0}, 0x2020)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008400)="92756f43b31ffe542788ef586b7c5a344424e3acac2590be6bbe37adface4a8f2e534ffe76a83a93f0b3680a72fddfde83f96d01982384e8d689219cb9669b14dbaa1b799f82ea1fc926126a4163618e16d4f94143a4e0f27c44fcef3920a0b3805ed4e78098d8689cc7791bd86648070718d238664332948d87866c8d2590fc0f017f9853abd9ed60b99f1aa6ae2dbd24ab6dbcebdb055246815ace147cc50fa3b2861148fcda374d5b203e51d72c45e4dde3e9ee9a47ffe458baf7bb49035135a8194aa1f0a83fa2abed56398f90daff679634619453f533f22583a6e0a4dc09e9de46684d5e0136e229510f3702cf3a4cd0065d3e5d3c419e38a80b070ca55010e082a9c510fd18cc0b26bb5e8e459e747befbc5c6b60ace80bf41417b7b78cf57e5b3984f0cdddc615c5e0000454d3f4a196fb6d18aa629cf0b0245f95ba958d86dc175616f8cd3ac473057dc3a5ff7107973326350107f4468e7ecd48d689b82c12d22ae5f1858302a1b4cfde8fd347a99ddcde40d1c49d9b5099fbccf09e782212be4b2ce36a2bc3c9ee794abffe72a5501e6c4f3f7f68b74761ffd6620609224a3bf11f655dadb5c8a5813b02fb46830e9ac6825f5d0e89910352eb3a58c0dd82d094f94dd2c85666f684a8f437bbd0e66b9f4d366117b67a054d212c4fbc287848cb0578391335d5d616b14d99a2e3df8e8a152d5de99bcefcaab5bb5cc71f3ddd66b379c104648e190e0b28a180d3aecc5423575d4ba7dbf31215c717da7b87dd454b6efcd36c91aaa631127f5bd88723d221752f102bc0c7ac6c5c7a1ad6747af40d01b6d39eab7b0e1292b44683c586386ad00acf60fb8f9bac551a6eb5bab7317b5d89f64db10bd9018dfa6d65d93862e851afbc30fd70fe5f0de322462045177231852ca80e4e78da4fea0c79ba354333026c8bc77d308a8d256a19ec45d2088c196691d3f9aac28ded36004a65ee1ce49ba9599ceee84534bb61d02d04a6732f1e27d72962f74b59f3522bf844c5022986d55934e48b8681b7f5b7532391448caeef00315d28320a46d8bd7813544e1e4bf994e14a519c2654ff20b42bdb69c262897e28eca528f0999840b00ed8256597d27cfc20d71d5f40d0bbca759f7594c6034aa1e16a84ed152fad0fdc1c303a7f61225712714f823afc5ea241d482d3585759623af8c97ca6a84a2033b3d7314ea0ef7ba9b288b362a294c92c8b9736829c16f61c5a1ee04aca965d71162292274595ea62c9c2918e8279c99f5d2830c617c58211fd7452330184b9428d5ec1d5cd75ddcc6de3326fdc70e891104b3b013c30ffccfaf3308d9671b01f6b080a930dac2052c6f39817a662121d90d40d6a1facfb50bec7d408030b6d0ae3e744f3bcc327c35dc43cf86b743db78ff2e593b19923235ed6467f299b08718fe1840c16a748935dff941150fb08b30573b37bf9af5c86cc8d9e229a832e4ef25ec91f71120f2b3e9062485976c280a2d172386029e2f2a4801197fca0a13514edacf5ddbac5a62e8bb13dd1572657a821a8739297f72e29239d1cdddf3e30cbe9af3141f2275ee4ae85d86ec888fe9a6751f252057e95b8beb055e276439581afee93cd44f1e92f70e5f725451d3ab662918ffbb1269509fbd511e95a00ec717f9d60d643864abd6ad1cc4dd7f933379a6078a86c2158db8076e7b660366fca7b1c46d09d2c8e67a6494bfb4c2c6750e76593895b5e2b2bc78093840c3c4a807826bc2750a96b4e1dd5b82b492bb2215518c92064d1763c37132604e52e73fac3f4511f791753aeecfbb19816e0da7a1bfbea9eeaa0f256eaedcb119a61f7d0ea0f5cd4969d45cb014800f2c888d5c2217cf0f69a7507779883b57352bb8883cc584891950d6e792537074f4fc4337aa19b9bf60e18edd939d289fb4a6b7aa6c66da20774e249ca4f779d3c910b1a9a8e4c38af6adecc87d5481d181fd66023ffff246f4e2556b218fe8110acebe20b1675f1de6f265b6d1d8514a53522396bf0e2f2b153c498e48b36d16f8b9bd56f45d7f5b9397d7f1339117a176d0bad0b68e800682416d3e18fe2197c7f8dc20600feb95cc6ba86ad47f113e159bd4389e30eab2874bd27eebc56020c4dab9973b13f3e82aa62a7e0a151d73de48cb811e32be63ffd303f5a6ea6f097ed763fbf36c430821e451146de79922348354ce285af0997bf3c66e6ef02942e24b8f1ccdd542f09cfe65c0da0094c0b5fd26bbc061538b41e5ed2cbb390ee29b10a4b7a696009e1b5b86c44c0a561a257c15415feaeb1433ea275ed6e4b228503fe71ee5942665164faaed6697112206be0fe7863aebd4bbe951d5dea1da294dba0793196385f4d5141c9d6c4b0fa22b2e200cfb70b52aca31655e71e5a576ccb8ccb5b1364748aa981edbb81a813b1aebc67be1f7619e7e197622d981280429f6ca5145c5b3b05e6bace9191e5c58fbf140f71f594cbfd4db0e9f6923f1758ff9474a61a720a5d4f09c622c3ce3f5d0d3a1d191111168108f41f12b16e9eaf3617c353715cd35260560cbfd0555d51ce5c40bbdb7c95ceaeadadb8902974de50b0863348183864f5ea682e678286a06a6f396af29a7c7fb33a3579e25835963612f3c0d4cf369d85959a0adeda94d35824050e6fba7f83f90867583f713d7783323c7010e94c9be331f860db395dbde6face5bfdb616fcefa9c6b01f6963daa840a31ff554a458c0c50cb5e09f91f54f63234589decaf45bbfbaef0dcbff4ae6e65ca26a530261c491ef8eb9a855a1d7463391c9b66be96cf24c3c321ee5a5bdc857f60b582683c6ae1e3775b62a9f19ff8fa51380ca8a2a3c6de79012f5727ba12025e7e6723a23a81e067ca6e54c7b38ff64880d235d21e7ee5258953dcbf9e2a962f006ca4ffe870859242c850cbae4222b3b72c4f86934379ba2ead1dcde906241b994d95c88355af5a9a30ace9c933a6942f341ad221dd825846a8fd44c03e2eaa9311c26e15a1bd7cbba961a22ef23d7ebba0e34cec5ef09b1ce72814a97e33bd29f3d9ec80a4f45d1d29486accf15c11f1a800bd84918e7626f678275d7c7acb02cc0e6e34bb766ba6b75c3ad14fca9352e09c3b69390c045cfc842ff9ade8ca693c07fadc7047a946e6e570c3afc5b501c964103397f5ddadc2d59a048348dd42f07cfe31bc9b5ae453f5086bb41bba4c8a3e518e30b0855184b053f923025dd72ce1bcbf41231978b34a8547c71d7313992165078903c61d312b0d9469413c9fd97ccdf0ea270fb6c47ec8861a1c8d909eeace761b5a06ba46e25785ff87f867777abb237c6c980687991f1ed0157d58492260c712cec34c1fc0962103955db4d5090b6e8409cf3c3c79d0e691cf4fbc0b2251a016dcd456969cd32e5429533bf0d6f8bda84c05f0e2040de8b53bfb8676eec4b76c3df6f46b1e43732035dda577e75f640777f6ae90fd2f1af42ba462dac732019c599bfef01acd6a0d4d1796bcb8f58519d6f9ad9a3206704a94d472516b988141f44ecd2e6f28a49aa0c449db87972fc995a97379914546ea43143ea2cf779a9cbe81f111fe89129db3610492164ab2598eca7e60d9a6963d8ba03a86729db86e420fd96d61b8fb11edc2b339b57a740074ae5b775eaf60cd85dc934e604bf2b4bd58ee01205b4df57ac20ff8db45a05982b579643882407050c005102a2e71f1e56dc76dbf5331112e83e48bfb5cf2a78a893190d78426175c162ffaa7278a43b9932318fc17fb8cb0dfac610b1ad235b91f9cb7623b155117e07f7b876a3c37627aa31eafed141cc0c5491c4f621a66b6d837a144d78719c46511c04a093cf65fce9fabe5bd6d499eceb63538ece3cf19053550a239bf978c08c879f9954485a4e3e0d5bedb84b407ced85c4dfc4d75af116815992c29f0bc927c4a990c38ae4fcc9feb90fec1b1b555e04d010423010855394d5ccfc8ed21164190cd8f83be5debb70290c3547f07e4dc42814f1e001798e6ceee2558b0c6ff8c1759f90269ee226131116332b99ac8dd104c92088e1f91ace3198c0f59bfb75c4e4a697660eed43a29c831a552de37fce6dce96fa51b6e2111f3071a4e94422d15e102e5f67da7ca6cae6bed7743ebffacb8a811a143605791d17232181a517e872f71262c3c73668f0ef83aad498f67fa26bae698cf78f24c2dbecd399a190e6b8d0684e929f2e8083765eb2c67793a1adbb89d36b58bfb197cdc5f3c894ac9d886e8f3b0936fabd233c09de8fab8099f72a74d908ba5c5e4d39790b0bf9e45b710f5587b7c937c76690c5c5fce621a53a9fd03b0a4ee6d8d1abbe2ed561820a77f12a08cad0755540ab6dd1604b7c30a8652995ab80b85e919011de9438a4637eb0291124ed4b745e782cff98510cb03be79c2a81351abf276584d75cdd96b9c97e73eb71000b3ab7c3c19c2cab4497298fcb3052b5d4503d05e7f310318be6f848547b1a4f4db82caee190801478be28065036aa4d91f290c1f396343e73a5fe8bb5ccf0a317177ed1f77acda1a4a49dccfcab8d1b5d79f015f788b6d5e9f8228a8bcdc0696e6b19f5edffbcd7e9509c87fbe1f726b93bf8c6d8d37428763e142560c46c9e894f7317859000c25abc4f3691ebcd020171e0d4911b5d97a238109aedeb00b2eb475c1e7b45175f8aa85193b5c0f43b434c15de01610c4d022646cd6e3637f349a434a77f571ac1c5d698452d1b991e267f78dca5e592ecd31ccafcad84e4e98d134b4adc525b81bd6843428883023a6ea407201738c8bf16b541ff7280274a34d4cf14819f2dbae167ca0cae8471c495e006b45194ad91c4516f21cbb10e0d26fd5d734cd7725df5b3fbe92955f4a9bb3b9b813aeeff79d6ed5db92def19d060a208c3ec8c42c110786f1e1496c50a7249b03fc792764366894a35320b99d0bef9fd0b6a246c36a357c6b985dc83a37a8d9b8b9ad643dea94860cbe763bb73cc8422b69d4d12332242c8954075fb7117a6679638073617abcdb4619855b2036af160647f66b3531645a3bf047ae290d6ae2249f114e7a8464278bae1486022bcc7c37390c8d9a0efb0e1cfa0da8ef7a5e072f99a47ecc75e4e442880375193db49bb82ba34901286ca473ed5b63e4048db4dc455e74b3fdd2e7898ca3f4c3a02d435cde6141eea645055123a7dcf0d22057f8d425701afc55859f5147954e719d58c7486b1e02ac16cb799b77632c66bb78e6e52e11017c1736424fa4d433f1e19b4c881d23f0b2a12d5fae3ae24339088088d9b496ad97bd9f6e20a8597d1452a0c72dcf43dbbda8f18166585c06d21fbffe5fe7b55f71c9b9f1b34a02bd05ca63c7c1b1bebbb9dd24fb10291b04c665d45154dd28b85d821ce7e613119128996785e1006a8dabc4899b10d2671107d5a0658ed363b9d4b39d02f8cc5e350fbf0a31048adecd1f9e2ca749bd86f195eb48e9b4605f050de03d642940d79184618f7f88a9a0a4683ad84d6134e395305bc1d4d9d17cc334b97653529d6682a87a5fac80a6d46d6e72fc22e58be7b8f8617b3372ef2622110ab1ec448717118b257acffe55d18c7855e9e8710ad977a6792b2315a189eb4468c68641e9b60c0dab7016ac1ad63cd8004b6eca8fc88b1e4263acc00499255c16b11487a0af858075f9c892dc8044c4146e5a5677c4a2cb24bde5e078985020d4ab1e4c87492e76b7e6f4bbd71d84bab1885c9702849e70cf728776b1a94c2a8fb8c7ca01b6111ef6f2032a290949bfe473fe215273b8b5b3ad540f187490f63077dccbca6f62f0a7a66717c596cdef412f2560b10685ede967b3ee68b8c951959aeb1d7564c3b9d806b2ce858381393a79916b78f7e90beadae30ffc0b2b614380f1c2cc551a44565209db3516be379ef566ab00c673fd8aaeeecdcf1168c1960e9a477b9e13757498a44ff089351d1f27abf9fd76816f924504647d1247715ca861ebe624172c322146d66eb2b247f8ecb3e1b5ddca89b287c57510cec40fcf89d802cf4368a861af320e01e34f7a6177d4bc549181b5e87ecdfe02f78c9a59a3bf91ebb6364023ec06410e7b4476ec4e3685bfa3bfe9ef9ecc12dcd899abe0f3c7f16b4686801c0c0a949aa26bed57df56f2bc54ef19af7fcbc7b0d691075f42a4a67acf980b568acb2342f42249f7c1ee3527c13182b096064ecd250887a942d26f637e1c4041b139659d2462a68680bb04387a3b399e396b9fe74de10356125fa47d0a20827370cbf36a79b6fffade91c439dd6cfff4bbe0dd3efefb61c491ee32f935d62307cba369ac8c20f6fe3d4857ce6d240ece5e4d149f0587155a8350fcc18efae2ff11cdbe15218a82499a1996df8b5462ee170b284321e76bbe5c3f4158387644d95f087c598e3d46fbe27f63fa784bda239512113424045a2c5dbc6bc3662ca730a86d13cf8f6fe2743224ca7b535caf6b4701a7dae9cfad3d7290104bbba15b6a064ae6e909a099f75fbe47c9e654d8e3b8dc0f3dbffe829e6c56f7a241e565136812a857f59ab565a9991c6b1d8abcc94c6b33bba314f6e5060e657e4647f969a551dd6c51dfca0ff5d9e4f401fedbc2c927eb1ed95ef25f4e5accba4999322ba1539499310dd5875433a22835cfd42fd77fd4680b7fe767d7aa5c33acde04a65bd3a663fcde4c80e9f2af498f13bf9abbaa1c1265edc691e94abdcc92270c05811cd2a8104eb18efbfec9e4ba9ae5cde211b9b93082ce034b6cd5fbe9cfbac4f7e2404ef159766124f73017cc3600f3c81cd78db25fc3459629eaf20dfdb062c7e502aa69412381d847a9d254d5befc451cda3606f0bc8ae62e0aee928f9ed0b21d705a8d31b899e16445ee064563d32f7b6bb5ad197023cf528d9b329ec67815c6ddf27d2a6ffa7328bb993407cde3d166159fd49fe469254b84c2916daea8df9d69bef019f1351b9bce193e30278835b82ea5f60dc0bdd7f7452b7a820ae7cd6dc29d7ac6a6c1b6411711a96338b1e769146b2a385d282bfaae61b041166efafab2d89a4567b9460cc22d752f8e9aacaaa0db7c84879f5359662d55df6570d4214740851c74574ced733807cbb54571110410892394c3dea07bd4154d0e5689d57c3360207dac951f96a358e9c466a5c5113f3a632e184f57f075edef4dcc9721b963beb95df09dedf848260cbc1ebfdc7408218eaba6d2c51928cd37c4c0c9f321fbb0994a56947cfd9643056db5dbea60a241f8f004c932bc8e645b2ec2eb9bc4e9e2f4156293234d05e70cb26b8a370b0206c756bda6defc11c5eb386640f535a4ffb714168defc6d82f40d8f5ba8768537ead5773c53bd779ca899a2dd31c9138569ff5107c2fb12b804375c3b3dc9b828bfd550328adf358f71e86a0c49fb119f5ef9e06c13855cbfc7d1a62ca2ea655ed912a6dc7bb8b18656e8923fc7a1702ab36947d79384d681c31923e98cf40209f776bc2b219a7ccd139e756a905aa351e6eaae90770c8a193f96cd5c66e4d77a357985556e14333716d80204a5c390e0d76f4081afe917f99ad8a0976b3342f51854b374b4baa9a7f22124d2b82749446e30d9795acb9c3c3a305a6d273ac528e8e9c95c37a78e765fdda55982c2961fbc85a14fc095a78b4654ee6dfc3298749a639ab9c8e155af3a77f8a409ce174532a492ef550a140f774d77d732b3b4ca5bc41fa4488ce5957ce219b032ae1f585273748d81b19edcf3e6cb9a93ec24e41c6b3c472f9baf3ca46cb8b9a91df18acebe7d83bd4473750c4f26806da2f95b9ea48b342460af729ab15e9f033eda67feec645f985d4b9489cf6ceec1b100d007bf46c74be53c7ea17296f9c5b5cbae736491213c93b513009ebdecfcd60d46d7b86c6e3b5e288f2ba5867c07936e7bd1b00de52191eb8630ff82ccafb27a59295164751811bf74eff1e5e2abdf3c93bc5dc9814be83b2562477935e2fa30db7ebb6ec380170cf10c1f98f8c5eb71c730c2b31b55a1dd1c12a64802ab95b63c529e0a96cec8f38680221d6089926d8309796c79994d63b67bfb62f66b4a502f30ed12be41e896e88bc45a160a526fbd5f002e677322f116ec5740d7563cd23ee853c008b84998e38fdf158556e28a532573956e7c00f91f08ca245c295a3d5e003a99ea727f61d12893b435d4c8f2f5cce00c6a3091e2a47f290c07168975c53d7529b71d10faf42d2bac9db8d53669cf59c709c25e9e40b5feaed4c37dde8b84c4961c00712326fb6aaa06e80d766b40b72480f3971def61d1d129676df2478e778d899ed317426ec33e496d1fdd2ec27128f8faee92828e13da72d6aee8330a7988ea1cc8b64ec4d8b20990864c16c52c4be6d00b304b87d97bffdd9c66a740b517223089d9f3f414abedc53c768dab9220b980e6c18d5f20ba8994cc8886d7bdee213442f456d79fce1b1eb48fbf600a666c8ade24d118e6328251cf7b57a6285c650e019850f392b1c29aec5c8fc489a3819d60d5de377d4c11b8ee5625b7c02c5d50d2af3397006f2e2a41a06f039229eef5878ed91f9f6be7e988924dbaeb8455f616275e8698d93fb536e2c839b203aa69bceceddbf9c53f8addba53d50ca0f7a4729a42ac6eb757f1b408ad4a0147546173e62f7621eb18a9e1681510cceb48e0a30ab7a1bf71d56742d5f034f2d725e7ea68a011dbb100fa6eefe4ee093873de366d34f4240ca027a25c5b979c9ac47dd1dcb6ed82c4aee09dcc23cf329a8644f89b5cf00e5683934b1837574e9b39b31b1009f276e15aa040959fdf100838ca3f5ab17e45036668d06044e3a13f3a0a6f68579e50d5b0164f900d7bcfcde78396cf30f0b1dff76dc397ab1a5a44b207eb1eaaf73b945c575029ae2dce20724991e6550155ded6a42672609f2439c5aab4882b2ffaf7da787b71d05d15516bd68c6f1a9d79b675395845f24ee853f877e72c14b6c6702f7b8775ca1bfabbbcf4019f7bccf07f1c211531dfc66a7a1df79e92a20dd1cbe1b22e1209e7e3ecb9d3c2450fc22a57bfe09bd735f61c361cdac2488ae0adc7885edc0712655daaf535e1de96ccbe7869d531d8bf3db512fbd17c772332a3f8cf1e052ee0202eb99a36a0f8d7219888acbb57090cdaf3b28e1e62e8fc2ec237bdf18592a7afe4d8390dcb5e7fcc31bf4f797e6f5710070902265cc2e8c459b7da1451046abd6c8c5b02c0be2d2f505a65376266563ac7b59ef3b4e2570a6cb0bd94d46ad861317c743ce1de12bfa2295a98cdded4414d87a1580b1e4675bbdf73a22cac4a1d8d456d089e0b60cbfd16158f073bd1dac481db49fa5d8801d0fb0844b4afec1bab4e61fa0f381fa667880a1cd8163953be7b591cc9dfd7f91902370b783ae8a0f3c7cbefa7d229a37c00f523529e159b11d2e240629b64af2d11404773e991207a722c320221ce23baed7cbe40a440c5680814b122cfba9092fe03478f85adcbdeacb76d6cbf2491eafae98327b278e267821a0e1cd06ef90cb0328e246c19d8c63b9332291a89bc9f989effc675c79a870ac024756c6f5a7e32babd69625d61487ae7399490b70dd0fade7d70ad9b0757300a2dde77abaff4f63a0303853589d44efa968e10d36561f04408ad0cc227fc6b2f904cead189a0fcca9b2e6cbde5498652e0b3bc9d8b7921474403718feb5cc750dc70f5a9b1a0ae2c642015b6a1a8ab0572182b4e39e0c869cbdc60c9465f5d564d18ba2f5b3bc3e05a458744077430c5ea031ee02dd8f0a65d7dd8d90dd9b8717f77d202239a5778719423fb2aec7ca86eb07c39de65a34b988d65377a7473e9145f16d79593e96903330bbf3a8024fc15519d9baa0fae2018786f4b1846fca355ff0fccf65cccad1896309a5ccf2056dd542c929850cc91cd655962360fe316557ab3fb378328f77a07d9da24447d3fa2020b382ed2e808ec9529a01273434c64b0b7c35a06a019e4ab51cdc9c0f266ab25b6984338a0ba910d1060283b636c5d7e8a3f969c1ee1c99b54bba7ff3679fbeecbb70349f076480a867cc4ee4cacaea39c80f642533599486d2ffb77b8c9109a9d25fa0b06e58eca764f7d56469eb9547036bbea9d5c3d35b4c1fbc3d39a372c2b7ad184965cad3819c8928f1588d00949949c0c4c93d30ac7f6665247c0108bd89dff3aafe780ac66febfacc8c6a3cc387d09da6de700487a80e2c8d56df94d7ebd3e1d9e06411a6c5f7eb6da41c6f52997b5ad47ba985261103fdf12eb4a2828b248f652ef00b6abccab2eb161b878b9dbc0aa911405b6f67adda83c16187748d7b524ffe6381f489f432d592e6171bd9ccb2cd52f977143f57fbf2ab0b823d449ae55f02440972334344cda01837b93afa4f46a2fdefe27e92764cf9596780846de2e3b1ea83e62ee43b1c05aee675e25363504addfaa68e7c53ed685413f5ba951f120d0a646e474872c81e5a887464c19f8460ae814ffff24cb51dd2dca28d597ab2ea60949f8dbbe67f263e722fdb51bce4e328a19f5ff1218e1f63b8da6d40dbd5490964499b2522ea323310634893ead661407966207a66ab13adfcf1a725ed14339c46011c0e0401f2386b47cd9f902fdf84bc85e74d3ae7cc544e4d65670a554a537712c6ee9f75191631d2a4c4da06fc38423b1d5b828d7201235b2974164f52aa16bee70ee509250752f4fdd6b9f8d021943df8320682a6f80ff0d67ab7a4ceea807bd5b3b7b6380b0c7f0caa67b0208ba71317f0355a3b755af0e2c007186389438615df80b7b25104a733fc90625b62682198733c0f1625dfaa08cf81e3df043094b7b5a098b3b36f803b5b0f10a057bf814ae3579932c0a5f208985bab3d817f975283b8838ae5cb709be72b58df7425e059fdbf4e0ee51b3da01fe0b44963c1196baee5ec5909ad80d9d1660f3edd90374952a0bf8b3bece2c2f944593f4de7de5e05ded096b8f4f05d65dfc2e806f78220d84b3db564fb12f4e5e8f5eab316591f004e9374cce8e787263bc3827affe6793c130b8621d3bbb2a86fd87f070ea21718281ee7aec4bb3bb71af4bf5721cecd139c4be8c9df4ec8dfb09a5cf1d86a25d39faa9f064a997c214f334e4410917fc3b4d67ada8d87a38c0f86b02bf653dddaeb5b75b300f8bcfd792858bef8ab23e063421939c59212964c9ed5dd56e215db58cef53d31a966bb8ce4ed56287fecb3a85ba435e0b41b20ba1164b9c9f2c49fa0f7b17a89e0ec47eefe992d63ee29c8c0a1ece2664fee8edadd43636a54c48519b4fcf55b0d9103602b92441a5f85cf8c5e406d0f5815f8f37309934bd78fbc2acf0a03b051b4528db4f7c09de7d0aabafca3736b8259c818ca338ca6754e0747717c2794d664a1cacc1e9c52764a308e6df73d975638630b74cce6c49b1bac16454e96852c4f9d8ed118e86d2f1c8dc33bccd4a07be128db5e80f5684ddcc1158e744411acde590f902f0987cfb750bb5bfeed53bff076868986b566d7701f48ddfcacbd325c8d930bcef26713bf60585d5c991e2a6cc33ccbc27f7ddfba18f998497c2eb378cc8f2cc07a1b4f141c5e0fb6f52e18242e505bcf6dd20e33a469d056a0b4fd5e72d0da9d0bcce1e2f9e9dc7d1c7b6cb0f3604287eca", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x90, 0x0, 0x0, {0x3, 0x1, 0x0, 0x0, 0xffffffff, 0x0, {0x6, 0x200000000, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x2, 0x0, 0x0, 0x101}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000440)={0x50, 0x0, r5, {0x7, 0x2b, 0x3ff7400, 0x12008010}}, 0x50)
r6 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x4842, 0x0)
writev(r6, &(0x7f0000000a40)=[{0x0}, {&(0x7f0000000e00)='t', 0x2fd200}, {0x0}, {&(0x7f0000001000)="d6", 0x20c00}], 0x21)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r8, 0x29, 0x16, &(0x7f0000fcb000)=0x80, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r9}, 0x10)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f00), r10)
sendmsg$IEEE802154_LLSEC_DEL_DEV(r10, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000f40)={0x2c, r11, 0x1, 0x70bd27, 0x25dfdbff, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x2c}}, 0x4)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r7, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="01000300000000000000000000000000000069bdfe12398fc41804526ea1f70e959a8cd7cc24d819838d306230755af14916b3183e72751c45ae450c9ffbe8e0b0756b06c3e9482c152333a85c0a8cebdac7f1bc7b7aab4c7977df0b043ecb1ff4763cf0a4455db9417664ed13bd7c8b538ec6d2f0f60571653a9cdba2def977039bbea4a614cd356180b93a279ff53b29d5ed8c23a6699edbb08fd46d83d27d9a001f5b2dc7e885cf0a69cea40f6a4b634a1ba37d2f8395a3953216f41b651f6cd14c336c45f9e33d35b4d046387204b2f16ca789c5d1ed2d93196ac592b2f3631216702d372cabb43d7a46a64dcae40c10085dc886", @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x431, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x7453c}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4f, 0x2, 0x0, 0x1, @void}}}, @IFLA_NET_NS_PID={0x8, 0x13, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004805}, 0xc080)

39m34.332901323s ago: executing program 7 (id=223):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095", @ANYRES64], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r0}, 0x18)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc), 0x80, 0x0, 0x0, 0x0, 0x0)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
write$cgroup_int(r1, &(0x7f0000000040)=0xfe8e, 0x12)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
munlockall()
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000002c0)=0x1)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r7}, 0x10)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000100)=0x2)

39m27.487145985s ago: executing program 7 (id=233):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@caif=@rfm={0x25, 0x5, "cdfaaf7254f4ef6249f068fcdd7e1cbd"}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000300)="27050200340f14000600002fb96dbcf706e10500000086ddffff1144ee162fd4b8bf4a31accbe1ba0777cfbf6ae77256da82f6184b8a34f9015cc99e57000010", 0xfdef}], 0x1}, 0x800)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYRES32=r0], 0x48)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000001400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000000d0a010300000000000000000a0000010900020073797a31000000000900010073797a31"], 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
recvmsg(r6, &(0x7f0000002240)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004}, 0x0)
socket$netlink(0x10, 0x3, 0x5)
socket(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYRESOCT=r4, @ANYRESDEC], 0x0, 0x4, 0x0, 0x0, 0xc2d00, 0x44, '\x00', 0x0, @fallback=0xe, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

39m12.933242442s ago: executing program 35 (id=233):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@caif=@rfm={0x25, 0x5, "cdfaaf7254f4ef6249f068fcdd7e1cbd"}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000300)="27050200340f14000600002fb96dbcf706e10500000086ddffff1144ee162fd4b8bf4a31accbe1ba0777cfbf6ae77256da82f6184b8a34f9015cc99e57000010", 0xfdef}], 0x1}, 0x800)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYRES32=r0], 0x48)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000001400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000000d0a010300000000000000000a0000010900020073797a31000000000900010073797a31"], 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
recvmsg(r6, &(0x7f0000002240)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004}, 0x0)
socket$netlink(0x10, 0x3, 0x5)
socket(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYRESOCT=r4, @ANYRESDEC], 0x0, 0x4, 0x0, 0x0, 0xc2d00, 0x44, '\x00', 0x0, @fallback=0xe, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

21m30.350982536s ago: executing program 1 (id=7231):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan1\x00', <r2=>0x0})
r3 = syz_open_procfs$namespace(0x0, &(0x7f00000002c0)='ns/net\x00')
unshare(0x22020600)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x24, r1, 0xd66771a5e8224ded, 0x0, 0x0, {{}, {@void, @void, @void}}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r3}]}, 0x24}}, 0x0)

21m30.237782574s ago: executing program 1 (id=7234):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
fcntl$setlease(r1, 0x400, 0x2)

21m30.033497002s ago: executing program 1 (id=7238):
r0 = epoll_create1(0x0)
r1 = creat(&(0x7f00000001c0)='./bus\x00', 0x4e)
close(r1)
r2 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])

21m29.187663482s ago: executing program 1 (id=7258):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000003c40)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000240)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x100)

21m28.985516194s ago: executing program 1 (id=7264):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0xf1c38fa000000000}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0xc4, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0xb0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000, 0x0, 0x4}, 0x3, r3}}]}, {0x4, 0xa}, {0xc}, {0xffac, 0x8, {0x0, 0x2}}}}, @m_mpls={0x5c, 0x2, 0x0, 0x0, {{0x9}, {0x30}, {0x4}, {0xc}, {0xc}}}]}]}, 0xc4}}, 0x0)

21m28.190651939s ago: executing program 1 (id=7276):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x1, {0x0, 0x0, 0x0, 0x0, 0x4008, 0x40000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

21m27.873693841s ago: executing program 36 (id=7276):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x1, {0x0, 0x0, 0x0, 0x0, 0x4008, 0x40000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1m16.573834114s ago: executing program 9 (id=13867):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ftruncate(0xffffffffffffffff, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x578410eb)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
pread64(r3, &(0x7f0000002240)=""/237, 0xed, 0x4eb)

1m15.100316154s ago: executing program 9 (id=13871):
r0 = socket$l2tp(0x2, 0x2, 0x73)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40000}, 0xc048)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a0b0400000000000000000200000038000480340001800b00010074617267657400002400028010000100434f4e4e5345434d41524b0005000300ef00000008000240000000000900010073797a30000000000900020073797a3200000000140005800800024000000000080001"], 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x4044194)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000280)=0x9d)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a20000000000a01040000000000000000010200020900010073797a30000000002c000000030a010200000000000000000100fffe0900010073797a3000300000000054000000060a010400000000000000000100000408000b40000000002c0004c97312fde480280001800e00014f864ea565646961746500000014000280080002800400028008000140000000110900010073797a3000000000140000001100010000000000000000000000000a00000000000000000000fa9554986ee772a55342e1563c670871350556b8e31d66afcf6f87134f2725816ab96f7161c5"], 0xc8}}, 0x0)

1m12.608778964s ago: executing program 9 (id=13876):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180900000020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xe, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x18)
r1 = io_uring_setup(0x456, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount$binder(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x28, &(0x7f0000000400)=ANY=[@ANYBLOB='max=00040000000000'])
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000100001d000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c000280080001400000000014000180090001006c617374000000000400028008000340", @ANYRES8=r2], 0xe4}}, 0x20000010)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x18, &(0x7f0000000000), 0x1)

1m9.221349511s ago: executing program 9 (id=13891):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000100000085000000ae00000085000000050000"], &(0x7f0000001180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r0, 0x0, 0x4}, 0x18)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000040)=ANY=[], 0x118)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x4, 0xa13ca8e5839881aa, 0x4})
socket$inet_udplite(0x2, 0x2, 0x88)
openat2(0xffffffffffffffff, 0x0, 0x0, 0x33)

1m8.936151294s ago: executing program 9 (id=13895):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x4, &(0x7f0000000680)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1f}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x0, 0x80}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xb, &(0x7f0000000080)=""/11, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb}, 0x24)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000004c0)={'bond0\x00', <r4=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c0000001000010025bd7000fabddf2500000000", @ANYRES32=r4, @ANYBLOB="138000002bae01001c00128009000100626f6e64000000000c0002800500110000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r3, {r1}}, './file0\x00'})
ioctl$VHOST_GET_VRING_ENDIAN(r5, 0x4008af14, &(0x7f00000000c0)={0x3, 0x8})
r6 = socket$inet(0x2, 0x2, 0x1)
bind$inet(r6, &(0x7f0000000000)={0x2, 0x6e24, @empty}, 0x10)

1m7.413965831s ago: executing program 9 (id=13902):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='contention_end\x00'}, 0x18)
r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ppoll(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0xc048aeca, &(0x7f0000000080))
r3 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB='\b@\x00N'])
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0x4, &(0x7f0000000000)={[{}]})
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000040)={<r4=>0xffffffffffffffff, 0x2, 0x8c1, 0x6})
ioctl$BLKRESETZONE(r4, 0x40101283, &(0x7f0000000080)={0x1, 0x8})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf3ffffff}}, &(0x7f0000000300)='GPL\x00', 0x9, 0xff6, &(0x7f0000001e00)=""/4086}, 0x94)
unshare(0x22020600)
socket(0x22, 0x0, 0x3a)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0), 0x0, 0x0, 0x0, 0x20006010}, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000004c0)='./cgroup/syz0\x00', 0x200002, 0x0)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
ioctl$IOMMU_TEST_OP_SET_TEMP_MEMORY_LIMIT(0xffffffffffffffff, 0x3ba0, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000500)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r7 = dup3(r6, r5, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
setsockopt$CAN_RAW_FD_FRAMES(r7, 0x65, 0x5, 0x0, 0x0)

52.946781482s ago: executing program 37 (id=13902):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='contention_end\x00'}, 0x18)
r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ppoll(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0xc048aeca, &(0x7f0000000080))
r3 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB='\b@\x00N'])
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0x4, &(0x7f0000000000)={[{}]})
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000040)={<r4=>0xffffffffffffffff, 0x2, 0x8c1, 0x6})
ioctl$BLKRESETZONE(r4, 0x40101283, &(0x7f0000000080)={0x1, 0x8})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf3ffffff}}, &(0x7f0000000300)='GPL\x00', 0x9, 0xff6, &(0x7f0000001e00)=""/4086}, 0x94)
unshare(0x22020600)
socket(0x22, 0x0, 0x3a)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0), 0x0, 0x0, 0x0, 0x20006010}, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000004c0)='./cgroup/syz0\x00', 0x200002, 0x0)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
ioctl$IOMMU_TEST_OP_SET_TEMP_MEMORY_LIMIT(0xffffffffffffffff, 0x3ba0, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000500)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r7 = dup3(r6, r5, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
setsockopt$CAN_RAW_FD_FRAMES(r7, 0x65, 0x5, 0x0, 0x0)

44.836537951s ago: executing program 2 (id=13996):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x18, &(0x7f0000000000)={[{@uuid_on}, {@volatile}]})
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_link_settings={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x4c, 0xf3, 0x8, [0x0, 0x0, 0x0, 0xc, 0x5, 0x0, 0x0, 0x40000002]}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r5=>0x0})
r6 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x2})
ioctl$UFFDIO_CONTINUE(r6, 0xc020aa07, &(0x7f0000000140)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}, 0x2})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000005500e90125bd70000000000007000000", @ANYRES32=r2, @ANYBLOB="20000100", @ANYRES32=r5, @ANYBLOB="0000fe0f0000000000f2ffffff0000000000000086dd"], 0x38}, 0x1, 0xffe}, 0x0)
r7 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, &(0x7f0000000040)={0x7fffffff, 0x0, 0x0, 0x5}, 0x10)
sendmsg$kcm(r7, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1c0000004a008102e00f80ecdb4cb9020a", 0x4a}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348092734fe1863473bbce6798a60e9", 0x1d}], 0x2, 0x0, 0x0, 0x10}, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x82)
syz_io_uring_setup(0x18d7, &(0x7f00000000c0)={0x0, 0x0, 0x400, 0x0, 0x17b}, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000340)={0x200000, 0x200000, 0x0, 0x0, 0x5989})
syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='4\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00008c5681732d15e9fd00000300"/36], 0x50)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x300})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r9 = userfaultfd(0x1)
ioctl$UFFDIO_API(r9, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x10})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x17, 0xf, &(0x7f0000000740)=ANY=[@ANYBLOB="180800000000000000000000ff01000018140000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014000000b703000000000000850000005a000000bca9000000000000350901000700000095000000e99b174697bd91152bb370000000003e9800000000000026080000020000008500000007000000b700000000"], &(0x7f0000000700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x6, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0xcc3}, [@initr0={0x18, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffb}]}, &(0x7f0000000080)='syzkaller\x00', 0x3, 0x72, &(0x7f0000000000)=""/114}, 0x94)

43.508547976s ago: executing program 2 (id=14004):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_GET_CLIENT(r1, 0xc0286405, &(0x7f0000001b80)={0x80000001, 0x401, {0xffffffffffffffff}, {0xee01}, 0x7fffffffffffffff, 0xfffffffffffffffa})

43.164317526s ago: executing program 2 (id=14009):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x205, 0x101301)
ioctl$USBDEVFS_GETDRIVER(r0, 0x41045508, 0x0) (fail_nth: 1)

42.649019524s ago: executing program 2 (id=14012):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
socket$kcm(0x10, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r0=>0x0)
prctl$PR_SET_PTRACER(0x59616d61, r0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000007940)=@newtaction={0x14, 0x30, 0x216822a75a8bdd29}, 0x14}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff038}, {0x6}]}, 0x10)
sched_setscheduler(0x0, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000040)='sys_exit\x00'}, 0x10)
syz_clone(0x205000, &(0x7f0000000500)="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", 0x1000, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000240)="f74f34587a607142df1b585b5713bdba55d0f265dd27f0f05540d1a507e8c7f2f43479e7c96b0a892cdc9b407be824f83a2fc92aa8b603a0928d29e23400ea650bc4b69e7401b15ec78bc4ea37")
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)

42.32992021s ago: executing program 2 (id=14015):
r0 = socket$packet(0x11, 0x3, 0x300)
syz_usb_connect(0x2, 0x3e, &(0x7f0000000040)=ANY=[@ANYBLOB="1201500279d6212099040e18f4f00102030109022c0001880b000209041e0002ff1e7106082402011003d10809050f07"], &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'geneve1\x00'})

40.749115843s ago: executing program 2 (id=14025):
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x240, 0x9b99}, 0x9, [0x6, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x5, 0x25cd, 0x1, 0xa4, 0x6, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x8, 0x9, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x4, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x4, 0x0, 0x91, 0x4, 0x4, 0x7, 0x2, 0x5, 0x400, 0x7ff7, 0x5, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x3, 0x1, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x6, 0x6], [0x9, 0x3, 0x6, 0x5f, 0x4, 0xc66, 0xa8a9, 0x73, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x9, 0x4, 0xa, 0x1000, 0x0, 0x200b398, 0x400000, 0x0, 0x2, 0x1c, 0x7, 0x1, 0x2, 0x54f5bad8, 0x8, 0xfffffffd, 0x400, 0xffff58b9, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00040, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x762, 0x1cb, 0x1, 0x4, 0x6, 0x438, 0x2, 0x9, 0x95, 0xfffff50f, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x2, 0x1, 0xffff, 0x3, 0x2, 0x2e6bf783, 0x80000001, 0xb, 0x5, 0x491, 0x8d3, 0x6, 0x8, 0x3ff, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x7, 0x5, 0x8000003, 0x5, 0x9, 0x0, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x100006, 0x8000, 0x400, 0x3e55, 0xff, 0xd3, 0x8, 0x3437, 0x3, 0x9, 0xfd, 0x401, 0x101, 0xdd80, 0x60a2, 0x17fc, 0x9d26, 0x0, 0x8, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x4, 0x10000, 0x1, 0x8, 0x1], [0xa772, 0x1, 0x5, 0x1afa, 0xbfc, 0x8, 0x7c81, 0x7f, 0x56, 0x40, 0xff, 0x5, 0x7fffffff, 0x7, 0xe, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x40f1, 0x2, 0x3, 0x6, 0x80000001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x624dfaee, 0xc, 0x7f, 0x1000, 0x1ff, 0x2000003, 0xffffffff, 0x10000, 0x0, 0x8001, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x1, 0x8, 0x13ffd, 0x1, 0x1b18]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000150a03000000000000000000020000000900020073797a31"], 0x34}}, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x2, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x180, 0x4, 0x14, 0xf1, 0x0, 0x7fffffffffffe, 0x7, 0x5, 0x3, 0xfffffffffffffffe, 0x45, 0x4, 0xbdb], 0x1, 0x1c4213})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

38.109496532s ago: executing program 6 (id=14048):
r0 = socket$l2tp(0x2, 0x2, 0x73)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a0b0400000000000000000200000038000480340001800b00010074617267657400002400028010000100434f4e4e5345434d41524b0005000300ef00000008000240000000000900010073797a30000000000900020073797a3200000000140005800800024000000000080001"], 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x4044194)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000280)=0x9d)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a20000000000a01040000000000000000010200020900010073797a30000000002c000000030a010200000000000000000100fffe0900010073797a3000300000000054000000060a010400000000000000000100000408000b40000000002c0004c97312fde480280001800e00014f864ea565646961746500000014000280080002800400028008000140000000110900010073797a3000000000140000001100010000000000000000000000000a00000000000000000000fa9554986ee772a55342e1563c670871350556b8e31d66afcf6f87134f2725816ab96f7161c5"], 0xc8}}, 0x0)

37.242466981s ago: executing program 6 (id=14063):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x27}, 0x74)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x700)

36.962134212s ago: executing program 6 (id=14065):
r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)='blkio.throttle.read_iops_device\x00', 0x2, 0x0)
r1 = eventfd2(0x1ff, 0x800)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
r3 = eventfd(0x87c8)
io_submit(0x0, 0x3, &(0x7f0000000540)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x5, 0x81, r0, &(0x7f0000000180)="4ce029790ea24ab076053c1935e22ddf2816d31a471648c0196a74d8dcd40296d6a2b74c7336b656022d854541dd32d61b15028e6625334f864038513dd51864793a14ce04dd350651c26b90e531268e13feb9bdfbc39811079cdffc82183da90ac984ed4d71a2ee21d5b726d92958929afa6ff9c83bc3726dbab3fcad4898171ba1fdb2bc98e3926e95d9d7eceeec0d9cc2d03274a99b2cd4dd969a16bce5073fbf58d54c8e89c49dc891f58460c298389be9562ac5dd02f59f3385c0907eb531fb916f1b7586de9ae1f54a", 0xcc, 0x4, 0x0, 0x1, r1}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x7, 0x1, r2, &(0x7f00000002c0)="0cda3d1d52fd64a93b946bec34e20bfb2da730e61fe1dc892634a0ef65b0750929aa68b08fe251eb7c02fa9837b63c92e03d6ab9b38e3ab17117937e419bb865bea316078ad18552a4c70207fe5ee05181c32e8a7ffb5134c8962b94102c8392d5e317cfad720e527f0b681f7ba114f3b0d8fc9656bdb64d4771ae824ac9d5f3347989d71165d78fa4a8d94bb78b04f84f880033ed564d138a9d609c6d2cafdb9ee3b78623f262417d5ced3942a9993a473f1212e574c9215e055b19956ed3897386e2f1b2d60827f7e75fbd2e470d7beedf6126f2a471922ad998d6d31e416d7b59ec2f763e7744145d17276fb33299b0bfbb29de79", 0xf6, 0x9, 0x0, 0x2}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000000440)="c7229d26190cdd2c8487db636abaaab86cb88bdbfae98286c53b011b175b1bd64e3c0c72c18d37b00bd61995b84af288be60db005e91a7ce49fe58b2d60dedbc155e171ecda457048e9e9ce43f9c67ad460fb072fdf9ebeaf58857139976dcf857751789877bb4e3c9f36ca3499e34c88ba708c94f8e8c65788b0bde2be9129cf5611c", 0x83, 0x3, 0x0, 0x2, r3}])
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f00000003c0), 0x80000, 0x0)
ioctl$RTC_UIE_ON(r4, 0x7003)
syz_emit_ethernet(0x6e, &(0x7f0000000200)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00\x00\t', 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x5dc, {0x0, 0x6, "8cb02b", 0x9, 0x2f, 0x0, @loopback, @local, [@fragment={0x2f, 0x0, 0x27, 0x1, 0x0, 0x14, 0x68}]}}}}}}}, 0x0)
ioctl$RTC_SET_TIME(r4, 0x4024700a, &(0x7f0000000140)={0x10, 0x2e, 0x8, 0x11, 0x5, 0x2c000, 0xfeff, 0x134, 0xffffffffffffffff})
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
ioctl$SNDCTL_SEQ_NRSYNTHS(0xffffffffffffffff, 0x541b, 0x0)
ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0xa00, 0x0, 0x101, 0x100}})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002500)=ANY=[@ANYBLOB="bf16000000000000b707000000ff000048a0000000000000400000000000000095000000000000002ba728041598fbd30cb599e83d24a3aa81d36bb3019c13bd23212fb56fa54f2641d8b02c3815e79c1414eb07eae6f0711e6bd917487960717142fa9ea4318123f602000000000080de89e661168c1886d0d4d94f204e345c65c26e278ef5b915395b19284a1a4bc72f85304ef8d14f8bbc1626e3a2a2ad358061d0ae0209e62f51ee988e6ea604ce974a22a550d6f97080980400003e05df3ceb9f1feae5737ecaa80a666963c474c2a100c788b277beee1cbf9b0a4d3881dcc7b1b85f3c3d44aeaccd3641110bec4e90a6341965c39e4b3431abe802f5ab3e89cf6c662ed4048d3b3e22278d00ce00000000d3a02762c2951257b85802189d74005d2a1bcf9436e192e23fd275985bf31b714f000bcab6fcd610f25f5888000000003f11afc9bd08c6ebfbb89432fb465bc52f49129b9b6150e320c9901de2ebb9000000018e3095c4c5c7a156cec33a667dccaff950ca1e5efdd4c968dacf81baa3a509b1041d06f6b0097c430481824a3f4fddd3c643f630ba175d876defd3541772f26e27c44cfdb2d85d6d29983e830a9cdd79837b3468e8c67a571d0a017c100344c52a6f387a1340bdc8889464f90cc4cd1f570dd39877dfb2ff1ae66e1ce917474b2e650ae630afd014a337ac5d58bcb5e51723257c872c5255f20100000000000000f041b665ab21372c8d8b7bac5b5c784d20a4a24d8dbd75062e1daef9dead619cc6e7baa72707157791c3d2a286ffb8d35452bb5d3682a8682bf7ecbd53f950ef4709ec01e230d2f53594ef4839c6130c4c13a0cca84b9935f771fd49e480cd9d48aeb12b1d6acabd38a817bcd222614d1f62734d679039a97d2b74f9e8e997ccd314000f7477137f4e8e7025123e783df8b8a17e3aa9fe1f662aef87a065b03cfb65b4dfe4f1b56e1f23128d743753a1de172d683d5892ce9414a1d98ea93e3d35dbb6c23b90cf36e83b8a434a97d09343d7f83079ccb02e69d384146056d125cfa788237874dd42dae334bda042819a2aa24dba1c25be2794448b4f63483026b5e34d44705b76ef29241adab0dd7d68bf975e02069f6f2425e1bc97a3d588085f16bef63a06578d4f5de7bfb6aaa75f16996d536256c02284cb1d3a6fb8cae87691fae365a70c3fc69e1565bba8dd56eee5798041358a8ca049f798abe646f738bebd69413afc9d8a5edd7aaa000000000000001e6c2f2a287c5278a218dbfaffffff00a14db5cca6819eb1d39c48cfdc80d215c9e16e0c4736c819363154cca4e2f89800d18c89d7f46f679df6c9e2952ae1ebfd0ca88368ee6ce139e8b5822c22cf2e9dde943d34c432e1001171792c65986146666a5490928441f47e0fe5eac41824ca1fd0eb71aa243c88d5480efd8329d9a733d8f9ffffff5f912ac4e34bf6ea8a86da707b03bddb491ba0cc98f6be92c50008a2b50025419d1476c73132ca7ca26ce8a7e3ffb700f09e157f9b844051f1a642aca9ff98c9036471ccff0522903e7bcf62e18f7696bbc280b95e8e0d6fd5644b0ebde3a95b06548862de809d3dae3cccf109f7c78e8479a345e800000000000000000000009455bf417627ce723a5d9103706aba69279500bb82f6b5a3ddc0bd9856712945b70c75ce5b722578820820d010d7a3cffc99fc647d0b82ef26ab708c0b19ed144be51c3b398f0e6bb7a30006000000cba12953d58cff0f0378740fe6662f377b97d8e7cdb047acd083d3cd3856476a60a49ad127ba6570bafc2bbcf9ee721fd9cb467ff071e5604fbf0491245c0000007d932d7a64de4c4aa433fc0840aff7c47da3a4c6966d0000000000000000f6bfbae29e8a6e2a889f6ef6869d82d6bd73eb76b65c7a35a54a4a6b8ad4600e3a972a0bb5971a5f16590b0a03dafa3fd1118765cc8ab9fccf3b51c41a339f200f2fa33006910a679a9ae0187b4d750c4bd244cb0cbfd23b265f4d4da448a7a0d19c5e43eae50a31609dfa2dde267551467eb6475293dd7012cc449009981f22820e57a0eff234ccfe21d7a2302e000669753d3c3432cc14ee1abe724adb6b5431befedd3e22971118f0e21aed1823cb7dde8212a8531bd9000000006a370e9eb56b3d790b98f2bd0db1e5de6a3040d2a39d7965d34df524b760ab92efcce7dd1574052c735935bf6a752c015c7f5ffee9ff66e5dd2866b15b6e0d17618cb1f5c1ee4b05ebf1445ea110f499f840a5c965443d725556351ee25fe09f69494b053678dcadcf02e063dff2fa4bef1ac3bbbebe6c74d71ec3b23e29895eff1d1017024fe3e8cc759b05785adc346b7ffd05963f92c1d0d7d90ba878ad89e490f3e29ac51d30632869a534418f916bf6fe8167827a8e6c8f8b391c822805cb0adf1b8bd6947ff208753eb0d208ce14f7b206b2e02c21e963abc5ceb735c1b3c46b0a843de52a903375dfb663a8d8ee9c2b2705c1a81d9d3b9656b219c8cd99c9cafcd0d0540884d97aecb19983fc6af29ab44a82aff9cba921192c665b877af6539bdb1b567f481ba07982e7ad758f4e1eac69e7e88a63960975f490e161e371ec8534791e3b61c685d900a9c0839208356b53750e76fcc3c2d1bddcbd83897921414d0c02e8188f3df79ea2a5c5444004830e6cb227ca1bdafb977c00000000003a417193b8c5d793687335a930867094fd6a78218218e04b705ec62f1608cb569b81914e68f175b392af6bc4fd2121d7fd276af2c97a441b56e7a0687d98b8e76d8d0d231e4fe00be1de76bd19cc12e2bd938eb681ed6bc951c1b4f7c51af59eea4d40c6000000000200778a677b72786311153271a3313da02645e11761699e4d04ac86dd14ff953a5b7706bf5d1faba4b18808d9cb0e9db696dec4e0820ee4028d7225a2c9c427cf64cbde6fba056b2006b7a37c1181d530fb865e235cd302f3b4071ee5237ada986b9e5e3144bf479f277f10656ad3744037ccc9c63685a6f1109d2ea73773d3635f61497f1fa1ea4a16f601800bf3e59141fbf05a96113320c445f9ba8596970d5254727e804fbd99ccefb7c09269dd2c5c25e56e169ac15980f3f85f7ca36dd5950ef5b64fd46f123311829534a82940994199b3cf7a8fabea9930952f5da9b909c1946e55289f668c423fcbb31ae91864c882313151741a67538c9689dc8ecc9903c7041e5c0704e2fa55a756487517a7445cbd9e3f5175e41c00000000000000000000000000bf98efd587fffe326f474b0b089c017b16c0062cbce96f5adebec52a79f9363909842f79c50a1520be46d87003137e4c5031f00123e812a5e37cd52c9eb7336281cb8c6ce993c51cd1eab8a26b232acf6bf0ab829c26dab637538b2eb1420d812d2b80c777710ba0f18e4661681aa218d9ba54023ab4305d77eb15611ae2545835e9d30e9f6d4fb43a291c69545a1eea0f8720431132d8549f99bf6c5cb060da70cbb59d0a000000000034d083fc37d2449f72de0cbea4bc1dc89c136cdbc504f849d5502d77a95c7bfff4cd9c03058d0d4d07ea64824f1acf2b39389f675f39d01719cdbab3f1ce10609c8d7b3e37cb99b41da5e485a441b6a103549f55ab09dc98767763d1f2fafd45bb7d2b40050d1f8292f4d9ec6d0000000000003932062290f4996fdd55b06023437e9e2072daf7f5d82f6f1b5b89a41134f4dc2e65bb11272fdf8c8141f41d6160b3d8b6ecd16d14267f61b4881adee7f07f3d6af5ae79e16fe2c3f55ac7a6392d2e1d9b4286b6c3e1f5a76b85ed6e1f0000c67e6c5fcdc8c39381be4799b8cb2d08b8262c807dd755e22b801162381aa9d1af2bbc9cfd497585337eac408b8475b47a392a10cae349160f128e5f873a58064eb400c36a90624f6aed398a215e9ce64522ab249f67c38a656d32ecff5cdb2b039c4abf349d2c0f88a42e9189bbfa7f5cf35b6e7ef8f9d33163b7ea87550fb1ba334c83e3aec4714c9c4ca3ecb04f2720237615a28bf310b58ffa2a103216fdcc8c2d8f5d55e5e7ebf147105272aaae56e86d856b3cf79a3f7306436362dd1a08ce873e07cebc7892ec6f9f696da38feed3dc0001500e34adae1ba89a32bad2af9030f840f1ba4664f35547cdadd5cbacc59352c290f55d971b65953533668c25f21d8d62d849e9058eaa97c63491568887548f668cdbca2abf01a361a0b64d8b523e669da350e3ec7445dfbf366b0b3bc5e76824a1e43eaaeca70db90f2fa39596443447671933079a24fe3681ad9ac361f71ac279a688f10a1cc4df1112105edebc5e3bbc394c8305ab129ca2dfb9b7c5e9d097bd01b495cccefddce569117f7f5d6a6270ff0f0f4c371029ca8489571b55841bf3dd003bc81460eee57ceb3c33f4e9300b0144fe040cf5fcfcbb616c2070237881afdb314cecd1623f3e55ab8b7627fa1be349145a8d6313cbc790eefe2020138e82fb9d351be4ddcbcc9bc048dd3db5828d16baec6e07a007f0030f34ea3cfd524d6fa1d45da5641d6c94e1d3ae7fba1c85035d2a60ef1696e0d96aa1c60019f73a20aa6113cd66ef26b5777337c26e1461405d86fdf091edd526f25cada439bb3609ed5c35ab60a539ade786bd6004d0ea3edbd6c4da0d8e8be8c771c8c8a0b07d9859e04adb18964dcce9bce546074c26dffbc2df372a016e8c845d4257000000000000000000000000000000000000f29657697d9c2b132b2dc2f5ea5122836582a7e85fe2bc166f17aefd9d861de0191f5277d4a3b5afb6f23d9eea2459f7844606e1202768d83c24cc791bde44a448022bbfa571fe029a7b2d5152639ee283894ab6168992ff0acc01b39a078f285ce615351f262019586eb9447bb3eaffd7b53d8f37ca6c5f1027dd5b7592996c8a7789ba108979cc9ad07ed86682843e2eaa855dd01443ee6ffde1811f10039d5d14458177096e15cc4d8f2582a1bea5cc98d992f3de7d1cdfb24384b9f10f615c87c441dc970ec896a5af6bf69b50a244bc138a1cae9868c3079bafe601fb695a9769000000000000000000e99b63029d219cd3545a8426b56554a9f265d3557eefb3602894507c256cb8ee9ebadfecb6afeb84ba757bfa8d00a5af0dd6aa1e8144ef8ef04410d52204c335408941b8eccc5c734cc6a05247142ed647f89bcb5c043acfb382b9cc918bc3cdc368983157851cdf678800aa7eb2a6cbc12c7ae23bc88b8f10000000000000000000"], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)

36.73177361s ago: executing program 6 (id=14067):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$bt_hci(r0, 0x0, 0x1a, &(0x7f0000001800)=""/2, &(0x7f0000001840)=0x2)
syz_usb_connect(0x2, 0x48, &(0x7f0000000c00)={{0x12, 0x1, 0x0, 0x4c, 0xb6, 0xe8, 0x10, 0x10c5, 0x819a, 0x9591, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x36, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x80, 0x6, 0x4, 0x3, 0x0, 0x0, 0x0, [], [{{0x9, 0x5, 0x5, 0x1, 0x400, 0x6, 0x7, 0x1}}, {{0x9, 0x5, 0x7, 0x0, 0x8, 0x4, 0xc4, 0xf}}, {{0x9, 0x5, 0x8, 0x3, 0x40, 0x19, 0x0, 0x3}}, {{0x9, 0x5, 0xb, 0x3, 0x8, 0x24, 0x86, 0x7}}]}}]}}]}}, 0x0)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="05000000040000000400000005"], 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x7b}]}, 0x0}, 0x94)
r3 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x4000)
r4 = accept$inet(r0, 0x0, &(0x7f00000001c0))
r5 = syz_init_net_socket$llc(0x1a, 0x6, 0x0)
poll(&(0x7f0000000380)=[{r1, 0x2080}, {r0}, {r2, 0x1002}, {r0, 0x8022}, {r3, 0x4018}, {r0, 0x240c}, {r4, 0x9206}, {r5, 0x10000}, {0xffffffffffffffff, 0x80b6}], 0x9, 0x2)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="50000000120005ff"], 0x50}}, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
recvmmsg(r6, &(0x7f0000004e00)=[{{0x0, 0x0, 0x0}, 0x7}], 0x4000091, 0x40000000, 0x0)
r8 = openat2(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f00000004c0)={0x108000, 0x148, 0x1}, 0x18)
getsockopt$netrom_NETROM_T2(r8, 0x103, 0x2, &(0x7f0000000540)=0x1fc0, &(0x7f0000000580)=0x4)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000340)={{r1}, &(0x7f0000000200), &(0x7f0000000280)='%pB    \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x10, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r9}, 0x10)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r11, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r11, 0x0)
ioctl$KVM_X86_SETUP_MCE(r11, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0xc, 0x4})
sendmmsg$inet6(r10, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

34.406446308s ago: executing program 6 (id=14099):
r0 = timerfd_create(0x8, 0x0)
timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timerfd_gettime(r0, &(0x7f00000000c0))

34.33203625s ago: executing program 6 (id=14100):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r0, &(0x7f0000000600)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
shutdown(r2, 0x0)
connect$unix(r2, &(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r4 = accept(r3, 0x0, 0x0)
sendto$inet6(r4, &(0x7f0000000280)='\x00', 0x1, 0x0, 0x0, 0x0)
io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0x20c8a1, 0x1c881, 0x8, 0xd1})
r5 = io_uring_setup(0x4a86, &(0x7f0000000300)={0x0, 0x4178, 0x40, 0x8001002, 0x135})
io_uring_register$IORING_UNREGISTER_RING_FDS(r5, 0x15, &(0x7f0000001b80)=[{0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x1, 0x0, 0x0, 0x0}], 0x2)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x700, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1006}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8800}, 0x440b0)

26.378814936s ago: executing program 38 (id=14025):
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x240, 0x9b99}, 0x9, [0x6, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x5, 0x25cd, 0x1, 0xa4, 0x6, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x8, 0x9, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x4, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x4, 0x0, 0x91, 0x4, 0x4, 0x7, 0x2, 0x5, 0x400, 0x7ff7, 0x5, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x3, 0x1, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x6, 0x6], [0x9, 0x3, 0x6, 0x5f, 0x4, 0xc66, 0xa8a9, 0x73, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x9, 0x4, 0xa, 0x1000, 0x0, 0x200b398, 0x400000, 0x0, 0x2, 0x1c, 0x7, 0x1, 0x2, 0x54f5bad8, 0x8, 0xfffffffd, 0x400, 0xffff58b9, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00040, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x762, 0x1cb, 0x1, 0x4, 0x6, 0x438, 0x2, 0x9, 0x95, 0xfffff50f, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x2, 0x1, 0xffff, 0x3, 0x2, 0x2e6bf783, 0x80000001, 0xb, 0x5, 0x491, 0x8d3, 0x6, 0x8, 0x3ff, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x7, 0x5, 0x8000003, 0x5, 0x9, 0x0, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x100006, 0x8000, 0x400, 0x3e55, 0xff, 0xd3, 0x8, 0x3437, 0x3, 0x9, 0xfd, 0x401, 0x101, 0xdd80, 0x60a2, 0x17fc, 0x9d26, 0x0, 0x8, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x4, 0x10000, 0x1, 0x8, 0x1], [0xa772, 0x1, 0x5, 0x1afa, 0xbfc, 0x8, 0x7c81, 0x7f, 0x56, 0x40, 0xff, 0x5, 0x7fffffff, 0x7, 0xe, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x40f1, 0x2, 0x3, 0x6, 0x80000001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x624dfaee, 0xc, 0x7f, 0x1000, 0x1ff, 0x2000003, 0xffffffff, 0x10000, 0x0, 0x8001, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x1, 0x8, 0x13ffd, 0x1, 0x1b18]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000150a03000000000000000000020000000900020073797a31"], 0x34}}, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x2, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x180, 0x4, 0x14, 0xf1, 0x0, 0x7fffffffffffe, 0x7, 0x5, 0x3, 0xfffffffffffffffe, 0x45, 0x4, 0xbdb], 0x1, 0x1c4213})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

20.577982122s ago: executing program 8 (id=14200):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="05000000000000006110140004000000d4000000100000009500000c00000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000280)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
timerfd_create(0x8, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/wakeup_count', 0x141000, 0x20)
finit_module(r1, 0x0, 0x3)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3, 0x0, 0x8, 0x1)
futex_waitv(&(0x7f0000001b00)=[{0xffb, 0x0, 0xa}], 0x1, 0x0, 0x0, 0x1)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000200)=0x1, 0x4)

19.746055872s ago: executing program 39 (id=14100):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r0, &(0x7f0000000600)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
shutdown(r2, 0x0)
connect$unix(r2, &(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r4 = accept(r3, 0x0, 0x0)
sendto$inet6(r4, &(0x7f0000000280)='\x00', 0x1, 0x0, 0x0, 0x0)
io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0x20c8a1, 0x1c881, 0x8, 0xd1})
r5 = io_uring_setup(0x4a86, &(0x7f0000000300)={0x0, 0x4178, 0x40, 0x8001002, 0x135})
io_uring_register$IORING_UNREGISTER_RING_FDS(r5, 0x15, &(0x7f0000001b80)=[{0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x1, 0x0, 0x0, 0x0}], 0x2)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x700, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1006}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8800}, 0x440b0)

19.194750131s ago: executing program 8 (id=14205):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="05000000000000006110140004000000d4000000100000009500000c00000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000280)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = timerfd_create(0x8, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/wakeup_count', 0x141000, 0x20)
finit_module(r3, 0x0, 0x3)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3, 0x0, 0x8, 0x1)
futex_waitv(&(0x7f0000001b00)=[{0xffb, 0x0, 0xa}], 0x1, 0x0, 0x0, 0x1)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000200)=0x1, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2400a051}, 0x44000)
getsockopt$CAN_RAW_JOIN_FILTERS(r3, 0x65, 0x6, 0x0, &(0x7f0000000040))
timerfd_settime(r1, 0x3, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timerfd_gettime(r1, &(0x7f00000000c0))
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4040)
syz_io_uring_setup(0x23a, &(0x7f0000000080)={0x0, 0x3a2f, 0x10, 0x3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000200)=<r6=>0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r0, 0x0, 0x75, 0x40, &(0x7f0000000280)="d15d21500e11dc312d9d391afbf6bb14150a6a7afcd1b858616e7ca84f8dca0c24912c5ecac696412c7095e6c8d785db92a0f2f732f6a42d4f25a9b488b7bffd089545402c772ed42dabeac3fa3c78b1ae28e9065eca06e16e775594fc6426abdd72b3e34476e1682381369a85d79f16b3b4517842", &(0x7f0000000100)=""/64, 0x4, 0x0, 0xaa, 0x31, &(0x7f00000003c0)="409df81528d25f0073f7d2d0f5ad40d7fde0551e2f70b0f3c95528450fef6c375876121fa51be21d5607c32306f643efe2eee97a717f684fc046e00b1a95b669b60150009506694c634e14edbddcbe6f09d1aba3f05bcc2dd16592a4233d3e0c74a2fd4181b49311ea8a0d3919bfaf2309de2368b91f65d9f74fb36f69837a21da4b3ac40e40341e41ef53636e7af9364f936c6c91d079afad33db25b6f524bb23ca4c556264e64a1f01", &(0x7f00000001c0)="f64351bb6b1a233d10f870ef4a94bf59666cc85c666d3203dbbc54051a1c205fda0c4bd079423e30c9fd29a1a43318dcb4", 0x6, 0x0, 0xa}, 0x50)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000240)="352f19", 0x3, 0xebec93e830f96115})

18.274158814s ago: executing program 8 (id=14209):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r0 = socket$inet(0xa, 0x801, 0x84)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x13b)
mkdir(&(0x7f0000000040)='./bus\x00', 0x34)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
close_range(r0, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0xeaff)
ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f00000001c0)={{r0}, 0x8, 0xa1ffffffffffffff, 0x1})
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x41)
copy_file_range(r2, 0x0, r2, &(0x7f0000000080)=0xfffffffffffffffc, 0x1, 0x0)

17.475358229s ago: executing program 8 (id=14220):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000000)={0x6f, 0x403, 0x80000001, 0x3a, 0x7, "0058c90a00800000000000000000f900"})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000010300)=0xa)

17.352758979s ago: executing program 8 (id=14222):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0x8, 0x1, 'udp\x00'}, @NFTA_MATCH_INFO={0xe, 0x3, "7acc6338a90000b03bd9"}, @NFTA_MATCH_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x8c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x8082, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
msgctl$IPC_SET(0x0, 0xfffff000, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x10022, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
mkdir(0x0, 0x5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='sched_switch\x00', r4}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
openat$audio(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
io_setup(0x6, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r8 = add_key$user(0x0, &(0x7f0000000440), 0x0, 0x0, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r8, r8, r8}, 0x0, 0x0, 0x0)
ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000040)={0x1, 0x3c0, 0xc0, &(0x7f0000000340)=[0x9, 0x0, 0xff, 0x82, 0xe6b4, 0x4000001, 0xfffffffffffffffa, 0x1, 0x8, 0x2, 0x2, 0x700000000000001, 0x3, 0x0, 0xfffffffffffffffb, 0x5, 0x7fffffff, 0x5, 0x4, 0x9883, 0x5, 0x8001, 0x8, 0x2, 0x3, 0x9, 0x2, 0x1fe, 0x8, 0x81, 0x7, 0x5, 0x40005, 0x2, 0x101, 0x40, 0xfffffffffffffff8, 0xaa3, 0xa, 0x81, 0x0, 0x0, 0x8, 0x2e2, 0x101, 0x6, 0x8000000000000004, 0xfffffffffffffff9, 0x8, 0x401, 0x5, 0x9, 0x7fff, 0x5, 0x8000000000000000, 0x8, 0x94f, 0x7, 0x7fffffffffffffff, 0x6, 0xffffffffffffffff, 0xa, 0x11, 0xa, 0x800000000005, 0xa8, 0x1, 0x10, 0x7fffffffffffffff, 0x87f, 0x7, 0x4, 0xb, 0x1e30fa4c, 0xa, 0x4, 0x4, 0x49f, 0x3, 0x7, 0x1, 0x4, 0xba00, 0x4, 0xd, 0xad65, 0x4, 0x101, 0x7, 0xe, 0x3, 0x1000000003ff, 0x5, 0x21, 0xfffffffffffffc01, 0xfffffffffffffffe, 0x401, 0x8, 0x1e4b, 0x2000000000005, 0x77, 0xf, 0x10000, 0xe, 0x2, 0x3, 0x3, 0x6, 0x0, 0x4, 0xa, 0x1, 0x9, 0x2, 0xfff, 0x80, 0x3, 0xd, 0x200000000000004, 0x1, 0xe, 0x8, 0xffffffff, 0x7f, 0x4, 0x7, 0xea7]})
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f00000000c0)={0x29})
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x7, 0x1, 0x201, 0x0, 0x0, {0xa, 0x0, 0x7}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x20004850)
mkdir(&(0x7f0000003480)='.\x00', 0x10)

15.409399603s ago: executing program 5 (id=14240):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x13, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000023330000000000000800000018470000fbffffff0000000000000000074e96dfceb37f22d53588628e491ecf7e3638df0de2e3209b34e6a019682a22ff0a2506ae2e8679630581eb45abcb60871c67418eddb92dde6d3f92e24cf0b2f4d3717324202bdf"], &(0x7f0000000180)='GPL\x00', 0x1, 0xf8, &(0x7f00000004c0)=""/248, 0x41000, 0x1, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x4, 0x5, 0x4, 0xd280}, 0x10, 0x0, 0xffffffffffffffff, 0x3, &(0x7f00000005c0)=[0x1, 0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff], &(0x7f0000000600)=[{0x1, 0x3, 0x3, 0x3}, {0x0, 0x4, 0x1, 0x5}, {0x0, 0x1, 0x2, 0x6}], 0x10, 0xc00}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002300)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0x40}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r1, 0x18000000000002a0, 0x10, 0x0, &(0x7f0000000080)="5aee41def1868b2ef7fb8d11c72b5255", 0x0, 0x23b, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = socket$kcm(0x29, 0x5, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x145140, 0x0)
sendfile(r3, r3, 0x0, 0x800000009)
r4 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='attr\x00')
fchdir(r5)
r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000980)=@generic={&(0x7f0000000940)='./file0\x00', 0x0, 0x10}, 0x18)
r7 = openat$smackfs_ipv6host(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$smackfs_ipv6host(r7, &(0x7f0000000800)=ANY=[@ANYRES8=r2, @ANYRESDEC=r4, @ANYRESDEC=r5, @ANYRES64=r4, @ANYRES64=r2, @ANYRES32=0x0, @ANYRES8=r6, @ANYRESHEX=r0], 0xa4)
writev(r4, &(0x7f0000000200)=[{&(0x7f00000001c0)="8a05b9ce75f9661e6f9078c92f", 0xd}], 0x1)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xffffffff, 0xffffffffffffffa4, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r9}, 0x10)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r11, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r11, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x14, 0x874fd42a7836ef64, 0x4})
sendmmsg$inet6(r10, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r12 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r12, 0x10e, 0xc, &(0x7f0000000980)={0x2}, 0x10)
write(r12, &(0x7f0000000300)="240000001a005f0214f9f4070d0903ff80000000fe050000000200000800040001000000", 0x24)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000dc0)=@security={'security\x00', 0xe, 0x4, 0x478, 0xffffffff, 0xd0, 0x1f0, 0xd0, 0xffffffff, 0xffffffff, 0x3e0, 0x3e0, 0x3e0, 0xffffffff, 0x4, &(0x7f0000000040), {[{{@ip={@empty, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffff, 0xffffffff, 'veth1_to_team\x00', 'rose0\x00', {0xff}, {0xff}, 0x32, 0x3, 0x58}, 0x0, 0x70, 0xd0}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@broadcast, [0xffffffff, 0xff000000, 0xff, 0xff000000], 0x4e23, 0x4e20, 0x4e20, 0x4e24, 0x1, 0x2, 0x0, 0x5, 0x230}}}, {{@ip={@rand_addr=0x64010101, @loopback, 0x0, 0xff000000, 'bond0\x00', 'ip6erspan0\x00', {0xff}, {}, 0x1, 0x1, 0x20}, 0x0, 0xc0, 0x120, 0x0, {}, [@common=@ah={{0x30}, {[0xe, 0x3]}}, @common=@socket0={{0x20}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, 0x2, 0xd, [0x1f, 0x33, 0x4, 0x18, 0x17, 0x3a, 0x2d, 0x39, 0x21, 0x24, 0x1d, 0x31, 0x22, 0x1a, 0xb, 0x33], 0x2, 0xf, 0x7}}}, {{@uncond, 0x0, 0xc8, 0x1f0, 0x0, {}, [@common=@icmp={{0x28}, {0x4, "8ec8"}}, @common=@ah={{0x30}, {[0xae, 0x40]}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0xdc3a, 'system_u:object_r:cpu_online_t:s0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4d8)
kexec_load(0x0, 0x2, &(0x7f0000000900)=[{0x0, 0x0, 0x200000000}, {0x0, 0x0, 0x0, 0x8000}], 0x0)

15.381794648s ago: executing program 5 (id=14241):
r0 = memfd_secret(0x80000)
readahead(r0, 0x7, 0x0)

15.333359084s ago: executing program 5 (id=14242):
syz_usb_connect(0x2, 0x64, 0x0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0})
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r0, {0x81, 0x3}}, './file0\x00'})
r3 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r3, &(0x7f0000002840)=[{{&(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0xfc, 0x0}}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000200)="9a", 0x1}], 0x1}}, {{&(0x7f0000000180)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000002600)=[{&(0x7f0000002100)='DK', 0x2}], 0x1, &(0x7f0000002a40)=ANY=[@ANYBLOB="14000000000000000000000002000000050000000000000014000000000000000000000001a219459600000000000000a4000000000000000000000007000000442ca971ac14144100000002ffffffff00001000ac14141e0000007fe000000100000007ac1414bb0000000944246813ac1414bb00000946ac1414350000073cac1414aa000000047f00000100005b3f019404010001071795ac1e0101e000000100000000ac1414aaac1414aa4424a1237f000001000000017f000001000000ffac1414aa00000000ffffffff000000050000000000000088"], 0x160}}], 0x2, 0x4000000)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000240)={0x6, 0x101, 0x206, 0x2, 0x754d, 0x6, 0x9, 0xf, r5}, 0x20)
setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r2, 0x84, 0x5, &(0x7f0000000300)={r5, @in6={{0xa, 0x4e24, 0x35, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x1fa}}}, 0x84)
r6 = eventfd(0x5ef)
ioctl$KVM_IOEVENTFD(r1, 0x40a0ae49, &(0x7f0000000080)={0x7ff, 0x0, 0x0, r6})
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000009c0)='/sys/kernel/kexec_crash_size', 0x149a82, 0x0)
sendfile(r7, r7, 0x0, 0x3)
ioctl$KVM_PRE_FAULT_MEMORY(r7, 0xc040aed5, &(0x7f0000000000)={0x1000, 0x5000})
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r1, 0x4020aed2, &(0x7f00000000c0)={0xffff1000, 0x301000, 0x8})
mmap$KVM_VCPU(&(0x7f00002db000/0x4000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000ef9000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000038000/0x2000)=nil)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCSPGRP(r8, 0x5410, &(0x7f0000000200)=0xffffffffffffffff)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000006c0)={@cgroup, r9, 0x37, 0x2034}, 0x20)
mremap(&(0x7f000003a000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f00002dc000/0x1000)=nil)

15.229375485s ago: executing program 5 (id=14243):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mmap(&(0x7f0000348000/0x1000)=nil, 0x1000, 0xfffffffffffffff9, 0x12, r0, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000))
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x6, &(0x7f0000000000)=0x9, 0x8, 0x0)
munmap(&(0x7f000045e000/0x1000)=nil, 0x1000)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[], 0x60}}, 0x2)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff038}, {0x6}]}, 0x10)
sendmmsg(r2, &(0x7f0000000180), 0x4000190, 0x0)
r4 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x400, 0x10100}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r4, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
r7 = socket(0x10, 0x3, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000003c0)=@IORING_OP_SEND={0x1a, 0x20, 0x0, r7, 0x0, 0x0, 0xfffffd49, 0x20044080, 0x1})
io_uring_enter(r4, 0x27e2, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f000023a000/0x3000)=nil, 0x3000, 0xa)
syz_clone3(&(0x7f0000000440)={0x2000080, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), r8)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x24, r9, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0xa}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x7}]}, 0x24}}, 0x20000000)
sendmsg$NL80211_CMD_SET_COALESCE(r8, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r9, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r10}, @void}}}, 0x28}}, 0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r11=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r11, {0x7, 0x29, 0xfffffffe, 0x0, 0x0, 0x40, 0x2, 0x0, 0x0, 0x0, 0x10, 0x66}}, 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r12=>0xffffffffffffffff})
sendmmsg$unix(r12, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14008051}}, {{&(0x7f00000000c0)=@file={0x1, './file0/file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x40080}}], 0x2, 0x0)

15.223322891s ago: executing program 5 (id=14244):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000fbffffff0010000003000000180100002020499f996b848aad7c20207b1af8ff00000c00bfa100000000000007010000f8ffffffb70200000800000000850000000600000085000000110000009500000000000000f2a181fbbe42bfff420fd518419bef42a98400000000000000"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB, @ANYRES32=r2, @ANYBLOB="08000000001100"/16], 0x34}, 0x1, 0x0, 0x0, 0x5}, 0x0)
r3 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi1\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x4}, 0x38)
prlimit64(0x0, 0xe, &(0x7f0000000580)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x480, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r6 = openat$audio(0xffffffffffffff9c, 0x0, 0x40000000040201, 0x0)
ioctl$SNDRV_PCM_IOCTL_FORWARD(0xffffffffffffffff, 0x40084149, 0x0)
r7 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
r8 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r8)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r9 = syz_open_procfs(r7, &(0x7f0000000040)='syscall\x00')
read$FUSE(r9, &(0x7f0000001580)={0x2020, 0x0, <r10=>0x0}, 0x2020)
socket$vsock_stream(0x28, 0x1, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0x401, 0x0, 0x10000, 0xb998, 0x0, "194f2f83c2e798c3584770116cddc8819592b1"})
write$binfmt_aout(0xffffffffffffffff, 0x0, 0xff2e)
ioctl$COMEDI_DEVCONFIG(r3, 0x40946400, &(0x7f0000000140)={'pcl730\x00', [0x80000000, 0x5, 0x1, 0x2, 0x88d7, 0x8f, 0x1007, 0x8010, 0x7ff, 0xffffffff, 0x200, 0x6, 0x10000009, 0x4, 0x100, 0x4, 0x8, 0x35a, 0x9, 0x4006, 0x2, 0x5, 0x6, 0xa, 0xfffffffd, 0x101, 0xb0c4, 0xc, 0x8, 0x9, 0xffffffff]})
openat$nci(0xffffff9c, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NFC_CMD_START_POLL(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010023010000340200000600000008000100", @ANYRES32=r6, @ANYBLOB="bb4e80ee6025c6ab"], 0x24}}, 0x0)

15.143897619s ago: executing program 5 (id=14245):
socket$nl_route(0x10, 0x3, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$binfmt_register(r3, &(0x7f0000000040)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x0, 0x3a, '$', 0x3a, '!-$M--', 0x3a, './file0', 0x3a, [0x50, 0x43]}, 0x30)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="101000000000000008000d0005000000e4031680a40001800c00070000000000adffffff0c00", @ANYBLOB="0c04000010000104000000000000000000480000", @ANYRES16=r2, @ANYRES32=r4], 0x40c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newlink={0x3c, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x283}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x4}]}}}]}, 0x3c}}, 0x0)

14.337605652s ago: executing program 8 (id=14246):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac14140f00000000000000001400020002004e2266e092a9f5bdfa97000000000d0001007564703a73797a32000000"], 0x54}}, 0x0)

638.881978ms ago: executing program 40 (id=14245):
socket$nl_route(0x10, 0x3, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$binfmt_register(r3, &(0x7f0000000040)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x0, 0x3a, '$', 0x3a, '!-$M--', 0x3a, './file0', 0x3a, [0x50, 0x43]}, 0x30)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="101000000000000008000d0005000000e4031680a40001800c00070000000000adffffff0c00", @ANYBLOB="0c04000010000104000000000000000000480000", @ANYRES16=r2, @ANYRES32=r4], 0x40c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newlink={0x3c, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x283}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x4}]}}}]}, 0x3c}}, 0x0)

0s ago: executing program 41 (id=14246):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac14140f00000000000000001400020002004e2266e092a9f5bdfa97000000000d0001007564703a73797a32000000"], 0x54}}, 0x0)

kernel console output (not intermixed with test programs):

t=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2472.325649][   T37] audit: type=1326 audit(1761522762.996:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8581 comm="syz.2.12945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2472.325689][   T37] audit: type=1326 audit(1761522762.996:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8581 comm="syz.2.12945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2472.325729][   T37] audit: type=1326 audit(1761522762.996:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8581 comm="syz.2.12945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8a8a6dd810 code=0x7ffc0000
[ 2472.325770][   T37] audit: type=1326 audit(1761522762.996:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8581 comm="syz.2.12945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8a8a6dda7f code=0x7ffc0000
[ 2472.361193][   T37] audit: type=1326 audit(1761522763.038:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8581 comm="syz.2.12945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f8a8a6dd9dc code=0x7ffc0000
[ 2472.361243][   T37] audit: type=1326 audit(1761522763.038:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8581 comm="syz.2.12945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8a8a6dda7f code=0x7ffc0000
[ 2472.361282][   T37] audit: type=1326 audit(1761522763.038:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8581 comm="syz.2.12945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8a8a6ddc2a code=0x7ffc0000
[ 2472.676422][ T8594] cgroup: Bad value for 'name'
[ 2473.059551][ T8614] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12958'.
[ 2476.215001][ T8654] FAULT_INJECTION: forcing a failure.
[ 2476.215001][ T8654] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2476.215034][ T8654] CPU: 0 UID: 0 PID: 8654 Comm: syz.9.12971 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2476.215054][ T8654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2476.215065][ T8654] Call Trace:
[ 2476.215073][ T8654]  <TASK>
[ 2476.215081][ T8654]  dump_stack_lvl+0x189/0x250
[ 2476.215109][ T8654]  ? __pfx____ratelimit+0x10/0x10
[ 2476.215132][ T8654]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2476.215156][ T8654]  ? __pfx__printk+0x10/0x10
[ 2476.215177][ T8654]  ? __might_fault+0xb0/0x130
[ 2476.215212][ T8654]  should_fail_ex+0x46c/0x600
[ 2476.215240][ T8654]  _copy_from_user+0x2d/0xb0
[ 2476.215260][ T8654]  video_usercopy+0xa89/0x1450
[ 2476.215287][ T8654]  ? smk_tskacc+0x2fc/0x370
[ 2476.215311][ T8654]  ? __pfx___video_do_ioctl+0x10/0x10
[ 2476.215331][ T8654]  ? __pfx_video_usercopy+0x10/0x10
[ 2476.215349][ T8654]  ? smack_file_ioctl+0x2ac/0x340
[ 2476.215386][ T8654]  ? __fget_files+0x3a6/0x420
[ 2476.215411][ T8654]  v4l2_ioctl+0x190/0x1e0
[ 2476.215432][ T8654]  ? __pfx_v4l2_ioctl+0x10/0x10
[ 2476.215450][ T8654]  __se_sys_ioctl+0xff/0x170
[ 2476.215473][ T8654]  do_syscall_64+0xfa/0xfa0
[ 2476.215491][ T8654]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2476.215510][ T8654]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2476.215529][ T8654]  ? clear_bhb_loop+0x60/0xb0
[ 2476.215550][ T8654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2476.215566][ T8654] RIP: 0033:0x7f790375efc9
[ 2476.215581][ T8654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2476.215596][ T8654] RSP: 002b:00007f79019c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2476.215614][ T8654] RAX: ffffffffffffffda RBX: 00007f79039b5fa0 RCX: 00007f790375efc9
[ 2476.215636][ T8654] RDX: 0000200000000000 RSI: 00000000c0205649 RDI: 0000000000000003
[ 2476.215647][ T8654] RBP: 00007f79019c6090 R08: 0000000000000000 R09: 0000000000000000
[ 2476.215658][ T8654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2476.215669][ T8654] R13: 00007f79039b6038 R14: 00007f79039b5fa0 R15: 00007fff7efc6218
[ 2476.215701][ T8654]  </TASK>
[ 2476.819530][ T8660] bond2: entered allmulticast mode
[ 2476.820107][ T8660] 8021q: adding VLAN 0 to HW filter on device bond2
[ 2479.135979][ T8706] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12991'.
[ 2479.553556][ T8718] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2479.554123][ T8718] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2479.950517][ T8728] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2479.950946][ T8728] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2479.954159][ T8728] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2479.973855][ T8728] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2480.733740][ T8732] openvswitch: netlink: Message has 4 unknown bytes.
[ 2480.734062][ T8734] netlink: 4 bytes leftover after parsing attributes in process `syz.8.13000'.
[ 2480.764747][ T8734] gretap0: entered promiscuous mode
[ 2480.765034][ T8734] macsec1: entered promiscuous mode
[ 2480.765203][ T8734] macsec1: entered allmulticast mode
[ 2480.765217][ T8734] gretap0: entered allmulticast mode
[ 2480.870199][ T8734] gretap0: left allmulticast mode
[ 2480.870526][ T8734] gretap0: left promiscuous mode
[ 2481.051992][ T8725] bridge0: left allmulticast mode
[ 2481.658381][ T8778] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13021'.
[ 2482.398217][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 2482.400922][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 2482.981263][ T8809] FAULT_INJECTION: forcing a failure.
[ 2482.981263][ T8809] name failslab, interval 1, probability 0, space 0, times 0
[ 2482.981296][ T8809] CPU: 0 UID: 0 PID: 8809 Comm: syz.2.13031 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2482.981317][ T8809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2482.981328][ T8809] Call Trace:
[ 2482.981336][ T8809]  <TASK>
[ 2482.981344][ T8809]  dump_stack_lvl+0x189/0x250
[ 2482.981373][ T8809]  ? __pfx____ratelimit+0x10/0x10
[ 2482.981399][ T8809]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2482.981423][ T8809]  ? __pfx__printk+0x10/0x10
[ 2482.981450][ T8809]  ? __pfx___might_resched+0x10/0x10
[ 2482.981469][ T8809]  ? fs_reclaim_acquire+0x7d/0x100
[ 2482.981497][ T8809]  should_fail_ex+0x46c/0x600
[ 2482.981526][ T8809]  should_failslab+0xa8/0x100
[ 2482.981551][ T8809]  __kmalloc_noprof+0xcc/0x7d0
[ 2482.981574][ T8809]  ? tomoyo_encode+0x28b/0x550
[ 2482.981600][ T8809]  tomoyo_encode+0x28b/0x550
[ 2482.981626][ T8809]  tomoyo_realpath_from_path+0x58d/0x5d0
[ 2482.981658][ T8809]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2482.981683][ T8809]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 2482.981710][ T8809]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2482.981740][ T8809]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 2482.981762][ T8809]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2482.981814][ T8809]  ? __fget_files+0x2a/0x420
[ 2482.981842][ T8809]  ? __fget_files+0x3a6/0x420
[ 2482.981863][ T8809]  ? __fget_files+0x2a/0x420
[ 2482.981889][ T8809]  security_file_ioctl+0xcb/0x2d0
[ 2482.981910][ T8809]  __se_sys_ioctl+0x47/0x170
[ 2482.981933][ T8809]  do_syscall_64+0xfa/0xfa0
[ 2482.981953][ T8809]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2482.981974][ T8809]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2482.981991][ T8809]  ? clear_bhb_loop+0x60/0xb0
[ 2482.982013][ T8809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2482.982030][ T8809] RIP: 0033:0x7f8a8a6defc9
[ 2482.982047][ T8809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2482.982062][ T8809] RSP: 002b:00007f8a8893e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2482.982082][ T8809] RAX: ffffffffffffffda RBX: 00007f8a8a935fa0 RCX: 00007f8a8a6defc9
[ 2482.982096][ T8809] RDX: 0000000000000000 RSI: 000000000000560e RDI: 0000000000000004
[ 2482.982108][ T8809] RBP: 00007f8a8893e090 R08: 0000000000000000 R09: 0000000000000000
[ 2482.982120][ T8809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2482.982132][ T8809] R13: 00007f8a8a936038 R14: 00007f8a8a935fa0 R15: 00007ffdfb989ff8
[ 2482.982170][ T8809]  </TASK>
[ 2482.983081][ T8809] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2483.009713][ T8811] tmpfs: Group quota inode hardlimit too large.
[ 2483.128791][ T8814] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[ 2483.355835][ T8821] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13037'.
[ 2484.268649][ T8839] netlink: 4 bytes leftover after parsing attributes in process `syz.8.13046'.
[ 2484.453532][ T8846] netlink: 4 bytes leftover after parsing attributes in process `syz.8.13051'.
[ 2484.497639][ T8850] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2484.500714][ T8846] gretap0: entered promiscuous mode
[ 2484.500834][ T8846] macsec1: entered promiscuous mode
[ 2484.501011][ T8846] macsec1: entered allmulticast mode
[ 2484.501024][ T8846] gretap0: entered allmulticast mode
[ 2484.527592][ T8850] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2484.548807][ T8846] gretap0: left allmulticast mode
[ 2484.549106][ T8846] gretap0: left promiscuous mode
[ 2484.694753][   T37] kauditd_printk_skb: 20 callbacks suppressed
[ 2484.694773][   T37] audit: type=1326 audit(1761522775.984:1552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8841 comm="syz.9.13047" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f790375efc9 code=0x0
[ 2484.729197][ T8859] openvswitch: netlink: Message has 4 unknown bytes.
[ 2485.236790][ T8883] overlayfs: failed to clone upperpath
[ 2486.634170][ T8891] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2486.653042][ T8891] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2486.661186][ T8891] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2486.661621][ T8891] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2486.776843][ T8894] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2486.777303][ T8894] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2491.371077][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2491.493362][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2491.620432][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2491.991871][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2494.062339][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2494.640659][   T37] audit: type=1326 audit(1761522786.430:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8985 comm="syz.2.13099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2494.640718][   T37] audit: type=1326 audit(1761522786.430:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8985 comm="syz.2.13099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2494.640759][   T37] audit: type=1326 audit(1761522786.430:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8985 comm="syz.2.13099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2494.718100][   T37] audit: type=1326 audit(1761522786.504:1556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8985 comm="syz.2.13099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2494.718695][   T37] audit: type=1326 audit(1761522786.514:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8985 comm="syz.2.13099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2494.718740][   T37] audit: type=1326 audit(1761522786.514:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8985 comm="syz.2.13099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8a8a6dd810 code=0x7ffc0000
[ 2494.720998][   T37] audit: type=1326 audit(1761522786.514:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8985 comm="syz.2.13099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2494.725001][   T37] audit: type=1326 audit(1761522786.514:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8985 comm="syz.2.13099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2494.725051][   T37] audit: type=1326 audit(1761522786.514:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8985 comm="syz.2.13099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2494.725893][   T37] audit: type=1326 audit(1761522786.514:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8985 comm="syz.2.13099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a8a6defc9 code=0x7ffc0000
[ 2495.418380][ T9003] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2495.418864][ T9003] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2497.036577][ T9027] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2497.038159][ T9027] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2497.970002][ T9047] openvswitch: netlink: Message has 4 unknown bytes.
[ 2498.281290][ T9062] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13132'.
[ 2500.396573][ T9089] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13143'.
[ 2500.400631][ T9091] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2500.401068][ T9091] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2501.567614][ T9118] FAULT_INJECTION: forcing a failure.
[ 2501.567614][ T9118] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2501.567648][ T9118] CPU: 0 UID: 0 PID: 9118 Comm: syz.5.13152 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2501.567670][ T9118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2501.567680][ T9118] Call Trace:
[ 2501.567688][ T9118]  <TASK>
[ 2501.567697][ T9118]  dump_stack_lvl+0x189/0x250
[ 2501.567729][ T9118]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2501.567754][ T9118]  ? __pfx__printk+0x10/0x10
[ 2501.567788][ T9118]  should_fail_ex+0x46c/0x600
[ 2501.567818][ T9118]  _copy_from_user+0x2d/0xb0
[ 2501.567839][ T9118]  ___sys_sendmsg+0x158/0x2a0
[ 2501.567863][ T9118]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2501.567920][ T9118]  ? __fget_files+0x2a/0x420
[ 2501.567942][ T9118]  ? __fget_files+0x3a6/0x420
[ 2501.567976][ T9118]  __x64_sys_sendmsg+0x1a1/0x260
[ 2501.568005][ T9118]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 2501.568036][ T9118]  ? __pfx_ksys_write+0x10/0x10
[ 2501.568061][ T9118]  ? do_syscall_64+0xbe/0xfa0
[ 2501.568087][ T9118]  do_syscall_64+0xfa/0xfa0
[ 2501.568106][ T9118]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2501.568127][ T9118]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2501.568145][ T9118]  ? clear_bhb_loop+0x60/0xb0
[ 2501.568167][ T9118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2501.568185][ T9118] RIP: 0033:0x7f7fe1f7efc9
[ 2501.568202][ T9118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2501.568218][ T9118] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2501.568238][ T9118] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2501.568252][ T9118] RDX: 0000000020000000 RSI: 0000200000000740 RDI: 0000000000000003
[ 2501.568264][ T9118] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2501.568277][ T9118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2501.568288][ T9118] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2501.568321][ T9118]  </TASK>
[ 2503.556674][   T37] kauditd_printk_skb: 29 callbacks suppressed
[ 2503.556694][   T37] audit: type=1326 audit(1761522795.764:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9127 comm="syz.2.13156" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8a8a6defc9 code=0x0
[ 2503.766405][   T10] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[ 2503.923930][   T10] usb 6-1: config 0 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 0
[ 2503.923947][   T10] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2503.923977][   T10] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 4
[ 2503.926511][   T10] usb 6-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00
[ 2503.926529][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2503.926539][   T10] usb 6-1: Product: syz
[ 2503.926547][   T10] usb 6-1: Manufacturer: syz
[ 2503.926555][   T10] usb 6-1: SerialNumber: syz
[ 2503.997742][   T10] usb 6-1: config 0 descriptor??
[ 2504.019257][   T10] usb-storage 6-1:0.0: USB Mass Storage device detected
[ 2504.032115][   T10] usb-storage 6-1:0.0: Quirks match for vid 1908 pid 1315: 20000
[ 2504.204646][   T10] usb 6-1: USB disconnect, device number 19
[ 2504.840708][ T9172] syz.9.13166(9172): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[ 2505.677714][ T9189] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13171'.
[ 2510.021376][ T9247] FAULT_INJECTION: forcing a failure.
[ 2510.021376][ T9247] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2510.021409][ T9247] CPU: 1 UID: 0 PID: 9247 Comm: syz.5.13194 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2510.021431][ T9247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2510.021443][ T9247] Call Trace:
[ 2510.021451][ T9247]  <TASK>
[ 2510.021460][ T9247]  dump_stack_lvl+0x189/0x250
[ 2510.021489][ T9247]  ? __pfx____ratelimit+0x10/0x10
[ 2510.021512][ T9247]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2510.021536][ T9247]  ? __pfx__printk+0x10/0x10
[ 2510.021571][ T9247]  should_fail_ex+0x46c/0x600
[ 2510.021599][ T9247]  _copy_to_user+0x31/0xb0
[ 2510.021628][ T9247]  video_usercopy+0xd16/0x1450
[ 2510.021661][ T9247]  ? __pfx___video_do_ioctl+0x10/0x10
[ 2510.021683][ T9247]  ? __pfx_video_usercopy+0x10/0x10
[ 2510.021702][ T9247]  ? smack_file_ioctl+0x2ac/0x340
[ 2510.021743][ T9247]  ? __fget_files+0x3a6/0x420
[ 2510.021770][ T9247]  v4l2_ioctl+0x190/0x1e0
[ 2510.021792][ T9247]  ? __pfx_v4l2_ioctl+0x10/0x10
[ 2510.021813][ T9247]  __se_sys_ioctl+0xff/0x170
[ 2510.021835][ T9247]  do_syscall_64+0xfa/0xfa0
[ 2510.021855][ T9247]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2510.021875][ T9247]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2510.021893][ T9247]  ? clear_bhb_loop+0x60/0xb0
[ 2510.021913][ T9247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2510.021930][ T9247] RIP: 0033:0x7f7fe1f7efc9
[ 2510.021947][ T9247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2510.021962][ T9247] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2510.021982][ T9247] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2510.021996][ T9247] RDX: 0000200000000000 RSI: 00000000c0205649 RDI: 0000000000000003
[ 2510.022008][ T9247] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2510.022020][ T9247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2510.022031][ T9247] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2510.022063][ T9247]  </TASK>
[ 2510.748852][   T37] audit: type=1326 audit(1761522803.344:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9250 comm="syz.8.13197" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f78c3ffefc9 code=0x0
[ 2511.047445][ T9275] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13205'.
[ 2511.047468][ T9275] netlink: 20 bytes leftover after parsing attributes in process `syz.2.13205'.
[ 2512.012131][ T9306] FAULT_INJECTION: forcing a failure.
[ 2512.012131][ T9306] name failslab, interval 1, probability 0, space 0, times 0
[ 2512.012164][ T9306] CPU: 0 UID: 0 PID: 9306 Comm: syz.5.13216 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2512.012186][ T9306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2512.012197][ T9306] Call Trace:
[ 2512.012205][ T9306]  <TASK>
[ 2512.012214][ T9306]  dump_stack_lvl+0x189/0x250
[ 2512.012244][ T9306]  ? __pfx____ratelimit+0x10/0x10
[ 2512.012266][ T9306]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2512.012289][ T9306]  ? __pfx__printk+0x10/0x10
[ 2512.012323][ T9306]  ? __pfx___might_resched+0x10/0x10
[ 2512.012347][ T9306]  should_fail_ex+0x46c/0x600
[ 2512.012374][ T9306]  ? __d_alloc+0x36/0x7b0
[ 2512.012391][ T9306]  should_failslab+0xa8/0x100
[ 2512.012415][ T9306]  ? __d_alloc+0x36/0x7b0
[ 2512.012429][ T9306]  kmem_cache_alloc_lru_noprof+0x74/0x6b0
[ 2512.012451][ T9306]  ? rtlock_slowlock_locked+0xd8/0x4010
[ 2512.012480][ T9306]  __d_alloc+0x36/0x7b0
[ 2512.012503][ T9306]  d_alloc_parallel+0xe1/0x1610
[ 2512.012531][ T9306]  ? smack_log+0xef/0x3f0
[ 2512.012556][ T9306]  ? __pfx_smack_log+0x10/0x10
[ 2512.012577][ T9306]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2512.012597][ T9306]  ? smk_access+0x14c/0x4e0
[ 2512.012621][ T9306]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 2512.012646][ T9306]  ? __rt_spin_lock_init+0x3e/0x50
[ 2512.012668][ T9306]  ? __init_waitqueue_head+0xae/0x160
[ 2512.012694][ T9306]  __lookup_slow+0x11c/0x3d0
[ 2512.012716][ T9306]  ? __pfx___lookup_slow+0x10/0x10
[ 2512.012750][ T9306]  ? down_read+0x181/0x1f0
[ 2512.012771][ T9306]  ? __pfx_down_read+0x10/0x10
[ 2512.012799][ T9306]  ? lookup_fast+0x192/0x5b0
[ 2512.012828][ T9306]  lookup_slow+0x53/0x70
[ 2512.012847][ T9306]  walk_component+0x2d2/0x400
[ 2512.012869][ T9306]  ? path_lookupat+0x156/0x430
[ 2512.012888][ T9306]  path_lookupat+0x163/0x430
[ 2512.012913][ T9306]  filename_lookup+0x212/0x570
[ 2512.012937][ T9306]  ? __pfx_filename_lookup+0x10/0x10
[ 2512.012982][ T9306]  ? strncpy_from_user+0x150/0x290
[ 2512.013008][ T9306]  ? getname_flags+0x1e5/0x540
[ 2512.013036][ T9306]  user_path_at+0x3a/0x60
[ 2512.013056][ T9306]  __se_sys_pivot_root+0x17e/0xbf0
[ 2512.013091][ T9306]  ? __pfx___se_sys_pivot_root+0x10/0x10
[ 2512.013116][ T9306]  ? fput+0xa0/0xd0
[ 2512.013134][ T9306]  ? ksys_write+0x230/0x260
[ 2512.013158][ T9306]  ? __pfx_ksys_write+0x10/0x10
[ 2512.013183][ T9306]  ? do_syscall_64+0xbe/0xfa0
[ 2512.013209][ T9306]  do_syscall_64+0xfa/0xfa0
[ 2512.013229][ T9306]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2512.013251][ T9306]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2512.013269][ T9306]  ? clear_bhb_loop+0x60/0xb0
[ 2512.013291][ T9306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2512.013315][ T9306] RIP: 0033:0x7f7fe1f7efc9
[ 2512.013331][ T9306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2512.013347][ T9306] RSP: 002b:00007f7fe01a4038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[ 2512.013367][ T9306] RAX: ffffffffffffffda RBX: 00007f7fe21d6180 RCX: 00007f7fe1f7efc9
[ 2512.013381][ T9306] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000001c0
[ 2512.013394][ T9306] RBP: 00007f7fe01a4090 R08: 0000000000000000 R09: 0000000000000000
[ 2512.013405][ T9306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2512.013416][ T9306] R13: 00007f7fe21d6218 R14: 00007f7fe21d6180 R15: 00007ffcb8acbca8
[ 2512.013449][ T9306]  </TASK>
[ 2513.670139][ T9341] FAULT_INJECTION: forcing a failure.
[ 2513.670139][ T9341] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2513.670173][ T9341] CPU: 1 UID: 0 PID: 9341 Comm: syz.9.13230 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2513.670194][ T9341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2513.670206][ T9341] Call Trace:
[ 2513.670213][ T9341]  <TASK>
[ 2513.670221][ T9341]  dump_stack_lvl+0x189/0x250
[ 2513.670249][ T9341]  ? __pfx____ratelimit+0x10/0x10
[ 2513.670270][ T9341]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2513.670295][ T9341]  ? __pfx__printk+0x10/0x10
[ 2513.670315][ T9341]  ? __might_fault+0xb0/0x130
[ 2513.670349][ T9341]  should_fail_ex+0x46c/0x600
[ 2513.670386][ T9341]  _copy_from_user+0x2d/0xb0
[ 2513.670407][ T9341]  ucma_write+0x161/0x2f0
[ 2513.670434][ T9341]  ? __pfx_ucma_write+0x10/0x10
[ 2513.670460][ T9341]  ? rw_verify_area+0x25b/0x4e0
[ 2513.670480][ T9341]  ? __lock_acquire+0xab9/0xd20
[ 2513.670501][ T9341]  ? __pfx_ucma_write+0x10/0x10
[ 2513.670525][ T9341]  vfs_write+0x287/0xb40
[ 2513.670555][ T9341]  ? __pfx_vfs_write+0x10/0x10
[ 2513.670578][ T9341]  ? __fget_files+0x2a/0x420
[ 2513.670606][ T9341]  ? __fget_files+0x2a/0x420
[ 2513.670627][ T9341]  ? __fget_files+0x3a6/0x420
[ 2513.670648][ T9341]  ? __fget_files+0x2a/0x420
[ 2513.670680][ T9341]  ksys_write+0x14b/0x260
[ 2513.670704][ T9341]  ? __pfx_ksys_write+0x10/0x10
[ 2513.670730][ T9341]  ? do_syscall_64+0xbe/0xfa0
[ 2513.670756][ T9341]  do_syscall_64+0xfa/0xfa0
[ 2513.670780][ T9341]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2513.670802][ T9341]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2513.670821][ T9341]  ? clear_bhb_loop+0x60/0xb0
[ 2513.670843][ T9341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2513.670861][ T9341] RIP: 0033:0x7f790375efc9
[ 2513.670878][ T9341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2513.670895][ T9341] RSP: 002b:00007f79019c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2513.670916][ T9341] RAX: ffffffffffffffda RBX: 00007f79039b5fa0 RCX: 00007f790375efc9
[ 2513.670931][ T9341] RDX: 0000000000000030 RSI: 0000200000000800 RDI: 0000000000000003
[ 2513.670943][ T9341] RBP: 00007f79019c6090 R08: 0000000000000000 R09: 0000000000000000
[ 2513.670956][ T9341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2513.670968][ T9341] R13: 00007f79039b6038 R14: 00007f79039b5fa0 R15: 00007fff7efc6218
[ 2513.671001][ T9341]  </TASK>
[ 2515.326987][ T9371] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2515.327598][ T9371] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2515.334326][ T9370] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2515.335899][ T9370] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2515.337269][ T9361] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2515.337651][ T9361] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2515.524115][ T6360] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[ 2515.544978][ T9361] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2515.552210][ T9361] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2515.877818][ T9361] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2515.878227][ T9361] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2516.071085][ T9361] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2516.071498][ T9361] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2516.174571][ T9361] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2516.175130][ T9361] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2518.013188][ T9387] overlayfs: failed to resolve './file1': -2
[ 2523.203154][ T9415] FAULT_INJECTION: forcing a failure.
[ 2523.203154][ T9415] name failslab, interval 1, probability 0, space 0, times 0
[ 2523.203187][ T9415] CPU: 1 UID: 0 PID: 9415 Comm: syz.5.13255 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2523.203208][ T9415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2523.203219][ T9415] Call Trace:
[ 2523.203227][ T9415]  <TASK>
[ 2523.203236][ T9415]  dump_stack_lvl+0x189/0x250
[ 2523.203266][ T9415]  ? __pfx____ratelimit+0x10/0x10
[ 2523.203288][ T9415]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2523.203312][ T9415]  ? __pfx__printk+0x10/0x10
[ 2523.203339][ T9415]  ? __pfx___might_resched+0x10/0x10
[ 2523.203356][ T9415]  ? fs_reclaim_acquire+0x7d/0x100
[ 2523.203385][ T9415]  should_fail_ex+0x46c/0x600
[ 2523.203412][ T9415]  ? security_file_alloc+0x34/0x330
[ 2523.203430][ T9415]  should_failslab+0xa8/0x100
[ 2523.203453][ T9415]  ? security_file_alloc+0x34/0x330
[ 2523.203467][ T9415]  kmem_cache_alloc_noprof+0x6f/0x6b0
[ 2523.203495][ T9415]  security_file_alloc+0x34/0x330
[ 2523.203514][ T9415]  init_file+0x99/0x320
[ 2523.203534][ T9415]  alloc_empty_file+0x6e/0x1d0
[ 2523.203550][ T9415]  dentry_open+0x44/0xa0
[ 2523.203568][ T9415]  __se_sys_fsmount+0x685/0x880
[ 2523.203599][ T9415]  ? __pfx___se_sys_fsmount+0x10/0x10
[ 2523.203632][ T9415]  do_syscall_64+0xfa/0xfa0
[ 2523.203653][ T9415]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2523.203674][ T9415]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2523.203692][ T9415]  ? clear_bhb_loop+0x60/0xb0
[ 2523.203714][ T9415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2523.203732][ T9415] RIP: 0033:0x7f7fe1f7efc9
[ 2523.203748][ T9415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2523.203762][ T9415] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b0
[ 2523.203782][ T9415] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2523.203802][ T9415] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[ 2523.203814][ T9415] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2523.203826][ T9415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2523.203836][ T9415] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2523.203868][ T9415]  </TASK>
[ 2523.212804][ T9418] netlink: 24 bytes leftover after parsing attributes in process `syz.8.13257'.
[ 2523.280705][ T9423] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13254'.
[ 2524.387416][ T9434] netlink: 12 bytes leftover after parsing attributes in process `syz.9.13259'.
[ 2524.387432][ T9434] netlink: 20 bytes leftover after parsing attributes in process `syz.9.13259'.
[ 2524.881926][ T9441] netlink: 4 bytes leftover after parsing attributes in process `syz.6.13263'.
[ 2527.445609][ T9482] FAULT_INJECTION: forcing a failure.
[ 2527.445609][ T9482] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2527.445641][ T9482] CPU: 1 UID: 0 PID: 9482 Comm: syz.9.13278 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2527.445662][ T9482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2527.445673][ T9482] Call Trace:
[ 2527.445681][ T9482]  <TASK>
[ 2527.445689][ T9482]  dump_stack_lvl+0x189/0x250
[ 2527.445718][ T9482]  ? __pfx____ratelimit+0x10/0x10
[ 2527.445740][ T9482]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2527.445763][ T9482]  ? __pfx__printk+0x10/0x10
[ 2527.445799][ T9482]  should_fail_ex+0x46c/0x600
[ 2527.445826][ T9482]  _copy_to_user+0x31/0xb0
[ 2527.445847][ T9482]  simple_read_from_buffer+0xe1/0x170
[ 2527.445875][ T9482]  proc_fail_nth_read+0x1b6/0x220
[ 2527.445897][ T9482]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2527.445919][ T9482]  ? rw_verify_area+0x2ac/0x4e0
[ 2527.445940][ T9482]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2527.445961][ T9482]  vfs_read+0x206/0xa30
[ 2527.445991][ T9482]  ? __pfx_vfs_read+0x10/0x10
[ 2527.446008][ T9482]  ? try_to_take_rt_mutex+0x7fd/0xac0
[ 2527.446036][ T9482]  ? mutex_lock_nested+0x154/0x1d0
[ 2527.446052][ T9482]  ? fdget_pos+0x253/0x320
[ 2527.446083][ T9482]  ksys_read+0x14b/0x260
[ 2527.446106][ T9482]  ? __pfx_ksys_read+0x10/0x10
[ 2527.446131][ T9482]  ? do_syscall_64+0xbe/0xfa0
[ 2527.446156][ T9482]  do_syscall_64+0xfa/0xfa0
[ 2527.446173][ T9482]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2527.446194][ T9482]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2527.446211][ T9482]  ? clear_bhb_loop+0x60/0xb0
[ 2527.446231][ T9482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2527.446249][ T9482] RIP: 0033:0x7f790375d9dc
[ 2527.446275][ T9482] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 2527.446289][ T9482] RSP: 002b:00007f79019c6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2527.446309][ T9482] RAX: ffffffffffffffda RBX: 00007f79039b5fa0 RCX: 00007f790375d9dc
[ 2527.446322][ T9482] RDX: 000000000000000f RSI: 00007f79019c60a0 RDI: 0000000000000003
[ 2527.446334][ T9482] RBP: 00007f79019c6090 R08: 0000000000000000 R09: 0000000000000008
[ 2527.446345][ T9482] R10: 0000200000000880 R11: 0000000000000246 R12: 0000000000000001
[ 2527.446357][ T9482] R13: 00007f79039b6038 R14: 00007f79039b5fa0 R15: 00007fff7efc6218
[ 2527.446389][ T9482]  </TASK>
[ 2528.260812][  T923] hid_parser_main: 1 callbacks suppressed
[ 2528.260832][  T923] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[ 2528.260861][  T923] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[ 2528.260886][  T923] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[ 2528.260911][  T923] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[ 2528.260936][  T923] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[ 2528.260960][  T923] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[ 2528.260985][  T923] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[ 2528.261010][  T923] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[ 2528.261035][  T923] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[ 2528.261061][  T923] hid-generic 00A0:0006:0003.0020: unknown main item tag 0x0
[ 2528.368618][  T923] hid-generic 00A0:0006:0003.0020: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[ 2529.407838][ T9510] FAULT_INJECTION: forcing a failure.
[ 2529.407838][ T9510] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2529.407870][ T9510] CPU: 1 UID: 0 PID: 9510 Comm: syz.5.13289 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2529.407891][ T9510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2529.407902][ T9510] Call Trace:
[ 2529.407909][ T9510]  <TASK>
[ 2529.407917][ T9510]  dump_stack_lvl+0x189/0x250
[ 2529.407946][ T9510]  ? __pfx____ratelimit+0x10/0x10
[ 2529.407967][ T9510]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2529.407990][ T9510]  ? __pfx__printk+0x10/0x10
[ 2529.408011][ T9510]  ? __might_fault+0xb0/0x130
[ 2529.408045][ T9510]  should_fail_ex+0x46c/0x600
[ 2529.408074][ T9510]  _copy_from_iter+0x1de/0x1790
[ 2529.408116][ T9510]  ? __pfx__copy_from_iter+0x10/0x10
[ 2529.408151][ T9510]  ? rcu_is_watching+0x15/0xb0
[ 2529.408170][ T9510]  ? trace_kmalloc+0x1f/0xd0
[ 2529.408189][ T9510]  ? __kmalloc_noprof+0x254/0x7d0
[ 2529.408208][ T9510]  ? rcu_read_lock_any_held+0xb3/0x120
[ 2529.408226][ T9510]  ? kernfs_fop_write_iter+0x159/0x540
[ 2529.408246][ T9510]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 2529.408270][ T9510]  kernfs_fop_write_iter+0x19c/0x540
[ 2529.408300][ T9510]  vfs_write+0x5d5/0xb40
[ 2529.408327][ T9510]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 2529.408351][ T9510]  ? __pfx_vfs_write+0x10/0x10
[ 2529.408368][ T9510]  ? try_to_take_rt_mutex+0x7fd/0xac0
[ 2529.408396][ T9510]  ? mutex_lock_nested+0x154/0x1d0
[ 2529.408413][ T9510]  ? fdget_pos+0x253/0x320
[ 2529.408444][ T9510]  ksys_write+0x14b/0x260
[ 2529.408468][ T9510]  ? __pfx_ksys_write+0x10/0x10
[ 2529.408492][ T9510]  ? do_syscall_64+0xbe/0xfa0
[ 2529.408518][ T9510]  do_syscall_64+0xfa/0xfa0
[ 2529.408537][ T9510]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2529.408558][ T9510]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2529.408576][ T9510]  ? clear_bhb_loop+0x60/0xb0
[ 2529.408598][ T9510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2529.408616][ T9510] RIP: 0033:0x7f7fe1f7efc9
[ 2529.408632][ T9510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2529.408647][ T9510] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2529.408667][ T9510] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2529.408681][ T9510] RDX: 0000000000000012 RSI: 0000200000000040 RDI: 0000000000000003
[ 2529.408692][ T9510] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2529.408704][ T9510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2529.408715][ T9510] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2529.408748][ T9510]  </TASK>
[ 2529.696880][ T9518] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2529.697313][ T9518] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2532.279307][ T9569] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2532.279559][ T9569] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2532.825608][ T9576] bridge5: the hash_elasticity option has been deprecated and is always 16
[ 2535.390212][ T9632] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2535.390454][ T9632] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2537.977734][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2538.170167][ T9680] FAULT_INJECTION: forcing a failure.
[ 2538.170167][ T9680] name failslab, interval 1, probability 0, space 0, times 0
[ 2538.170189][ T9680] CPU: 1 UID: 0 PID: 9680 Comm: syz.5.13357 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2538.170202][ T9680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2538.170209][ T9680] Call Trace:
[ 2538.170213][ T9680]  <TASK>
[ 2538.170218][ T9680]  dump_stack_lvl+0x189/0x250
[ 2538.170237][ T9680]  ? __pfx____ratelimit+0x10/0x10
[ 2538.170251][ T9680]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2538.170265][ T9680]  ? __pfx__printk+0x10/0x10
[ 2538.170281][ T9680]  ? __pfx___might_resched+0x10/0x10
[ 2538.170292][ T9680]  ? fs_reclaim_acquire+0x7d/0x100
[ 2538.170309][ T9680]  should_fail_ex+0x46c/0x600
[ 2538.170326][ T9680]  ? getname_kernel+0x5a/0x2f0
[ 2538.170340][ T9680]  should_failslab+0xa8/0x100
[ 2538.170354][ T9680]  ? getname_kernel+0x5a/0x2f0
[ 2538.170381][ T9680]  kmem_cache_alloc_noprof+0x6f/0x6b0
[ 2538.170399][ T9680]  getname_kernel+0x5a/0x2f0
[ 2538.170415][ T9680]  kern_path+0x1d/0x50
[ 2538.170425][ T9680]  lookup_bdev+0xc0/0x280
[ 2538.170439][ T9680]  ? rcu_is_watching+0x15/0xb0
[ 2538.170450][ T9680]  ? __pfx_lookup_bdev+0x10/0x10
[ 2538.170462][ T9680]  ? kstrndup+0xbf/0x160
[ 2538.170480][ T9680]  resume_store+0x169/0x460
[ 2538.170490][ T9680]  ? sysfs_file_kobj+0x1a/0x230
[ 2538.170506][ T9680]  ? __pfx_resume_store+0x10/0x10
[ 2538.170518][ T9680]  ? sysfs_file_kobj+0x1a/0x230
[ 2538.170530][ T9680]  ? sysfs_file_kobj+0x1a/0x230
[ 2538.170548][ T9680]  ? sysfs_file_kobj+0x1a/0x230
[ 2538.170562][ T9680]  ? sysfs_file_kobj+0x1e4/0x230
[ 2538.170576][ T9680]  ? sysfs_kf_write+0x166/0x260
[ 2538.170587][ T9680]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 2538.170595][ T9680]  kernfs_fop_write_iter+0x3b0/0x540
[ 2538.170613][ T9680]  vfs_write+0x5d5/0xb40
[ 2538.170628][ T9680]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 2538.170641][ T9680]  ? __pfx_vfs_write+0x10/0x10
[ 2538.170659][ T9680]  ? do_sys_openat2+0x154/0x1c0
[ 2538.170674][ T9680]  ksys_write+0x14b/0x260
[ 2538.170687][ T9680]  ? __pfx_ksys_write+0x10/0x10
[ 2538.170701][ T9680]  ? do_syscall_64+0xbe/0xfa0
[ 2538.170716][ T9680]  do_syscall_64+0xfa/0xfa0
[ 2538.170727][ T9680]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2538.170742][ T9680]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2538.170758][ T9680]  ? clear_bhb_loop+0x60/0xb0
[ 2538.170778][ T9680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2538.170793][ T9680] RIP: 0033:0x7f7fe1f7efc9
[ 2538.170809][ T9680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2538.170823][ T9680] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2538.170841][ T9680] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2538.170853][ T9680] RDX: 0000000000000012 RSI: 0000200000000040 RDI: 0000000000000003
[ 2538.170863][ T9680] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2538.170874][ T9680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2538.170884][ T9680] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2538.170912][ T9680]  </TASK>
[ 2538.518133][ T9682] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13358'.
[ 2538.578028][ T9683] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2538.591245][ T9683] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2538.812131][ T9682] netlink: 20 bytes leftover after parsing attributes in process `syz.2.13358'.
[ 2540.847625][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 2540.847693][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 2598.405038][ T9722] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13375'.
[ 2599.352422][ T9750] netlink: 76 bytes leftover after parsing attributes in process `syz.6.13385'.
[ 2599.371635][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 2599.371677][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 2600.763547][ T9791] FAULT_INJECTION: forcing a failure.
[ 2600.763547][ T9791] name failslab, interval 1, probability 0, space 0, times 0
[ 2600.763579][ T9791] CPU: 0 UID: 0 PID: 9791 Comm: syz.5.13405 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2600.763600][ T9791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2600.763612][ T9791] Call Trace:
[ 2600.763620][ T9791]  <TASK>
[ 2600.763629][ T9791]  dump_stack_lvl+0x189/0x250
[ 2600.763658][ T9791]  ? __pfx____ratelimit+0x10/0x10
[ 2600.763688][ T9791]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2600.763711][ T9791]  ? __pfx__printk+0x10/0x10
[ 2600.763738][ T9791]  ? __pfx___might_resched+0x10/0x10
[ 2600.763763][ T9791]  should_fail_ex+0x46c/0x600
[ 2600.763791][ T9791]  ? getname_flags+0xb8/0x540
[ 2600.763814][ T9791]  should_failslab+0xa8/0x100
[ 2600.763838][ T9791]  ? getname_flags+0xb8/0x540
[ 2600.763858][ T9791]  kmem_cache_alloc_noprof+0x6f/0x6b0
[ 2600.763883][ T9791]  ? ksys_write+0x230/0x260
[ 2600.763908][ T9791]  getname_flags+0xb8/0x540
[ 2600.763936][ T9791]  __x64_sys_execveat+0xad/0xe0
[ 2600.763961][ T9791]  do_syscall_64+0xfa/0xfa0
[ 2600.763981][ T9791]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2600.764002][ T9791]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2600.764021][ T9791]  ? clear_bhb_loop+0x60/0xb0
[ 2600.764043][ T9791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2600.764061][ T9791] RIP: 0033:0x7f7fe1f7efc9
[ 2600.764078][ T9791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2600.764093][ T9791] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[ 2600.764113][ T9791] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2600.764128][ T9791] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2600.764139][ T9791] RBP: 00007f7fe01e6090 R08: 0000000000001000 R09: 0000000000000000
[ 2600.764151][ T9791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2600.764162][ T9791] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2600.764195][ T9791]  </TASK>
[ 2601.738986][ T9819] FAULT_INJECTION: forcing a failure.
[ 2601.738986][ T9819] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2601.739018][ T9819] CPU: 1 UID: 0 PID: 9819 Comm: syz.9.13417 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2601.739037][ T9819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2601.739047][ T9819] Call Trace:
[ 2601.739055][ T9819]  <TASK>
[ 2601.739063][ T9819]  dump_stack_lvl+0x189/0x250
[ 2601.739084][ T9819]  ? __pfx____ratelimit+0x10/0x10
[ 2601.739097][ T9819]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2601.739111][ T9819]  ? __pfx__printk+0x10/0x10
[ 2601.739129][ T9819]  should_fail_ex+0x46c/0x600
[ 2601.739147][ T9819]  _copy_to_user+0x31/0xb0
[ 2601.739158][ T9819]  ? __pfx_virtio_read+0x10/0x10
[ 2601.739172][ T9819]  rng_dev_read+0x3ef/0x760
[ 2601.739188][ T9819]  ? __pfx_rng_dev_read+0x10/0x10
[ 2601.739206][ T9819]  ? rw_verify_area+0x2ac/0x4e0
[ 2601.739220][ T9819]  vfs_readv+0x5b3/0x850
[ 2601.739235][ T9819]  ? __pfx_rng_dev_read+0x10/0x10
[ 2601.739249][ T9819]  ? __pfx_vfs_readv+0x10/0x10
[ 2601.739271][ T9819]  ? __fget_files+0x2a/0x420
[ 2601.739295][ T9819]  ? __fget_files+0x3a6/0x420
[ 2601.739307][ T9819]  ? __fget_files+0x2a/0x420
[ 2601.739324][ T9819]  __x64_sys_preadv+0x19a/0x2a0
[ 2601.739339][ T9819]  ? __pfx___x64_sys_preadv+0x10/0x10
[ 2601.739353][ T9819]  ? do_syscall_64+0xbe/0xfa0
[ 2601.739369][ T9819]  do_syscall_64+0xfa/0xfa0
[ 2601.739380][ T9819]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2601.739392][ T9819]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2601.739401][ T9819]  ? clear_bhb_loop+0x60/0xb0
[ 2601.739416][ T9819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2601.739426][ T9819] RIP: 0033:0x7f790375efc9
[ 2601.739435][ T9819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2601.739444][ T9819] RSP: 002b:00007f79019c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2601.739456][ T9819] RAX: ffffffffffffffda RBX: 00007f79039b5fa0 RCX: 00007f790375efc9
[ 2601.739463][ T9819] RDX: 100000000000009c RSI: 0000200000000240 RDI: 0000000000000003
[ 2601.739470][ T9819] RBP: 00007f79019c6090 R08: 0000000000000007 R09: 0000000000000000
[ 2601.739476][ T9819] R10: 00000000effffffd R11: 0000000000000246 R12: 0000000000000001
[ 2601.739483][ T9819] R13: 00007f79039b6038 R14: 00007f79039b5fa0 R15: 00007fff7efc6218
[ 2601.739500][ T9819]  </TASK>
[ 2601.901904][ T9783] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2601.902525][ T9783] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2602.148505][ T9824] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2602.148774][ T9824] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2603.598017][ T9839] netlink: 'syz.6.13425': attribute type 29 has an invalid length.
[ 2603.598948][ T9839] netlink: 'syz.6.13425': attribute type 29 has an invalid length.
[ 2603.600932][ T9839] netlink: 500 bytes leftover after parsing attributes in process `syz.6.13425'.
[ 2603.601792][ T9839] unsupported nla_type 58
[ 2606.649059][ T9913] overlayfs: failed to clone upperpath
[ 2611.412009][T10024] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2611.412553][T10024] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2611.575615][T10032] FAULT_INJECTION: forcing a failure.
[ 2611.575615][T10032] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2611.575714][T10032] CPU: 0 UID: 0 PID: 10032 Comm: syz.2.13504 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2611.575736][T10032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2611.575747][T10032] Call Trace:
[ 2611.575755][T10032]  <TASK>
[ 2611.575763][T10032]  dump_stack_lvl+0x189/0x250
[ 2611.575793][T10032]  ? __pfx____ratelimit+0x10/0x10
[ 2611.575816][T10032]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2611.575841][T10032]  ? __pfx__printk+0x10/0x10
[ 2611.575863][T10032]  ? __might_fault+0xb0/0x130
[ 2611.575905][T10032]  should_fail_ex+0x46c/0x600
[ 2611.575935][T10032]  _copy_from_iter+0x1de/0x1790
[ 2611.575966][T10032]  ? kmalloc_reserve+0xbd/0x290
[ 2611.575984][T10032]  ? rcu_is_watching+0x15/0xb0
[ 2611.576005][T10032]  ? kmalloc_reserve+0xbd/0x290
[ 2611.576021][T10032]  ? __alloc_skb+0x112/0x2d0
[ 2611.576039][T10032]  ? __pfx__copy_from_iter+0x10/0x10
[ 2611.576066][T10032]  ? __build_skb_around+0x262/0x3f0
[ 2611.576088][T10032]  ? netlink_sendmsg+0x642/0xb30
[ 2611.576106][T10032]  ? skb_put+0x11b/0x210
[ 2611.576129][T10032]  netlink_sendmsg+0x6b2/0xb30
[ 2611.576146][T10032]  ? is_bpf_text_address+0x26/0x2b0
[ 2611.576180][T10032]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2611.576207][T10032]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 2611.576230][T10032]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2611.576249][T10032]  __sock_sendmsg+0x21c/0x270
[ 2611.576277][T10032]  ____sys_sendmsg+0x508/0x820
[ 2611.576303][T10032]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2611.576333][T10032]  ? import_iovec+0x74/0xa0
[ 2611.576356][T10032]  ___sys_sendmsg+0x21f/0x2a0
[ 2611.576378][T10032]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2611.576435][T10032]  ? __fget_files+0x2a/0x420
[ 2611.576459][T10032]  ? __fget_files+0x3a6/0x420
[ 2611.576492][T10032]  __x64_sys_sendmsg+0x1a1/0x260
[ 2611.576516][T10032]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 2611.576547][T10032]  ? __pfx_ksys_write+0x10/0x10
[ 2611.576573][T10032]  ? do_syscall_64+0xbe/0xfa0
[ 2611.576598][T10032]  do_syscall_64+0xfa/0xfa0
[ 2611.576620][T10032]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2611.576638][T10032]  ? asm_sysvec_call_function_single+0x1a/0x20
[ 2611.576655][T10032]  ? clear_bhb_loop+0x60/0xb0
[ 2611.576676][T10032]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2611.576694][T10032] RIP: 0033:0x7f8a8a6defc9
[ 2611.576711][T10032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2611.576726][T10032] RSP: 002b:00007f8a888fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2611.576745][T10032] RAX: ffffffffffffffda RBX: 00007f8a8a936180 RCX: 00007f8a8a6defc9
[ 2611.576759][T10032] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[ 2611.576771][T10032] RBP: 00007f8a888fc090 R08: 0000000000000000 R09: 0000000000000000
[ 2611.576782][T10032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2611.576793][T10032] R13: 00007f8a8a936218 R14: 00007f8a8a936180 R15: 00007ffdfb989ff8
[ 2611.576826][T10032]  </TASK>
[ 2612.755614][T10050] bridge5: the hash_elasticity option has been deprecated and is always 16
[ 2613.275453][T10089] FAULT_INJECTION: forcing a failure.
[ 2613.275453][T10089] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2613.275483][T10089] CPU: 0 UID: 0 PID: 10089 Comm: syz.2.13530 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2613.275505][T10089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2613.275516][T10089] Call Trace:
[ 2613.275524][T10089]  <TASK>
[ 2613.275532][T10089]  dump_stack_lvl+0x189/0x250
[ 2613.275570][T10089]  ? __pfx____ratelimit+0x10/0x10
[ 2613.275592][T10089]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2613.275615][T10089]  ? __pfx__printk+0x10/0x10
[ 2613.275635][T10089]  ? __might_fault+0xb0/0x130
[ 2613.275669][T10089]  should_fail_ex+0x46c/0x600
[ 2613.275697][T10089]  _copy_from_iter+0x1de/0x1790
[ 2613.275725][T10089]  ? kmalloc_reserve+0xbd/0x290
[ 2613.275742][T10089]  ? rcu_is_watching+0x15/0xb0
[ 2613.275761][T10089]  ? kmalloc_reserve+0xbd/0x290
[ 2613.275776][T10089]  ? __alloc_skb+0x112/0x2d0
[ 2613.275793][T10089]  ? __pfx__copy_from_iter+0x10/0x10
[ 2613.275820][T10089]  ? __build_skb_around+0x262/0x3f0
[ 2613.275841][T10089]  ? netlink_sendmsg+0x642/0xb30
[ 2613.275859][T10089]  ? skb_put+0x11b/0x210
[ 2613.275881][T10089]  netlink_sendmsg+0x6b2/0xb30
[ 2613.275897][T10089]  ? is_bpf_text_address+0x26/0x2b0
[ 2613.275930][T10089]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2613.275956][T10089]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 2613.275977][T10089]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2613.275996][T10089]  __sock_sendmsg+0x21c/0x270
[ 2613.276021][T10089]  ____sys_sendmsg+0x508/0x820
[ 2613.276046][T10089]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2613.276074][T10089]  ? import_iovec+0x74/0xa0
[ 2613.276096][T10089]  ___sys_sendmsg+0x21f/0x2a0
[ 2613.276118][T10089]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2613.276172][T10089]  ? __fget_files+0x2a/0x420
[ 2613.276194][T10089]  ? __fget_files+0x3a6/0x420
[ 2613.276229][T10089]  __x64_sys_sendmsg+0x1a1/0x260
[ 2613.276251][T10089]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 2613.276278][T10089]  ? __pfx_ksys_write+0x10/0x10
[ 2613.276302][T10089]  ? do_syscall_64+0xbe/0xfa0
[ 2613.276326][T10089]  do_syscall_64+0xfa/0xfa0
[ 2613.276345][T10089]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2613.276366][T10089]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2613.276383][T10089]  ? clear_bhb_loop+0x60/0xb0
[ 2613.276404][T10089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2613.276421][T10089] RIP: 0033:0x7f8a8a6defc9
[ 2613.276437][T10089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2613.276452][T10089] RSP: 002b:00007f8a8893e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2613.276473][T10089] RAX: ffffffffffffffda RBX: 00007f8a8a935fa0 RCX: 00007f8a8a6defc9
[ 2613.276487][T10089] RDX: 0000000020000000 RSI: 0000200000000740 RDI: 0000000000000003
[ 2613.276499][T10089] RBP: 00007f8a8893e090 R08: 0000000000000000 R09: 0000000000000000
[ 2613.276511][T10089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2613.276523][T10089] R13: 00007f8a8a936038 R14: 00007f8a8a935fa0 R15: 00007ffdfb989ff8
[ 2613.276561][T10089]  </TASK>
[ 2613.475168][T10076] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2614.935139][T10121] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2614.935577][T10121] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2614.962316][T10121] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13543'.
[ 2614.984645][T10076] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2615.295034][T10076] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2615.585032][T10161] overlayfs: missing 'workdir'
[ 2615.971823][T10076] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2616.802192][T10211] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13583'.
[ 2616.844675][ T6596] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2616.911740][ T3968] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2616.970540][ T3968] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2617.059350][T19453] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2617.137866][T10222] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13590'.
[ 2618.425313][T10244] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13598'.
[ 2618.775669][T10252] FAULT_INJECTION: forcing a failure.
[ 2618.775669][T10252] name failslab, interval 1, probability 0, space 0, times 0
[ 2618.775703][T10252] CPU: 0 UID: 0 PID: 10252 Comm: syz.5.13601 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2618.775725][T10252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2618.775737][T10252] Call Trace:
[ 2618.775745][T10252]  <TASK>
[ 2618.775753][T10252]  dump_stack_lvl+0x189/0x250
[ 2618.775786][T10252]  ? __pfx____ratelimit+0x10/0x10
[ 2618.775809][T10252]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2618.775833][T10252]  ? __pfx__printk+0x10/0x10
[ 2618.775861][T10252]  ? __pfx___might_resched+0x10/0x10
[ 2618.775885][T10252]  should_fail_ex+0x46c/0x600
[ 2618.775914][T10252]  should_failslab+0xa8/0x100
[ 2618.775940][T10252]  __kmalloc_noprof+0xcc/0x7d0
[ 2618.775962][T10252]  ? kfree+0x51/0x950
[ 2618.775979][T10252]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 2618.776007][T10252]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 2618.776033][T10252]  ? tomoyo_domain+0xda/0x130
[ 2618.776059][T10252]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2618.776085][T10252]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 2618.776113][T10252]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2618.776143][T10252]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 2618.776170][T10252]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2618.776225][T10252]  ? __fget_files+0x2a/0x420
[ 2618.776253][T10252]  ? __fget_files+0x3a6/0x420
[ 2618.776274][T10252]  ? __fget_files+0x2a/0x420
[ 2618.776301][T10252]  security_file_ioctl+0xcb/0x2d0
[ 2618.776323][T10252]  __se_sys_ioctl+0x47/0x170
[ 2618.776347][T10252]  do_syscall_64+0xfa/0xfa0
[ 2618.776367][T10252]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2618.776388][T10252]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2618.776406][T10252]  ? clear_bhb_loop+0x60/0xb0
[ 2618.776429][T10252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2618.776446][T10252] RIP: 0033:0x7f7fe1f7efc9
[ 2618.776460][T10252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2618.776475][T10252] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2618.776501][T10252] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2618.776513][T10252] RDX: 00002000000006c0 RSI: 00000000c0d05640 RDI: 0000000000000003
[ 2618.776523][T10252] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2618.776535][T10252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2618.776545][T10252] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2618.776575][T10252]  </TASK>
[ 2618.805147][T10252] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2618.847211][T10254] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2618.847650][T10254] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2619.591438][T10282] FAULT_INJECTION: forcing a failure.
[ 2619.591438][T10282] name failslab, interval 1, probability 0, space 0, times 0
[ 2619.591460][T10282] CPU: 1 UID: 0 PID: 10282 Comm: syz.5.13616 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2619.591473][T10282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2619.591479][T10282] Call Trace:
[ 2619.591484][T10282]  <TASK>
[ 2619.591489][T10282]  dump_stack_lvl+0x189/0x250
[ 2619.591508][T10282]  ? __pfx____ratelimit+0x10/0x10
[ 2619.591522][T10282]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2619.591540][T10282]  ? __pfx__printk+0x10/0x10
[ 2619.591570][T10282]  ? __pfx___might_resched+0x10/0x10
[ 2619.591588][T10282]  ? fs_reclaim_acquire+0x7d/0x100
[ 2619.591615][T10282]  should_fail_ex+0x46c/0x600
[ 2619.591641][T10282]  ? __alloc_skb+0x112/0x2d0
[ 2619.591657][T10282]  should_failslab+0xa8/0x100
[ 2619.591680][T10282]  ? __alloc_skb+0x112/0x2d0
[ 2619.591688][T10282]  kmem_cache_alloc_node_noprof+0x78/0x6e0
[ 2619.591702][T10282]  ? netlink_autobind+0xdb/0x300
[ 2619.591715][T10282]  __alloc_skb+0x112/0x2d0
[ 2619.591727][T10282]  netlink_sendmsg+0x5c6/0xb30
[ 2619.591737][T10282]  ? is_bpf_text_address+0x26/0x2b0
[ 2619.591756][T10282]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2619.591771][T10282]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 2619.591784][T10282]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2619.591795][T10282]  __sock_sendmsg+0x21c/0x270
[ 2619.591811][T10282]  ____sys_sendmsg+0x508/0x820
[ 2619.591826][T10282]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2619.591842][T10282]  ? import_iovec+0x74/0xa0
[ 2619.591855][T10282]  ___sys_sendmsg+0x21f/0x2a0
[ 2619.591867][T10282]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2619.591897][T10282]  ? __fget_files+0x2a/0x420
[ 2619.591911][T10282]  ? __fget_files+0x3a6/0x420
[ 2619.591929][T10282]  __x64_sys_sendmsg+0x1a1/0x260
[ 2619.591942][T10282]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 2619.591959][T10282]  ? __pfx_ksys_write+0x10/0x10
[ 2619.591973][T10282]  ? do_syscall_64+0xbe/0xfa0
[ 2619.591988][T10282]  do_syscall_64+0xfa/0xfa0
[ 2619.592000][T10282]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2619.592012][T10282]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2619.592021][T10282]  ? clear_bhb_loop+0x60/0xb0
[ 2619.592033][T10282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2619.592047][T10282] RIP: 0033:0x7f7fe1f7efc9
[ 2619.592057][T10282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2619.592066][T10282] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2619.592078][T10282] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2619.592086][T10282] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[ 2619.592093][T10282] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2619.592099][T10282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2619.592105][T10282] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2619.592122][T10282]  </TASK>
[ 2619.784742][T10288] FAULT_INJECTION: forcing a failure.
[ 2619.784742][T10288] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2619.784774][T10288] CPU: 1 UID: 0 PID: 10288 Comm: syz.5.13619 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2619.784795][T10288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2619.784807][T10288] Call Trace:
[ 2619.784814][T10288]  <TASK>
[ 2619.784823][T10288]  dump_stack_lvl+0x189/0x250
[ 2619.784853][T10288]  ? __pfx____ratelimit+0x10/0x10
[ 2619.784876][T10288]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2619.784900][T10288]  ? __pfx__printk+0x10/0x10
[ 2619.784921][T10288]  ? __might_fault+0xb0/0x130
[ 2619.784955][T10288]  should_fail_ex+0x46c/0x600
[ 2619.785006][T10288]  _copy_from_user+0x2d/0xb0
[ 2619.785026][T10288]  dev_ethtool+0xd0/0x19c0
[ 2619.785050][T10288]  ? __lock_acquire+0xab9/0xd20
[ 2619.785078][T10288]  ? __pfx_dev_ethtool+0x10/0x10
[ 2619.785110][T10288]  ? dev_load+0x21/0x1f0
[ 2619.785135][T10288]  ? dev_load+0x21/0x1f0
[ 2619.785168][T10288]  dev_ioctl+0x392/0x1150
[ 2619.785196][T10288]  sock_do_ioctl+0x22c/0x300
[ 2619.785222][T10288]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 2619.785251][T10288]  ? __asan_memset+0x22/0x50
[ 2619.785271][T10288]  ? smack_file_ioctl+0x24d/0x340
[ 2619.785299][T10288]  sock_ioctl+0x579/0x790
[ 2619.785323][T10288]  ? __pfx_sock_ioctl+0x10/0x10
[ 2619.785348][T10288]  ? __fget_files+0x3a6/0x420
[ 2619.785370][T10288]  ? __fget_files+0x2a/0x420
[ 2619.785395][T10288]  ? bpf_lsm_file_ioctl+0x9/0x20
[ 2619.785412][T10288]  ? __pfx_sock_ioctl+0x10/0x10
[ 2619.785433][T10288]  __se_sys_ioctl+0xff/0x170
[ 2619.785455][T10288]  do_syscall_64+0xfa/0xfa0
[ 2619.785476][T10288]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2619.785496][T10288]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2619.785514][T10288]  ? clear_bhb_loop+0x60/0xb0
[ 2619.785535][T10288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2619.785552][T10288] RIP: 0033:0x7f7fe1f7efc9
[ 2619.785569][T10288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2619.785584][T10288] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2619.785603][T10288] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2619.785617][T10288] RDX: 0000200000000400 RSI: 0000000000008946 RDI: 0000000000000003
[ 2619.785628][T10288] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2619.785640][T10288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2619.785654][T10288] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2619.785686][T10288]  </TASK>
[ 2620.265789][T10298] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13624'.
[ 2621.844822][T10347] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13643'.
[ 2622.345865][T10363] 9pnet_fd: p9_fd_create_tcp (10363): problem binding to privport
[ 2624.782219][T10406] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13666'.
[ 2625.566254][T10414] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[ 2626.391664][T10428] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13674'.
[ 2627.073066][T10447] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13681'.
[ 2627.620349][T10463] netlink: 304 bytes leftover after parsing attributes in process `syz.6.13681'.
[ 2633.405052][T10549] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 2634.058780][T10568] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[ 2634.646720][T10582] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13742'.
[ 2635.807881][T10602] FAULT_INJECTION: forcing a failure.
[ 2635.807881][T10602] name failslab, interval 1, probability 0, space 0, times 0
[ 2635.807915][T10602] CPU: 0 UID: 0 PID: 10602 Comm: syz.5.13751 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2635.807936][T10602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2635.807947][T10602] Call Trace:
[ 2635.807955][T10602]  <TASK>
[ 2635.807964][T10602]  dump_stack_lvl+0x189/0x250
[ 2635.807992][T10602]  ? __pfx____ratelimit+0x10/0x10
[ 2635.808015][T10602]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2635.808052][T10602]  ? __pfx__printk+0x10/0x10
[ 2635.808080][T10602]  ? __pfx___might_resched+0x10/0x10
[ 2635.808104][T10602]  should_fail_ex+0x46c/0x600
[ 2635.808133][T10602]  should_failslab+0xa8/0x100
[ 2635.808159][T10602]  __kmalloc_noprof+0xcc/0x7d0
[ 2635.808182][T10602]  ? kfree+0x51/0x950
[ 2635.808198][T10602]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 2635.808225][T10602]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 2635.808248][T10602]  ? tomoyo_domain+0xda/0x130
[ 2635.808275][T10602]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2635.808299][T10602]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 2635.808328][T10602]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2635.808350][T10602]  ? __seccomp_filter+0xaa6/0x1e10
[ 2635.808410][T10602]  ? __fget_files+0x2a/0x420
[ 2635.808440][T10602]  ? __fget_files+0x3a6/0x420
[ 2635.808460][T10602]  ? __fget_files+0x2a/0x420
[ 2635.808487][T10602]  security_file_ioctl+0xcb/0x2d0
[ 2635.808509][T10602]  __se_sys_ioctl+0x47/0x170
[ 2635.808531][T10602]  do_syscall_64+0xfa/0xfa0
[ 2635.808552][T10602]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2635.808573][T10602]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2635.808592][T10602]  ? clear_bhb_loop+0x60/0xb0
[ 2635.808614][T10602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2635.808632][T10602] RIP: 0033:0x7f7fe1f7efc9
[ 2635.808649][T10602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2635.808665][T10602] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2635.808686][T10602] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2635.808700][T10602] RDX: 0000200000000180 RSI: 00000000c00c64d2 RDI: 0000000000000005
[ 2635.808713][T10602] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2635.808725][T10602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2635.808737][T10602] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2635.808770][T10602]  </TASK>
[ 2635.808892][T10602] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2636.390828][T10610] FAULT_INJECTION: forcing a failure.
[ 2636.390828][T10610] name failslab, interval 1, probability 0, space 0, times 0
[ 2636.390861][T10610] CPU: 0 UID: 0 PID: 10610 Comm: syz.5.13755 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2636.390883][T10610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2636.390894][T10610] Call Trace:
[ 2636.390902][T10610]  <TASK>
[ 2636.390911][T10610]  dump_stack_lvl+0x189/0x250
[ 2636.390940][T10610]  ? __pfx____ratelimit+0x10/0x10
[ 2636.390963][T10610]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2636.390993][T10610]  ? __pfx__printk+0x10/0x10
[ 2636.391027][T10610]  ? __pfx___might_resched+0x10/0x10
[ 2636.391052][T10610]  should_fail_ex+0x46c/0x600
[ 2636.391080][T10610]  ? skb_clone+0x212/0x3a0
[ 2636.391099][T10610]  should_failslab+0xa8/0x100
[ 2636.391125][T10610]  ? skb_clone+0x212/0x3a0
[ 2636.391142][T10610]  kmem_cache_alloc_noprof+0x6f/0x6b0
[ 2636.391179][T10610]  skb_clone+0x212/0x3a0
[ 2636.391202][T10610]  pfkey_sendmsg+0x44b/0x1090
[ 2636.391242][T10610]  ? __pfx_pfkey_sendmsg+0x10/0x10
[ 2636.391296][T10610]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 2636.391320][T10610]  ? __pfx_pfkey_sendmsg+0x10/0x10
[ 2636.391343][T10610]  __sock_sendmsg+0x21c/0x270
[ 2636.391370][T10610]  ____sys_sendmsg+0x508/0x820
[ 2636.391397][T10610]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2636.391427][T10610]  ? import_iovec+0x74/0xa0
[ 2636.391450][T10610]  ___sys_sendmsg+0x21f/0x2a0
[ 2636.391478][T10610]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2636.391536][T10610]  ? __fget_files+0x2a/0x420
[ 2636.391558][T10610]  ? __fget_files+0x3a6/0x420
[ 2636.391592][T10610]  __x64_sys_sendmsg+0x1a1/0x260
[ 2636.391615][T10610]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 2636.391646][T10610]  ? __pfx_ksys_write+0x10/0x10
[ 2636.391672][T10610]  ? do_syscall_64+0xbe/0xfa0
[ 2636.391698][T10610]  do_syscall_64+0xfa/0xfa0
[ 2636.391717][T10610]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2636.391738][T10610]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2636.391756][T10610]  ? clear_bhb_loop+0x60/0xb0
[ 2636.391778][T10610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2636.391796][T10610] RIP: 0033:0x7f7fe1f7efc9
[ 2636.391813][T10610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2636.391828][T10610] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2636.391848][T10610] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2636.391861][T10610] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[ 2636.391873][T10610] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2636.391885][T10610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2636.391896][T10610] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2636.391930][T10610]  </TASK>
[ 2636.792122][T10612] 9pnet_fd: Insufficient options for proto=fd
[ 2642.537700][T10666] netlink: 16 bytes leftover after parsing attributes in process `syz.6.13775'.
[ 2646.023874][T10696] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 2648.303183][T10721] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2648.303625][T10721] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2648.628390][T10728] netlink: 20 bytes leftover after parsing attributes in process `syz.2.13795'.
[ 2656.334444][T10802] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2656.334868][T10802] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2657.746999][T10817] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13837'.
[ 2657.897824][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 2657.897903][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 2659.749971][T10835] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2659.750393][T10835] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2659.794498][   T37] audit: type=1326 audit(1761522959.822:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10834 comm="syz.9.13842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790375efc9 code=0x7ffc0000
[ 2659.831057][   T37] audit: type=1326 audit(1761522959.864:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10834 comm="syz.9.13842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=460 compat=0 ip=0x7f790375efc9 code=0x7ffc0000
[ 2659.831396][   T37] audit: type=1326 audit(1761522959.864:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10834 comm="syz.9.13842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790375efc9 code=0x7ffc0000
[ 2659.831677][   T37] audit: type=1326 audit(1761522959.864:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10834 comm="syz.9.13842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790375efc9 code=0x7ffc0000
[ 2659.883335][   T37] audit: type=1326 audit(1761522959.917:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10834 comm="syz.9.13842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f790375efc9 code=0x7ffc0000
[ 2659.883388][   T37] audit: type=1326 audit(1761522959.917:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10834 comm="syz.9.13842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790375efc9 code=0x7ffc0000
[ 2659.883429][   T37] audit: type=1326 audit(1761522959.917:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10834 comm="syz.9.13842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790375efc9 code=0x7ffc0000
[ 2659.883478][   T37] audit: type=1326 audit(1761522959.917:1601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10834 comm="syz.9.13842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f790375efc9 code=0x7ffc0000
[ 2661.181242][   T37] audit: type=1326 audit(1761522961.282:1602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10834 comm="syz.9.13842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790375efc9 code=0x7ffc0000
[ 2661.181294][   T37] audit: type=1326 audit(1761522961.282:1603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10834 comm="syz.9.13842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790375efc9 code=0x7ffc0000
[ 2661.397750][T10851] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2661.398175][T10851] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2663.305918][T10873] netlink: 60 bytes leftover after parsing attributes in process `syz.9.13859'.
[ 2663.328074][T10873] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2663.328497][T10873] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2663.398699][T10873] netlink: 72 bytes leftover after parsing attributes in process `syz.9.13859'.
[ 2663.481645][T10873] geneve2: entered promiscuous mode
[ 2663.504332][T10878] netlink: 276 bytes leftover after parsing attributes in process `syz.9.13859'.
[ 2663.844460][T10885] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2663.864156][T10885] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2667.029281][T10905] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[ 2667.693676][T10908] netlink: 12 bytes leftover after parsing attributes in process `syz.9.13871'.
[ 2671.075390][T10935] netlink: 16 bytes leftover after parsing attributes in process `syz.8.13881'.
[ 2671.923823][T10951] netlink: 20 bytes leftover after parsing attributes in process `syz.8.13886'.
[ 2674.407805][T10969] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13894'.
[ 2674.682848][T10995] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2674.683313][T10995] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2676.778743][   T37] audit: type=1326 audit(1761522977.660:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11026 comm="syz.5.13917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe1f7efc9 code=0x7ffc0000
[ 2676.779876][   T37] audit: type=1326 audit(1761522977.660:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11026 comm="syz.5.13917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe1f7efc9 code=0x7ffc0000
[ 2676.780157][   T37] audit: type=1326 audit(1761522977.660:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11026 comm="syz.5.13917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f7fe1f7efc9 code=0x7ffc0000
[ 2676.870616][   T37] audit: type=1326 audit(1761522977.755:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11026 comm="syz.5.13917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe1f7efc9 code=0x7ffc0000
[ 2676.870914][   T37] audit: type=1326 audit(1761522977.755:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11026 comm="syz.5.13917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7fe1f7efc9 code=0x7ffc0000
[ 2677.092408][T11028] FAULT_INJECTION: forcing a failure.
[ 2677.092408][T11028] name failslab, interval 1, probability 0, space 0, times 0
[ 2677.092454][T11028] CPU: 0 UID: 0 PID: 11028 Comm: syz.5.13917 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2677.092477][T11028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2677.092488][T11028] Call Trace:
[ 2677.092497][T11028]  <TASK>
[ 2677.092505][T11028]  dump_stack_lvl+0x189/0x250
[ 2677.092542][T11028]  ? __pfx____ratelimit+0x10/0x10
[ 2677.092565][T11028]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2677.092589][T11028]  ? __pfx__printk+0x10/0x10
[ 2677.092617][T11028]  ? __pfx___might_resched+0x10/0x10
[ 2677.092641][T11028]  should_fail_ex+0x46c/0x600
[ 2677.092671][T11028]  should_failslab+0xa8/0x100
[ 2677.092697][T11028]  __kmalloc_noprof+0xcc/0x7d0
[ 2677.092719][T11028]  ? kfree+0x51/0x950
[ 2677.092738][T11028]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 2677.092758][T11028]  ? rcu_is_watching+0x15/0xb0
[ 2677.092780][T11028]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 2677.092813][T11028]  ? tomoyo_mount_permission+0x27a/0x970
[ 2677.092834][T11028]  tomoyo_mount_permission+0x377/0x970
[ 2677.092858][T11028]  ? tomoyo_mount_permission+0x27a/0x970
[ 2677.092879][T11028]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[ 2677.092962][T11028]  security_sb_mount+0xec/0x350
[ 2677.092990][T11028]  path_mount+0xbc/0xfe0
[ 2677.093016][T11028]  ? user_path_at+0x44/0x60
[ 2677.093045][T11028]  __se_sys_mount+0x313/0x410
[ 2677.093075][T11028]  ? __pfx___se_sys_mount+0x10/0x10
[ 2677.093103][T11028]  ? do_syscall_64+0xbe/0xfa0
[ 2677.093123][T11028]  ? __x64_sys_mount+0x20/0xc0
[ 2677.093149][T11028]  do_syscall_64+0xfa/0xfa0
[ 2677.093169][T11028]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2677.093191][T11028]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2677.093210][T11028]  ? clear_bhb_loop+0x60/0xb0
[ 2677.093232][T11028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2677.093250][T11028] RIP: 0033:0x7f7fe1f7efc9
[ 2677.093271][T11028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2677.093287][T11028] RSP: 002b:00007f7fe01c5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2677.093308][T11028] RAX: ffffffffffffffda RBX: 00007f7fe21d6090 RCX: 00007f7fe1f7efc9
[ 2677.093323][T11028] RDX: 0000200000000080 RSI: 00002000000002c0 RDI: 0000000000000000
[ 2677.093336][T11028] RBP: 00007f7fe01c5090 R08: 0000000000000000 R09: 0000000000000000
[ 2677.093348][T11028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2677.093360][T11028] R13: 00007f7fe21d6128 R14: 00007f7fe21d6090 R15: 00007ffcb8acbca8
[ 2677.093400][T11028]  </TASK>
[ 2677.094631][T11028] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2681.774759][T11087] FAULT_INJECTION: forcing a failure.
[ 2681.774759][T11087] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2681.774818][T11087] CPU: 1 UID: 0 PID: 11087 Comm: syz.2.13943 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2681.774838][T11087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2681.774847][T11087] Call Trace:
[ 2681.774853][T11087]  <TASK>
[ 2681.774860][T11087]  dump_stack_lvl+0x189/0x250
[ 2681.774884][T11087]  ? __pfx____ratelimit+0x10/0x10
[ 2681.774902][T11087]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2681.774921][T11087]  ? __pfx__printk+0x10/0x10
[ 2681.774937][T11087]  ? __might_fault+0xb0/0x130
[ 2681.774965][T11087]  should_fail_ex+0x46c/0x600
[ 2681.774988][T11087]  _copy_from_user+0x2d/0xb0
[ 2681.775011][T11087]  __sys_bind+0x19f/0x3e0
[ 2681.775034][T11087]  ? __pfx___sys_bind+0x10/0x10
[ 2681.775070][T11087]  __x64_sys_bind+0x7a/0x90
[ 2681.775090][T11087]  do_syscall_64+0xfa/0xfa0
[ 2681.775108][T11087]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2681.775121][T11087]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 2681.775134][T11087]  ? clear_bhb_loop+0x60/0xb0
[ 2681.775151][T11087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2681.775164][T11087] RIP: 0033:0x7f8a8a6defc9
[ 2681.775178][T11087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2681.775190][T11087] RSP: 002b:00007f8a888fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 2681.775206][T11087] RAX: ffffffffffffffda RBX: 00007f8a8a936180 RCX: 00007f8a8a6defc9
[ 2681.775216][T11087] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000008
[ 2681.775225][T11087] RBP: 00007f8a888fc090 R08: 0000000000000000 R09: 0000000000000000
[ 2681.775234][T11087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2681.775243][T11087] R13: 00007f8a8a936218 R14: 00007f8a8a936180 R15: 00007ffdfb989ff8
[ 2681.775268][T11087]  </TASK>
[ 2684.286747][T11102] overlayfs: failed to clone upperpath
[ 2684.625931][T11112] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2684.645788][T11112] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2686.708005][T11152] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13963'.
[ 2692.433905][   T10] usb 10-1: USB disconnect, device number 28
[ 2692.556334][   T10] usblp1: removed
[ 2694.816502][T11199] netlink: 136 bytes leftover after parsing attributes in process `syz.8.13984'.
[ 2695.190891][ T9592] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 2695.242400][ T9592] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 2695.245907][ T9592] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 2695.248748][ T9592] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 2695.273324][ T9592] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 2696.988515][T11204] chnl_net:caif_netlink_parms(): no params data found
[ 2697.219722][T11233] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[ 2697.219740][T11233] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[ 2697.219751][T11233] overlayfs: missing 'lowerdir'
[ 2697.269638][T24101] Bluetooth: hci1: command tx timeout
[ 2697.314184][T11237] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13998'.
[ 2698.871741][T11270] FAULT_INJECTION: forcing a failure.
[ 2698.871741][T11270] name failslab, interval 1, probability 0, space 0, times 0
[ 2698.871773][T11270] CPU: 0 UID: 0 PID: 11270 Comm: syz.2.14009 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2698.871795][T11270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2698.871807][T11270] Call Trace:
[ 2698.871815][T11270]  <TASK>
[ 2698.871824][T11270]  dump_stack_lvl+0x189/0x250
[ 2698.871853][T11270]  ? __pfx____ratelimit+0x10/0x10
[ 2698.871876][T11270]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2698.871901][T11270]  ? __pfx__printk+0x10/0x10
[ 2698.871932][T11270]  ? __pfx___might_resched+0x10/0x10
[ 2698.871957][T11270]  should_fail_ex+0x46c/0x600
[ 2698.871987][T11270]  should_failslab+0xa8/0x100
[ 2698.872014][T11270]  __kmalloc_noprof+0xcc/0x7d0
[ 2698.872036][T11270]  ? kfree+0x51/0x950
[ 2698.872053][T11270]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[ 2698.872081][T11270]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 2698.872104][T11270]  ? tomoyo_domain+0xda/0x130
[ 2698.872131][T11270]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2698.872157][T11270]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 2698.872193][T11270]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 2698.872223][T11270]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 2698.872246][T11270]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2698.872299][T11270]  ? __fget_files+0x2a/0x420
[ 2698.872328][T11270]  ? __fget_files+0x3a6/0x420
[ 2698.872349][T11270]  ? __fget_files+0x2a/0x420
[ 2698.872376][T11270]  security_file_ioctl+0xcb/0x2d0
[ 2698.872399][T11270]  __se_sys_ioctl+0x47/0x170
[ 2698.872422][T11270]  do_syscall_64+0xfa/0xfa0
[ 2698.872442][T11270]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2698.872463][T11270]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2698.872482][T11270]  ? clear_bhb_loop+0x60/0xb0
[ 2698.872504][T11270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2698.872522][T11270] RIP: 0033:0x7f8a8a6defc9
[ 2698.872539][T11270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2698.872555][T11270] RSP: 002b:00007f8a8893e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2698.872575][T11270] RAX: ffffffffffffffda RBX: 00007f8a8a935fa0 RCX: 00007f8a8a6defc9
[ 2698.872590][T11270] RDX: 0000000000000000 RSI: 0000000041045508 RDI: 0000000000000003
[ 2698.872602][T11270] RBP: 00007f8a8893e090 R08: 0000000000000000 R09: 0000000000000000
[ 2698.872614][T11270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2698.872626][T11270] R13: 00007f8a8a936038 R14: 00007f8a8a935fa0 R15: 00007ffdfb989ff8
[ 2698.872660][T11270]  </TASK>
[ 2698.875081][T11270] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2699.250565][T24101] Bluetooth: hci1: command tx timeout
[ 2699.692198][T11285] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2699.695021][T11285] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2701.191518][T11204] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2701.191713][T11204] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2701.191960][T11204] bridge_slave_0: entered allmulticast mode
[ 2701.227620][T11204] bridge_slave_0: entered promiscuous mode
[ 2701.231713][T24101] Bluetooth: hci1: command tx timeout
[ 2701.255551][T11204] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2701.255791][T11204] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2701.256047][T11204] bridge_slave_1: entered allmulticast mode
[ 2701.287550][T11204] bridge_slave_1: entered promiscuous mode
[ 2703.222580][T24101] Bluetooth: hci1: command tx timeout
[ 2703.445096][T11204] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2703.449498][T11204] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2703.824841][T11358] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[ 2703.934792][T11361] netlink: 12 bytes leftover after parsing attributes in process `syz.6.14048'.
[ 2705.088218][T11204] team0: Port device team_slave_0 added
[ 2705.108640][T11204] team0: Port device team_slave_1 added
[ 2707.333476][T11431] netlink: 48 bytes leftover after parsing attributes in process `syz.6.14067'.
[ 2708.176216][T11485] FAULT_INJECTION: forcing a failure.
[ 2708.176216][T11485] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2708.176266][T11485] CPU: 0 UID: 0 PID: 11485 Comm: syz.5.14108 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2708.176289][T11485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2708.176301][T11485] Call Trace:
[ 2708.176310][T11485]  <TASK>
[ 2708.176319][T11485]  dump_stack_lvl+0x189/0x250
[ 2708.176347][T11485]  ? __pfx____ratelimit+0x10/0x10
[ 2708.176370][T11485]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2708.176393][T11485]  ? __pfx__printk+0x10/0x10
[ 2708.176415][T11485]  ? __might_fault+0xb0/0x130
[ 2708.176450][T11485]  should_fail_ex+0x46c/0x600
[ 2708.176479][T11485]  _copy_from_user+0x2d/0xb0
[ 2708.176500][T11485]  ucma_write+0x161/0x2f0
[ 2708.176527][T11485]  ? __pfx_ucma_write+0x10/0x10
[ 2708.176556][T11485]  ? rw_verify_area+0x25b/0x4e0
[ 2708.176576][T11485]  ? __lock_acquire+0xab9/0xd20
[ 2708.176597][T11485]  ? __pfx_ucma_write+0x10/0x10
[ 2708.176630][T11485]  vfs_write+0x287/0xb40
[ 2708.176660][T11485]  ? __pfx_vfs_write+0x10/0x10
[ 2708.176683][T11485]  ? __fget_files+0x2a/0x420
[ 2708.176709][T11485]  ? __fget_files+0x2a/0x420
[ 2708.176730][T11485]  ? __fget_files+0x3a6/0x420
[ 2708.176751][T11485]  ? __fget_files+0x2a/0x420
[ 2708.176783][T11485]  ksys_write+0x14b/0x260
[ 2708.176806][T11485]  ? __pfx_ksys_write+0x10/0x10
[ 2708.176831][T11485]  ? do_syscall_64+0xbe/0xfa0
[ 2708.176857][T11485]  do_syscall_64+0xfa/0xfa0
[ 2708.176877][T11485]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2708.176899][T11485]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2708.176917][T11485]  ? clear_bhb_loop+0x60/0xb0
[ 2708.176940][T11485]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2708.176958][T11485] RIP: 0033:0x7f7fe1f7efc9
[ 2708.176975][T11485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2708.176991][T11485] RSP: 002b:00007f7fe01e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2708.177019][T11485] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7efc9
[ 2708.177034][T11485] RDX: 0000000000000010 RSI: 0000200000002180 RDI: 0000000000000003
[ 2708.177046][T11485] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2708.177058][T11485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2708.177070][T11485] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2708.177102][T11485]  </TASK>
[ 2709.586963][T11506] FAULT_INJECTION: forcing a failure.
[ 2709.586963][T11506] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2709.586996][T11506] CPU: 0 UID: 0 PID: 11506 Comm: syz.5.14118 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2709.587017][T11506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2709.587028][T11506] Call Trace:
[ 2709.587036][T11506]  <TASK>
[ 2709.587045][T11506]  dump_stack_lvl+0x189/0x250
[ 2709.587075][T11506]  ? __pfx____ratelimit+0x10/0x10
[ 2709.587097][T11506]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2709.587121][T11506]  ? __pfx__printk+0x10/0x10
[ 2709.587163][T11506]  should_fail_ex+0x46c/0x600
[ 2709.587193][T11506]  _copy_to_user+0x31/0xb0
[ 2709.587216][T11506]  simple_read_from_buffer+0xe1/0x170
[ 2709.587244][T11506]  proc_fail_nth_read+0x1b6/0x220
[ 2709.587267][T11506]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2709.587290][T11506]  ? rw_verify_area+0x2ac/0x4e0
[ 2709.587312][T11506]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2709.587333][T11506]  vfs_read+0x206/0xa30
[ 2709.587363][T11506]  ? __pfx_vfs_read+0x10/0x10
[ 2709.587380][T11506]  ? try_to_take_rt_mutex+0x7fd/0xac0
[ 2709.587410][T11506]  ? mutex_lock_nested+0x154/0x1d0
[ 2709.587427][T11506]  ? fdget_pos+0x253/0x320
[ 2709.587460][T11506]  ksys_read+0x14b/0x260
[ 2709.587489][T11506]  ? __pfx_ksys_read+0x10/0x10
[ 2709.587514][T11506]  ? do_syscall_64+0xbe/0xfa0
[ 2709.587541][T11506]  do_syscall_64+0xfa/0xfa0
[ 2709.587560][T11506]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2709.587582][T11506]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2709.587601][T11506]  ? clear_bhb_loop+0x60/0xb0
[ 2709.587623][T11506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2709.587641][T11506] RIP: 0033:0x7f7fe1f7d9dc
[ 2709.587658][T11506] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 2709.587674][T11506] RSP: 002b:00007f7fe01e6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2709.587694][T11506] RAX: ffffffffffffffda RBX: 00007f7fe21d5fa0 RCX: 00007f7fe1f7d9dc
[ 2709.587708][T11506] RDX: 000000000000000f RSI: 00007f7fe01e60a0 RDI: 0000000000000004
[ 2709.587721][T11506] RBP: 00007f7fe01e6090 R08: 0000000000000000 R09: 0000000000000000
[ 2709.587733][T11506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2709.587744][T11506] R13: 00007f7fe21d6038 R14: 00007f7fe21d5fa0 R15: 00007ffcb8acbca8
[ 2709.587778][T11506]  </TASK>
[ 2709.965748][ T6596] batman_adv: batadv1: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1
[ 2710.390223][T11204] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2710.390241][T11204] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2710.390266][T11204] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2710.440475][T11204] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2710.440491][T11204] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2710.440517][T11204] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2712.518877][T11204] hsr_slave_0: entered promiscuous mode
[ 2712.520392][T11204] hsr_slave_1: entered promiscuous mode
[ 2712.527924][T11204] debugfs: 'hsr0' already exists in 'hsr'
[ 2712.527952][T11204] Cannot create hsr debugfs directory
[ 2716.126063][ T7140] usb 3-1: USB disconnect, device number 78
[ 2716.141124][ T7140] usblp0: removed
[ 2716.358959][ T9592] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2716.390397][ T9592] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2716.392275][ T9592] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2716.402532][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 2716.402601][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 2716.446958][ T9592] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2716.473949][ T9592] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2718.528513][ T9592] Bluetooth: hci0: command tx timeout
[ 2719.188425][T11674] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2719.188856][T11674] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2719.385674][ T7140] usb 6-1: new full-speed USB device number 21 using dummy_hcd
[ 2719.476032][T11677] netlink: 8 bytes leftover after parsing attributes in process `syz.8.14198'.
[ 2719.509451][ T7140] usb 6-1: device descriptor read/64, error -71
[ 2719.740495][ T7140] usb 6-1: new full-speed USB device number 22 using dummy_hcd
[ 2719.909395][ T7140] usb 6-1: device descriptor read/64, error -71
[ 2720.014279][ T7140] usb usb6-port1: attempt power cycle
[ 2720.337839][ T7140] usb 6-1: new full-speed USB device number 23 using dummy_hcd
[ 2720.357984][ T7140] usb 6-1: device descriptor read/8, error -71
[ 2720.509197][ T9592] Bluetooth: hci0: command tx timeout
[ 2720.585479][ T7140] usb 6-1: new full-speed USB device number 24 using dummy_hcd
[ 2720.609442][ T7140] usb 6-1: device descriptor read/8, error -71
[ 2720.710051][ T7140] usb usb6-port1: unable to enumerate USB device
[ 2720.885227][T11643] chnl_net:caif_netlink_parms(): no params data found
[ 2722.501168][ T9592] Bluetooth: hci0: command tx timeout
[ 2723.190692][T24101] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 2723.216236][T24101] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 2723.217984][T24101] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 2723.220432][T24101] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 2723.221223][T24101] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 2723.398875][T11643] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2723.399093][T11643] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2723.399334][T11643] bridge_slave_0: entered allmulticast mode
[ 2723.431670][T11643] bridge_slave_0: entered promiscuous mode
[ 2723.463104][T11643] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2723.463230][T11643] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2723.463531][T11643] bridge_slave_1: entered allmulticast mode
[ 2723.466347][T11643] bridge_slave_1: entered promiscuous mode
[ 2723.692760][T11706] overlayfs: failed to clone upperpath
[ 2724.471622][T24101] Bluetooth: hci0: command tx timeout
[ 2724.585072][T11733] x_tables: ip_tables: udp match: only valid for protocol 17
[ 2725.608828][T24101] Bluetooth: hci6: command tx timeout
[ 2727.520807][T24101] Bluetooth: hci6: command tx timeout
[ 2729.503763][T24101] Bluetooth: hci6: command tx timeout
[ 2731.482352][T24101] Bluetooth: hci6: command tx timeout
[ 2741.717916][ T9592] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 2741.748665][ T9592] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 2741.770550][ T9592] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 2741.772287][ T9592] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 2741.773148][ T9592] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 2742.644300][ T9592] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 2742.679301][ T9592] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 2742.697705][ T9592] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 2742.699319][ T9592] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 2742.722730][ T9592] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 2743.826537][ T9592] Bluetooth: hci7: command tx timeout
[ 2744.740858][ T9592] Bluetooth: hci8: command tx timeout
[ 2745.809402][ T9592] Bluetooth: hci7: command tx timeout
[ 2746.667627][T24101] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 2746.683295][T24101] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 2746.702911][T24101] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 2746.704127][T24101] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 2746.705007][T24101] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 2746.732515][T24101] Bluetooth: hci8: command tx timeout
[ 2747.788768][ T9592] Bluetooth: hci7: command tx timeout
[ 2748.702977][T11795] Bluetooth: hci8: command tx timeout
[ 2748.703005][ T9592] Bluetooth: hci9: command tx timeout
[ 2749.769863][ T9592] Bluetooth: hci7: command tx timeout
[ 2750.685411][ T9592] Bluetooth: hci9: command tx timeout
[ 2750.685424][T11795] Bluetooth: hci8: command tx timeout
[ 2752.674110][ T9592] Bluetooth: hci9: command tx timeout
[ 2754.646870][ T9592] Bluetooth: hci9: command tx timeout
[ 2773.244986][T11795] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 2773.268863][T11795] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 2773.300010][T11795] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 2773.301172][T11795] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 2773.302175][T11795] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 2774.926567][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 2774.926640][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 2775.295937][ T9592] Bluetooth: hci10: command tx timeout
[ 2777.278624][ T9592] Bluetooth: hci10: command tx timeout
[ 2779.258375][ T9592] Bluetooth: hci10: command tx timeout
[ 2780.616389][T11795] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 2780.648632][T11795] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 2780.652355][T11795] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 2780.654896][T11795] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 2780.655861][T11795] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 2781.239044][ T9592] Bluetooth: hci10: command tx timeout
[ 2782.687146][ T9592] Bluetooth: hci11: command tx timeout
[ 2784.380352][T11785] tipc: New replicast peer: 102.224.146.169
[ 2784.380730][T11785] tipc: Enabled bearer <udp:syz2>, priority 10
[ 2784.414747][T11643] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2784.669292][ T9592] Bluetooth: hci11: command tx timeout
[ 2786.649266][ T9592] Bluetooth: hci11: command tx timeout
[ 2788.630386][ T9592] Bluetooth: hci11: command tx timeout
[ 2790.220194][T11785] syz_tun (unregistering): left allmulticast mode
[ 2795.864824][ T3968] netdevsim netdevsim9 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2798.259302][T11797] chnl_net:caif_netlink_parms(): no params data found
[ 2798.748997][T11790] chnl_net:caif_netlink_parms(): no params data found
[ 2798.767268][T11800] chnl_net:caif_netlink_parms(): no params data found
[ 2798.884970][T11787] chnl_net:caif_netlink_parms(): no params data found
[ 2798.935293][T11793] chnl_net:caif_netlink_parms(): no params data found
[ 2799.458393][T11795] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2799.498136][T11795] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2799.501623][T11795] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2799.502802][T11795] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2799.503830][T11795] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2800.195233][T11795] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2800.224937][T11795] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2800.227074][T11795] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2800.228498][T11795] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2800.230207][T11795] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2801.508958][ T9592] Bluetooth: hci0: command tx timeout
[ 2802.803449][ T9592] Bluetooth: hci2: command tx timeout
[ 2803.494676][ T9592] Bluetooth: hci0: command tx timeout
[ 2804.383296][T11795] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2804.398293][T11795] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2804.419484][T11795] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2804.420666][T11795] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2804.421442][T11795] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2804.785154][ T9592] Bluetooth: hci2: command tx timeout
[ 2805.470079][ T9592] Bluetooth: hci0: command tx timeout
[ 2806.462480][ T9592] Bluetooth: hci4: command tx timeout
[ 2806.765617][ T9592] Bluetooth: hci2: command tx timeout
[ 2807.452467][ T9592] Bluetooth: hci0: command tx timeout
[ 2808.441887][ T9592] Bluetooth: hci4: command tx timeout
[ 2808.656088][T11797] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2808.656222][T11797] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2808.656496][T11797] bridge_slave_0: entered allmulticast mode
[ 2808.660347][T11797] bridge_slave_0: entered promiscuous mode
[ 2808.767526][ T9592] Bluetooth: hci2: command tx timeout
[ 2810.423069][ T9592] Bluetooth: hci4: command tx timeout
[ 2810.797874][T11797] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2810.798024][T11797] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2810.798236][T11797] bridge_slave_1: entered allmulticast mode
[ 2810.801124][T11797] bridge_slave_1: entered promiscuous mode
[ 2812.404041][ T9592] Bluetooth: hci4: command tx timeout
[ 2813.735457][T11800] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2813.735603][T11800] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2813.735925][T11800] bridge_slave_0: entered allmulticast mode
[ 2813.759228][T11800] bridge_slave_0: entered promiscuous mode
[ 2813.780767][T11797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2813.815046][T11800] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2813.815265][T11800] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2813.815514][T11800] bridge_slave_1: entered allmulticast mode
[ 2813.818445][T11800] bridge_slave_1: entered promiscuous mode
[ 2813.868671][T11797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2815.914375][T11795] Bluetooth: hci1: command 0x0406 tx timeout
[ 2818.181857][T11800] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2818.222999][T11797] team0: Port device team_slave_0 added
[ 2818.276654][T11800] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2818.279256][T11797] team0: Port device team_slave_1 added
[ 2822.041070][T11800] team0: Port device team_slave_0 added
[ 2822.042546][T11797] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2822.042560][T11797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2822.042585][T11797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2822.145809][T11800] team0: Port device team_slave_1 added
[ 2822.147544][T11797] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2822.147559][T11797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2822.202254][T11797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2823.709433][T11800] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2823.709450][T11800] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2823.709476][T11800] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2823.953159][T11800] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2823.953177][T11800] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2823.953202][T11800] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2824.898128][T11797] hsr_slave_0: entered promiscuous mode
[ 2824.899617][T11797] hsr_slave_1: entered promiscuous mode
[ 2824.916788][T11797] debugfs: 'hsr0' already exists in 'hsr'
[ 2824.916826][T11797] Cannot create hsr debugfs directory
[ 2828.265926][T11800] hsr_slave_0: entered promiscuous mode
[ 2828.267505][T11800] hsr_slave_1: entered promiscuous mode
[ 2828.268597][T11800] debugfs: 'hsr0' already exists in 'hsr'
[ 2828.268622][T11800] Cannot create hsr debugfs directory
[ 2830.803508][T11795] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 2830.843519][T11795] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 2830.855022][T11795] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 2830.856330][T11795] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 2830.858268][T11795] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 2831.380811][T11824] chnl_net:caif_netlink_parms(): no params data found
[ 2831.402250][T11822] chnl_net:caif_netlink_parms(): no params data found
[ 2832.825500][ T9592] Bluetooth: hci7: command tx timeout
[ 2833.439607][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 2833.439680][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 2833.701464][T11828] chnl_net:caif_netlink_parms(): no params data found
[ 2834.815783][T11795] Bluetooth: hci7: command tx timeout
[ 2836.788025][T11795] Bluetooth: hci7: command tx timeout
[ 2837.839331][ T9592] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 2837.854982][ T9592] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 2837.880799][ T9592] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 2837.881968][ T9592] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 2837.909162][ T9592] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 2838.769051][T11795] Bluetooth: hci7: command tx timeout
[ 2839.914106][T11795] Bluetooth: hci8: command tx timeout
[ 2840.292855][T11795] Bluetooth: hci6: command 0x0406 tx timeout
[ 2841.343733][T11824] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2841.343865][T11824] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2841.344109][T11824] bridge_slave_0: entered allmulticast mode
[ 2841.402618][T11824] bridge_slave_0: entered promiscuous mode
[ 2841.445022][T11822] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2841.445160][T11822] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2841.445471][T11822] bridge_slave_0: entered allmulticast mode
[ 2841.448417][T11822] bridge_slave_0: entered promiscuous mode
[ 2841.892865][ T9592] Bluetooth: hci8: command tx timeout
[ 2843.874036][ T9592] Bluetooth: hci8: command tx timeout
[ 2844.601949][T11824] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2844.602092][T11824] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2844.602388][T11824] bridge_slave_1: entered allmulticast mode
[ 2844.605225][T11824] bridge_slave_1: entered promiscuous mode
[ 2844.651414][T11822] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2844.651551][T11822] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2844.651826][T11822] bridge_slave_1: entered allmulticast mode
[ 2844.674920][T11822] bridge_slave_1: entered promiscuous mode
[ 2844.676430][T11828] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2844.676590][T11828] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2844.676810][T11828] bridge_slave_0: entered allmulticast mode
[ 2844.679630][T11828] bridge_slave_0: entered promiscuous mode
[ 2845.681690][T11828] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2845.681824][T11828] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2845.682057][T11828] bridge_slave_1: entered allmulticast mode
[ 2845.705791][T11828] bridge_slave_1: entered promiscuous mode
[ 2845.855182][ T9592] Bluetooth: hci8: command tx timeout
[ 2848.972047][T11824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2849.025528][T11822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2849.044818][T11828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2849.060099][T11824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2849.081389][T11822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2849.095121][T11828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2854.266460][T11824] team0: Port device team_slave_0 added
[ 2854.292630][T11822] team0: Port device team_slave_0 added
[ 2854.301982][T11824] team0: Port device team_slave_1 added
[ 2854.305055][T11828] team0: Port device team_slave_0 added
[ 2854.605199][T11828] team0: Port device team_slave_1 added
[ 2854.617169][T11822] team0: Port device team_slave_1 added
[ 2856.963839][T11795] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 2856.969795][T11795] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 2856.987431][T11795] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 2856.988661][T11795] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 2857.004824][T11795] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 2857.523405][ T9592] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 2857.551950][ T9592] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 2857.555958][ T9592] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 2857.557497][ T9592] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 2857.558393][ T9592] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 2858.209928][T11824] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2858.209946][T11824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2858.209971][T11824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2858.960909][ T9592] Bluetooth: hci9: command tx timeout
[ 2859.242941][T11828] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2859.242957][T11828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2859.242983][T11828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2859.494318][ T9592] Bluetooth: hci10: command tx timeout
[ 2860.942133][ T9592] Bluetooth: hci9: command tx timeout
[ 2861.166849][T11828] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2861.166865][T11828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2861.166892][T11828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2861.513527][ T9592] Bluetooth: hci10: command tx timeout
[ 2861.887384][ T9592] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2861.922779][ T9592] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2861.927135][ T9592] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2861.928314][ T9592] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2861.929081][ T9592] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2862.923465][ T9592] Bluetooth: hci9: command tx timeout
[ 2863.456086][ T9592] Bluetooth: hci10: command tx timeout
[ 2863.913871][ T9592] Bluetooth: hci0: command tx timeout
[ 2864.653527][T11842] chnl_net:caif_netlink_parms(): no params data found
[ 2864.904760][ T9592] Bluetooth: hci9: command tx timeout
[ 2865.475781][ T9592] Bluetooth: hci10: command tx timeout
[ 2865.894453][ T9592] Bluetooth: hci0: command tx timeout
[ 2867.767094][T11854] chnl_net:caif_netlink_parms(): no params data found
[ 2867.876281][ T9592] Bluetooth: hci0: command tx timeout
[ 2869.428204][T11842] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2869.429800][T11842] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2869.430092][T11842] bridge_slave_0: entered allmulticast mode
[ 2869.433082][T11842] bridge_slave_0: entered promiscuous mode
[ 2869.477374][T11842] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2869.477531][T11842] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2869.477819][T11842] bridge_slave_1: entered allmulticast mode
[ 2869.481070][T11842] bridge_slave_1: entered promiscuous mode
[ 2869.857414][ T9592] Bluetooth: hci0: command tx timeout
[ 2873.303539][T11842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2873.862049][T11842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2873.909513][T11854] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2873.909651][T11854] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2873.909969][T11854] bridge_slave_0: entered allmulticast mode
[ 2873.936605][T11854] bridge_slave_0: entered promiscuous mode
[ 2875.593417][T11854] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2875.593662][T11854] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2875.593946][T11854] bridge_slave_1: entered allmulticast mode
[ 2875.596856][T11854] bridge_slave_1: entered promiscuous mode
[ 2878.842859][T11842] team0: Port device team_slave_0 added
[ 2878.856849][T11862] chnl_net:caif_netlink_parms(): no params data found
[ 2878.884243][T11859] chnl_net:caif_netlink_parms(): no params data found
[ 2879.498038][T11842] team0: Port device team_slave_1 added
[ 2879.546031][T11854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2880.691029][T11854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2883.690399][T11866] chnl_net:caif_netlink_parms(): no params data found
[ 2885.295381][T11842] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2885.295398][T11842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2885.295424][T11842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2885.415907][T11842] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2885.415924][T11842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2885.415951][T11842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2887.098123][T11854] team0: Port device team_slave_0 added
[ 2887.803518][T11854] team0: Port device team_slave_1 added
[ 2888.166934][T11795] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2888.172019][T11795] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2888.208771][T11795] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2888.210594][T11795] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2888.225993][T11795] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2890.212138][ T9592] Bluetooth: hci2: command tx timeout
[ 2891.961472][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 2891.961546][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 2892.183811][ T9592] Bluetooth: hci2: command tx timeout
[ 2894.164185][ T9592] Bluetooth: hci2: command tx timeout
[ 2895.811655][T11862] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2895.820156][T11862] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2895.820493][T11862] bridge_slave_0: entered allmulticast mode
[ 2895.844251][T11862] bridge_slave_0: entered promiscuous mode
[ 2895.934574][T11854] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2895.934592][T11854] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2895.934618][T11854] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2896.086876][T11859] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2896.102463][T11859] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2896.102797][T11859] bridge_slave_0: entered allmulticast mode
[ 2896.141922][T11795] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2896.157656][T11795] Bluetooth: hci2: command tx timeout
[ 2896.159648][T11795] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2896.193166][T11795] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2896.194392][T11795] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2896.195305][T11859] bridge_slave_0: entered promiscuous mode
[ 2896.235579][T11795] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2896.238416][T11862] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2896.238566][T11862] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2896.238869][T11862] bridge_slave_1: entered allmulticast mode
[ 2896.315867][T11862] bridge_slave_1: entered promiscuous mode
[ 2898.034876][T11859] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2898.035036][T11859] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2898.035327][T11859] bridge_slave_1: entered allmulticast mode
[ 2898.038326][T11859] bridge_slave_1: entered promiscuous mode
[ 2898.278766][ T9592] Bluetooth: hci4: command tx timeout
[ 2900.260001][ T9592] Bluetooth: hci4: command tx timeout
[ 2902.241320][ T9592] Bluetooth: hci4: command tx timeout
[ 2903.575651][T11866] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2903.575791][T11866] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2903.576113][T11866] bridge_slave_0: entered allmulticast mode
[ 2903.585003][T11866] bridge_slave_0: entered promiscuous mode
[ 2903.799414][T11862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2903.829453][T11866] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2903.830004][T11866] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2903.830308][T11866] bridge_slave_1: entered allmulticast mode
[ 2903.866688][T11866] bridge_slave_1: entered promiscuous mode
[ 2903.891457][T11859] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2903.902938][T11862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2904.222854][ T9592] Bluetooth: hci4: command tx timeout
[ 2905.191304][T11859] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2908.857926][T11866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2910.257895][T11862] team0: Port device team_slave_0 added
[ 2910.302446][T11866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2910.305254][T11859] team0: Port device team_slave_0 added
[ 2910.337234][T11862] team0: Port device team_slave_1 added
[ 2910.771836][T11859] team0: Port device team_slave_1 added
[ 2914.128397][T11795] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2914.153852][T11795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2914.177117][T11795] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2914.178770][T11795] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2914.179603][T11795] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2914.378103][T11866] team0: Port device team_slave_0 added
[ 2914.574852][T11862] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2914.574869][T11862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2914.574894][T11862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2914.604511][T11866] team0: Port device team_slave_1 added
[ 2914.627543][T11862] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2914.627562][T11862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2914.627587][T11862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2915.324169][T11795] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 2915.356888][T11795] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 2915.363916][T11795] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 2915.365200][T11795] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 2915.366023][T11795] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 2916.169783][T11866] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2916.169800][T11866] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2916.169826][T11866] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2916.189652][T11795] Bluetooth: hci3: command tx timeout
[ 2916.200647][T11866] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2916.200664][T11866] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2916.200688][T11866] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2917.328947][T11795] Bluetooth: hci7: command tx timeout
[ 2918.166971][T11795] Bluetooth: hci3: command tx timeout
[ 2919.310567][T11795] Bluetooth: hci7: command tx timeout
[ 2919.601119][ T9592] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 2919.619988][ T9592] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 2919.621872][ T9592] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 2919.623056][ T9592] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 2919.647268][ T9592] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 2920.148094][T11795] Bluetooth: hci3: command tx timeout
[ 2921.290869][T11795] Bluetooth: hci7: command tx timeout
[ 2921.679433][T11795] Bluetooth: hci8: command tx timeout
[ 2922.129777][T11795] Bluetooth: hci3: command tx timeout
[ 2923.281239][T11795] Bluetooth: hci7: command tx timeout
[ 2923.652987][T11795] Bluetooth: hci8: command tx timeout
[ 2925.650399][T11795] Bluetooth: hci8: command tx timeout
[ 2925.874854][T11894] chnl_net:caif_netlink_parms(): no params data found
[ 2927.476567][T11900] chnl_net:caif_netlink_parms(): no params data found
[ 2927.615249][T11795] Bluetooth: hci8: command tx timeout
[ 2929.082896][T11894] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2929.083497][T11894] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2929.083792][T11894] bridge_slave_0: entered allmulticast mode
[ 2929.086778][T11894] bridge_slave_0: entered promiscuous mode
[ 2929.162442][T11894] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2929.162575][T11894] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2929.162904][T11894] bridge_slave_1: entered allmulticast mode
[ 2929.178658][T11894] bridge_slave_1: entered promiscuous mode
[ 2931.774836][T11900] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2931.774970][T11900] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2931.775248][T11900] bridge_slave_0: entered allmulticast mode
[ 2931.780808][T11900] bridge_slave_0: entered promiscuous mode
[ 2931.793419][T11904] chnl_net:caif_netlink_parms(): no params data found
[ 2931.803244][T11907] chnl_net:caif_netlink_parms(): no params data found
[ 2931.824296][T11894] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2931.824561][T11900] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2931.826439][T11900] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2931.826722][T11900] bridge_slave_1: entered allmulticast mode
[ 2931.829591][T11900] bridge_slave_1: entered promiscuous mode
[ 2931.883872][T11894] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2935.347093][T11900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2935.405892][T11894] team0: Port device team_slave_0 added
[ 2935.424182][T11900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2935.506984][T11894] team0: Port device team_slave_1 added
[ 2937.074695][   T38] INFO: task kworker/u8:7:3968 blocked for more than 143 seconds.
[ 2937.074718][   T38]       Not tainted syzkaller #0
[ 2937.074730][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2937.074739][   T38] task:kworker/u8:7    state:D stack:20016 pid:3968  tgid:3968  ppid:2      task_flags:0x4208060 flags:0x00080000
[ 2937.074786][   T38] Workqueue: netns cleanup_net
[ 2937.074826][   T38] Call Trace:
[ 2937.074836][   T38]  <TASK>
[ 2937.074851][   T38]  __schedule+0x16f3/0x4c20
[ 2937.074902][   T38]  ? __pfx___schedule+0x10/0x10
[ 2937.074944][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2937.074971][   T38]  rt_mutex_schedule+0x77/0xf0
[ 2937.074990][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 2937.075010][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[ 2937.075047][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 2937.075069][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 2937.075088][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 2937.075105][   T38]  ? __lock_acquire+0xab9/0xd20
[ 2937.075138][   T38]  ? rcu_barrier+0x4c/0x570
[ 2937.075172][   T38]  ? rcu_barrier+0x4c/0x570
[ 2937.075189][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 2937.075207][   T38]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 2937.075231][   T38]  rcu_barrier+0x4c/0x570
[ 2937.075261][   T38]  netdev_run_todo+0x327/0xea0
[ 2937.075291][   T38]  ? __pfx_netdev_run_todo+0x10/0x10
[ 2937.075312][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2937.075340][   T38]  ? nsim_destroy+0x38d/0x680
[ 2937.075364][   T38]  ? kfree+0x197/0x950
[ 2937.075392][   T38]  ? nsim_destroy+0x38d/0x680
[ 2937.075421][   T38]  nsim_destroy+0x3ae/0x680
[ 2937.075454][   T38]  __nsim_dev_port_del+0x14d/0x1b0
[ 2937.075479][   T38]  nsim_dev_reload_destroy+0x288/0x490
[ 2937.075506][   T38]  nsim_dev_reload_down+0x8a/0xc0
[ 2937.075529][   T38]  devlink_reload+0x1b6/0x8d0
[ 2937.075552][   T38]  ? xa_get_mark+0x67/0x7b0
[ 2937.075578][   T38]  ? __pfx_devlink_reload+0x10/0x10
[ 2937.075595][   T38]  ? xa_get_mark+0x70f/0x7b0
[ 2937.075631][   T38]  devlink_pernet_pre_exit+0x1d9/0x3d0
[ 2937.075661][   T38]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[ 2937.075693][   T38]  ? class_remove_file_ns+0x124/0x160
[ 2937.075723][   T38]  ops_undo_list+0x187/0x990
[ 2937.075749][   T38]  ? __pfx_ops_undo_list+0x10/0x10
[ 2937.075765][   T38]  ? rt_spin_unlock+0x150/0x200
[ 2937.075789][   T38]  ? rt_spin_unlock+0x161/0x200
[ 2937.075811][   T38]  cleanup_net+0x4de/0x820
[ 2937.075833][   T38]  ? __pfx_cleanup_net+0x10/0x10
[ 2937.075854][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2937.075876][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 2937.075897][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 2937.075921][   T38]  process_scheduled_works+0xae1/0x17b0
[ 2937.075973][   T38]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2937.076013][   T38]  worker_thread+0x8a0/0xda0
[ 2937.076038][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2937.076070][   T38]  ? __kthread_parkme+0x7b/0x200
[ 2937.076102][   T38]  kthread+0x711/0x8a0
[ 2937.076129][   T38]  ? __pfx_worker_thread+0x10/0x10
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 2937.076150][   T38]  ? __pfx_kthread+0x10/0x10
[ 2937.076171][   T38]  ? rt_spin_unlock+0x150/0x200
[ 2937.076196][   T38]  ? rt_spin_unlock+0x161/0x200
[ 2937.076212][   T38]  ? __pfx_kthread+0x10/0x10
[ 2937.076237][   T38]  ret_from_fork+0x4bc/0x870
[ 2937.076262][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 2937.076292][   T38]  ? __switch_to_asm+0x39/0x70
[ 2937.076310][   T38]  ? __switch_to_asm+0x33/0x70
[ 2937.076327][   T38]  ? __pfx_kthread+0x10/0x10
[ 2937.076352][   T38]  ret_from_fork_asm+0x1a/0x30
[ 2937.076395][   T38]  </TASK>
[ 2937.076408][   T38] INFO: task syz-executor:11204 blocked for more than 143 seconds.
[ 2937.076422][   T38]       Not tainted syzkaller #0
[ 2937.076432][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2937.076442][   T38] task:syz-executor    state:D stack:18064 pid:11204 tgid:11204 ppid:1      task_flags:0x480140 flags:0x00080003
[ 2937.076483][   T38] Call Trace:
[ 2937.076489][   T38]  <TASK>
[ 2937.076502][   T38]  __schedule+0x16f3/0x4c20
[ 2937.076551][   T38]  ? __pfx___schedule+0x10/0x10
[ 2937.076592][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2937.076617][   T38]  rt_mutex_schedule+0x77/0xf0
[ 2937.076635][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 2937.076655][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[ 2937.076692][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 2937.076714][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 2937.076734][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 2937.076751][   T38]  ? __lock_acquire+0xab9/0xd20
[ 2937.076786][   T38]  ? rcu_barrier+0x4c/0x570
[ 2937.076818][   T38]  ? rcu_barrier+0x4c/0x570
[ 2937.076835][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 2937.076852][   T38]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 2937.076876][   T38]  rcu_barrier+0x4c/0x570
[ 2937.076906][   T38]  netdev_run_todo+0x327/0xea0
[ 2937.076933][   T38]  ? __pfx_netdev_run_todo+0x10/0x10
[ 2937.076953][   T38]  ? kasan_quarantine_put+0xdd/0x220
[ 2937.076974][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2937.077001][   T38]  ? nsim_destroy+0x38d/0x680
[ 2937.077025][   T38]  ? kfree+0x197/0x950
[ 2937.077043][   T38]  ? nsim_destroy+0x38d/0x680
[ 2937.077072][   T38]  nsim_destroy+0x3ae/0x680
[ 2937.077105][   T38]  __nsim_dev_port_del+0x14d/0x1b0
[ 2937.077128][   T38]  nsim_dev_reload_destroy+0x288/0x490
[ 2937.077147][   T38]  ? nsim_drv_remove+0x50/0x160
[ 2937.077171][   T38]  nsim_drv_remove+0x58/0x160
[ 2937.077189][   T38]  ? __pfx_nsim_bus_remove+0x10/0x10
[ 2937.077214][   T38]  device_release_driver_internal+0x46f/0x800
[ 2937.077247][   T38]  bus_remove_device+0x355/0x420
[ 2937.077274][   T38]  device_del+0x515/0x8e0
[ 2937.077299][   T38]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2937.077326][   T38]  ? __pfx_device_del+0x10/0x10
[ 2937.077359][   T38]  device_unregister+0x20/0xc0
[ 2937.077388][   T38]  del_device_store+0x2aa/0x360
[ 2937.077416][   T38]  ? __pfx_del_device_store+0x10/0x10
[ 2937.077441][   T38]  ? sysfs_file_kobj+0x1e4/0x230
[ 2937.077468][   T38]  ? sysfs_kf_write+0x166/0x260
[ 2937.077488][   T38]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 2937.077503][   T38]  kernfs_fop_write_iter+0x3b0/0x540
[ 2937.077534][   T38]  vfs_write+0x5d5/0xb40
[ 2937.077562][   T38]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 2937.077587][   T38]  ? __pfx_vfs_write+0x10/0x10
[ 2937.077619][   T38]  ? do_sys_openat2+0x154/0x1c0
[ 2937.077647][   T38]  ksys_write+0x14b/0x260
[ 2937.077671][   T38]  ? __pfx_ksys_write+0x10/0x10
[ 2937.077697][   T38]  ? do_syscall_64+0xbe/0xfa0
[ 2937.077723][   T38]  do_syscall_64+0xfa/0xfa0
[ 2937.077743][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2937.077764][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2937.077783][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 2937.077806][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2937.077824][   T38] RIP: 0033:0x7f2c4415da7f
[ 2937.077841][   T38] RSP: 002b:00007ffccc23db80 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2937.077860][   T38] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f2c4415da7f
[ 2937.077873][   T38] RDX: 0000000000000001 RSI: 00007ffccc23dbd0 RDI: 0000000000000005
[ 2937.077886][   T38] RBP: 00007f2c441e3256 R08: 0000000000000000 R09: 00007ffccc23d9d7
[ 2937.077899][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 2937.077910][   T38] R13: 00007ffccc23dbd0 R14: 00007f2c44ee4620 R15: 0000000000000003
[ 2937.077944][   T38]  </TASK>
[ 2937.077956][   T38] INFO: task syz-executor:11643 blocked for more than 143 seconds.
[ 2937.077970][   T38]       Not tainted syzkaller #0
[ 2937.077979][   T38]       Blocked by coredump.
[ 2937.077985][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2937.077994][   T38] task:syz-executor    state:D stack:19536 pid:11643 tgid:11643 ppid:1      task_flags:0x40054c flags:0x00080003
[ 2937.078033][   T38] Call Trace:
[ 2937.078040][   T38]  <TASK>
[ 2937.078052][   T38]  __schedule+0x16f3/0x4c20
[ 2937.078094][   T38]  ? finish_task_switch+0x266/0x950
[ 2937.078123][   T38]  ? __pfx___schedule+0x10/0x10
[ 2937.078163][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2937.078188][   T38]  rt_mutex_schedule+0x77/0xf0
[ 2937.078206][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 2937.078225][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[ 2937.078262][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 2937.078283][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 2937.078303][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 2937.078320][   T38]  ? __lock_acquire+0xab9/0xd20
[ 2937.078354][   T38]  ? rcu_barrier+0x4c/0x570
[ 2937.078392][   T38]  ? rcu_barrier+0x4c/0x570
[ 2937.078409][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 2937.078426][   T38]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 2937.078447][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 2937.078470][   T38]  rcu_barrier+0x4c/0x570
[ 2937.078493][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 2937.078514][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 2937.078535][   T38]  netdev_run_todo+0x327/0xea0
[ 2937.078560][   T38]  ? __pfx_netif_state_change+0x10/0x10
[ 2937.078585][   T38]  ? __pfx_netdev_run_todo+0x10/0x10
[ 2937.078607][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2937.078638][   T38]  ? netdev_state_change+0x1ca/0x220
[ 2937.078659][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 2937.078680][   T38]  tun_chr_close+0x13f/0x1c0
[ 2937.078703][   T38]  __fput+0x45b/0xa80
[ 2937.078735][   T38]  task_work_run+0x1d4/0x260
[ 2937.078757][   T38]  ? __pfx_task_work_run+0x10/0x10
[ 2937.078775][   T38]  ? do_exit+0x6b0/0x2300
[ 2937.078800][   T38]  ? do_exit+0x6b0/0x2300
[ 2937.078829][   T38]  do_exit+0x6b5/0x2300
[ 2937.078853][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2937.078888][   T38]  ? __pfx_do_exit+0x10/0x10
[ 2937.078909][   T38]  ? rt_mutex_slowunlock+0x493/0x8a0
[ 2937.078927][   T38]  ? rt_spin_lock+0x1c1/0x3e0
[ 2937.078961][   T38]  do_group_exit+0x21c/0x2d0
[ 2937.078979][   T38]  ? rt_spin_unlock+0x161/0x200
[ 2937.079001][   T38]  get_signal+0x125d/0x1310
[ 2937.079046][   T38]  arch_do_signal_or_restart+0xa0/0x790
[ 2937.079066][   T38]  ? fput_close_sync+0x119/0x200
[ 2937.079087][   T38]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 2937.079126][   T38]  ? exit_to_user_mode_loop+0x40/0x130
[ 2937.079153][   T38]  exit_to_user_mode_loop+0x72/0x130
[ 2937.079177][   T38]  do_syscall_64+0x2bd/0xfa0
[ 2937.079198][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2937.079219][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2937.079237][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 2937.079260][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2937.079278][   T38] RIP: 0033:0x7feb313b0e5c
[ 2937.079293][   T38] RSP: 002b:00007ffd27ffb5f0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 2937.079313][   T38] RAX: 0000000000000028 RBX: 00007feb32134620 RCX: 00007feb313b0e5c
[ 2937.079327][   T38] RDX: 0000000000000028 RSI: 00007feb32134670 RDI: 0000000000000003
[ 2937.079340][   T38] RBP: 0000000000000000 R08: 00007ffd27ffb644 R09: 000000000000000c
[ 2937.079352][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[ 2937.079364][   T38] R13: 0000000000000000 R14: 00007feb32134670 R15: 0000000000000000
[ 2937.079403][   T38]  </TASK>
[ 2937.079418][   T38] INFO: task syz-executor:11699 blocked for more than 143 seconds.
[ 2937.079431][   T38]       Not tainted syzkaller #0
[ 2937.079441][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2937.079450][   T38] task:syz-executor    state:D stack:25544 pid:11699 tgid:11699 ppid:1      task_flags:0x400140 flags:0x00080003
[ 2937.079493][   T38] Call Trace:
[ 2937.079499][   T38]  <TASK>
[ 2937.079512][   T38]  __schedule+0x16f3/0x4c20
[ 2937.079553][   T38]  ? finish_task_switch+0x266/0x950
[ 2937.079582][   T38]  ? __pfx___schedule+0x10/0x10
[ 2937.079623][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2937.079649][   T38]  rt_mutex_schedule+0x77/0xf0
[ 2937.079667][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 2937.079686][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[ 2937.079723][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 2937.079745][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 2937.079765][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 2937.079782][   T38]  ? __lock_acquire+0xab9/0xd20
[ 2937.079817][   T38]  ? rcu_barrier+0x4c/0x570
[ 2937.079850][   T38]  ? rcu_barrier+0x4c/0x570
[ 2937.079867][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 2937.079884][   T38]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 2937.079909][   T38]  rcu_barrier+0x4c/0x570
[ 2937.079939][   T38]  netdev_run_todo+0x327/0xea0
[ 2937.079963][   T38]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 2937.079988][   T38]  ? __pfx_netdev_run_todo+0x10/0x10
[ 2937.080009][   T38]  ? net_generic+0x1e/0x240
[ 2937.080031][   T38]  ? net_generic+0x1e/0x240
[ 2937.080052][   T38]  ? net_generic+0x1f4/0x240
[ 2937.080079][   T38]  ops_undo_list+0x3e1/0x990
[ 2937.080105][   T38]  ? __pfx_ops_undo_list+0x10/0x10
[ 2937.080121][   T38]  ? ops_init+0x469/0x5c0
[ 2937.080149][   T38]  setup_net+0x2d6/0x320
[ 2937.080177][   T38]  ? __pfx_setup_net+0x10/0x10
[ 2937.080204][   T38]  ? __mutex_rt_init+0x3b/0x50
[ 2937.080225][   T38]  ? preinit_net+0x4ab/0x770
[ 2937.080251][   T38]  copy_net_ns+0x34e/0x4e0
[ 2937.080281][   T38]  create_new_namespaces+0x3f3/0x720
[ 2937.080308][   T38]  ? security_capable+0x7e/0x2e0
[ 2937.080339][   T38]  unshare_nsproxy_namespaces+0x11c/0x170
[ 2937.080364][   T38]  ksys_unshare+0x4c8/0x8c0
[ 2937.080401][   T38]  ? __pfx_ksys_unshare+0x10/0x10
[ 2937.080422][   T38]  ? dnotify_flush+0x1e8/0x5c0
[ 2937.080442][   T38]  ? __pfx_fput_close_sync+0x10/0x10
[ 2937.080475][   T38]  __x64_sys_unshare+0x38/0x50
[ 2937.080497][   T38]  do_syscall_64+0xfa/0xfa0
[ 2937.080518][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2937.080557][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2937.080575][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 2937.080598][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2937.080616][   T38] RIP: 0033:0x7f35af9207c7
[ 2937.080632][   T38] RSP: 002b:00007ffeffbb8448 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[ 2937.080651][   T38] RAX: ffffffffffffffda RBX: 00007f35afb75f40 RCX: 00007f35af9207c7
[ 2937.080666][   T38] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000
[ 2937.080678][   T38] RBP: 00007f35afb767b8 R08: 0000000000000000 R09: 0000000000000000
[ 2937.080691][   T38] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000008
[ 2937.080703][   T38] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[ 2937.080735][   T38]  </TASK>
[ 2937.080744][   T38] INFO: task syz.8.14246:11785 blocked for more than 143 seconds.
[ 2937.080758][   T38]       Not tainted syzkaller #0
[ 2937.080767][   T38]       Blocked by coredump.
[ 2937.080774][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2937.080784][   T38] task:syz.8.14246     state:D stack:25096 pid:11785 tgid:11784 ppid:8345   task_flags:0x40044c flags:0x00080001
[ 2937.080828][   T38] Call Trace:
[ 2937.080835][   T38]  <TASK>
[ 2937.080848][   T38]  __schedule+0x16f3/0x4c20
[ 2937.080890][   T38]  ? finish_task_switch+0x266/0x950
[ 2937.080919][   T38]  ? __pfx___schedule+0x10/0x10
[ 2937.080959][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2937.080985][   T38]  rt_mutex_schedule+0x77/0xf0
[ 2937.081004][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[ 2937.081022][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[ 2937.081059][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[ 2937.081081][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[ 2937.081101][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[ 2937.081118][   T38]  ? __lock_acquire+0xab9/0xd20
[ 2937.081152][   T38]  ? rcu_barrier+0x4c/0x570
[ 2937.081185][   T38]  ? rcu_barrier+0x4c/0x570
[ 2937.081202][   T38]  mutex_lock_nested+0x16a/0x1d0
[ 2937.081219][   T38]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 2937.081239][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 2937.081262][   T38]  rcu_barrier+0x4c/0x570
[ 2937.081285][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 2937.081306][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 2937.081328][   T38]  netdev_run_todo+0x327/0xea0
[ 2937.081353][   T38]  ? __pfx_netif_state_change+0x10/0x10
[ 2937.081384][   T38]  ? __pfx_netdev_run_todo+0x10/0x10
[ 2937.081405][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2937.081436][   T38]  ? netdev_state_change+0x1ca/0x220
[ 2937.081456][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[ 2937.081477][   T38]  tun_chr_close+0x13f/0x1c0
[ 2937.081500][   T38]  __fput+0x45b/0xa80
[ 2937.081531][   T38]  task_work_run+0x1d4/0x260
[ 2937.081553][   T38]  ? __pfx_task_work_run+0x10/0x10
[ 2937.081571][   T38]  ? do_exit+0x6b0/0x2300
[ 2937.081595][   T38]  ? do_exit+0x6b0/0x2300
[ 2937.081624][   T38]  do_exit+0x6b5/0x2300
[ 2937.081647][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2937.081679][   T38]  ? __pfx_do_exit+0x10/0x10
[ 2937.081701][   T38]  ? rt_mutex_slowunlock+0x493/0x8a0
[ 2937.081720][   T38]  ? rt_spin_lock+0x1c1/0x3e0
[ 2937.081753][   T38]  do_group_exit+0x21c/0x2d0
[ 2937.081770][   T38]  ? rt_spin_unlock+0x161/0x200
[ 2937.081792][   T38]  get_signal+0x125d/0x1310
[ 2937.081837][   T38]  arch_do_signal_or_restart+0xa0/0x790
[ 2937.081861][   T38]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 2937.081882][   T38]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 2937.081917][   T38]  ? exit_to_user_mode_loop+0x40/0x130
[ 2937.081943][   T38]  exit_to_user_mode_loop+0x72/0x130
[ 2937.081967][   T38]  do_syscall_64+0x2bd/0xfa0
[ 2937.081988][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2937.082009][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2937.082028][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 2937.082050][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2937.082069][   T38] RIP: 0033:0x7f78c3ffefc9
[ 2937.082085][   T38] RSP: 002b:00007f78c2266038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2937.082103][   T38] RAX: 0000000000000054 RBX: 00007f78c4255fa0 RCX: 00007f78c3ffefc9
[ 2937.082116][   T38] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[ 2937.082127][   T38] RBP: 00007f78c4081f91 R08: 0000000000000000 R09: 0000000000000000
[ 2937.082140][   T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2937.082152][   T38] R13: 00007f78c4256038 R14: 00007f78c4255fa0 R15: 00007ffd2a7b2478
[ 2937.082185][   T38]  </TASK>
[ 2937.082251][   T38] 
[ 2937.082251][   T38] Showing all locks held in the system:
[ 2937.082265][   T38] 4 locks held by rcuc/1/28:
[ 2937.082278][   T38] 1 lock held by khungtaskd/38:
[ 2937.082289][   T38]  #0: ffffffff8d5aa4c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 2937.082360][   T38] 2 locks held by getty/5560:
[ 2937.082370][   T38]  #0: ffff88823bf2c8a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 2937.082423][   T38]  #1: ffffc90003e8b2e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1400
[ 2937.644655][   T38] 2 locks held by sshd-session/5785:
[ 2937.644671][   T38] 4 locks held by kworker/u8:56/6594:
[ 2937.644688][   T38] 3 locks held by kworker/u8:0/10627:
[ 2937.644698][   T38]  #0: ffff88813ff69938 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 2937.644751][   T38]  #1: ffffc9000fc9fba0 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 2937.644795][   T38]  #2: ffffffff8e862eb8 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[ 2937.644842][   T38] 3 locks held by kworker/u8:1/28594:
[ 2937.644852][   T38]  #0: ffff88802f780938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 2937.644896][   T38]  #1: ffffc9000c7bfba0 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 2937.644940][   T38]  #2: ffffffff8e862eb8 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30
[ 2937.644983][   T38] 6 locks held by kworker/u8:7/3968:
[ 2937.644994][   T38]  #0: ffff888019ad4938 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 2937.645037][   T38]  #1: ffffc9001474fba0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 2937.645087][   T38]  #2: ffffffff8e855fa0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x820
[ 2937.645128][   T38]  #3: ffff8880312830d8 (&dev->mutex){....}-{4:4}, at: devlink_pernet_pre_exit+0x10a/0x3d0
[ 2937.645175][   T38]  #4: ffff888023bfb300 (&devlink->lock_key#14){+.+.}-{4:4}, at: devlink_pernet_pre_exit+0x11c/0x3d0
[ 2937.645226][   T38]  #5: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.645268][   T38] 7 locks held by syz-executor/11204:
[ 2937.645278][   T38]  #0: ffff8880344a4480 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x217/0xb40
[ 2937.645325][   T38]  #1: ffff888030fec078 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x1df/0x540
[ 2937.645370][   T38]  #2: ffff888026a63008 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x232/0x540
[ 2937.645419][   T38]  #3: ffffffff8e0f3c58 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x360
[ 2937.645467][   T38]  #4: ffff88805c46f0d8 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xb6/0x800
[ 2937.645514][   T38]  #5: ffff888036ca8300 (&devlink->lock_key#2){+.+.}-{4:4}, at: nsim_drv_remove+0x50/0x160
[ 2937.645559][   T38]  #6: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.645601][   T38] 1 lock held by syz.6.14100/11469:
[ 2937.645612][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.645652][   T38] 1 lock held by syz-executor/11643:
[ 2937.645663][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.645704][   T38] 2 locks held by syz-executor/11699:
[ 2937.645715][   T38]  #0: ffffffff8e855fa0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x337/0x4e0
[ 2937.645760][   T38]  #1: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.645800][   T38] 2 locks held by syz.5.14245/11782:
[ 2937.645811][   T38]  #0: ffffffff8ed7e228 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 2937.645855][   T38]  #1: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.645896][   T38] 1 lock held by syz.8.14246/11785:
[ 2937.645906][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.645946][   T38] 1 lock held by syz-executor/11787:
[ 2937.645957][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.645998][   T38] 1 lock held by syz-executor/11790:
[ 2937.646008][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646048][   T38] 1 lock held by syz-executor/11793:
[ 2937.646059][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646105][   T38] 1 lock held by syz-executor/11797:
[ 2937.646116][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646157][   T38] 1 lock held by syz-executor/11800:
[ 2937.646167][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646210][   T38] 1 lock held by syz-executor/11822:
[ 2937.646221][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646262][   T38] 1 lock held by syz-executor/11824:
[ 2937.646272][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646314][   T38] 1 lock held by syz-executor/11828:
[ 2937.646325][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646366][   T38] 1 lock held by syz-executor/11842:
[ 2937.646376][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646418][   T38] 1 lock held by syz-executor/11854:
[ 2937.646429][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646470][   T38] 1 lock held by syz-executor/11859:
[ 2937.646480][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646522][   T38] 1 lock held by syz-executor/11862:
[ 2937.646533][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646573][   T38] 1 lock held by syz-executor/11866:
[ 2937.646583][   T38]  #0: ffffffff8d5afe70 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 2937.646628][   T38] 2 locks held by syz-executor/11894:
[ 2937.646639][   T38] 2 locks held by syz-executor/11900:
[ 2937.646650][   T38]  #0: ffffffff8dfecfa0 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 2937.646694][   T38]  #1: ffffffff8e862eb8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8e9/0x1c80
[ 2937.646741][   T38] 4 locks held by syz-executor/11903:
[ 2937.646752][   T38] 2 locks held by syz-executor/11904:
[ 2937.646763][   T38]  #0: ffffffff8dfecfa0 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 2937.646806][   T38]  #1: ffffffff8e862eb8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8e9/0x1c80
[ 2937.646852][   T38] 4 locks held by syz-executor/11906:
[ 2937.646862][   T38] 2 locks held by syz-executor/11907:
[ 2937.646873][   T38]  #0: ffffffff8dfecfa0 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 2937.646917][   T38]  #1: ffffffff8e862eb8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8e9/0x1c80
[ 2937.646962][   T38] 1 lock held by syz-executor/11912:
[ 2937.646973][   T38]  #0: ffffffff8e862eb8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8e9/0x1c80
[ 2937.647023][   T38] 
[ 2937.647028][   T38] =============================================
[ 2937.647028][   T38] 
[ 2937.647052][   T38] NMI backtrace for cpu 1
[ 2937.647072][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2937.647098][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2937.647109][   T38] Call Trace:
[ 2937.647117][   T38]  <TASK>
[ 2937.647127][   T38]  dump_stack_lvl+0x189/0x250
[ 2937.647156][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2937.647180][   T38]  ? __pfx__printk+0x10/0x10
[ 2937.647213][   T38]  nmi_cpu_backtrace+0x39e/0x3d0
[ 2937.647234][   T38]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 2937.647254][   T38]  ? __pfx__printk+0x10/0x10
[ 2937.647279][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2937.647300][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 2937.647321][   T38]  watchdog+0xf60/0xfa0
[ 2937.647349][   T38]  ? watchdog+0x1e2/0xfa0
[ 2937.647377][   T38]  kthread+0x711/0x8a0
[ 2937.647403][   T38]  ? __pfx_watchdog+0x10/0x10
[ 2937.647425][   T38]  ? __pfx_kthread+0x10/0x10
[ 2937.647444][   T38]  ? rt_spin_unlock+0x150/0x200
[ 2937.647467][   T38]  ? rt_spin_unlock+0x161/0x200
[ 2937.647483][   T38]  ? __pfx_kthread+0x10/0x10
[ 2937.647507][   T38]  ret_from_fork+0x4bc/0x870
[ 2937.647529][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 2937.647556][   T38]  ? __switch_to_asm+0x39/0x70
[ 2937.647572][   T38]  ? __switch_to_asm+0x33/0x70
[ 2937.647588][   T38]  ? __pfx_kthread+0x10/0x10
[ 2937.647613][   T38]  ret_from_fork_asm+0x1a/0x30
[ 2937.647646][   T38]  </TASK>
[ 2937.647653][   T38] Sending NMI from CPU 1 to CPUs 0:
[ 2937.647676][    C0] NMI backtrace for cpu 0
[ 2937.647690][    C0] CPU: 0 UID: 0 PID: 17 Comm: pr/legacy Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2937.647709][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 2937.647718][    C0] RIP: 0010:io_serial_in+0x77/0xc0
[ 2937.647740][    C0] Code: e8 de 0d ba fc 44 89 f9 d3 e3 49 83 ee 80 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 5f c5 1b fd 41 03 1e 89 da ec <0f> b6 c0 5b 41 5c 41 5e 41 5f e9 0a 4f bf 05 cc 44 89 f9 80 e1 07
[ 2937.647754][    C0] RSP: 0018:ffffc90000167870 EFLAGS: 00000202
[ 2937.647768][    C0] RAX: 1ffffffff31d1700 RBX: 00000000000003fd RCX: 0000000000000000
[ 2937.647780][    C0] RDX: 00000000000003fd RSI: 0000000000000000 RDI: 0000000000000000
[ 2937.647790][    C0] RBP: ffffffff98e8c0f0 R08: 0000000000000000 R09: 0000000000000000
[ 2937.647801][    C0] R10: dffffc0000000000 R11: ffffffff8504afd0 R12: dffffc0000000000
[ 2937.647814][    C0] R13: 0000000000000000 R14: ffffffff98e8be60 R15: 0000000000000000
[ 2937.647825][    C0] FS:  0000000000000000(0000) GS:ffff888126dfc000(0000) knlGS:0000000000000000
[ 2937.647839][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2937.647851][    C0] CR2: 00007fabb956fb9b CR3: 000000000d3a6000 CR4: 00000000003526f0
[ 2937.647865][    C0] Call Trace:
[ 2937.647872][    C0]  <TASK>
[ 2937.647880][    C0]  wait_for_lsr+0x1aa/0x2f0
[ 2937.647906][    C0]  serial8250_console_write+0x11bd/0x1b40
[ 2937.647934][    C0]  ? __pfx_serial8250_console_write+0x10/0x10
[ 2937.647953][    C0]  ? console_flush_all+0x13a/0xb40
[ 2937.647973][    C0]  ? console_flush_all+0x476/0xb40
[ 2937.647993][    C0]  console_flush_all+0x666/0xb40
[ 2937.648011][    C0]  ? console_flush_all+0x13a/0xb40
[ 2937.648031][    C0]  ? __pfx_console_flush_all+0x10/0x10
[ 2937.648057][    C0]  __console_flush_and_unlock+0x9b/0x160
[ 2937.648073][    C0]  ? legacy_kthread_func+0x136/0x1a0
[ 2937.648093][    C0]  ? __pfx___console_flush_and_unlock+0x10/0x10
[ 2937.648109][    C0]  ? schedule+0x91/0x360
[ 2937.648130][    C0]  legacy_kthread_func+0x13b/0x1a0
[ 2937.648149][    C0]  ? __pfx_legacy_kthread_func+0x10/0x10
[ 2937.648167][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 2937.648186][    C0]  ? __kthread_parkme+0x7b/0x200
[ 2937.648204][    C0]  ? __kthread_parkme+0x1a1/0x200
[ 2937.648226][    C0]  kthread+0x711/0x8a0
[ 2937.648247][    C0]  ? __pfx_legacy_kthread_func+0x10/0x10
[ 2937.648264][    C0]  ? __pfx_kthread+0x10/0x10
[ 2937.648282][    C0]  ? rt_spin_unlock+0x150/0x200
[ 2937.648300][    C0]  ? rt_spin_unlock+0x161/0x200
[ 2937.648314][    C0]  ? __pfx_kthread+0x10/0x10
[ 2937.648340][    C0]  ret_from_fork+0x4bc/0x870
[ 2937.648358][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 2937.648379][    C0]  ? __switch_to_asm+0x39/0x70
[ 2937.648394][    C0]  ? __switch_to_asm+0x33/0x70
[ 2937.648408][    C0]  ? __pfx_kthread+0x10/0x10
[ 2937.648428][    C0]  ret_from_fork_asm+0x1a/0x30
[ 2937.648453][    C0]  </TASK>