last executing test programs:

3m5.652878376s ago: executing program 32 (id=4462):
socket(0x2, 0xa, 0x300)
r0 = socket(0x2c, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="110000000400000004000000ff"], 0x17)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r1, 0x0, &(0x7f0000000080)=@udp6=r0}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r1, 0x0, &(0x7f0000001500)=@tcp=r0}, 0x20)
write$tun(0xffffffffffffffff, &(0x7f0000000740)=ANY=[@ANYBLOB="70000000ffffffffffff0180c200000e0800450000780000000000177c2275e687350016c82f9078ac1e0001e000000164006558006490780200000004000000020000002915a9"], 0x8a)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000700)="ef16", 0x0}, 0x50)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b000000", @ANYRES32=r6, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

2m10.250372143s ago: executing program 3 (id=5308):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0xffffff08, 0xfffffffe}})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000002c0)={{0xffffffff, 0xeeef0000, 0xe, 0x0, 0x81, 0x4, 0xa, 0x4e, 0x0, 0x7, 0xa, 0x1}, {0x5000, 0xffff1000, 0x3, 0x5, 0x2, 0x8, 0xd, 0x3, 0x0, 0x81, 0x8, 0x1}, {0x5000, 0x0, 0x0, 0x7, 0x4, 0x1, 0x7, 0xc, 0x8, 0x6, 0x2}, {0xffff1000, 0xd5dd0000, 0xe, 0x2, 0x1, 0x3, 0x10, 0x0, 0x1, 0x6, 0x4, 0x9}, {0x100002, 0xeeee8000, 0x9, 0x3, 0x80, 0xee, 0x0, 0x7, 0x7c, 0x0, 0xe, 0x9}, {0x3000, 0x4, 0x8, 0x1, 0x5, 0x4, 0x1, 0x1, 0x6, 0x86, 0xb, 0x2}, {0xeeee8000, 0xeeee0000, 0xd, 0x7, 0x7, 0x3, 0x1d, 0x47, 0x30, 0x2, 0x8, 0xe1}, {0x2000, 0x2, 0xc, 0xf8, 0xfd, 0xa, 0x2, 0x4, 0x3, 0x8, 0x5, 0xce}, {0x4, 0x7}, {0x6000, 0x5}, 0x80000035, 0x0, 0x0, 0x60, 0x7, 0x1000, 0x30000, [0x5, 0x8001, 0x8]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x11, 0x0, 0x0)

2m10.140609333s ago: executing program 3 (id=5310):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000001540)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r2 = accept4(r1, 0x0, 0x0, 0x0)
recvmsg$can_bcm(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000780)=[{&(0x7f00000004c0)=""/48, 0x30}, {&(0x7f0000000500)=""/43, 0x2b}], 0x2}, 0x0)
sendmmsg$alg(r2, &(0x7f0000002800)=[{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000015c0)="c295c5ab29caa299c7583dd996ddbf29991706a1232e6ed9cdb1d830cf103989202512f59f44393a1336a8ef8cd5e5c97e", 0x31}], 0x1, &(0x7f0000000340)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0xc0}], 0x1, 0x0) (async)
pipe(&(0x7f0000000500)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r5, 0x5, &(0x7f00000005c0)='fd', 0x0, r4) (async)
r6 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
finit_module(r6, 0x0, 0x1) (async)
ioctl$DRM_IOCTL_MODE_GETPLANE(r3, 0xc02064b6, &(0x7f0000000100)={0x0, <r7=>0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0]}) (async)
r8 = syz_open_dev$sndpcmp(&(0x7f0000001840), 0x1, 0x200)
ioctl$SNDRV_PCM_IOCTL_READN_FRAMES(r8, 0x80184153, 0x0) (async)
ioctl$DRM_IOCTL_MODE_CURSOR2(r4, 0xc02464bb, &(0x7f0000000140)={0x3, r7, 0x3, 0xc5df, 0xb5e5, 0x4, 0x401, 0x0, 0x3b002153}) (async)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r5, 0x0, 0x8)
fchdir(r9)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc0) (async, rerun: 32)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80) (async, rerun: 32)
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r10, 0xae60)
ioctl$KVM_CREATE_PIT2(r10, 0x4040ae77, &(0x7f0000000040)={0xfffffffe})
openat$kvm(0xffffffffffffff9c, 0x0, 0x3, 0x0) (async, rerun: 64)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x2, 0x180, 0x4, 0x14, 0xf1, 0x50, 0x12, 0x5, 0x0, 0x29, 0x0, 0x6, 0x0, 0xbda], 0x4, 0x43100}) (async, rerun: 64)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0) (async, rerun: 64)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (rerun: 64)
ioctl$KVM_SET_REGS(r11, 0x4090ae82, &(0x7f00000003c0)={[0x7, 0x1000000000, 0x0, 0x43, 0x2000001, 0x0, 0x2004cb, 0x0, 0xa7c, 0x68ff, 0x5, 0x9, 0x3], 0xeeee8000, 0x202}) (async, rerun: 64)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x3000, 0xeeee0000, 0x8, 0x8, 0xb, 0xe6, 0x40, 0x9, 0x0, 0x81, 0x80}, {0x5000, 0x3000, 0x3, 0x0, 0x42, 0x5, 0x7d, 0x6, 0x36, 0x0, 0x2, 0x87}, {0x0, 0xdddd0000, 0xe, 0x5, 0x3, 0x4, 0x0, 0x9, 0x1, 0xa4, 0x5, 0x5}, {0x1, 0xeeee0000, 0x9, 0x6, 0x5, 0x42, 0xb, 0xff, 0x8, 0x7, 0xe}, {0xeeee0000, 0xd000, 0xf, 0x3, 0x16, 0x7, 0xab, 0x8, 0x9, 0x9, 0xf7, 0x9a}, {0x2000, 0xdddd0000, 0xe, 0xa0, 0xb1, 0x8, 0x1, 0xa0, 0x82, 0x31, 0x1, 0x7}, {0x3000, 0x3000, 0x4, 0x5, 0x7, 0x3, 0x7, 0x3, 0x8, 0x81, 0x40, 0x70}, {0xd000, 0x4000, 0xa, 0x5, 0xcd, 0x7, 0x1, 0x9, 0x2, 0xd, 0xb0, 0x81}, {0x4000, 0x30}, {0x8000000, 0x6}, 0x80000031, 0x0, 0x3000, 0x2024, 0x2, 0x0, 0x100000, [0x6800000000000000, 0x4, 0x3, 0x8]}) (rerun: 64)

2m10.060045864s ago: executing program 3 (id=5311):
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_clock_offset={{0x1c, 0x5}, {0x0, 0xc9, 0x81ad}}}, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

2m9.971540911s ago: executing program 3 (id=5313):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000040)={0xb}, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff})
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in=@empty, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x3f}, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8, 0x7d}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc, 0x4}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x18, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0xfffffffc}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000180)={0x7, [0x8001, 0x5, 0x6, 0x0, 0xd, 0x1, 0x2]}, 0x12)
pipe2$9p(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RVERSION(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff060002000800395032303030"], 0x15)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) (async)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000040)={0xb}, 0x1) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)) (async)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in=@empty, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x3f}, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8, 0x7d}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc, 0x4}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0) (async)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x18, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0xfffffffc}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0) (async)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000180)={0x7, [0x8001, 0x5, 0x6, 0x0, 0xd, 0x1, 0x2]}, 0x12) (async)
pipe2$9p(&(0x7f00000001c0), 0x0) (async)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r1}}) (async)
write$P9_RVERSION(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff060002000800395032303030"], 0x15) (async)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) (async)

2m6.179560096s ago: executing program 33 (id=5171):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x94, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x94}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="a40000000001050500000000000000000a0000003c0002802c00018014000300ff010000000000000000000000000090e3ce34760114000400ff0200000000000000000000000000010c00028005000100000000003c0001800c00028005000100000000002c00018014000300ff0200000000000000000000000000011400040020010000000000000000000000000901080007400000000010000d800c000380060002"], 0xa4}}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x22200, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000440)={0x0, @in={{0x2, 0x4e21, @local}}, 0x79, 0x1, 0x3, 0x3, 0x12, 0x4, 0x8}, 0x9c)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1m54.981174526s ago: executing program 34 (id=5313):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000040)={0xb}, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff})
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in=@empty, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x3f}, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8, 0x7d}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc, 0x4}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x18, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0xfffffffc}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000180)={0x7, [0x8001, 0x5, 0x6, 0x0, 0xd, 0x1, 0x2]}, 0x12)
pipe2$9p(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RVERSION(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff060002000800395032303030"], 0x15)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) (async)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000040)={0xb}, 0x1) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)) (async)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in=@empty, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x3f}, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8, 0x7d}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc, 0x4}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0) (async)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x18, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0xfffffffc}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0) (async)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000180)={0x7, [0x8001, 0x5, 0x6, 0x0, 0xd, 0x1, 0x2]}, 0x12) (async)
pipe2$9p(&(0x7f00000001c0), 0x0) (async)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r1}}) (async)
write$P9_RVERSION(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff060002000800395032303030"], 0x15) (async)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) (async)

1m11.420502513s ago: executing program 5 (id=6136):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={0x2c, r1, 0x1, 0x0, 0x400, {0x1a}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000800}, 0x8000)
unshare(0x6020400)
r2 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
openat$cgroup_pressure(r3, &(0x7f0000001a40)='cpu.pressure\x00', 0x2, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0xc03, 0x0)
ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f0000000280)={{0x0, 0x4, 0x0, 0x5c}, 'syz1\x00', 0x6})
ioctl$UI_DEV_CREATE(r4, 0x5501)
syz_open_dev$evdev(&(0x7f0000000100), 0x72, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x181603, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x6, 0x2, 0xa4, 0x7fff0003}]})
close_range(r5, 0xffffffffffffffff, 0x0)

1m11.341182509s ago: executing program 5 (id=6137):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)="98bd80d1b51fac3cd42404000000000000", 0x11}}, 0x94)

1m11.340810836s ago: executing program 5 (id=6138):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680), 0x0, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x2d}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x60}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000bc0)="e7bc2f4799fe560c31cf5a20a1b22fb77ce7f19e605b6a8d2645af02e63f9a9d7ba31907ccc0f4aa71ec0762b3a8e3332fe3603b4624ac6a578ccd9a27b381a8dad12b3e3de940a99238945935184cd93dd174b70ecb9c3c99d2df9dd0cbef6a9e230f7dd8367384f034a7a011388990e94cd43e9f80ec3358dc5969269606", 0x7f}, {&(0x7f0000000c80)="6c3e28dcd5c7eb9bc39a4bbc398357f3ad842b38a95863911bbd6e6afd9641d356257181e43b6e60349f69ec5f529734f76708a6c5eccb57005c1a513d8030d12c", 0x41}, {&(0x7f0000000d00)="dc6e94ac2db166801ffce85f6f44f2cb071c6b5113bc6bbf2f503d468253693a01102fcb8157c6e8a2b5620efa5d22400147cce896821150f95c0c69fa587a1f99fcb28cfeb09f45cb836f0ff891be10bb209dc04adc202ef866f27b74faa5ad3a2e5d40ebd6785c4e4a97ac13238c746d1109d12af5446c4e84591f121a494251e43bed18f6269bdd2e56f9c211dd7145f664286911b8bb3acf76a1b5ece94183a6c8cc47f2e1dd4e91dc10be8732e92e8620fa060fb15016c2dc9b6da18325e778660d499aec6215b0f9f679fa76", 0xcf}, {&(0x7f0000000fc0)="c6eae69212ba50dd664af774c32d34273a3baad9692140de74d9294c555a8c2e0d53acea79b788b5eb1a12ada17eda2b2fb96c439ce16e6266afda6613fd7c90be9a9dfcd1b099fe6b023b725241a6e1048c700e7a939bd3a38f1101213b81c252dd8c44b7e647940438343d0d082507d218a952e6d77ec0918968c74f220c981a3797fb6cadfd6723a75c5c4da33e830ecf602c55bc60831ddd694f15728f4d1eacad82a03540713f52f9485138574e5b6aec693c2c613e442d5306c2ef1c8ad8dda8d005f3f3bacb5991d1c18db228185e4d2fcca72d87d81df01c142428158ad7ba84dd6c65d24a8d094308", 0xed}, {&(0x7f0000000800)="b56380b7487ff3b0cd079ed795bdeeb3ad75fe87", 0x14}, {&(0x7f00000011c0)}, {&(0x7f0000001200)="43979d4537ac96f6e22b12acd1fdd3ffc7ef440e65e2e70d511a408f743d4ce7516f4364a00a041dc7b1ffe56ebc713b158ea1aab13ce3db53ab8af3f76ffaa86df636018175c4a8ea922a193ad08ca30d5031b27a4a87bff93dc12a98b6e4f25b5550d98a5bf3e040a8902083eea93bdbde6da91df3a730dd2b8215e9840f04dd0ab667500fe952fa1b8845c2cee50f8322175049c4a994def6599287fb0f8d61029188945e9b273cded03bf8a0c2da5168461dafc53f", 0xb7}, {&(0x7f0000001300)="ceff7472ad7240514c6f826361e8daefdb50fe704622e5641d1b096ad682a5682aa51b6eea91858d93228379d70f8489a6de471b8361073ce93c3bf35183529235eed04037cb6851e51dec4562fe30f99bd5de546427fecd0aa008bcbb2983ce2cfff078d49f7ecf297f85da5c094c0e7f07b12ec543a068bd2d654348f0e303", 0x80}], 0x8, &(0x7f00000014c0)}}], 0x3, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{0x0}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1m11.171143156s ago: executing program 5 (id=6141):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$setlease(r0, 0x400, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000080)={&(0x7f0000000040)=[<r2=>0x0], 0x1})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYRESOCT=r0], 0x24}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010)
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r2], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000040)})
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
mount$bind(&(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x2253043, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a80)={0x14, 0x56, 0x1, 0x0, 0x0, {0x7}}, 0x14}}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001640)=ANY=[@ANYRES16=r0], 0x2c}, 0x1, 0x0, 0x0, 0x1000c957}, 0x4080)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r4, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000800)={0x2c, r5, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TARGET_INDEX={0x8}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x1}]}, 0x2c}}, 0x0)
r6 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$netlink(r6, &(0x7f0000006ac0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)={0x10, 0x1b, 0x20, 0x70bd2b, 0x25dfdbfe}, 0x10}], 0x1, &(0x7f00000069c0)=[@cred={{0x1c}}], 0x20}, 0x20008014)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, &(0x7f0000000100)={&(0x7f0000000040)=""/142, 0x8e, 0x75, 0xead})

1m11.170834709s ago: executing program 5 (id=6142):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={0x2c, r1, 0x1, 0x0, 0x400, {0x1a}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000800}, 0x8000)
unshare(0x6020400)
r2 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
openat$cgroup_pressure(r3, &(0x7f0000001a40)='cpu.pressure\x00', 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_IDLE(r3, 0x103, 0x7, &(0x7f0000000140)=0xc000000, &(0x7f0000000180)=0x4)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0xc03, 0x0)
ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f0000000280)={{0x0, 0x4, 0x0, 0x5c}, 'syz1\x00', 0x6})
ioctl$UI_DEV_CREATE(r4, 0x5501)
syz_open_dev$evdev(&(0x7f0000000100), 0x72, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x181603, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x6, 0x2, 0xa4, 0x7fff0003}]})
close_range(r5, 0xffffffffffffffff, 0x0)

1m11.040785649s ago: executing program 5 (id=6145):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x102)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48640)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)=[0x0], &(0x7f00000003c0), 0x0, 0x1, 0x0, 0x0, r1})

1m10.916915959s ago: executing program 35 (id=6145):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x102)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48640)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)=[0x0], &(0x7f00000003c0), 0x0, 0x1, 0x0, 0x0, r1})

1m9.014634751s ago: executing program 7 (id=6148):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0x4206, r2, 0x0, 0x300024)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x3c8, 0x0, 0xa, 0x148, 0x0, 0x10, 0x330, 0x2a8, 0x2a8, 0x330, 0x2a8, 0x3, 0x0, {[{{@ip={@rand_addr, @multicast1, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x70, 0xe0, 0x0, {0x200003ae, 0x7f00}}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b90ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc0d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @local, 0x0, 0x0, 'ip6erspan0\x00', 'veth0_to_team\x00'}, 0x0, 0x1f0, 0x250, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'wg2\x00', {0xffffffffffffffff, 0xff, 0x0, 0x0, 0x0, 0x7fff, 0x200}}}, @inet=@rpfilter={{0x28}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @multicast, 0x2, 0x7, [0x0, 0x10, 0x1b, 0x2b, 0x37, 0x2e, 0x2b, 0x18, 0x2b, 0x34, 0xd, 0x0, 0x3d, 0x1, 0x32, 0x37], 0x1, 0x6, 0x1570000000000}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x428)
fcntl$lock(r1, 0x25, &(0x7f0000000000)={0x2, 0x0, 0x4000, 0xfffffffffffffffc})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c0000001900010929bd700080000000fd1710000000fd0100000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f00000005c0)={0x0, 0x2, 0xb})
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000080), r7)
sendmsg$NFC_CMD_SE_IO(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="cc010000", @ANYRESDEC, @ANYBLOB="000125bd7000fbdbdf251b000000080015000100000008000100", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES16=r2, @ANYRESOCT=r5], 0x1cc}, 0x1, 0x0, 0x0, 0x800}, 0x8010)
fstat(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x200020, &(0x7f0000000500)={[{@redirect_dir_nofollow}, {@xino_off}, {@metacopy_off}, {@xino_on}, {@xino_on}, {@volatile}, {@uuid_null}, {@index_off}, {@xino_off}, {@metacopy_off}], [{@obj_role={'obj_role', 0x3d, '9p\x00'}}, {@obj_user={'obj_user', 0x3d, 'syz\x00'}}, {@euid_eq={'euid', 0x3d, 0xee01}}, {@uid_eq={'uid', 0x3d, r8}}]})
bind$vsock_stream(r6, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="880000001c000b07000000000000002502000000", @ANYRES32=r9, @ANYBLOB="8000200514000100fe88000000000000000000000000000108000f0001"], 0x88}}, 0x0)
listen(r6, 0x0)
r10 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r10, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
r11 = accept(r6, 0x0, 0x0)
recvfrom$inet_nvme(r11, &(0x7f0000000300)=""/191, 0xbf, 0x40000000, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1m8.757457118s ago: executing program 7 (id=6184):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r0 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x80d01, 0x0)
ioctl$BLKPG(r0, 0x1269, &(0x7f00000001c0)={0x1, 0x0, 0x98, &(0x7f00000000c0)={0x0, 0x1000, 0xd}})
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x800000008001, 0x0, 0x111, 0x4}}, 0xffffff69)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x22, &(0x7f0000001680)=0x1, 0x4)
sendmmsg$inet6(r2, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x4, @empty, 0xfffffffe}, 0x1c, 0x0}}], 0x1, 0x20080058)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000020000000000000005000006040000000500000002000000108000000100000004000000b987ffff0c000000ff01000008000000070000000000"], &(0x7f0000000540)=""/132, 0x4e, 0x84, 0x1}, 0x28)
syz_open_dev$rtc(&(0x7f0000000180), 0x20, 0x400000)
syz_open_procfs(0x0, &(0x7f00000190c0)='syscall\x00')
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f0000000480))
fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
socket$xdp(0x2c, 0x3, 0x0)
syz_open_dev$video(&(0x7f0000000200), 0x7, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x2040, 0x0)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4e22, @private=0xa010101}, {0x2, 0x4e24, @local}, {0x2, 0x4e24, @rand_addr=0x6}, 0x1d7, 0x0, 0x0, 0x0, 0x1, 0x0, 0xd1, 0x8})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES16=0x0, @ANYRES8], 0x1c}, 0x1, 0x0, 0x0, 0x20004044}, 0x24040804)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r3, &(0x7f0000000000), 0xd)

1m7.170931239s ago: executing program 7 (id=6188):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {0x0}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000980)}, {&(0x7f0000000780)="92bdcafd7ac9e21583ea71b9eb5feeb69b7eeb919260393d59069611e6d460fd38481da64e5ad543477ed7b768b1a06c0a5d60edf6c5610c123e3572a7c3bd74b7bd876c6f1c54709ef06cb9187fa5ddecc04cdc8fd3e74782c0aa0579531662e6d5fcdddc53becdd0b8a59c3a97fe428e75e7", 0x73}, {&(0x7f0000000580)}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3df64fee6c95001ceff12f2e942df6a8738cd4ad9ef7ad532fd0c824bf8d36d616e99807b3be837b3145efe65f7c6b66b9813e122d9be7799ebf0160d4bd329ac230e639a58a6538ec01e2de41722469556b03344f32eac19", 0x76}], 0x4}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000bc0)="e7bc2f4799fe560c31cf5a20a1b22fb77ce7f19e605b6a8d2645af02e63f9a9d7ba31907ccc0f4aa71ec0762b3a8e3332fe3603b4624ac6a578ccd9a27b381a8dad12b3e3de940a99238945935184cd93dd174b70ecb9c3c99d2df9dd0cbef6a9e230f7dd8367384f034a7a011388990e94cd43e9f80ec3358dc596926960604b9f051", 0x83}, {&(0x7f0000000c80)="6c3e28dcd5c7eb9bc39a4bbc398357f3ad842b38a95863911b", 0x19}, {&(0x7f0000000d00)="dc6e94ac2db166801ffce85f6f44f2cb071c6b5113bc6bbf2f503d468253693a01102fcb8157c6e8a2b5620efa5d22400147cce896821150f95c0c69fa587a1f99fcb28cfeb09f45cb836f0ff891be10bb209dc04adc202ef866f27b74faa5ad3a2e5d40ebd6785c4e4a97ac13238c746d1109d12af5446c4e84591f121a494251e43bed18f6269bdd2e56f9c211dd7145f664286911b8bb3acf76a1b5ece94183a6c8cc47f2e1dd4e91dc10be8732e92e8620fa060fb15016c2dc9b6da18325e778660d499aec6215b0f9f679fa76d22cdd4ae377", 0xd5}, {&(0x7f0000000fc0)="c6eae69212ba50dd664af774c32d34273a3baad9692140de74d9294c555a8c2e0d53acea79b788b5eb1a12ada17eda2b2fb96c439ce16e6266afda6613fd7c90be9a9dfcd1b099fe6b023b725241a6e1048c700e7a939bd3a38f1101213b81c252dd8c44b7e647940438343d0d082507d218a952e6d77ec0918968c74f220c981a3797fb6cadfd6723a75c5c4da33e830ecf602c55bc60831ddd694f15728f4d1eacad82a03540713f52f9485138574e5b6aec693c2c613e442d5306c2ef1c8ad8dda8d005f3f3bacb5991d1c18db228185e4d2fcca72d87d81df01c142428158ad7ba84dd6c65d24a8d094308433219872eeda0c235f8be3088a880", 0xfc}, {&(0x7f00000010c0)="978d1129fddf5e2f1be8be48f935ef4f71893a57f79be3e44522d3987ccee23f4e717d8c8e14573937040fb658a24f1c9e0c7f98a24fa1209a6ea754e1244234c715713d120b6929614443fd6b4223bc04c3a8c9241ccbb6a8b0bb19fe4eedae48642a74e97588dc36bf06a4c1fb17b47b39240a6a8e9b5daa97e63d777e665841a349c52022252eafc1c129e154ab390624dd7fb8ac1e44c203140d6aab524f61cd8642ee0f380ebb21dc9267a8fbefa6eec89ff97e7800f44f89b17d43206217941c34", 0xc4}, {&(0x7f0000000800)="b56380b7487ff3b0cd079ed795bdeeb3ad75fe", 0x13}, {&(0x7f0000001300)="ceff7472ad7240514c6f826361e8daefdb50fe704622e5641d1b096ad682a5682aa51b6eea91858d93228379d70f8489a6de471b8361073ce93c3bf35183529235eed04037cb6851e51dec4562fe30f99bd5de546427fecd0aa008bcbb2983ce2cfff078d49f7ecf297f85da5c094c0e7f07b12ec543a068bd2d654348f0e303f208c9190f58b7a9e0e1d2ba846bc248a3ec1530f702a9bd45a1d7bec2b2ccf08c24fec06bd18667", 0xa8}], 0x7, &(0x7f00000014c0)}}], 0x3, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead227844", 0xc0}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8af", 0x76}, {0x0}, {0x0}, {0x0}], 0x5}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0x6, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0xb, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0x9000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x4, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0xf3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x4, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x7, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1m7.129643321s ago: executing program 36 (id=6188):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {0x0}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000980)}, {&(0x7f0000000780)="92bdcafd7ac9e21583ea71b9eb5feeb69b7eeb919260393d59069611e6d460fd38481da64e5ad543477ed7b768b1a06c0a5d60edf6c5610c123e3572a7c3bd74b7bd876c6f1c54709ef06cb9187fa5ddecc04cdc8fd3e74782c0aa0579531662e6d5fcdddc53becdd0b8a59c3a97fe428e75e7", 0x73}, {&(0x7f0000000580)}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3df64fee6c95001ceff12f2e942df6a8738cd4ad9ef7ad532fd0c824bf8d36d616e99807b3be837b3145efe65f7c6b66b9813e122d9be7799ebf0160d4bd329ac230e639a58a6538ec01e2de41722469556b03344f32eac19", 0x76}], 0x4}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000bc0)="e7bc2f4799fe560c31cf5a20a1b22fb77ce7f19e605b6a8d2645af02e63f9a9d7ba31907ccc0f4aa71ec0762b3a8e3332fe3603b4624ac6a578ccd9a27b381a8dad12b3e3de940a99238945935184cd93dd174b70ecb9c3c99d2df9dd0cbef6a9e230f7dd8367384f034a7a011388990e94cd43e9f80ec3358dc596926960604b9f051", 0x83}, {&(0x7f0000000c80)="6c3e28dcd5c7eb9bc39a4bbc398357f3ad842b38a95863911b", 0x19}, {&(0x7f0000000d00)="dc6e94ac2db166801ffce85f6f44f2cb071c6b5113bc6bbf2f503d468253693a01102fcb8157c6e8a2b5620efa5d22400147cce896821150f95c0c69fa587a1f99fcb28cfeb09f45cb836f0ff891be10bb209dc04adc202ef866f27b74faa5ad3a2e5d40ebd6785c4e4a97ac13238c746d1109d12af5446c4e84591f121a494251e43bed18f6269bdd2e56f9c211dd7145f664286911b8bb3acf76a1b5ece94183a6c8cc47f2e1dd4e91dc10be8732e92e8620fa060fb15016c2dc9b6da18325e778660d499aec6215b0f9f679fa76d22cdd4ae377", 0xd5}, {&(0x7f0000000fc0)="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", 0xfc}, {&(0x7f00000010c0)="978d1129fddf5e2f1be8be48f935ef4f71893a57f79be3e44522d3987ccee23f4e717d8c8e14573937040fb658a24f1c9e0c7f98a24fa1209a6ea754e1244234c715713d120b6929614443fd6b4223bc04c3a8c9241ccbb6a8b0bb19fe4eedae48642a74e97588dc36bf06a4c1fb17b47b39240a6a8e9b5daa97e63d777e665841a349c52022252eafc1c129e154ab390624dd7fb8ac1e44c203140d6aab524f61cd8642ee0f380ebb21dc9267a8fbefa6eec89ff97e7800f44f89b17d43206217941c34", 0xc4}, {&(0x7f0000000800)="b56380b7487ff3b0cd079ed795bdeeb3ad75fe", 0x13}, {&(0x7f0000001300)="ceff7472ad7240514c6f826361e8daefdb50fe704622e5641d1b096ad682a5682aa51b6eea91858d93228379d70f8489a6de471b8361073ce93c3bf35183529235eed04037cb6851e51dec4562fe30f99bd5de546427fecd0aa008bcbb2983ce2cfff078d49f7ecf297f85da5c094c0e7f07b12ec543a068bd2d654348f0e303f208c9190f58b7a9e0e1d2ba846bc248a3ec1530f702a9bd45a1d7bec2b2ccf08c24fec06bd18667", 0xa8}], 0x7, &(0x7f00000014c0)}}], 0x3, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead227844", 0xc0}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8af", 0x76}, {0x0}, {0x0}, {0x0}], 0x5}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0x6, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0xb, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0x9000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x4, 0x81, 0x0, 0x6, 0x5}, {0xeeee8000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0xf3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x4, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x7, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0xa901, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

55.690904097s ago: executing program 1 (id=6362):
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04040001c90004db4763848c67d2ed65cc0201d8865d7e8b1b345437704be88495b70080b35cbed2eb622f974e60d701c8f05e2491fdb6c440815451f205115d026346e11b63d2e6a9fc2f6ceb7f9a9b76df6d92f7aacddb77c298e3608418ddcfcfd8b3bfccd19c569a7600000000000000053aa1b2ca4a96d90000000000000000000093a83f49eec96ba8307f57dc7b"], 0x7)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0xfffd}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xa8}}, 0x0)

55.640747561s ago: executing program 1 (id=6365):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x180300, 0x0)
r1 = userfaultfd(0x1)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x200})
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
ioctl$UFFDIO_CONTINUE(r1, 0xc020aa07, &(0x7f0000000040)={{&(0x7f0000ba0000/0x2000)=nil, 0x2000}, 0x1})
r2 = openat$audio1(0xffffffffffffff9c, &(0x7f00000001c0), 0x8400, 0x0)
ioctl$SOUND_OLD_MIXER_INFO(r2, 0x80304d65, &(0x7f0000000200))
syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x0, 0x0)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="040e05003d20"], 0x7)
ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000100)={0x780, 0x800, 0x40, 0x40, 0x2, 0x7, 0x20, 0x0, {0x0, 0xfffffffc}, {0x8, 0x3ff}, {0x5, 0x3}, {0x610, 0x9, 0x1}, 0x88b21b15c9dfa6dd, 0x0, 0x10000000, 0x3, 0x1, 0x8, 0x4, 0x3, 0xbd, 0x0, 0x1, 0x10001, 0x38, 0x2, 0x1, 0x5})
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000040)={0x191, 0x30, 0xf0, 0x3f, 0x32, 0x1, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, 0xe07, 0x0, 0x0, 0x0, 0x10, 0x4, 0x0, 0x3})

55.060182969s ago: executing program 1 (id=6371):
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000068e04d206f0e2c586831010203010902240001000000000904000002ff47d000090509e70200800004", @ANYBLOB="b70795"], 0x0)
syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000200), 0x149004, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x6, 0x2, 0xa4, 0x7fff0003}]})
close_range(r0, 0xffffffffffffffff, 0x0)

53.860546596s ago: executing program 1 (id=6404):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
umount2(&(0x7f0000000340)='./file0\x00', 0x8)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x1, [], 0x0, [0x1, 0x2, 0xfffe, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x5c4, 0x8000, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x14, 0x2, [@TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x4}, @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME_EXTENSION={0xc, 0x9, 0xca8}]}}]}, 0x44}}, 0x4004002)
r7 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000140)='./file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x200000002000, &(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x80000, 0x0)
writev(r7, &(0x7f0000000400)=[{&(0x7f0000000000)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484e240006000000f7c08bfcd111fbdf23ea32db0e8f21d5bc27bd8063067a0689fff2a41cfbf0e9", 0x2a}], 0x2)

53.593602495s ago: executing program 1 (id=6409):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001e80)=@newtaction={0x48, 0x31, 0x1, 0xfffffffd, 0x25dfdbfb, {0x0, 0x0, 0x11}, [{0x34, 0x1, [@m_police={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x3, {0x1, 0xc1cec2645649c048}}, {0xc}}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x8800}, 0x0) (fail_nth: 2)

53.540467085s ago: executing program 1 (id=6411):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x35451d7003101a08, 0x0) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000040))
ioctl$PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f0000000400)={0x60, 0x3, &(0x7f0000000000/0xa000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffe, 0x13, 0x10, 0x0, 0x20}) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) (async)
r4 = syz_io_uring_setup(0x10d4, &(0x7f0000000000)={0x0, 0x615e, 0x0, 0x0, 0x1000034f}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000340)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)}, 0x0) (async)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10) (async)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) (async)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) (async)
io_uring_enter(r4, 0x200047bc, 0x0, 0x0, 0x0, 0x5e) (async)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) (async)
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee01)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x103900, 0x0) (async)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000140)=[{0x20, 0x0, 0x0, 0xfffff018}, {0x6, 0x0, 0xfc}]}, 0x10)

53.438282843s ago: executing program 37 (id=6411):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x35451d7003101a08, 0x0) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000040))
ioctl$PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f0000000400)={0x60, 0x3, &(0x7f0000000000/0xa000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffe, 0x13, 0x10, 0x0, 0x20}) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) (async)
r4 = syz_io_uring_setup(0x10d4, &(0x7f0000000000)={0x0, 0x615e, 0x0, 0x0, 0x1000034f}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000340)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)}, 0x0) (async)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10) (async)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) (async)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) (async)
io_uring_enter(r4, 0x200047bc, 0x0, 0x0, 0x0, 0x5e) (async)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) (async)
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee01)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x103900, 0x0) (async)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000140)=[{0x20, 0x0, 0x0, 0xfffff018}, {0x6, 0x0, 0xfc}]}, 0x10)

42.259778619s ago: executing program 9 (id=6602):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x10, 0x1403, 0x1, 0x70bd2a, 0x25dfdbff}, 0x10}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)

42.259425185s ago: executing program 9 (id=6604):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendmmsg$inet(r0, &(0x7f0000001240)=[{{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000140)="91f8a9849519def28691bbc4173c3d6f357d0272b7319130feaab952ac4703cad04be68907e50e997fc26e4c91ea4feb931647fc5393de250000000000000000", 0x40}, {&(0x7f00000003c0)="641a6a2b863c0dd898013a3f97a834ebb75a925ab48c844221841a232932fc2e37e327de21450df098c113e179a0", 0x2e}, {&(0x7f00000001c0)="985e44efeabe001cabcf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bca6122c350637808dde804a048fd8696e524b2934126c443ce93d82e931eb9918e6c0827686e59209d2e02c9210fd8048f04ad6c48b3072092c48", 0x78}], 0x3}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000b80)="f77d2b5dd5f7d74f0748cf3d2cf218d644566a14103b1c7dd35fd2951bd022f10f2dc7f4ce0d8ac5f4abaca4b97b706153756913b7dd48248b5bfb10460019248bf238743fa2aeb5bef21ce832db670920dc5e911ef2ad63e849901d1001129dbacbfd4924d7545517fd18b5d29978f32a5b5c81755cb89cc0490958ba3211eb99df5cdbbc0f9c941aaa14", 0x8b}, {&(0x7f0000001300)="e0cda6472d1ccfb4d1d46bf348a3b7ff9e5b6b3e30ef2266c86a085e37271763c50968fe2e2eb13b9472381bade936f9a85e26aac6ebd21115f086751d870434cf07dbd92e0ea2322f163473dad24cff", 0x50}], 0x2}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000640)="42e013913edbeb683c44e18a52b5a2462064ddd92caaba941de80d06047dedb7eeeff3a27eacf4c416b6979d6c918608807c44d01535dbaab3b390086e4fd43c6b5931187023646d6beac2340fdc7a0d81214ac76a818f64d2", 0x59}], 0x1}}], 0x3, 0x2090)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580), 0x0, 0x10008095, 0x0, 0x0)

42.209865485s ago: executing program 9 (id=6606):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000b, 0x12812, r1, 0x0)
write(r0, &(0x7f0000000680)="17", 0x1)
socket$packet(0x11, 0xa, 0x300)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
socket$alg(0x26, 0x5, 0x0)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r2, &(0x7f0000007380)=[{{0x0, 0x0, &(0x7f0000000880)}}], 0x1, 0x400c000)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x1e9100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000006000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000980)="1f660f3881bb8bebbaf80c66b88566ef8566efbafc0cb000eebaf80c66b8a4706b8466efbafc0c66b87b00000066eff20fbf904dbd66b9800000c00f326635004000000f300f060f20e06635000400000f22e00fbae0d3baf80c66b84a03d38c66efbafc0cb09beaea", 0x69}], 0x1, 0x73, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x7b, 0x5, 0x8, 0x40000009, 0x0, 0x9, 0x0, 0x10, 0x1, 0x8}, 0x0)
socket(0x2b, 0x1, 0x1)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r6)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000000300)={0x0, 0x10, &(0x7f0000000280)=[@in={0x2, 0x4e24, @private=0xa010100}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000003c0)={0x4, [<r8=>0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000380)=0x14)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000002c0)=[{0x0}, {&(0x7f0000000340)='[', 0x1}], 0x2, &(0x7f0000000540)=ANY=[@ANYRES16=r3, @ANYRES16=r7], 0x20, 0x10}, 0x4044001)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f00000015c0)={r8, 0x3}, 0x2)
socket$inet6(0xa, 0x3, 0x3c)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb0100180000000000001efe2ab690442362000000020000000000000800000000000061000000"], 0x0, 0x28}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="180000000000000000000258a400000000000000080000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x897b866343a80d74, '\x00', 0x0, 0xb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x14}, 0x94)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a3200000000140000001100", @ANYRESOCT=r5, @ANYRESHEX, @ANYRESHEX=0x0], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r9, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

42.149884809s ago: executing program 9 (id=6607):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0009030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0)
syz_usb_connect$hid(0x5, 0x3f, &(0x7f00000001c0)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0x28bd, 0x55, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x1, 0x40, 0x1, "", [{{0x9, 0x4, 0x0, 0x9, 0x2, 0x3, 0x1, 0x3, 0x7, {0x9, 0x21, 0x1, 0x5, 0x1, {0x22, 0xdce}}, {{{0x9, 0x5, 0x81, 0x3, 0x3f7, 0x0, 0xc, 0x9}}, [{{0x9, 0x5, 0x2, 0x3, 0x8, 0x6, 0xbd, 0x2}}]}}}]}}]}}, &(0x7f0000000300)={0x0, 0xfffffffffffffffe, 0x5, &(0x7f0000000240)={0x5, 0xf, 0x5}, 0x2, [{0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x1801}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x1007}}]})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600, 0x0, 0x49, 0x0, &(0x7f0000000680)="755bb05395201ad875a81f08fbf73c46403cbcf9922ed5e124d4576314b9d703e2270ea77e8be9b7d6a78d90f5cd95c2293b2397fd6fbb743e63ffe5e2e2d924e7f40180f4b1704f0f", 0x0}, 0x50)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCGPKT(r0, 0x80045438, &(0x7f0000000040))
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000000c0)='./file0/../file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x2b5b093, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
read$char_usb(r1, 0x0, 0x0)

40.940947351s ago: executing program 9 (id=6631):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x20400, 0x0)
ioctl$COMEDI_BUFINFO(r0, 0xc02c640e, &(0x7f0000000040)={0x0, 0x101, 0x5, 0x3, 0xe00, 0x3, 0x5})

40.681069092s ago: executing program 9 (id=6636):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x200400, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100))
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000040)={0xfffffffe})
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp\x00')
fsconfig$FSCONFIG_SET_FD(r1, 0x5, 0x0, 0x0, 0xffffffffffffffff)
write$snapshot(r1, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

40.627456359s ago: executing program 38 (id=6636):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x200400, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100))
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000040)={0xfffffffe})
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp\x00')
fsconfig$FSCONFIG_SET_FD(r1, 0x5, 0x0, 0x0, 0xffffffffffffffff)
write$snapshot(r1, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

40.100715653s ago: executing program 6 (id=6645):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r1, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x24000088, &(0x7f00000001c0)={0xa, 0x4e20, 0x8, @loopback, 0xfffffffe}, 0x1c)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000200)=0x3fd0, 0x4)
sendmmsg$inet6(r1, &(0x7f0000004280)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="147112e2f56040885efa42d123cac58eb92908d472d15cf2b94cd4431951ea5fc11fb9", 0x23}], 0x1}}, {{0x0, 0x0, &(0x7f00000035c0)=[{&(0x7f0000003580)='j', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000003700)=[{&(0x7f0000003600)="1d", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000037c0)=[{&(0x7f0000003740)='Z', 0x1}], 0x1}}], 0x4, 0x84)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x1003c)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f00000004c0)={0x8, [0xc98b, 0xff80, 0x100, 0xfff7, 0x400, 0x3, 0xfb0, 0x7]}, 0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000380)='nilfs2\x00', 0x3040005, 0x0)
umount2(&(0x7f0000000000)='./file0\x00', 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000680)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa64010001ac1414aa00004e22eda72886cca8a75089f17d0a62ae9d00"/53, @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5cc2000590780006"], 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000003c0)={{{@in6=@private2, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@dev}, 0x0, @in=@local}}, &(0x7f00000002c0)=0xe8)
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000580)={{{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in=@private=0xa010102, 0x4e24, 0xb, 0x4e20, 0x7, 0x2, 0x80, 0x40, 0x30, r2, r3}, {0x1, 0x3d18f78b, 0x81, 0x1, 0x5e, 0x7, 0x8}, {0x1, 0x3, 0x9, 0x8000}, 0x9, 0x6e6bba, 0x0, 0x1, 0x3, 0x1}, {{@in=@empty, 0x4d4, 0x33}, 0xa, @in=@remote, 0x3504, 0x1, 0x2, 0x10, 0x3, 0x5, 0xfffff268}}, 0xe8)

40.076050483s ago: executing program 6 (id=6646):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, 0x0, 0x0)

40.024202299s ago: executing program 6 (id=6648):
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='dctcp', 0x5)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@cgroup, 0x11, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x40)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
shutdown(r0, 0x1)

39.95991226s ago: executing program 6 (id=6650):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
umount2(&(0x7f0000000340)='./file0\x00', 0x8)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x1, [], 0x0, [0x1, 0x2, 0xfffe, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x5c4, 0x8000, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)
socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)

39.740292213s ago: executing program 6 (id=6658):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000002c0)={{0xffffffff, 0xeeef0000, 0xe, 0x0, 0x81, 0x4, 0xa, 0x4e, 0x0, 0x7, 0xa, 0x1}, {0x5000, 0xffff1000, 0x3, 0x5, 0x2, 0x8, 0xd, 0x3, 0x0, 0x81, 0x8, 0x1}, {0x5000, 0x0, 0x0, 0x7, 0x4, 0x1, 0x7, 0xc, 0x8, 0x6, 0x2}, {0xffff1000, 0xd5dd0000, 0xe, 0x2, 0x1, 0x3, 0x10, 0x0, 0x1, 0x6, 0x4, 0x9}, {0x100002, 0xeeee8000, 0x9, 0x3, 0x80, 0xee, 0x0, 0x7, 0x7c, 0x0, 0xe, 0x9}, {0x3000, 0x4, 0x8, 0x1, 0x5, 0x4, 0x1, 0x1, 0x6, 0x86, 0xb, 0x2}, {0xeeee8000, 0xeeee0000, 0xc, 0x7, 0x7, 0x3, 0x1d, 0x47, 0x30, 0x2, 0x8, 0xe1}, {0x2000, 0x2, 0xc, 0xf8, 0xfd, 0xa, 0x2, 0x4, 0x3, 0x8, 0x5, 0xce}, {0x4, 0x7}, {0x6000, 0x5}, 0x80000035, 0x0, 0x0, 0x60, 0x7, 0x1000, 0x30000, [0x5, 0x8001, 0x8]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x16, 0x11, 0x0, 0x0)

39.660564235s ago: executing program 6 (id=6659):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x16, 0x301, 0x70bd24, 0xfffffffc, {0x2e}}, 0x14}, 0x1, 0x0, 0x0, 0x200448d3}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f000000b500), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f000000d040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x34, r1, 0x8de13c6b70ae92c3, 0x41003, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xe}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x6c}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000180)={0x6}, 0x10)
sendmsg$nl_route(r4, 0x0, 0x0)
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@code={0x1, 0x60, {"3ef30fc735fc9a00003e0f01c8c4417df1a9b398000066b824008ec8460f79f2c4e1717db49c26000000b9800000c00f3235000400000f307b9666baa00066b8000066ef66bad1040f01c2260f78da"}}], 0x60})
syz_kvm_add_vcpu$x86(0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000240)=[@enable_nested={0x12c, 0x18}, @nested_amd_vmcb_write_mask={0x17c, 0x38, {0x0, @save_area=0x595, 0x1, 0x7ff, 0x4}}], 0x50})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r6, 0x4068aea3, &(0x7f00000000c0)={0x8f, 0x0, 0xb})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f00000002c0)={[0x35, 0x7, 0x0, 0x180, 0x4, 0x10, 0xf1, 0x403, 0x80, 0x2, 0x6, 0x9, 0x0, 0x9, 0x0, 0xbdb], 0xfec00000, 0x3c4210})
ioctl$KVM_RUN(r7, 0xae80, 0xfdfd)

39.553617886s ago: executing program 39 (id=6659):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x16, 0x301, 0x70bd24, 0xfffffffc, {0x2e}}, 0x14}, 0x1, 0x0, 0x0, 0x200448d3}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f000000b500), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f000000d040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x34, r1, 0x8de13c6b70ae92c3, 0x41003, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xe}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x6c}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000180)={0x6}, 0x10)
sendmsg$nl_route(r4, 0x0, 0x0)
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@code={0x1, 0x60, {"3ef30fc735fc9a00003e0f01c8c4417df1a9b398000066b824008ec8460f79f2c4e1717db49c26000000b9800000c00f3235000400000f307b9666baa00066b8000066ef66bad1040f01c2260f78da"}}], 0x60})
syz_kvm_add_vcpu$x86(0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000240)=[@enable_nested={0x12c, 0x18}, @nested_amd_vmcb_write_mask={0x17c, 0x38, {0x0, @save_area=0x595, 0x1, 0x7ff, 0x4}}], 0x50})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r6, 0x4068aea3, &(0x7f00000000c0)={0x8f, 0x0, 0xb})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f00000002c0)={[0x35, 0x7, 0x0, 0x180, 0x4, 0x10, 0xf1, 0x403, 0x80, 0x2, 0x6, 0x9, 0x0, 0x9, 0x0, 0xbdb], 0xfec00000, 0x3c4210})
ioctl$KVM_RUN(r7, 0xae80, 0xfdfd)

3.130817831s ago: executing program 2 (id=7235):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, 0x0, 0x0)
connect$inet(r0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0xb, 0x0, 0x0)
r1 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x20400, 0x0)
ioctl$COMEDI_BUFINFO(r1, 0xc02c640e, &(0x7f0000000040)={0x0, 0x101, 0x5, 0x3, 0xe00, 0x3, 0x5}) (fail_nth: 1)

3.030878577s ago: executing program 2 (id=7236):
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f0000000340)='.\x00', 0xa50003d1)
unlinkat(r0, &(0x7f0000000280)='./file0\x00', 0x200)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
socket$packet(0x11, 0x2, 0x300)
r4 = socket(0x10, 0x3, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x60043, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r6, @ANYBLOB="00000000000000001c001a800800028008000200080000003e127a510800", @ANYRES16=r5], 0x44}}, 0x28081)
r7 = gettid()
r8 = epoll_create(0x400)
accept$alg(r4, 0x0, 0x0)
r9 = eventfd(0xfffffffe)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r9, &(0x7f0000000000))
kcmp$KCMP_EPOLL_TFD(r7, r7, 0x7, r9, &(0x7f00000000c0)={r8, r9, 0x5})
sched_setparam(r7, &(0x7f0000000100)=0xfffffffa)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[], 0xa0}}, 0x0)
r10 = socket(0x10, 0x3, 0x0)
sendmmsg(r10, &(0x7f0000000000), 0x4000000000001f2, 0xfff0)
recvmmsg(r3, &(0x7f0000004400)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000001d00)=[{0xfffffffffffffffd}], 0x1}}], 0x2, 0x0, 0x0)
poll(&(0x7f00000002c0)=[{r3, 0x34e5}], 0x1, 0x3d)
ioctl$UI_DEV_CREATE(r2, 0x5501)
lsetxattr$trusted_overlay_upper(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000380)={0x0, 0xfb, 0x42, 0x6, 0x6, "5d03de356e0ff6f11108e2cee1f5f037", "d9166c8d042abff3094778ae0fff6bd9428db133deb7bc60d6c4408243778e95c4f2cd50e29cdd95192f1ca3db"}, 0x42, 0x1)
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x6, 0x2, 0xa4, 0x7fff0003}]})
close_range(r11, 0xffffffffffffffff, 0x0)

2.980619869s ago: executing program 2 (id=7237):
ioctl$KVM_HYPERV_EVENTFD(0xffffffffffffffff, 0x4018aebd, &(0x7f0000000040)={0x4})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_type(r3, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_type(r4, &(0x7f0000000240), 0x9)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

2.910791208s ago: executing program 2 (id=7238):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)

2.910378619s ago: executing program 2 (id=7239):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, 0x0, 0x0)

2.810750026s ago: executing program 2 (id=7240):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040), 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x38, 0x40, 0x400, 0xffffeefe, 0x0, {0x1, 0x7c}, [@typed={0xc, 0x4c, 0x0, 0x0, @u64=0x6}, @nested={0x14, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x6, 0xb, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x4, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x48815}, 0xc000) (async)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x38, 0x40, 0x400, 0xffffeefe, 0x0, {0x1, 0x7c}, [@typed={0xc, 0x4c, 0x0, 0x0, @u64=0x6}, @nested={0x14, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x6, 0xb, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x4, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000100)=ANY=[@ANYRES16=r1, @ANYRES16=r1, @ANYRESHEX=r1, @ANYRES32=0x0, @ANYRESHEX=r0, @ANYRES32=r0], &(0x7f00000000c0)='syzkaller\x00', 0x3}, 0x94)

2.774115854s ago: executing program 40 (id=7240):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040), 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x38, 0x40, 0x400, 0xffffeefe, 0x0, {0x1, 0x7c}, [@typed={0xc, 0x4c, 0x0, 0x0, @u64=0x6}, @nested={0x14, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x6, 0xb, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x4, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x48815}, 0xc000) (async)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x38, 0x40, 0x400, 0xffffeefe, 0x0, {0x1, 0x7c}, [@typed={0xc, 0x4c, 0x0, 0x0, @u64=0x6}, @nested={0x14, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x6, 0xb, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x4, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000100)=ANY=[@ANYRES16=r1, @ANYRES16=r1, @ANYRESHEX=r1, @ANYRES32=0x0, @ANYRESHEX=r0, @ANYRES32=r0], &(0x7f00000000c0)='syzkaller\x00', 0x3}, 0x94)

2.300198206s ago: executing program 4 (id=7247):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7ff, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x1, 0x1, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xe1000, 0x280000b, 0x28011, r0, 0xbd01)

1.468703729s ago: executing program 4 (id=7259):
rmdir(&(0x7f0000000040)='./file1\x00')
creat(&(0x7f0000000000)='./file0\x00', 0x108)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[])
read$FUSE(r0, &(0x7f0000006340)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000280)={0x50, 0x0, r1, {0x7, 0x1f, 0x1, 0x8888b1, 0x0, 0x1, 0x2, 0xa, 0x0, 0x0, 0x2, 0x8}}, 0x50)
chdir(&(0x7f0000000080)='./file0\x00')
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000000)={0x2, &(0x7f00000000c0)=[{0x3c, 0x0, 0x0, 0x200}, {0x6, 0x8, 0x6}]})
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="85000000070000006a0a00ff000000000c00000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="000000000000000005000000000000009500000000000000b1f8306e05d1e4aab009c16b5c05077115d0749619ca39f89974785ae0619b77c6585f678ac92a3b6b4148f56b43c3dd75d75f97c8f92f60a2def458df05e2fbfb3e849b2b3cffd4f29446ae60dd76654b2639b2bc14350706214a6ab7a712d4317fbc3ca01d0d3ed6110b3775903141a5091a4d3db8eb335414fbdb288aba73aaf6d18000a3a2a069cf7f9402e1425bb6bc370576aa1faea0fe222671ecf99038fce8dba53dcb11f87cca"], &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)={@ifindex, r3, 0x11}, 0xa)
getsockopt$inet6_tcp_int(r2, 0x6, 0x19, 0xfffffffffffffffd, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0xa4901, 0x28)
write$tcp_congestion(r4, 0x0, 0x0)

1.31832458s ago: executing program 0 (id=7262):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x40, 0x80400)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = dup(r3)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r0)
sendmsg$TIPC_NL_MON_GET(r4, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x378, r5, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0xe8, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0xffff, @local, 0x7}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, 0x3}}}}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x5}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x5}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x100}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x6, @mcast1, 0xc3}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x86, @mcast2, 0x8}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}]}, @TIPC_NLA_LINK={0xf0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xb3}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x81}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x66}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7619f9c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5897}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xb5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}]}, @TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x1, @private1={0xfc, 0x1, '\x00', 0x1}, 0x9}}, {0x14, 0x2, @in={0x2, 0xa0, @rand_addr=0x64010101}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_NAME={0x15, 0x1, @l2={'ib', 0x3a, 'veth0_to_bond\x00'}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_BEARER_NAME={0xb, 0x1, @l2={'eth', 0x3a, 'lo\x00'}}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8b}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}]}, @TIPC_NLA_SOCK={0x40, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xa3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x6617}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_LINK={0x98, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x378}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f0000003040)={{{@in=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{}, 0x0, @in6=@local}}, &(0x7f0000003140)=0xe8)
newfstatat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r7=>0x0}, 0x0)
chown(&(0x7f00000003c0)='./file0\x00', r7, 0xee01)
statx(r4, &(0x7f0000003180)='./file0\x00', 0x400, 0x4, &(0x7f00000031c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0})
fstat(r4, &(0x7f00000032c0)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
stat(&(0x7f0000003340)='./file0\x00', &(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000003400)={{0x1, 0x1, 0x18, r2, {<r11=>0x0, 0xee01}}, './file0\x00'})
read$FUSE(r4, &(0x7f0000003440)={0x2020, 0x0, 0x0, 0x0, <r12=>0x0}, 0x2020)
getgroups(0x3, &(0x7f00000059c0)=[0x0, <r13=>0xffffffffffffffff, 0xee01])
ioctl$DRM_IOCTL_GET_CLIENT(r4, 0xc0286405, &(0x7f0000005b00)={0x8, 0x0, {}, {<r14=>0xffffffffffffffff}, 0x1ff, 0x4})
r15 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r15}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r15, &(0x7f00000021c0)={0x2020, 0x0, <r16=>0x0, <r17=>0x0, <r18=>0x0}, 0x2020)
write$FUSE_INIT(r15, &(0x7f0000000080)={0x50, 0x0, r16, {0x7, 0x29, 0x9, 0xffffffff90adedc4, 0x0, 0x3, 0x0, 0x4, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r15, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r15, &(0x7f00000063c0)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f000000a940)={0xb0, 0x0, 0x6, [{{0x2, 0x0, 0x0, 0xb, 0xe, 0x1, {0x3, 0x3, 0x3, 0x0, 0x8, 0x0, 0xd, 0xffffffff, 0xcf32, 0x2000, 0xfffc0000, r17, r18, 0x7, 0x1003}}, {0x2, 0x4, 0x7, 0x10, 'user_id'}}]}, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r4, &(0x7f0000000840)="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", 0x2000, &(0x7f0000005c80)={&(0x7f0000000600)={0x50, 0x0, 0x8, {0x7, 0x2d, 0x9, 0x200000a, 0x0, 0x3, 0x5, 0x9, 0x0, 0x0, 0x80, 0x800}}, &(0x7f0000000680)={0x18, 0x0, 0x4000000000000, {0x6}}, &(0x7f00000006c0)={0x18, 0xffffffffffffffda, 0x9, {0xd2ae}}, &(0x7f0000000700)={0x18, 0xfffffffffffffff5, 0x7, {0x1400000}}, &(0x7f0000002840)={0x18, 0x0, 0x3, {0x3f3cab1d}}, &(0x7f0000002880)={0x28, 0x0, 0x3, {{0x7, 0x8000, 0x2}}}, &(0x7f00000028c0)={0x60, 0xfffffffffffffff5, 0x5, {{0xb15, 0xc, 0x5, 0x5, 0x4, 0xe79b, 0x400, 0x6}}}, &(0x7f0000002940)={0x18, 0x0, 0x7, {0x8}}, &(0x7f0000002980)={0x12, 0xfffffffffffffffe, 0x6b, {'!\x00'}}, &(0x7f00000029c0)={0x20, 0x0, 0x60, {0x0, 0x10}}, &(0x7f0000002a00)={0x78, 0xfffffffffffffffe, 0x2, {0xc6d6, 0xd5, 0x0, {0x1, 0x2, 0x5, 0x6, 0x24e, 0x9, 0x81, 0x7, 0x5, 0xc000, 0xffff37cc, 0x0, 0xee00, 0xfffffff7, 0x9}}}, &(0x7f0000002bc0)={0x90, 0x0, 0x8001, {0x4, 0x1, 0x400, 0x0, 0x4, 0x1, {0x1, 0x41, 0x5316, 0x5, 0x6, 0x7fffffff, 0xa, 0x1, 0x9, 0x1000, 0xd8f, 0x0, 0x0, 0x6, 0x9}}}, &(0x7f0000002c80)={0x130, 0xfffffffffffffffe, 0x54, [{0x3, 0x2, 0xe, 0xb1d, 'veth0_to_bond\x00'}, {0x4, 0x100000000, 0xb, 0xff, 'syzkaller1\x00'}, {0x3, 0x7, 0x2, 0x3, ']-'}, {0x0, 0x9, 0x4, 0x8000, '*!]('}, {0x5, 0x7f, 0x4, 0xf, ')^\')'}, {0x0, 0xffff000000, 0x9, 0x0, ']\':[{8*\xb0\''}, {0x3, 0x8083, 0x2, 0x7, 'ib'}, {0x0, 0x100000001, 0xb, 0x7ff, 'syzkaller1\x00'}]}, &(0x7f0000005480)={0x538, 0x0, 0xb71, [{{0x4, 0x3, 0x1, 0x8, 0x2, 0x1, {0x1, 0xfa49, 0x7795, 0x9, 0x80, 0x90, 0x8, 0xa, 0x1, 0xc000, 0x6, 0x0, 0x0, 0xacf, 0x3}}, {0x2, 0xd3c, 0xf, 0x3ff, '/dev/dri/card#\x00'}}, {{0x5, 0x1, 0xa, 0xe, 0x9, 0xfffffe5f, {0x3, 0x393, 0x3, 0x2, 0xc, 0x5, 0x7, 0x9, 0x8, 0x6000, 0x24c, 0x0, 0x0, 0x3, 0x8}}, {0x1, 0x80000000, 0xe, 0x1b51e734, 'veth0_to_bond\x00'}}, {{0x6, 0x1, 0x3, 0x0, 0x80000000, 0xe60, {0x6, 0x4000000000000000, 0x8, 0x6525, 0x7, 0xd, 0xf3, 0x6f0fe47a, 0x8, 0xc000, 0x6, 0x0, 0x0, 0x6, 0x6}}, {0x0, 0x1, 0xf, 0x9, '/dev/dri/card#\x00'}}, {{0x0, 0x2, 0x3, 0x404, 0x9, 0x4c5a, {0x6, 0x6, 0x3, 0x9, 0x0, 0x3, 0x8, 0x8001, 0x7, 0xa000, 0x9, r6, 0xffffffffffffffff, 0xe4b3, 0xfff}}, {0x5, 0x8, 0x1, 0x1, '.'}}, {{0x6, 0x3, 0x20000000, 0x10001, 0x58, 0x1, {0x6, 0xfffffffffffffff9, 0x9, 0x7, 0x2, 0x7, 0x3, 0x0, 0x2, 0x0, 0x2, r7, r8, 0x1, 0x1}}, {0x5, 0x6, 0xd, 0x6, '/dev/net/tun\x00'}}, {{0x2, 0x0, 0x0, 0x5, 0x46, 0x0, {0x1, 0x100000001, 0x3, 0x3, 0x7fffffffffffffff, 0x6, 0x5, 0x101, 0x0, 0xa000, 0xd, r9, r10, 0x4, 0x6e3}}, {0x2, 0x1, 0x3, 0x6, ':,@'}}, {{0x0, 0x1, 0x5, 0x4, 0x8, 0xfff, {0x0, 0x0, 0x2, 0x2, 0x3cf5, 0x9, 0xffffffff, 0x3ff, 0x1, 0x2000, 0x6, 0x0, 0xee01, 0xfffffffc, 0x2}}, {0x2, 0xfd, 0x3, 0x1, 'lo\x00'}}, {{0x3, 0x1, 0x5, 0x2, 0xe, 0x7ff, {0x6, 0x400, 0x5, 0x5, 0x43, 0x12000000, 0x8, 0x5, 0x7, 0xc000, 0x0, r11, r12, 0x400, 0x40}}, {0x6, 0x2, 0xf, 0x401, '/dev/dri/card#\x00'}}]}, &(0x7f0000005a00)={0xa0, 0xfffffffffffffffe, 0x401, {{0x4, 0x2, 0x3, 0x101, 0x8, 0x3, {0x5, 0x6, 0x8000000000000001, 0x100000000, 0x1000, 0x100000001, 0x68, 0x5, 0x1, 0x8000, 0xfffffff8, 0xee00, r13, 0x9, 0x7}}, {0x0, 0xa}}}, &(0x7f0000005ac0)={0x20, 0xfffffffffffffff5, 0x7, {0x5, 0x4, 0xe, 0x1ff}}, &(0x7f0000005b40)={0x130, 0x0, 0xfffffffffffffff3, {0x37, 0x2, 0x0, '\x00', {0x80, 0x8, 0x4000000000000, 0x5834, r14, r18, 0x6000, '\x00', 0xa572, 0x8454, 0x2, 0xfffffffffffffffd, {0x4, 0x8001}, {0x19, 0x10001}, {0x7f, 0x92}, {0x100000000, 0xffff}, 0x8, 0x6, 0x7, 0x6}}}})
write$tun(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="001c86dd0700100000003c00000060ec97000fc82c00fe8000000000000000000000000000aaff02000000000000000000000000000106"], 0xffe)
ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f0000000740)=""/212)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="20090027bd7000000000000400000004000e0000000000"], 0x20}, 0x1, 0x0, 0x0, 0x42810}, 0x0)

1.130377327s ago: executing program 0 (id=7264):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="640000001000030516"], 0xc3}, 0x1, 0x100000000000000}, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000fcdbdf256400000008000300", @ANYRES32=r3], 0x28}}, 0x0)
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000200), r4)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r6, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="080028bd7000fbdbdf250100000006000e00f8ff0000050007000300000006001c000e00000008001800ac1414aa050021000000000006000e0007000000000011000100000005002200"/86], 0x5c}}, 0x24000000)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x30, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x46)
write$qrtrtun(r4, &(0x7f0000000340)="66bb0b760dc0f4ff", 0x8)
r9 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
close(r10)
r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000050000000100000001000013040000000200000088060000ff0f0000002e2e"], 0x0, 0x35}, 0x28)
syz_emit_ethernet(0x51, &(0x7f00000007c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0086dd60cabf0000778efffe8000000000000000000000000000bbff0200005581d209e1e564a1d9cae1e9000000000000000000000001860090780000000000000000000000000001a78ce54006598080a8b5a7fa198724025503d266277511b17977e0caad6616d2257995b41acc0e01b4a90365dedc4ddfd94eae"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180005000000ffff000077b9080000009500000000d3a07e"], &(0x7f0000000080)='GPL\x00', 0x7, 0x4fa, &(0x7f0000000cc0)=""/4096, 0x40f00, 0x5, '\x00', 0x0, 0x0, r11, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x0, 0x2, 0x4, 0x9}, 0x1, 0x0, 0x0, 0xff3e, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000240)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x0, 0x0, 0x0, 0x8, 0xffffffba, 0x0, 0x40f00, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xd4}, 0x94)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r10, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="010000000000000000001400000008000f00fc00000018000180140002006e657464657673696d300000000000000800060000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES32=r10], 0x5c}, 0x1, 0x0, 0x0, 0x4000800}, 0x88010)
r13 = syz_genetlink_get_family_id$devlink(&(0x7f0000000440), r4)
sendmsg$DEVLINK_CMD_SB_POOL_GET(r10, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000480)={&(0x7f0000000880)=ANY=[@ANYBLOB="8801f9c8b5152f069c99605d30f9da25d73deae4d3d4de174108f81156b6ce093e1e91fe52f754cfaafec058bc2a1d9faf97ab923c9c47886270d49ac24a0eade0d3739ae8b863991feb8899a4aa1ee424ca24308d8125092d2576e0eacb91bed704a47b1a4c47d1b8f264628bcf0611e009bce84b6bdaf971596ee7057d2133cbb4ebf4279ef29a5ad6bd3dff71bcca2c450b52f094aeef847b8336569649a509765e", @ANYRES16=r13, @ANYBLOB="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"], 0x10}, 0x1, 0x0, 0x0, 0x88800}, 0x20000000)
sendfile(r9, r9, 0x0, 0x7)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r8, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], &(0x7f0000000240)=[0x2], 0x0, 0x9}}, 0x40)
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)

1.060472387s ago: executing program 0 (id=7265):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x80d01, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f00000190c0)='syscall\x00')
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
socket$xdp(0x2c, 0x3, 0x0)
syz_open_dev$video(&(0x7f0000000200), 0x7, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x2040, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/power/pm_test', 0x42, 0x0)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4e22, @private=0xa010101}, {0x2, 0x4e24, @local}, {0x2, 0x4e24, @rand_addr=0x6}, 0x1d7, 0x0, 0x0, 0x0, 0x1, 0x0, 0xd1, 0x8})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x24040804)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

1.06015571s ago: executing program 0 (id=7266):
r0 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x8000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r0, 0xab00, r1)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, &(0x7f0000000080)=@udp6}, 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000700)="ef", 0x0}, 0x50)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = socket$phonet_pipe(0x23, 0x5, 0x2)
getsockopt$PNPIPE_IFINDEX(r4, 0x113, 0x2, &(0x7f0000000540), &(0x7f0000000580)=0x4)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
syz_emit_ethernet(0x3b6, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="d4820000", @ANYRES16, @ANYBLOB="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"], 0x2d4}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r7)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r7, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r6, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r9, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

930.900243ms ago: executing program 0 (id=7267):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0xaa3, 0xfffffffffffffff8, 0x4, 0xffffc90000000000}, {0x0, 0xffffffffffffffd6}}}, 0xb8}}, 0x0)

930.715148ms ago: executing program 0 (id=7268):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r1, 0x84, 0x7d, &(0x7f0000000000)=""/4102, &(0x7f0000001040)=0x1006)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_usbip_server_init(0x1)
syz_usbip_server_init(0x2)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca02})
timer_create(0x8, &(0x7f00000002c0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
preadv(r2, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/2, 0x2}], 0x1, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r3)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001080), 0x3f9dc1, 0x0)
ioctl$TIOCSSOFTCAR(r6, 0x5453, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001080)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c000)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000080)=ANY=[], 0x10448)

533.874396ms ago: executing program 4 (id=7269):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000080), 0x0)

533.44946ms ago: executing program 4 (id=7270):
mknod(&(0x7f0000000180)='./bus\x00', 0xc000, 0x100)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x19, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x3}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xe, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000001800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x6}, 0x94)
r1 = socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000fc0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0xfffffffe}, {0x90010022}]}, 0x94)
close(r3)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
getsockopt$inet_mreqn(r4, 0x0, 0x24, &(0x7f0000000300)={@initdev, @private}, &(0x7f0000000f00)=0xc)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000f40)={'batadv_slave_1\x00'})
getsockname$packet(r4, &(0x7f0000000f80)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000001080)=0x14)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000010c0)={'vxcan0\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000001100)={'batadv_slave_1\x00'})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f0000001240)={'ip_vti0\x00', &(0x7f0000001140)={'syztnl1\x00', 0x0, 0x8000, 0x1, 0x9, 0x1a0, {{0x36, 0x4, 0x1, 0x1, 0xd8, 0x66, 0x0, 0x4, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x38}, @local, {[@generic={0x83, 0xf, "0a391087c9ae77a89ac229cb8d"}, @timestamp_prespec={0x44, 0x34, 0x66, 0x3, 0x5, [{@broadcast, 0x3}, {@loopback, 0x3ff}, {@multicast1}, {@rand_addr=0x64010101}, {@remote, 0x9}, {@empty, 0x9}]}, @ra={0x94, 0x4, 0x1}, @timestamp={0x44, 0x20, 0xa6, 0x0, 0xe, [0x8001, 0x4, 0xffff0000, 0x8, 0x5, 0x2, 0x2]}, @ra={0x94, 0x4}, @ra={0x94, 0x4}, @timestamp_addr={0x44, 0x54, 0xc3, 0x1, 0x9, [{@rand_addr=0x64010100, 0xe4c}, {@empty, 0x6}, {@multicast1, 0x2}, {@remote, 0x1}, {@empty, 0x7f}, {@loopback, 0x400}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4}, {@broadcast, 0x800}, {@loopback, 0x5}, {@broadcast, 0x5ab0dc90}]}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000001280)={'syztnl0\x00', &(0x7f0000001380)={'syztnl2\x00', 0x0, 0x2f, 0x6, 0x0, 0x6, 0x4, @local, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x7800, 0x700, 0x5, 0x4}})
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x21}, 0x94)
r6 = socket$inet6(0xa, 0x3, 0x3)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000200)={'bond_slave_1\x00', <r7=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r5, r7, 0x25, 0x2, @void}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0xe80, 0x6000002c, &(0x7f0000000100)="b9ff03316844268cb89e14f008004ce0003000002000008877fbac141416e000030a89079f03b180ff83080520e0845013f2325f004408050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014c0000c0adc043084617d7ecf41effff38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d7da058f6efa6d1f5f7ff400"/254, 0x0, 0xfe, 0x60000000, 0x0, 0xfffffffe}, 0x2c)

380.775912ms ago: executing program 4 (id=7271):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={0x0}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_T4(r1, 0x103, 0x6, 0x0, &(0x7f0000000880))
ioctl$sock_ifreq(r0, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x4})
ioctl$sock_netdev_private(r0, 0x89f3, &(0x7f0000000000))

329.627559ms ago: executing program 8 (id=7273):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000008680), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f0000008940)={0x0, 0x0, &(0x7f0000008900)={&(0x7f0000008880)={0x1c, r1, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffe1c)
fchownat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xee01, 0x0, 0x1000)
r2 = syz_create_resource$binfmt(&(0x7f0000000080)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r2, 0x41, 0x1ff)

329.331619ms ago: executing program 4 (id=7274):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0009030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000480))
read$char_usb(r1, &(0x7f0000000000)=""/172, 0xac)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f00000000c0)=ANY=[@ANYBLOB="406bd3c4b430afc57121211371aa408d2e459a46890d4a1e98d2c88cd8ac70d3ec3b762cefb3f0092dcdbd8b2394412eed59d96fab252c0c517840a1dfb22acd862fa640256243", @ANYRES16=r4, @ANYBLOB="010000000000000000000c0000001400038008000200080000000400010004000400180001801400020076657468305f746f5f626f6e64000000"], 0x40}}, 0x20000000)
syz_usb_disconnect(r0)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(0xffffffffffffffff, 0x84, 0x21, 0x0, 0x0)
openat$nvram(0xffffffffffffff9c, 0x0, 0x381000, 0x0)
mkdir(0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x210d814, 0x0)

329.035184ms ago: executing program 8 (id=7275):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700), 0x0}, 0x50)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0xf8740)
r6 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000180)={0x7fff, 0x0, 0xfffffffd, 0x1}, 0x10)
ioctl$DRM_IOCTL_MODE_ATOMIC(r5, 0xc03864d2, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})

240.848096ms ago: executing program 8 (id=7276):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="5c00000013006bcc9e3be35c6e17aa31076b876c1d00fd0f7ea60864160af36514001ac004000202080002000100010004000200eab556a705251e618294ff0051f60a84c9f4d4938037e7e67a89cf0f0c5700e686a6d0001000000e", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x40000)
socket$nl_generic(0x10, 0x3, 0x10)
listen(r1, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000240), 0x1, 0x101)
ioctl$USBDEVFS_ALLOC_STREAMS(r4, 0x8008551c, &(0x7f0000000440)={0x3e30, 0x1, [{0xf}]})
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000080)={'veth1_macvtap\x00', &(0x7f0000000180)=@ethtool_cmd={0x19, 0x7, 0x0, 0x9, 0x7d, 0x9, 0x81, 0x87, 0xda, 0xf3, 0xa, 0x31, 0xd49c, 0x4, 0x0, 0x6f78, [0x7fff, 0x7b0]}})
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x14, &(0x7f0000000600)={0x0, 0xea60}, 0x10)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/150, 0x96}], 0x1}, 0x0)
r5 = syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
ioctl$SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045017, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r5, @ANYBLOB="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"], 0x1c8}}, 0x0)

240.343945ms ago: executing program 8 (id=7277):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000080), 0x0)

150.854561ms ago: executing program 8 (id=7278):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x80d01, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f00000190c0)='syscall\x00')
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
socket$xdp(0x2c, 0x3, 0x0)
syz_open_dev$video(&(0x7f0000000200), 0x7, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x2040, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/power/pm_test', 0x42, 0x0)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4e22, @private=0xa010101}, {0x2, 0x4e24, @local}, {0x2, 0x4e24, @rand_addr=0x6}, 0x1d7, 0x0, 0x0, 0x0, 0x1, 0x0, 0xd1, 0x8})
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x24040804)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

90.849574ms ago: executing program 8 (id=7279):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
clock_nanosleep(0xfffffff2, 0x0, &(0x7f0000000140)={0x77359400}, &(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioprio_set$pid(0x2, 0x0, 0x2000)
r1 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0xec25, 0x0, 0x0, 0x40000333}, &(0x7f00000006c0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
r4 = gettid()
timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r4, 0x7, &(0x7f0000000080)=""/81)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=@getlink={0x28, 0x12, 0x1, 0x0, 0x0, {}, [@IFLA_EXT_MASK={0x8, 0x1d, 0x3ff}]}, 0x28}, 0x1, 0x0, 0x0, 0x2000}, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x1, 0x0, 0xd}, 0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r5, 0x400452c8, &(0x7f0000000100))

50.675152ms ago: executing program 3 (id=7241):
r0 = socket(0x2, 0xa, 0x300)
r1 = socket(0x2c, 0x3, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="110000000400000004000000ff"], 0x17)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r2, 0x0, &(0x7f0000000080)=@udp6=r1}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, 0x0, &(0x7f0000001500)=@tcp=r1}, 0x20)
r3 = gettid()
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r4, 0x40085112, &(0x7f0000000080)=@e={0xff, 0x9, 0x0, 0x0, @SEQ_NOTEON=@special})
syz_pidfd_open(r3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000700)="ef16", 0x0}, 0x50)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r7 = accept4(r6, 0x0, 0x0, 0x800)
sendmmsg$alg(r7, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r7, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r8 = syz_open_dev$video(&(0x7f0000000040), 0x7f, 0x0)
ioctl$VIDIOC_S_FMT(r8, 0xc0d05605, &(0x7f0000000180)={0x1, @pix_mp={0x8, 0x6, 0x4f565559, 0x2, 0xa, [{0x0, 0x9}, {0xc3, 0x6}, {0x7}, {0x8, 0x6}, {0x7f, 0x6}, {0x0, 0x1000}, {0x5, 0x4}, {0xfffffffb, 0x2}], 0x0, 0x9, 0x1, 0x0, 0x1}})
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r9, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r10, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

0s ago: executing program 3 (id=7280):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x4)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1700020000000000040000008000200000000008", @ANYRES32, @ANYBLOB="8700"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r1=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x15, &(0x7f0000000200)={r1, 0x0, &(0x7f0000001780)=""/4096}, 0x20)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626", 0xa)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x401, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x30010, 0x100}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD1={0x8, 0x2, @udp=r3}]}}}, @IFLA_MASTER={0x8, 0x3}]}, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x24000840)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r4, 0x0)
r5 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
socketpair(0x1, 0x3, 0x0, &(0x7f0000000100)={<r7=>0xffffffffffffffff})
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0xeb, r8, 0x1, 0x81, 0x6, @local}, 0x14)
setsockopt$packet_int(r6, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r6, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0xffffffff}, 0x1c)
r9 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r9, 0x0)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x60}]}, &(0x7f0000000080)='syzkaller\x00', 0x4}, 0x94)
setsockopt$IPT_SO_SET_REPLACE(r10, 0x0, 0x40, &(0x7f0000001040)=@raw={'raw\x00', 0x8, 0x3, 0x4e8, 0x328, 0xa, 0xd0e0000, 0x328, 0x100, 0x450, 0x1d8, 0x1d8, 0x450, 0x1d8, 0x3, 0x0, {[{{@ip={@local, @loopback, 0xffffffff, 0xff, 'batadv0\x00', 'erspan0\x00', {0xff}, {0xff}, 0x1, 0x3, 0x10}, 0x0, 0x2c8, 0x328, 0x0, {}, [@common=@unspec=@state={{0x28}, {0xfff}}, @common=@unspec=@bpf1={{0x230}, @fd}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @empty, 0x7008, 0x4, [0x22, 0x36, 0x16, 0x35, 0x14, 0x8, 0x3, 0x8, 0x1f, 0x6, 0x2b, 0x3c, 0xc, 0x2d, 0x15, 0x3e], 0x2, 0xb, 0x7}}}, {{@uncond, 0x3202, 0xc0, 0x128, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}, @inet=@rpfilter={{0x28}, {0x6}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x2, 0x7, 0x8001, 0x1, 'pptp\x00', 'syz0\x00', {0x7}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x548)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xa, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x100, 0x42, '\x00', 0x0, @fallback=0x17, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$FUSE_DIRENTPLUS(r5, &(0x7f0000000100)=ANY=[@ANYBLOB="10000000feff5366"], 0x10)
syz_clone(0x81080000, &(0x7f0000000400), 0x0, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r11, 0x0, 0x30, 0x1, @void}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)

kernel console output (not intermixed with test programs):

1 comm="syz.8.6634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  445.166018][  T279] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.169725][  T279] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  445.290705][  T279] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.294388][  T279] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  445.317619][ T5290] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  445.322508][ T5290] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  445.325785][ T5290] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  445.331091][ T5290] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  445.335045][ T5290] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  445.375019][  T279] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.379297][  T279] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  445.427568][T24133] FAULT_INJECTION: forcing a failure.
[  445.427568][T24133] name failslab, interval 1, probability 0, space 0, times 0
[  445.431787][T24133] CPU: 2 UID: 0 PID: 24133 Comm: syz.2.6641 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  445.431805][T24133] Tainted: [L]=SOFTLOCKUP
[  445.431810][T24133] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  445.431817][T24133] Call Trace:
[  445.431821][T24133]  <TASK>
[  445.431826][T24133]  dump_stack_lvl+0x100/0x190
[  445.431849][T24133]  should_fail_ex.cold+0x5/0xa
[  445.431865][T24133]  should_failslab+0xc2/0x120
[  445.431877][T24133]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  445.431894][T24133]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  445.431916][T24133]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  445.431937][T24133]  mmu_topup_memory_caches+0x25/0x170
[  445.431951][T24133]  kvm_mmu_load+0xd6/0x23e0
[  445.431964][T24133]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  445.431979][T24133]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  445.431998][T24133]  ? __pfx_kvm_mmu_load+0x10/0x10
[  445.432010][T24133]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  445.432028][T24133]  ? kvm_check_and_inject_events+0x961/0x10c0
[  445.432041][T24133]  ? record_steal_time+0x3f0/0xbe0
[  445.432059][T24133]  vcpu_run+0x39f4/0x5ca0
[  445.432078][T24133]  ? __pfx_vcpu_run+0x10/0x10
[  445.432096][T24133]  ? rcu_is_watching+0x12/0xc0
[  445.432113][T24133]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  445.432128][T24133]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  445.432148][T24133]  kvm_vcpu_ioctl+0x730/0x1730
[  445.432167][T24133]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  445.432185][T24133]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  445.432202][T24133]  ? do_vfs_ioctl+0x226/0x13e0
[  445.432219][T24133]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  445.432237][T24133]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  445.432259][T24133]  ? __fget_files+0x215/0x3d0
[  445.432270][T24133]  ? hook_file_ioctl_common+0x146/0x410
[  445.432285][T24133]  ? selinux_file_ioctl+0x139/0x290
[  445.432301][T24133]  ? selinux_file_ioctl+0xb4/0x290
[  445.432318][T24133]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  445.432335][T24133]  __x64_sys_ioctl+0x18e/0x210
[  445.432353][T24133]  do_syscall_64+0x106/0xf80
[  445.432369][T24133]  ? clear_bhb_loop+0x40/0x90
[  445.432389][T24133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.432401][T24133] RIP: 0033:0x7fe03ad9c799
[  445.432411][T24133] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  445.432422][T24133] RSP: 002b:00007fe03bbc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  445.432434][T24133] RAX: ffffffffffffffda RBX: 00007fe03b015fa0 RCX: 00007fe03ad9c799
[  445.432441][T24133] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000d
[  445.432448][T24133] RBP: 00007fe03bbc7090 R08: 0000000000000000 R09: 0000000000000000
[  445.432454][T24133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  445.432461][T24133] R13: 00007fe03b016038 R14: 00007fe03b015fa0 R15: 00007fff376fac78
[  445.432475][T24133]  </TASK>
[  445.512630][T24125] chnl_net:caif_netlink_parms(): no params data found
[  445.558768][  T279] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.562009][  T279] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  445.623770][T24125] bridge0: port 1(bridge_slave_0) entered blocking state
[  445.626817][T24125] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.630534][T24125] bridge_slave_0: entered allmulticast mode
[  445.634534][T24125] bridge_slave_0: entered promiscuous mode
[  445.639397][T24125] bridge0: port 2(bridge_slave_1) entered blocking state
[  445.642454][T24125] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.645305][T24125] bridge_slave_1: entered allmulticast mode
[  445.648750][T24125] bridge_slave_1: entered promiscuous mode
[  445.670224][T24125] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  445.691325][T24125] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  445.730252][T24156] Bluetooth: MGMT ver 1.23
[  445.739771][T24125] team0: Port device team_slave_0 added
[  445.743097][T24125] team0: Port device team_slave_1 added
[  445.777823][T24125] batman_adv: batadv0: Adding interface: batadv_slave_0
[  445.780675][T24125] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  445.797224][T24125] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  445.803159][T24125] batman_adv: batadv0: Adding interface: batadv_slave_1
[  445.806070][T24125] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  445.816925][T24125] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  445.821286][  T279] bridge_slave_1: left allmulticast mode
[  445.823137][  T279] bridge_slave_1: left promiscuous mode
[  445.825013][  T279] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.829360][  T279] bridge_slave_0: left allmulticast mode
[  445.831228][  T279] bridge_slave_0: left promiscuous mode
[  445.833190][  T279] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.851154][T24169] input: syz1 as /devices/virtual/input/input64
[  445.951160][  T279] bond1 (unregistering): (slave geneve2): Releasing active interface
[  446.022925][  T279] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  446.027594][  T279] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  446.031447][  T279] bond0 (unregistering): Released all slaves
[  446.036148][  T279] bond1 (unregistering): Released all slaves
[  446.079249][T24125] hsr_slave_0: entered promiscuous mode
[  446.081552][T24125] hsr_slave_1: entered promiscuous mode
[  446.083787][T24125] debugfs: 'hsr0' already exists in 'hsr'
[  446.085585][T24125] Cannot create hsr debugfs directory
[  446.126729][  T279] : left promiscuous mode
[  446.404480][ T5290] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  446.412446][ T5290] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  446.413928][ T5290] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  446.415264][ T5290] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  446.415733][ T5290] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  446.544458][  T279] hsr_slave_0: left promiscuous mode
[  446.549987][  T279] hsr_slave_1: left promiscuous mode
[  446.552787][  T279] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  446.555213][  T279] batman_adv: batadv0: Removing interface: batadv_slave_0
[  446.558437][  T279] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  446.560876][  T279] batman_adv: batadv0: Removing interface: batadv_slave_1
[  446.568291][  T279] veth1_macvtap: left promiscuous mode
[  446.570103][  T279] veth0_macvtap: left promiscuous mode
[  446.571803][  T279] veth1_vlan: left promiscuous mode
[  446.573581][  T279] veth0_vlan: left promiscuous mode
[  446.685693][  T279] team0 (unregistering): Port device team_slave_1 removed
[  446.693494][  T279] team0 (unregistering): Port device team_slave_0 removed
[  446.755212][T24209] chnl_net:caif_netlink_parms(): no params data found
[  446.808297][T24209] bridge0: port 1(bridge_slave_0) entered blocking state
[  446.810704][T24209] bridge0: port 1(bridge_slave_0) entered disabled state
[  446.813017][T24209] bridge_slave_0: entered allmulticast mode
[  446.815693][T24209] bridge_slave_0: entered promiscuous mode
[  446.820174][T24209] bridge0: port 2(bridge_slave_1) entered blocking state
[  446.822511][T24209] bridge0: port 2(bridge_slave_1) entered disabled state
[  446.824828][T24209] bridge_slave_1: entered allmulticast mode
[  446.827701][T24209] bridge_slave_1: entered promiscuous mode
[  446.842537][T24209] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  446.847984][T24209] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  446.880605][T24209] team0: Port device team_slave_0 added
[  446.885735][T24209] team0: Port device team_slave_1 added
[  446.912278][T24209] batman_adv: batadv0: Adding interface: batadv_slave_0
[  446.915382][T24209] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  446.928069][T24209] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  446.935541][T24209] batman_adv: batadv0: Adding interface: batadv_slave_1
[  446.940560][T24209] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  446.952012][T24209] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  446.991282][T24209] hsr_slave_0: entered promiscuous mode
[  446.993651][T24209] hsr_slave_1: entered promiscuous mode
[  446.995762][T24209] debugfs: 'hsr0' already exists in 'hsr'
[  446.997951][T24209] Cannot create hsr debugfs directory
[  447.262428][T24276] ipt_rpfilter: unknown options
[  447.357361][ T5290] Bluetooth: hci0: command tx timeout
[  447.396594][  T279] netdevsim netdevsim6 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  447.402373][  T279] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  447.406572][  T279] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  447.433115][T24292] netlink: 'syz.2.6678': attribute type 4 has an invalid length.
[  447.507592][  T279] netdevsim netdevsim6 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  447.512170][  T279] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  447.515417][  T279] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  447.532873][T24300] netlink: 'syz.2.6680': attribute type 21 has an invalid length.
[  447.535761][T24300] netlink: 'syz.2.6680': attribute type 6 has an invalid length.
[  447.538469][T24300] __nla_validate_parse: 4 callbacks suppressed
[  447.538478][T24300] netlink: 132 bytes leftover after parsing attributes in process `syz.2.6680'.
[  447.632506][  T279] netdevsim netdevsim6 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  447.635753][  T279] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  447.639689][  T279] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  447.705319][  T279] netdevsim netdevsim6 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  447.708945][  T279] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  447.713069][  T279] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  447.831236][  T279] bridge_slave_1: left allmulticast mode
[  447.833202][  T279] bridge_slave_1: left promiscuous mode
[  447.835047][  T279] bridge0: port 2(bridge_slave_1) entered disabled state
[  447.839099][  T279] bridge_slave_0: left allmulticast mode
[  447.840895][  T279] bridge_slave_0: left promiscuous mode
[  447.843203][  T279] bridge0: port 1(bridge_slave_0) entered disabled state
[  447.914110][  T279] bond1 (unregistering): (slave geneve2): Releasing active interface
[  447.984433][  T279] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  447.989415][  T279] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  447.993045][  T279] bond0 (unregistering): Released all slaves
[  447.999013][  T279] bond1 (unregistering): Released all slaves
[  448.005519][  T279] bond2 (unregistering): Released all slaves
[  448.067303][   T40] audit: type=1400 audit(1774484820.894:1416): avc:  denied  { listen } for  pid=24316 comm="syz.2.6685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  448.203993][T24323] netlink: 264 bytes leftover after parsing attributes in process `syz.8.6686'.
[  448.332592][T24344] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6690'.
[  448.338219][T24346] xt_hashlimit: size too large, truncated to 1048576
[  448.338699][T24344] vxlan0: entered promiscuous mode
[  448.342148][T24344] vxlan0: entered allmulticast mode
[  448.347915][T17488] netdevsim netdevsim8 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  448.350908][T17488] netdevsim netdevsim8 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  448.354535][T17488] netdevsim netdevsim8 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  448.360608][T17488] netdevsim netdevsim8 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  448.431046][T24359] netlink: 'syz.8.6694': attribute type 1 has an invalid length.
[  448.433694][  T279] hsr_slave_0: left promiscuous mode
[  448.447752][  T279] hsr_slave_1: left promiscuous mode
[  448.449914][  T279] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  448.452320][  T279] batman_adv: batadv0: Removing interface: batadv_slave_0
[  448.455233][  T279] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  448.457872][  T279] batman_adv: batadv0: Removing interface: batadv_slave_1
[  448.463579][  T279] veth1_macvtap: left promiscuous mode
[  448.465370][  T279] veth0_macvtap: left promiscuous mode
[  448.468759][  T279] veth1_vlan: left promiscuous mode
[  448.470891][  T279] veth0_vlan: left promiscuous mode
[  448.477280][ T5290] Bluetooth: hci3: command tx timeout
[  448.583402][  T279] team0 (unregistering): Port device team_slave_1 removed
[  448.591185][   T40] audit: type=1400 audit(1774484821.424:1417): avc:  denied  { connect } for  pid=24358 comm="syz.8.6694" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  448.597921][  T279] team0 (unregistering): Port device team_slave_0 removed
[  448.695485][T24359] 8021q: adding VLAN 0 to HW filter on device bond2
[  448.702444][T24365] bond2: up delay (35976) is not a multiple of miimon (100), value rounded to 35900 ms
[  448.706132][T24365] bond2: entered allmulticast mode
[  448.790467][T24382] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6698'.
[  448.938788][   T40] audit: type=1800 audit(1774484821.774:1418): pid=24401 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.8.6705" name="nullb0" dev="tmpfs" ino=826 res=0 errno=0
[  448.968244][T24393] FAULT_INJECTION: forcing a failure.
[  448.968244][T24393] name failslab, interval 1, probability 0, space 0, times 0
[  448.972750][T24393] CPU: 3 UID: 0 PID: 24393 Comm: syz.2.6703 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  448.972771][T24393] Tainted: [L]=SOFTLOCKUP
[  448.972775][T24393] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  448.972783][T24393] Call Trace:
[  448.972788][T24393]  <TASK>
[  448.972793][T24393]  dump_stack_lvl+0x100/0x190
[  448.972817][T24393]  should_fail_ex.cold+0x5/0xa
[  448.972833][T24393]  should_failslab+0xc2/0x120
[  448.972846][T24393]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  448.972863][T24393]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  448.972886][T24393]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  448.972910][T24393]  mmu_topup_memory_caches+0x25/0x170
[  448.972925][T24393]  kvm_mmu_load+0xd6/0x23e0
[  448.972937][T24393]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  448.972955][T24393]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  448.972973][T24393]  ? kvm_apic_accept_pic_intr+0xdf/0x1b0
[  448.972990][T24393]  ? __pfx_kvm_mmu_load+0x10/0x10
[  448.973003][T24393]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  448.973022][T24393]  ? kvm_check_and_inject_events+0x961/0x10c0
[  448.973036][T24393]  ? record_steal_time+0x3f0/0xbe0
[  448.973057][T24393]  vcpu_run+0x39f4/0x5ca0
[  448.973077][T24393]  ? __pfx_vcpu_run+0x10/0x10
[  448.973096][T24393]  ? rcu_is_watching+0x12/0xc0
[  448.973113][T24393]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  448.973128][T24393]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  448.973147][T24393]  kvm_vcpu_ioctl+0x730/0x1730
[  448.973166][T24393]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  448.973184][T24393]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  448.973203][T24393]  ? do_vfs_ioctl+0x226/0x13e0
[  448.973222][T24393]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  448.973240][T24393]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  448.973263][T24393]  ? __fget_files+0x215/0x3d0
[  448.973275][T24393]  ? hook_file_ioctl_common+0x146/0x410
[  448.973296][T24393]  ? selinux_file_ioctl+0x139/0x290
[  448.973313][T24393]  ? selinux_file_ioctl+0xb4/0x290
[  448.973331][T24393]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  448.973349][T24393]  __x64_sys_ioctl+0x18e/0x210
[  448.973368][T24393]  do_syscall_64+0x106/0xf80
[  448.973385][T24393]  ? clear_bhb_loop+0x40/0x90
[  448.973400][T24393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.973412][T24393] RIP: 0033:0x7fe03ad9c799
[  448.973423][T24393] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  448.973435][T24393] RSP: 002b:00007fe03bbc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  448.973447][T24393] RAX: ffffffffffffffda RBX: 00007fe03b015fa0 RCX: 00007fe03ad9c799
[  448.973454][T24393] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  448.973462][T24393] RBP: 00007fe03bbc7090 R08: 0000000000000000 R09: 0000000000000000
[  448.973469][T24393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  448.973476][T24393] R13: 00007fe03b016038 R14: 00007fe03b015fa0 R15: 00007fff376fac78
[  448.973491][T24393]  </TASK>
[  449.152100][ T5290] Bluetooth: hci1: Malformed Event: 0x02
[  449.194358][  T279] IPVS: stop unused estimator thread 0...
[  449.437643][ T5290] Bluetooth: hci0: command tx timeout
[  449.597305][ T5804] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  449.747292][ T5804] usb 7-1: Using ep0 maxpacket: 32
[  449.750660][ T5804] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  449.755680][ T5804] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  449.758848][ T5804] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  449.761554][ T5804] usb 7-1: Product: syz
[  449.763310][ T5804] usb 7-1: Manufacturer: syz
[  449.764974][ T5804] usb 7-1: SerialNumber: syz
[  449.768475][ T5804] usb 7-1: config 0 descriptor??
[  449.771445][T24437] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  449.774866][ T5804] hub 7-1:0.0: bad descriptor, ignoring hub
[  449.776850][ T5804] hub 7-1:0.0: probe with driver hub failed with error -5
[  449.986798][T24442] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6715'.
[  449.991090][T24442] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  450.018202][T24448] netlink: 252 bytes leftover after parsing attributes in process `syz.8.6716'.
[  450.557311][ T5290] Bluetooth: hci3: command tx timeout
[  450.761457][T24125] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  450.782977][T24125] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  450.786994][T24125] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  450.796830][T24125] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  450.820900][T24209] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  450.829223][T24209] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  450.833865][T24209] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  450.838913][T22207] usb 7-1: USB disconnect, device number 38
[  450.845883][T24209] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  450.907610][T24125] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.916316][T24209] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.928846][T24125] 8021q: adding VLAN 0 to HW filter on device team0
[  450.933749][T24209] 8021q: adding VLAN 0 to HW filter on device team0
[  450.944028][  T279] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.946284][  T279] bridge0: port 1(bridge_slave_0) entered forwarding state
[  450.954855][  T279] bridge0: port 2(bridge_slave_1) entered blocking state
[  450.957213][  T279] bridge0: port 2(bridge_slave_1) entered forwarding state
[  450.962004][  T279] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.964484][  T279] bridge0: port 1(bridge_slave_0) entered forwarding state
[  450.978984][   T98] bridge0: port 2(bridge_slave_1) entered blocking state
[  450.981253][   T98] bridge0: port 2(bridge_slave_1) entered forwarding state
[  451.093178][T24125] 8021q: adding VLAN 0 to HW filter on device batadv0
[  451.130512][T24209] 8021q: adding VLAN 0 to HW filter on device batadv0
[  451.133650][T24125] veth0_vlan: entered promiscuous mode
[  451.152965][T24125] veth1_vlan: entered promiscuous mode
[  451.181673][T24125] veth0_macvtap: entered promiscuous mode
[  451.188662][T24125] veth1_macvtap: entered promiscuous mode
[  451.197910][T24125] batman_adv: batadv0: Interface activated: batadv_slave_0
[  451.204455][T24125] batman_adv: batadv0: Interface activated: batadv_slave_1
[  451.213150][  T363] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  451.215958][  T363] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  451.225483][  T363] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  451.237357][  T363] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  451.300879][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  451.303458][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  451.309090][T24209] veth0_vlan: entered promiscuous mode
[  451.332322][T24209] veth1_vlan: entered promiscuous mode
[  451.339082][  T363] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  451.341577][  T363] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  451.349938][T24209] veth0_macvtap: entered promiscuous mode
[  451.356558][T24209] veth1_macvtap: entered promiscuous mode
[  451.372177][T24209] batman_adv: batadv0: Interface activated: batadv_slave_0
[  451.379760][T24209] batman_adv: batadv0: Interface activated: batadv_slave_1
[  451.385504][T17488] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  451.397301][T17488] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  451.405113][T17488] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  451.421847][T17488] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  451.474762][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  451.484963][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  451.517385][ T5290] Bluetooth: hci0: command tx timeout
[  451.518663][   T98] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  451.521589][   T98] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  451.630436][   T40] audit: type=1400 audit(1774484824.464:1419): avc:  denied  { setopt } for  pid=24591 comm="syz.2.6737" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  451.685129][T24599] netlink: 'syz.2.6740': attribute type 13 has an invalid length.
[  451.689685][   T40] audit: type=1400 audit(1774484824.524:1420): avc:  denied  { ioctl } for  pid=24596 comm="syz.4.6739" path="/dev/ndctl0" dev="devtmpfs" ino=109 ioctlcmd=0x5612 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  451.774861][T24606] FAULT_INJECTION: forcing a failure.
[  451.774861][T24606] name failslab, interval 1, probability 0, space 0, times 0
[  451.779411][T24606] CPU: 1 UID: 0 PID: 24606 Comm: syz.2.6742 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  451.779429][T24606] Tainted: [L]=SOFTLOCKUP
[  451.779433][T24606] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  451.779440][T24606] Call Trace:
[  451.779444][T24606]  <TASK>
[  451.779449][T24606]  dump_stack_lvl+0x100/0x190
[  451.779471][T24606]  should_fail_ex.cold+0x5/0xa
[  451.779486][T24606]  should_failslab+0xc2/0x120
[  451.779499][T24606]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  451.779530][T24606]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  451.779554][T24606]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  451.779576][T24606]  mmu_topup_memory_caches+0x25/0x170
[  451.779589][T24606]  kvm_mmu_load+0xd6/0x23e0
[  451.779601][T24606]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  451.779618][T24606]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  451.779636][T24606]  ? __pfx_kvm_mmu_load+0x10/0x10
[  451.779647][T24606]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  451.779665][T24606]  ? kvm_check_and_inject_events+0x961/0x10c0
[  451.779678][T24606]  ? record_steal_time+0x3f0/0xbe0
[  451.779696][T24606]  vcpu_run+0x39f4/0x5ca0
[  451.779715][T24606]  ? __pfx_vcpu_run+0x10/0x10
[  451.779733][T24606]  ? rcu_is_watching+0x12/0xc0
[  451.779750][T24606]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  451.779763][T24606]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  451.779781][T24606]  kvm_vcpu_ioctl+0x730/0x1730
[  451.779799][T24606]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  451.779816][T24606]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  451.779834][T24606]  ? do_vfs_ioctl+0x226/0x13e0
[  451.779851][T24606]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  451.779868][T24606]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  451.779890][T24606]  ? __fget_files+0x215/0x3d0
[  451.779901][T24606]  ? hook_file_ioctl_common+0x146/0x410
[  451.779917][T24606]  ? selinux_file_ioctl+0x139/0x290
[  451.779932][T24606]  ? selinux_file_ioctl+0xb4/0x290
[  451.779949][T24606]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  451.779966][T24606]  __x64_sys_ioctl+0x18e/0x210
[  451.779985][T24606]  do_syscall_64+0x106/0xf80
[  451.780001][T24606]  ? clear_bhb_loop+0x40/0x90
[  451.780015][T24606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.780027][T24606] RIP: 0033:0x7fe03ad9c799
[  451.780037][T24606] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  451.780048][T24606] RSP: 002b:00007fe03bbc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  451.780060][T24606] RAX: ffffffffffffffda RBX: 00007fe03b015fa0 RCX: 00007fe03ad9c799
[  451.780067][T24606] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  451.780073][T24606] RBP: 00007fe03bbc7090 R08: 0000000000000000 R09: 0000000000000000
[  451.780080][T24606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  451.780086][T24606] R13: 00007fe03b016038 R14: 00007fe03b015fa0 R15: 00007fff376fac78
[  451.780100][T24606]  </TASK>
[  452.022676][T24621] FAULT_INJECTION: forcing a failure.
[  452.022676][T24621] name failslab, interval 1, probability 0, space 0, times 0
[  452.029058][T24621] CPU: 0 UID: 0 PID: 24621 Comm: syz.2.6744 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  452.029079][T24621] Tainted: [L]=SOFTLOCKUP
[  452.029083][T24621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  452.029089][T24621] Call Trace:
[  452.029094][T24621]  <TASK>
[  452.029098][T24621]  dump_stack_lvl+0x100/0x190
[  452.029121][T24621]  should_fail_ex.cold+0x5/0xa
[  452.029136][T24621]  should_failslab+0xc2/0x120
[  452.029154][T24621]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  452.029170][T24621]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  452.029192][T24621]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  452.029214][T24621]  mmu_topup_memory_caches+0x25/0x170
[  452.029228][T24621]  kvm_mmu_load+0xd6/0x23e0
[  452.029240][T24621]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  452.029256][T24621]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  452.029275][T24621]  ? __pfx_kvm_mmu_load+0x10/0x10
[  452.029288][T24621]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  452.029307][T24621]  ? kvm_check_and_inject_events+0x961/0x10c0
[  452.029320][T24621]  ? record_steal_time+0x3f0/0xbe0
[  452.029339][T24621]  vcpu_run+0x39f4/0x5ca0
[  452.029358][T24621]  ? __pfx_vcpu_run+0x10/0x10
[  452.029376][T24621]  ? rcu_is_watching+0x12/0xc0
[  452.029392][T24621]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  452.029406][T24621]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  452.029424][T24621]  kvm_vcpu_ioctl+0x730/0x1730
[  452.029443][T24621]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  452.029460][T24621]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  452.029477][T24621]  ? do_vfs_ioctl+0x226/0x13e0
[  452.029495][T24621]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  452.029512][T24621]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  452.029533][T24621]  ? __fget_files+0x215/0x3d0
[  452.029545][T24621]  ? hook_file_ioctl_common+0x146/0x410
[  452.029560][T24621]  ? selinux_file_ioctl+0x139/0x290
[  452.029575][T24621]  ? selinux_file_ioctl+0xb4/0x290
[  452.029592][T24621]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  452.029609][T24621]  __x64_sys_ioctl+0x18e/0x210
[  452.029627][T24621]  do_syscall_64+0x106/0xf80
[  452.029643][T24621]  ? clear_bhb_loop+0x40/0x90
[  452.029657][T24621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.029668][T24621] RIP: 0033:0x7fe03ad9c799
[  452.029679][T24621] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  452.029690][T24621] RSP: 002b:00007fe03bbc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  452.029701][T24621] RAX: ffffffffffffffda RBX: 00007fe03b015fa0 RCX: 00007fe03ad9c799
[  452.029708][T24621] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[  452.029714][T24621] RBP: 00007fe03bbc7090 R08: 0000000000000000 R09: 0000000000000000
[  452.029721][T24621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  452.029727][T24621] R13: 00007fe03b016038 R14: 00007fe03b015fa0 R15: 00007fff376fac78
[  452.029742][T24621]  </TASK>
[  452.282015][T24565] overlayfs: statfs failed on './file0'
[  452.286277][T24637] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  452.323674][T24644] netlink: 830 bytes leftover after parsing attributes in process `syz.2.6749'.
[  452.329901][T24644] bpf: Bad value for 'uid'
[  452.331545][   T40] audit: type=1400 audit(1774484825.164:1421): avc:  denied  { setopt } for  pid=24642 comm="syz.2.6749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  452.337550][   T40] audit: type=1400 audit(1774484825.164:1422): avc:  denied  { getopt } for  pid=24642 comm="syz.2.6749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  452.571865][T24664] netlink: 'syz.2.6756': attribute type 4 has an invalid length.
[  452.640121][ T5290] Bluetooth: hci3: command tx timeout
[  452.679623][   T40] audit: type=1400 audit(1774484825.514:1423): avc:  denied  { read append } for  pid=24683 comm="syz.0.6760" name="btrfs-control" dev="devtmpfs" ino=1342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  452.688130][   T40] audit: type=1400 audit(1774484825.514:1424): avc:  denied  { open } for  pid=24683 comm="syz.0.6760" path="/dev/btrfs-control" dev="devtmpfs" ino=1342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  452.695508][   T40] audit: type=1400 audit(1774484825.514:1425): avc:  denied  { ioctl } for  pid=24683 comm="syz.0.6760" path="/dev/btrfs-control" dev="devtmpfs" ino=1342 ioctlcmd=0x9405 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  452.776783][T24695] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  452.784145][   T40] audit: type=1400 audit(1774484825.614:1426): avc:  denied  { connect } for  pid=24693 comm="syz.8.6763" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  452.891683][T24706] netlink: 104 bytes leftover after parsing attributes in process `syz.8.6767'.
[  453.059333][T24701] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  453.137028][T24719] netlink: 28 bytes leftover after parsing attributes in process `syz.8.6771'.
[  453.140783][T24719] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6771'.
[  453.145020][T24719] netlink: 16 bytes leftover after parsing attributes in process `syz.8.6771'.
[  453.284763][T24733] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay'
[  453.404949][T24738] /dev/nullb0: Can't lookup blockdev
[  453.406793][   T40] audit: type=1400 audit(1774484826.234:1427): avc:  denied  { mounton } for  pid=24737 comm="syz.8.6777" path="/193/bus" dev="tmpfs" ino=1046 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[  453.538192][T24763] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6786'.
[  453.579626][T24771] FAULT_INJECTION: forcing a failure.
[  453.579626][T24771] name failslab, interval 1, probability 0, space 0, times 0
[  453.583511][T24771] CPU: 0 UID: 0 PID: 24771 Comm: syz.0.6789 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  453.583530][T24771] Tainted: [L]=SOFTLOCKUP
[  453.583534][T24771] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  453.583541][T24771] Call Trace:
[  453.583546][T24771]  <TASK>
[  453.583551][T24771]  dump_stack_lvl+0x100/0x190
[  453.583573][T24771]  should_fail_ex.cold+0x5/0xa
[  453.583589][T24771]  should_failslab+0xc2/0x120
[  453.583602][T24771]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  453.583621][T24771]  ? __alloc_skb+0x140/0x710
[  453.583639][T24771]  __alloc_skb+0x140/0x710
[  453.583654][T24771]  ? __pfx___alloc_skb+0x10/0x10
[  453.583668][T24771]  ? find_held_lock+0x2b/0x80
[  453.583684][T24771]  ? avc_has_perm_noaudit+0x11e/0x3b0
[  453.583697][T24771]  ? avc_has_perm_noaudit+0x11e/0x3b0
[  453.583711][T24771]  tcp_stream_alloc_skb+0x34/0x660
[  453.583725][T24771]  tcp_sendmsg_locked+0x1396/0x45e0
[  453.583744][T24771]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  453.583757][T24771]  ? do_raw_spin_lock+0x128/0x260
[  453.583770][T24771]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  453.583787][T24771]  ? __local_bh_enable_ip+0x9e/0x120
[  453.583803][T24771]  tcp_sendmsg+0x2e/0x50
[  453.583813][T24771]  ? __pfx_tcp_sendmsg+0x10/0x10
[  453.583824][T24771]  inet_sendmsg+0xb9/0x140
[  453.583837][T24771]  __sys_sendto+0x446/0x4b0
[  453.583850][T24771]  ? __pfx_inet_sendmsg+0x10/0x10
[  453.583862][T24771]  ? __pfx___sys_sendto+0x10/0x10
[  453.583887][T24771]  ? ksys_write+0x1ac/0x250
[  453.583897][T24771]  ? __pfx_ksys_write+0x10/0x10
[  453.583909][T24771]  __x64_sys_sendto+0xe0/0x1c0
[  453.583923][T24771]  ? do_syscall_64+0x95/0xf80
[  453.583939][T24771]  ? lockdep_hardirqs_on+0x78/0x100
[  453.583954][T24771]  do_syscall_64+0x106/0xf80
[  453.583968][T24771]  ? clear_bhb_loop+0x40/0x90
[  453.583983][T24771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.583994][T24771] RIP: 0033:0x7feb0e79c799
[  453.584004][T24771] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  453.584016][T24771] RSP: 002b:00007feb0f626028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  453.584028][T24771] RAX: ffffffffffffffda RBX: 00007feb0ea15fa0 RCX: 00007feb0e79c799
[  453.584035][T24771] RDX: 000000000000059a RSI: 0000200000000580 RDI: 0000000000000003
[  453.584042][T24771] RBP: 00007feb0f626090 R08: 0000000000000000 R09: 0000000000000000
[  453.584048][T24771] R10: 0000000010008095 R11: 0000000000000246 R12: 0000000000000001
[  453.584055][T24771] R13: 00007feb0ea16038 R14: 00007feb0ea15fa0 R15: 00007ffcf802cc08
[  453.584073][T24771]  </TASK>
[  453.648993][T24775] overlayfs: failed to clone upperpath
[  453.649301][ T5290] Bluetooth: hci0: command tx timeout
[  454.492954][T24787] FAULT_INJECTION: forcing a failure.
[  454.492954][T24787] name failslab, interval 1, probability 0, space 0, times 0
[  454.497034][T24787] CPU: 1 UID: 0 PID: 24787 Comm: syz.4.6791 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  454.497054][T24787] Tainted: [L]=SOFTLOCKUP
[  454.497059][T24787] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  454.497066][T24787] Call Trace:
[  454.497071][T24787]  <TASK>
[  454.497076][T24787]  dump_stack_lvl+0x100/0x190
[  454.497099][T24787]  should_fail_ex.cold+0x5/0xa
[  454.497114][T24787]  should_failslab+0xc2/0x120
[  454.497127][T24787]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  454.497156][T24787]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  454.497179][T24787]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  454.497201][T24787]  mmu_topup_memory_caches+0x25/0x170
[  454.497215][T24787]  kvm_mmu_load+0xd6/0x23e0
[  454.497227][T24787]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  454.497247][T24787]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  454.497265][T24787]  ? __pfx_kvm_mmu_load+0x10/0x10
[  454.497276][T24787]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  454.497295][T24787]  ? kvm_check_and_inject_events+0x961/0x10c0
[  454.497308][T24787]  ? record_steal_time+0x3f0/0xbe0
[  454.497326][T24787]  vcpu_run+0x39f4/0x5ca0
[  454.497345][T24787]  ? __pfx_vcpu_run+0x10/0x10
[  454.497363][T24787]  ? rcu_is_watching+0x12/0xc0
[  454.497379][T24787]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  454.497393][T24787]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  454.497410][T24787]  kvm_vcpu_ioctl+0x730/0x1730
[  454.497428][T24787]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  454.497446][T24787]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  454.497465][T24787]  ? do_vfs_ioctl+0x226/0x13e0
[  454.497490][T24787]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  454.497509][T24787]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  454.497531][T24787]  ? __fget_files+0x215/0x3d0
[  454.497542][T24787]  ? hook_file_ioctl_common+0x146/0x410
[  454.497559][T24787]  ? selinux_file_ioctl+0x139/0x290
[  454.497581][T24787]  ? selinux_file_ioctl+0xb4/0x290
[  454.497601][T24787]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  454.497619][T24787]  __x64_sys_ioctl+0x18e/0x210
[  454.497637][T24787]  do_syscall_64+0x106/0xf80
[  454.497658][T24787]  ? clear_bhb_loop+0x40/0x90
[  454.497679][T24787]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.497693][T24787] RIP: 0033:0x7f03ba99c799
[  454.497704][T24787] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  454.497715][T24787] RSP: 002b:00007f03bb798028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  454.497727][T24787] RAX: ffffffffffffffda RBX: 00007f03bac15fa0 RCX: 00007f03ba99c799
[  454.497738][T24787] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 000000000000000d
[  454.497748][T24787] RBP: 00007f03bb798090 R08: 0000000000000000 R09: 0000000000000000
[  454.497757][T24787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  454.497767][T24787] R13: 00007f03bac16038 R14: 00007f03bac15fa0 R15: 00007ffc9d7853b8
[  454.497812][T24787]  </TASK>
[  454.508047][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  454.508060][   T40] audit: type=1400 audit(1774484827.344:1434): avc:  denied  { getopt } for  pid=24791 comm="syz.0.6793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  454.717351][ T5290] Bluetooth: hci3: command tx timeout
[  454.728601][   T40] audit: type=1400 audit(1774484827.564:1435): avc:  denied  { shutdown } for  pid=24800 comm="syz.8.6796" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  454.769396][T24805] syz.8.6798 (24805): attempted to duplicate a private mapping with mremap.  This is not supported.
[  454.781563][   T40] audit: type=1400 audit(1774484827.614:1436): avc:  denied  { setopt } for  pid=24804 comm="syz.8.6798" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  454.797299][   T40] audit: type=1400 audit(1774484827.624:1437): avc:  denied  { accept } for  pid=24804 comm="syz.8.6798" path="socket:[164524]" dev="sockfs" ino=164524 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  455.193262][   T40] audit: type=1400 audit(1774484828.024:1438): avc:  denied  { getopt } for  pid=24823 comm="syz.8.6805" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  455.678519][T24859] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6819'.
[  456.161807][T24871] netlink: 1752 bytes leftover after parsing attributes in process `syz.8.6821'.
[  456.204356][   T40] audit: type=1400 audit(1774484829.034:1439): avc:  denied  { bind } for  pid=24872 comm="syz.8.6822" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  456.211121][   T40] audit: type=1400 audit(1774484829.034:1440): avc:  denied  { name_bind } for  pid=24872 comm="syz.8.6822" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  456.217933][   T40] audit: type=1400 audit(1774484829.034:1441): avc:  denied  { node_bind } for  pid=24872 comm="syz.8.6822" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  456.588266][T24902] netlink: 'syz.2.6828': attribute type 3 has an invalid length.
[  456.676416][T24910] netlink: 1624 bytes leftover after parsing attributes in process `syz.8.6832'.
[  456.761771][T24919] overlay: ./file0 is not a directory
[  456.799736][T24921] ip6t_srh: unknown srh match flags  4015
[  456.857322][T23458] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  457.047428][T23458] usb 5-1: Using ep0 maxpacket: 32
[  457.051612][T23458] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  457.055060][T23458] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  457.067233][T23458] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  457.067299][ T5986] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  457.076515][T23458] usb 5-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  457.087192][T23458] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  457.089727][T23458] usb 5-1: Product: syz
[  457.091069][T23458] usb 5-1: Manufacturer: syz
[  457.092533][T23458] usb 5-1: SerialNumber: syz
[  457.095873][T23458] usb 5-1: config 0 descriptor??
[  457.100744][T23458] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input66
[  457.227265][ T5986] usb 7-1: Using ep0 maxpacket: 8
[  457.232379][ T5986] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  457.235080][ T5986] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  457.237875][ T5986] usb 7-1: Product: syz
[  457.239163][ T5986] usb 7-1: Manufacturer: syz
[  457.240622][ T5986] usb 7-1: SerialNumber: syz
[  457.247546][ T5986] usb 7-1: config 0 descriptor??
[  457.309475][T23458] usb 5-1: USB disconnect, device number 20
[  457.310562][T24927] FAULT_INJECTION: forcing a failure.
[  457.310562][T24927] name failslab, interval 1, probability 0, space 0, times 0
[  457.311443][    C2] xpad 5-1:0.0: xpad_irq_out - usb_submit_urb failed with result -19
[  457.315598][T24927] CPU: 0 UID: 0 PID: 24927 Comm: syz.4.6839 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  457.315617][T24927] Tainted: [L]=SOFTLOCKUP
[  457.315622][T24927] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  457.315628][T24927] Call Trace:
[  457.315633][T24927]  <TASK>
[  457.315638][T24927]  dump_stack_lvl+0x100/0x190
[  457.315661][T24927]  should_fail_ex.cold+0x5/0xa
[  457.315676][T24927]  should_failslab+0xc2/0x120
[  457.315689][T24927]  __kmalloc_node_noprof+0xe6/0x850
[  457.315705][T24927]  ? __vmalloc_node_range_noprof+0x3dc/0x1530
[  457.315722][T24927]  __vmalloc_node_range_noprof+0x3dc/0x1530
[  457.315736][T24927]  ? find_held_lock+0x2b/0x80
[  457.315750][T24927]  ? local_lock_release+0x99/0x130
[  457.315766][T24927]  ? vhost_task_create+0x1db/0x370
[  457.315783][T24927]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  457.315798][T24927]  ? __memcg_slab_post_alloc_hook+0x51b/0x990
[  457.315814][T24927]  ? rcu_is_watching+0x12/0xc0
[  457.315827][T24927]  ? trace_kmem_cache_alloc+0xf3/0x120
[  457.315854][T24927]  ? vhost_task_create+0x1db/0x370
[  457.315868][T24927]  __vmalloc_node_noprof+0xad/0xf0
[  457.315881][T24927]  ? vhost_task_create+0x1db/0x370
[  457.315896][T24927]  copy_process+0x5ec/0x7a40
[  457.315919][T24927]  ? __pfx_copy_process+0x10/0x10
[  457.315942][T24927]  ? lockdep_init_map_type+0x5c/0x250
[  457.315960][T24927]  ? lockdep_init_map_type+0x5c/0x250
[  457.315972][T24927]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  457.315995][T24927]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  457.316011][T24927]  vhost_task_create+0x1db/0x370
[  457.316025][T24927]  ? __pfx_vhost_task_create+0x10/0x10
[  457.316039][T24927]  ? trace_contention_end+0x140/0x180
[  457.316055][T24927]  ? __pfx_vhost_task_fn+0x10/0x10
[  457.316070][T24927]  ? __pfx___mutex_lock+0x10/0x10
[  457.316087][T24927]  ? kasan_quarantine_put+0x104/0x240
[  457.316103][T24927]  ? lockdep_hardirqs_on+0x78/0x100
[  457.316123][T24927]  kvm_mmu_post_init_vm+0x1b3/0x370
[  457.316138][T24927]  kvm_arch_vcpu_ioctl_run+0x66/0x1830
[  457.316152][T24927]  ? kvm_vcpu_ioctl+0x155c/0x1730
[  457.316173][T24927]  kvm_vcpu_ioctl+0x730/0x1730
[  457.316192][T24927]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  457.316212][T24927]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  457.316229][T24927]  ? do_vfs_ioctl+0x226/0x13e0
[  457.316247][T24927]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  457.316264][T24927]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  457.316286][T24927]  ? __fget_files+0x215/0x3d0
[  457.316297][T24927]  ? hook_file_ioctl_common+0x146/0x410
[  457.316312][T24927]  ? selinux_file_ioctl+0x139/0x290
[  457.316328][T24927]  ? selinux_file_ioctl+0xb4/0x290
[  457.316345][T24927]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  457.316362][T24927]  __x64_sys_ioctl+0x18e/0x210
[  457.316380][T24927]  do_syscall_64+0x106/0xf80
[  457.316396][T24927]  ? clear_bhb_loop+0x40/0x90
[  457.316411][T24927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.316423][T24927] RIP: 0033:0x7f03ba99c799
[  457.316433][T24927] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  457.316444][T24927] RSP: 002b:00007f03bb798028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  457.316456][T24927] RAX: ffffffffffffffda RBX: 00007f03bac15fa0 RCX: 00007f03ba99c799
[  457.316463][T24927] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  457.316469][T24927] RBP: 00007f03bb798090 R08: 0000000000000000 R09: 0000000000000000
[  457.316476][T24927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  457.316483][T24927] R13: 00007f03bac16038 R14: 00007f03bac15fa0 R15: 00007ffc9d7853b8
[  457.316497][T24927]  </TASK>
[  457.316517][T24927] syz.4.6839: vmalloc error: size 32768, failed to allocated page array size 64, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  457.439581][T24927] CPU: 1 UID: 0 PID: 24927 Comm: syz.4.6839 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  457.439600][T24927] Tainted: [L]=SOFTLOCKUP
[  457.439604][T24927] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  457.439611][T24927] Call Trace:
[  457.439615][T24927]  <TASK>
[  457.439620][T24927]  dump_stack_lvl+0x100/0x190
[  457.439644][T24927]  warn_alloc.cold+0x95/0x1c1
[  457.439678][T24927]  ? __pfx_warn_alloc+0x10/0x10
[  457.439696][T24927]  ? dump_stack_lvl+0x17c/0x190
[  457.439715][T24927]  ? trace_kmalloc+0x101/0x130
[  457.439726][T24927]  ? __kasan_kmalloc+0x8a/0xb0
[  457.439744][T24927]  ? __kmalloc_node_noprof+0x324/0x850
[  457.439760][T24927]  ? __vmalloc_node_range_noprof+0x3dc/0x1530
[  457.439778][T24927]  __vmalloc_node_range_noprof+0x1275/0x1530
[  457.439791][T24927]  ? find_held_lock+0x2b/0x80
[  457.439806][T24927]  ? local_lock_release+0x99/0x130
[  457.439822][T24927]  ? vhost_task_create+0x1db/0x370
[  457.439839][T24927]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  457.439854][T24927]  ? __memcg_slab_post_alloc_hook+0x51b/0x990
[  457.439869][T24927]  ? rcu_is_watching+0x12/0xc0
[  457.439883][T24927]  ? trace_kmem_cache_alloc+0xf3/0x120
[  457.439896][T24927]  ? vhost_task_create+0x1db/0x370
[  457.439908][T24927]  __vmalloc_node_noprof+0xad/0xf0
[  457.439922][T24927]  ? vhost_task_create+0x1db/0x370
[  457.439937][T24927]  copy_process+0x5ec/0x7a40
[  457.439960][T24927]  ? __pfx_copy_process+0x10/0x10
[  457.439978][T24927]  ? lockdep_init_map_type+0x5c/0x250
[  457.439990][T24927]  ? lockdep_init_map_type+0x5c/0x250
[  457.440002][T24927]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  457.440025][T24927]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  457.440041][T24927]  vhost_task_create+0x1db/0x370
[  457.440055][T24927]  ? __pfx_vhost_task_create+0x10/0x10
[  457.440068][T24927]  ? trace_contention_end+0x140/0x180
[  457.440083][T24927]  ? __pfx_vhost_task_fn+0x10/0x10
[  457.440111][T24927]  ? __pfx___mutex_lock+0x10/0x10
[  457.440127][T24927]  ? kasan_quarantine_put+0x104/0x240
[  457.440144][T24927]  ? lockdep_hardirqs_on+0x78/0x100
[  457.440163][T24927]  kvm_mmu_post_init_vm+0x1b3/0x370
[  457.440177][T24927]  kvm_arch_vcpu_ioctl_run+0x66/0x1830
[  457.440191][T24927]  ? kvm_vcpu_ioctl+0x155c/0x1730
[  457.440211][T24927]  kvm_vcpu_ioctl+0x730/0x1730
[  457.440230][T24927]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  457.440247][T24927]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  457.440264][T24927]  ? do_vfs_ioctl+0x226/0x13e0
[  457.440282][T24927]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  457.440299][T24927]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  457.440321][T24927]  ? __fget_files+0x215/0x3d0
[  457.440333][T24927]  ? hook_file_ioctl_common+0x146/0x410
[  457.440348][T24927]  ? selinux_file_ioctl+0x139/0x290
[  457.440363][T24927]  ? selinux_file_ioctl+0xb4/0x290
[  457.440380][T24927]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  457.440398][T24927]  __x64_sys_ioctl+0x18e/0x210
[  457.440416][T24927]  do_syscall_64+0x106/0xf80
[  457.440432][T24927]  ? clear_bhb_loop+0x40/0x90
[  457.440445][T24927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.440457][T24927] RIP: 0033:0x7f03ba99c799
[  457.440467][T24927] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  457.440478][T24927] RSP: 002b:00007f03bb798028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  457.440489][T24927] RAX: ffffffffffffffda RBX: 00007f03bac15fa0 RCX: 00007f03ba99c799
[  457.440497][T24927] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  457.440503][T24927] RBP: 00007f03bb798090 R08: 0000000000000000 R09: 0000000000000000
[  457.440510][T24927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  457.440516][T24927] R13: 00007f03bac16038 R14: 00007f03bac15fa0 R15: 00007ffc9d7853b8
[  457.440536][T24927]  </TASK>
[  457.440625][T24927] Mem-Info:
[  457.552364][T24927] active_anon:2270 inactive_anon:6597 isolated_anon:0
[  457.552364][T24927]  active_file:8592 inactive_file:12995 isolated_file:0
[  457.552364][T24927]  unevictable:1768 dirty:298 writeback:0
[  457.552364][T24927]  slab_reclaimable:8504 slab_unreclaimable:79319
[  457.552364][T24927]  mapped:30043 shmem:2007 pagetables:6530
[  457.552364][T24927]  sec_pagetables:306 bounce:0
[  457.552364][T24927]  kernel_misc_reclaimable:0
[  457.552364][T24927]  free:207052 free_pcp:6312 free_cma:0
[  457.565156][T24927] Node 0 active_anon:8248kB inactive_anon:26388kB active_file:6532kB inactive_file:51460kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:25828kB dirty:1180kB writeback:0kB shmem:4492kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:14912kB pagetables:15160kB sec_pagetables:1224kB all_unreclaimable? no Balloon:0kB
[  457.566679][ T5986] usb 7-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  457.575911][T24927] Node 1 active_anon:832kB inactive_anon:0kB active_file:27836kB inactive_file:520kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:94344kB dirty:12kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:320kB pagetables:10960kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  457.585802][T24927] Node 0 DMA free:5312kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:12kB inactive_anon:116kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:152kB local_pcp:8kB free_cma:0kB
[  457.595844][ T5986] dvb_usb_rtl28xxu 7-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  457.596681][T24927] lowmem_reserve[]: 0 1231 1231 1231 1231
[  457.600598][T24927] Node 0 DMA32 free:62620kB boost:16384kB min:43860kB low:50728kB high:57596kB reserved_highatomic:0KB free_highatomic:0KB active_anon:8264kB inactive_anon:26272kB active_file:6532kB inactive_file:51400kB unevictable:3536kB writepending:1180kB zspages:0kB present:2080628kB managed:1260856kB mlocked:0kB bounce:0kB free_pcp:3192kB local_pcp:960kB free_cma:0kB
[  457.611581][ T5986] usb 7-1: USB disconnect, device number 39
[  457.611683][T24927] lowmem_reserve[]: 0 0 0 0 0
[  457.615039][T24927] Node 1 Normal free:759992kB boost:0kB min:39760kB low:49700kB high:59640kB reserved_highatomic:0KB free_highatomic:0KB active_anon:932kB inactive_anon:0kB active_file:27884kB inactive_file:520kB unevictable:3536kB writepending:12kB zspages:5664kB present:2097152kB managed:1781884kB mlocked:0kB bounce:0kB free_pcp:22204kB local_pcp:9280kB free_cma:0kB
[  457.626359][T24927] lowmem_reserve[]: 0 0 0 0 0
[  457.628761][T24927] Node 0 DMA: 8*4kB (UM) 11*8kB (UM) 5*16kB (UM) 8*32kB (UM) 4*64kB (M) 2*128kB (M) 3*256kB (UM) 1*512kB (M) 1*1024kB (U) 1*2048kB (M) 0*4096kB = 5320kB
[  457.633246][T24927] Node 0 DMA32: 763*4kB (UM) 1076*8kB (UME) 479*16kB (UME) 323*32kB (UME) 121*64kB (UME) 60*128kB (UME) 37*256kB (UME) 15*512kB (M) 1*1024kB (U) 0*2048kB 0*4096kB = 63260kB
[  457.638415][T24927] Node 1 Normal: 0*4kB 1*8kB (E) 1*16kB (U) 0*32kB 6*64kB (ME) 4*128kB (UE) 13*256kB (ME) 10*512kB (ME) 5*1024kB (UM) 4*2048kB (UME) 180*4096kB (M) = 759960kB
[  457.642830][T24927] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  457.645404][T24927] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  457.648113][T24927] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  457.650994][T24927] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  457.653904][T24927] 23699 total pagecache pages
[  457.655284][T24927] 226 pages in swap cache
[  457.656592][T24927] Free swap  = 103812kB
[  457.658014][T24927] Total swap = 124996kB
[  457.659218][T24927] 1048443 pages RAM
[  457.660347][T24927] 0 pages HighMem/MovableOnly
[  457.661729][T24927] 283918 pages reserved
[  457.662991][T24927] 0 pages cma reserved
[  457.700736][T24936] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6842'.
[  457.742533][T24936] nftables ruleset with unbound chain
[  457.813058][T24943] FAULT_INJECTION: forcing a failure.
[  457.813058][T24943] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  457.816778][T24943] CPU: 1 UID: 0 PID: 24943 Comm: syz.4.6843 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  457.816797][T24943] Tainted: [L]=SOFTLOCKUP
[  457.816801][T24943] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  457.816808][T24943] Call Trace:
[  457.816813][T24943]  <TASK>
[  457.816818][T24943]  dump_stack_lvl+0x100/0x190
[  457.816842][T24943]  should_fail_ex.cold+0x5/0xa
[  457.816858][T24943]  _copy_from_user+0x2e/0xd0
[  457.816871][T24943]  input_event_from_user+0x123/0x310
[  457.816889][T24943]  ? __pfx_input_event_from_user+0x10/0x10
[  457.816907][T24943]  ? __pfx___might_resched+0x10/0x10
[  457.816920][T24943]  ? input_inject_event+0x1c9/0x3b0
[  457.816939][T24943]  evdev_write+0x342/0x610
[  457.816959][T24943]  ? __pfx_evdev_write+0x10/0x10
[  457.816977][T24943]  ? bpf_lsm_file_permission+0x9/0x10
[  457.816998][T24943]  ? security_file_permission+0x76/0x210
[  457.817016][T24943]  ? rw_verify_area+0xce/0x6d0
[  457.817034][T24943]  vfs_write+0x2aa/0x1070
[  457.817045][T24943]  ? __pfx_evdev_write+0x10/0x10
[  457.817062][T24943]  ? __pfx_vfs_write+0x10/0x10
[  457.817071][T24943]  ? find_held_lock+0x2b/0x80
[  457.817086][T24943]  ? __fget_files+0x215/0x3d0
[  457.817099][T24943]  ? __fget_files+0x215/0x3d0
[  457.817113][T24943]  ? __fget_files+0x21f/0x3d0
[  457.817129][T24943]  ksys_write+0x1f8/0x250
[  457.817151][T24943]  ? __pfx_ksys_write+0x10/0x10
[  457.817168][T24943]  do_syscall_64+0x106/0xf80
[  457.817184][T24943]  ? clear_bhb_loop+0x40/0x90
[  457.817198][T24943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.817210][T24943] RIP: 0033:0x7f03ba99c799
[  457.817220][T24943] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  457.817231][T24943] RSP: 002b:00007f03bb777028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  457.817241][T24943] RAX: ffffffffffffffda RBX: 00007f03bac16090 RCX: 00007f03ba99c799
[  457.817248][T24943] RDX: 00000000000012d8 RSI: 0000200000000040 RDI: 0000000000000007
[  457.817255][T24943] RBP: 00007f03bb777090 R08: 0000000000000000 R09: 0000000000000000
[  457.817262][T24943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  457.817268][T24943] R13: 00007f03bac16128 R14: 00007f03bac16090 R15: 00007ffc9d7853b8
[  457.817283][T24943]  </TASK>
[  458.128801][T24959] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=24959 comm=syz.2.6848
[  458.223640][T24968] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6851'.
[  458.229068][T24968] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6851'.
[  458.257138][T24967] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  458.737813][T24992] veth0: entered allmulticast mode
[  458.752712][   T40] audit: type=1326 audit(1774484831.584:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24994 comm="syz.8.6858" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f188719c799 code=0x0
[  458.787341][T23458] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  458.947238][T23458] usb 5-1: Using ep0 maxpacket: 32
[  458.950300][T23458] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  458.953725][T23458] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  458.960503][T23458] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  458.965696][T23458] usb 5-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  458.968983][T23458] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  458.971598][T23458] usb 5-1: Product: syz
[  458.972920][T23458] usb 5-1: Manufacturer: syz
[  458.974365][T23458] usb 5-1: SerialNumber: syz
[  458.977506][T23458] usb 5-1: config 0 descriptor??
[  458.983453][T23458] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input67
[  458.989808][    C2] xpad 5-1:0.0: xpad_irq_in - usb_submit_urb failed with result -1
[  459.030641][T25006] binder: 25004:25006 ioctl 4068aea3 2000000000c0 returned -22
[  459.127117][T25009] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  459.154890][T25009] cramfs: wrong magic
[  459.166017][   T40] audit: type=1400 audit(1774484831.994:1443): avc:  denied  { ioctl } for  pid=25008 comm="syz.2.6861" path="socket:[167290]" dev="sockfs" ino=167290 ioctlcmd=0x8b34 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  459.177910][T25009] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=25009 comm=syz.2.6861
[  459.188923][T22211] usb 5-1: USB disconnect, device number 21
[  459.188973][    C2] xpad 5-1:0.0: xpad_irq_out - usb_submit_urb failed with result -19
[  459.244983][T25015] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6862'.
[  459.264414][T25015] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6862'.
[  459.731964][T25053] Cannot find del_set index 0 as target
[  459.766506][T25057] netlink: 'syz.8.6875': attribute type 4 has an invalid length.
[  459.770179][T25057] netlink: 152 bytes leftover after parsing attributes in process `syz.8.6875'.
[  459.772580][T25060] netlink: zone id is out of range
[  459.872396][T25062] infiniband syz1: set active
[  459.875620][T25062] infiniband syz1: added bond0
[  459.896283][T25062] RDS/IB: syz1: added
[  459.902238][T25062] smc: adding ib device syz1 with port count 1
[  459.904779][T25062] smc:    ib device syz1 port 1 has no pnetid
[  462.510636][T25037] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  462.515162][T25064] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6877'.
[  462.606020][T25107] FAULT_INJECTION: forcing a failure.
[  462.606020][T25107] name failslab, interval 1, probability 0, space 0, times 0
[  462.610085][T25107] CPU: 1 UID: 0 PID: 25107 Comm: syz.0.6882 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  462.610104][T25107] Tainted: [L]=SOFTLOCKUP
[  462.610109][T25107] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  462.610116][T25107] Call Trace:
[  462.610120][T25107]  <TASK>
[  462.610125][T25107]  dump_stack_lvl+0x100/0x190
[  462.610148][T25107]  should_fail_ex.cold+0x5/0xa
[  462.610165][T25107]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  462.610179][T25107]  should_failslab+0xc2/0x120
[  462.610191][T25107]  __kmalloc_noprof+0xe0/0x850
[  462.610211][T25107]  genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  462.610226][T25107]  genl_family_rcv_msg_doit+0xc7/0x300
[  462.610239][T25107]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  462.610255][T25107]  ? bpf_lsm_capable+0x9/0x10
[  462.610267][T25107]  ? security_capable+0x80/0x260
[  462.610283][T25107]  genl_rcv_msg+0x560/0x800
[  462.610296][T25107]  ? __pfx_genl_rcv_msg+0x10/0x10
[  462.610308][T25107]  ? __pfx_nfc_genl_dev_up+0x10/0x10
[  462.610328][T25107]  ? __lock_acquire+0x4a5/0x2630
[  462.610342][T25107]  netlink_rcv_skb+0x159/0x420
[  462.610359][T25107]  ? __pfx_genl_rcv_msg+0x10/0x10
[  462.610371][T25107]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  462.610393][T25107]  ? netlink_deliver_tap+0x1ae/0xcc0
[  462.610411][T25107]  genl_rcv+0x28/0x40
[  462.610428][T25107]  netlink_unicast+0x5aa/0x870
[  462.610447][T25107]  ? __pfx_netlink_unicast+0x10/0x10
[  462.610470][T25107]  netlink_sendmsg+0x8b0/0xda0
[  462.610489][T25107]  ? __pfx_netlink_sendmsg+0x10/0x10
[  462.610505][T25107]  ? __might_fault+0x20/0x140
[  462.610525][T25107]  ____sys_sendmsg+0x9e1/0xb70
[  462.610542][T25107]  ? __pfx_netlink_sendmsg+0x10/0x10
[  462.610560][T25107]  ? __pfx_____sys_sendmsg+0x10/0x10
[  462.610585][T25107]  ___sys_sendmsg+0x190/0x1e0
[  462.610597][T25107]  ? __pfx____sys_sendmsg+0x10/0x10
[  462.610625][T25107]  __sys_sendmsg+0x170/0x220
[  462.610640][T25107]  ? __pfx___sys_sendmsg+0x10/0x10
[  462.610663][T25107]  do_syscall_64+0x106/0xf80
[  462.610679][T25107]  ? clear_bhb_loop+0x40/0x90
[  462.610693][T25107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  462.610705][T25107] RIP: 0033:0x7feb0e79c799
[  462.610716][T25107] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  462.610727][T25107] RSP: 002b:00007feb0f626028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  462.610738][T25107] RAX: ffffffffffffffda RBX: 00007feb0ea15fa0 RCX: 00007feb0e79c799
[  462.610745][T25107] RDX: 0000000004008054 RSI: 0000200000000200 RDI: 0000000000000005
[  462.610752][T25107] RBP: 00007feb0f626090 R08: 0000000000000000 R09: 0000000000000000
[  462.610759][T25107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  462.610765][T25107] R13: 00007feb0ea16038 R14: 00007feb0ea15fa0 R15: 00007ffcf802cc08
[  462.610779][T25107]  </TASK>
[  462.723730][T25119] ipt_rpfilter: unknown options
[  462.789761][T25123] PKCS7: Unknown OID: [4] 0.38.35.36.951720.33.17
[  462.791439][   T40] audit: type=1400 audit(1774484835.624:1444): avc:  denied  { write } for  pid=25122 comm="syz.0.6887" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  462.795493][T25123] PKCS7: Only support pkcs7_signedData type
[  462.903384][   T40] audit: type=1400 audit(1774484835.734:1445): avc:  denied  { accept } for  pid=25128 comm="syz.2.6888" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  462.909722][   T40] audit: type=1400 audit(1774484835.734:1446): avc:  denied  { watch } for  pid=25128 comm="syz.2.6888" path="/477/file0" dev="tmpfs" ino=2519 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  462.949489][   T40] audit: type=1400 audit(1774484835.784:1447): avc:  denied  { accept } for  pid=25130 comm="syz.2.6889" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  462.968641][T22214] IPVS: starting estimator thread 0...
[  463.026100][T25138] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6891'.
[  463.087372][T25133] IPVS: using max 42 ests per chain, 100800 per kthread
[  463.122973][T25142] xt_l2tp: v2 doesn't support IP mode
[  463.539125][T25159] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6900'.
[  463.884876][   T40] audit: type=1400 audit(1774484836.714:1448): avc:  denied  { read } for  pid=25179 comm="syz.4.6908" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  463.938922][T25186] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6911'.
[  464.034637][   T40] audit: type=1400 audit(1774484836.864:1449): avc:  denied  { mount } for  pid=25187 comm="syz.4.6912" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  464.039649][T25195] rdma_rxe: rxe_newlink: failed to add bond0
[  464.041928][   T40] audit: type=1400 audit(1774484836.874:1450): avc:  denied  { remount } for  pid=25187 comm="syz.4.6912" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  464.148490][   T40] audit: type=1400 audit(1774484836.984:1451): avc:  denied  { unmount } for  pid=24209 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  464.165668][   T40] audit: type=1400 audit(1774484836.994:1452): avc:  denied  { create } for  pid=25199 comm="syz.4.6915" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  464.169646][T25200] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6915'.
[  464.182100][   T40] audit: type=1400 audit(1774484837.014:1453): avc:  denied  { shutdown } for  pid=25199 comm="syz.4.6915" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  464.332328][T25217] netlink: 830 bytes leftover after parsing attributes in process `syz.8.6923'.
[  464.452643][T25224] 9p: Invalid uid '0x00000000ffffffff'
[  464.452645][T25226] 9p: Invalid uid '0x00000000ffffffff'
[  464.541811][T25231] FAULT_INJECTION: forcing a failure.
[  464.541811][T25231] name failslab, interval 1, probability 0, space 0, times 0
[  464.545953][T25231] CPU: 1 UID: 0 PID: 25231 Comm: syz.4.6928 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  464.545977][T25231] Tainted: [L]=SOFTLOCKUP
[  464.545981][T25231] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  464.545988][T25231] Call Trace:
[  464.545993][T25231]  <TASK>
[  464.545998][T25231]  dump_stack_lvl+0x100/0x190
[  464.546021][T25231]  should_fail_ex.cold+0x5/0xa
[  464.546036][T25231]  should_failslab+0xc2/0x120
[  464.546048][T25231]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  464.546065][T25231]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  464.546087][T25231]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  464.546109][T25231]  mmu_topup_memory_caches+0x25/0x170
[  464.546123][T25231]  kvm_mmu_load+0xd6/0x23e0
[  464.546136][T25231]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  464.546151][T25231]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  464.546170][T25231]  ? __pfx_kvm_mmu_load+0x10/0x10
[  464.546181][T25231]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  464.546200][T25231]  ? kvm_check_and_inject_events+0x961/0x10c0
[  464.546214][T25231]  ? record_steal_time+0x3f0/0xbe0
[  464.546232][T25231]  vcpu_run+0x39f4/0x5ca0
[  464.546251][T25231]  ? __pfx_vcpu_run+0x10/0x10
[  464.546269][T25231]  ? rcu_is_watching+0x12/0xc0
[  464.546285][T25231]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  464.546299][T25231]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  464.546317][T25231]  kvm_vcpu_ioctl+0x730/0x1730
[  464.546335][T25231]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  464.546357][T25231]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  464.546381][T25231]  ? do_vfs_ioctl+0x226/0x13e0
[  464.546405][T25231]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  464.546429][T25231]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  464.546457][T25231]  ? __fget_files+0x215/0x3d0
[  464.546469][T25231]  ? hook_file_ioctl_common+0x146/0x410
[  464.546484][T25231]  ? selinux_file_ioctl+0x139/0x290
[  464.546500][T25231]  ? selinux_file_ioctl+0xb4/0x290
[  464.546517][T25231]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  464.546534][T25231]  __x64_sys_ioctl+0x18e/0x210
[  464.546553][T25231]  do_syscall_64+0x106/0xf80
[  464.546569][T25231]  ? clear_bhb_loop+0x40/0x90
[  464.546582][T25231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  464.546594][T25231] RIP: 0033:0x7f03ba99c799
[  464.546604][T25231] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  464.546615][T25231] RSP: 002b:00007f03bb798028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  464.546627][T25231] RAX: ffffffffffffffda RBX: 00007f03bac15fa0 RCX: 00007f03ba99c799
[  464.546634][T25231] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  464.546640][T25231] RBP: 00007f03bb798090 R08: 0000000000000000 R09: 0000000000000000
[  464.546647][T25231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  464.546653][T25231] R13: 00007f03bac16038 R14: 00007f03bac15fa0 R15: 00007ffc9d7853b8
[  464.546668][T25231]  </TASK>
[  465.197346][T22214] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  465.358441][T22214] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  465.362024][T22214] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  465.365078][T22214] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  465.368208][T22214] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  465.378738][T25245] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  465.381077][T25271] ip6gre1: entered promiscuous mode
[  465.382832][T22214] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  465.682219][T13454] usb 5-1: USB disconnect, device number 22
[  466.395294][T25310] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6954'.
[  466.395729][T25311] netlink: 'syz.0.6954': attribute type 11 has an invalid length.
[  466.653862][T25325] FAULT_INJECTION: forcing a failure.
[  466.653862][T25325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  466.673697][T25325] CPU: 3 UID: 0 PID: 25325 Comm: syz.2.6959 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  466.673749][T25325] Tainted: [L]=SOFTLOCKUP
[  466.673756][T25325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  466.673766][T25325] Call Trace:
[  466.673772][T25325]  <TASK>
[  466.673779][T25325]  dump_stack_lvl+0x100/0x190
[  466.673815][T25325]  should_fail_ex.cold+0x5/0xa
[  466.673840][T25325]  _copy_from_user+0x2e/0xd0
[  466.673862][T25325]  input_event_from_user+0x123/0x310
[  466.673889][T25325]  ? __pfx_input_event_from_user+0x10/0x10
[  466.673914][T25325]  ? __pfx___might_resched+0x10/0x10
[  466.673934][T25325]  ? input_inject_event+0x1c9/0x3b0
[  466.673962][T25325]  evdev_write+0x342/0x610
[  466.673994][T25325]  ? __pfx_evdev_write+0x10/0x10
[  466.674024][T25325]  ? bpf_lsm_file_permission+0x9/0x10
[  466.674049][T25325]  ? security_file_permission+0x76/0x210
[  466.674074][T25325]  ? rw_verify_area+0xce/0x6d0
[  466.674098][T25325]  vfs_write+0x2aa/0x1070
[  466.674115][T25325]  ? __pfx_evdev_write+0x10/0x10
[  466.674144][T25325]  ? __pfx_vfs_write+0x10/0x10
[  466.674168][T25325]  ? find_held_lock+0x2b/0x80
[  466.674190][T25325]  ? __fget_files+0x215/0x3d0
[  466.674209][T25325]  ? __fget_files+0x215/0x3d0
[  466.674231][T25325]  ? __fget_files+0x21f/0x3d0
[  466.674257][T25325]  ksys_write+0x1f8/0x250
[  466.674272][T25325]  ? __pfx_ksys_write+0x10/0x10
[  466.674296][T25325]  do_syscall_64+0x106/0xf80
[  466.674322][T25325]  ? clear_bhb_loop+0x40/0x90
[  466.674346][T25325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  466.674364][T25325] RIP: 0033:0x7fe03ad9c799
[  466.674379][T25325] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  466.674395][T25325] RSP: 002b:00007fe03bba6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  466.674412][T25325] RAX: ffffffffffffffda RBX: 00007fe03b016090 RCX: 00007fe03ad9c799
[  466.674422][T25325] RDX: 00000000000012d8 RSI: 0000200000000040 RDI: 0000000000000007
[  466.674433][T25325] RBP: 00007fe03bba6090 R08: 0000000000000000 R09: 0000000000000000
[  466.674443][T25325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  466.674453][T25325] R13: 00007fe03b016128 R14: 00007fe03b016090 R15: 00007fff376fac78
[  466.674480][T25325]  </TASK>
[  466.699869][T25326] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  466.705884][T25330] netlink: 'syz.4.6961': attribute type 1 has an invalid length.
[  466.707335][T25326] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  466.717970][T25326] vhci_hcd vhci_hcd.0: Device attached
[  466.736653][T25330] bond1: (slave geneve2): making interface the new active one
[  466.762879][T25324] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(7)
[  466.765197][T25330] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  466.767040][T25324] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  466.774750][  T279] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20004 - 0
[  466.775262][T25324] vhci_hcd vhci_hcd.0: Device attached
[  466.777989][  T279] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20004 - 0
[  466.782847][  T279] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20004 - 0
[  466.786873][  T279] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20004 - 0
[  466.967294][T22214] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  467.221515][T25357] FAULT_INJECTION: forcing a failure.
[  467.221515][T25357] name failslab, interval 1, probability 0, space 0, times 0
[  467.226063][T25357] CPU: 2 UID: 0 PID: 25357 Comm: syz.4.6963 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  467.226089][T25357] Tainted: [L]=SOFTLOCKUP
[  467.226095][T25357] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  467.226105][T25357] Call Trace:
[  467.226113][T25357]  <TASK>
[  467.226120][T25357]  dump_stack_lvl+0x100/0x190
[  467.226151][T25357]  should_fail_ex.cold+0x5/0xa
[  467.226174][T25357]  should_failslab+0xc2/0x120
[  467.226192][T25357]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  467.226214][T25357]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  467.226243][T25357]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  467.226273][T25357]  mmu_topup_memory_caches+0x25/0x170
[  467.226292][T25357]  kvm_mmu_load+0xd6/0x23e0
[  467.226309][T25357]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  467.226331][T25357]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  467.226356][T25357]  ? __pfx_kvm_mmu_load+0x10/0x10
[  467.226372][T25357]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  467.226397][T25357]  ? kvm_check_and_inject_events+0x961/0x10c0
[  467.226416][T25357]  ? record_steal_time+0x3f0/0xbe0
[  467.226441][T25357]  vcpu_run+0x39f4/0x5ca0
[  467.226468][T25357]  ? __pfx_vcpu_run+0x10/0x10
[  467.226495][T25357]  ? rcu_is_watching+0x12/0xc0
[  467.226517][T25357]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  467.226536][T25357]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  467.226561][T25357]  kvm_vcpu_ioctl+0x730/0x1730
[  467.226586][T25357]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  467.226610][T25357]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  467.226633][T25357]  ? do_vfs_ioctl+0x226/0x13e0
[  467.226657][T25357]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  467.226681][T25357]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  467.226711][T25357]  ? __fget_files+0x215/0x3d0
[  467.226727][T25357]  ? hook_file_ioctl_common+0x146/0x410
[  467.226748][T25357]  ? selinux_file_ioctl+0x139/0x290
[  467.226770][T25357]  ? selinux_file_ioctl+0xb4/0x290
[  467.226793][T25357]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  467.226817][T25357]  __x64_sys_ioctl+0x18e/0x210
[  467.226841][T25357]  do_syscall_64+0x106/0xf80
[  467.226863][T25357]  ? clear_bhb_loop+0x40/0x90
[  467.226882][T25357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.226899][T25357] RIP: 0033:0x7f03ba99c799
[  467.226914][T25357] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  467.226928][T25357] RSP: 002b:00007f03bb798028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  467.226944][T25357] RAX: ffffffffffffffda RBX: 00007f03bac15fa0 RCX: 00007f03ba99c799
[  467.226954][T25357] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  467.226963][T25357] RBP: 00007f03bb798090 R08: 0000000000000000 R09: 0000000000000000
[  467.226978][T25357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  467.226987][T25357] R13: 00007f03bac16038 R14: 00007f03bac15fa0 R15: 00007ffc9d7853b8
[  467.227009][T25357]  </TASK>
[  467.438226][T25332] vhci_hcd: connection closed
[  467.438414][  T345] vhci_hcd vhci_hcd.0: stop threads
[  467.439272][T25327] vhci_hcd: connection reset by peer
[  467.441120][  T345] vhci_hcd vhci_hcd.0: release socket
[  467.446848][  T345] vhci_hcd vhci_hcd.0: disconnect device
[  467.459466][T25360] CUSE: info not properly terminated
[  467.464603][   T98] vhci_hcd vhci_hcd.0: stop threads
[  467.465326][T25360] netlink: 'syz.2.6964': attribute type 1 has an invalid length.
[  467.466497][   T98] vhci_hcd vhci_hcd.0: release socket
[  467.472187][   T98] vhci_hcd vhci_hcd.0: disconnect device
[  467.719790][T25379] macsec0: entered promiscuous mode
[  467.721609][T25379] macsec0: entered allmulticast mode
[  467.723313][T25379] veth1_macvtap: entered allmulticast mode
[  467.727485][T25379] netlink: 64 bytes leftover after parsing attributes in process `syz.0.6970'.
[  467.937537][T25412] program syz.0.6982 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  468.048708][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  468.048723][   T40] audit: type=1400 audit(1774484840.884:1456): avc:  denied  { getopt } for  pid=25423 comm="syz.2.6984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  468.066180][T25404] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  468.073476][T25410] netlink: 'syz.8.6981': attribute type 1 has an invalid length.
[  468.159954][T25434] FAULT_INJECTION: forcing a failure.
[  468.159954][T25434] name failslab, interval 1, probability 0, space 0, times 0
[  468.165252][T25434] CPU: 0 UID: 0 PID: 25434 Comm: syz.4.6988 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  468.165279][T25434] Tainted: [L]=SOFTLOCKUP
[  468.165286][T25434] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  468.165297][T25434] Call Trace:
[  468.165304][T25434]  <TASK>
[  468.165311][T25434]  dump_stack_lvl+0x100/0x190
[  468.165344][T25434]  should_fail_ex.cold+0x5/0xa
[  468.165369][T25434]  should_failslab+0xc2/0x120
[  468.165388][T25434]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  468.165414][T25434]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  468.165448][T25434]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  468.165483][T25434]  mmu_topup_memory_caches+0x25/0x170
[  468.165505][T25434]  kvm_mmu_load+0xd6/0x23e0
[  468.165525][T25434]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  468.165549][T25434]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  468.165577][T25434]  ? __pfx_kvm_mmu_load+0x10/0x10
[  468.165596][T25434]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  468.165624][T25434]  ? kvm_check_and_inject_events+0x961/0x10c0
[  468.165645][T25434]  ? record_steal_time+0x3f0/0xbe0
[  468.165673][T25434]  vcpu_run+0x39f4/0x5ca0
[  468.165725][T25434]  ? __pfx_vcpu_run+0x10/0x10
[  468.165756][T25434]  ? rcu_is_watching+0x12/0xc0
[  468.165782][T25434]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  468.165803][T25434]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  468.165832][T25434]  kvm_vcpu_ioctl+0x730/0x1730
[  468.165862][T25434]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  468.165889][T25434]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  468.165917][T25434]  ? do_vfs_ioctl+0x226/0x13e0
[  468.165944][T25434]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  468.165971][T25434]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  468.166005][T25434]  ? __fget_files+0x215/0x3d0
[  468.166023][T25434]  ? hook_file_ioctl_common+0x146/0x410
[  468.166048][T25434]  ? selinux_file_ioctl+0x139/0x290
[  468.166072][T25434]  ? selinux_file_ioctl+0xb4/0x290
[  468.166097][T25434]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  468.166124][T25434]  __x64_sys_ioctl+0x18e/0x210
[  468.166152][T25434]  do_syscall_64+0x106/0xf80
[  468.166175][T25434]  ? clear_bhb_loop+0x40/0x90
[  468.166197][T25434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  468.166218][T25434] RIP: 0033:0x7f03ba99c799
[  468.166234][T25434] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  468.166248][T25434] RSP: 002b:00007f03bb798028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  468.166264][T25434] RAX: ffffffffffffffda RBX: 00007f03bac15fa0 RCX: 00007f03ba99c799
[  468.166276][T25434] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  468.166286][T25434] RBP: 00007f03bb798090 R08: 0000000000000000 R09: 0000000000000000
[  468.166295][T25434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  468.166305][T25434] R13: 00007f03bac16038 R14: 00007f03bac15fa0 R15: 00007ffc9d7853b8
[  468.166328][T25434]  </TASK>
[  468.213405][   T40] audit: type=1400 audit(1774484841.044:1457): avc:  denied  { ioctl } for  pid=25431 comm="syz.0.6987" path="socket:[169630]" dev="sockfs" ino=169630 ioctlcmd=0x662a scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  468.276483][T25445] trusted_key: encrypted_key: insufficient parameters specified
[  468.351999][T25449] netlink: 'syz.0.6993': attribute type 72 has an invalid length.
[  468.451098][   T40] audit: type=1400 audit(1774484841.274:1458): avc:  denied  { getopt } for  pid=25463 comm="syz.0.6999" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  468.468287][T25468] mkiss: ax0: crc mode is auto.
[  468.490970][   T40] audit: type=1400 audit(1774484841.324:1459): avc:  denied  { append } for  pid=25472 comm="syz.0.7003" name="001" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  468.512071][T25470] overlayfs: upper fs does not support tmpfile.
[  468.515090][   T40] audit: type=1400 audit(1774484841.344:1460): avc:  denied  { mounton } for  pid=25469 comm="syz.4.7002" path="/bus" dev="bpf" ino=170388 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=dir permissive=1
[  468.545967][T25477] netlink: 'syz.8.7005': attribute type 72 has an invalid length.
[  468.595409][T25482] FAULT_INJECTION: forcing a failure.
[  468.595409][T25482] name failslab, interval 1, probability 0, space 0, times 0
[  468.599923][T25482] CPU: 2 UID: 0 PID: 25482 Comm: syz.4.7006 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  468.599942][T25482] Tainted: [L]=SOFTLOCKUP
[  468.599946][T25482] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  468.599953][T25482] Call Trace:
[  468.599957][T25482]  <TASK>
[  468.599962][T25482]  dump_stack_lvl+0x100/0x190
[  468.599985][T25482]  should_fail_ex.cold+0x5/0xa
[  468.600000][T25482]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  468.600013][T25482]  should_failslab+0xc2/0x120
[  468.600026][T25482]  __kmalloc_noprof+0xe0/0x850
[  468.600045][T25482]  genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  468.600060][T25482]  genl_family_rcv_msg_doit+0xc7/0x300
[  468.600072][T25482]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  468.600088][T25482]  ? bpf_lsm_capable+0x9/0x10
[  468.600100][T25482]  ? security_capable+0x80/0x260
[  468.600116][T25482]  genl_rcv_msg+0x560/0x800
[  468.600129][T25482]  ? __pfx_genl_rcv_msg+0x10/0x10
[  468.600140][T25482]  ? __pfx_nfc_genl_dev_up+0x10/0x10
[  468.600160][T25482]  ? __lock_acquire+0x4a5/0x2630
[  468.600174][T25482]  netlink_rcv_skb+0x159/0x420
[  468.600191][T25482]  ? __pfx_genl_rcv_msg+0x10/0x10
[  468.600203][T25482]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  468.600225][T25482]  ? netlink_deliver_tap+0x1ae/0xcc0
[  468.600243][T25482]  genl_rcv+0x28/0x40
[  468.600260][T25482]  netlink_unicast+0x5aa/0x870
[  468.600279][T25482]  ? __pfx_netlink_unicast+0x10/0x10
[  468.600301][T25482]  netlink_sendmsg+0x8b0/0xda0
[  468.600320][T25482]  ? __pfx_netlink_sendmsg+0x10/0x10
[  468.600336][T25482]  ? __might_fault+0x20/0x140
[  468.600357][T25482]  ____sys_sendmsg+0x9e1/0xb70
[  468.600374][T25482]  ? __pfx_netlink_sendmsg+0x10/0x10
[  468.600392][T25482]  ? __pfx_____sys_sendmsg+0x10/0x10
[  468.600417][T25482]  ___sys_sendmsg+0x190/0x1e0
[  468.600429][T25482]  ? __pfx____sys_sendmsg+0x10/0x10
[  468.600457][T25482]  __sys_sendmsg+0x170/0x220
[  468.600472][T25482]  ? __pfx___sys_sendmsg+0x10/0x10
[  468.600496][T25482]  do_syscall_64+0x106/0xf80
[  468.600511][T25482]  ? clear_bhb_loop+0x40/0x90
[  468.600525][T25482]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  468.600536][T25482] RIP: 0033:0x7f03ba99c799
[  468.600547][T25482] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  468.600558][T25482] RSP: 002b:00007f03bb798028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  468.600569][T25482] RAX: ffffffffffffffda RBX: 00007f03bac15fa0 RCX: 00007f03ba99c799
[  468.600576][T25482] RDX: 0000000004008054 RSI: 0000200000000200 RDI: 0000000000000005
[  468.600583][T25482] RBP: 00007f03bb798090 R08: 0000000000000000 R09: 0000000000000000
[  468.600590][T25482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  468.600596][T25482] R13: 00007f03bac16038 R14: 00007f03bac15fa0 R15: 00007ffc9d7853b8
[  468.600610][T25482]  </TASK>
[  468.649938][   T40] audit: type=1400 audit(1774484841.484:1461): avc:  denied  { map } for  pid=25479 comm="syz.2.7008" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=748 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  468.752476][T25503] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7014'.
[  468.851537][T25510] netlink: 16178 bytes leftover after parsing attributes in process `syz.8.7015'.
[  468.932633][T25514] binder_alloc: 25513: binder_alloc_buf, no vma
[  468.965082][T25516] netlink: 'syz.2.7020': attribute type 10 has an invalid length.
[  468.969330][T25516] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7020'.
[  468.972689][T25516] batadv0: entered promiscuous mode
[  468.974384][T25516] batadv0: entered allmulticast mode
[  468.976791][T25516] bridge0: port 3(batadv0) entered blocking state
[  468.979034][T25516] bridge0: port 3(batadv0) entered disabled state
[  469.057669][   T13] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  469.060964][   T13] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  469.398652][T25523] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  469.403489][T25523] openvswitch: netlink: EtherType 50a is less than min 600
[  469.407074][T25523] bad cache= option: nonw
[  469.407074][T25523] 
[  469.410380][T25523] CIFS: VFS: bad cache= option: nonw
[  469.575535][T25532] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7027'.
[  469.737245][   T40] audit: type=1400 audit(1774484842.564:1462): avc:  denied  { setattr } for  pid=25538 comm="syz.0.7029" name="NETLINK" dev="sockfs" ino=169726 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  469.770350][T25549] Illegal XDP return value 2408952145 on prog  (id 141) dev N/A, expect packet loss!
[  469.923754][T25560] kvm: kvm [25559]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x9d00
[  469.927298][T25560] kvm: kvm [25559]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x9d00
[  470.155553][   T40] audit: type=1400 audit(1774484842.984:1463): avc:  denied  { map } for  pid=25573 comm="syz.0.7041" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  470.167390][   T34] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  470.262934][T25580] netlink: 180 bytes leftover after parsing attributes in process `syz.8.7044'.
[  470.317262][   T34] usb 7-1: Using ep0 maxpacket: 32
[  470.321063][   T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  470.324554][   T34] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  470.329625][   T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  470.335496][   T34] usb 7-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  470.337077][T25584] netlink: 32 bytes leftover after parsing attributes in process `syz.8.7046'.
[  470.339339][   T34] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  470.345157][   T34] usb 7-1: Product: syz
[  470.346972][   T34] usb 7-1: Manufacturer: syz
[  470.352974][   T34] usb 7-1: SerialNumber: syz
[  470.361627][   T34] usb 7-1: config 0 descriptor??
[  470.374617][   T34] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input68
[  470.383281][    C3] xpad 7-1:0.0: xpad_irq_in - usb_submit_urb failed with result -1
[  470.390845][    C3] xpad 7-1:0.0: xpad_irq_in - usb_submit_urb failed with result -1
[  470.468057][   T40] audit: type=1400 audit(1774484843.304:1464): avc:  denied  { getopt } for  pid=25594 comm="syz.8.7050" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  470.575398][T22207] usb 7-1: USB disconnect, device number 40
[  470.575499][    C3] xpad 7-1:0.0: xpad_irq_out - usb_submit_urb failed with result -19
[  470.772056][T25619] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7062'.
[  470.858893][T25623] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7063'.
[  470.877442][T13454] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  470.936357][T25634] netlink: 100 bytes leftover after parsing attributes in process `syz.8.7067'.
[  471.039577][T13454] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  471.043774][T13454] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  471.047871][T13454] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  471.052882][T13454] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  471.056619][T13454] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.073368][T13454] usb 5-1: config 0 descriptor??
[  471.211807][T25661] i2c i2c-1: DVB: adapter 0 frontend 0 frequency 13 out of range (51000000..2150000000)
[  471.316347][T25674] netlink: 24 bytes leftover after parsing attributes in process `syz.8.7084'.
[  471.349928][T25674] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=25674 comm=syz.8.7084
[  471.384350][T25679] netlink: 'syz.2.7087': attribute type 6 has an invalid length.
[  471.388897][T25679] netlink: 'syz.2.7087': attribute type 5 has an invalid length.
[  471.400286][T25679] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65024 sclass=netlink_route_socket pid=25679 comm=syz.2.7087
[  471.400318][T25681] erspan1: entered promiscuous mode
[  471.406347][T25681] erspan1: entered allmulticast mode
[  471.481547][T13454] plantronics 0003:047F:FFFF.000B: reserved main item tag 0xd
[  471.485378][T25689] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  471.493292][T13454] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  471.565404][T25697] xt_hashlimit: size too large, truncated to 1048576
[  471.743376][   T40] audit: type=1400 audit(1774484844.574:1465): avc:  denied  { read } for  pid=25606 comm="syz.0.7055" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  471.801354][   T34] usb 5-1: USB disconnect, device number 23
[  472.067384][T22214] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  472.095288][T16407] udevd[16407]: inotify_add_watch(7, /dev/pmem0p13, 10) failed: No such file or directory
[  472.133123][T25705] xt_hashlimit: size too large, truncated to 1048576
[  472.291751][T25727] FAULT_INJECTION: forcing a failure.
[  472.291751][T25727] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  472.296009][T25727] CPU: 2 UID: 0 PID: 25727 Comm: syz.4.7105 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  472.296027][T25727] Tainted: [L]=SOFTLOCKUP
[  472.296031][T25727] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  472.296038][T25727] Call Trace:
[  472.296042][T25727]  <TASK>
[  472.296047][T25727]  dump_stack_lvl+0x100/0x190
[  472.296070][T25727]  should_fail_ex.cold+0x5/0xa
[  472.296086][T25727]  _copy_from_user+0x2e/0xd0
[  472.296099][T25727]  blkpg_do_ioctl+0xe1/0x430
[  472.296114][T25727]  ? __pfx_blkpg_do_ioctl+0x10/0x10
[  472.296129][T25727]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  472.296150][T25727]  ? __might_fault+0xc5/0x140
[  472.296166][T25727]  ? __might_fault+0xc5/0x140
[  472.296185][T25727]  blkdev_ioctl+0x3e5/0x6f0
[  472.296199][T25727]  ? __pfx_blkdev_ioctl+0x10/0x10
[  472.296213][T25727]  ? selinux_file_ioctl+0x139/0x290
[  472.296229][T25727]  ? selinux_file_ioctl+0xb4/0x290
[  472.296246][T25727]  ? __pfx_blkdev_ioctl+0x10/0x10
[  472.296260][T25727]  __x64_sys_ioctl+0x18e/0x210
[  472.296279][T25727]  do_syscall_64+0x106/0xf80
[  472.296295][T25727]  ? clear_bhb_loop+0x40/0x90
[  472.296309][T25727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.296321][T25727] RIP: 0033:0x7f03ba99c799
[  472.296331][T25727] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  472.296342][T25727] RSP: 002b:00007f03bb798028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  472.296354][T25727] RAX: ffffffffffffffda RBX: 00007f03bac15fa0 RCX: 00007f03ba99c799
[  472.296361][T25727] RDX: 00002000000001c0 RSI: 0000000000001269 RDI: 0000000000000003
[  472.296367][T25727] RBP: 00007f03bb798090 R08: 0000000000000000 R09: 0000000000000000
[  472.296374][T25727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  472.296380][T25727] R13: 00007f03bac16038 R14: 00007f03bac15fa0 R15: 00007ffc9d7853b8
[  472.296394][T25727]  </TASK>
[  472.383149][T25731] netlink: 'syz.0.7106': attribute type 1 has an invalid length.
[  472.429989][T25731] bond1: entered promiscuous mode
[  472.431742][T25731] 8021q: adding VLAN 0 to HW filter on device bond1
[  472.452756][T25731] afs: Unknown parameter 'flocúùÿÿenafs'
[  472.472552][T25740] xt_hashlimit: size too large, truncated to 1048576
[  472.550444][T25731] /dev/sr0: Can't open blockdev
[  472.568346][T25747] xt_hashlimit: size too large, truncated to 1048576
[  472.593220][T25752] input: syz1 as /devices/virtual/input/input70
[  473.073482][T25784] Mount JFS Failure: -22
[  473.125782][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  473.125794][   T40] audit: type=1400 audit(1774484845.954:1467): avc:  denied  { append } for  pid=25787 comm="syz.0.7126" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  473.149083][T25789] Mount JFS Failure: -22
[  473.407687][T25793] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  473.495484][T25811] netlink: 'syz.0.7133': attribute type 1 has an invalid length.
[  473.513086][T25811] 8021q: adding VLAN 0 to HW filter on device bond2
[  473.519717][ T5290] Bluetooth: hci3: SCO packet for unknown connection handle 1069
[  473.521466][   T40] audit: type=1400 audit(1774484846.354:1468): avc:  denied  { map } for  pid=25804 comm="syz.4.7131" path="/dev/video7" dev="devtmpfs" ino=974 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  473.521605][T25815] No memory to map
[  473.567748][   T40] audit: type=1400 audit(1774484846.404:1469): avc:  denied  { lock } for  pid=25818 comm="syz.0.7136" path="socket:[172317]" dev="sockfs" ino=172317 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  473.569433][T25819] syz_tun: entered allmulticast mode
[  473.604070][T25818] syz_tun: left allmulticast mode
[  473.789953][T25842] __nla_validate_parse: 7 callbacks suppressed
[  473.789966][T25842] netlink: 12 bytes leftover after parsing attributes in process `syz.8.7146'.
[  474.281731][ T5290] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  474.282690][T25850] CUSE: info not properly terminated
[  476.748272][T25835] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  476.814035][T25862] Invalid ELF header magic: != ELF
[  476.817232][   T40] audit: type=1400 audit(1774484849.644:1470): avc:  denied  { module_load } for  pid=25861 comm="syz.8.7151" path="/329/bus" dev="tmpfs" ino=1762 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  476.826734][   T40] audit: type=1400 audit(1774484849.654:1471): avc:  denied  { name_bind } for  pid=25861 comm="syz.8.7151" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=rawip_socket permissive=1
[  476.895431][T25878] xt_hashlimit: size too large, truncated to 1048576
[  477.004092][ T5290] Bluetooth: hci0: Received unexpected HCI Event 0x00
[  477.006965][T25895] CUSE: info not properly terminated
[  477.347346][T22214] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  477.507841][T22214] usb 5-1: Using ep0 maxpacket: 32
[  477.512216][T22214] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  477.516875][T22214] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  477.521520][T22214] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  477.529094][T22214] usb 5-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  477.532902][T22214] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  477.536386][T22214] usb 5-1: Product: syz
[  477.539531][T22214] usb 5-1: Manufacturer: syz
[  477.541485][T22214] usb 5-1: SerialNumber: syz
[  477.546636][T22214] usb 5-1: config 0 descriptor??
[  477.554724][T22214] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input72
[  477.561997][    C0] xpad 5-1:0.0: xpad_irq_in - usb_submit_urb failed with result -1
[  477.584445][T25910] netlink: 12 bytes leftover after parsing attributes in process `syz.8.7167'.
[  477.753539][T25903] random: crng reseeded on system resumption
[  477.756749][   T40] audit: type=1400 audit(1774484850.584:1472): avc:  denied  { read write } for  pid=25902 comm="syz.0.7164" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  477.768913][   T40] audit: type=1400 audit(1774484850.584:1473): avc:  denied  { ioctl open } for  pid=25902 comm="syz.0.7164" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  477.782235][T25903] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  477.783947][T25920] CUSE: info not properly terminated
[  477.793271][T22214] usb 5-1: USB disconnect, device number 24
[  477.793327][    C0] xpad 5-1:0.0: xpad_irq_out - usb_submit_urb failed with result -19
[  477.835826][T25924] netlink: 100 bytes leftover after parsing attributes in process `syz.2.7173'.
[  477.836493][T25922] xt_hashlimit: size too large, truncated to 1048576
[  478.111617][T25939] syz_tun: entered allmulticast mode
[  478.115397][T25938] syz_tun: left allmulticast mode
[  478.177304][T13454] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  478.330177][ T5290] Bluetooth: hci0: Received unexpected HCI Event 0x00
[  478.330762][T25954] CUSE: info not properly terminated
[  478.347411][T13454] usb 7-1: Using ep0 maxpacket: 32
[  478.352513][T13454] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  478.366922][T13454] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  478.376366][T13454] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  478.386537][T13454] usb 7-1: Product: syz
[  478.388856][T13454] usb 7-1: Manufacturer: syz
[  478.390823][T13454] usb 7-1: SerialNumber: syz
[  478.395360][T13454] usb 7-1: config 0 descriptor??
[  478.398775][T25933] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  478.402064][T13454] hub 7-1:0.0: bad descriptor, ignoring hub
[  478.403901][T13454] hub 7-1:0.0: probe with driver hub failed with error -5
[  478.408389][T25960] FAULT_INJECTION: forcing a failure.
[  478.408389][T25960] name failslab, interval 1, probability 0, space 0, times 0
[  478.412943][T25960] CPU: 2 UID: 0 PID: 25960 Comm: syz.0.7188 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  478.412961][T25960] Tainted: [L]=SOFTLOCKUP
[  478.412965][T25960] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  478.412972][T25960] Call Trace:
[  478.412976][T25960]  <TASK>
[  478.412980][T25960]  dump_stack_lvl+0x100/0x190
[  478.413003][T25960]  should_fail_ex.cold+0x5/0xa
[  478.413018][T25960]  should_failslab+0xc2/0x120
[  478.413030][T25960]  __kmalloc_cache_noprof+0x7a/0x6f0
[  478.413045][T25960]  ? drm_atomic_state_alloc+0xb8/0x120
[  478.413058][T25960]  ? kfree+0x1f6/0x6b0
[  478.413070][T25960]  ? tomoyo_path_number_perm+0x46d/0x580
[  478.413085][T25960]  ? security_file_ioctl+0xd3/0x230
[  478.413102][T25960]  drm_atomic_state_alloc+0xb8/0x120
[  478.413115][T25960]  drm_mode_atomic_ioctl+0x395/0x2680
[  478.413131][T25960]  ? avc_has_extended_perms+0x33a/0x1080
[  478.413146][T25960]  ? avc_has_extended_perms+0x484/0x1080
[  478.413159][T25960]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  478.413173][T25960]  ? __lock_acquire+0x4a5/0x2630
[  478.413191][T25960]  ? drm_is_current_master+0x2c/0x40
[  478.413205][T25960]  ? drm_is_current_master+0x2c/0x40
[  478.413219][T25960]  ? do_raw_spin_unlock+0x145/0x1e0
[  478.413234][T25960]  drm_ioctl_kernel+0x1f3/0x3e0
[  478.413245][T25960]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  478.413260][T25960]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  478.413276][T25960]  drm_ioctl+0x5e6/0xc60
[  478.413289][T25960]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  478.413303][T25960]  ? __pfx_drm_ioctl+0x10/0x10
[  478.413320][T25960]  ? selinux_file_ioctl+0x139/0x290
[  478.413336][T25960]  ? selinux_file_ioctl+0xb4/0x290
[  478.413352][T25960]  ? __pfx_drm_ioctl+0x10/0x10
[  478.413365][T25960]  __x64_sys_ioctl+0x18e/0x210
[  478.413383][T25960]  do_syscall_64+0x106/0xf80
[  478.413399][T25960]  ? clear_bhb_loop+0x40/0x90
[  478.413413][T25960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  478.413425][T25960] RIP: 0033:0x7feb0e79c799
[  478.413435][T25960] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  478.413446][T25960] RSP: 002b:00007feb0f626028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  478.413457][T25960] RAX: ffffffffffffffda RBX: 00007feb0ea15fa0 RCX: 00007feb0e79c799
[  478.413464][T25960] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 000000000000000e
[  478.413471][T25960] RBP: 00007feb0f626090 R08: 0000000000000000 R09: 0000000000000000
[  478.413478][T25960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  478.413484][T25960] R13: 00007feb0ea16038 R14: 00007feb0ea15fa0 R15: 00007ffcf802cc08
[  478.413498][T25960]  </TASK>
[  478.477416][ T6001] usb 9-1: new full-speed USB device number 5 using dummy_hcd
[  478.664070][T25976] netlink: 40 bytes leftover after parsing attributes in process `syz.8.7193'.
[  478.669972][ T6001] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  478.673017][ T6001] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  478.677784][T25976] netlink: 'syz.8.7193': attribute type 1 has an invalid length.
[  478.687952][ T6001] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  478.690820][ T6001] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  478.919572][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  478.922978][T25989] netdevsim netdevsim8 ªªªªªª: renamed from netdevsim0 (while UP)
[  478.926343][ T6001] usb 9-1: usb_control_msg returned -32
[  478.928310][ T6001] usbtmc 9-1:16.0: can't read capabilities
[  478.973220][T25991] netlink: 'syz.8.7199': attribute type 1 has an invalid length.
[  478.995274][T25991] bond3: (slave geneve2): making interface the new active one
[  478.998094][T25991] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  479.001058][   T12] netdevsim netdevsim8 ªªªªªª: set [1, 1] type 2 family 0 port 20004 - 0
[  479.003834][   T12] netdevsim netdevsim8 netdevsim1: set [1, 1] type 2 family 0 port 20004 - 0
[  479.007588][   T12] netdevsim netdevsim8 netdevsim2: set [1, 1] type 2 family 0 port 20004 - 0
[  479.016945][   T12] netdevsim netdevsim8 netdevsim3: set [1, 1] type 2 family 0 port 20004 - 0
[  479.049914][T25994] netlink: 'syz.8.7200': attribute type 1 has an invalid length.
[  479.468888][ T5948] usb 7-1: USB disconnect, device number 41
[  479.554810][T26020] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  479.554810][T26020] The task syz.8.7202 (26020) triggered the difference, watch for misbehavior.
[  480.360891][T26022] netlink: 252 bytes leftover after parsing attributes in process `syz.8.7203'.
[  481.042176][T26039] sp0: Synchronizing with TNC
[  481.229087][   T39] usb 9-1: USB disconnect, device number 5
[  481.276012][T26047] xt_hashlimit: size too large, truncated to 1048576
[  481.356829][T26057] PKCS7: Unknown OID: [4] 0.38.35.36.951720.33.17
[  481.366786][T26057] PKCS7: Only support pkcs7_signedData type
[  481.405318][T26063] netlink: 'syz.2.7216': attribute type 3 has an invalid length.
[  481.503810][T26069] Bluetooth: hci5: Frame reassembly failed (-84)
[  481.510028][T26069] bridge0: port 3(ipvlan2) entered blocking state
[  481.512217][T26069] bridge0: port 3(ipvlan2) entered disabled state
[  481.514411][T26069] ipvlan2: entered allmulticast mode
[  481.516153][T26069] bridge0: entered allmulticast mode
[  481.519081][T26069] ipvlan2: left allmulticast mode
[  481.520763][T26069] bridge0: left allmulticast mode
[  481.957246][   T40] audit: type=1400 audit(1774484854.784:1474): avc:  denied  { execute } for  pid=26082 comm="syz.0.7225" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  482.087945][T26090] netlink: 'syz.0.7226': attribute type 1 has an invalid length.
[  482.103704][T26090] 8021q: adding VLAN 0 to HW filter on device bond3
[  482.111681][T26090] vlan2: entered allmulticast mode
[  482.113316][T26090] veth0_to_bond: entered allmulticast mode
[  482.242831][T26100] Bluetooth: hci0: unsupported parameter 255
[  482.244942][T26100] Bluetooth: hci0: unsupported parameter 255
[  482.283038][   T40] audit: type=1400 audit(1774484855.114:1475): avc:  denied  { map } for  pid=26101 comm="syz.0.7232" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  482.330452][   T40] audit: type=1400 audit(1774484855.164:1476): avc:  denied  { ioctl } for  pid=26101 comm="syz.0.7232" path="/dev/nullb0" dev="devtmpfs" ino=707 ioctlcmd=0x5632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  482.387457][    C2] vcan0: j1939_tp_rxtimer: 0xffff88803b981400: rx timeout, send abort
[  482.400357][   T40] audit: type=1400 audit(1774484855.234:1477): avc:  denied  { read } for  pid=5321 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  482.407391][   T40] audit: type=1400 audit(1774484855.234:1478): avc:  denied  { search } for  pid=5321 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  482.414064][   T40] audit: type=1400 audit(1774484855.234:1479): avc:  denied  { append } for  pid=5321 comm="syslogd" name="messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  482.421170][   T40] audit: type=1400 audit(1774484855.234:1480): avc:  denied  { open } for  pid=5321 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  482.428375][   T40] audit: type=1400 audit(1774484855.234:1481): avc:  denied  { getattr } for  pid=5321 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  482.701142][T26113] FAULT_INJECTION: forcing a failure.
[  482.701142][T26113] name failslab, interval 1, probability 0, space 0, times 0
[  482.705087][T26113] CPU: 2 UID: 0 PID: 26113 Comm: syz.2.7235 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  482.705107][T26113] Tainted: [L]=SOFTLOCKUP
[  482.705111][T26113] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  482.705118][T26113] Call Trace:
[  482.705122][T26113]  <TASK>
[  482.705127][T26113]  dump_stack_lvl+0x100/0x190
[  482.705150][T26113]  should_fail_ex.cold+0x5/0xa
[  482.705166][T26113]  ? tomoyo_realpath_from_path+0xb6/0x690
[  482.705183][T26113]  should_failslab+0xc2/0x120
[  482.705195][T26113]  __kmalloc_noprof+0xe0/0x850
[  482.705215][T26113]  tomoyo_realpath_from_path+0xb6/0x690
[  482.705249][T26113]  tomoyo_path_number_perm+0x23c/0x580
[  482.705263][T26113]  ? tomoyo_path_number_perm+0x22e/0x580
[  482.705278][T26113]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  482.705307][T26113]  ? find_held_lock+0x2b/0x80
[  482.705322][T26113]  ? __fget_files+0x215/0x3d0
[  482.705333][T26113]  ? hook_file_ioctl_common+0x146/0x410
[  482.705347][T26113]  ? __fget_files+0x21f/0x3d0
[  482.705361][T26113]  security_file_ioctl+0xd3/0x230
[  482.705378][T26113]  __x64_sys_ioctl+0xb7/0x210
[  482.705397][T26113]  do_syscall_64+0x106/0xf80
[  482.705413][T26113]  ? clear_bhb_loop+0x40/0x90
[  482.705426][T26113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.705438][T26113] RIP: 0033:0x7fe03ad9c799
[  482.705448][T26113] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  482.705459][T26113] RSP: 002b:00007fe03bbc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  482.705470][T26113] RAX: ffffffffffffffda RBX: 00007fe03b015fa0 RCX: 00007fe03ad9c799
[  482.705480][T26113] RDX: 0000200000000040 RSI: 00000000c02c640e RDI: 0000000000000004
[  482.705486][T26113] RBP: 00007fe03bbc7090 R08: 0000000000000000 R09: 0000000000000000
[  482.705493][T26113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  482.705499][T26113] R13: 00007fe03b016038 R14: 00007fe03b015fa0 R15: 00007fff376fac78
[  482.705513][T26113]  </TASK>
[  482.705594][T26113] ERROR: Out of memory at tomoyo_realpath_from_path.
[  482.810645][   T40] audit: type=1400 audit(1774484855.644:1482): avc:  denied  { accept } for  pid=26114 comm="syz.2.7236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  482.817018][   T40] audit: type=1400 audit(1774484855.644:1483): avc:  denied  { read } for  pid=26114 comm="syz.2.7236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  482.887393][    C2] vcan0: j1939_tp_rxtimer: 0xffff88803b982800: rx timeout, send abort
[  482.891310][    C2] vcan0: j1939_tp_rxtimer: 0xffff88803b981400: abort rx timeout. Force session deactivation
[  482.909661][    C0] vcan0: j1939_xtp_rx_rts_session_active: 0xffff88803b982800: connection exists (fe ff). last cmd: 20
[  483.022412][T17488] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  483.025771][T17488] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.029023][T17488] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  483.104602][T17488] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  483.107928][T17488] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.111071][T17488] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  483.159630][    C2] vcan0: j1939_tp_rxtimer: 0xffff88802749a000: rx timeout, send abort
[  483.162119][ T5938] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  483.165777][ T5938] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  483.173396][ T5938] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  483.176879][ T5938] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  483.179831][ T5938] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  483.192274][T17488] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  483.196370][T17488] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.201074][T17488] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  483.267899][T17488] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  483.271273][T17488] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.275095][T17488] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  483.396244][T26130] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7243'.
[  483.407889][T26121] chnl_net:caif_netlink_parms(): no params data found
[  483.465710][T26121] bridge0: port 1(bridge_slave_0) entered blocking state
[  483.470063][T26121] bridge0: port 1(bridge_slave_0) entered disabled state
[  483.472376][T26121] bridge_slave_0: entered allmulticast mode
[  483.475049][T26121] bridge_slave_0: entered promiscuous mode
[  483.479256][T26137] Bluetooth: hci0: invalid length 0, exp 2 for type 14
[  483.479707][T26121] bridge0: port 2(bridge_slave_1) entered blocking state
[  483.487030][T26121] bridge0: port 2(bridge_slave_1) entered disabled state
[  483.489689][T26121] bridge_slave_1: entered allmulticast mode
[  483.496450][T26121] bridge_slave_1: entered promiscuous mode
[  483.527360][ T5290] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  483.547958][T26121] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  483.553108][T26121] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  483.617631][T17488] bridge0: port 3(batadv0) entered disabled state
[  483.620467][ T5938] Bluetooth: hci0: Received unexpected HCI Event 0x00
[  483.620965][T26143] CUSE: info not properly terminated
[  483.625040][T17488] bridge_slave_1: left allmulticast mode
[  483.626866][T17488] bridge_slave_1: left promiscuous mode
[  483.630108][T17488] bridge0: port 2(bridge_slave_1) entered disabled state
[  483.633747][T17488] bridge_slave_0: left allmulticast mode
[  483.635517][T17488] bridge_slave_0: left promiscuous mode
[  483.637470][T17488] bridge0: port 1(bridge_slave_0) entered disabled state
[  483.662266][    C2] vcan0: j1939_tp_rxtimer: 0xffff88802749a000: abort rx timeout. Force session deactivation
[  483.700882][T17488] bond4 (unregistering): (slave ip6gretap1): Releasing active interface
[  483.755725][T17488] bond2 (unregistering): (slave geneve2): Releasing active interface
[  483.990988][T17488] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  483.995204][T17488] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  484.002289][T17488] bond0 (unregistering): Released all slaves
[  484.007612][T17488] bond1 (unregistering): Released all slaves
[  484.015286][T17488] bond2 (unregistering): Released all slaves
[  484.022543][T17488] bond3 (unregistering): Released all slaves
[  484.030178][T17488] bond4 (unregistering): Released all slaves
[  484.037852][T26121] team0: Port device team_slave_0 added
[  484.041099][T26121] team0: Port device team_slave_1 added
[  484.063853][T26155] bond5: entered promiscuous mode
[  484.097174][T26121] batman_adv: batadv0: Adding interface: batadv_slave_0
[  484.100076][T26121] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  484.127319][T26121] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  484.153823][T26121] batman_adv: batadv0: Adding interface: batadv_slave_1
[  484.156927][T26121] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  484.189742][T26121] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  484.191500][T26164] Bluetooth: hci0: invalid length 0, exp 2 for type 14
[  484.252256][T26121] hsr_slave_0: entered promiscuous mode
[  484.255615][T26121] hsr_slave_1: entered promiscuous mode
[  484.260319][T26121] debugfs: 'hsr0' already exists in 'hsr'
[  484.262557][T26121] Cannot create hsr debugfs directory
[  484.400607][ T5938] Bluetooth: hci0: Malformed Event: 0x02
[  484.457805][T26121] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.554679][T26121] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.692663][T26121] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.712362][T26202] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7264'.
[  484.816351][T26121] netdevsim netdevsim3 netdevsim0 (unregistering): left promiscuous mode
[  484.822118][T26121] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  484.866209][T26208] block nbd0: shutting down sockets
[  484.932805][T17488] hsr_slave_0: left promiscuous mode
[  484.947099][T17488] hsr_slave_1: left promiscuous mode
[  484.968389][T17488] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  484.970670][T17488] batman_adv: batadv0: Removing interface: batadv_slave_0
[  484.973478][T17488] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  484.975868][T17488] batman_adv: batadv0: Removing interface: batadv_slave_1
[  484.982347][T17488] veth1_macvtap: left promiscuous mode
[  484.984216][T17488] veth0_macvtap: left allmulticast mode
[  484.986113][T17488] veth0_macvtap: left promiscuous mode
[  484.988504][T17488] veth1_vlan: left promiscuous mode
[  484.990354][T17488] veth0_vlan: left promiscuous mode
[  485.101044][T26219] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  485.103790][T26219] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  485.109286][T26219] vhci_hcd vhci_hcd.0: Device attached
[  485.114803][T17488] team0 (unregistering): Port device team_slave_1 removed
[  485.116408][T26218] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(7)
[  485.119773][T26218] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  485.124836][T26218] vhci_hcd vhci_hcd.0: Device attached
[  485.125193][T17488] team0 (unregistering): Port device team_slave_0 removed
[  485.250713][T26121] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  485.261295][T26121] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  485.279886][T26121] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  485.287835][ T5938] Bluetooth: hci2: command tx timeout
[  485.289998][T26121] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  485.347849][ T5986] usb 37-1: new low-speed USB device number 3 using vhci_hcd
[  485.415762][T26121] 8021q: adding VLAN 0 to HW filter on device bond0
[  485.428660][T26121] 8021q: adding VLAN 0 to HW filter on device team0
[  485.449787][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  485.452587][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  485.459339][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  485.462228][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  485.531259][T17488] IPVS: stop unused estimator thread 0...
[  485.604875][T26121] 8021q: adding VLAN 0 to HW filter on device batadv0
[  485.643776][T26121] veth0_vlan: entered promiscuous mode
[  485.650089][T26121] veth1_vlan: entered promiscuous mode
[  485.664851][T26121] veth0_macvtap: entered promiscuous mode
[  485.670871][T26121] veth1_macvtap: entered promiscuous mode
[  485.683281][T26121] batman_adv: batadv0: Interface activated: batadv_slave_0
[  485.695528][T26121] batman_adv: batadv0: Interface activated: batadv_slave_1
[  485.701559][  T279] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  485.704356][  T279] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  485.718689][  T279] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  485.725813][  T279] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  485.766334][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  485.769297][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  485.785816][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  485.792228][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  485.797340][T22214] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  485.838556][T26220] vhci_hcd: connection reset by peer
[  485.840617][   T13] vhci_hcd vhci_hcd.0: stop threads
[  485.842325][   T13] vhci_hcd vhci_hcd.0: release socket
[  485.844111][   T13] vhci_hcd vhci_hcd.0: disconnect device
[  485.844391][T26222] vhci_hcd: connection closed
[  485.847873][   T13] vhci_hcd vhci_hcd.0: stop threads
[  485.851046][   T13] vhci_hcd vhci_hcd.0: release socket
[  485.852932][   T13] vhci_hcd vhci_hcd.0: disconnect device
[  485.928029][T26269] ------------[ cut here ]------------
[  485.930131][T26269] kernel BUG at fs/netfs/iterator.c:248!
[  485.932046][T26269] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[  485.935181][T26269] CPU: 0 UID: 0 PID: 26269 Comm: syz.3.7280 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  485.939628][T26269] Tainted: [L]=SOFTLOCKUP
[  485.941017][T26269] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  485.944303][T26269] RIP: 0010:netfs_limit_iter+0x100d/0x1100
[  485.946291][T26269] Code: ff e9 a4 f4 ff ff 48 89 de 48 c7 c7 e0 c5 ab 8e e8 58 07 74 fe e9 59 f6 ff ff e8 2e e5 b1 ff e9 6f f6 ff ff e8 64 56 45 ff 90 <0f> 0b e8 8c e4 b1 ff e9 cd f9 ff ff 4c 89 f6 48 c7 c7 60 c6 ab 8e
[  485.952515][T26269] RSP: 0018:ffffc900038ded18 EFLAGS: 00010293
[  485.954446][T26269] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff82c37bab
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  485.957009][T26269] RDX: ffff888029bcc980 RSI: ffffffff82c38adc RDI: ffff888029bcc980
[  485.960092][T26269] RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000005
[  485.962956][T26269] R10: 0000000000000003 R11: 0000000000000000 R12: 000000007fffffff
[  485.965634][T26269] R13: 1ffff9200071bda9 R14: ffff8880382806a0 R15: ffff8880586bd680
[  485.968110][T26269] FS:  0000000000000000(0000) GS:ffff8880d633f000(0000) knlGS:0000000000000000
[  485.971122][T26269] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  485.973393][T26269] CR2: 00007fca2dc15fac CR3: 0000000028541000 CR4: 0000000000352ef0
[  485.975849][T26269] DR0: 0000000000000000 DR1: 00000000000022f7 DR2: 0000000000000000
[  485.978384][T26269] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  485.980860][T26269] Call Trace:
[  485.981926][T26269]  <TASK>
[  485.982926][T26269]  ? do_raw_spin_lock+0x128/0x260
[  485.984514][T26269]  ? find_held_lock+0x2b/0x80
[  485.986048][T26269]  ? __pfx_netfs_limit_iter+0x10/0x10
[  485.987734][T26269]  ? do_raw_spin_unlock+0x145/0x1e0
[  485.989395][T26269]  ? _raw_spin_unlock+0x28/0x50
[  485.990950][T26269]  ? netfs_prepare_write+0x486/0x7a0
[  485.992656][T26269]  netfs_unbuffered_write+0x25d/0x2080
[  485.994397][T26269]  netfs_unbuffered_write_iter_locked+0x801/0xab0
[  485.996442][T26269]  netfs_unbuffered_write_iter+0x40c/0x710
[  485.998304][T26269]  ? __pfx_v9fs_file_write_iter+0x10/0x10
[  486.000082][T26269]  v9fs_file_write_iter+0xbf/0x100
[  486.001676][T26269]  __kernel_write_iter+0x2ac/0x920
[  486.003303][T26269]  ? __pfx___kernel_write_iter+0x10/0x10
[  486.005098][T26269]  ? kasan_save_stack+0x3f/0x50
[  486.006696][T26269]  ? kasan_save_stack+0x30/0x50
[  486.008261][T26269]  ? irqentry_exit+0x1f8/0x670
[  486.009805][T26269]  ? asm_exc_page_fault+0x26/0x30
[  486.011405][T26269]  __kernel_write+0xf6/0x140
[  486.012874][T26269]  ? __pfx___kernel_write+0x10/0x10
[  486.014540][T26269]  dump_emit+0x21f/0x330
[  486.015943][T26269]  ? __pfx_dump_emit+0x10/0x10
[  486.017466][T26269]  elf_core_dump+0x2127/0x3d10
[  486.019021][T26269]  ? __pfx_elf_core_dump+0x10/0x10
[  486.020649][T26269]  ? kasan_save_stack+0x3f/0x50
[  486.022409][T26269]  ? kasan_save_stack+0x30/0x50
[  486.024096][T26269]  ? __kasan_kmalloc+0xaa/0xb0
[  486.025639][T26269]  ? __kvmalloc_node_noprof+0x360/0xa00
[  486.027414][T26269]  ? vfs_coredump+0x2105/0x5570
[  486.028966][T26269]  ? asm_exc_page_fault+0x26/0x30
[  486.030579][T26269]  ? vfs_coredump+0x27bc/0x5570
[  486.032127][T26269]  vfs_coredump+0x27bc/0x5570
[  486.033635][T26269]  ? __pfx_vfs_coredump+0x10/0x10
[  486.035237][T26269]  ? __lock_acquire+0x4a5/0x2630
[  486.036842][T26269]  ? lock_acquire+0x1cf/0x380
[  486.038324][T26269]  ? is_bpf_text_address+0x8a/0x1a0
[  486.039918][T26269]  ? bpf_ksym_find+0x128/0x1c0
[  486.041499][T26269]  ? __kernel_text_address+0xd/0x30
[  486.043439][T26269]  ? unwind_get_return_address+0x59/0xa0
[  486.045637][T26269]  ? arch_stack_walk+0xa6/0xf0
[  486.047222][T26269]  ? __sigqueue_free+0xbe/0x2a0
[  486.048803][T26269]  ? stack_trace_save+0x8e/0xc0
[  486.050373][T26269]  ? __pfx_stack_trace_save+0x10/0x10
[  486.052102][T26269]  ? stack_depot_save_flags+0x27/0x9d0
[  486.053844][T26269]  ? __lock_acquire+0x4a5/0x2630
[  486.055440][T26269]  ? proc_coredump_connector+0x2d3/0x4f0
[  486.057406][T26269]  ? __pfx_proc_coredump_connector+0x10/0x10
[  486.059354][T26269]  ? rcu_is_watching+0x12/0xc0
[  486.060901][T26269]  get_signal+0x1f2a/0x21e0
[  486.062400][T26269]  ? __pfx_get_signal+0x10/0x10
[  486.063984][T26269]  arch_do_signal_or_restart+0x91/0x7a0
[  486.065774][T26269]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  486.067767][T26269]  ? do_user_addr_fault+0x8d6/0x12f0
[  486.069476][T26269]  irqentry_exit+0x1f8/0x670
[  486.070984][T26269]  asm_exc_page_fault+0x26/0x30
[  486.072551][T26269] RIP: 0033:0x0
[  486.073723][T26269] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  486.076442][T26269] RSP: 002b:0000200000000408 EFLAGS: 00010217
[  486.078857][T26269] RAX: 0000000000000000 RBX: 00007fca2dc15fa0 RCX: 00007fca2d99c799
[  486.082012][T26269] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000081080000
[  486.084844][T26269] RBP: 00007fca2da32c99 R08: 0000000000000000 R09: 0000000000000000
[  486.087404][T26269] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  486.089944][T26269] R13: 00007fca2dc16038 R14: 00007fca2dc15fa0 R15: 00007ffd019b2cb8
[  486.092458][T26269]  </TASK>
[  486.093477][T26269] Modules linked in:
[  486.095605][T26269] ---[ end trace 0000000000000000 ]---
[  486.108272][T22214] usb 9-1: Using ep0 maxpacket: 32
[  486.140345][T26269] RIP: 0010:netfs_limit_iter+0x100d/0x1100
[  486.142318][T26269] Code: ff e9 a4 f4 ff ff 48 89 de 48 c7 c7 e0 c5 ab 8e e8 58 07 74 fe e9 59 f6 ff ff e8 2e e5 b1 ff e9 6f f6 ff ff e8 64 56 45 ff 90 <0f> 0b e8 8c e4 b1 ff e9 cd f9 ff ff 4c 89 f6 48 c7 c7 60 c6 ab 8e
[  486.148402][T26269] RSP: 0018:ffffc900038ded18 EFLAGS: 00010293
[  486.150567][T26269] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff82c37bab
[  486.153482][T26269] RDX: ffff888029bcc980 RSI: ffffffff82c38adc RDI: ffff888029bcc980
[  486.156169][T26269] RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000005
[  486.163614][T26269] R10: 0000000000000003 R11: 0000000000000000 R12: 000000007fffffff
[  486.166824][T26269] R13: 1ffff9200071bda9 R14: ffff8880382806a0 R15: ffff8880586bd680
[  486.172448][T26269] FS:  0000000000000000(0000) GS:ffff8880d663f000(0000) knlGS:0000000000000000
[  486.175358][T26269] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  486.177958][T26269] CR2: 000055555c4c29b8 CR3: 0000000028541000 CR4: 0000000000352ef0
[  486.180488][T26269] Kernel panic - not syncing: Fatal exception
[  486.187678][T26269] Kernel Offset: disabled
[  486.189085][T26269] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:23:22  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff857a46b5 RDI=ffffffff9b4a6b40 RBP=ffffffff9b4a6b00 RSP=ffffc900038de678
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6e69203a73706f4f
R12=0000000000000000 R13=0000000000000020 R14=0000000000000010 R15=ffffffff857a4650
RIP=ffffffff857a46df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d633f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fca2dc15fac CR3=0000000028541000 CR4=00352ef0
DR0=0000000000000000 DR1=00000000000022f7 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000010001 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 203a6b6361747320 6461657268747020
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd019b31a6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd019b31a6 00007ffd019b31ac
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fca2da3327c
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fca2da332bc
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fca2da33420
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fca2da332ae
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 657a6973203c2065 7a69736565726600 632e6b6361747365 7461636f6c6c6100
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 405f4c5605190540 5f4c564040574300 460b4e4644515640 5144464a49494400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fca2dbec5f8 00007fca2dbec5c8 00007fca2dbec600 00007fca2dbec5e0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000009 0000000000000000 0000000000000000 00000000000002ec
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff8b0c1c0d RDX=ffff888034a6a4c0
RSI=ffffffff8b0c2665 RDI=ffffc900006a0d20 RBP=000000000000004c RSP=ffffc900006a0778
R8 =0000000000000005 R9 =0000000000000001 R10=0000000000000001 R11=0000000000000001
R12=ffff88803c8c8d50 R13=dffffc0000000000 R14=ffff88805970d900 R15=ffff888057d24e00
RIP=ffffffff8b0ab326 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055555c4af500 ffffffff 00c00000
GS =0000 ffff8880d643f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00002000000005c0 CR3=000000004ff3a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00737570635f6576 697463656666652e
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000053bfd4 RBX=ffff88801eea4980 RCX=ffffffff8b909c75 RDX=0000000000000001
RSI=ffffffff8c1b11a0 RDI=ffffffff81dea654 RBP=0000000000000000 RSP=ffffc90000187df0
R8 =0000000000000000 R9 =ffffed100d4c679d R10=ffff88806a633ceb R11=0000000000000002
R12=0000000000000002 R13=ffffed1003dd4930 R14=0000000000000002 R15=ffffffff90d9ae10
RIP=ffffffff8b9085df RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d653f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f18873729e0 CR3=0000000037c05000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6576697372756365 725f64656772656d
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc9d7858a6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc9d7858a6 00007ffc9d7858ac
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f03baa3327c
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f03baa332bc
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f03baa33420
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f03baa332ae
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6379656b00657461 69746e6174736e69 246c746379656b00 7974697275636573
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffff88806a740fc0 RCX=0000000000000000 RDX=0000000000000005
RSI=ffffffff8c1b11a0 RDI=ffff88806a741015 RBP=ffff88807ffd7b80 RSP=ffffc90006b3f950
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000003 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=ffffea0000abe500 R15=0000000000000001
RIP=ffffffff826665ca RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055557db4f500 ffffffff 00c00000
GS =0000 ffff8880d663f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f18873e92f8 CR3=000000004191e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 737570635f657669 7463656666652e74
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc4e13f976
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc4e13f976 00007ffc4e13f97c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f188723327c
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f18872332bc
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1887233420
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f18872332ae
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6379656b00657461 69746e6174736e69 246c746379656b00 7974697275636573
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000038
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000038
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000