last executing test programs:

57.712419489s ago: executing program 3 (id=914):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000c00)=ANY=[@ANYBLOB="b40000000200000066000000000090ff730135000000000095000000000000004bb5eea0a6ec9fcd4b0a008a8443f22702000000e63bde9e4a0587536a966992ae7011d6e6c03175717e9912e0dd1a59541f7cbb1548ee5bd627f5b0b8ec77bd6d5f7b543f9aafaabe53339b12fbbe7decc4aa61b8aad0359083bdd61543fbeee8d560bb4b5925fae801f4c91e31674b124a1b38000000bc4da4a9b3d5cc9e0000f6a7a729009973ff07000000000000ac79e5d84abbec7d96629490727375b853f6308a980fba61fbe0131f3c7a026d8f000008000000000000000b20d7ac2df89d7989bf53bec908213d396edf24e9fc3cc004a1097fddc65c1b1b328277ff85ed56b9261eb7bcee28ec2d3616689ab3f31f849eebce6f21e6302003c0467844e000000000db0700bd694a09b253a1c6c7c138b3ec6ee9b83edcc55d3403acd5c50e2740a7ab7069790da79b7ab45184caffff00009bab066bf7a4ab148d44c7e2e4d219cdd7ebeb51511d9df85a648b1b85f93cb6cd21f93d5ea3da2b31657c065d052d9b9ee00320def97ebac25b929b3c15e33be6e7d54e622b427ee8d181d2f18d772fb5c58a936620ba1f5fbb48703ab211f442697edc165b449db2e3c221fbf270a6db414516949b97c200000096a1cbe81a38a23f03bd741a3e60c2e294f828e06f1b2cb70328f151f949e369efed52a28b87aae9d7d2800c8eff7f93c05adc9086d3f143a7b87d06838c6525cafdc01820a8912a131ff1f6acb9439f2d95a746291641b38333ce1c84b0d9d033edc9da00c8a2b42e8adfeff69fce7a35f79748e3e5b235269310988a05bf7c4e4cef3d1aa550c83d6328eb000000044a6458c31431d58973c93f5e9452258a7098bc3d014afe638a40948498fa9561213bc20845526e054d6b3ba5ca8f357df67c41acc28edacb31d38994544c3511ea1e8a448e66039425cfb03efb5d5eb81a306746adb8809ef969187763c00085e2dc401325327e54cbfceb400c2663466cd4a79c94b62c9882626499a8a29c564464f2a7aee6a929f831c93d23005787d272b5eaf0c6e11a7f0f1f39f68df44f6bf2d9b51d99c89e327b4bf7b96ad33abbd3a8b5814b5e7f85d1a47ee604ccef20bda53c9ce06910568fc200eee12fc6ef2734a6e9af5132f0c507e277fd97f9b48c840697289d38e454467f4d2f94b2f76d06edd083dafefd76deb251b5818de9c27d0df6e7b8862fe42f6c453f551f35b6d76395a1d205f276ae628fbdb8081905a1d7c2805532d3387b88f2997e8ce41c5dca83659cfb7f3a1c7b2bec8a7575dc4241dde6c680ee9a27b197739f4ad86f3bad3e42d4954bef864586ad02c27858d63efc495bcfb6ed49a5ca8987b0f2a8b14054e30f30fedf536d63769a196fc3b472195d0a1a13ecf803136d751cefb0edb5794cab8681214b39f86d88f3aebea4d465ef05f975b09f264d6c8d8e3bb6ea7d21c6602bcc8f76f2546cccc074f55c22aa8b502968040000000000000047c8a50036dd268a1aeff951f5090492b5e941feb1d3785aafe1655876e5a36c40fb5afcfd1eb28952662782097836a4d1aa3de0c06bb7dc27cf1a546b6aa6ce9932f3c6a013bc3791da4d8a33680ba8f1334d75a43e991ebd4582d786ec05cdd3152d52ab15fc7595cbd339f730d2ec8e37e6c500c4c30280a6af986f62a22d9c5c275e7798c165545abfcd304243274db15924a136a0896d56576ed7de90b1bda90f4024b9a0b3b33f688db8e38f784ae3942aba874f95d10c47e2405ceb0438cc272133fac718a6553710e4ca97df646b21d02652c54eade2e99344e11a2671cf274d397650fba8fcfb7e51a926e37b3980a1732111175dd99b9d979042b3ea411a7b4f9081ae9b82974d5eb6fd4e4bcd95e4f897dfba4e44777e6d02a896b650a66d9139696b926c36a33eb3bdc092bf4586bfab34002f802bbfe6a7679cec20cc25e01f129bbe92a65961fac7bffa3d8feda2ac927743d2bce57ee39b671948576337535180aa754e035421cf1709bc1b5e46c35515fb1fcda637a6405e9b216d2ca09795c5d2f27665da5b17bcf0f387e6dd58202a3a1148e46e55ac7ea027eb3022eee4a000ca543ab566921e5db4f741a762e5705f942855a9fa30b912045f78ab1e3fdeada84bc8ac36cc1223901e56f6ecbabbc3263098c9c47a1f505a8299b5715a455e834ddddc430f387cafa07bf915522f9a42e34eea5169b796320e892d27924045bcf56135684ca96ada82749371d5766c0d0cae8772f140eef001ca39dc28aef8a5236393fce29b0531cbd3265c209761ed41a2e473fbd84ca9b67e3ceb58a4b774ee127628faba8702c0a73f8311d269429aaadf74c439404fc9f864e69807dfe257c0c4a26c60bfa77f89bae2bd4c498a10d4e17dddb1f7539bfeb392e22e7b93d0ecf66cd253a4062bbc8a437f8924ee7a89ab73dd7c11be13707482c369f02d7b6f242599f95dbfcb55bea158665231f8fe04ed2a8c407fed1a8702e2486386f2ae6347231128be789186ff5651208c80781f85d3fb51bd28b939a8bc88a471c36fa17fd04c3fbdbd3f7bf144b1466014a77c582aa0380e612cd101d557dd1e5b7bae3da3ea2659f66a3641eaa3b008b9788a63c8f7009f9149fd9c740eddd300000000000000000000e620e3657ac82a5bd27dfa4f2add31a402346571e87b2644edb73d4affdcbbe2b8e2539b44554c10dc0ac8ba67ab9901c8e9564b4c26a87cf59b11978a86d4938ca4db01a9d8426aed32eb0d0d1dd894bbf3197f3b5744b5a4f813fd7330"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000002c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x47)

57.712098679s ago: executing program 3 (id=915):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
mkdir(&(0x7f0000000100)='./control\x00', 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = getpgrp(0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x4, r1, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
listen(r2, 0x7)
connect$phonet_pipe(r2, &(0x7f0000002200)={0x23, 0x0, 0x0, 0x1d}, 0x10)
r3 = userfaultfd(0x1)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r4, 0x10e, 0x2, &(0x7f00000001c0)=0x1, 0x4)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
r5 = syz_open_dev$sndpcmp(&(0x7f0000000140), 0x94, 0x4001)
r6 = openat$ttynull(0xffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000240)=0xf)
ioctl$SNDRV_PCM_IOCTL_DRAIN(r5, 0x4144, 0x0)
modify_ldt$write2(0x11, &(0x7f0000000080)={0x5, 0x20000000, 0xffffffffffffffff, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r3, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005ec000/0x3000)=nil, 0x400000, 0x2, 0x2})
rmdir(&(0x7f0000000040)='./control\x00')

57.632596415s ago: executing program 3 (id=916):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_vhci(&(0x7f0000000180)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_ecred_reconf_req={{0x19, 0x80, 0x4}, {0x401, 0x200}}}}, 0x11)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TESTMODE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f00000004c0)={0x3b4, r1, 0x100, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xfffffffc, 0x5b}}}}, [@NL80211_ATTR_TESTDATA={0xe7, 0x45, "a1cbda92317377c06b3c2a5adef2d04822321f7b915786ff4ee6c3d2f124370aab5f3b29a45248bd3b665827ccdec08e5fb096831f9598e8ae815c363f4576c392ec890f39584dfc9441420518ec8bb49d36becece430aba4e277dd70b4fb72e08521d1722a84af1ea5c079bfaf30fb6d31464a336e3c926afd2ba017d8803bc2512dfad147a5a79ddc70f3f46483cf2de752ef02a2c668218983c86841ddc32b3ee2e46e8a81e0927478150f2d39e3de2c6f951bf40ebb76337cd46215067c7832247fff7d60b12e0dcbf8536bb022df67593ca1dba214755afd9419f4c5764095098"}, @NL80211_ATTR_TESTDATA={0x5d, 0x45, "5c1d0aaa3cf2d6d34a8f1b68a6c825e5c744593bf94214a407fa3501529aecb534bb5a42e743b2622f0ed88e251c3bd5f94facde03812c4ae29f1eb45087567d7dc15bd37727f865e4b5f2caa81da3bef07efa2e189db54957"}, @NL80211_ATTR_TESTDATA={0xe6, 0x45, "41ec54c6ba43996dd071d28f5ef233baacb0aa3ad29507702c90ea87f54600a11ca2b6da2ddb9d26dd0c0909068dd25129c16437645201e2a730b69c88b4732ec6ae79cc75a50be25e82fda08487f714ff8445336ee0bb886f230044032663d8c02646aa6bb13151165dff7180d512cad7018af339032f1b97dafd407d78443150f7cd1080865f6a4549f5ea131e720ae407457d0f141172179e3614216c6a28103a2cc1a5d7fa391d9973f29d643e3c080f83400828abb16734d3c9302244421f2322bbbf80c26c343b0ab15ea78d688f67d1e34929006650c6d02a5a59255cf4fe"}, @NL80211_ATTR_TESTDATA={0xe9, 0x45, "7d4b7385a92c79001beffc21625372f717807b3c5bc7f717d00258971d72f096dc5309a54cb4bef45261a0c5bb2c263b38aa030303d6b29ff7d70b882ca2dd29a24c0b7bde7b454f87df75a7fe64e548861935ae5b4f4a0db881e9301524e161923db4d532209c22b022e5b811ec689ecee89137f8d2838b5542895d20fa9458bf2ef2ce870ee0b2ff3dfd51f922df3aa334752219cac7fd26df9d85e649ba0230fb7d3324469ff3030bf84b988342847c25f70a656d9750d1f3468bc64c07f0e8468e614188ee83c14dc0b0de820aae284ce05b9bbb6e66838a607613a7658e776086920a"}, @NL80211_ATTR_TESTDATA={0x6e, 0x45, "440b2648468e7c3b02876aba6d444fec089e4b56f7dbe391eee57ca17a0cce40ea4a52f9fb36161e730c0d65d35d38faa65d54294541a79be4e224ecdcdf155c94916086959ed7890af8e6a173290dbbe3adfedf886a468292281f1188994784e98caece280c426bc0cb"}]}, 0x3b4}}, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
sendmsg$AUDIT_USER(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x10, 0x3ed, 0x200, 0x70bd2b, 0x25dfdbfb}, 0x10}, 0x1, 0x0, 0x0, 0x40000}, 0x800)
r5 = io_uring_setup(0x7d98, &(0x7f00000003c0)={0x0, 0xfdcf, 0x2, 0x2})
r6 = syz_usb_connect(0x5, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100000cb768405e0483020b9901e4020109021b000100000000090400fb015c291d00090509"], 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000080), 0x3, 0x800)
syz_usb_disconnect(r6)
close_range(r5, 0xffffffffffffffff, 0x0)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4e20, @multicast2}, 0x10)
sendmmsg$sock(r3, &(0x7f0000002680)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)=[@mark={{0x10, 0x1, 0x24, 0x3}}], 0x10}}], 0x11, 0x20000000)

49.032579926s ago: executing program 3 (id=937):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket(0x10, 0x803, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r5, @ANYBLOB="00000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE(0xffffffffffffffff, 0x5000940e, &(0x7f00000025c0)={{}, "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"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=ANY=[@ANYBLOB="48000000100039042cbd7000eaffffff000003e4", @ANYRES32=r5, @ANYBLOB="83000400000008002800fb7f0800010073697402f70d7ccc0be6fc2fc9735b3785c3961c000280050009000400000006000d000900000008000300e000000101772264d9dddb7307a95975620c5f692a9f766a064b63f79b98906a5dc567a4"], 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
pread64(0xffffffffffffffff, &(0x7f00000001c0)=""/82, 0x52, 0xbd)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=@newtfilter={0xc4c, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x6db6ec49e3ab5510}, {}, {0x7, 0xb}}, [@filter_kind_options=@f_flow={{0x9}, {0xc1c, 0x2, [@TCA_FLOW_ADDEND={0x8, 0x5, 0x4}, @TCA_FLOW_POLICE={0x41c, 0xa, 0x0, 0x1, [@TCA_POLICE_RESULT={0x8, 0x5, 0x7ff}, @TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x8, 0x7, 0x2, 0x1, 0x722c, 0x9e1, 0x8099, 0x1, 0x0, 0xffff3d76, 0x1, 0x7f, 0x5, 0x5, 0x693b, 0x5, 0x1, 0x6413, 0x5, 0x5, 0x0, 0x0, 0x63f80, 0x5, 0x9, 0x3, 0x24, 0x651a, 0xfffffffb, 0x7, 0x1, 0x400, 0x8, 0x5, 0x100, 0x8, 0x8, 0x5, 0x3c4, 0x3ff, 0x0, 0x8, 0xfffffff7, 0x40, 0x1, 0x2, 0x724a, 0xfffffff8, 0x2, 0x7, 0x7fff, 0x4, 0xd93, 0x64dd, 0xffffffff, 0x400, 0x2, 0xff, 0x2, 0x400, 0xa59, 0x1, 0x5914, 0x7ff, 0xfffeffff, 0x7, 0x1, 0x8, 0x6, 0x1ff, 0x1, 0x8, 0x3, 0x9, 0x354, 0x877, 0xd54, 0x0, 0x0, 0x7, 0x4, 0x5, 0x94cc, 0x3, 0x5, 0xe, 0x5, 0xb92, 0x400, 0x6, 0x4bac, 0x8, 0xfffffd97, 0x7, 0x2, 0xd, 0x6, 0x1, 0x0, 0x1000, 0x1, 0x603b, 0x7, 0x1, 0x50000000, 0x9, 0x9, 0x3, 0x531, 0x7eb7, 0xca, 0x4, 0xffff, 0xffff18df, 0x4, 0x5, 0x7, 0x1ff, 0x7fff, 0x6, 0x1, 0xfffffff9, 0x7fff, 0x1, 0x5, 0x9, 0xa8, 0x0, 0x5, 0x8, 0x1, 0x5, 0x6, 0xeb0, 0x9, 0x7f, 0x6, 0x2, 0x2, 0xaf, 0x7, 0x2, 0x1, 0x7, 0xb1, 0x6, 0x4, 0x40, 0x2, 0x9, 0x31ed17e5, 0x1ac, 0x7, 0xffffff81, 0x7fffffff, 0x0, 0x80000001, 0x6, 0xffff, 0xb, 0x7779, 0x101, 0x9, 0x1, 0x1, 0x0, 0x10000, 0x0, 0x1, 0x6, 0x6, 0x75cc73f1, 0x7, 0x6, 0xc34, 0x1000, 0x9, 0x8, 0x40, 0xe, 0xfffffffd, 0xdf, 0x7ff, 0xc, 0x0, 0x0, 0x2, 0x3, 0x7fffffff, 0x58b, 0x4, 0x4a0, 0x2, 0x9, 0x1000, 0x5, 0x8, 0x1, 0x0, 0x30, 0x4, 0xffff, 0x4ef, 0x3, 0xffffeff9, 0x5, 0x9, 0x7, 0x0, 0x8, 0x7, 0x3, 0x3, 0x4, 0x8, 0x6, 0x4, 0x401, 0x4, 0x401, 0x3, 0x1, 0x9, 0x5, 0x5, 0x8000, 0x7, 0x5, 0xfff, 0x1ff, 0x0, 0x1ff, 0x9, 0x613199d2, 0x86, 0x744, 0x7, 0x2, 0x0, 0x2, 0x101, 0xdb05, 0x5, 0x2, 0xff, 0x7ff, 0x1, 0x10, 0x100, 0x7, 0x1ff, 0x2, 0xef, 0x3, 0x6]}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x100000001}]}, @TCA_FLOW_POLICE={0x408, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x5, 0x3, 0x7, 0x5a, 0x4, 0x5, 0xbacd, 0xfffffff8, 0xffffffff, 0x4, 0x9, 0x2, 0x8da, 0x400, 0xffffffff, 0xee2, 0x5, 0xfb50, 0x3, 0x6, 0x1, 0x7, 0x81, 0x80000001, 0x8, 0x1, 0x9, 0x8, 0x1, 0x7ff, 0x3, 0x6, 0x1, 0x716e, 0x1000, 0x37, 0x3, 0xa9, 0x101, 0x1, 0x4, 0x9, 0x352, 0x8, 0x100, 0xa2, 0x3, 0xc1, 0x2, 0x2, 0x7, 0x8, 0x0, 0x10001, 0x4, 0x5, 0x7, 0xa5, 0x4, 0x8, 0x6, 0x10, 0x31, 0x3, 0xffff, 0xd864, 0x243a25e3, 0x8, 0x3, 0xf7de, 0x7, 0x6, 0xe97, 0xfffff000, 0x1, 0xff, 0x5, 0x4, 0x9, 0xff, 0x6, 0x0, 0x7f, 0xfffffff9, 0xfffffff8, 0x8, 0x6, 0xffffff1d, 0x8, 0x3, 0xf0b, 0x0, 0x1, 0xf, 0x5, 0x1, 0x2, 0x7f, 0x400, 0x2, 0x8, 0x7fff, 0x6, 0x8, 0x9, 0x1, 0x8, 0xfffffff4, 0x4, 0x80, 0xa5, 0x7f, 0x6, 0x53, 0x2, 0x6, 0x5, 0x5, 0x2, 0xfffffff8, 0x7, 0x0, 0x3, 0x3, 0xfffffffb, 0x1, 0x9, 0x6, 0xb69f, 0x39b, 0xfffffbff, 0x5, 0x3, 0xc87, 0xc0000000, 0x8, 0x9, 0x6d, 0x3ff, 0x0, 0x5, 0x80000000, 0x4, 0x1d7, 0x3, 0x0, 0x401, 0x6, 0x1, 0x17bc, 0x4, 0x8, 0x86c, 0xc608, 0x7, 0xf28, 0x5, 0x4, 0x9, 0x3416, 0x6, 0xfffff50d, 0x3, 0x0, 0x0, 0x800, 0x0, 0x5, 0x80000, 0x4, 0xf, 0xa, 0x7, 0x1, 0xfffff001, 0x7f, 0x8, 0xbc2, 0x8, 0x47a, 0x1, 0xf2, 0xffff7fff, 0x9, 0x7, 0x0, 0xfffffffc, 0x3, 0xd, 0x0, 0x1, 0x800, 0x0, 0xffffb691, 0x4, 0x2, 0x0, 0x6, 0x4, 0x8, 0xfffffff4, 0x19, 0x1, 0x0, 0x101, 0x3, 0xdf, 0x6, 0x1, 0x4, 0x8c, 0x8, 0x7, 0x9836, 0x80000000, 0x5, 0xffff, 0x5, 0x0, 0xfffffffd, 0x2, 0x2, 0x2, 0x8001, 0xfffffff9, 0x9a, 0x4, 0xd, 0x4, 0x10, 0x9, 0x5, 0x8, 0x0, 0x10001, 0x3, 0x32, 0x1, 0x0, 0x0, 0x74b0, 0xb364, 0x80000001, 0x5, 0x9a8, 0x3f, 0x695, 0x8, 0x5, 0x4, 0xffff, 0x8, 0x82, 0xbd81, 0xa0]}]}, @TCA_FLOW_RSHIFT={0x8, 0x4, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x14a91}, @TCA_FLOW_XOR={0x8, 0x7, 0x1}, @TCA_FLOW_EMATCHES={0x3d4, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x64, 0x2, 0x0, 0x1, [@TCF_EM_META={0x44, 0x3, 0x0, 0x0, {{0xfffc, 0x4, 0x81}, [@TCA_EM_META_RVALUE={0x2b, 0x3, [@TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_VAR="600393ef1d28", @TCF_META_TYPE_VAR="92", @TCF_META_TYPE_INT=0x7, @TCF_META_TYPE_VAR="ea47d4bd8f1f15c6b0", @TCF_META_TYPE_VAR="78b0c5b9596a241447", @TCF_META_TYPE_VAR="0f71"]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x40a, 0xff, 0x2}, {0x1, 0x0, 0x1}}}]}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x1ff, 0x3, 0x3}, {0x9, 0x1, 0x1, 0x100}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0xec, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x2, 0x0, 0x0, {{0x45d1, 0x2, 0x9}, {0x6, 0x1, 0x1, "df"}}}, @TCF_EM_CONTAINER={0xc4, 0x1, 0x0, 0x0, {{0x0, 0x0, 0xff}, "88d13c886160ab2fcfd5052f489447bc7fa9adb5d191a5d6df1febe5c04f8bbabf9758d013e6d34816833b20d557102296385fe8ca101951ebb86cde575ee8d3689f505f0b09211839955a6007462451cea39aad172a7ab01e0395785d334e8d7cb2cfd99a74941e852b2be915af35db8b6d8ecab2a007e9ded68eb69a84457671940f0d27295b431eb32ff56ea755b0ce413512e02f652f6259556fac804e613ad65f3858cc3a0de2cef3b877dc21de895bf19d06ae"}}, @TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x101, 0x8, 0x4}, {0x4, 0x3}}}]}, @TCA_EMATCH_TREE_LIST={0x9c, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x1c, 0x3, 0x0, 0x0, {{0x42, 0x2, 0xd}, {0x5, 0xa, 0x0, "57fbd375c5ac57d566b0"}}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0xfff8, 0x8, 0x101}, {0x4, 0x3, 0x4}}}, @TCF_EM_META={0x58, 0x2, 0x0, 0x0, {{0x2, 0x4, 0x13d}, [@TCA_EM_META_LVALUE={0x29, 0x2, [@TCF_META_TYPE_VAR="f75e02f1aafe", @TCF_META_TYPE_INT=0x7, @TCF_META_TYPE_INT=0x7, @TCF_META_TYPE_INT, @TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="d9eb9c1992c2f0"]}, @TCA_EM_META_RVALUE={0x14, 0x3, [@TCF_META_TYPE_VAR="fd6d6068e7c26c", @TCF_META_TYPE_VAR="e0", @TCF_META_TYPE_INT=0x8, @TCF_META_TYPE_INT=0xa]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x3e, 0x3, 0x2}, {0x8fb4, 0x9, 0x2}}}]}}, @TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x81, 0x7, 0x4}, {{0x1}, {0x4}}}}]}, @TCA_EMATCH_TREE_LIST={0x1cc, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0x78, 0x1, 0x0, 0x0, {{0x1, 0x0, 0xfff}, "fd3e46a19fffbf9c757f29942927bd110cac60e782c539d28093f3c6c7ddb69b3a98391ee62e7d898c61fde346d95e95c530addb19e796bc6cb3ed74685c8d783cc3cee2e1e1826f72d71ee9924db790ab884ad3650bf8e4f07d3aed17c582a9c4378d26e0767a7f85"}}, @TCF_EM_U32={0x1c, 0x2, 0x0, 0x0, {{0xfffd, 0x3, 0x8}, {0x2, 0x4, 0x7, 0x7fffffff}}}, @TCF_EM_META={0x18, 0x3, 0x0, 0x0, {{0xfffd, 0x4, 0xe}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x3, 0x3, 0x1}, {0x9, 0xfd, 0x2}}}]}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x0, 0x3, 0xcd}, {0x200, 0x3ff}}}, @TCF_EM_NBYTE={0x14, 0x3, 0x0, 0x0, {{0x9, 0x2, 0x5}, {0x0, 0x4, 0x1, "e68c6803"}}}, @TCF_EM_META={0x7c, 0x1, 0x0, 0x0, {{0x1, 0x4, 0x9}, [@TCA_EM_META_HDR={0xc, 0x1, {{0xa5e2, 0x8, 0x3}, {0x9, 0x3, 0x1}}}, @TCA_EM_META_RVALUE={0x1e, 0x3, [@TCF_META_TYPE_INT=0x8, @TCF_META_TYPE_VAR="fcd9b2e3c3bb59e26809", @TCF_META_TYPE_INT=0x4, @TCF_META_TYPE_INT=0x7, @TCF_META_TYPE_INT=0xa]}, @TCA_EM_META_RVALUE={0x13, 0x3, [@TCF_META_TYPE_VAR="23ca4e0ef7a7b60a2d65", @TCF_META_TYPE_VAR="da", @TCF_META_TYPE_INT=0x7]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x4, 0x9}, {0x8, 0x6, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x10, 0x7, 0x2}, {0x3, 0x6, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x7, 0xe, 0x2}, {0x4, 0x7, 0x1}}}, @TCA_EM_META_HDR={0xc, 0x1, {{0x3, 0x5a, 0x9348480d1d93a5b3}, {0x1, 0x93}}}]}}, @TCF_EM_IPT={0x1c, 0x1, 0x0, 0x0, {{0x2, 0x9, 0x7}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x3}, @TCA_EM_IPT_NFPROTO={0x5}]}}, @TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x5, 0x8, 0x800}, {0x1, 0x5, 0x2}}}, @TCF_EM_META={0x44, 0x2, 0x0, 0x0, {{0x9, 0x4, 0xddf2}, [@TCA_EM_META_LVALUE={0x7, 0x2, [@TCF_META_TYPE_VAR="2debcd"]}, @TCA_EM_META_RVALUE={0x18, 0x3, [@TCF_META_TYPE_INT=0x8, @TCF_META_TYPE_INT=0x9, @TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_VAR="ea07dd280431edfd"]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x3, 0x0, 0x1}, {0x8, 0xf, 0x2}}}, @TCA_EM_META_LVALUE={0xa, 0x2, [@TCF_META_TYPE_VAR="87d0", @TCF_META_TYPE_INT=0xa]}]}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}]}]}}]}, 0xc4c}}, 0x400c084)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, r7, {0xa, 0xfff3}, {0x0, 0xfff1}, {0xffe0}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000094}, 0x4041080)
r8 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x81600)
read(r8, 0x0, 0x0)
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
r9 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000300), 0x7dd7c1, 0x0)
r10 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r10, 0xc0285700, &(0x7f0000000100)={0x1, "5660359c3245d1c42317afad7d48ed51000000000000000100"})
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r9, 0xc0285700, &(0x7f0000000000)={0x5, "340b7832ceefd131b8e6498c25f58fad9987ffe93bbabd18cf501922de974a27"})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r11 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r11, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)

48.133565748s ago: executing program 3 (id=938):
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000000203850000a26939d60000000000000f0800010001"], 0x1c}}, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r1, 0x107, 0xa, 0x0, &(0x7f0000000040))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
r4 = dup(r3)
ioctl$USBDEVFS_CONTROL(r4, 0xc0185500, &(0x7f0000000240)={0x23, 0x6, 0x7, 0x1, 0x0, 0x40, 0x0})
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYRES16=r4, @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32, @ANYBLOB='\x00'/14], 0x48)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@getchain={0x24, 0x11, 0x20, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, r6, {0xa}, {0x0, 0x5}, {0x9, 0xa}}}, 0x24}}, 0x0)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000280), r0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f0000000580)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, r8, 0x10, 0x70bd26, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x200008c1}, 0x4005)
openat$vcs(0xffffff9c, &(0x7f0000000100), 0x80, 0x0)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x6, 0x0)
io_submit(0x0, 0x2, &(0x7f0000000380)=[&(0x7f0000000000)={0x180a, 0x0, 0x3, 0x1, 0x0, r9, 0x0, 0x0, 0x2}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x101, r9, 0x0, 0x0, 0x8000000000000000}])
r10 = syz_open_dev$dri(&(0x7f0000000080), 0x8004, 0x0)
r11 = socket$inet6_sctp(0xa, 0x1, 0x84)
listen(r11, 0x100)
shutdown(r11, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r10, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000440)=[<r12=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r10, 0xc05064a7, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffea5, 0x0, 0x0, r12})

47.962810065s ago: executing program 3 (id=940):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000030000000400010005"], 0x50)
r1 = syz_open_dev$vim2m(&(0x7f0000000080), 0xbfb, 0x2)
r2 = dup2(r1, r1)
ioctl$vim2m_VIDIOC_S_CTRL(r2, 0xc008561c, &(0x7f00000000c0)={0x980903, 0x6e})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_N2(r3, 0x103, 0x3, 0x0, &(0x7f0000001bc0))
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
mkdir(&(0x7f0000000580)='./bus\x00', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x40, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x400, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff1e, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x1}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x24008000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=<r8=>0x0, &(0x7f0000000200)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r7, 0x47f6, 0x71e, 0x0, 0x0, 0x0)

47.939591014s ago: executing program 32 (id=940):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000030000000400010005"], 0x50)
r1 = syz_open_dev$vim2m(&(0x7f0000000080), 0xbfb, 0x2)
r2 = dup2(r1, r1)
ioctl$vim2m_VIDIOC_S_CTRL(r2, 0xc008561c, &(0x7f00000000c0)={0x980903, 0x6e})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_N2(r3, 0x103, 0x3, 0x0, &(0x7f0000001bc0))
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
mkdir(&(0x7f0000000580)='./bus\x00', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x40, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x400, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff1e, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x1}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x24008000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=<r8=>0x0, &(0x7f0000000200)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r7, 0x47f6, 0x71e, 0x0, 0x0, 0x0)

28.352155644s ago: executing program 1 (id=1112):
r0 = socket$l2tp(0x2, 0x2, 0x73)
connect$l2tp(r0, &(0x7f0000000000)={0x2, 0x0, @private=0xa010100, 0x3}, 0x10)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x9, 0xd2, 0x8, 0xff})
fsetxattr$security_capability(r0, &(0x7f0000000080), &(0x7f00000000c0)=@v2={0x2000000, [{0x4}, {0x0, 0x8}]}, 0x14, 0x0)
r1 = creat(&(0x7f0000000100)='./file0\x00', 0x2)
setsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000140)={0x0, 0x40, 0xd, 0x4}, 0x8)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r1)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x30, r2, 0xf03, 0x70bd29, 0x25dfdbff, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x880}, 0x40000)
r3 = getpid()
sendto$l2tp(r0, &(0x7f00000002c0)="ebf716676b4ccc4e2982b0d296ec0913ae819459cac5c7b2d1a397cd427d732d4e04ca7e5afbb75931c02af4ab1b5027626529383c5a261dad02f55d6bf1a248bb6caa7de00b90658807acec18d4630b98766d20578a3566ed63491d7ad59867faefd2866f32632a1b7c16244764b760645b53fc8bf27f97e6ce78f8aad2c50834b6acd9b4fd773dca90ad162451c3dd5cd0e42fac9d8809978860945a2612c43e1e646b6332fad5af3d845b75c7d69972638110b7d4", 0xb6, 0x4004000, 0x0, 0x0)
r4 = creat(&(0x7f0000000380)='./file0\x00', 0x0)
setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f00000003c0)=0xd69, 0x4)
mount$nfs(&(0x7f0000000400)='&(\xef@[-\x00', &(0x7f0000000440)='./file0\x00', &(0x7f0000000480), 0x4, &(0x7f00000004c0)={[{'$#'}, {'security.capability\x00'}], [{@subj_user={'subj_user', 0x3d, '#)+'}}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r5=>r0, {0x1}}, './file0\x00'})
getsockopt$EBT_SO_GET_INFO(r5, 0x0, 0x80, &(0x7f0000000540)={'nat\x00', 0x0, 0x0, 0x0, [0x2, 0x0, 0x91a, 0x32aa1d2a, 0x10000, 0x10]}, &(0x7f00000005c0)=0x50)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000640), r5)
sendmsg$BATADV_CMD_GET_HARDIF(r4, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x3c, r6, 0x1, 0x70bd2d, 0x1, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x3e9}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f00000007c0)={'ip6gre0\x00', &(0x7f0000000740)={'ip6tnl0\x00', <r7=>0x0, 0x4, 0xb, 0x40, 0xff, 0x74, @loopback, @loopback, 0x40, 0x8000, 0xfffffff7, 0x5a2}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f0000000880)={'ip6tnl0\x00', &(0x7f0000000800)={'ip6gre0\x00', <r8=>r7, 0x29, 0x6, 0x40, 0x2, 0x1, @dev={0xfe, 0x80, '\x00', 0xe}, @private0, 0x10, 0x40, 0x0, 0x5}})
r9 = syz_genetlink_get_family_id$smc(&(0x7f0000000900), r1)
sendmsg$SMC_PNETID_ADD(r5, &(0x7f0000000a00)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000009c0)={&(0x7f0000000940)={0x48, r9, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'macvlan0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1_to_team\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x840)
r10 = dup2(r5, r4)
sched_setaffinity(r3, 0x8, &(0x7f0000000a40)=0x6)
epoll_ctl$EPOLL_CTL_ADD(r10, 0x1, r1, &(0x7f0000000a80)={0x2000})
getsockopt$inet6_mreq(r5, 0x29, 0x15, &(0x7f0000000b00)={@private2, <r11=>0x0}, &(0x7f0000000b40)=0x14)
sendmsg$nl_route_sched(r10, &(0x7f0000000f40)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000b80)=@newtaction={0x374, 0x30, 0x4, 0x70bd2c, 0x25dfdbfe, {}, [{0x360, 0x1, [@m_ife={0x134, 0x3, 0x0, 0x0, {{0x8}, {0x10, 0x2, 0x0, 0x1, [@TCA_IFE_DMAC={0xa, 0x3, @multicast}]}, {0x100, 0x6, "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"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1}}}}, @m_mirred={0x1c4, 0x8, 0x0, 0x0, {{0xb}, {0xc4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x8f, 0x3, 0x10000007, 0x0, 0x10000}, 0x1, r7}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x5, 0xca, 0xd}, 0x2, r11}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x10, 0xac6b, 0x6, 0x1, 0x6}, 0x6, r8}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x101, 0xe, 0xffffffffffffffff, 0x3, 0x6}, 0x3, r8}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x7, 0x7ff8, 0x2, 0xd}, 0x1, r7}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xfff, 0x5, 0x3, 0x7}, 0x4, r8}}]}, {0xd6, 0x6, "3d6e0a8d6828ade23c0aa414739348a4bf2cfef304b1d5a87967b04b2955d906b219baac7ba37cd6e0e39133e3772bc6d3f24d83345d9006cf856e21f1be7cfd4e82cca5dde8b8c686fb991c39bcc415c291eb0a95f692013c2744359bb63db231cea84dd7c2e34520f339aeb1a8b8b1c23077bc529ccca9296c81e81c6f55a834a915f6082650ff8e6f82a1612fad44949991367003a8df81bc70610c1455465bf13a10b5ec6dc555d3c36d1eac6e020ca502ac915c4940b1ab0655e88548a1fe52b888cb52d1e939edb4158aa171d107d9"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_sample={0x64, 0x16, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x4}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x10, 0x10, 0x0, 0x4, 0x3}}]}, {0x18, 0x6, "f29bbc217ad25c01d049ec50ac54f77234b34b2b"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}]}, 0x374}, 0x1, 0x0, 0x0, 0x4080}, 0x10)
chroot(&(0x7f0000000f80)='./file0\x00')
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r10, 0x84, 0x1a, &(0x7f0000000fc0)={<r12=>0x0, 0xf4, "4fccabeb6ce9558c9bcfb2babfb9a84ca296451adfc12c296017425276af902957e67c6c3fa7004cabdd3187239d59489c839d8b92b2d3c0611754f40d840bc3c2f8088ee578a937295fa8613c2bdb47aded0e007ca3ace3af40221ddc3ca3f9697f829ae0d189fb5031c71521c602e3ec423fb61bd972c538136c0fcdc05066fbbce70d6a81afbbfe44800aee2b9505cb1defca88fd25dc5f3b3f44a8fe16d7ca45b8a80bddd0a301a3b5be65f4080a13ec9041c5967ee24ed7d609153419581e7b73bd46a1b02ad49eb03e57fc27aedbb5ef5351936dd2e58684a79f51a50293d536759a0f1cdfeed06ae8bf146c0783a553e7"}, &(0x7f00000010c0)=0xfc)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000001100)={r12, @in={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x6, 0xe64}, &(0x7f00000011c0)=0x88)
recvmmsg(0xffffffffffffffff, &(0x7f0000004fc0)=[{{&(0x7f00000012c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000002980)=[{&(0x7f0000001340)=""/231, 0xe7}, {&(0x7f0000001440)=""/243, 0xf3}, {&(0x7f0000001540)=""/148, 0x94}, {&(0x7f0000001600)=""/201, 0xc9}, {&(0x7f0000001700)=""/211, 0xd3}, {&(0x7f0000001800)=""/4096, 0x1000}, {&(0x7f0000002800)=""/122, 0x7a}, {&(0x7f0000002880)=""/11, 0xb}, {&(0x7f00000028c0)=""/62, 0x3e}, {&(0x7f0000002900)=""/93, 0x5d}], 0xa, &(0x7f0000002a00)=""/64, 0x40}, 0x6}, {{&(0x7f0000002a40)=@isdn, 0x80, &(0x7f0000002b40)=[{&(0x7f0000002ac0)=""/86, 0x56}], 0x1}, 0xa1}, {{0x0, 0x0, &(0x7f0000002e00)=[{&(0x7f0000002b80)=""/232, 0xe8}, {&(0x7f0000002c80)=""/12, 0xc}, {&(0x7f0000002cc0)=""/203, 0xcb}, {&(0x7f0000002dc0)=""/59, 0x3b}], 0x4, &(0x7f0000002e40)=""/20, 0x14}, 0x8f}, {{0x0, 0x0, &(0x7f0000004340)=[{&(0x7f0000002e80)=""/231, 0xe7}, {&(0x7f0000002f80)=""/140, 0x8c}, {&(0x7f0000003040)=""/54, 0x36}, {&(0x7f0000003080)=""/84, 0x54}, {&(0x7f0000003100)=""/93, 0x5d}, {&(0x7f0000003180)=""/145, 0x91}, {&(0x7f0000003240)=""/4096, 0x1000}, {&(0x7f0000004240)=""/217, 0xd9}], 0x8, &(0x7f0000004380)=""/5, 0x5}, 0x9}, {{0x0, 0x0, &(0x7f0000004500)=[{&(0x7f00000043c0)=""/163, 0xa3}, {&(0x7f0000004480)=""/103, 0x67}], 0x2, &(0x7f0000004540)=""/102, 0x66}, 0x6}, {{&(0x7f00000045c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000004780)=[{&(0x7f0000004640)=""/56, 0x38}, {&(0x7f0000004680)=""/186, 0xba}, {&(0x7f0000004740)=""/11, 0xb}], 0x3, &(0x7f00000047c0)=""/207, 0xcf}}, {{&(0x7f00000048c0)=@ax25={{0x3, @rose}, [@rose, @null, @remote, @netrom, @rose, @remote, @rose, @null]}, 0x80, &(0x7f0000004e40)=[{&(0x7f0000004940)=""/150, 0x96}, {&(0x7f0000004a00)=""/107, 0x6b}, {&(0x7f0000004a80)=""/130, 0x82}, {&(0x7f0000004b40)=""/29, 0x1d}, {&(0x7f0000004b80)=""/27, 0x1b}, {&(0x7f0000004bc0)=""/6, 0x6}, {&(0x7f0000004c00)=""/206, 0xce}, {&(0x7f0000004d00)=""/5, 0x5}, {&(0x7f0000004d40)=""/41, 0x29}, {&(0x7f0000004d80)=""/133, 0x85}], 0xa, &(0x7f0000004ec0)=""/234, 0xea}, 0x8d}], 0x7, 0x20, 0x0)

28.351866524s ago: executing program 1 (id=1113):
ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="01002bbd7000000000001400000018000180140002006e657464657673696d3000005e6e031605000c000100000005001800000000000800"], 0x44}}, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff020000000a00000000000000000001"], 0x0)

28.304565809s ago: executing program 1 (id=1114):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
syz_open_dev$usbfs(0x0, 0xf, 0x4642c1)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0x3, &(0x7f0000000140)={0x9, 0xa0c}, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f0000000040)={0x0, 0x1, 0x2, 0x1e, 0x200, &(0x7f0000000880)="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"})
ptrace(0x10, 0x0)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, 0x0)

26.360302108s ago: executing program 1 (id=1124):
r0 = openat$vicodec0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0185648, &(0x7f00000000c0)={0xf030000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f905, 0x5, '\x00', @p_u32=0x0}})
r1 = syz_open_dev$vcsn(&(0x7f0000000300), 0x3f0b, 0x117001)
r2 = openat$full(0xffffff9c, &(0x7f00000003c0), 0x123300, 0x0)
move_mount(r1, &(0x7f0000000380)='./file0\x00', r2, &(0x7f0000000400)='./file0\x00', 0x2c4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='sched\x00')
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
syz_open_procfs(r3, &(0x7f0000000240)='net/udp6\x00')
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100), 0x1000, &(0x7f0000000140)=ANY=[@ANYBLOB="7472616e733d66642c7205646e6f3d", @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',version=9p2000.L,ignoreqv,noxattr,nodevmap,mask=^MAY_WRITE,subj_user=/dev/video36\x00,subj_role=,hash,smackfshat=^,rootcontext=staff_u,\x00'])

26.329454068s ago: executing program 1 (id=1126):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = epoll_create1(0x80000)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000140), &(0x7f0000000280)=@ng={0x4, 0x11, "9b7e1ed3"}, 0x6, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
epoll_wait(r1, &(0x7f00000001c0)=[{}], 0x1, 0x4a)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
r8 = openat$dir(0xffffff9c, &(0x7f0000000300)='./file0\x00', 0x10300, 0x4)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000340)={{0x1, 0x1, 0x18, r8, {0x2}}, './file0\x00'})
connect$inet6(r7, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r7, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_TLS_TX(r7, 0x11a, 0x1, &(0x7f0000000040)=@gcm_256={{0x304, 0x36}, "1a88ef816c4b42ed", "a5fdeb69a751e94df50ad7e9fb434d1665e9298b01e49419567b443803cf578f", "6d02cd81", "066580001e00"}, 0x38)
sendto$inet6(r7, &(0x7f0000000840)="f0", 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r6, 0x4138ae84, &(0x7f0000000100)={{0x0, 0xdddd1000, 0x0, 0x2, 0x8, 0x0, 0x0, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0xd000, 0xc, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7, 0x7, 0x0, 0xff}, {0x3000, 0x5000, 0xc, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x3000, 0xd000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0xfe, 0x0, 0x4}, {0xdddd0000, 0x3000, 0x9, 0x0, 0xff, 0x4, 0x6, 0xe, 0x0, 0x3c}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x80}, {0xdddd1000, 0x0, 0xa, 0x6, 0x0, 0x0, 0x3}, {0x0, 0x3000, 0x0, 0x0, 0x1, 0x1, 0x83, 0xa, 0x26, 0x5}, {0x80a0000}, {0xdddd1000, 0xff}, 0xddf8ffdb, 0x0, 0x0, 0x70, 0xfffffffffffffffe, 0xd801, 0x0, [0x0, 0x0, 0x1]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_TRANSLATE(r6, 0xc018ae85, &(0x7f0000000040)={0x6000, 0xdddd0000, 0x5, 0x5, 0x7f})
r9 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
io_setup(0x9, &(0x7f0000000b80)=<r10=>0x0)
io_submit(r10, 0x1, &(0x7f00000002c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r9, 0x0, 0x0, 0x0, 0x0, 0x0, r9}])
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)={0x1b, 0x0, 0x0, 0x5, 0x0, r9, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x3, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
write$binfmt_script(r9, 0x0, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x1)

26.091911475s ago: executing program 1 (id=1130):
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYRES32=r1], 0x24}, 0x1, 0x0, 0x0, 0x4040004}, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1d, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fsopen(&(0x7f00000000c0)='exfat\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20004d13"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket(0x0, 0x3, 0xfa)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x48, &(0x7f0000000240)={0x0, 0x0}, 0x2c)
socket$inet6_udplite(0xa, 0x2, 0x88)
ppoll(&(0x7f0000000d40)=[{r5}], 0x25, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0)
r7 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r7, &(0x7f0000014980)=[{{&(0x7f0000000140)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{&(0x7f0000001c00)='{', 0x1}], 0x1}}, {{&(0x7f00000000c0)={0x2, 0x0, @rand_addr=0x64010101}, 0x10, &(0x7f0000010700)=[{&(0x7f0000010140)="9b", 0x1}], 0x1}}], 0x2, 0x0)

26.05181631s ago: executing program 33 (id=1130):
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYRES32=r1], 0x24}, 0x1, 0x0, 0x0, 0x4040004}, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1d, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fsopen(&(0x7f00000000c0)='exfat\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20004d13"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket(0x0, 0x3, 0xfa)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x48, &(0x7f0000000240)={0x0, 0x0}, 0x2c)
socket$inet6_udplite(0xa, 0x2, 0x88)
ppoll(&(0x7f0000000d40)=[{r5}], 0x25, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0)
r7 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r7, &(0x7f0000014980)=[{{&(0x7f0000000140)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{&(0x7f0000001c00)='{', 0x1}], 0x1}}, {{&(0x7f00000000c0)={0x2, 0x0, @rand_addr=0x64010101}, 0x10, &(0x7f0000010700)=[{&(0x7f0000010140)="9b", 0x1}], 0x1}}], 0x2, 0x0)

19.879032515s ago: executing program 4 (id=1178):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001a000100000000000000000002000000000000000000000005001b00060000"], 0x3c}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x6d8a, &(0x7f0000000300)={0x0, 0x37ac, 0x10100, 0x0, 0xf7fffffc, 0x0, r2}, &(0x7f0000000180)=<r4=>0x0, &(0x7f0000000880)=<r5=>0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r1})
io_uring_enter(r3, 0x2def, 0x4000, 0x0, 0x0, 0x0)
r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000200)=@generic={0x0, 0x0, 0x10}, 0x14)
r7 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read$hidraw(r7, 0x0, 0xc)
ioctl$KVM_GET_CLOCK(r7, 0x8030ae7c, &(0x7f0000000240))
userfaultfd(0x80801)
openat$uhid(0xffffff9c, &(0x7f0000000440), 0x2, 0x0)
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="0300000004000000040000000affffffe1000000", @ANYRES32=r6, @ANYBLOB="0500"/20, @ANYRES32=0x0, @ANYRES32=r7, @ANYBLOB="000000000500"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0xe, 0x11, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000007000000000000000800000018100000", @ANYRES32=r2, @ANYBLOB="0000000000000000092301000400000018260000", @ANYRES32=r6, @ANYBLOB="000000009f877f2818110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000aa000007b8af8ff00000000bfa200000000000009000000f8ffffffb703000008000000b70400000100000085000000820000009500000000000000"], &(0x7f00000006c0)='GPL\x00', 0x2, 0xd7, &(0x7f0000000700)=""/215, 0x41000, 0xba5f9105c4019dbe, '\x00', 0x0, @fallback=0x2c, r7, 0x8, &(0x7f0000000800)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000840)={0x1, 0x3, 0x6, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x4, &(0x7f00000009c0)=[r6, r7, r7, r8, r2, r7, r7], &(0x7f0000000a00)=[{0x1, 0x2, 0x3, 0x4}, {0x5, 0x4, 0x5, 0x3}, {0x4, 0x1, 0xc, 0xa}, {0x2, 0x1, 0x0, 0x6}], 0x10, 0xfffffe00, @value=r7}, 0x94)
ioctl$SNDRV_PCM_IOCTL_DRAIN(r2, 0x4144, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
connect$bt_rfcomm(0xffffffffffffffff, &(0x7f0000005dc0)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x17}, 0xa)
connect$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x4}, 0xa)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000340)={0x1, @vbi={0x1, 0x9, 0x3, 0x35315258, [0x92, 0x1], [0xfffffffa, 0xb], 0x1}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
rename(&(0x7f0000000280)='./file0\x00', &(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

19.401498336s ago: executing program 4 (id=1181):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
recvfrom$x25(r1, &(0x7f0000000180)=""/20, 0x14, 0x2, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x1d, 0x2, 0x80000000)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
ioctl$sock_SIOCBRDELBR(r5, 0x89a2, &(0x7f0000000000)='bridge0\x00')
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000340)='./file0\x00', &(0x7f00000001c0)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r7 = open(&(0x7f0000000000)='./bus\x00', 0x143042, 0xfd)
ftruncate(r7, 0x2008002)
r8 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r8, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000140)=@chain)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)

18.253934216s ago: executing program 4 (id=1191):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, 0x0, &(0x7f0000000080))
r2 = syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r2, 0xc05064a7, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_LOG_STATUS(r4, 0x5646, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fanotify_init(0x0, 0x0)
epoll_create1(0x0)
openat(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r7 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r8=>0x0, &(0x7f0000000280)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r7, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x60, &(0x7f0000000340)=[{&(0x7f0000000440)="5c00000013006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514000cc00800190003000200060018c00364bc24eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="30000000190001000000000000000000021800000000ff000000000008000100ac1414000c0009"], 0x30}}, 0x8000)
r11 = syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r11, 0xc0f8565c, &(0x7f0000001080)={0x0, 0x5, 0x1, {0x2, @win={{}, 0x0, 0xffffffff, 0x0, 0xffffffff, 0x0}}})

16.697100919s ago: executing program 4 (id=1198):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0, 0x0, 0x0, 0x0, 0xfff8}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

16.612715959s ago: executing program 4 (id=1199):
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000002c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [{@dont_appraise}, {@euid_gt={'euid>', 0xee01}}, {@obj_role={'obj_role', 0x3d, '\'(\xee'}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@subj_role={'subj_role', 0x3d, 'overlay\x00'}}], 0x2f})

16.61236437s ago: executing program 4 (id=1200):
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r2, &(0x7f0000000140)="24000000010006", 0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
flock(0xffffffffffffffff, 0x1780f9c373410dea)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000180)={'tunl0\x00', &(0x7f0000000080)={'ip_vti0\x00', 0x0, 0x40, 0x10, 0x2, 0x7, {{0x7, 0x4, 0x1, 0x30, 0x1c, 0x67, 0x0, 0x3, 0x29, 0x0, @private=0xa010102, @loopback, {[@ssrr={0x89, 0x7, 0x36, [@dev={0xac, 0x14, 0x14, 0x10}]}]}}}}})
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000000000000000000000000002850000000f000000a50000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="020006000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="0000000000020000"], 0x48}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="4c000000010801"], 0x4c}}, 0x0)

4.952333595s ago: executing program 5 (id=1302):
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f00000000c0)=""/191)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a01040000f5ffffff00000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000212c1400001e0a05010000000000000000070000000900020073797a31000000000900010073797a300000000000140380300000802c000180"], 0x14b0}, 0x1, 0x0, 0x0, 0x48050}, 0x10)

4.752423733s ago: executing program 5 (id=1303):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, 0x0, &(0x7f0000000080))
r2 = syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r2, 0xc05064a7, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_LOG_STATUS(r4, 0x5646, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fanotify_init(0x0, 0x0)
epoll_create1(0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r7 = syz_io_uring_setup(0x10d, 0x0, &(0x7f0000000340)=<r8=>0x0, &(0x7f0000000280)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r7, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x60, &(0x7f0000000340)=[{&(0x7f0000000440)="5c00000013006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514000cc00800190003000200060018c00364bc24eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="30000000190001000000000000000000021800000000ff000000000008000100ac1414000c0009"], 0x30}}, 0x8000)
r11 = syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r11, 0xc0f8565c, &(0x7f0000001080)={0x0, 0x5, 0x1, {0x2, @win={{}, 0x0, 0xffffffff, 0x0, 0xffffffff, 0x0}}})

3.779344403s ago: executing program 5 (id=1318):
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
getsockopt$bt_BT_POWER(r2, 0x112, 0x9, 0x0, &(0x7f0000000000))
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, 0x0)
sendfile64(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x114, &(0x7f0000000300)={0x0, 0x0, 0x1}, &(0x7f0000000000), 0x0)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000180)={0x30}, 0x30)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00V', @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0x10, &(0x7f0000000040)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffff5}], {{}, {}, {0x85, 0x0, 0x0, 0xd3}}}, &(0x7f0000000140)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bind$inet6(r1, &(0x7f0000000c00)={0xa, 0x1, 0x2, @empty, 0x344}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x20004002, &(0x7f0000b63fe4)={0xa, 0x2, 0x80000000}, 0x1c)

2.852206111s ago: executing program 5 (id=1326):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usbip_server_init(0x4)
syz_usbip_server_init(0x1)
syz_usbip_server_init(0x1)
syz_usbip_server_init(0x1)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0x5}, 0x10)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
recvmmsg$unix(r1, &(0x7f00000043c0)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000002c0)=""/240, 0xf0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000640)=""/187, 0xbb}], 0x1}}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000000900)=""/174, 0xae}], 0x1}}], 0x3, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000020900010073797a30000000002c000000030a010200000000000000000100fffe0900010073797a30000000000900030073797a30000000007c000000060a010400000000000000000100000008000b400000000054000480400001800e000100696d6d6564696174650000002c0002800800014002000000040002801c0002801800028008000180fffffffc0900020073797a3000000000100001800a0001006c696d69740000000900010073797a30"], 0xf0}}, 0x0)
openat$tun(0xffffff9c, &(0x7f0000000000), 0x80, 0x0)

2.412132991s ago: executing program 0 (id=1327):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x10}, 0xc)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000180)={@broadcast, @rand_addr, <r1=>0x0}, &(0x7f00000001c0)=0xc)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000280)={'team0\x00', <r2=>0x0})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000380)={'syztnl1\x00', &(0x7f0000000300)={'ip6gre0\x00', <r3=>0x0, 0x4, 0x8, 0x3, 0x3, 0xa, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, 0x81, 0x10, 0x5, 0x40}})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'team_slave_1\x00', <r4=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x7, r4, 0x1, 0xdf, 0x6, @remote}, 0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001c40)=@newtaction={0x230, 0x30, 0x1, 0x0, 0x0, {}, [{0x21c, 0x1, [@m_mirred={0x1d0, 0x4, 0x0, 0x0, {{0xb}, {0xe4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x1, 0x5, 0xff, 0x8}, 0x3, r1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x66, 0x2, 0x5, 0x516a, 0x400}, 0x4, r2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x100, 0x6, 0xffffffffffffffff, 0x6}, 0x2, r3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0x3, 0x8, 0x0, 0x7}, 0x6, r4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x4, 0x7, 0xfffffff7, 0xfffffff4}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xfffffffa, 0x6, 0x7, 0xf, 0x8576}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x100, 0x3, 0x6, 0x1, 0x5}, 0x2}}]}, {0xc3, 0x6, "42522c7eb6e4d1913afa5691ff65fcc7008068a640bd143714215e790107b657f3dc7084ed032d00f8537a6ee21f041ed60617f7e5a9d2190b2a4734bd23b06158e1c0cc8adea12d6bafe1cc3bdb3b63bb37142c32ac78c2a280ccdd207227300db8a73dabf1777df06b268dda773917b9e911e64b46665c536d2dc7f40bc2395bb185e9c244ba347cd1dca18c5751e72e2fbd7b5625284c83198321fc7e556abeb6c1df5ad8eab381ed2f4e5a76d1569fbc072b4186f86895f2b8373b57eb"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x2}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x230}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
connect$ax25(r8, &(0x7f0000000040)={{0x3, @null}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x10)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r9, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r9, 0x8949, &(0x7f0000000000))
r10 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r10, &(0x7f0000000100)={0x18, 0x0, {0x11ff, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xfc}, 'team_slave_1\x00'}}, 0x1e)
write(0xffffffffffffffff, 0x0, 0x0)
close$fd_v4l2_buffer(r9)
r11 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r11, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x1410, 0x1280, 0x150, 0x150, 0x0, 0xf8010000, 0x1348, 0x238, 0x238, 0x1348, 0x238, 0x3, 0x0, {[{{@ipv6={@mcast1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, [], [], 'team_slave_0\x00', 'hsr0\x00', {}, {}, 0x84}, 0x0, 0x1218, 0x1280, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x1, 0x1, './cgroup.net/syz0\x00', 0x1000000, {0x8}}}, @common=@inet=@sctp={{0x144}, {[], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000], 0x6, [], 0x0, 0x6}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}, {{@ipv6={@empty, @mcast1, [0x0, 0x0, 0x0, 0xffffffff], [], 'batadv_slave_0\x00', 'gre0\x00', {}, {}, 0x87}, 0x0, 0xa4, 0xc8}, @common=@inet=@SYNPROXY={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x146c)

1.828993514s ago: executing program 2 (id=1331):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdir(&(0x7f0000000100)='./control\x00', 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = getpgrp(0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x4, r0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
listen(r2, 0x7)
connect$phonet_pipe(r2, &(0x7f0000002200)={0x23, 0x0, 0x0, 0x1d}, 0x10)
r3 = userfaultfd(0x1)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r4, 0x10e, 0x2, &(0x7f00000001c0)=0x1, 0x4)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
r5 = syz_open_dev$sndpcmp(&(0x7f0000000140), 0x94, 0x4001)
r6 = openat$ttynull(0xffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000240)=0xf)
ioctl$SNDRV_PCM_IOCTL_DRAIN(r5, 0x4144, 0x0)
modify_ldt$write2(0x11, &(0x7f0000000080)={0x5, 0x20000000, 0xffffffffffffffff, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x10)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r3, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005ec000/0x3000)=nil, 0x400000, 0x2, 0x2})
rmdir(&(0x7f0000000040)='./control\x00')

1.062733744s ago: executing program 2 (id=1332):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x4bc, 0x0, 0x11, 0x148, 0x340, 0x0, 0x428, 0x2a8, 0x2a8, 0x428, 0x2a8, 0x3, 0x0, {[{{@ip={@broadcast, @dev, 0x0, 0x0, '\x00', 'veth1_to_team\x00', {}, {}, 0x84}, 0x3004, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x0, 0x3, 0x7, 0x78}}}, @common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x0, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x2}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0xfe}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffe}]}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}, {{@ip={@remote, @empty, 0x0, 0x0, 'geneve0\x00', 'netdevsim0\x00'}, 0x0, 0xb8, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x24}}, @inet=@rpfilter={{0x24}, {0x9}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x518)

1.062316289s ago: executing program 2 (id=1333):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz0\x00', {}, 0x49, [0x0, 0x3, 0x403, 0x100001, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x10000000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000a, 0x0, 0x0, 0x7, 0x0, 0x0, 0xffffffff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xa9a4], [0x0, 0x0, 0x0, 0x0, 0x2, 0x733, 0x0, 0xedc0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x2000000, 0x0, 0x0, 0x80000, 0x0, 0xfffffff8, 0x0, 0x0, 0x79, 0xfffffffd, 0x0, 0x0, 0x0, 0x2, 0x47, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x7fff0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x2, 0xfffffffc, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x20], [0x0, 0xfffffffc, 0x0, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0xffffffff, 0x89, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80008000, 0x0, 0xfffffffe, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x351e, 0x0, 0xd, 0x0, 0x0, 0x6492, 0x8], [0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x1200000, 0x0, 0x0, 0x10, 0x0, 0x0, 0x804, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x2, 0x0, 0x4, 0x0, 0xfd32, 0x6, 0x0, 0x0, 0x0, 0x2, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xffffffff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x0, 0x0, 0x0, 0x100000]}, 0x45c)
openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000001c0)=0x2, 0x4)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
ioprio_set$pid(0x1, 0x0, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000500)={0x1}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x9fd, 0x84, 0x105, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_LINK_CREATE(0xa, &(0x7f0000000340)={r4, 0xffffffffffffffff, 0x24, 0x7, @void}, 0x10)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r5, 0xc080661a, &(0x7f0000000600)={@desc={0x1, 0x0, @auto="b282e8e8df2c15bf"}})
sendfile(r3, r5, 0x0, 0x20000023896)

1.054702306s ago: executing program 0 (id=1334):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@newtaction={0x8c, 0x30, 0x200, 0x70bd26, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x8, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0xfffffffffffffd6e}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0xc707, 0x0, 0x0, 0x0, 0xfffffffd}}}, @TCA_IFE_PARMS={0x0, 0x1, {{0x7fffffff, 0x4, 0x7, 0x2, 0x7}}}, @TCA_IFE_SMAC={0x0, 0x4, @remote}, @TCA_IFE_TYPE={0x0, 0x5, 0x1}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x8bdf95fdf19b2a7d}}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x24000805}, 0x44)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000040))
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xfffffffc)
openat$tcp_mem(0xffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000000100)={[{0x6, 0x8000, 0x4, 0x5, 0x0, 0xf9, 0x5, 0xa, 0xb8, 0x1, 0xe, 0x5, 0x204}, {0x1f, 0x5, 0x1, 0x45, 0x8, 0x2, 0x2, 0xff, 0x0, 0x4, 0x9, 0x7f, 0x20c}, {0x1, 0x3, 0x38, 0x5, 0x84, 0x85, 0x0, 0x50, 0x0, 0x72, 0x4, 0x3, 0xb}], 0xfffeffff})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, &(0x7f0000000000)={0x3, 0x2})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000003c0)={[0x60000000000, 0x1000000000, 0x0, 0x40, 0x2000000, 0x0, 0x2004cb, 0x0, 0x0, 0x68ff, 0x5, 0x0, 0x3], 0x1, 0x202})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000440)=@attr_arm64={0x0, 0x0, 0x0, 0x0})
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x6)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="5d5b00008002000008001300", @ANYRES32=r0, @ANYBLOB="14003500776731000000000000000000000000001ef517d48abafb7124aeef5e7e9994a03730896c7abccdfa1cade98c23864b4d2c0c0a23ebd30a91f2c3e8612c2a477a20cb63391a40c86281300a7cb5ac6795cb25ec968fa5edd4e38bf8b73ef532dedd578bf0af59bdeec784d3c6a871d8103e00aeea3bf2b930e24f0a5eda873658d369dbc255a3162a43809071604659883e9ee541aae8ebe2af5fa879d2b765a2f78d750baf97678f00628447ae887ac798f867a9"], 0x3c}}, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)}, 0x0)
ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000040)={0x0, @l2tp={0x2, 0x0, @broadcast}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x30}}, @in={0x2, 0x4e20, @broadcast}, 0x2, 0x0, 0x0, 0x0, 0x9})
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

1.054454812s ago: executing program 34 (id=1200):
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r2, &(0x7f0000000140)="24000000010006", 0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
flock(0xffffffffffffffff, 0x1780f9c373410dea)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000180)={'tunl0\x00', &(0x7f0000000080)={'ip_vti0\x00', 0x0, 0x40, 0x10, 0x2, 0x7, {{0x7, 0x4, 0x1, 0x30, 0x1c, 0x67, 0x0, 0x3, 0x29, 0x0, @private=0xa010102, @loopback, {[@ssrr={0x89, 0x7, 0x36, [@dev={0xac, 0x14, 0x14, 0x10}]}]}}}}})
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000000000000000000000000002850000000f000000a50000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="020006000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="0000000000020000"], 0x48}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="4c000000010801"], 0x4c}}, 0x0)

1.054250075s ago: executing program 5 (id=1336):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd25, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x4000}, 0x400}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r3 = openat2(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x185400, 0x180, 0x20}, 0x18)
connect$unix(r3, &(0x7f0000000300)=@abs={0x1, 0x0, 0x4e22}, 0x6e)
r4 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
accept4(r4, 0x0, 0x0, 0x80000)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, 0x0, 0x0)
bind$inet6(r5, 0x0, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
socket(0x1e, 0x5, 0x0)
setsockopt$packet_int(r8, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
recvmmsg(r8, &(0x7f0000001cc0)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x0, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c000000100001046c4e00"/20, @ANYRES32=r7, @ANYBLOB="03050000000000001c0012800b00010062726964676500000c000280080003000a040000"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

707.673285ms ago: executing program 2 (id=1337):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'macvlan0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="2c000000130001c3000000000000000000000800", @ANYRES32=r3, @ANYBLOB="0000d400000000000a000100003b"], 0x2c}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=ANY=[@ANYBLOB="34000080a6ccde79f54987000606010300000000000000000a00000605000100070000000900030073797a32000000000900020073797a320000000019cab48c46d202768834b947f84f10f539eabfbd05909cf31d99446d4c71ce779c07641d2663d2f213a386afaca0105663d5567304e2f07954f105b844c5982da6737b6e98400041206dcd7e4b09419c295dd49ba4d30c030fe3f2397560d7f9bb2dbf53c7ca9387"], 0x34}, 0x1, 0x0, 0x0, 0x4000040}, 0x80)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000200)={'syztnl2\x00', &(0x7f0000000180)={'ip6tnl0\x00', r3, 0x29, 0x4, 0xc, 0x7, 0x40, @dev={0xfe, 0x80, '\x00', 0x16}, @rand_addr=' \x01\x00', 0x1, 0x80, 0x10, 0xfffffffa}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{0x0, 0x0, 0x9c, 0x0, 0x4}, {}]}, [{}, {0x0, 0x80000001}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {0x0, 0x0, 0x0, 0x7, 0x5}, {0x0, 0x0, 0x0, 0x2000}, {0x0, 0x0, 0x0, 0x0, 0x400}, {}, {0x0, 0x400}, {}, {0xffffffff, 0x1, 0x0, 0x0, 0xfffffffe, 0x8001}, {}, {}, {}, {}, {}, {}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x9}, {}, {0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, {0x0, 0x4, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1, 0x0, 0x5}, {0x0, 0x4000bf}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {0x0, 0x0, 0xfffffffe}, {}, {0x7}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0xd5}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe6f1}, {}, {0x0, 0x0, 0x0, 0x0, 0x3e0d905c, 0x6}, {0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x6}, {0x0, 0x5, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x57, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0x5}, {}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x8, 0x0, 0x4}, {0x3}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x2000}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x800000}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {}, {}, {}, {}, {0x4}, {}, {0xa7}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa}, {0x0, 0x0, 0x1000}, {}, {0xd2, 0x0, 0x0, 0x0, 0x0, 0x20000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0xf}, {0x4, 0x0, 0x0, 0x0, 0x1}, {}, {0x0, 0x9}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x1000000}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x10000000}, {}, {}, {0x0, 0x1, 0x3}, {}, {0x523e, 0xfffffffe}, {}, {0x4, 0x0, 0x0, 0x10}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}], [{}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {0x4}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x3}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2}, {0x2}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {0x1}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
sendmmsg$unix(r6, 0x0, 0x0, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
r8 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r8, 0x89f0, &(0x7f0000000040)={'bridge0\x00', &(0x7f0000000100)=@ethtool_coalesce={0xf, 0x0, 0x6dd68c91, 0x6, 0xe, 0xfff, 0x0, 0xc0000000, 0x402, 0x5, 0x5, 0x7f, 0x3, 0x6, 0x7f, 0xfffffffc, 0x0, 0x800002, 0x80000000, 0x2, 0x1ff, 0xfffffff9, 0xc}})
r9 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r9, 0xaf01, 0x0)
r10 = eventfd(0xc)
ioctl$VHOST_SET_LOG_BASE(r9, 0x4008af04, &(0x7f0000000200)=&(0x7f00000001c0))
ioctl$VHOST_SET_LOG_FD(r9, 0x4004af07, &(0x7f0000000240)=r10)
ioctl$VHOST_SET_VRING_KICK(r9, 0x4008af20, &(0x7f0000000040)={0x1, r10})
ioctl$VHOST_SET_VRING_ADDR(r9, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r9, 0x4008af03, &(0x7f0000000b00)={0x6, 0x0, [{0x3000, 0xb8, &(0x7f0000000340)=""/184}, {0x6000, 0x3, &(0x7f0000000440)=""/3}, {0xffff1000, 0xe5, &(0x7f0000000600)=""/229}, {0x0, 0x9e, &(0x7f0000000700)=""/158}, {0x2000, 0xf4, &(0x7f0000000940)=""/244}, {0xdddd0000, 0xe1, &(0x7f00000007c0)=""/225}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r9, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$VHOST_SET_FEATURES(r9, 0x4008af00, &(0x7f0000000000)=0x208000000)

554.817757ms ago: executing program 0 (id=1338):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'macvlan0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="2c000000130001c3000000000000000000000800", @ANYRES32=r3, @ANYBLOB="0000d400000000000a000100003b"], 0x2c}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=ANY=[@ANYBLOB="34000080a6ccde79f54987000606010300000000000000000a00000605000100070000000900030073797a32000000000900020073797a320000000019cab48c46d202768834b947f84f10f539eabfbd05909cf31d99446d4c71ce779c07641d2663d2f213a386afaca0105663d5567304e2f07954f105b844c5982da6737b6e98400041206dcd7e4b09419c295dd49ba4d30c030fe3f2397560d7f9bb2dbf53c7ca9387"], 0x34}, 0x1, 0x0, 0x0, 0x4000040}, 0x80)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000200)={'syztnl2\x00', &(0x7f0000000180)={'ip6tnl0\x00', r3, 0x29, 0x4, 0xc, 0x7, 0x40, @dev={0xfe, 0x80, '\x00', 0x16}, @rand_addr=' \x01\x00', 0x1, 0x80, 0x10, 0xfffffffa}})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{0x0, 0x0, 0x9c, 0x0, 0x4}, {}]}, [{}, {0x0, 0x80000001}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {0x0, 0x0, 0x0, 0x7, 0x5}, {0x0, 0x0, 0x0, 0x2000}, {0x0, 0x0, 0x0, 0x0, 0x400}, {}, {0x0, 0x400}, {}, {0xffffffff, 0x1, 0x0, 0x0, 0xfffffffe, 0x8001}, {}, {}, {}, {}, {}, {}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x9}, {}, {0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, {0x0, 0x4, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1, 0x0, 0x5}, {0x0, 0x4000bf}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {0x0, 0x0, 0xfffffffe}, {}, {0x7}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0xd5}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe6f1}, {}, {0x0, 0x0, 0x0, 0x0, 0x3e0d905c, 0x6}, {0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x6}, {0x0, 0x5, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x57, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0x5}, {}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x8, 0x0, 0x4}, {0x3}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x2000}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x800000}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {}, {}, {}, {}, {0x4}, {}, {0xa7}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa}, {0x0, 0x0, 0x1000}, {}, {0xd2, 0x0, 0x0, 0x0, 0x0, 0x20000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0xf}, {0x4, 0x0, 0x0, 0x0, 0x1}, {}, {0x0, 0x9}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x1000000}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x10000000}, {}, {}, {0x0, 0x1, 0x3}, {}, {0x523e, 0xfffffffe}, {}, {0x4, 0x0, 0x0, 0x10}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}], [{}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {0x4}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x3}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2}, {0x2}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {0x1}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
sendmmsg$unix(r6, 0x0, 0x0, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
r8 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r8, 0x89f0, &(0x7f0000000040)={'bridge0\x00', &(0x7f0000000100)=@ethtool_coalesce={0xf, 0x0, 0x6dd68c91, 0x6, 0xe, 0xfff, 0x0, 0xc0000000, 0x402, 0x5, 0x5, 0x7f, 0x3, 0x6, 0x7f, 0xfffffffc, 0x0, 0x800002, 0x80000000, 0x2, 0x1ff, 0xfffffff9, 0xc}})
r9 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r9, 0xaf01, 0x0)
r10 = eventfd(0xc)
ioctl$VHOST_SET_LOG_BASE(r9, 0x4008af04, &(0x7f0000000200)=&(0x7f00000001c0))
ioctl$VHOST_SET_LOG_FD(r9, 0x4004af07, &(0x7f0000000240)=r10)
ioctl$VHOST_SET_VRING_KICK(r9, 0x4008af20, &(0x7f0000000040)={0x1, r10})
ioctl$VHOST_SET_VRING_ADDR(r9, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r9, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r9, 0x4008af03, &(0x7f0000000b00)={0x6, 0x0, [{0x3000, 0xb8, &(0x7f0000000340)=""/184}, {0x6000, 0x3, &(0x7f0000000440)=""/3}, {0xffff1000, 0xe5, &(0x7f0000000600)=""/229}, {0x0, 0x9e, &(0x7f0000000700)=""/158}, {0x2000, 0xf4, &(0x7f0000000940)=""/244}, {0xdddd0000, 0xe1, &(0x7f00000007c0)=""/225}]})
ioctl$VHOST_SET_FEATURES(r9, 0x4008af00, &(0x7f0000000000)=0x208000000)

150.73365ms ago: executing program 2 (id=1339):
mkdir(&(0x7f0000000000)='./file0\x00', 0x2) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0) (async)
mkdir(&(0x7f0000000080)='./file0/file0\x00', 0x0) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
r1 = openat$vcsu(0xffffff9c, &(0x7f0000000100), 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001380)={r1, 0x0, 0xeb, 0x1000, &(0x7f0000000140)="ff37d2e099e9f12b2b497580dd6dc17e0a75d99259ebb20f12d29f4a85bbd3be686b822e472a3b6fce9013837c1f823918ea64555bde224c322ca2e845a72dae306e026ae6ab4092f45d8b74e5b960fba0405c0fd094c490f019928f3a1507e3dcef0625c145fd5ed007badad50a0ebe61239138898de9f61379e1addd0a48e4c8e81797a66fe313e65b81c143e8854a4bf00f7b21221843b8fe45f0d8d4b067be0828de5bf7c294849e3ebbef6c04fa1875a72c1facc05bc333c2932d8dc6afff49b670a1e76e2c2f27d2abf2d5cd0f3a277d325e2220cb3224b1c0b838be1d75dac38832f4251aaeb989", &(0x7f0000000240)=""/4096, 0xb, 0x0, 0x89, 0x43, &(0x7f0000001240)="55e3f70e5bd7b10a310f16924d29f1961863f4e506e06e8f0a873af602892c9912735edaf5a364aade1a9e87f2c62bd609565084360aa93b40c2a1e16455dde4617c3be5754c7386f4ddae953c017c313be035e7a7b5f566abe10b93b61cd829c02e4eb2bf2e4aba35814f0eae009408207d99aeb7d6c6e193c356298cf8a72a7f841aa15043e88a02", &(0x7f0000001300)="8f5f7e2cda699e1b313f628045a938ca58c46a400a626959e231bb00b94deeb06e56b130a44f66e32d9d53974389b112a79c8ee704870ee892911751531ea53d619efe", 0x0, 0x0, 0x5}, 0x4c) (async)
ioctl$HIDIOCSFLAG(r1, 0x4004480f, &(0x7f0000001400)=0x1)
prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000001440)="298c6cb0638b57459e0a779bf8915ca69ec50629f37e04ac4cc13c3633cfd559a0ffda773ecfaf50b1c8387706ff00add804c04e83dae23685e297773edb7eb85b01", 0x42) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f00000014c0)) (async)
r2 = openat$ipvs(0xffffff9c, &(0x7f0000001540)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0)
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000ffe000/0x2000)=nil) (async)
syz_open_dev$hiddev(&(0x7f0000001580), 0x6b1, 0x28080) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001600)={&(0x7f00000015c0)='jbd2_checkpoint\x00', r1, 0x0, 0x9}, 0x18) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001780)={'batadv0\x00', <r3=>0x0}) (async, rerun: 32)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000001940)={r1, 0x20, &(0x7f0000001900)={&(0x7f0000001800)=""/133, 0x85, <r4=>0x0, &(0x7f00000018c0)=""/43, 0x2b}}, 0x10) (rerun: 32)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001a00)=@bpf_lsm={0x1d, 0xa, &(0x7f0000001640)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}, @exit], &(0x7f00000016c0)='GPL\x00', 0xe17f, 0x43, &(0x7f0000001700)=""/67, 0x41100, 0x1, '\x00', r3, 0x1b, r1, 0x8, 0x0, 0x0, 0x10, &(0x7f00000017c0)={0x5, 0xf, 0x2, 0xfffffff9}, 0x10, r4, 0x0, 0x4, &(0x7f0000001980)=[r1, r1, r2], &(0x7f00000019c0)=[{0x0, 0x3, 0x7, 0x6}, {0x1, 0x2, 0xf, 0xb}, {0x2, 0x2, 0x7, 0xf}, {0x5, 0x3, 0x7, 0xa}], 0x10, 0x7, @void, @value}, 0x94) (async)
epoll_create(0xf) (async)
r5 = openat$dsp(0xffffff9c, &(0x7f0000001ac0), 0x100, 0x0) (async)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000001b00)={0x2, 0x15, 0x4f, 0x7, 0x2c, 0x0, 0x70bd26, 0x25dfdbfe, [@sadb_x_kmaddress={0x8, 0x19, 0x0, @in6={0xa, 0x4e22, 0x10001, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x5}, @in6={0xa, 0x4e24, 0x7ff, @mcast1, 0x6be}}, @sadb_x_nat_t_port={0x1, 0x15, 0x4e24}, @sadb_x_sa2={0x2, 0x13, 0xc, 0x0, 0x0, 0x70bd2b, 0x3502}, @sadb_key={0x1f, 0x9, 0x780, 0x0, "0e118b7e9ac7fb8e4c8d88626b1d065f8ad542cd834d7d7495d97621eb3deeaa1f16d3717c673d87903e31a23ec3c44bc6c231e69d73a8ad2d305ed152fed33004c3acb416f8f83ed1f0ba2acc694844ccc29ae585ccd1e3c54ef5787295f4675105f43f901ffed4eec4a1f08a2b4b3bdcba75c22ddb1296d6843c9254e55aa1a924ac7100548779b92b387db6007b7634452315e4d1f7d2dfd63aabb64738bd7fbd94a27a6938a5fca7a87402cc8e82ced052abd9fc531b7193d26ff2b0b9252edc9ea00c76696e36404fced3049211280770cb02f3c9ca8f87e359acbe0f79686ab81edc9daff780905a9a543b3aa3"}]}, 0x160}}, 0x48012) (async)
openat$vnet(0xffffff9c, &(0x7f0000001d00), 0x2, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$key(r1, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000001d40)={0x2, 0xa, 0x3, 0x8, 0x3, 0x0, 0x70bd26, 0x25dfdbff, [@sadb_x_nat_t_port={0x1, 0x16, 0x4e23}]}, 0x18}}, 0x20000001) (async, rerun: 32)
writev(r5, &(0x7f0000003040)=[{&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000002e00)="12e3f52874ef11d056bf98a27b38b3bc94a6a88b9a72a65df216fd3b506270871c0fc9ce5e25f6cf25fffa8575d1d27f2ef2079ba007bebb52c748c3d473720479db414fbabfea030c50cf04b71b41f01faa50342a3d06472233816e456ef734797d88", 0x63}, {&(0x7f0000002e80)="97a98a4b190ed34c66c2726734c323ad3035a4eca7b7bd6a208c632406aa680bddf16b6a9d9c237e6b9233a261c693b3bf0287a274ce63cc4da5b649cf4234993aefde7e289b9ff5e9a36a054e13bf439030746bb5bfe6d9d2f57febab12584a3e432c7bae82db47d7775a79606dc7bf0e8f0300ffb8ccdf3cf20190ab06929a07cb507924886198f5ba2e7d47ff4969870e577bf2288ccfbb270d649e77074536b1536ba572371338e83aeb6b565213bf562b9e540faa5d2f30e67894ae703dea9c01d3abc2de06040468", 0xcb}, {&(0x7f0000002f80)="9bb51b760332632261ac6205edd2bf611c4b889e6edca70f3c445fbf9ffbd8258ccddd4a2acd47428942290df6d3b76998304fe364f7fd26b706c2534421dd1b6251161ca127f210bb30cfca6d3bd50a4ada815d3d754b1499595cacb08915605b52e94b782450543b30f8ddba8e63e10aa8d83e913b79a2c0880fc82005fc85df252f001882d644d644407c3454f4fef085834f4993977e5f94b6535e5f15898c62b56ef7c33d8c616b", 0xaa}], 0x4) (rerun: 32)
openat$pfkey(0xffffff9c, &(0x7f0000003080), 0x408180, 0x0) (async)
r7 = syz_open_dev$sndctrl(&(0x7f00000030c0), 0x4ae, 0x101040)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r7, 0xc0045540, &(0x7f0000003100)=0x401) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000003140))

146.444325ms ago: executing program 5 (id=1340):
syz_open_dev$radio(&(0x7f00000000c0), 0x0, 0x2)
sendmsg$NFQNL_MSG_VERDICT_BATCH(0xffffffffffffffff, 0x0, 0x4048080)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="480000001000010029bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="3871040000000000140003006e657464657673696d3000000000000014001680100001800c0004000100000001000000b7ba588ed21d531d99dcafc57d7c9b1ddb085d2ac78abfebca4b6483bd72d1d804d978ff8aba5f8dd1c03b59a333eb556ea03a558332aa678cd0379b57264bd8e61572fe92fa180d7211352187eb4b5e7d6770a3e43714dbdbf6b7084ca3360f2aa0483a0e9876c5b901e3d8e0e7edc8e4b3b928ac9287fff034fec9140e881fd0a0a6bcc3aadb1a4cf69bd70000000000"], 0x48}, 0x1, 0x0, 0x0, 0x40000d1}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000300)=@id, &(0x7f0000000480)=0x10, 0x1000)
getsockopt$TIPC_IMPORTANCE(r1, 0x10f, 0x7f, &(0x7f0000000540), &(0x7f0000000580)=0x4)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3, 0x0, 0x7}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, 0x0, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000a00)={0x0, 0x5885, 0x80, 0x10000000}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
r8 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{0x1}, 0x0, &(0x7f0000000280)}, 0x1c)
r9 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r10 = dup(r9)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(0xffffffffffffffff, 0x21, &(0x7f0000000440), 0x1)
write$6lowpan_enable(r10, &(0x7f0000000000)='0', 0xfffffd2c)
sendmsg$tipc(r1, &(0x7f0000000840)={&(0x7f00000005c0)=@id={0x1e, 0x3, 0x3, {0x4e24, 0x2}}, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000600)="13cf36add892a8cb166f48d3a4aa6b6c2b6c4bd69c31e95291c18a4e3e3185e892e80401b48a", 0x26}, {&(0x7f0000000640)="38ac9913f7b2", 0x6}, {&(0x7f0000000680)="094004615ba82dc49d9223ffaad06510b0bb0c9868d4ea3638c2edc19eeecb25be9f1ab9f68c194935a48f0233e4c3729bc4809cb86b904059102a2a", 0x3c}, {&(0x7f00000006c0)="eb4a37c7c6a9ca656370d7662c3091344a2f3e5954ee4c72083e020690f59d1d02ff4951eaddeac3af87e09ac5da36587bc0f324bf8da1a650a75552d56151589b5efb6d92c7db3d6c4c66f40010e264ccc009e4033b432982dedf4431f7e60e12e4a6362242048cba64dee8ae7c8e26cd883821890c7ec74d94170615f77af073b21a200c65a72e52d0681a54cdae04f3a0945d", 0x94}, {&(0x7f0000000780)="8f55abc555b7bb500f09974d8643cf5cc841dd2d9939a0dd59fd17344adde5d8df20816021a9d800e5e4a8229c8280024d40082cd4fbed", 0x37}], 0x5, &(0x7f0000000800)="01ec6ca95c8f68205e6538f935c06feeb515b5f9b290930c6266acf2dbd8eddd1e3631032124b168d6f65d9c3ddbdc26", 0x30, 0x800}, 0x20000040)
write$P9_RSTATu(r8, &(0x7f00000004c0)=ANY=[@ANYBLOB="930200007d00000005f00000000000000000000000a0ff0000000000000000000000000000000000000000000000000000001f00206e6f6465767b6376666f7892ffffff8102000000000031ffcebc920000003800704a86cec602007dfa673effeb09b5351f5bde05f7"], 0x232)

80.264813ms ago: executing program 2 (id=1341):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\a\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="a81800004800000004000c00"], 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000340)=0x4, 0x12)
r4 = socket(0x1d, 0x2, 0x6)
r5 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x80d01, 0x0)
ioctl$BLKPG(r5, 0x1269, &(0x7f00000001c0)={0x2, 0x0, 0x94, &(0x7f0000000340)={0x8000000000000002, 0x3, 0x800000b}})
epoll_create(0x9660)
socket$igmp(0x2, 0x3, 0x2)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r7 = accept4(r6, 0x0, 0x0, 0x80000)
r8 = socket$kcm(0x10, 0x100000000002, 0x4)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000001100)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
setsockopt$sock_attach_bpf(r8, 0x1, 0x32, &(0x7f0000000040)=r9, 0x4)
sendmsg$kcm(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af0180000000171300883795c04a31ba377a1b2cc32b38d3740000ffffffffffffffff", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000200), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESDEC=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r6])
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r7)
memfd_secret(0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
r10 = syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=<r11=>0x0, &(0x7f0000000200)=<r12=>0x0)
getsockopt$inet_sctp_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f0000000240), &(0x7f0000000400)=0x4)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r11, r12, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r10, 0x47f6, 0x0, 0x0, 0x0, 0x0)

79.311332ms ago: executing program 0 (id=1342):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000018c0)={'team0\x00', <r1=>0x0})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000022780)=@newlink={0x40, 0x10, 0x49920d862a92153b, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x15, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD1={0x8, 0x2, @udp=r2}]}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x40}}, 0x0)

184.988µs ago: executing program 0 (id=1343):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000004000000080000000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2000}, [@call={0x85, 0x0, 0x0, 0xf}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000006000000000850000002a00000095"], &(0x7f0000000440)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

0s ago: executing program 0 (id=1344):
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000040), &(0x7f0000000080)=0x8)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1002, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$vicodec1(0xffffff9c, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fanotify_init(0x0, 0x0)
epoll_create1(0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r3 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf) (fail_nth: 8)

kernel console output (not intermixed with test programs):

 T8098] netlink: 8 bytes leftover after parsing attributes in process `syz.0.537'.
[  133.814546][ T8101] netlink: 253 bytes leftover after parsing attributes in process `syz.3.540'.
[  133.817017][ T8101] netlink: 253 bytes leftover after parsing attributes in process `syz.3.540'.
[  133.819418][ T8101] netlink: 253 bytes leftover after parsing attributes in process `syz.3.540'.
[  133.821846][ T8101] netlink: 253 bytes leftover after parsing attributes in process `syz.3.540'.
[  133.824458][ T8101] netlink: 253 bytes leftover after parsing attributes in process `syz.3.540'.
[  133.826928][ T8101] netlink: 253 bytes leftover after parsing attributes in process `syz.3.540'.
[  133.830175][ T8101] netlink: 40 bytes leftover after parsing attributes in process `syz.3.540'.
[  134.147979][ T5950] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  134.675677][ T8107] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  134.682041][ T8107] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  134.690423][ T8107] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  134.694717][ T8107] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  134.696928][ T8107] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  134.699599][ T8107] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  134.717094][ T8107] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  134.720990][ T8107] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  134.723960][ T8124] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  134.728161][ T8107] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  134.732857][ T8107] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  134.735377][ T8107] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  134.750168][ T8124] bridge_slave_0: left allmulticast mode
[  134.751873][ T8124] bridge_slave_0: left promiscuous mode
[  134.754190][ T8124] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.761614][ T8124] bridge_slave_1: left allmulticast mode
[  134.810279][ T8124] bridge_slave_1: left promiscuous mode
[  134.818663][ T8124] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.839938][ T8124] bond0: (slave bond_slave_0): Releasing backup interface
[  134.848526][ T8124] bond0: (slave bond_slave_1): Releasing backup interface
[  134.874004][ T8124] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  134.876205][ T8124] batman_adv: batadv0: Removing interface: batadv_slave_0
[  134.882145][ T8124] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  134.884572][ T8124] batman_adv: batadv0: Removing interface: batadv_slave_1
[  134.900994][ T8124] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  134.904843][ T8124] batman_adv: batadv0: Removing interface: ip6gretap1
[  134.910979][ T8124] batman_adv: batadv0: Interface deactivated: ip6gretap2
[  134.916123][ T8124] batman_adv: batadv0: Removing interface: ip6gretap2
[  134.920447][ T8134] netlink: 8 bytes leftover after parsing attributes in process `syz.1.551'.
[  134.923702][ T8134] netlink: 'syz.1.551': attribute type 30 has an invalid length.
[  135.040758][ T8140] sch_tbf: burst 0 is lower than device bridge_slave_0 mtu (1514) !
[  136.027387][ T8180] program syz.1.567 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  136.059341][ T8182] team0: Port device gtp1 added
[  136.098130][ T8184] 9pnet_virtio: no channels available for device syz
[  136.109232][ T8186] netfs: Couldn't get user pages (rc=-14)
[  136.663374][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[  136.732581][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  136.732616][ T5950] Bluetooth: hci0: command 0x0401 tx timeout
[  136.812583][ T5950] Bluetooth: hci3: command 0x0405 tx timeout
[  137.182356][ T8222] netlink: 'syz.3.583': attribute type 3 has an invalid length.
[  137.185568][ T8222] netlink: 'syz.3.583': attribute type 2 has an invalid length.
[  137.634344][ T5950] Bluetooth: unknown link type 108
[  137.636375][ T5950] Bluetooth: hci3: connection err: -111
[  138.078753][ T5950] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  138.314892][ T8257] could not allocate digest TFM handle blake2s-160-arm
[  138.383341][ T8266] bridge5: the hash_elasticity option has been deprecated and is always 16
[  138.451937][ T8264] __nla_validate_parse: 14 callbacks suppressed
[  138.451949][ T8264] netlink: 8 bytes leftover after parsing attributes in process `syz.3.593'.
[  138.732584][ T5950] Bluetooth: hci1: command 0x0c1a tx timeout
[  138.812561][ T5950] Bluetooth: hci0: command 0x0401 tx timeout
[  138.812632][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  138.844979][ T8272] netlink: 24 bytes leftover after parsing attributes in process `syz.2.599'.
[  138.892645][ T5946] Bluetooth: hci3: command 0x0405 tx timeout
[  139.102693][ T8277] FAULT_INJECTION: forcing a failure.
[  139.102693][ T8277] name failslab, interval 1, probability 0, space 0, times 1
[  139.106176][ T8277] CPU: 3 UID: 0 PID: 8277 Comm: syz.2.601 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  139.106191][ T8277] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.106198][ T8277] Call Trace:
[  139.106201][ T8277]  <TASK>
[  139.106206][ T8277]  dump_stack_lvl+0x16c/0x1f0
[  139.106224][ T8277]  should_fail_ex+0x512/0x640
[  139.106235][ T8277]  ? __kvmalloc_node_noprof+0x122/0x600
[  139.106250][ T8277]  should_failslab+0xc2/0x120
[  139.106267][ T8277]  __kvmalloc_node_noprof+0x135/0x600
[  139.106286][ T8277]  ? bpf_test_run_xdp_live+0x16b/0x500
[  139.106308][ T8277]  ? bpf_test_run_xdp_live+0x16b/0x500
[  139.106325][ T8277]  bpf_test_run_xdp_live+0x16b/0x500
[  139.106344][ T8277]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  139.106365][ T8277]  ? find_held_lock+0x2b/0x80
[  139.106383][ T8277]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  139.106406][ T8277]  ? 0xffffffffa00045c0
[  139.106414][ T8277]  ? 0xffffffffa00045c0
[  139.106421][ T8277]  ? 0xffffffffa00045c0
[  139.106428][ T8277]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  139.106446][ T8277]  bpf_prog_test_run_xdp+0x824/0x1540
[  139.106463][ T8277]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  139.106477][ T8277]  ? __might_fault+0xb0/0x190
[  139.106488][ T8277]  ? fput+0x70/0xf0
[  139.106497][ T8277]  ? __bpf_prog_get+0xa0/0x290
[  139.106509][ T8277]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  139.106522][ T8277]  __sys_bpf+0x141f/0x4c80
[  139.106538][ T8277]  ? __pfx___sys_bpf+0x10/0x10
[  139.106553][ T8277]  ? ksys_write+0x190/0x240
[  139.106568][ T8277]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  139.106588][ T8277]  ? fput+0x70/0xf0
[  139.106597][ T8277]  ? ksys_write+0x1b9/0x240
[  139.106610][ T8277]  ? __pfx_ksys_write+0x10/0x10
[  139.106625][ T8277]  __ia32_sys_bpf+0x76/0xe0
[  139.106640][ T8277]  __do_fast_syscall_32+0x73/0x120
[  139.106655][ T8277]  do_fast_syscall_32+0x32/0x80
[  139.106669][ T8277]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  139.106682][ T8277] RIP: 0023:0xf7f37579
[  139.106690][ T8277] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  139.106701][ T8277] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  139.106711][ T8277] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  139.106717][ T8277] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  139.106723][ T8277] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  139.106729][ T8277] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  139.106734][ T8277] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  139.106745][ T8277]  </TASK>
[  139.216536][ T8281] sch_tbf: burst 0 is lower than device bridge_slave_0 mtu (1514) !
[  139.306637][ T8293] netlink: 'syz.1.606': attribute type 1 has an invalid length.
[  139.324002][ T8293] 8021q: adding VLAN 0 to HW filter on device bond2
[  139.396895][ T8293] input: syz1 as /devices/virtual/input/input19
[  139.413229][ T8298] netlink: 4 bytes leftover after parsing attributes in process `syz.0.602'.
[  139.948070][ T8306] Cannot find del_set index 320 as target
[  140.233692][ T8319] netlink: 'syz.3.614': attribute type 15 has an invalid length.
[  140.236269][ T8319] netlink: 24 bytes leftover after parsing attributes in process `syz.3.614'.
[  140.713943][ T8332] netlink: 4 bytes leftover after parsing attributes in process `syz.2.617'.
[  140.726731][ T8305] Set syz1 is full, maxelem 65536 reached
[  140.769063][ T8333] netlink: 4 bytes leftover after parsing attributes in process `syz.2.617'.
[  140.774138][ T8333] netlink: 'syz.2.617': attribute type 2 has an invalid length.
[  140.822511][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[  140.902620][ T5950] Bluetooth: hci0: command 0x0401 tx timeout
[  140.903341][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  141.451034][ T8357] netlink: 400 bytes leftover after parsing attributes in process `syz.0.626'.
[  141.596301][ T8369] netlink: 24 bytes leftover after parsing attributes in process `syz.0.629'.
[  141.797402][ T8379] could not allocate digest TFM handle blake2s-160-arm
[  141.825741][ T8384] FAULT_INJECTION: forcing a failure.
[  141.825741][ T8384] name failslab, interval 1, probability 0, space 0, times 0
[  141.830273][ T8384] CPU: 3 UID: 0 PID: 8384 Comm: syz.1.632 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  141.830296][ T8384] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  141.830306][ T8384] Call Trace:
[  141.830312][ T8384]  <TASK>
[  141.830318][ T8384]  dump_stack_lvl+0x16c/0x1f0
[  141.830337][ T8384]  should_fail_ex+0x512/0x640
[  141.830348][ T8384]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  141.830364][ T8384]  should_failslab+0xc2/0x120
[  141.830381][ T8384]  __kmalloc_cache_node_noprof+0x6d/0x420
[  141.830395][ T8384]  ? trace_kmalloc+0x2b/0xd0
[  141.830404][ T8384]  ? page_pool_create_percpu+0x7a/0xb20
[  141.830422][ T8384]  page_pool_create_percpu+0x7a/0xb20
[  141.830439][ T8384]  bpf_test_run_xdp_live+0x18e/0x500
[  141.830454][ T8384]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  141.830467][ T8384]  ? find_held_lock+0x2b/0x80
[  141.830480][ T8384]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  141.830498][ T8384]  ? 0xffffffffa00045c0
[  141.830506][ T8384]  ? 0xffffffffa00045c0
[  141.830514][ T8384]  ? 0xffffffffa00045c0
[  141.830520][ T8384]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  141.830538][ T8384]  bpf_prog_test_run_xdp+0x824/0x1540
[  141.830555][ T8384]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  141.830569][ T8384]  ? __might_fault+0xb0/0x190
[  141.830585][ T8384]  ? fput+0x70/0xf0
[  141.830595][ T8384]  ? __bpf_prog_get+0xa0/0x290
[  141.830607][ T8384]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  141.830620][ T8384]  __sys_bpf+0x141f/0x4c80
[  141.830636][ T8384]  ? __pfx___sys_bpf+0x10/0x10
[  141.830664][ T8384]  ? ksys_write+0x190/0x240
[  141.830679][ T8384]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  141.830699][ T8384]  ? fput+0x70/0xf0
[  141.830708][ T8384]  ? ksys_write+0x1b9/0x240
[  141.830721][ T8384]  ? __pfx_ksys_write+0x10/0x10
[  141.830735][ T8384]  __ia32_sys_bpf+0x76/0xe0
[  141.830751][ T8384]  __do_fast_syscall_32+0x73/0x120
[  141.830766][ T8384]  do_fast_syscall_32+0x32/0x80
[  141.830780][ T8384]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  141.830793][ T8384] RIP: 0023:0xf73de579
[  141.830802][ T8384] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  141.830812][ T8384] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  141.830822][ T8384] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  141.830829][ T8384] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  141.830836][ T8384] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  141.830842][ T8384] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  141.830848][ T8384] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  141.830858][ T8384]  </TASK>
[  142.183175][ T8390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.634'.
[  142.810935][ T8405] CIFS mount error: No usable UNC path provided in device string!
[  142.810935][ T8405] 
[  142.813849][ T8405] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  142.919585][ T8409] random: crng reseeded on system resumption
[  143.047138][ T8418] program syz.2.642 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  143.072667][ T8420] netlink: 24 bytes leftover after parsing attributes in process `syz.2.643'.
[  144.042197][ T8445] program syz.0.651 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  144.071353][ T8447] vivid-007: =================  START STATUS  =================
[  144.076072][ T8447] vivid-007: Generate PTS: true
[  144.078714][ T8447] vivid-007: Generate SCR: true
[  144.080159][ T8447] tpg source WxH: 640x360 (Y'CbCr)
[  144.081612][ T8447] tpg field: 1
[  144.082674][ T8447] tpg crop: (0,0)/640x360
[  144.083888][ T8447] tpg compose: (0,0)/640x360
[  144.085190][ T8447] tpg colorspace: 8
[  144.086280][ T8447] tpg transfer function: 0/0
[  144.087574][ T8447] tpg Y'CbCr encoding: 0/0
[  144.088930][ T8447] tpg quantization: 0/0
[  144.090106][ T8447] tpg RGB range: 0/2
[  144.091213][ T8447] vivid-007: ==================  END STATUS  ==================
[  144.098075][ T8442] 9pnet_fd: Insufficient options for proto=fd
[  144.105107][ T8434] openvswitch: netlink: Actions may not be safe on all matching packets
[  144.110113][ T8434] nftables ruleset with unbound set
[  144.783605][ T8464] FAULT_INJECTION: forcing a failure.
[  144.783605][ T8464] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.788598][ T8464] CPU: 3 UID: 0 PID: 8464 Comm: syz.2.655 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  144.788621][ T8464] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.788631][ T8464] Call Trace:
[  144.788648][ T8464]  <TASK>
[  144.788656][ T8464]  dump_stack_lvl+0x16c/0x1f0
[  144.788682][ T8464]  should_fail_ex+0x512/0x640
[  144.788718][ T8464]  _copy_to_user+0x32/0xd0
[  144.788740][ T8464]  put_old_timespec32+0x18c/0x1e0
[  144.788854][ T8464]  ? __pfx_put_old_timespec32+0x10/0x10
[  144.788869][ T8464]  ? read_tsc+0x9/0x20
[  144.788888][ T8464]  ? ktime_get_ts64+0x256/0x400
[  144.788908][ T8464]  poll_select_finish+0x5c0/0x6b0
[  144.788931][ T8464]  ? __pfx_poll_select_finish+0x10/0x10
[  144.788958][ T8464]  do_compat_pselect+0x214/0x240
[  144.788977][ T8464]  ? __pfx_do_compat_pselect+0x10/0x10
[  144.788992][ T8464]  ? arch_do_signal_or_restart+0x211/0x7d0
[  144.789007][ T8464]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  144.789022][ T8464]  __ia32_compat_sys_pselect6_time32+0x17b/0x240
[  144.789039][ T8464]  ? __pfx___ia32_compat_sys_pselect6_time32+0x10/0x10
[  144.789057][ T8464]  do_int80_emulation+0x104/0x200
[  144.789074][ T8464]  asm_int80_emulation+0x1a/0x20
[  144.789084][ T8464] RIP: 0023:0xf7f37579
[  144.789093][ T8464] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  144.789103][ T8464] RSP: 002b:00000000f503555c EFLAGS: 00000296 ORIG_RAX: 0000000000000134
[  144.789114][ T8464] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  144.789120][ T8464] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000080000280
[  144.789126][ T8464] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  144.789132][ T8464] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  144.789138][ T8464] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  144.789148][ T8464]  </TASK>
[  145.528535][ T8482] could not allocate digest TFM handle blake2s-160-arm
[  145.532197][ T8487] futex_wake_op: syz.2.662 tries to shift op by -1; fix this program
[  145.771118][ T8490] netfs: Couldn't get user pages (rc=-14)
[  146.374825][ T8517] : entered promiscuous mode
[  148.014504][  T835] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  148.173942][  T835] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  148.177161][  T835] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 65327, setting to 1024
[  148.180173][  T835] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  148.183318][  T835] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  148.185876][  T835] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.192052][ T8552] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  148.196072][  T835] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  148.258188][ T8568] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  148.412280][  T835] usb 5-1: USB disconnect, device number 6
[  148.501573][ T8577] netlink: 36 bytes leftover after parsing attributes in process `syz.1.689'.
[  148.504352][ T8577] netlink: 12 bytes leftover after parsing attributes in process `syz.1.689'.
[  148.508745][ T8577] netlink: 36 bytes leftover after parsing attributes in process `l%†Î6ÛÏ|ÉOÎ�'.
[  148.511339][ T8577] netlink: 16 bytes leftover after parsing attributes in process `l%†Î6ÛÏ|ÉOÎ�'.
[  148.514037][ T8577] netlink: 36 bytes leftover after parsing attributes in process `l%†Î6ÛÏ|ÉOÎ�'.
[  148.516650][ T8577] netlink: 36 bytes leftover after parsing attributes in process `l%†Î6ÛÏ|ÉOÎ�'.
[  148.520533][   T40] kauditd_printk_skb: 883 callbacks suppressed
[  148.520543][   T40] audit: type=1804 audit(1743029070.523:1254): pid=8577 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm=6C2586CE36DB0CCF197CC94F7FCE8F name="/newroot/180/file0" dev="tmpfs" ino=1002 res=1 errno=0
[  148.703274][ T5946] Bluetooth: hci3: SCO packet for unknown connection handle 0
[  148.791112][ T8587] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.895449][ T8593] netlink: 8 bytes leftover after parsing attributes in process `syz.3.695'.
[  148.897983][ T8593] netlink: 'syz.3.695': attribute type 30 has an invalid length.
[  148.901692][ T8593] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  148.904202][ T8593] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  148.906633][ T8593] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  148.909082][ T8593] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  149.070370][ T8608] netlink: 8 bytes leftover after parsing attributes in process `syz.0.700'.
[  149.073551][ T8610] 9pnet_fd: Insufficient options for proto=fd
[  149.073617][ T8609] netlink: 'syz.1.701': attribute type 1 has an invalid length.
[  149.076830][ T8610] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  149.077597][ T8609] netlink: 'syz.1.701': attribute type 1 has an invalid length.
[  149.080471][ T8610] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  149.085707][ T8609] netlink: 12 bytes leftover after parsing attributes in process `syz.1.701'.
[  149.639223][ T8636] netlink: 24 bytes leftover after parsing attributes in process `syz.2.709'.
[  149.902091][ T8638] FAULT_INJECTION: forcing a failure.
[  149.902091][ T8638] name failslab, interval 1, probability 0, space 0, times 0
[  149.907264][ T8638] CPU: 3 UID: 0 PID: 8638 Comm: syz.0.710 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  149.907278][ T8638] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.907285][ T8638] Call Trace:
[  149.907288][ T8638]  <TASK>
[  149.907293][ T8638]  dump_stack_lvl+0x16c/0x1f0
[  149.907311][ T8638]  should_fail_ex+0x512/0x640
[  149.907321][ T8638]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  149.907336][ T8638]  should_failslab+0xc2/0x120
[  149.907352][ T8638]  __kmalloc_cache_noprof+0x6a/0x3e0
[  149.907365][ T8638]  ? preempt_schedule_thunk+0x16/0x30
[  149.907383][ T8638]  ? __xdp_reg_mem_model+0x134/0x680
[  149.907400][ T8638]  __xdp_reg_mem_model+0x134/0x680
[  149.907416][ T8638]  ? __pfx___xdp_reg_mem_model+0x10/0x10
[  149.907431][ T8638]  ? page_pool_list+0x1ca/0x240
[  149.907443][ T8638]  xdp_reg_mem_model+0x22/0x70
[  149.907458][ T8638]  bpf_test_run_xdp_live+0x1c7/0x500
[  149.907472][ T8638]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  149.907486][ T8638]  ? find_held_lock+0x2b/0x80
[  149.907498][ T8638]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  149.907517][ T8638]  ? 0xffffffffa00045c0
[  149.907525][ T8638]  ? 0xffffffffa00045c0
[  149.907532][ T8638]  ? 0xffffffffa00045c0
[  149.907538][ T8638]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  149.907557][ T8638]  bpf_prog_test_run_xdp+0x824/0x1540
[  149.907573][ T8638]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  149.907587][ T8638]  ? __might_fault+0xb0/0x190
[  149.907598][ T8638]  ? fput+0x70/0xf0
[  149.907607][ T8638]  ? __bpf_prog_get+0xa0/0x290
[  149.907619][ T8638]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  149.907632][ T8638]  __sys_bpf+0x141f/0x4c80
[  149.907648][ T8638]  ? __pfx___sys_bpf+0x10/0x10
[  149.907666][ T8638]  ? ksys_write+0x190/0x240
[  149.907681][ T8638]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  149.907701][ T8638]  ? fput+0x70/0xf0
[  149.907710][ T8638]  ? ksys_write+0x1b9/0x240
[  149.907723][ T8638]  ? __pfx_ksys_write+0x10/0x10
[  149.907738][ T8638]  __ia32_sys_bpf+0x76/0xe0
[  149.907753][ T8638]  __do_fast_syscall_32+0x73/0x120
[  149.907769][ T8638]  do_fast_syscall_32+0x32/0x80
[  149.907783][ T8638]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  149.907796][ T8638] RIP: 0023:0xf73ce579
[  149.907803][ T8638] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  149.907813][ T8638] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  149.907823][ T8638] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[  149.907829][ T8638] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  149.907835][ T8638] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  149.907841][ T8638] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  149.907846][ T8638] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  149.907857][ T8638]  </TASK>
[  149.990200][    C3] vkms_vblank_simulate: vblank timer overrun
[  150.073757][ T8641] FAULT_INJECTION: forcing a failure.
[  150.073757][ T8641] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.077389][ T8641] CPU: 3 UID: 0 PID: 8641 Comm: syz.0.711 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  150.077412][ T8641] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.077419][ T8641] Call Trace:
[  150.077422][ T8641]  <TASK>
[  150.077426][ T8641]  dump_stack_lvl+0x16c/0x1f0
[  150.077444][ T8641]  should_fail_ex+0x512/0x640
[  150.077457][ T8641]  _copy_from_user+0x2e/0xd0
[  150.077469][ T8641]  get_old_timespec32+0x151/0x1f0
[  150.077482][ T8641]  ? __pfx_get_old_timespec32+0x10/0x10
[  150.077497][ T8641]  do_compat_pselect+0x1c3/0x240
[  150.077512][ T8641]  ? __pfx_do_compat_pselect+0x10/0x10
[  150.077527][ T8641]  ? arch_do_signal_or_restart+0x211/0x7d0
[  150.077542][ T8641]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  150.077557][ T8641]  __ia32_compat_sys_pselect6_time32+0x17b/0x240
[  150.077574][ T8641]  ? __pfx___ia32_compat_sys_pselect6_time32+0x10/0x10
[  150.077590][ T8641]  ? rcu_is_watching+0x12/0xc0
[  150.077602][ T8641]  do_int80_emulation+0x104/0x200
[  150.077618][ T8641]  asm_int80_emulation+0x1a/0x20
[  150.077628][ T8641] RIP: 0023:0xf73ce579
[  150.077636][ T8641] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  150.077646][ T8641] RSP: 002b:00000000f503555c EFLAGS: 00000296 ORIG_RAX: 0000000000000134
[  150.077656][ T8641] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  150.077667][ T8641] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000080000280
[  150.077673][ T8641] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.077679][ T8641] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  150.077685][ T8641] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.077695][ T8641]  </TASK>
[  150.133214][    C3] vkms_vblank_simulate: vblank timer overrun
[  150.203125][ T5946] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  150.462661][   T24] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  150.476427][ T8653] sch_tbf: burst 0 is lower than device bridge_slave_0 mtu (1514) !
[  150.633685][   T24] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  150.636368][   T24] usb 5-1: config 0 interface 0 has no altsetting 0
[  150.639559][   T24] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  150.642140][   T24] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  150.644551][   T24] usb 5-1: Product: syz
[  150.645772][   T24] usb 5-1: Manufacturer: syz
[  150.647063][   T24] usb 5-1: SerialNumber: syz
[  150.649612][   T24] usb 5-1: config 0 descriptor??
[  150.653479][   T24] usb 5-1: selecting invalid altsetting 0
[  150.736229][ T8666] batman_adv: batadv0: Adding interface: ip6gretap2
[  150.738138][ T8666] batman_adv: batadv0: The MTU of interface ip6gretap2 is too small (1434) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1500.
[  150.743899][ T8666] batman_adv: batadv0: Interface activated: ip6gretap2
[  150.788398][ T8671] e1000 0000:00:06.0 eth0: Unsupported Speed/Duplex configuration
[  150.876179][   T24] usb 5-1: USB disconnect, device number 7
[  151.043889][   T40] audit: type=1804 audit(1743029073.053:1255): pid=8675 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.723" name="/newroot/161/file0" dev="tmpfs" ino=891 res=1 errno=0
[  151.111870][ T8676] dccp_invalid_packet: P.Data Offset(10) too large
[  151.514469][ T8680] netlink: 'syz.1.725': attribute type 1 has an invalid length.
[  151.521074][ T8680] 8021q: adding VLAN 0 to HW filter on device bond3
[  151.559476][ T8685] smc: net device bond0 applied user defined pnetid SYZ0
[  151.583628][ T8686] input: syz1 as /devices/virtual/input/input20
[  152.222422][ T8702] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.225604][ T8702] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.231927][ T8708] Invalid ELF header type: 3 != 1
[  152.346356][ T8702] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.349202][ T8702] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.742673][ T8709] 9pnet_virtio: no channels available for device syz
[  152.944650][ T8702] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  152.947567][ T8702] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.963697][ T8717] delete_channel: no stack
[  152.973342][   T40] audit: type=1326 audit(1743029074.973:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.0.735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  152.978776][ T8717] program syz.0.735 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  152.979191][   T40] audit: type=1326 audit(1743029074.973:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.0.735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  152.987567][   T40] audit: type=1326 audit(1743029074.973:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.0.735" exe="/syz-executor" sig=0 arch=40000003 syscall=350 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  152.993604][   T40] audit: type=1326 audit(1743029074.973:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.0.735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  152.999370][   T40] audit: type=1326 audit(1743029074.973:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.0.735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  153.006023][   T40] audit: type=1326 audit(1743029074.973:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.0.735" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  153.011724][   T40] audit: type=1326 audit(1743029074.983:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.0.735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  153.018017][   T40] audit: type=1326 audit(1743029074.983:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.0.735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  153.039930][ T8702] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  153.043139][ T8702] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.157238][ T8702] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  153.161286][ T8702] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  153.167084][ T8702] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  153.169403][ T8702] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  153.177219][ T8702] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  153.180364][ T8702] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  153.196568][ T8726] x_tables: duplicate underflow at hook 2
[  153.198527][ T8726] capability: warning: `syz.3.738' uses 32-bit capabilities (legacy support in use)
[  153.205305][ T8702] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  153.207664][ T8702] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  153.232955][ T8713] delete_channel: no stack
[  153.471498][ T8743] FAULT_INJECTION: forcing a failure.
[  153.471498][ T8743] name failslab, interval 1, probability 0, space 0, times 0
[  153.475894][ T8743] CPU: 0 UID: 0 PID: 8743 Comm: syz.0.744 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  153.475909][ T8743] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.475915][ T8743] Call Trace:
[  153.475919][ T8743]  <TASK>
[  153.475923][ T8743]  dump_stack_lvl+0x16c/0x1f0
[  153.475941][ T8743]  should_fail_ex+0x512/0x640
[  153.475952][ T8743]  ? fs_reclaim_acquire+0xae/0x150
[  153.475965][ T8743]  ? tomoyo_encode2+0x100/0x3e0
[  153.475981][ T8743]  should_failslab+0xc2/0x120
[  153.475998][ T8743]  __kmalloc_noprof+0xd2/0x510
[  153.476012][ T8743]  ? d_absolute_path+0x136/0x1a0
[  153.476025][ T8743]  tomoyo_encode2+0x100/0x3e0
[  153.476041][ T8743]  tomoyo_encode+0x29/0x50
[  153.476056][ T8743]  tomoyo_realpath_from_path+0x18f/0x6e0
[  153.476074][ T8743]  tomoyo_path_number_perm+0x245/0x580
[  153.476087][ T8743]  ? tomoyo_path_number_perm+0x237/0x580
[  153.476102][ T8743]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  153.476116][ T8743]  ? find_held_lock+0x2b/0x80
[  153.476135][ T8743]  ? find_held_lock+0x2b/0x80
[  153.476145][ T8743]  ? __fget_files+0x204/0x3c0
[  153.476160][ T8743]  ? __fget_files+0x20e/0x3c0
[  153.476176][ T8743]  security_file_ioctl_compat+0x9b/0x240
[  153.476191][ T8743]  __do_compat_sys_ioctl+0x4e/0x2c0
[  153.476205][ T8743]  __do_fast_syscall_32+0x73/0x120
[  153.476220][ T8743]  do_fast_syscall_32+0x32/0x80
[  153.476234][ T8743]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.476247][ T8743] RIP: 0023:0xf73ce579
[  153.476255][ T8743] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  153.476264][ T8743] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  153.476275][ T8743] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001
[  153.476281][ T8743] RDX: 00000000800002c0 RSI: 0000000000000000 RDI: 0000000000000000
[  153.476287][ T8743] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.476293][ T8743] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  153.476298][ T8743] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.476309][ T8743]  </TASK>
[  153.476563][ T8743] ERROR: Out of memory at tomoyo_realpath_from_path.
[  153.551646][ T8743] program syz.0.744 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  153.797275][ T8756] program syz.0.748 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  154.564501][ T8771] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  154.567694][ T8771] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  155.730204][ T8802] 9pnet_virtio: no channels available for device 127.0.0.1
[  156.523388][ T8823] TCP: TCP_TX_DELAY enabled
[  156.770362][ T8833] team0 (unregistering): Port device gtp0 removed
[  156.779378][ T8833] team0 (unregistering): Port device gtp1 removed
[  157.040090][ T5946] Bluetooth: hci2: unexpected event for opcode 0x041b
[  157.474853][ T8811] block nbd3: shutting down sockets
[  157.595978][ T8854] netlink: 'syz.3.777': attribute type 39 has an invalid length.
[  157.948278][ T8866] __nla_validate_parse: 2 callbacks suppressed
[  157.948321][ T8866] netlink: 8 bytes leftover after parsing attributes in process `syz.1.780'.
[  158.250534][ T8873] netlink: 400 bytes leftover after parsing attributes in process `syz.3.784'.
[  158.325607][ T8883] program syz.3.787 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  158.377589][ T8885] syz.3.788 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  158.464766][ T8893] FAULT_INJECTION: forcing a failure.
[  158.464766][ T8893] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.468263][ T8893] CPU: 1 UID: 0 PID: 8893 Comm: syz.2.785 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  158.468279][ T8893] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  158.468285][ T8893] Call Trace:
[  158.468289][ T8893]  <TASK>
[  158.468293][ T8893]  dump_stack_lvl+0x16c/0x1f0
[  158.468311][ T8893]  should_fail_ex+0x512/0x640
[  158.468332][ T8893]  _copy_from_user+0x2e/0xd0
[  158.468345][ T8893]  get_compat_msghdr+0xa7/0x170
[  158.468359][ T8893]  ? __pfx_get_compat_msghdr+0x10/0x10
[  158.468371][ T8893]  ? __pfx__kstrtoull+0x10/0x10
[  158.468388][ T8893]  ___sys_sendmsg+0x1ae/0x1d0
[  158.468404][ T8893]  ? __pfx____sys_sendmsg+0x10/0x10
[  158.468423][ T8893]  ? find_held_lock+0x2b/0x80
[  158.468440][ T8893]  ? __pfx___might_resched+0x10/0x10
[  158.468458][ T8893]  __sys_sendmmsg+0x2f9/0x420
[  158.468474][ T8893]  ? __pfx___sys_sendmmsg+0x10/0x10
[  158.468492][ T8893]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  158.468511][ T8893]  ? fput+0x70/0xf0
[  158.468521][ T8893]  ? ksys_write+0x1b9/0x240
[  158.468534][ T8893]  ? __pfx_ksys_write+0x10/0x10
[  158.468549][ T8893]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  158.468562][ T8893]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  158.468597][ T8893]  __do_fast_syscall_32+0x73/0x120
[  158.468613][ T8893]  do_fast_syscall_32+0x32/0x80
[  158.468627][ T8893]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  158.468640][ T8893] RIP: 0023:0xf7f37579
[  158.468648][ T8893] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  158.468658][ T8893] RSP: 002b:00000000f501455c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  158.468668][ T8893] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080002a00
[  158.468675][ T8893] RDX: 0000000000000198 RSI: 0000000000000000 RDI: 0000000000000000
[  158.468681][ T8893] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  158.468686][ T8893] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  158.468692][ T8893] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  158.468702][ T8893]  </TASK>
[  158.593050][ T8897] netlink: 253 bytes leftover after parsing attributes in process `syz.3.793'.
[  158.595548][ T8897] netlink: 253 bytes leftover after parsing attributes in process `syz.3.793'.
[  158.598292][ T8897] netlink: 253 bytes leftover after parsing attributes in process `syz.3.793'.
[  158.600967][ T8897] netlink: 253 bytes leftover after parsing attributes in process `syz.3.793'.
[  158.605003][ T8897] netlink: 253 bytes leftover after parsing attributes in process `syz.3.793'.
[  158.608253][ T8897] netlink: 253 bytes leftover after parsing attributes in process `syz.3.793'.
[  158.844709][ T8910] netlink: 8 bytes leftover after parsing attributes in process `syz.3.797'.
[  158.879413][ T8915] netlink: 'syz.3.798': attribute type 12 has an invalid length.
[  159.659758][ T5946] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection
[  160.711631][ T8983] tmpfs: Unknown parameter 'rleave:7-N:N'
[  161.692642][ T5946] Bluetooth: hci0: command 0x0401 tx timeout
[  162.087494][ T9016] netlink: 400 bytes leftover after parsing attributes in process `syz.0.828'.
[  162.158964][ T9024] program syz.0.830 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  163.019996][ T9046] __nla_validate_parse: 1 callbacks suppressed
[  163.020011][ T9046] netlink: 8 bytes leftover after parsing attributes in process `syz.3.836'.
[  163.585685][ T9082] could not allocate digest TFM handle blake2s-160-arm
[  163.773690][ T5946] Bluetooth: hci0: command 0x0401 tx timeout
[  164.095845][ T9110] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  164.098946][ T9110] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  164.218175][ T5946] Bluetooth: unknown link type 108
[  164.219944][ T5946] Bluetooth: hci1: connection err: -111
[  164.428582][ T9137] CIFS mount error: No usable UNC path provided in device string!
[  164.428582][ T9137] 
[  164.431807][ T9137] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  164.540583][ T9138] random: crng reseeded on system resumption
[  164.869681][ T9147] netlink: 48 bytes leftover after parsing attributes in process `syz.1.868'.
[  164.892647][  T835] usb 7-1: new low-speed USB device number 4 using dummy_hcd
[  165.009784][ T9152] netlink: 100 bytes leftover after parsing attributes in process `syz.1.869'.
[  165.249351][ T9160] bpf: Bad value for 'gid'
[  165.279358][ T9162] Cannot find add_set index 3 as target
[  165.293955][ T9162] overlayfs: failed to resolve './file0/file0': -2
[  165.376406][  T835] usb 7-1: unable to get BOS descriptor or descriptor too short
[  165.379149][  T835] usb 7-1: unable to read config index 0 descriptor/start: -71
[  165.381264][  T835] usb 7-1: can't read configurations, error -71
[  165.763569][ T9170] netlink: 24 bytes leftover after parsing attributes in process `syz.1.874'.
[  165.956688][ T9182] sch_tbf: burst 0 is lower than device bridge_slave_0 mtu (1514) !
[  166.006156][ T9184] netlink: 'syz.3.880': attribute type 1 has an invalid length.
[  166.016772][ T9184] 8021q: adding VLAN 0 to HW filter on device bond4
[  166.090946][ T9189] input: syz1 as /devices/virtual/input/input21
[  166.111698][ T9191] program syz.0.881 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  166.114641][ T9191] FAULT_INJECTION: forcing a failure.
[  166.114641][ T9191] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  166.118697][ T9191] CPU: 2 UID: 0 PID: 9191 Comm: syz.0.881 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  166.118712][ T9191] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.118719][ T9191] Call Trace:
[  166.118723][ T9191]  <TASK>
[  166.118728][ T9191]  dump_stack_lvl+0x16c/0x1f0
[  166.118747][ T9191]  should_fail_ex+0x512/0x640
[  166.118760][ T9191]  _copy_to_user+0x32/0xd0
[  166.118773][ T9191]  simple_read_from_buffer+0xe0/0x170
[  166.118788][ T9191]  proc_fail_nth_read+0x197/0x270
[  166.118802][ T9191]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  166.118815][ T9191]  ? rw_verify_area+0xcf/0x680
[  166.118828][ T9191]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  166.118841][ T9191]  vfs_read+0x1de/0xc70
[  166.118854][ T9191]  ? fdget_pos+0x2a2/0x370
[  166.118870][ T9191]  ? __pfx___mutex_lock+0x10/0x10
[  166.118885][ T9191]  ? __pfx_vfs_read+0x10/0x10
[  166.118901][ T9191]  ? __fget_files+0x20e/0x3c0
[  166.118917][ T9191]  ksys_read+0x12a/0x240
[  166.118930][ T9191]  ? __pfx_ksys_read+0x10/0x10
[  166.118942][ T9191]  ? rcu_is_watching+0x12/0xc0
[  166.118953][ T9191]  ? rcu_is_watching+0x12/0xc0
[  166.118964][ T9191]  __do_fast_syscall_32+0x73/0x120
[  166.118979][ T9191]  do_fast_syscall_32+0x32/0x80
[  166.118993][ T9191]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  166.119006][ T9191] RIP: 0023:0xf73ce579
[  166.119014][ T9191] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  166.119025][ T9191] RSP: 002b:00000000f5056590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  166.119035][ T9191] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5056620
[  166.119042][ T9191] RDX: 000000000000000f RSI: 00000000f73bcff4 RDI: 0000000000000000
[  166.119048][ T9191] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  166.119053][ T9191] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  166.119059][ T9191] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  166.119070][ T9191]  </TASK>
[  166.223652][ T9195] bond0: option ad_select: unable to set because the bond device is up
[  166.346907][ T5946] Bluetooth: hci3: Malformed Event: 0x13
[  166.515395][ T9210] syz.1.888: attempt to access beyond end of device
[  166.515395][ T9210] nbd1: rw=0, sector=64, nr_sectors = 1 limit=0
[  166.519087][ T9210] syz.1.888: attempt to access beyond end of device
[  166.519087][ T9210] nbd1: rw=0, sector=256, nr_sectors = 1 limit=0
[  166.523315][ T9210] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  166.526094][ T9210] syz.1.888: attempt to access beyond end of device
[  166.526094][ T9210] nbd1: rw=0, sector=512, nr_sectors = 1 limit=0
[  166.530012][ T9210] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  166.533495][ T9210] syz.1.888: attempt to access beyond end of device
[  166.533495][ T9210] nbd1: rw=0, sector=64, nr_sectors = 2 limit=0
[  166.537070][ T9210] syz.1.888: attempt to access beyond end of device
[  166.537070][ T9210] nbd1: rw=0, sector=512, nr_sectors = 2 limit=0
[  166.541362][ T9210] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  166.544606][ T9210] syz.1.888: attempt to access beyond end of device
[  166.544606][ T9210] nbd1: rw=0, sector=1024, nr_sectors = 2 limit=0
[  166.548153][ T9210] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  166.550948][ T9210] syz.1.888: attempt to access beyond end of device
[  166.550948][ T9210] nbd1: rw=0, sector=64, nr_sectors = 4 limit=0
[  166.554556][ T9210] syz.1.888: attempt to access beyond end of device
[  166.554556][ T9210] nbd1: rw=0, sector=1024, nr_sectors = 4 limit=0
[  166.557932][ T9210] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  166.560975][ T9210] syz.1.888: attempt to access beyond end of device
[  166.560975][ T9210] nbd1: rw=0, sector=2048, nr_sectors = 4 limit=0
[  166.565825][ T9210] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  166.569718][ T9210] syz.1.888: attempt to access beyond end of device
[  166.569718][ T9210] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[  166.584348][ T9210] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  166.587355][ T9210] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  166.590194][ T9210] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1)
[  166.593340][ T9211] netlink: 8 bytes leftover after parsing attributes in process `syz.3.887'.
[  166.817111][ T9214] netlink: 400 bytes leftover after parsing attributes in process `syz.2.889'.
[  167.104847][ T9221] program syz.0.890 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  167.134378][ T9223] netlink: 28 bytes leftover after parsing attributes in process `syz.0.891'.
[  167.137166][ T9223] netlink: 28 bytes leftover after parsing attributes in process `syz.0.891'.
[  168.441053][ T9263] netlink: 8 bytes leftover after parsing attributes in process `syz.1.901'.
[  168.676995][ T9240] netlink: 'syz.3.897': attribute type 25 has an invalid length.
[  168.928658][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  168.928670][   T40] audit: type=1326 audit(1743029090.933:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.906" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  168.937764][   T40] audit: type=1326 audit(1743029090.933:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.906" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  169.009512][   T40] audit: type=1326 audit(1743029091.013:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.906" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  169.016410][   T40] audit: type=1326 audit(1743029091.013:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.906" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  169.026144][   T40] audit: type=1326 audit(1743029091.013:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.906" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  169.034394][   T40] audit: type=1326 audit(1743029091.023:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.906" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  169.041517][   T40] audit: type=1326 audit(1743029091.023:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.906" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  169.048377][   T40] audit: type=1326 audit(1743029091.023:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.906" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  169.055632][   T40] audit: type=1326 audit(1743029091.033:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.906" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  169.063207][   T40] audit: type=1326 audit(1743029091.033:1276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.0.906" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  169.251722][ T9291] vivid-007: =================  START STATUS  =================
[  169.254694][ T9291] vivid-007: Generate PTS: true
[  169.256464][ T9291] vivid-007: Generate SCR: true
[  169.258194][ T9291] tpg source WxH: 640x360 (Y'CbCr)
[  169.260003][ T9291] tpg field: 1
[  169.261254][ T9291] tpg crop: (0,0)/640x360
[  169.263398][ T9291] tpg compose: (0,0)/640x360
[  169.265129][ T9291] tpg colorspace: 8
[  169.266682][ T9291] tpg transfer function: 0/0
[  169.268404][ T9291] tpg Y'CbCr encoding: 0/0
[  169.269916][ T9291] tpg quantization: 0/0
[  169.271358][ T9291] tpg RGB range: 0/2
[  169.272877][ T9291] vivid-007: ==================  END STATUS  ==================
[  169.352614][ T6119] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  169.425543][ T9290] netlink: 'syz.3.913': attribute type 25 has an invalid length.
[  169.513842][ T6119] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  169.516844][ T6119] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  169.519317][ T6119] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  169.522749][ T6119] usb 6-1: config 0 interface 0 has no altsetting 0
[  169.525651][ T6119] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  169.528079][ T6119] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  169.531086][ T6119] usb 6-1: config 0 interface 0 has no altsetting 0
[  169.534393][ T6119] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  169.536851][ T6119] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  169.539812][ T6119] usb 6-1: config 0 interface 0 has no altsetting 0
[  169.552616][ T6119] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  169.555914][ T6119] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  169.560101][ T6119] usb 6-1: config 0 interface 0 has no altsetting 0
[  169.564101][ T6119] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  169.567454][ T6119] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  169.571151][ T5946] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  169.571369][ T6119] usb 6-1: config 0 interface 0 has no altsetting 0
[  169.577458][ T6119] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  169.580750][ T6119] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  169.584679][ T6119] usb 6-1: config 0 interface 0 has no altsetting 0
[  169.588321][ T6119] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  169.591647][ T6119] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  169.596128][ T6119] usb 6-1: config 0 interface 0 has no altsetting 0
[  169.599738][ T6119] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  169.604384][ T6119] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  169.608545][ T6119] usb 6-1: config 0 interface 0 has no altsetting 0
[  169.612982][ T6119] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  169.616387][ T6119] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  169.619428][ T6119] usb 6-1: Product: syz
[  169.620647][ T6119] usb 6-1: Manufacturer: syz
[  169.622014][ T6119] usb 6-1: SerialNumber: syz
[  169.624412][ T6119] usb 6-1: config 0 descriptor??
[  169.629589][ T6119] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[  169.884371][    C0] usb 6-1: yurex_control_callback - control failed: -71
[  169.887287][ T6119] usb 6-1: USB disconnect, device number 5
[  169.890904][ T6119] yurex 6-1:0.0: USB YUREX #0 now disconnected
[  169.900432][ T9285] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  169.905778][ T9285] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  169.956245][ T9310] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  169.965580][ T9310] tmpfs: Unknown parameter 'm}ol'
[  170.118089][ T9315] input: syz0 as /devices/virtual/input/input22
[  170.149279][ T9317] vivid-007: =================  START STATUS  =================
[  170.152081][ T9317] vivid-007: Generate PTS: true
[  170.154725][ T9317] vivid-007: Generate SCR: true
[  170.156663][ T9317] tpg source WxH: 640x360 (Y'CbCr)
[  170.158525][ T9317] tpg field: 1
[  170.159828][ T9317] tpg crop: (0,0)/640x360
[  170.161433][ T9317] tpg compose: (0,0)/640x360
[  170.163992][ T9317] tpg colorspace: 8
[  170.165560][ T9317] tpg transfer function: 0/0
[  170.167262][ T9317] tpg Y'CbCr encoding: 0/0
[  170.168924][ T9317] tpg quantization: 0/0
[  170.170501][ T9317] tpg RGB range: 0/2
[  170.172002][ T9317] vivid-007: ==================  END STATUS  ==================
[  171.221129][ T9333] /dev/sg0: Can't lookup blockdev
[  171.312998][  T834] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  171.864762][ T9360] netlink: 8 bytes leftover after parsing attributes in process `syz.0.928'.
[  171.879657][ T9360] xt_connbytes: Forcing CT accounting to be enabled
[  171.882052][ T9360] Cannot find del_set index 0 as target
[  172.465002][ T9369] vivid-007: =================  START STATUS  =================
[  172.467919][ T9369] vivid-007: Generate PTS: true
[  172.469779][ T9369] vivid-007: Generate SCR: true
[  172.471636][ T9369] tpg source WxH: 640x360 (Y'CbCr)
[  172.474207][ T9369] tpg field: 1
[  172.475304][ T9369] tpg crop: (0,0)/640x360
[  172.476556][ T9369] tpg compose: (0,0)/640x360
[  172.477910][ T9369] tpg colorspace: 8
[  172.479018][ T9369] tpg transfer function: 0/0
[  172.480405][ T9369] tpg Y'CbCr encoding: 0/0
[  172.481781][ T9369] tpg quantization: 0/0
[  172.557512][ T9369] tpg RGB range: 0/2
[  172.558670][ T9369] vivid-007: ==================  END STATUS  ==================
[  178.214937][ T5946] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  178.480816][ T9408] netlink: 8 bytes leftover after parsing attributes in process `syz.2.936'.
[  178.482555][  T835] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  178.645025][  T835] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  178.648650][  T835] usb 5-1: config 0 interface 0 has no altsetting 0
[  178.653097][  T835] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  178.655852][  T835] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  178.658326][  T835] usb 5-1: Product: syz
[  178.659953][  T835] usb 5-1: Manufacturer: syz
[  178.661539][  T835] usb 5-1: SerialNumber: syz
[  178.664336][  T835] usb 5-1: config 0 descriptor??
[  178.668543][  T835] usb 5-1: selecting invalid altsetting 0
[  178.873761][  T835] usb 5-1: USB disconnect, device number 8
[  179.242184][ T1137] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  179.311961][ T1137] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  179.410154][ T5950] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  179.415008][ T5950] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  179.418880][ T5950] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  179.422751][ T5950] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  179.425522][ T5950] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  179.427748][ T5950] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  179.440313][ T1137] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  179.503234][ T9420] chnl_net:caif_netlink_parms(): no params data found
[  179.544099][ T1137] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  179.567953][ T9420] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.569995][ T9420] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.571918][ T9420] bridge_slave_0: entered allmulticast mode
[  179.574170][ T9420] bridge_slave_0: entered promiscuous mode
[  179.576591][ T9420] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.578509][ T9420] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.580501][ T9420] bridge_slave_1: entered allmulticast mode
[  179.590210][ T9420] bridge_slave_1: entered promiscuous mode
[  179.611372][ T9432] vivid-007: =================  START STATUS  =================
[  179.613325][ T9420] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  179.614196][ T9432] vivid-007: Generate PTS: true
[  179.618268][ T9420] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  179.619247][ T9432] vivid-007: Generate SCR: true
[  179.623721][ T9432] tpg source WxH: 640x360 (Y'CbCr)
[  179.625355][ T9432] tpg field: 1
[  179.626783][ T9432] tpg crop: (0,0)/640x360
[  179.628203][ T9432] tpg compose: (0,0)/640x360
[  179.629721][ T9432] tpg colorspace: 8
[  179.630908][ T9432] tpg transfer function: 0/0
[  179.633283][ T9432] tpg Y'CbCr encoding: 0/0
[  179.634716][ T9432] tpg quantization: 0/0
[  179.636029][ T9432] tpg RGB range: 0/2
[  179.637300][ T9432] vivid-007: ==================  END STATUS  ==================
[  179.655428][ T9420] team0: Port device team_slave_0 added
[  179.666901][ T9420] team0: Port device team_slave_1 added
[  179.718791][ T9420] batman_adv: batadv0: Adding interface: batadv_slave_0
[  179.721348][ T9420] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  179.730389][ T9420] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  179.734157][ T1137] bridge_slave_1: left allmulticast mode
[  179.736486][ T1137] bridge_slave_1: left promiscuous mode
[  179.739835][ T1137] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.745045][ T1137] bridge_slave_0: left allmulticast mode
[  179.747156][ T1137] bridge_slave_0: left promiscuous mode
[  179.750663][ T1137] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.807961][ T1137] batman_adv: batadv0: Removing interface: ip6gretap1
[  180.097838][ T5950] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  180.217629][ T1137] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  180.220532][ T1137] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  180.223492][ T1137] bond0 (unregistering): Released all slaves
[  180.282044][ T1137] bond1 (unregistering): Released all slaves
[  180.333152][   T24] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  180.343113][ T1137] bond2 (unregistering): Released all slaves
[  180.409586][ T1137] bond3 (unregistering): Released all slaves
[  180.477340][ T1137] bond4 (unregistering): Released all slaves
[  180.483744][   T24] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  180.486942][   T24] usb 6-1: config 0 interface 0 has no altsetting 0
[  180.487313][ T9420] batman_adv: batadv0: Adding interface: batadv_slave_1
[  180.490248][   T24] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  180.490919][ T9420] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  180.494095][   T24] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  180.501937][ T9420] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  180.509440][   T24] usb 6-1: Product: syz
[  180.511006][   T24] usb 6-1: Manufacturer: syz
[  180.514468][   T24] usb 6-1: SerialNumber: syz
[  180.523299][   T24] usb 6-1: config 0 descriptor??
[  180.529310][   T24] usb 6-1: selecting invalid altsetting 0
[  180.590114][ T9420] hsr_slave_0: entered promiscuous mode
[  180.603025][ T9420] hsr_slave_1: entered promiscuous mode
[  180.605548][ T9420] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  180.608253][ T9420] Cannot create hsr debugfs directory
[  180.610265][ T1137] : left promiscuous mode
[  180.728152][  T834] usb 6-1: USB disconnect, device number 6
[  180.734165][ T9420] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  180.742802][ T9420] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  180.749246][ T9420] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  180.758880][ T9420] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  180.772049][ T9456] netlink: 400 bytes leftover after parsing attributes in process `syz.0.948'.
[  180.816393][ T9420] 8021q: adding VLAN 0 to HW filter on device bond0
[  180.823241][ T9420] 8021q: adding VLAN 0 to HW filter on device team0
[  180.830308][  T103] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.832339][  T103] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.838941][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.842664][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.900432][ T1137] hsr_slave_0: left promiscuous mode
[  180.903900][ T1137] hsr_slave_1: left promiscuous mode
[  180.906565][ T1137] batman_adv: batadv0: Removing interface: batadv_slave_0
[  180.964741][ T9473] netlink: 24 bytes leftover after parsing attributes in process `syz.2.950'.
[  181.465590][ T5950] Bluetooth: hci3: command tx timeout
[  181.888618][ T9420] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  181.891705][ T9420] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  182.010940][ T9420] 8021q: adding VLAN 0 to HW filter on device batadv0
[  182.019795][ T9495] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  182.021925][ T9495] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  182.024144][ T9495] vhci_hcd vhci_hcd.0: Device attached
[  182.157166][ T9420] veth0_vlan: entered promiscuous mode
[  182.166057][ T9420] veth1_vlan: entered promiscuous mode
[  182.168056][ T9510] vivid-007: =================  START STATUS  =================
[  182.180123][ T9420] veth0_macvtap: entered promiscuous mode
[  182.193216][ T9420] veth1_macvtap: entered promiscuous mode
[  182.198039][ T9420] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  182.201228][ T9420] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  182.206493][ T9420] batman_adv: batadv0: Interface activated: batadv_slave_0
[  182.214356][ T9420] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  182.217214][ T9420] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  182.227233][ T9420] batman_adv: batadv0: Interface activated: batadv_slave_1
[  182.242800][ T9420] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  182.245179][ T9420] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  182.247492][ T9420] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  182.249791][ T9420] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  182.259235][ T9496] vhci_hcd: connection closed
[  182.270833][ T1178] vhci_hcd: stop threads
[  182.274603][ T6119] usb 41-1: new low-speed USB device number 2 using vhci_hcd
[  182.276753][ T1178] vhci_hcd: release socket
[  182.279928][ T1178] vhci_hcd: disconnect device
[  182.342251][ T9510] vivid-007: Generate PTS: true
[  182.344269][ T9510] vivid-007: Generate SCR: true
[  182.346231][ T9510] tpg source WxH: 640x360 (Y'CbCr)
[  182.348192][ T9510] tpg field: 1
[  182.349756][ T9510] tpg crop: (0,0)/640x360
[  182.351470][ T9510] tpg compose: (0,0)/640x360
[  182.353278][ T9510] tpg colorspace: 8
[  182.354741][ T9510] tpg transfer function: 0/0
[  182.356518][ T9510] tpg Y'CbCr encoding: 0/0
[  182.358376][ T9510] tpg quantization: 0/0
[  182.359689][ T9510] tpg RGB range: 0/2
[  182.364821][ T9510] vivid-007: ==================  END STATUS  ==================
[  182.372236][  T103] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  182.375296][  T103] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  182.388967][  T103] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  182.392015][  T103] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  182.434723][ T1137] IPVS: stop unused estimator thread 0...
[  182.852411][ T5950] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  183.092667][ T9463] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  183.243870][ T9463] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  183.247530][ T9463] usb 5-1: config 0 interface 0 has no altsetting 0
[  183.251456][ T9463] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  183.254475][ T9463] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  183.256843][ T9463] usb 5-1: Product: syz
[  183.258179][ T9463] usb 5-1: Manufacturer: syz
[  183.259544][ T9463] usb 5-1: SerialNumber: syz
[  183.265315][ T9463] usb 5-1: config 0 descriptor??
[  183.269666][ T9463] usb 5-1: selecting invalid altsetting 0
[  183.330771][ T5950] Bluetooth: hci1: Malformed Event: 0x13
[  183.366341][ T9572] netlink: 4 bytes leftover after parsing attributes in process `syz.1.960'.
[  183.468854][   T57] usb 5-1: USB disconnect, device number 9
[  183.542841][ T5950] Bluetooth: hci3: command tx timeout
[  183.569216][ T9583] netlink: 253 bytes leftover after parsing attributes in process `syz.1.962'.
[  183.571922][ T9583] netlink: 253 bytes leftover after parsing attributes in process `syz.1.962'.
[  183.575295][ T9583] netlink: 253 bytes leftover after parsing attributes in process `syz.1.962'.
[  183.577915][ T9583] netlink: 253 bytes leftover after parsing attributes in process `syz.1.962'.
[  183.580378][ T9583] netlink: 253 bytes leftover after parsing attributes in process `syz.1.962'.
[  183.582958][ T9583] netlink: 253 bytes leftover after parsing attributes in process `syz.1.962'.
[  183.585431][ T9583] netlink: 40 bytes leftover after parsing attributes in process `syz.1.962'.
[  183.744467][ T9600] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  183.868500][ T5950] Bluetooth: hci1: Malformed Event: 0x13
[  184.087952][ T9612] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input23
[  184.268919][ T9622] netlink: 400 bytes leftover after parsing attributes in process `syz.0.974'.
[  184.368578][ T5950] Bluetooth: hci0: Malformed Event: 0x13
[  184.462241][ T1137] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  184.465342][ T1137] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  185.184064][ T5950] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  185.422573][ T5320] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  185.483884][ T9665] 8021q: VLANs not supported on syzkaller1
[  185.573699][ T5320] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  185.577226][ T5320] usb 7-1: config 0 interface 0 has no altsetting 0
[  185.581280][ T5320] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  185.584691][ T5320] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  185.587395][ T5320] usb 7-1: Product: syz
[  185.588792][ T5320] usb 7-1: Manufacturer: syz
[  185.590322][ T5320] usb 7-1: SerialNumber: syz
[  185.595618][ T5320] usb 7-1: config 0 descriptor??
[  185.599272][ T5320] usb 7-1: selecting invalid altsetting 0
[  185.622577][ T5950] Bluetooth: hci3: command tx timeout
[  185.775189][ T9671] FAULT_INJECTION: forcing a failure.
[  185.775189][ T9671] name failslab, interval 1, probability 0, space 0, times 0
[  185.778744][ T9671] CPU: 3 UID: 0 PID: 9671 Comm: syz.0.987 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  185.778763][ T9671] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.778772][ T9671] Call Trace:
[  185.778777][ T9671]  <TASK>
[  185.778784][ T9671]  dump_stack_lvl+0x16c/0x1f0
[  185.778809][ T9671]  should_fail_ex+0x512/0x640
[  185.778824][ T9671]  ? fs_reclaim_acquire+0xae/0x150
[  185.778841][ T9671]  ? tomoyo_encode2+0x100/0x3e0
[  185.778862][ T9671]  should_failslab+0xc2/0x120
[  185.778883][ T9671]  __kmalloc_noprof+0xd2/0x510
[  185.778898][ T9671]  ? d_absolute_path+0x136/0x1a0
[  185.778911][ T9671]  tomoyo_encode2+0x100/0x3e0
[  185.778928][ T9671]  tomoyo_encode+0x29/0x50
[  185.778943][ T9671]  tomoyo_realpath_from_path+0x18f/0x6e0
[  185.778961][ T9671]  tomoyo_path_number_perm+0x245/0x580
[  185.778975][ T9671]  ? tomoyo_path_number_perm+0x237/0x580
[  185.778989][ T9671]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  185.779004][ T9671]  ? find_held_lock+0x2b/0x80
[  185.779022][ T9671]  ? find_held_lock+0x2b/0x80
[  185.779032][ T9671]  ? __fget_files+0x204/0x3c0
[  185.779048][ T9671]  ? __fget_files+0x20e/0x3c0
[  185.779063][ T9671]  security_file_ioctl_compat+0x9b/0x240
[  185.779079][ T9671]  __do_compat_sys_ioctl+0x4e/0x2c0
[  185.779093][ T9671]  __do_fast_syscall_32+0x73/0x120
[  185.779109][ T9671]  do_fast_syscall_32+0x32/0x80
[  185.779124][ T9671]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.779136][ T9671] RIP: 0023:0xf73ce579
[  185.779144][ T9671] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.779154][ T9671] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  185.779165][ T9671] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0185648
[  185.779171][ T9671] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  185.779177][ T9671] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.779183][ T9671] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.779189][ T9671] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.779199][ T9671]  </TASK>
[  185.779207][ T9671] ERROR: Out of memory at tomoyo_realpath_from_path.
[  185.799350][ T5320] usb 7-1: USB disconnect, device number 6
[  185.897556][ T5950] Bluetooth: hci0: Malformed Event: 0x13
[  186.405298][ T9689] bio_check_eod: 2 callbacks suppressed
[  186.405309][ T9689] syz.1.994: attempt to access beyond end of device
[  186.405309][ T9689] nbd1: rw=0, sector=64, nr_sectors = 1 limit=0
[  186.410661][ T9689] syz.1.994: attempt to access beyond end of device
[  186.410661][ T9689] nbd1: rw=0, sector=256, nr_sectors = 1 limit=0
[  186.414542][ T9689] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  186.417441][ T9689] syz.1.994: attempt to access beyond end of device
[  186.417441][ T9689] nbd1: rw=0, sector=512, nr_sectors = 1 limit=0
[  186.422272][ T9689] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  186.426640][ T9689] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  186.429517][ T9689] UDF-fs: Scanning with blocksize 512 failed
[  186.432247][ T9689] syz.1.994: attempt to access beyond end of device
[  186.432247][ T9689] nbd1: rw=0, sector=64, nr_sectors = 2 limit=0
[  186.437689][ T9689] syz.1.994: attempt to access beyond end of device
[  186.437689][ T9689] nbd1: rw=0, sector=512, nr_sectors = 2 limit=0
[  186.441614][ T9689] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  186.445779][ T9689] syz.1.994: attempt to access beyond end of device
[  186.445779][ T9689] nbd1: rw=0, sector=1024, nr_sectors = 2 limit=0
[  186.450668][ T9689] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  186.454331][ T9689] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  186.456439][ T9689] UDF-fs: Scanning with blocksize 1024 failed
[  186.458457][ T9689] syz.1.994: attempt to access beyond end of device
[  186.458457][ T9689] nbd1: rw=0, sector=64, nr_sectors = 4 limit=0
[  186.462580][ T9689] syz.1.994: attempt to access beyond end of device
[  186.462580][ T9689] nbd1: rw=0, sector=1024, nr_sectors = 4 limit=0
[  186.467369][ T9689] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  186.470967][ T9689] syz.1.994: attempt to access beyond end of device
[  186.470967][ T9689] nbd1: rw=0, sector=2048, nr_sectors = 4 limit=0
[  186.476091][ T9689] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  186.478835][ T9689] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  186.480975][ T9689] UDF-fs: Scanning with blocksize 2048 failed
[  186.483518][ T9689] syz.1.994: attempt to access beyond end of device
[  186.483518][ T9689] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[  186.487715][ T9689] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  186.490548][ T9689] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  186.493590][ T9689] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found
[  186.495796][ T9689] UDF-fs: Scanning with blocksize 4096 failed
[  186.497505][ T9689] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1)
[  186.616656][ T9688] dccp_close: ABORT with 2 bytes unread
[  186.713731][ T5950] Bluetooth: hci1: Malformed Event: 0x13
[  187.384538][ T6119] vhci_hcd: vhci_device speed not set
[  187.507648][ T5950] Bluetooth: unknown link type 108
[  187.509647][ T5950] Bluetooth: hci3: connection err: -111
[  187.692591][ T5950] Bluetooth: hci3: command tx timeout
[  188.092018][ T9727] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1006'.
[  188.410375][ T9748] overlayfs: failed to resolve './file0/file0': -2
[  188.445942][ T9746] Cannot find add_set index 3 as target
[  188.454320][ T9750] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1010'.
[  189.107192][ T9760] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1014'.
[  189.322685][   T24] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  189.473759][   T24] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  189.476230][   T24] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  189.479224][   T24] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  189.492527][   T24] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  189.495563][   T24] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  189.499886][   T24] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  189.502904][   T24] usb 5-1: New USB device strings: Mfr=1, Product=11, SerialNumber=0
[  189.505212][   T24] usb 5-1: Product: syz
[  189.506398][   T24] usb 5-1: Manufacturer: syz
[  189.553638][ T5950] Bluetooth: hci3: Malformed Event: 0x13
[  189.712986][ T9758] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1013'.
[  189.728741][ T6003] usb 5-1: USB disconnect, device number 10
[  190.006877][ T9794] netlink: 'syz.4.1026': attribute type 10 has an invalid length.
[  190.010716][ T9794] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  190.055203][ T9800] 8021q: VLANs not supported on lo
[  190.058160][ T9800] netlink: 'syz.1.1029': attribute type 10 has an invalid length.
[  190.066673][ T9800] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  190.071727][ T9800] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1029'.
[  190.082985][ T9800] bond0: (slave bridge0): Releasing backup interface
[  190.878038][ T9826] netlink: 400 bytes leftover after parsing attributes in process `syz.1.1037'.
[  191.075421][ T9839] netlink: 'syz.2.1040': attribute type 1 has an invalid length.
[  191.256459][ T9844] FAULT_INJECTION: forcing a failure.
[  191.256459][ T9844] name failslab, interval 1, probability 0, space 0, times 0
[  191.259935][ T9844] CPU: 1 UID: 0 PID: 9844 Comm: syz.4.1041 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  191.259960][ T9844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  191.259967][ T9844] Call Trace:
[  191.259971][ T9844]  <TASK>
[  191.259976][ T9844]  dump_stack_lvl+0x16c/0x1f0
[  191.259995][ T9844]  should_fail_ex+0x512/0x640
[  191.260006][ T9844]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  191.260023][ T9844]  should_failslab+0xc2/0x120
[  191.260039][ T9844]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  191.260053][ T9844]  ? __kasan_slab_free+0x51/0x70
[  191.260068][ T9844]  ? kmem_cache_free+0x2d4/0x4d0
[  191.260081][ T9844]  ? __alloc_skb+0x2b2/0x380
[  191.260097][ T9844]  __alloc_skb+0x2b2/0x380
[  191.260114][ T9844]  ? __pfx___alloc_skb+0x10/0x10
[  191.260131][ T9844]  alloc_skb_with_frags+0xe0/0x860
[  191.260141][ T9844]  ? aa_label_sk_perm+0x19b/0x5a0
[  191.260157][ T9844]  sock_alloc_send_pskb+0x7fb/0x990
[  191.260171][ T9844]  ? kasan_quarantine_put+0x10a/0x240
[  191.260187][ T9844]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  191.260200][ T9844]  ? kmem_cache_free+0x2d4/0x4d0
[  191.260213][ T9844]  ? skb_free_head+0x108/0x1d0
[  191.260225][ T9844]  ? kfree_skbmem+0x1a4/0x1f0
[  191.260240][ T9844]  unix_dgram_sendmsg+0x463/0x1910
[  191.260259][ T9844]  ? aa_sk_perm+0x2f4/0xb10
[  191.260284][ T9844]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  191.260303][ T9844]  ? __pfx_aa_sk_perm+0x10/0x10
[  191.260317][ T9844]  ? __import_iovec+0x1c8/0x660
[  191.260332][ T9844]  ____sys_sendmsg+0xa8d/0xc60
[  191.260344][ T9844]  ? __pfx_____sys_sendmsg+0x10/0x10
[  191.260355][ T9844]  ? get_compat_msghdr+0x11a/0x170
[  191.260369][ T9844]  ? __pfx__kstrtoull+0x10/0x10
[  191.260386][ T9844]  ___sys_sendmsg+0x134/0x1d0
[  191.260401][ T9844]  ? __pfx____sys_sendmsg+0x10/0x10
[  191.260421][ T9844]  ? find_held_lock+0x2b/0x80
[  191.260435][ T9844]  ? __pfx___might_resched+0x10/0x10
[  191.260449][ T9844]  __sys_sendmmsg+0x2f9/0x420
[  191.260465][ T9844]  ? __pfx___sys_sendmmsg+0x10/0x10
[  191.260483][ T9844]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  191.260502][ T9844]  ? fput+0x70/0xf0
[  191.260512][ T9844]  ? ksys_write+0x1b9/0x240
[  191.260525][ T9844]  ? __pfx_ksys_write+0x10/0x10
[  191.260540][ T9844]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  191.260553][ T9844]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  191.260568][ T9844]  __do_fast_syscall_32+0x73/0x120
[  191.260583][ T9844]  do_fast_syscall_32+0x32/0x80
[  191.260597][ T9844]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  191.260610][ T9844] RIP: 0023:0xf744e579
[  191.260618][ T9844] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  191.260628][ T9844] RSP: 002b:00000000f509455c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  191.260638][ T9844] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080002a00
[  191.260645][ T9844] RDX: 0000000000000198 RSI: 0000000000000000 RDI: 0000000000000000
[  191.260651][ T9844] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  191.260656][ T9844] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  191.260662][ T9844] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  191.260672][ T9844]  </TASK>
[  191.572045][ T5950] Bluetooth: hci0: Malformed Event: 0x13
[  191.598305][ T6003] Process accounting resumed
[  191.601119][ T9850] loop6: detected capacity change from 0 to 524287999
[  191.604260][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  191.606995][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  191.609372][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  191.611994][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  191.615080][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  191.617941][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  191.620173][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  191.622755][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  191.625116][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  191.627627][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  191.630471][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  191.633237][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  191.635850][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  191.639011][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  191.641544][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  191.644158][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  191.646499][ T9850] ldm_validate_partition_table(): Disk read failed.
[  191.648664][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  191.652211][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  191.655502][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  191.658097][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  191.694199][ T9850] Dev loop6: unable to read RDB block 0
[  191.697692][ T9850]  loop6: unable to read partition table
[  191.700114][ T9850] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  191.705079][ T9851] ldm_validate_partition_table(): Disk read failed.
[  191.707669][ T9851] Dev loop6: unable to read RDB block 0
[  191.709873][ T9851]  loop6: unable to read partition table
[  191.711636][ T9851] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  191.719484][ T5357] ldm_validate_partition_table(): Disk read failed.
[  191.721774][ T5357] Dev loop6: unable to read RDB block 0
[  191.725590][ T5357]  loop6: unable to read partition table
[  191.817617][ T9855] FAULT_INJECTION: forcing a failure.
[  191.817617][ T9855] name failslab, interval 1, probability 0, space 0, times 0
[  191.821327][ T9855] CPU: 3 UID: 0 PID: 9855 Comm: syz.1.1046 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  191.821353][ T9855] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  191.821361][ T9855] Call Trace:
[  191.821369][ T9855]  <TASK>
[  191.821373][ T9855]  dump_stack_lvl+0x16c/0x1f0
[  191.821392][ T9855]  should_fail_ex+0x512/0x640
[  191.821402][ T9855]  ? __kvmalloc_node_noprof+0x122/0x600
[  191.821418][ T9855]  should_failslab+0xc2/0x120
[  191.821435][ T9855]  __kvmalloc_node_noprof+0x135/0x600
[  191.821448][ T9855]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  191.821463][ T9855]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  191.821478][ T9855]  ? video_usercopy+0xa7a/0x1700
[  191.821494][ T9855]  ? video_usercopy+0xa7a/0x1700
[  191.821506][ T9855]  video_usercopy+0xa7a/0x1700
[  191.821519][ T9855]  ? __pfx___video_do_ioctl+0x10/0x10
[  191.821531][ T9855]  ? __pfx_video_usercopy+0x10/0x10
[  191.821549][ T9855]  v4l2_ioctl+0x1ba/0x250
[  191.821562][ T9855]  v4l2_compat_ioctl32+0x214/0x2c0
[  191.821573][ T9855]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  191.821584][ T9855]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  191.821597][ T9855]  __do_fast_syscall_32+0x73/0x120
[  191.821613][ T9855]  do_fast_syscall_32+0x32/0x80
[  191.821627][ T9855]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  191.821640][ T9855] RIP: 0023:0xf73de579
[  191.821648][ T9855] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  191.821658][ T9855] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  191.821669][ T9855] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0185648
[  191.821675][ T9855] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  191.821681][ T9855] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  191.821686][ T9855] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  191.821692][ T9855] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  191.821702][ T9855]  </TASK>
[  192.117279][ T9875] dlm: no locking on control device
[  192.130122][ T9875] dlm: non-version read from control device 8253
[  192.137951][ T5950] Bluetooth: hci1: Malformed Event: 0x13
[  192.192726][ T9883] Cannot find add_set index 3 as target
[  192.198635][ T9883] overlayfs: failed to resolve './file0/file0': -2
[  192.306589][ T9881] netlink: 2048 bytes leftover after parsing attributes in process `syz.1.1053'.
[  192.309306][ T9881] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1053'.
[  193.117305][ T9927] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1057'.
[  193.409459][ T9935] netlink: 100 bytes leftover after parsing attributes in process `syz.4.1063'.
[  193.614065][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  193.617017][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  193.678208][ T9955] program syz.1.1066 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  193.980453][   T40] kauditd_printk_skb: 20 callbacks suppressed
[  193.980464][   T40] audit: type=1326 audit(1743029115.983:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9973 comm="syz.2.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f37579 code=0x7ffc0000
[  193.989973][   T40] audit: type=1326 audit(1743029115.983:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9973 comm="syz.2.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f37579 code=0x7ffc0000
[  193.998860][   T40] audit: type=1326 audit(1743029115.983:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9973 comm="syz.2.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f37579 code=0x7ffc0000
[  194.006653][   T40] audit: type=1326 audit(1743029115.983:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9973 comm="syz.2.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f37579 code=0x7ffc0000
[  194.015204][   T40] audit: type=1326 audit(1743029115.983:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9973 comm="syz.2.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=349 compat=1 ip=0xf7f37579 code=0x7ffc0000
[  194.021550][   T40] audit: type=1326 audit(1743029115.983:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9973 comm="syz.2.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f37579 code=0x7ffc0000
[  194.023131][ T9979] netlink: 400 bytes leftover after parsing attributes in process `syz.4.1073'.
[  194.027879][   T40] audit: type=1326 audit(1743029115.983:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9973 comm="syz.2.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=349 compat=1 ip=0xf7f37579 code=0x7ffc0000
[  194.037622][   T40] audit: type=1326 audit(1743029115.983:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9973 comm="syz.2.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f37579 code=0x7ffc0000
[  194.040048][ T9979] vlan0: entered promiscuous mode
[  194.051111][ T9981] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1074'.
[  194.064751][ T9979] team0: Port device vlan0 added
[  194.198250][ T9985] netlink: 253 bytes leftover after parsing attributes in process `syz.2.1076'.
[  194.201244][ T9985] netlink: 253 bytes leftover after parsing attributes in process `syz.2.1076'.
[  194.205229][ T9985] netlink: 253 bytes leftover after parsing attributes in process `syz.2.1076'.
[  194.207997][ T9985] netlink: 253 bytes leftover after parsing attributes in process `syz.2.1076'.
[  194.215221][ T9985] netlink: 253 bytes leftover after parsing attributes in process `syz.2.1076'.
[  194.217744][ T9985] netlink: 253 bytes leftover after parsing attributes in process `syz.2.1076'.
[  194.220208][ T9985] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1076'.
[  194.579964][T10005] ieee802154 phy0 wpan0: encryption failed: -90
[  195.422068][ T5950] Bluetooth: hci0: Malformed Event: 0x13
[  195.818724][ T5950] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  196.062572][ T9463] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  196.224949][ T9463] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  196.227851][ T9463] usb 5-1: config 0 interface 0 has no altsetting 0
[  196.231331][ T9463] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  196.234108][ T9463] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  196.236521][ T9463] usb 5-1: Product: syz
[  196.237733][ T9463] usb 5-1: Manufacturer: syz
[  196.239272][ T9463] usb 5-1: SerialNumber: syz
[  196.280031][ T9463] usb 5-1: config 0 descriptor??
[  196.303781][ T9463] usb 5-1: selecting invalid altsetting 0
[  196.499575][ T9463] usb 5-1: USB disconnect, device number 11
[  197.274000][T10082] sch_tbf: burst 0 is lower than device bridge_slave_0 mtu (1514) !
[  197.411092][T10087] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1093'.
[  197.586240][T10090] 9pnet_virtio: no channels available for device syz
[  197.590409][T10090] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1095'.
[  197.790928][T10098] program syz.2.1100 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  197.817412][T10100] program syz.2.1101 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  198.132530][T10113] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1104'.
[  198.844581][T10129] netlink: 'syz.2.1111': attribute type 1 has an invalid length.
[  198.852773][T10129] 8021q: adding VLAN 0 to HW filter on device bond2
[  198.857573][T10133] nfs: Unknown parameter '$#'
[  198.925516][T10139] input: syz1 as /devices/virtual/input/input24
[  199.478856][T10150] vivid-007: =================  START STATUS  =================
[  199.481091][T10150] vivid-007: Generate PTS: true
[  199.486871][T10150] vivid-007: Generate SCR: true
[  199.489226][T10150] tpg source WxH: 640x360 (Y'CbCr)
[  199.492677][T10150] tpg field: 1
[  199.496644][T10150] tpg crop: (0,0)/640x360
[  199.499973][T10150] tpg compose: (0,0)/640x360
[  199.502163][T10150] tpg colorspace: 8
[  199.504570][T10150] tpg transfer function: 0/0
[  199.505999][T10150] tpg Y'CbCr encoding: 0/0
[  199.508025][T10150] tpg quantization: 0/0
[  199.510415][T10150] tpg RGB range: 0/2
[  199.511670][T10150] vivid-007: ==================  END STATUS  ==================
[  199.577577][T10153] batman_adv: batadv0: Adding interface: ip6gretap3
[  199.579885][T10153] batman_adv: batadv0: Interface activated: ip6gretap3
[  199.788132][T10160] batman_adv: batadv0: Adding interface: ip6gretap1
[  199.790337][T10160] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1500.
[  199.796749][T10160] batman_adv: batadv0: Interface activated: ip6gretap1
[  200.171409][T10167] FAULT_INJECTION: forcing a failure.
[  200.171409][T10167] name failslab, interval 1, probability 0, space 0, times 0
[  200.176285][T10167] CPU: 1 UID: 0 PID: 10167 Comm: syz.4.1122 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  200.176310][T10167] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.176317][T10167] Call Trace:
[  200.176321][T10167]  <TASK>
[  200.176325][T10167]  dump_stack_lvl+0x16c/0x1f0
[  200.176358][T10167]  should_fail_ex+0x512/0x640
[  200.176376][T10167]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  200.176392][T10167]  should_failslab+0xc2/0x120
[  200.176409][T10167]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  200.176423][T10167]  ? getname_flags.part.0+0x48/0x540
[  200.176436][T10167]  getname_flags.part.0+0x48/0x540
[  200.176448][T10167]  getname_flags+0x93/0xf0
[  200.176462][T10167]  __io_openat_prep+0x16d/0x420
[  200.176478][T10167]  io_submit_sqes+0x86e/0x2670
[  200.176494][T10167]  __do_sys_io_uring_enter+0xd5e/0x1670
[  200.176513][T10167]  ? __pfx___schedule+0x10/0x10
[  200.176531][T10167]  ? __fget_files+0x20e/0x3c0
[  200.176551][T10167]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  200.176571][T10167]  ? fput+0x70/0xf0
[  200.176585][T10167]  ? ksys_write+0x1b9/0x240
[  200.176606][T10167]  ? rcu_is_watching+0x12/0xc0
[  200.176623][T10167]  __do_fast_syscall_32+0x73/0x120
[  200.176645][T10167]  do_fast_syscall_32+0x32/0x80
[  200.176665][T10167]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.176681][T10167] RIP: 0023:0xf744e579
[  200.176689][T10167] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  200.176699][T10167] RSP: 002b:00000000f509455c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  200.176710][T10167] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000003516
[  200.176717][T10167] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  200.176722][T10167] RBP: 00000000fffffdcf R08: 0000000000000000 R09: 0000000000000000
[  200.176728][T10167] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  200.176734][T10167] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  200.176745][T10167]  </TASK>
[  200.944851][T10182] __nla_validate_parse: 2 callbacks suppressed
[  200.944866][T10182] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1127'.
[  200.983360][T10180] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1125'.
[  201.031153][T10186] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1128'.
[  201.135357][T10193] vivid-007: =================  START STATUS  =================
[  201.137580][T10193] vivid-007: Generate PTS: true
[  201.139045][T10193] vivid-007: Generate SCR: true
[  201.140462][T10193] tpg source WxH: 640x360 (Y'CbCr)
[  201.142006][T10193] tpg field: 1
[  201.143183][T10193] tpg crop: (0,0)/640x360
[  201.144702][T10193] tpg compose: (0,0)/640x360
[  201.146083][T10193] tpg colorspace: 8
[  201.147233][T10193] tpg transfer function: 0/0
[  201.148598][T10193] tpg Y'CbCr encoding: 0/0
[  201.149952][T10193] tpg quantization: 0/0
[  201.151216][T10193] tpg RGB range: 0/2
[  201.152410][T10193] vivid-007: ==================  END STATUS  ==================
[  201.194312][   T46] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  201.198485][   T46] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.266896][   T46] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  201.269531][   T46] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.304782][ T5946] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  201.307766][ T5946] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  201.310306][ T5946] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  201.315500][ T5946] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  201.319542][ T5946] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  201.322844][ T5946] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  201.357141][   T46] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  201.359848][   T46] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.396445][T10205] netlink: 'syz.4.1131': attribute type 25 has an invalid length.
[  201.404990][T10198] chnl_net:caif_netlink_parms(): no params data found
[  201.425594][   T46] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  201.429120][   T46] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.474149][T10210] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  201.476254][T10210] batman_adv: batadv0: Removing interface: batadv_slave_0
[  201.478648][T10210] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  201.480673][T10210] batman_adv: batadv0: Removing interface: batadv_slave_1
[  201.483762][T10210] batman_adv: batadv0: Interface deactivated: ip6gretap2
[  201.485773][T10210] batman_adv: batadv0: Removing interface: ip6gretap2
[  201.555026][T10198] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.557321][T10198] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.559410][T10198] bridge_slave_0: entered allmulticast mode
[  201.562090][T10198] bridge_slave_0: entered promiscuous mode
[  201.578448][T10198] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.581254][T10198] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.585349][T10198] bridge_slave_1: entered allmulticast mode
[  201.587668][T10198] bridge_slave_1: entered promiscuous mode
[  201.620148][T10198] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.626539][T10198] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.910212][T10224] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1137'.
[  202.588398][   T46] bond0 (unregistering): Released all slaves
[  202.649359][   T46] bond1 (unregistering): Released all slaves
[  202.706660][   T46] bond2 (unregistering): Released all slaves
[  202.775401][   T46] bond3 (unregistering): Released all slaves
[  202.799083][T10232] sch_tbf: burst 0 is lower than device bridge_slave_0 mtu (1514) !
[  202.805307][T10198] team0: Port device team_slave_0 added
[  202.814210][T10198] team0: Port device team_slave_1 added
[  202.814945][ T5946] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  202.833590][ T5946] Bluetooth: hci0: Malformed Event: 0x13
[  202.836550][T10198] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.838532][T10198] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.846603][T10198] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.855115][T10198] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.856892][T10238] program syz.0.1143 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  202.856980][T10198] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.867318][T10198] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.899566][T10198] hsr_slave_0: entered promiscuous mode
[  202.901583][T10198] hsr_slave_1: entered promiscuous mode
[  202.903837][T10198] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  202.906199][T10198] Cannot create hsr debugfs directory
[  202.918607][T10243] vivid-007: =================  START STATUS  =================
[  202.932530][T10243] vivid-007: Generate PTS: true
[  202.934536][T10243] vivid-007: Generate SCR: true
[  202.935935][T10243] tpg source WxH: 640x360 (Y'CbCr)
[  202.937561][T10243] tpg field: 1
[  202.938542][T10243] tpg crop: (0,0)/640x360
[  202.943165][T10243] tpg compose: (0,0)/640x360
[  202.944530][T10243] tpg colorspace: 8
[  202.945626][T10243] tpg transfer function: 0/0
[  202.946912][T10243] tpg Y'CbCr encoding: 0/0
[  202.949543][T10243] tpg quantization: 0/0
[  202.950972][T10243] tpg RGB range: 0/2
[  202.952014][T10243] vivid-007: ==================  END STATUS  ==================
[  202.964054][T10248] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1146'.
[  203.001235][T10198] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  203.006272][T10198] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  203.016053][T10198] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  203.023229][T10198] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  203.052631][   T24] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  203.074756][T10198] 8021q: adding VLAN 0 to HW filter on device bond0
[  203.104533][T10198] 8021q: adding VLAN 0 to HW filter on device team0
[  203.110385][   T46] hsr_slave_0: left promiscuous mode
[  203.113955][   T46] hsr_slave_1: left promiscuous mode
[  203.125660][   T46] veth1_macvtap: left promiscuous mode
[  203.127341][   T46] veth0_macvtap: left promiscuous mode
[  203.128903][   T46] veth1_vlan: left promiscuous mode
[  203.130351][   T46] veth0_vlan: left promiscuous mode
[  203.205152][   T24] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  203.208999][   T24] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  203.212339][   T24] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  203.215681][   T24] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  203.219466][   T24] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  203.227191][   T24] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  203.230017][   T24] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  203.233096][   T24] usb 7-1: Product: syz
[  203.234598][   T24] usb 7-1: Manufacturer: syz
[  203.247243][   T24] cdc_wdm 7-1:1.0: skipping garbage
[  203.249132][   T24] cdc_wdm 7-1:1.0: skipping garbage
[  203.252132][   T24] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  203.254674][   T24] cdc_wdm 7-1:1.0: Unknown control protocol
[  203.373306][ T5946] Bluetooth: hci1: command tx timeout
[  203.484403][ T6564] usb 7-1: USB disconnect, device number 7
[  203.693009][ T5946] Bluetooth: hci2: Malformed Event: 0x13
[  203.972950][T10284] netlink: 'syz.2.1152': attribute type 10 has an invalid length.
[  203.975207][T10284] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1152'.
[  203.975869][ T5946] Bluetooth: Frame is too long (len 10, expected len 4)
[  204.176422][T10284] dummy0: entered promiscuous mode
[  204.178386][T10284] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  204.185315][ T1137] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.187730][ T1137] bridge0: port 1(bridge_slave_0) entered forwarding state
[  204.191547][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.193824][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  204.214993][T10288] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  204.251427][T10293] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1154'.
[  204.325011][T10198] 8021q: adding VLAN 0 to HW filter on device batadv0
[  204.666383][T10198] veth0_vlan: entered promiscuous mode
[  204.676832][T10198] veth1_vlan: entered promiscuous mode
[  204.705265][T10198] veth0_macvtap: entered promiscuous mode
[  204.711448][T10198] veth1_macvtap: entered promiscuous mode
[  204.728938][T10198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  204.732291][T10198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  204.738519][T10198] batman_adv: batadv0: Interface activated: batadv_slave_0
[  204.749224][T10198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  204.752645][T10198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  204.756810][T10198] batman_adv: batadv0: Interface activated: batadv_slave_1
[  204.765689][T10198] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  204.768191][T10198] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  204.771115][T10198] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  204.774352][T10198] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  205.099977][  T103] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  205.102262][  T103] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  205.115919][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  205.118263][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  205.157385][T10321] input: syz1 as /devices/virtual/input/input25
[  205.209879][ T5946] Bluetooth: hci1: Malformed Event: 0x13
[  205.303009][T10342] vivid-007: =================  START STATUS  =================
[  205.305947][T10342] vivid-007: Generate PTS: true
[  205.307401][T10342] vivid-007: Generate SCR: true
[  205.308870][T10342] tpg source WxH: 640x360 (Y'CbCr)
[  205.310808][T10342] tpg field: 1
[  205.312093][T10342] tpg crop: (0,0)/640x360
[  205.314545][T10342] tpg compose: (0,0)/640x360
[  205.316030][T10342] tpg colorspace: 8
[  205.317265][T10342] tpg transfer function: 0/0
[  205.318600][T10342] tpg Y'CbCr encoding: 0/0
[  205.319896][T10342] tpg quantization: 0/0
[  205.321222][T10342] tpg RGB range: 0/2
[  205.322410][T10342] vivid-007: ==================  END STATUS  ==================
[  205.513014][ T5946] Bluetooth: hci1: command tx timeout
[  205.663197][T10363] Cannot find add_set index 3 as target
[  205.694186][T10363] overlayfs: failed to resolve './file0/file0': -2
[  205.819235][T10359] netlink: 'syz.5.1161': attribute type 25 has an invalid length.
[  206.013066][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  206.016395][ T5946] Bluetooth: hci3: Malformed Event: 0x13
[  206.094736][T10390] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1165'.
[  206.713415][T10411] netlink: 100 bytes leftover after parsing attributes in process `syz.2.1171'.
[  207.358940][T10430] vivid-007: =================  START STATUS  =================
[  207.361089][T10430] vivid-007: Generate PTS: true
[  207.362554][T10430] vivid-007: Generate SCR: true
[  207.364008][T10430] tpg source WxH: 640x360 (Y'CbCr)
[  207.365608][T10430] tpg field: 1
[  207.366629][T10430] tpg crop: (0,0)/640x360
[  207.368244][T10430] tpg compose: (0,0)/640x360
[  207.369582][T10430] tpg colorspace: 8
[  207.370666][T10430] tpg transfer function: 0/0
[  207.377316][T10430] tpg Y'CbCr encoding: 0/0
[  207.378712][T10430] tpg quantization: 0/0
[  207.381234][T10441] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1178'.
[  207.382759][T10430] tpg RGB range: 0/2
[  207.384913][T10430] vivid-007: ==================  END STATUS  ==================
[  207.532552][ T5946] Bluetooth: hci1: command tx timeout
[  207.891524][T10454] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1180'.
[  208.424485][T10462] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1183'.
[  208.852594][ T5320] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  209.005651][T10490] vivid-007: =================  START STATUS  =================
[  209.007929][T10490] vivid-007: Generate PTS: true
[  209.009532][T10490] vivid-007: Generate SCR: true
[  209.011010][T10490] tpg source WxH: 640x360 (Y'CbCr)
[  209.012577][T10490] tpg field: 1
[  209.013685][T10490] tpg crop: (0,0)/640x360
[  209.015045][T10490] tpg compose: (0,0)/640x360
[  209.017262][T10490] tpg colorspace: 8
[  209.018543][T10490] tpg transfer function: 0/0
[  209.020108][T10490] tpg Y'CbCr encoding: 0/0
[  209.021635][T10490] tpg quantization: 0/0
[  209.023176][T10490] tpg RGB range: 0/2
[  209.024504][T10490] vivid-007: ==================  END STATUS  ==================
[  209.058926][T10488] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input26
[  209.272546][ T5320] usb 5-1: Using ep0 maxpacket: 16
[  209.375279][T10493] netlink: 'syz.4.1191': attribute type 25 has an invalid length.
[  209.511733][ T5320] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  209.595243][ T5320] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  209.604208][ T5320] usb 5-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[  209.606829][ T5320] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  209.609132][ T5320] usb 5-1: Product: syz
[  209.610412][ T5320] usb 5-1: Manufacturer: syz
[  209.611816][ T5320] usb 5-1: SerialNumber: syz
[  209.612873][ T5946] Bluetooth: hci1: command tx timeout
[  209.622750][ T5320] usb 5-1: config 0 descriptor??
[  210.489960][T10506] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1195'.
[  210.508922][  T985] IPVS: starting estimator thread 0...
[  210.594320][T10518] overlayfs: failed to resolve 'dont_appraise': -2
[  210.602589][T10512] IPVS: using max 44 ests per chain, 105600 per kthread
[  210.871480][  T985] usb 5-1: USB disconnect, device number 12
[  211.221979][T10533] pimreg: entered allmulticast mode
[  211.248294][T10538] sch_tbf: burst 0 is lower than device bridge_slave_0 mtu (1514) !
[  212.478544][T10571] block device autoloading is deprecated and will be removed.
[  213.233039][T10597] block nbd5: shutting down sockets
[  213.554159][T10599] FAULT_INJECTION: forcing a failure.
[  213.554159][T10599] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  213.558801][T10599] CPU: 1 UID: 0 PID: 10599 Comm: syz.0.1223 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  213.558832][T10599] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  213.558841][T10599] Call Trace:
[  213.558846][T10599]  <TASK>
[  213.558851][T10599]  dump_stack_lvl+0x16c/0x1f0
[  213.558874][T10599]  should_fail_ex+0x512/0x640
[  213.558889][T10599]  _copy_from_user+0x2e/0xd0
[  213.558905][T10599]  get_compat_msghdr+0xa7/0x170
[  213.558921][T10599]  ? __pfx_get_compat_msghdr+0x10/0x10
[  213.558937][T10599]  ? __pfx__kstrtoull+0x10/0x10
[  213.558958][T10599]  ___sys_sendmsg+0x1ae/0x1d0
[  213.558978][T10599]  ? __pfx____sys_sendmsg+0x10/0x10
[  213.559002][T10599]  ? find_held_lock+0x2b/0x80
[  213.559019][T10599]  ? __pfx___might_resched+0x10/0x10
[  213.559037][T10599]  __sys_sendmmsg+0x2f9/0x420
[  213.559061][T10599]  ? __pfx___sys_sendmmsg+0x10/0x10
[  213.559083][T10599]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  213.559106][T10599]  ? fput+0x70/0xf0
[  213.559118][T10599]  ? ksys_write+0x1b9/0x240
[  213.559136][T10599]  ? __pfx_ksys_write+0x10/0x10
[  213.559155][T10599]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  213.559171][T10599]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  213.559190][T10599]  __do_fast_syscall_32+0x73/0x120
[  213.559210][T10599]  do_fast_syscall_32+0x32/0x80
[  213.559227][T10599]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  213.559245][T10599] RIP: 0023:0xf73ce579
[  213.559257][T10599] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  213.559272][T10599] RSP: 002b:00000000f501455c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  213.559286][T10599] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080002a00
[  213.559296][T10599] RDX: 0000000000000198 RSI: 0000000000000000 RDI: 0000000000000000
[  213.559305][T10599] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  213.559312][T10599] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  213.559318][T10599] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  213.559329][T10599]  </TASK>
[  213.645577][T10601] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1225'.
[  214.035262][T10624] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1228'.
[  214.173361][ T6003] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  214.333735][ T6003] usb 10-1: config 0 has an invalid interface number: 196 but max is 0
[  214.336359][ T6003] usb 10-1: config 0 has no interface number 0
[  214.338195][ T6003] usb 10-1: config 0 interface 196 has no altsetting 0
[  214.344169][ T6003] usb 10-1: New USB device found, idVendor=1371, idProduct=9401, bcdDevice=18.6e
[  214.347238][ T6003] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.349591][ T6003] usb 10-1: Product: syz
[  214.350938][ T6003] usb 10-1: Manufacturer: syz
[  214.352670][ T6003] usb 10-1: SerialNumber: syz
[  214.358768][ T6003] usb 10-1: config 0 descriptor??
[  214.624991][   T57] usb 10-1: USB disconnect, device number 2
[  215.499284][T10669] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1242'.
[  216.295529][T10687] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1246'.
[  216.642822][T10691] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1247'.
[  216.759360][T10692] Cache volume key already in use (9p,syz,)
[  217.084553][T10709] sch_tbf: burst 0 is lower than device bridge_slave_0 mtu (1514) !
[  217.445358][T10726] netlink: 'syz.0.1249': attribute type 10 has an invalid length.
[  217.450794][T10726] bond0: (slave batadv0): Error -22 calling dev_set_mtu
[  217.477445][T10734] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1254'.
[  217.539817][T10742] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1256'.
[  217.916403][T10765] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1257'.
[  218.242559][  T835] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  218.344819][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.346936][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.349111][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.351251][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.353925][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.355990][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.358075][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.360268][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.362283][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.365398][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.367482][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.369568][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.371742][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.374182][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.376948][ T1454] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  218.379793][ T1454] hid-generic 00A0:0006:0003.0005: hidraw1: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  218.425410][  T835] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  218.429196][  T835] usb 10-1: config 0 interface 0 has no altsetting 0
[  218.435297][  T835] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  218.438692][  T835] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  218.441605][  T835] usb 10-1: Product: syz
[  218.443949][  T835] usb 10-1: Manufacturer: syz
[  218.446020][  T835] usb 10-1: SerialNumber: syz
[  218.449550][  T835] usb 10-1: config 0 descriptor??
[  218.455367][  T835] usb 10-1: selecting invalid altsetting 0
[  218.659940][   T24] usb 10-1: USB disconnect, device number 3
[  219.429640][T10817] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1274'.
[  219.820099][T10835] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1276'.
[  219.893531][T10825] CIFS mount error: No usable UNC path provided in device string!
[  219.893531][T10825] 
[  219.896302][T10825] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  220.001441][T10839] random: crng reseeded on system resumption
[  221.772426][T10892] Cannot find add_set index 3 as target
[  221.779256][T10892] overlayfs: failed to resolve './file0/file0': -2
[  222.036029][T10900] batman_adv: batadv0: Adding interface: ip6gretap1
[  222.038572][T10900] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1500.
[  222.046092][T10900] batman_adv: batadv0: Interface activated: ip6gretap1
[  222.373740][T10906] netlink: 253 bytes leftover after parsing attributes in process `syz.5.1302'.
[  222.376586][T10906] netlink: 253 bytes leftover after parsing attributes in process `syz.5.1302'.
[  222.379111][T10906] netlink: 253 bytes leftover after parsing attributes in process `syz.5.1302'.
[  222.381718][T10906] netlink: 253 bytes leftover after parsing attributes in process `syz.5.1302'.
[  222.385014][T10906] netlink: 253 bytes leftover after parsing attributes in process `syz.5.1302'.
[  222.387518][T10906] netlink: 253 bytes leftover after parsing attributes in process `syz.5.1302'.
[  222.390119][T10906] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1302'.
[  222.455935][T10909] vivid-007: =================  START STATUS  =================
[  222.458759][T10909] vivid-007: Generate PTS: true
[  222.460682][T10909] vivid-007: Generate SCR: true
[  222.463086][T10909] tpg source WxH: 640x360 (Y'CbCr)
[  222.465062][T10909] tpg field: 1
[  222.466409][T10909] tpg crop: (0,0)/640x360
[  222.468197][T10909] tpg compose: (0,0)/640x360
[  222.470055][T10909] tpg colorspace: 8
[  222.471525][T10909] tpg transfer function: 0/0
[  222.473496][T10909] tpg Y'CbCr encoding: 0/0
[  222.475157][T10909] tpg quantization: 0/0
[  222.476515][T10909] tpg RGB range: 0/2
[  222.477767][T10909] vivid-007: ==================  END STATUS  ==================
[  222.762092][T10919] netlink: 'syz.5.1303': attribute type 25 has an invalid length.
[  222.772582][T10921] overlayfs: failed to resolve './file1': -2
[  222.775826][T10922] overlayfs: failed to resolve './file1': -2
[  223.005903][T10933] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1312'.
[  223.008923][T10933] netlink: 'syz.2.1312': attribute type 30 has an invalid length.
[  223.014568][T10933] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  223.017959][T10933] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  223.020758][T10935] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  223.021298][T10933] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  223.028349][T10933] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  224.347735][T10992] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  224.350272][T10992] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  224.352592][T10992] vhci_hcd vhci_hcd.0: Device attached
[  224.355937][T10992] vhci_hcd vhci_hcd.0: pdev(5) rhport(1) sockfd(6)
[  224.357780][T10992] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  224.359889][T10992] vhci_hcd vhci_hcd.0: Device attached
[  224.363276][T10992] vhci_hcd vhci_hcd.0: pdev(5) rhport(2) sockfd(8)
[  224.365235][T10992] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  224.367909][T10992] vhci_hcd vhci_hcd.0: Device attached
[  224.371404][T10992] vhci_hcd vhci_hcd.0: pdev(5) rhport(3) sockfd(10)
[  224.373361][T10992] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  224.376581][T10992] vhci_hcd vhci_hcd.0: Device attached
[  224.532619][  T835] vhci_hcd: vhci_device speed not set
[  224.592535][  T835] usb 47-1: new full-speed USB device number 2 using vhci_hcd
[  225.009319][T11015] ax25_connect(): syz.0.1327 uses autobind, please contact jreuter@yaina.de
[  225.142600][T11019] xt_CT: No such helper "pptp"
[  225.182978][   T57] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  225.194687][T11001] vhci_hcd: connection closed
[  225.194857][T10996] vhci_hcd: connection closed
[  225.194996][T10993] vhci_hcd: connection reset by peer
[  225.197630][ T1144] vhci_hcd: stop threads
[  225.201428][T10998] vhci_hcd: connection closed
[  225.201516][ T1144] vhci_hcd: release socket
[  225.204828][ T1144] vhci_hcd: disconnect device
[  225.207244][ T1144] vhci_hcd: stop threads
[  225.208521][ T1144] vhci_hcd: release socket
[  225.210638][ T1144] vhci_hcd: disconnect device
[  225.212211][ T1144] vhci_hcd: stop threads
[  225.213959][ T1144] vhci_hcd: release socket
[  225.215705][ T1144] vhci_hcd: disconnect device
[  225.217230][ T1144] vhci_hcd: stop threads
[  225.218419][ T1144] vhci_hcd: release socket
[  225.220263][ T1144] vhci_hcd: disconnect device
[  225.372017][T11027] __nla_validate_parse: 2 callbacks suppressed
[  225.372029][T11027] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1330'.
[  225.390714][T11027] 9pnet: Could not find request transport: tcE
[  226.196171][T11048] wg1: entered allmulticast mode
[  226.255352][ T5950] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  226.260362][ T5950] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  226.275423][ T5950] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  226.284761][ T5950] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  226.291237][ T5950] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  226.294930][ T5950] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  226.473516][T11042] ceph: No mds server is up or the cluster is laggy
[  226.507857][T11055] chnl_net:caif_netlink_parms(): no params data found
[  226.631914][T11055] bridge0: port 1(bridge_slave_0) entered blocking state
[  226.634059][T11055] bridge0: port 1(bridge_slave_0) entered disabled state
[  226.636055][T11055] bridge_slave_0: entered allmulticast mode
[  226.638066][T11055] bridge_slave_0: entered promiscuous mode
[  226.640625][T11055] bridge0: port 2(bridge_slave_1) entered blocking state
[  226.644273][T11055] bridge0: port 2(bridge_slave_1) entered disabled state
[  226.646305][T11055] bridge_slave_1: entered allmulticast mode
[  226.648376][T11055] bridge_slave_1: entered promiscuous mode
[  226.684088][T11055] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  226.687542][T11055] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  226.725682][T11055] team0: Port device team_slave_0 added
[  226.728540][T11055] team0: Port device team_slave_1 added
[  226.764648][T11055] batman_adv: batadv0: Adding interface: batadv_slave_0
[  226.766619][T11055] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  226.774551][T11055] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  226.778195][T11055] batman_adv: batadv0: Adding interface: batadv_slave_1
[  226.780155][T11055] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  226.787674][T11055] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  226.827612][T11055] hsr_slave_0: entered promiscuous mode
[  226.833476][T11055] hsr_slave_1: entered promiscuous mode
[  226.950386][T11055] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  226.963846][T11055] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  226.969029][T11055] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  226.976416][T11055] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  226.986801][T11055] bridge0: port 2(bridge_slave_1) entered blocking state
[  226.988868][T11055] bridge0: port 2(bridge_slave_1) entered forwarding state
[  226.991115][T11055] bridge0: port 1(bridge_slave_0) entered blocking state
[  226.993331][T11055] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.025139][T11055] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.044418][ T1137] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.050636][ T1137] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.076824][T11055] 8021q: adding VLAN 0 to HW filter on device team0
[  227.092723][ T1137] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.094968][ T1137] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.098982][ T1137] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.101037][ T1137] bridge0: port 2(bridge_slave_1) entered forwarding state
[  227.126128][T11080] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  227.232652][T11055] 8021q: adding VLAN 0 to HW filter on device batadv0
[  227.366068][T11055] veth0_vlan: entered promiscuous mode
[  227.369750][T11055] veth1_vlan: entered promiscuous mode
[  227.381680][T11055] veth0_macvtap: entered promiscuous mode
[  227.386566][T11055] veth1_macvtap: entered promiscuous mode
[  227.391999][T11055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  227.396722][T11055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  227.399412][T11055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  227.402272][T11055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  227.407844][T11055] batman_adv: batadv0: Interface activated: batadv_slave_0
[  227.412177][T11055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  227.416363][T11055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  227.419113][T11055] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  227.421978][T11055] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  227.426335][T11055] batman_adv: batadv0: Interface activated: batadv_slave_1
[  227.428088][T11103] FAULT_INJECTION: forcing a failure.
[  227.428088][T11103] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  227.429044][T11103] 
[  227.429051][T11103] ======================================================
[  227.429055][T11103] WARNING: possible circular locking dependency detected
[  227.429059][T11103] 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 Not tainted
[  227.429065][T11103] ------------------------------------------------------
[  227.429068][T11103] syz.0.1344/11103 is trying to acquire lock:
[  227.429074][T11103] ffffffff8e0cb620 (console_owner){-.-.}-{0:0}, at: vprintk_emit+0x586/0x6f0
[  227.429098][T11103] 
[  227.429098][T11103] but task is already holding lock:
[  227.429101][T11103] ffff88802b539ed8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[  227.429122][T11103] 
[  227.429122][T11103] which lock already depends on the new lock.
[  227.429122][T11103] 
[  227.429125][T11103] 
[  227.429125][T11103] the existing dependency chain (in reverse order) is:
[  227.429128][T11103] 
[  227.429128][T11103] -> #4 (&rq->__lock){-.-.}-{2:2}:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  227.429140][T11103]        _raw_spin_lock_nested+0x31/0x40
[  227.429152][T11103]        raw_spin_rq_lock_nested+0x29/0x130
[  227.429161][T11103]        task_rq_lock+0xcf/0x490
[  227.429170][T11103]        cgroup_move_task+0x81/0x2a0
[  227.429181][T11103]        css_set_move_task+0x288/0x5f0
[  227.429193][T11103]        cgroup_post_fork+0x201/0x9d0
[  227.429208][T11103]        copy_process+0x5219/0x9130
[  227.429220][T11103]        kernel_clone+0xfc/0x960
[  227.429231][T11103]        user_mode_thread+0xc7/0x110
[  227.429243][T11103]        rest_init+0x23/0x2b0
[  227.429251][T11103]        start_kernel+0x3e9/0x4d0
[  227.429272][T11103]        x86_64_start_reservations+0x18/0x30
[  227.429284][T11103]        x86_64_start_kernel+0xb0/0xc0
[  227.429295][T11103]        common_startup_64+0x13e/0x148
[  227.429309][T11103] 
[  227.429309][T11103] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  227.429325][T11103]        _raw_spin_lock_irqsave+0x3a/0x60
[  227.429339][T11103]        try_to_wake_up+0xb2/0x1680
[  227.429350][T11103]        __wake_up_common+0x132/0x1f0
[  227.429367][T11103]        __wake_up+0x31/0x60
[  227.429381][T11103]        tty_port_default_wakeup+0x2a/0x40
[  227.429399][T11103]        serial8250_tx_chars+0x68e/0x860
[  227.429407][T11103]        serial8250_handle_irq+0x761/0xcb0
[  227.429417][T11103]        serial8250_default_handle_irq+0x9a/0x210
[  227.429426][T11103]        serial8250_interrupt+0x103/0x210
[  227.429436][T11103]        __handle_irq_event_percpu+0x229/0x7d0
[  227.429446][T11103]        handle_irq_event+0xab/0x1e0
[  227.429454][T11103]        handle_edge_irq+0x263/0xd10
[  227.429468][T11103]        __common_interrupt+0xdf/0x250
[  227.429482][T11103]        common_interrupt+0xba/0xe0
[  227.429490][T11103]        asm_common_interrupt+0x26/0x40
[  227.429500][T11103]        default_idle+0xf/0x20
[  227.429513][T11103]        default_idle_call+0x6d/0xb0
[  227.429527][T11103]        do_idle+0x391/0x510
[  227.429536][T11103]        cpu_startup_entry+0x4f/0x60
[  227.429545][T11103]        start_secondary+0x21d/0x2b0
[  227.429560][T11103]        common_startup_64+0x13e/0x148
[  227.429570][T11103] 
[  227.429570][T11103] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[  227.429582][T11103]        _raw_spin_lock_irqsave+0x3a/0x60
[  227.429592][T11103]        __wake_up+0x1c/0x60
[  227.429602][T11103]        tty_port_default_wakeup+0x2a/0x40
[  227.429617][T11103]        serial8250_tx_chars+0x68e/0x860
[  227.429625][T11103]        serial8250_handle_irq+0x761/0xcb0
[  227.429634][T11103]        serial8250_default_handle_irq+0x9a/0x210
[  227.429644][T11103]        serial8250_interrupt+0x103/0x210
[  227.429653][T11103]        __handle_irq_event_percpu+0x229/0x7d0
[  227.429662][T11103]        handle_irq_event+0xab/0x1e0
[  227.429670][T11103]        handle_edge_irq+0x263/0xd10
[  227.429684][T11103]        __common_interrupt+0xdf/0x250
[  227.429697][T11103]        common_interrupt+0xba/0xe0
[  227.429705][T11103]        asm_common_interrupt+0x26/0x40
[  227.429714][T11103]        _raw_spin_unlock_irqrestore+0x31/0x80
[  227.429725][T11103]        uart_write+0x2a4/0xb30
[  227.429739][T11103]        n_tty_write+0x41f/0x1150
[  227.429749][T11103]        file_tty_write.constprop.0+0x512/0x9b0
[  227.429767][T11103]        redirected_tty_write+0xd4/0x150
[  227.429781][T11103]        vfs_write+0x5ba/0x1180
[  227.429794][T11103]        ksys_write+0x12a/0x240
[  227.429806][T11103]        do_syscall_64+0xcd/0x260
[  227.429818][T11103]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.429827][T11103] 
[  227.429827][T11103] -> #1 (&port_lock_key){-.-.}-{3:3}:
[  227.429839][T11103]        _raw_spin_lock_irqsave+0x3a/0x60
[  227.429850][T11103]        serial8250_console_write+0x181/0x1890
[  227.429860][T11103]        console_flush_all+0x801/0xc60
[  227.429868][T11103]        console_unlock+0xd8/0x210
[  227.429875][T11103]        vprintk_emit+0x422/0x6f0
[  227.429884][T11103]        _printk+0xc7/0x100
[  227.429895][T11103]        register_console+0xc2d/0x11b0
[  227.429904][T11103]        univ8250_console_init+0x5f/0x90
[  227.429920][T11103]        console_init+0x14f/0x680
[  227.429932][T11103]        start_kernel+0x29f/0x4d0
[  227.429942][T11103]        x86_64_start_reservations+0x18/0x30
[  227.429953][T11103]        x86_64_start_kernel+0xb0/0xc0
[  227.429964][T11103]        common_startup_64+0x13e/0x148
[  227.429974][T11103] 
[  227.429974][T11103] -> #0 (console_owner){-.-.}-{0:0}:
[  227.429986][T11103]        __lock_acquire+0x1173/0x1ba0
[  227.429998][T11103]        lock_acquire+0x179/0x350
[  227.430010][T11103]        vprintk_emit+0x597/0x6f0
[  227.430018][T11103]        _printk+0xc7/0x100
[  227.430029][T11103]        should_fail_ex+0x4e7/0x640
[  227.430039][T11103]        strncpy_from_user+0x3b/0x2d0
[  227.430053][T11103]        strncpy_from_user_nofault+0x7f/0x180
[  227.430066][T11103]        bpf_probe_read_compat_str+0xf1/0x170
[  227.430077][T11103]        bpf_prog_c1796171ffc7efef+0x3e/0x40
[  227.430085][T11103]        bpf_trace_run4+0x249/0x5a0
[  227.430096][T11103]        __bpf_trace_sched_switch+0x145/0x190
[  227.430106][T11103]        __traceiter_sched_switch+0x6c/0xc0
[  227.430114][T11103]        __schedule+0x18a7/0x5c00
[  227.430125][T11103]        preempt_schedule_irq+0x51/0x90
[  227.430136][T11103]        irqentry_exit+0x36/0x90
[  227.430147][T11103]        asm_sysvec_reschedule_ipi+0x1a/0x20
[  227.430157][T11103]        __sanitizer_cov_trace_pc+0x10/0x70
[  227.430171][T11103]        generic_permission+0xad/0x7d0
[  227.430181][T11103]        inode_permission+0xc1/0x5f0
[  227.430190][T11103]        may_open+0x11c/0x400
[  227.430199][T11103]        path_openat+0x13d1/0x2d40
[  227.430212][T11103]        do_filp_open+0x20b/0x470
[  227.430225][T11103]        io_openat2+0x206/0x850
[  227.430238][T11103]        io_issue_sqe+0x4eb/0x12d0
[  227.430248][T11103]        io_submit_sqes+0x96e/0x2670
[  227.430258][T11103]        __do_sys_io_uring_enter+0xd5e/0x1670
[  227.430269][T11103]        __do_fast_syscall_32+0x73/0x120
[  227.430281][T11103]        do_fast_syscall_32+0x32/0x80
[  227.430294][T11103]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.430305][T11103] 
[  227.430305][T11103] other info that might help us debug this:
[  227.430305][T11103] 
[  227.430308][T11103] Chain exists of:
[  227.430308][T11103]   console_owner --> &p->pi_lock --> &rq->__lock
[  227.430308][T11103] 
[  227.430322][T11103]  Possible unsafe locking scenario:
[  227.430322][T11103] 
[  227.430324][T11103]        CPU0                    CPU1
[  227.430327][T11103]        ----                    ----
[  227.430329][T11103]   lock(&rq->__lock);
[  227.430335][T11103]                                lock(&p->pi_lock);
[  227.430341][T11103]                                lock(&rq->__lock);
[  227.430347][T11103]   lock(console_owner);
[  227.430353][T11103] 
[  227.430353][T11103]  *** DEADLOCK ***
[  227.430353][T11103] 
[  227.430355][T11103] 3 locks held by syz.0.1344/11103:
[  227.430361][T11103]  #0: ffff888025dfe0a8 (&ctx->uring_lock){+.+.}-{4:4}, at: __do_sys_io_uring_enter+0xd53/0x1670
[  227.430384][T11103]  #1: ffff88802b539ed8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[  227.430406][T11103]  #2: ffffffff8e1be140 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run4+0x1cf/0x5a0
[  227.430430][T11103] 
[  227.430430][T11103] stack backtrace:
[  227.430435][T11103] CPU: 1 UID: 0 PID: 11103 Comm: syz.0.1344 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  227.430447][T11103] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  227.430454][T11103] Call Trace:
[  227.430457][T11103]  <TASK>
[  227.430461][T11103]  dump_stack_lvl+0x116/0x1f0
[  227.430475][T11103]  print_circular_bug+0x275/0x350
[  227.430488][T11103]  check_noncircular+0x14c/0x170
[  227.430504][T11103]  __lock_acquire+0x1173/0x1ba0
[  227.430519][T11103]  lock_acquire+0x179/0x350
[  227.430531][T11103]  ? vprintk_emit+0x586/0x6f0
[  227.430541][T11103]  ? vprintk_emit+0x574/0x6f0
[  227.430551][T11103]  vprintk_emit+0x597/0x6f0
[  227.430560][T11103]  ? vprintk_emit+0x586/0x6f0
[  227.430569][T11103]  ? __pfx_vprintk_emit+0x10/0x10
[  227.430579][T11103]  ? kernelmode_fixup_or_oops.constprop.0+0x77/0xe0
[  227.430590][T11103]  _printk+0xc7/0x100
[  227.430603][T11103]  ? __pfx__printk+0x10/0x10
[  227.430615][T11103]  ? ___ratelimit+0x24c/0x570
[  227.430628][T11103]  ? __pfx____ratelimit+0x10/0x10
[  227.430641][T11103]  should_fail_ex+0x4e7/0x640
[  227.430651][T11103]  strncpy_from_user+0x3b/0x2d0
[  227.430667][T11103]  strncpy_from_user_nofault+0x7f/0x180
[  227.430680][T11103]  bpf_probe_read_compat_str+0xf1/0x170
[  227.430692][T11103]  bpf_prog_c1796171ffc7efef+0x3e/0x40
[  227.430699][T11103]  bpf_trace_run4+0x249/0x5a0
[  227.430711][T11103]  ? __pfx_bpf_trace_run4+0x10/0x10
[  227.430724][T11103]  ? __lock_acquire+0xaa4/0x1ba0
[  227.430738][T11103]  __bpf_trace_sched_switch+0x145/0x190
[  227.430748][T11103]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  227.430764][T11103]  ? tracing_record_taskinfo_sched_switch+0x54/0x400
[  227.430779][T11103]  __traceiter_sched_switch+0x6c/0xc0
[  227.430789][T11103]  __schedule+0x18a7/0x5c00
[  227.430800][T11103]  ? finish_task_switch.isra.0+0x221/0xc10
[  227.430810][T11103]  ? __switch_to+0x749/0x1170
[  227.430823][T11103]  ? alloc_empty_file+0x73/0x1e0
[  227.430832][T11103]  ? path_openat+0xe0/0x2d40
[  227.430845][T11103]  ? do_filp_open+0x20b/0x470
[  227.430859][T11103]  ? do_fast_syscall_32+0x32/0x80
[  227.430873][T11103]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.430885][T11103]  ? __pfx___schedule+0x10/0x10
[  227.430896][T11103]  ? map_id_range_up+0x2ce/0x3b0
[  227.430911][T11103]  ? __pfx_map_id_range_up+0x10/0x10
[  227.430927][T11103]  ? mark_held_locks+0x49/0x80
[  227.430940][T11103]  preempt_schedule_irq+0x51/0x90
[  227.430952][T11103]  irqentry_exit+0x36/0x90
[  227.430964][T11103]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  227.430974][T11103] RIP: 0010:__sanitizer_cov_trace_pc+0x10/0x70
[  227.430989][T11103] Code: 00 00 5b e9 62 ff 09 03 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 34 24 65 48 8b 15 88 4e c1 11 <65> 8b 05 99 4e c1 11 a9 00 01 ff 00 74 1d f6 c4 01 74 43 a9 00 00
[  227.430999][T11103] RSP: 0018:ffffc90002f9f7d8 EFLAGS: 00000246
[  227.431006][T11103] RAX: 0000000000000000 RBX: ffff8880003adcf0 RCX: ffffffff8232723c
[  227.431013][T11103] RDX: ffff888025478000 RSI: ffffffff82326dad RDI: 0000000000000001
[  227.431019][T11103] RBP: 0000000000000024 R08: 0000000000000001 R09: 0000000000000000
[  227.431024][T11103] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000001
[  227.431030][T11103] R13: 0000000000000004 R14: 00000000ffff7fff R15: 0000000000000000
[  227.431037][T11103]  ? generic_permission+0x53c/0x7d0
[  227.431048][T11103]  ? generic_permission+0xad/0x7d0
[  227.431058][T11103]  generic_permission+0xad/0x7d0
[  227.431069][T11103]  inode_permission+0xc1/0x5f0
[  227.431079][T11103]  ? try_to_unlazy+0x2a9/0x660
[  227.431091][T11103]  may_open+0x11c/0x400
[  227.431102][T11103]  path_openat+0x13d1/0x2d40
[  227.431117][T11103]  ? stack_depot_save_flags+0x29/0x9c0
[  227.431127][T11103]  ? __pfx_path_openat+0x10/0x10
[  227.431141][T11103]  ? kasan_save_stack+0x42/0x60
[  227.431156][T11103]  do_filp_open+0x20b/0x470
[  227.431170][T11103]  ? __pfx_do_filp_open+0x10/0x10
[  227.431187][T11103]  ? alloc_fd+0x420/0x760
[  227.431202][T11103]  io_openat2+0x206/0x850
[  227.431215][T11103]  ? __pfx_io_openat2+0x10/0x10
[  227.431230][T11103]  ? getname_flags.part.0+0x1c2/0x540
[  227.431241][T11103]  io_issue_sqe+0x4eb/0x12d0
[  227.431252][T11103]  io_submit_sqes+0x96e/0x2670
[  227.431265][T11103]  __do_sys_io_uring_enter+0xd5e/0x1670
[  227.431278][T11103]  ? __fget_files+0x20e/0x3c0
[  227.431291][T11103]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  227.431303][T11103]  ? fput+0x70/0xf0
[  227.431311][T11103]  ? ksys_write+0x1b9/0x240
[  227.431324][T11103]  ? __pfx_ksys_write+0x10/0x10
[  227.431337][T11103]  ? rcu_is_watching+0x12/0xc0
[  227.431348][T11103]  __do_fast_syscall_32+0x73/0x120
[  227.431362][T11103]  do_fast_syscall_32+0x32/0x80
[  227.431376][T11103]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.431388][T11103] RIP: 0023:0xf73ce579
[  227.431394][T11103] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  227.431404][T11103] RSP: 002b:00000000f501455c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  227.431412][T11103] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000003516
[  227.431418][T11103] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  227.431424][T11103] RBP: 00000000fffffdcf R08: 0000000000000000 R09: 0000000000000000
[  227.431430][T11103] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  227.431436][T11103] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  227.431444][T11103]  </TASK>
[  227.436999][T11055] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  227.438697][T11103] CPU: 1 UID: 0 PID: 11103 Comm: syz.0.1344 Not tainted 6.14.0-syzkaller-02665-g1e26c5e28ca5 #0 PREEMPT(full) 
[  227.438711][T11103] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  227.438718][T11103] Call Trace:
[  227.438721][T11103]  <TASK>
[  227.438725][T11103]  dump_stack_lvl+0x116/0x1f0
[  227.438742][T11103]  should_fail_ex+0x512/0x640
[  227.438753][T11103]  strncpy_from_user+0x3b/0x2d0
[  227.438773][T11103]  strncpy_from_user_nofault+0x7f/0x180
[  227.438787][T11103]  bpf_probe_read_compat_str+0xf1/0x170
[  227.438801][T11103]  bpf_prog_c1796171ffc7efef+0x3e/0x40
[  227.438809][T11103]  bpf_trace_run4+0x249/0x5a0
[  227.438821][T11103]  ? __pfx_bpf_trace_run4+0x10/0x10
[  227.438834][T11103]  ? __lock_acquire+0xaa4/0x1ba0
[  227.438849][T11103]  __bpf_trace_sched_switch+0x145/0x190
[  227.438861][T11103]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  227.438873][T11103]  ? tracing_record_taskinfo_sched_switch+0x54/0x400
[  227.438889][T11103]  __traceiter_sched_switch+0x6c/0xc0
[  227.438899][T11103]  __schedule+0x18a7/0x5c00
[  227.438911][T11103]  ? finish_task_switch.isra.0+0x221/0xc10
[  227.438922][T11103]  ? __switch_to+0x749/0x1170
[  227.438935][T11103]  ? alloc_empty_file+0x73/0x1e0
[  227.438945][T11103]  ? path_openat+0xe0/0x2d40
[  227.438959][T11103]  ? do_filp_open+0x20b/0x470
[  227.438972][T11103]  ? do_fast_syscall_32+0x32/0x80
[  227.438987][T11103]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.439000][T11103]  ? __pfx___schedule+0x10/0x10
[  227.439011][T11103]  ? map_id_range_up+0x2ce/0x3b0
[  227.439026][T11103]  ? __pfx_map_id_range_up+0x10/0x10
[  227.439041][T11103]  ? mark_held_locks+0x49/0x80
[  227.439054][T11103]  preempt_schedule_irq+0x51/0x90
[  227.439067][T11103]  irqentry_exit+0x36/0x90
[  227.439079][T11103]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  227.439090][T11103] RIP: 0010:__sanitizer_cov_trace_pc+0x10/0x70
[  227.439105][T11103] Code: 00 00 5b e9 62 ff 09 03 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 34 24 65 48 8b 15 88 4e c1 11 <65> 8b 05 99 4e c1 11 a9 00 01 ff 00 74 1d f6 c4 01 74 43 a9 00 00
[  227.439115][T11103] RSP: 0018:ffffc90002f9f7d8 EFLAGS: 00000246
[  227.439123][T11103] RAX: 0000000000000000 RBX: ffff8880003adcf0 RCX: ffffffff8232723c
[  227.439130][T11103] RDX: ffff888025478000 RSI: ffffffff82326dad RDI: 0000000000000001
[  227.439136][T11103] RBP: 0000000000000024 R08: 0000000000000001 R09: 0000000000000000
[  227.439141][T11103] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000001
[  227.439147][T11103] R13: 0000000000000004 R14: 00000000ffff7fff R15: 0000000000000000
[  227.439154][T11103]  ? generic_permission+0x53c/0x7d0
[  227.439164][T11103]  ? generic_permission+0xad/0x7d0
[  227.439176][T11103]  generic_permission+0xad/0x7d0
[  227.439187][T11103]  inode_permission+0xc1/0x5f0
[  227.439197][T11103]  ? try_to_unlazy+0x2a9/0x660
[  227.439209][T11103]  may_open+0x11c/0x400
[  227.439220][T11103]  path_openat+0x13d1/0x2d40
[  227.439235][T11103]  ? stack_depot_save_flags+0x29/0x9c0
[  227.439245][T11103]  ? __pfx_path_openat+0x10/0x10
[  227.439259][T11103]  ? kasan_save_stack+0x42/0x60
[  227.439274][T11103]  do_filp_open+0x20b/0x470
[  227.439288][T11103]  ? __pfx_do_filp_open+0x10/0x10
[  227.439309][T11103]  ? alloc_fd+0x420/0x760
[  227.439329][T11103]  io_openat2+0x206/0x850
[  227.439348][T11103]  ? __pfx_io_openat2+0x10/0x10
[  227.439368][T11103]  ? getname_flags.part.0+0x1c2/0x540
[  227.439379][T11103]  io_issue_sqe+0x4eb/0x12d0
[  227.439391][T11103]  io_submit_sqes+0x96e/0x2670
[  227.439404][T11103]  __do_sys_io_uring_enter+0xd5e/0x1670
[  227.439416][T11103]  ? __fget_files+0x20e/0x3c0
[  227.439430][T11103]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  227.439442][T11103]  ? fput+0x70/0xf0
[  227.439450][T11103]  ? ksys_write+0x1b9/0x240
[  227.439464][T11103]  ? __pfx_ksys_write+0x10/0x10
[  227.439477][T11103]  ? rcu_is_watching+0x12/0xc0
[  227.439488][T11103]  __do_fast_syscall_32+0x73/0x120
[  227.439502][T11103]  do_fast_syscall_32+0x32/0x80
[  227.439516][T11103]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.439527][T11103] RIP: 0023:0xf73ce579
[  227.439534][T11103] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  227.439544][T11103] RSP: 002b:00000000f501455c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  227.439553][T11103] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000003516
[  227.439559][T11103] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  227.439565][T11103] RBP: 00000000fffffdcf R08: 0000000000000000 R09: 0000000000000000
[  227.439843][T11103] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  227.439849][T11103] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  227.439858][T11103]  </TASK>
[  227.936913][T11055] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  227.939445][T11055] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  227.941895][T11055] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  229.692678][  T835] vhci_hcd: vhci_device speed not set

VM DIAGNOSIS:
22:42:00  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffc900239f7b90 RDX=ffff88802355c880
RSI=ffffffff84c3e35d RDI=0000000000000000 RBP=ffffc900239f7b90 RSP=ffffc900239f7970
R8 =0000000000000001 R9 =0000000000000001 R10=0000000000000000 R11=0000000000000000
R12=ffffc900239f7b90 R13=0000000000000001 R14=0000000000000008 R15=0000000000000001
RIP=ffffffff81bb11c1 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097c5a000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000800a9000 CR3=00000000137aa000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=000000000fffffdc RCX=ffffffff8bd3226c RDX=1ffffffff17a644d
RSI=ffffffff8b584a51 RDI=ffffffff8bd3226c RBP=000000000000000c RSP=ffffc90002f9eb70
R8 =0000000000000007 R9 =0000000000000000 R10=000000000fffffdc R11=000000000000001e
R12=ffffc90002f9ec08 R13=dffffc0000000000 R14=0000000000000020 R15=0000000000000001
RIP=ffffffff8b584a6c RFL=00000807 [-O---PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097d5a000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=00000000137aa000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00007ffc320043a8 RBX=0000000000000002 RCX=00007ffc320043a8 RDX=00007f47008bd592
RSI=0000000000001ffd RDI=0000561d48a85a13 RBP=0000561d48a7f910 RSP=00007ffc320042f0
R8 =0000000000000000 R9 =00007ffc3200431f R10=00000000000007e9 R11=0000000000000064
R12=0000000000000004 R13=00007f47009b8212 R14=00007ffc32004428 R15=0000000000000000
RIP=00007f47007fc1c7 RFL=00000246 [---Z-P-] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f47006c8500 ffffffff 00c00000
GS =0000 0000000000000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000025884000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000060012926 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc32004330 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 732500656c6f736e 6f632f7665642f00 5d64255b00205425 206525206825003e
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 56000040494a564b 4a460a5340410a00 5d41005b00055400 054000054d00001b
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3533512820433320 313131545b5d3131 203833342e203232 20205b20343c0020
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2933322820283320 3131315250202723 2032312424203232 2020322031200020
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3c3c383a27786f66 666b61707379273a 243e3b243c2a6e6f 7e64636b7e2a7e65
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e786b422a57393a 3b3b3b5e51573b3b 3d32393e243d3838 2a2a51343e36002a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85417a90 RDI=ffffffff9ab71d20 RBP=ffffffff9ab71ce0 RSP=ffffc90023e5e5f8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff356e3f6 R15=dffffc0000000000
RIP=ffffffff85417ab7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097f5a000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000067f56000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000