last executing test programs:

4m49.85735205s ago: executing program 32 (id=263):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x80042, 0x0) (async)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) (async, rerun: 64)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async, rerun: 64)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000000)={0x1})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x26, &(0x7f0000000380)={0x0, 0x1, 0x0, 0x1}) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x3e0, 0x3, 0x200, 0x168, 0xa, 0x148, 0x98, 0x10, 0x168, 0x2a8, 0x2a8, 0x168, 0x2a8, 0x3, 0x0, {[{{@ip={@loopback, @multicast1, 0x0, 0x0, 'team_slave_1\x00', 'pimreg0\x00', {}, {}, 0x6, 0x0, 0x4d}, 0x0, 0x70, 0x98, 0x0, {0x20000000}}, @common=@inet=@SYNPROXY={0x28}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x260) (async)
fcntl$lock(r4, 0x7, &(0x7f0000000140)={0x1, 0x0, 0x78, 0x10}) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r6, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f00000008c0)={0x14, 0x2c, 0x1, 0x0, 0x0, "", [@nested={0x4}]}, 0x14}], 0x1}, 0x0) (async)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0xd, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r8, <r9=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)=r7}, 0x20) (async)
timer_create(0x0, &(0x7f00000001c0)={0x0, 0x5, 0x2, @thr={&(0x7f0000000500)="6168d5efe913bd3ae02cb70f0246e0699741f5b2b6f2297c2766d7905d470a346aeea8cfd7107f0f6b64a5f2d19e8dd2c5a01906da866d9a6434dd8c4b0a5d597a8ef12468826ebc5530fbd7367367764bd703976b208e20ed077f9570f1fd16bbca9b594120730bed9dd06bc7dd06c9e43b0ceb3b5668e58def0d2fa776f55571e6be363772b935458e21fc49f49e104309858e9a5eb927c68c91edadbafe44d14754a46e14bf56645c1d56d5d1155eaca9b0a13236581084b4ea3abafb35507b", &(0x7f0000000600)="16da7541b7e55c05a1129508c81bfb5e8deca9285e4f98bbe71e99f01daf15d632bb8254580301cc3a08aa5f2523e4f799e662f974281717d306592ea7ca3735e818aca6cac3b9b02ec995d4bc33142997493c8bbd8ee4cb98d2ca983b2d8887bd06c31ff91152706439738eeca0bc59ffa769a21a7a0b6c111100d6ae92252c34f4d5f28912c05e8e76a75a542904ed1ebda06886cdd308f8c9005d36940c922846af1c8f7138267e"}}, &(0x7f0000000200)) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r8}, &(0x7f0000000080), &(0x7f0000000380)=r5}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r9}, &(0x7f0000000240), &(0x7f0000000280)=r7}, 0x20)
close_range(r0, 0xffffffffffffffff, 0x0)

4m47.232717605s ago: executing program 33 (id=277):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(0xffffffffffffffff, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000000)=ANY=[@ANYRES16=r1, @ANYBLOB="0100040000000000001f2800000018"], 0x2c}}, 0x0)
ioctl$VIDIOC_S_FREQUENCY(0xffffffffffffffff, 0x402c5639, 0x0)
openat$fb0(0xffffff9c, &(0x7f00000000c0), 0x480003, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}]}], {0x14}}, 0x64}}, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x318, 0x1, 0x24}, 0x9c)
ioctl$DRM_IOCTL_MODE_GET_LEASE(0xffffffffffffffff, 0xc01064c8, &(0x7f00000001c0)={0x9, 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000010401010000000000000000000004000500010001"], 0x1c}}, 0x0)

4m39.801355142s ago: executing program 34 (id=409):
r0 = syz_open_dev$usbfs(0x0, 0x70, 0x101301)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

3m59.082281516s ago: executing program 4 (id=826):
syz_emit_ethernet(0x66, &(0x7f0000000000)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1e}, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x2, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @remote, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x86dd}, {0x0, 0x0, 0x0, 0x0, 0x11}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000780)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x6, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) (fail_nth: 6)

3m58.992225001s ago: executing program 4 (id=828):
socket$inet6_sctp(0xa, 0x1, 0x84)
userfaultfd(0x80001)
openat$kvm(0xffffffffffffff9c, 0x0, 0x1eb381, 0x0)
r0 = io_uring_setup(0x422b, &(0x7f0000000500))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, 0x0)
close_range(r0, 0xffffffffffffffff, 0x2000000)

3m58.991972441s ago: executing program 4 (id=829):
r0 = socket(0x28, 0x5, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r1, 0x4)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x2d, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x51, 0x0)
r2 = accept4$unix(r1, 0x0, 0x0, 0x800)
recvmmsg(r2, &(0x7f0000001fc0)=[{{0x0, 0x0, &(0x7f0000001a40)=[{&(0x7f0000000580)=""/178, 0xb2}], 0x1}, 0x80}, {{0x0, 0x0, &(0x7f0000001f40)=[{&(0x7f0000001b80)=""/68, 0x44}], 0x1}, 0x76c}], 0x2, 0x40000000, 0x0)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="84010000100013070000000000000000ffffffff000000000000000000000000fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe800000000000000000003f000000aa0000000033000000fe80000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000004c00140063"], 0x184}, 0x1, 0x0, 0x0, 0x4000040}, 0x4)
syz_emit_ethernet(0x86, &(0x7f0000000040)={@broadcast, @random="8eff80ec0031", @val={@val={0x88a8, 0x1, 0x1}, {0x8100, 0x5, 0x1, 0x4}}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010101, @local}, @source_quench={0x4, 0x0, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@noop, @cipso={0x86, 0x3c, 0x0, [{0x0, 0x10, "9e0cec69d2dae06de9173b3f60c8"}, {0x0, 0x5, "f34629"}, {0x0, 0xb, "3033a70f1c0f9d1bfd"}, {0x0, 0xa, "3aba454f6dc54cc6"}, {0x0, 0x5, "91ec92"}, {0x0, 0x7, "0683fa3f39"}]}]}}}}}}}, 0x0)
bind$rose(r3, &(0x7f0000000000)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x4, [@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @default]}, 0x40)
r5 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
write(r5, &(0x7f0000000180)="b1f6a4e6086771339298ff93c614cda94476d7b3650dace6ffd148ee98b8cb08591ffc2467faa14e", 0x28)
syz_emit_ethernet(0x66, &(0x7f0000000000)=ANY=[@ANYRESOCT=r3], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$ITER_CREATE(0x21, &(0x7f0000000240), 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000100)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

3m58.912371611s ago: executing program 4 (id=830):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
mount$bind(0x0, &(0x7f0000000100)='\x00', 0x0, 0x80000, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
r1 = getuid()
quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000080)=@rnullb, r1, &(0x7f0000000140))
read$FUSE(r0, &(0x7f0000002640)={0x2020}, 0x2020)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r2, &(0x7f0000000340)=ANY=[], 0xff2e)
ioctl$TCXONC(r2, 0x540a, 0x3)

3m58.022736276s ago: executing program 4 (id=842):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
sendmsg$kcm(r0, 0x0, 0x0)

3m55.582660773s ago: executing program 4 (id=850):
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141121)
r1 = dup(r0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000140)=0x15)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r1, 0x29, 0x41, &(0x7f0000000080)={'security\x00', 0x2, [{}, {}]}, 0x48)
ppoll(&(0x7f00000001c0)=[{r2}], 0x1, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x40000000015, 0x5, 0x0)
mount$9p_virtio(0x0, 0x0, 0x0, 0x42, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=virtio,anam'])
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22, 0x3}, 0x1c)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0xc0, 0x61)
r5 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
r6 = socket(0x2, 0x2, 0x0)
r7 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
ioctl$NBD_SET_SOCK(r5, 0xab00, r6)
ioctl$NBD_DO_IT(r7, 0xab03)
ioctl$NBD_SET_SIZE_BLOCKS(r5, 0xab07, 0x200000a)
mount(&(0x7f0000000500)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x8007, 0x0)

3m55.502322271s ago: executing program 35 (id=850):
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141121)
r1 = dup(r0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000140)=0x15)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r1, 0x29, 0x41, &(0x7f0000000080)={'security\x00', 0x2, [{}, {}]}, 0x48)
ppoll(&(0x7f00000001c0)=[{r2}], 0x1, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x40000000015, 0x5, 0x0)
mount$9p_virtio(0x0, 0x0, 0x0, 0x42, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=virtio,anam'])
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22, 0x3}, 0x1c)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0xc0, 0x61)
r5 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
r6 = socket(0x2, 0x2, 0x0)
r7 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
ioctl$NBD_SET_SOCK(r5, 0xab00, r6)
ioctl$NBD_DO_IT(r7, 0xab03)
ioctl$NBD_SET_SIZE_BLOCKS(r5, 0xab07, 0x200000a)
mount(&(0x7f0000000500)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x8007, 0x0)

3m20.552097194s ago: executing program 7 (id=1126):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$inet6(r0, &(0x7f0000000040)={&(0x7f0000000140)={0xa, 0x0, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7c}, 0x1c, 0x0, 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1400000000000000290000000b000000000000030000000018000000004159a2f0000000370000000c00000000000000"], 0x30}, 0x24004800)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
clock_settime(0x5, &(0x7f0000000040))
ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a00000000000000ba0a0000000000000180000000000000277f0000000000000400000000000000c20600000000000000800000000000006bc6dd4b000000000000000000009901000000000000020000000000000014090000000000000700000000000000b0080000000000000900000000000000bb09000000000000000000000000008084030000000000000000000000000000d80a00000000000003000000000000000000"])
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x3)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r6=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r6, 0x1, 0x2f, &(0x7f0000000040), 0x1a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r7=>0x0})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_SET_TSS_ADDR(r9, 0xae47, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0100000007000000612200000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r7, @ANYRES32, @ANYRESHEX=r1], 0x50)
r11 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r11, 0x11b, 0x6, &(0x7f0000000340)=0xb010, 0x4)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r10, <r12=>0xffffffffffffffff}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000009c0)={{r12, <r13=>0xffffffffffffffff}, &(0x7f00000008c0), &(0x7f0000000980)='%pB    \x00'}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000a40)={r13, &(0x7f0000000dc0), 0x0}, 0x20)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1c8}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8400, &(0x7f0000000c00)=ANY=[])
chdir(&(0x7f00000000c0)='./file0\x00')
r14 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$P9_RREADLINK(r14, &(0x7f0000000180)={0x10, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)

3m20.442025346s ago: executing program 7 (id=1127):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mount$overlay(0x3f, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

3m20.352194561s ago: executing program 7 (id=1128):
r0 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x30, &(0x7f0000000180)={&(0x7f00000008c0)=ANY=[@ANYBLOB="24000000190001000000000000c3b2000a0000000003c8000000000008000600ffffffff"], 0x24}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0)
read$rfkill(r2, &(0x7f0000000040), 0x8)
mprotect(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x1000006)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x1000000000004)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x20, 0x52, 0x1, 0x70bd26, 0x200, {0x2}, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)

3m20.352016949s ago: executing program 7 (id=1129):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
r2 = fanotify_init(0x20, 0x0)
fanotify_mark(r2, 0x445, 0x1003, r1, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$cgroup2(0x500, &(0x7f0000000100)='./file0\x00', 0x0, 0x2941010, 0x0)

3m20.25086923s ago: executing program 7 (id=1130):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$P9_RREADLINK(r2, &(0x7f0000000180)={0x10, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0xfe)

3m20.048800706s ago: executing program 7 (id=1133):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) (fail_nth: 7)

3m20.029406321s ago: executing program 36 (id=1133):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) (fail_nth: 7)

3m16.152163352s ago: executing program 6 (id=1161):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000e00)={@in6={{0xa, 0x40, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}}, 0x0, 0x0, 0x44, 0x0, "e541bd3d3aa6a2bf75e9671e8abcb31c134f3a9db8f52e7300fe6e079f35ac63186c7244fc3b3801e79f15ced9fd7e55d0345bce05c13ed90158fbdeb70322ea3188f81890e3db00"}, 0xd8)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4b, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @broadcast}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x11, 0x5, 0x0, 0x0, {[@md5sig={0x13, 0x12, "9352d97000000000998100"}]}}, {"b0"}}}}}}, 0x0)

3m16.151871499s ago: executing program 6 (id=1162):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1, 0x3, 0x220104, 0xb, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (async)
r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGREP(r1, 0x80084522, &(0x7f0000001f40)=""/231)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x18, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1, r0}, 0x38)

3m15.99164261s ago: executing program 6 (id=1164):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000000)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="cf0400000000000000001300000008000300", @ANYRES32=r6, @ANYBLOB="0500130092848b000a00060008021100000100000600100080050000060012"], 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0) (fail_nth: 8)

3m15.912557036s ago: executing program 6 (id=1165):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x201)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x16, 0x13, &(0x7f00000009c0)=@framed={{0x18, 0x2}, [@printk={@p, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xb, 0x1, 0xa, 0x6}, {0x7, 0x0, 0x2}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, @printk={@p, {0x3, 0x3, 0x6, 0xa, 0x1, 0xfff8, 0x41}, {0x4}, {}, {}, {}, {0x85, 0x0, 0x0, 0x5}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

3m15.911778457s ago: executing program 6 (id=1166):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
open(0x0, 0x185102, 0x38)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
r1 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, 0x0, 0x0, 0x201, 0x0, 0x0, 0xa5, 0x5c})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SOUND_PCM_READ_BITS(r2, 0x80045005, &(0x7f00000000c0))
r3 = socket(0xf, 0x80000, 0x4)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
write(r4, &(0x7f0000005740)="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", 0x1000)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001300)=@newchain={0x4414, 0x64, 0x100, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0xfff3, 0xfff2}, {0xc, 0xf}, {0xb, 0x2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x43a0, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x1, 0xffff}}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x3}, @TCA_MATCHALL_CLASSID={0x8, 0x1, {0x0, 0xb}}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x4}, @TCA_MATCHALL_ACT={0x437c, 0x2, [@m_mpls={0xd4, 0x12, 0x0, 0x0, {{0x9}, {0x38, 0x2, 0x0, 0x1, [@TCA_MPLS_TC={0x5, 0x6, 0x2}, @TCA_MPLS_LABEL={0x8, 0x5, 0x84f4c}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x7f, 0x0, 0x5, 0x2, 0xa}, 0xf0e110ed771de5f6}}, @TCA_MPLS_BOS={0x5}]}, {0x74, 0x6, "a1c2746007c3466263bd76d36138b52362f5292267073582842153facd99d29a9d6950e7ae78a64351b9677f728c34e274fa09951ff691c5dd21337d94ccae9bc354cebcb5518fb2eb8a90a0a1b95220283744ba247df5292cf0d9531d838f03ccdba5a625b8d2585132b9df59e77ed8"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_pedit={0x1e3c, 0x1b, 0x0, 0x0, {{0xa}, {0x1d1c, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe80, 0x2, {{{0x8, 0x3, 0x20000000, 0xffff0b09, 0x2}, 0xf7, 0x5, [{0xffffffff, 0x3, 0x1, 0x3, 0x1c00, 0x768}, {0xa6d, 0x9, 0x80, 0x3e, 0x2, 0x8001}, {0x4, 0x0, 0xfffffffa, 0x9, 0x0, 0x5}, {0x1, 0x6, 0x4, 0x3, 0x1}]}, [{0x2, 0x2, 0x7f, 0x7fff, 0x3, 0x3ff}, {0x8, 0xd683, 0x3, 0x7fff, 0x1, 0x3}, {0x2, 0xffffffff, 0xee, 0x9f4, 0x1, 0x8}, {0x2, 0x0, 0x2, 0x8, 0x8, 0xffffffe9}, {0xff, 0x6, 0x1, 0x8f30, 0x5}, {0x7ff, 0x1, 0xa, 0xc02a, 0xf00f, 0x9}, {0x9, 0x4, 0x9, 0x4, 0x1, 0x9}, {0xffffff80, 0x3b, 0x2, 0x6, 0x10000, 0x14}, {0x8, 0x62e, 0x1, 0x56c, 0xffffffff, 0x80000000}, {0x1, 0xf, 0x81, 0x1ff, 0x3c000, 0x2}, {0x6, 0x9, 0x3, 0x5, 0x7, 0x697}, {0x2, 0xfffffffa, 0x5, 0xe, 0x9, 0xff000000}, {0xa000000, 0xb, 0x7ff, 0x7, 0x6, 0x8}, {0x7, 0x6, 0x2, 0x4, 0x3, 0x8a8}, {0x0, 0x6, 0x1, 0x8, 0xb7, 0x7}, {0x1, 0x5, 0x5b7, 0x4, 0x36, 0x3}, {0x401, 0x68bf, 0x0, 0x10, 0x8, 0xff}, {0x8, 0xfffffffd, 0xa8, 0x8, 0x8, 0x81}, {0x40, 0x5, 0x7fffffff, 0x5, 0x85d0}, {0x8001, 0x8, 0x7, 0xfffffff9, 0x80000001, 0xd437}, {0x81a0d4f6, 0x820, 0x4402, 0x2, 0x1, 0x30}, {0x0, 0x9, 0xf92a, 0x6, 0x5, 0x6}, {0x10000, 0x1c500310, 0xfffffff9, 0x6, 0x7fff, 0x4}, {0x4, 0x10000, 0x100, 0x4, 0x4, 0x4}, {0xc6a4, 0x8875, 0x0, 0x4dac272c, 0x8000, 0x438}, {0x3, 0x9, 0x5, 0x2, 0x7, 0x3}, {0x7c0e, 0x2, 0x5, 0xfffffff9, 0x43, 0x2}, {0x6, 0xd519, 0xdcdd, 0x8, 0xdd, 0x5}, {0x4, 0x1, 0x401, 0x52bec6ea, 0xff, 0xffffe5ad}, {0x3, 0xca3, 0x81, 0x81, 0x0, 0x2}, {0x77, 0xfffeffff, 0x4, 0x7, 0x0, 0x7}, {0x0, 0x1, 0x4, 0x0, 0x6, 0x23}, {0x2, 0x8005, 0x5, 0x3ff, 0xfffffffb, 0x1ff}, {0x7, 0xffff, 0x5, 0x7, 0xf, 0x7}, {0x2, 0x3, 0x1, 0x8e05, 0x8, 0x5}, {0x0, 0xd, 0xabd, 0x4, 0x0, 0x1}, {0x4e, 0x6, 0x5, 0x81, 0x54c, 0x7}, {0xd8f, 0x7, 0x8, 0x8, 0x3, 0x10001}, {0x7, 0x2, 0x4, 0x66908f06, 0x1, 0x1}, {0x80000000, 0x5, 0x80, 0x1ff, 0x9, 0x130c}, {0xfffffff8, 0x7, 0x5, 0x4, 0x97}, {0x2, 0x6, 0xb, 0x1, 0xa00000, 0x2}, {0x1000, 0x6, 0xa, 0x2, 0x6, 0x4}, {0x7, 0xfffffff8, 0x1000, 0x5, 0x6, 0x7fff}, {0x9, 0x2, 0xfff, 0xffffffff, 0x1, 0xc88c}, {0x0, 0x9, 0x9, 0x8, 0x9, 0xa5}, {0x2b8c, 0x7, 0x3, 0xad, 0x5, 0x97d}, {0x5, 0x1, 0x7, 0x2, 0x8000, 0xffffffff}, {0x7f, 0x8, 0x0, 0x16, 0x8, 0x7}, {0x8, 0x8, 0x3, 0x3, 0x8, 0x6}, {0x8, 0xa, 0x6, 0x328, 0x8000, 0x80}, {0x81d, 0x6, 0x18000, 0x6, 0x4, 0x80000000}, {0x2, 0x2, 0x2, 0x3, 0x0, 0xfcfa}, {0x5, 0x6, 0x4, 0x1e, 0x1, 0x8702}, {0x4, 0x2, 0xa301, 0x10001, 0x9, 0xa}, {0x1, 0x8, 0x80, 0xffff3096, 0x2753, 0x8}, {0x4, 0x0, 0x6f9acdc3, 0x7, 0xff800000, 0x89}, {0x10001, 0xffff, 0xe, 0x6d8, 0x4c, 0x5}, {0x0, 0x4, 0x9, 0xa, 0x852, 0x1}, {0x2, 0x2, 0x7f, 0x1, 0x3fc13652, 0xfffffffc}, {0x4, 0xa95, 0xbf94, 0x6, 0x5, 0xa}, {0x0, 0x6, 0x4, 0x6, 0x9, 0x4}, {0x7f, 0x0, 0x7d5cbfa3, 0x3, 0xdf, 0x400}, {0x5, 0xe, 0x401, 0x10000, 0x9, 0x8001}, {0x4, 0x4, 0x0, 0x99, 0xf, 0x8}, {0x8, 0xab5a, 0x82a, 0x2a8, 0xfffffff8, 0x200}, {0x53, 0x3502, 0x8, 0x3, 0x5, 0x7}, {0x80000001, 0x3, 0x5, 0x7fffffff, 0xfd, 0x8}, {0x10000, 0x1, 0x401, 0x7ff, 0x7b86535b, 0x4}, {0x401, 0x6, 0x8, 0x4, 0x3}, {0x3ff, 0xffff, 0x6, 0x4, 0xba, 0x400000}, {0xfffffff9, 0x6f9fba7a, 0x7d8, 0x10000, 0x400, 0xfff}, {0x5, 0xfffffffc, 0x6, 0x3, 0x7fff}, {0x7ca5, 0x1, 0x9, 0x8001, 0xfff, 0xff}, {0xffffffff, 0x5eb89aab, 0x5, 0x200, 0x0, 0x8}, {0xff, 0x2c1a8e70, 0x3, 0x3, 0x401, 0x5}, {0x6, 0x6, 0x7ea, 0x1, 0x1, 0x9}, {0x2, 0x8, 0x5, 0x6, 0x6, 0xaa}, {0x5, 0xc53e, 0x80000001, 0x8000, 0x9ec, 0xfffffffd}, {0x2, 0x55cf, 0x2, 0xe, 0xffffffff, 0x4}, {0x1, 0x80000000, 0x0, 0x0, 0x83a}, {0x10001, 0x5, 0x7, 0x7ff, 0x8, 0x1}, {0xffffffff, 0xfffffffa, 0x4, 0x8001, 0x6, 0x1}, {0xffffffe5, 0x9, 0xb08b, 0x3, 0xddfe, 0x3}, {0x7fff, 0x66a09d41, 0x66d, 0x1, 0x6d7d536, 0xc}, {0x3, 0x1, 0x7, 0xb9b, 0x7}, {0x400, 0x8, 0x9, 0x10, 0x9, 0x100}, {0x1, 0x77, 0x5, 0x8, 0x3, 0x7}, {0x8, 0xe9f, 0x9, 0x4c0, 0x0, 0x400}, {0x800, 0x7ed, 0x3ff, 0x2, 0x1a, 0x3}, {0x0, 0x6, 0x800, 0x1, 0x7, 0x2}, {0x0, 0x3, 0x0, 0xa1bf, 0x3, 0x200}, {0xf, 0x3, 0x3, 0x50a8f7c1, 0x200, 0x7}, {0x7, 0x4, 0x7, 0xfffffffb, 0x1, 0x2}, {0x6, 0x3, 0x7, 0x8000, 0xaf6, 0x4}, {0x2, 0x8, 0x3, 0x9, 0x8, 0x4}, {0x9, 0x800, 0x7f, 0x2, 0xdf, 0x5}, {0x5, 0x3ff, 0x4, 0xc, 0x9f3, 0x3}, {0x5, 0x2c22, 0x1, 0x2, 0x8000, 0x2}, {0xf08e, 0x6b12dca2, 0x92, 0x8000, 0x401, 0x4f}, {0x1, 0x49d7, 0x3, 0x200, 0x400, 0x7}, {0x3, 0x8, 0x8000, 0x8, 0x6, 0x7}, {0x3, 0x4, 0x3, 0x0, 0x2, 0x800}, {0x9, 0xfff, 0x4, 0x0, 0x7, 0xb5}, {0x10, 0x7, 0x4, 0x9, 0x5, 0x4}, {0x8, 0x200, 0x3, 0x6, 0x9}, {0xa, 0x5, 0x1, 0x8, 0x6, 0x8001}, {0xae, 0x1, 0x7, 0x3, 0x4, 0x81}, {0x0, 0x4660, 0x9, 0x787, 0xf, 0x381a7050}, {0x200, 0xd0d1, 0x1, 0x5, 0xd2d6, 0x4}, {0x6, 0x401, 0xd, 0x2323, 0x4, 0x4}, {0x101, 0xfffffff9, 0x1, 0x2, 0x100, 0x3}, {0x8, 0xfffffffb, 0x3672, 0x85, 0xffffffff, 0x1}, {0xde, 0x7, 0x1, 0xd, 0x4, 0x10001}, {0x2, 0x81, 0x80000000, 0x792f, 0xc64, 0x1000}, {0x8, 0x8, 0x200, 0x5, 0x9f4b, 0x7}, {0x9, 0x0, 0x1000, 0xa, 0x81, 0x7fff}, {0x8001, 0x9, 0x0, 0x0, 0x0, 0x8}, {0x5, 0x9, 0x64, 0x5, 0x4, 0x6}, {0x3ff, 0xecfa, 0x3, 0xcf4, 0x4, 0x3}, {0xf6a, 0x5, 0x200, 0xc, 0x4779, 0x80000001}, {0x4, 0x1949e1b6, 0xa304, 0xd9bd, 0x200, 0x2}, {0xffffff53, 0x7f, 0xba, 0x6, 0x3, 0x1}, {0x91, 0x2, 0x8000, 0x6, 0x3, 0x5}, {0x3, 0x1, 0x9, 0x7, 0x87e, 0x401}, {0x5773, 0x8001, 0x7fff, 0x8, 0x400, 0x2}, {0x730, 0xff, 0x4, 0x5, 0x33a, 0x3f}, {0x2, 0x4, 0x5, 0x3, 0x6, 0xa}], [{0x5}, {0x1}, {0x3, 0x1}, {0x1}, {0x3, 0x1}, {}, {0x8c7060c111ef1ad1, 0x1}, {0x6, 0x1}, {0x2}, {0x6}, {0x4}, {0x4}, {0x1}, {0x0, 0x1}, {0x3}, {0x4, 0x1}, {0x2, 0x1}, {}, {0x4}, {0x2}, {0x7}, {0x1, 0x1}, {0x2}, {0x0, 0x1}, {0x5}, {}, {0x4}, {0x5}, {0x1, 0x1}, {0x5, 0x1}, {}, {}, {0x5}, {}, {0x3, 0x1}, {0x6}, {0x2}, {0x4}, {0x1}, {}, {0x2, 0x1}, {0x2, 0x1}, {0x6}, {0x5, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {}, {0x0, 0x1}, {0x1, 0x1}, {0x1}, {0x1, 0x1}, {0xd74537a30a97a3bb}, {0x5}, {0x5, 0x1}, {0x5}, {0x1}, {0x2, 0x1}, {0x2}, {0x2, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x5}, {0x5, 0x1}, {}, {0x2}, {0x4, 0x1}, {0x5}, {}, {0x5, 0x1}, {0x2}, {0x4}, {0x4}, {0x1, 0x1}, {0x1}, {}, {0x0, 0x1}, {0x1}, {0x3}, {0x4}, {0x2}, {0x0, 0x1}, {0x3, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x2}, {0x5}, {0x1}, {0x1}, {}, {0x4}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x2, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x4}, {0x2}, {0x5}, {0x3, 0x1}, {0x3}, {0x2}, {0x1, 0x1}, {0x1, 0x1}, {}, {0x2}, {0x3, 0x1}, {0x3, 0x1}, {0x5}, {0x3, 0x1}, {}, {0x3}, {0x4, 0x1}, {0x3, 0x1}, {0x3}, {0x5, 0x1}, {0x3, 0x1}, {0x5}, {0x1, 0x1}, {0x4}], 0x1}}, @TCA_PEDIT_PARMS={0xe98, 0x2, {{{0x4, 0x4, 0x7, 0x9, 0x7}, 0x63, 0x9, [{0x2, 0x0, 0x101, 0x1, 0x6, 0x6}, {0x0, 0x9, 0x487b, 0x38, 0x8, 0x9}, {0x45, 0xa, 0xba, 0xfffffffb, 0x0, 0xf}, {0x9, 0x10, 0x8, 0x8, 0x7f, 0x9}, {0x7, 0xffffffc0, 0x3ff, 0x6, 0x6, 0xc}]}, [{0x6cad, 0x2, 0x9, 0x19, 0x7, 0x8}, {0x3, 0xa, 0xf321, 0x3, 0x7ff, 0x3b}, {0x0, 0x2, 0x1, 0x401, 0x1, 0x8}, {0x4, 0x200, 0x6, 0x8ce, 0x9, 0xff}, {0xff, 0x3, 0x9, 0x6195, 0x8, 0x2}, {0x7f, 0x4, 0xfffffffb, 0x3, 0x5, 0x5}, {0x6, 0x1, 0x7, 0x2, 0xffffff8e, 0x6}, {0x1, 0x5, 0x7b, 0x6, 0x4, 0x8}, {0x9, 0x8000, 0x6, 0xfffffbff, 0x8, 0xfffeffff}, {0x1, 0x9, 0x9, 0xf2b, 0x1, 0x9}, {0x4, 0xffff, 0xffff3ae4, 0x7, 0x1, 0x8}, {0x80000, 0x3, 0x306, 0xffffffc0, 0x5, 0x8}, {0x5, 0x1, 0x5, 0x2, 0x80, 0xffff}, {0x9, 0x7, 0x3, 0x10000, 0xb0, 0x3}, {0x8, 0x69d, 0xadd8, 0x8001, 0x8000, 0x400}, {0xda11, 0x609, 0x8, 0x1ff, 0x6fb, 0x5}, {0x8, 0x80, 0xea2, 0x5840, 0x3, 0x10000}, {0x9, 0x2, 0x16c, 0xfffffff8, 0x0, 0x7}, {0x5, 0x9, 0x100, 0xd, 0x2000000, 0x6}, {0x4, 0x1, 0x5a6, 0x1aef3596, 0xb, 0x9}, {0x3, 0x0, 0xfffffffe, 0x5, 0x9, 0x40}, {0x5, 0x4, 0x5, 0x8, 0x1, 0x1}, {0x310, 0x1800000, 0x6, 0x3ff0000, 0x5706, 0x4}, {0x9, 0x10001, 0x0, 0x26, 0x9, 0x100}, {0x1, 0x47, 0x6, 0x7, 0x8001, 0x80000001}, {0x722e, 0x3, 0x8, 0x7, 0x6, 0x4}, {0x6, 0x9, 0x9, 0x7, 0x5, 0x4}, {0x2, 0x8, 0x2, 0x3, 0x7f, 0x2}, {0xfffffffc, 0xffffffff, 0x800, 0x5, 0x6, 0x2}, {0x2, 0xe, 0x81, 0x7, 0xffff, 0xac0}, {0x94cf, 0x7, 0x6f95, 0x3, 0x691d, 0xb5}, {0x7fffffff, 0xffff0001, 0x2, 0xe9, 0xa, 0x7ff}, {0x3, 0x3, 0x9, 0xfff, 0x0, 0x3}, {0x8000, 0x0, 0x100, 0x5, 0xffff, 0x401}, {0x2, 0xfffffffe, 0x9, 0x2, 0xd, 0x6}, {0x72000000, 0x82, 0x6b146535, 0x8001, 0xfffffd04, 0x3}, {0x80000000, 0x9, 0xfffffffb, 0x70, 0x4, 0x200}, {0xf, 0x2, 0x5, 0x4, 0x7, 0x8}, {0xd, 0xde58, 0x8, 0x4, 0xf36, 0x100}, {0x40, 0x53b00732, 0x3, 0x0, 0xfffffff8, 0x5}, {0xf, 0xe000000, 0xc, 0x0, 0x2, 0x4}, {0x0, 0xfffffff7, 0x1, 0x8, 0x2, 0xfffffffd}, {0x1, 0x1, 0x400, 0x5, 0x7fff, 0x8}, {0xffffffdc, 0x2, 0xb1, 0x0, 0x1, 0x1}, {0x7, 0x8, 0x34, 0x9ffd, 0x2, 0x3}, {0xadfb, 0x7, 0xe, 0xe37, 0xbdf, 0x84}, {0x7f, 0x474, 0x10, 0x9, 0xa67, 0xcd}, {0x6, 0xbd, 0x7, 0x2, 0x8, 0x7}, {0x9, 0x8, 0x2, 0x3ff, 0x81, 0xc}, {0x10001, 0x42, 0x6, 0x5, 0x7f, 0x1}, {0xf5, 0x4, 0x8, 0x3, 0x2, 0x9f11}, {0x400, 0x6, 0x80000000, 0x7, 0x5, 0x4}, {0x0, 0x2, 0x2, 0x4, 0x10, 0x4}, {0xffffff07, 0x14e3, 0x80000001, 0x1, 0xf8000000, 0x4}, {0xf2b, 0x5, 0x3, 0xc, 0x7, 0x8001}, {0x1, 0x1000, 0x58a, 0x80, 0x81, 0x7b53}, {0x4, 0x8, 0x5, 0x3, 0x400, 0x101}, {0xe, 0x2, 0x0, 0x7ff, 0x3e, 0x3}, {0x10, 0xeca1, 0xe, 0xd7e, 0x2, 0x8}, {0x1, 0x2, 0x1, 0xffffffff, 0x2, 0x5}, {0x9, 0xffff, 0x5, 0x800, 0x759, 0xfffffff7}, {0x5, 0x3, 0x5, 0x2, 0x8, 0x3}, {0x8, 0x7f, 0x5, 0x4c, 0x7, 0x800}, {0x8, 0x5, 0x7, 0x9c2b, 0x883, 0x8000}, {0x3, 0x1, 0x4, 0x50, 0x6, 0xfffffffc}, {0x101, 0x800, 0xb, 0x1, 0x3, 0x6}, {0x0, 0x3, 0x101, 0x172, 0xa20b, 0x2}, {0xffffff3b, 0x435, 0x1, 0x7, 0x0, 0x6}, {0x3, 0xcd0, 0x9, 0x1000, 0x8000, 0x8}, {0x9, 0x5, 0x1ff, 0x6, 0x0, 0x3}, {0x400, 0xffff0001, 0x7ff, 0x4, 0x8, 0xe}, {0x5, 0x1, 0x8, 0x7, 0x2, 0xffffffff}, {0x10001, 0x9, 0x4, 0x4, 0x1ff, 0x175d}, {0x8, 0x101, 0x100, 0xb5f, 0x1, 0x1}, {0x10000, 0x6c01, 0x4, 0xd, 0x81, 0x6}, {0xfbc, 0x4, 0x7, 0x8000, 0x0, 0x400}, {0x80000001, 0x4, 0x20000, 0x6f9f, 0x1, 0x9}, {0xffffffff, 0x3, 0x3, 0x5, 0x3ff, 0x9}, {0x8, 0x9, 0x9, 0x6, 0x7, 0x8aaa}, {0x4, 0x7, 0xc316, 0x4, 0x8, 0x800}, {0x9, 0x3ff, 0x7, 0x9, 0x7fff, 0x1}, {0x5, 0x9, 0x1, 0x2, 0x8, 0xfffffffb}, {0xe6, 0x5, 0x9, 0x6, 0xfff, 0x2}, {0x3ff, 0x0, 0x44, 0x6, 0xa1, 0x8}, {0x0, 0x1ff, 0x0, 0x1, 0xffffffff, 0x9}, {0x4, 0x1dd993df, 0x200, 0x6, 0xec, 0xfffffffc}, {0x4, 0x401, 0x3, 0x1, 0x9, 0x4}, {0x5, 0x5, 0x9, 0x9, 0x9, 0x8}, {0xff, 0xfffffd8c, 0xffffffff, 0x8, 0x8, 0x2}, {0x9, 0xff, 0x9, 0x3, 0x401, 0x6}, {0x100, 0x7, 0x400, 0xa, 0x5, 0x871c0000}, {0x7, 0x800, 0x3, 0x8, 0x3, 0x10}, {0xd7a, 0x0, 0x3, 0x3, 0x4e0, 0x92d5}, {0x7, 0x1, 0x7, 0x4, 0x9, 0x100}, {0x6, 0x8, 0x6, 0x200, 0x3b, 0x3}, {0x7, 0x635, 0x89f, 0x4, 0x4b4f, 0x9}, {0x8000, 0x6, 0x8, 0x6, 0x8000, 0x3}, {0x2, 0xe, 0x2, 0x3, 0x4, 0x1}, {0x9, 0x1, 0xfa, 0x4, 0x9}, {0x0, 0x0, 0x7, 0x80, 0x7, 0x7ff}, {0xbe, 0x4, 0x0, 0x107, 0x86, 0x2}, {0x1, 0x0, 0x9, 0x4, 0x6d3b, 0xb4e}, {0xc8e, 0x32a, 0x3ff, 0xee, 0xb, 0x8}, {0x5, 0x6, 0x0, 0x392, 0xd, 0x80000001}, {0x4, 0x9, 0x9, 0x6, 0xc, 0x1111}, {0x10, 0x3, 0x7, 0xb, 0x6, 0x8}, {0x0, 0x8, 0x7, 0x401, 0x9, 0x8}, {0x8000, 0x4, 0x5, 0x0, 0x7, 0x1ff}, {0x7, 0x2, 0x7, 0x1, 0x4, 0x7}, {0x81, 0x4, 0xffffff0a, 0x7, 0x7c70e20d, 0x5}, {0x8, 0x8, 0x1, 0x3, 0x0, 0xa2c3}, {0x401, 0x3, 0x91, 0x9, 0x0, 0x7}, {0xf, 0xe, 0x4, 0x6, 0x5, 0x7f}, {0x6a, 0x6, 0xa, 0x4, 0xfffffffc, 0x7}, {0xfa, 0xfffffffd, 0x101, 0x3ff, 0x0, 0x80000000}, {0x7, 0x200, 0x5, 0x200, 0x7, 0x6}, {0x9, 0x7f, 0x1, 0x14, 0x2, 0x4}, {0x7ff, 0x66, 0x6, 0x9, 0x3a4, 0x800}, {0x100, 0x8, 0x7, 0x8, 0x1, 0x1}, {0x6, 0x10, 0x8, 0x101, 0x7, 0xb}, {0x3, 0x400, 0x28e9, 0x8, 0x1ff, 0x7}, {0x0, 0x200, 0xfff, 0x2, 0x9, 0x3}, {0x5, 0x7, 0x2, 0x1c00, 0x80000000, 0x3d}, {0x180, 0x8, 0x401, 0x8, 0x3}, {0x1, 0x40000, 0x0, 0x50415a7a, 0xe, 0x9}, {0x8001, 0x2637, 0xffff, 0xfffffff7, 0x342fd606, 0xfffffff9}, {0x4, 0xd685, 0x6, 0x2, 0x7, 0x3}, {0x6, 0x8, 0x7, 0x401, 0x1, 0x1000}], [{0x1, 0x1}, {0x2}, {0x1}, {}, {0x0, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {0x1}, {0x1}, {0x3}, {0x1}, {}, {0x2, 0x1}, {0x0, 0x1}, {0x2}, {0xe}, {0x4}, {0x0, 0x1}, {0x4, 0x1}, {}, {0x5, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {}, {0x4}, {0x1, 0x1}, {0x4}, {0x4}, {}, {0x2, 0x1}, {0x3, 0xdfeb1a66d90f61c9}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x5}, {0x1, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x0, 0x1}, {0x2}, {0x5, 0x1}, {0x3}, {0x1}, {0x3, 0x1}, {0x3}, {0x5}, {0xb64ec48b16e9a22f}, {0x2}, {0x0, 0x1}, {0x2}, {0x1, 0x2}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x5, 0x1}, {0x2}, {0x2, 0x1}, {0x2}, {0x2}, {0x7}, {0x2}, {0x5, 0xf3f2930f0110e610}, {0x3}, {0x1, 0x1}, {0x4}, {0x0, 0x1}, {}, {0x3, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x4}, {0x3}, {}, {0x4, 0x1}, {0x1}, {0x4}, {0x1}, {}, {}, {0x2, 0x1}, {0x4}, {0x4, 0x1}, {0x5, 0x1}, {0x5}, {0x4, 0x1}, {0x4}, {0x1, 0x1}, {0x4}, {0x5, 0x1}, {0x3}, {0x3, 0x1}, {0x3, 0x1}, {0x2}, {0x1}, {0x4, 0x1}, {0x2, 0xef89e2f9e60b0676}, {}, {0x0, 0x1}, {0x2, 0x1}, {0x5}, {0x1}, {0x2}, {0x3, 0x1}, {0x5}, {0x5, 0x1}, {0x4}, {}, {0x5, 0x1}, {}, {0x4, 0x1}, {0x2, 0x1}, {0x2}, {0x5, 0x1}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x4}, {0x0, 0x1}, {0x5, 0x1}, {0x3}, {0x0, 0x1}]}}]}, {0xf5, 0x6, "8485d3ddf1c6bea9a72fedd227659b7023a3c1f6644f18609b432d862f0daed2bcb0cae1f8d6684fc35b586adcfb874c90e44c15fc1d735583a226f0b67ad2aba7cedf0658d564e571378fc1cd66327ea687d86d9557227f482b28da03fb97bb21c2e72f99c39aae765e3ecc5d8509a9bcf41d91ea215ccbb536021d86eebd1a5af124b55ef0d4a835e21e96459b103c89b980a707cd01982cbeb1de5f9322c6ce18fb7624bc3edaa77b5d45e9fa86000bd6f49bbc660ec9684507fce0769fcc79912b55ab3ef72cc9b24c72be800da09f964d825c8fbb4bfdd6234a71043b05f350f516d73caa28c615826ffae57709dd"}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_police={0x1e5c, 0x13, 0x0, 0x0, {{0xb}, {0x1df0, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x8e66, 0x8, 0x9, 0x4, 0xfffffffa, {0x4, 0x0, 0x1000, 0x7, 0xfff9, 0x8001}, {0x5, 0x2, 0x3, 0xfff8, 0xfff, 0x8}, 0x7f39, 0x40, 0xd2}}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_TBF={0x3c, 0x1, {0x10, 0xffffffffffffffff, 0x1, 0x40, 0x6, {0x5b, 0x1, 0xfffb, 0x4, 0xf3da, 0x9}, {0x40, 0x1, 0x9, 0x0, 0xfff, 0x8000}, 0x5, 0x9, 0x800}}], [@TCA_POLICE_RATE={0x404, 0x2, [0x6, 0x4, 0x9, 0x2, 0x6, 0x200, 0x5, 0xb, 0x5, 0xd16e, 0xed, 0x7, 0x3, 0x81, 0x7de, 0x1, 0x4, 0x800, 0xc, 0x58, 0x8001, 0x1ff, 0x2, 0x0, 0x7ae, 0x8, 0x3, 0x3, 0x7, 0xe48b, 0xf6, 0x7, 0x6, 0x5, 0x8, 0x9, 0x0, 0x4, 0x2fce, 0x8, 0x7, 0xc0a6, 0x4, 0x3, 0x5, 0x7ff, 0x0, 0x0, 0x7, 0x0, 0x2, 0x1, 0x8, 0x568, 0xc, 0x6, 0x7fff, 0x4, 0xf1, 0x1, 0xc, 0x766, 0x5, 0x5, 0x400000, 0x1, 0x2d, 0x3, 0x9, 0x2, 0x0, 0x3, 0x2, 0x4, 0x0, 0x2, 0x1, 0x6242ceec, 0x0, 0xa092, 0xc443, 0x2, 0x2, 0x3d9ad98b, 0xa, 0x4, 0x9, 0x83, 0x7, 0xa0000000, 0x8, 0x3, 0x7f, 0x0, 0xff, 0xffffffe1, 0x7fffffff, 0x400, 0x1ce7, 0x7, 0x1, 0x11, 0x6, 0x6, 0x2, 0x7, 0x5, 0x5, 0x7, 0x3, 0x2, 0x8000, 0x4, 0x293, 0x3, 0xffff, 0xffffffff, 0x6, 0x6af, 0x3, 0x1, 0x1, 0x5, 0x1, 0x9, 0xf, 0xb, 0x3, 0x8, 0x7ff, 0xe9d8, 0x0, 0x3, 0x3, 0x2, 0x4, 0x7, 0x9, 0x2, 0x0, 0x4, 0x10001, 0x1, 0x2, 0x6, 0x8001, 0x4, 0x1, 0x9, 0x0, 0x1ca, 0x2, 0x342b, 0xaa, 0x26e, 0xa, 0x7, 0x100, 0xffffffff, 0xffff, 0x1bd5, 0x400, 0x0, 0x6, 0x9, 0x8, 0x2, 0x8, 0x0, 0xb561, 0x9, 0x5, 0x7fffffff, 0x4, 0x7, 0x81, 0x81, 0xffffffff, 0xffffffff, 0x2, 0xfff, 0x3, 0x8, 0x400, 0x5, 0x5, 0x9, 0x5, 0x80000000, 0x7, 0xfffffff9, 0x8, 0xcd, 0x4d5a, 0x2, 0x2, 0x1, 0x5, 0x6, 0xf, 0x6, 0x8f, 0xffff, 0xd, 0x5, 0x6, 0xf267, 0x200, 0x3, 0x1, 0x5, 0x4be, 0x5, 0xe, 0x8b5, 0x1, 0x1, 0x6, 0x4, 0x1, 0x80000000, 0x5, 0x8, 0x80000000, 0x81, 0x2, 0x9, 0x4, 0x1, 0x2, 0x2, 0x80000000, 0x8, 0x2, 0x1, 0x7, 0x1, 0x200, 0x1, 0x8001, 0x400, 0x0, 0x3, 0x7f, 0xd5d, 0x5b, 0xbd9, 0xb4e, 0x7, 0x4, 0x2, 0x5, 0x7, 0x4, 0xffffae98, 0x96d]}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3}, @TCA_POLICE_RESULT={0x8, 0x5, 0x6}, @TCA_POLICE_TBF={0x3c, 0x1, {0xfffffc01, 0x8, 0xa, 0x80, 0xba7a, {0x30, 0x1, 0xfffd, 0x3, 0x2, 0x5}, {0x1, 0x0, 0x1000, 0x5, 0x6, 0x7fffffff}, 0xffff, 0x7fffffff, 0x10}}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x5, 0xbc0, 0x2, 0xc4, 0x3, 0x5, 0x7, 0x8, 0x8d74, 0x1ba, 0x4, 0x7ff, 0x7, 0x3, 0x1, 0x0, 0x2, 0x3, 0x401, 0x5, 0x7fff, 0xfffffffe, 0x4, 0xfffffffe, 0x3, 0x3, 0x0, 0x2, 0x7, 0xf4, 0x8, 0xbe, 0x800, 0x7, 0x9, 0x10000, 0x7, 0x81, 0xf, 0x2, 0x80000000, 0xb, 0xffff0001, 0xd, 0xffff, 0x2, 0x6, 0xd744, 0x0, 0x3, 0xd, 0xdca, 0x8, 0xfffff001, 0x3, 0x5, 0x80, 0xfffffffa, 0x8, 0x2, 0x4, 0xee, 0x40, 0xf8e0, 0x80, 0x3, 0x1, 0x6, 0xfff, 0xcf88, 0xd9d, 0x2, 0x0, 0x3, 0x5, 0x73, 0x200, 0x3, 0x6, 0x6, 0x101, 0xfffff0aa, 0x9, 0x200, 0x9, 0x3ff, 0x8, 0xa6d, 0xe5, 0xf, 0x5, 0x900, 0x2, 0x80, 0x9, 0x7f, 0x8, 0xffffffff, 0x3, 0xff, 0xfffffa9d, 0x9, 0x100, 0x4, 0xffffffff, 0x8, 0xffff0000, 0xe, 0x6, 0x8, 0xe, 0x7, 0x1d3c16cc, 0x0, 0x7, 0x5185, 0xc26, 0x0, 0x7, 0xb316, 0x7, 0x58, 0x1, 0x6, 0xeef, 0x23, 0xfffffff4, 0x2, 0x82000, 0x2, 0x7, 0xf56b, 0x0, 0x800, 0x8, 0x100, 0x5, 0xfffffff7, 0x3, 0xffffff80, 0x6, 0x5, 0x1, 0x6, 0x5, 0x1d5, 0x100, 0x6, 0xbc64, 0x2, 0x1, 0x7, 0x63b2, 0x5cf4, 0x8, 0x8, 0x7ff, 0x4c, 0x6, 0x36d6, 0xa8, 0x200, 0x10, 0x82c, 0x1, 0x9, 0x5dd7, 0x8, 0xb, 0xfffffffd, 0x7, 0x9f0, 0x9, 0x1000, 0xc, 0xff, 0x6, 0x3a, 0xa, 0x0, 0xfff, 0x2, 0x6, 0x40, 0x80000001, 0x7fff, 0x3, 0x6, 0x8, 0x9, 0xc8, 0x2, 0x5a57, 0x2, 0x7, 0x2, 0x3, 0x0, 0x6, 0x1, 0x5087819e, 0x401, 0xd, 0x781755d5, 0xc, 0x36, 0x3, 0x40, 0x10001, 0x9, 0xc914, 0x4, 0xd, 0x5, 0x4, 0x81, 0x2, 0xfffffff7, 0xfff, 0x401, 0x1cb, 0xffffff81, 0x6, 0xff, 0x7f, 0x3, 0x8, 0x1d8, 0x0, 0x80000001, 0x7, 0x20, 0x1, 0x436, 0x4, 0x2949, 0x8, 0x59, 0x80, 0x5, 0x2, 0x3, 0x5, 0x4, 0x2, 0x7fff, 0x8000, 0xf1e1, 0x2, 0x2, 0x5, 0x3, 0x7, 0x1, 0x9]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x7fffffff, 0xb1ac491bc9f548b8, 0xfffffff8, 0x1000, 0xafd, {0xdf, 0x2, 0x8, 0x4, 0x81, 0xfffffffc}, {0x7, 0x0, 0xf2, 0x3, 0xf, 0x8}, 0x7fffffff, 0x4, 0x2}}], [@TCA_POLICE_RATE64={0xc, 0x8, 0x4d}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xdab}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x3, 0x7f, 0x80000001, 0x9, 0x7, 0x2d, 0x2000, 0x7, 0x99f5, 0x8, 0xf, 0x7f, 0x7f, 0x8, 0x2, 0x3, 0x38b, 0x1, 0x8, 0x2, 0x7, 0x1600000, 0x3, 0x8, 0x4, 0x5, 0x1, 0x2, 0x3, 0x0, 0xfffffffc, 0x8, 0x0, 0x8, 0x1, 0x4, 0x5, 0x5, 0x9, 0x2, 0x2, 0x573c, 0x262, 0xffffffff, 0xb2f2, 0x7, 0xb3c6, 0x697d, 0x0, 0x4, 0xaa2d, 0x0, 0x400, 0x7f, 0x0, 0x7fffffff, 0xe73, 0x3, 0x0, 0x8, 0xbd3, 0x1a1, 0x5c, 0xa5, 0x7, 0x7fffffff, 0x200, 0x6, 0x5922, 0xfffffffc, 0x5, 0x7c, 0x80000001, 0x3, 0xfff, 0xffffff7f, 0x9, 0x2, 0x7, 0x10001, 0xb, 0x1, 0x40, 0x4, 0x1, 0x7, 0x9, 0x4039, 0x10001, 0x7, 0x64, 0x5, 0xad7, 0x800, 0x10, 0x1, 0x4, 0x0, 0xb, 0x2, 0x8, 0x7, 0x7, 0x3, 0xb, 0x6, 0x8001, 0x7f, 0x4, 0x7, 0x7ff, 0x1, 0x245, 0x0, 0x8000, 0x3, 0xffff, 0xfffffff7, 0x1ff, 0x80000001, 0xc4cd, 0x7bc, 0x1, 0x6, 0x7, 0x8, 0x1000, 0xa61, 0xec, 0xd, 0x8, 0x401, 0x4, 0xffffffc0, 0x3, 0x0, 0x0, 0xf, 0x6, 0x3, 0x8, 0x2, 0x0, 0x401, 0x7, 0x8, 0x1, 0x5, 0xffffffff, 0x1, 0x2, 0x4, 0x989, 0x63c, 0x9, 0x6, 0xffff3dac, 0x7fff, 0x4, 0x1, 0x0, 0xffffffff, 0x1, 0x9, 0x8, 0x7, 0xfffffeff, 0x8, 0x0, 0x7fff, 0x8001, 0x8, 0x5, 0x2, 0x4, 0x9, 0x3, 0xc000000, 0x2, 0x1000, 0x0, 0x431, 0x2, 0xf8, 0x2, 0x8, 0x7, 0x80000001, 0x7f, 0xaad, 0x7, 0x5, 0xc, 0x6, 0xfffffff9, 0x5, 0x3, 0x3, 0x4, 0xac, 0x4, 0x5, 0x5, 0x240000, 0x3, 0x8, 0xba9, 0x9, 0x800, 0x8, 0x1, 0x7, 0x5, 0x80, 0x2, 0xfff, 0x3ff, 0x80000001, 0xb76b, 0x5, 0x2d, 0x8001, 0x10000, 0x5, 0x401, 0x4, 0x0, 0x7, 0x5, 0x5, 0xfffffffa, 0x1, 0xfffffff8, 0x1, 0xffffffb3, 0x8, 0x3, 0x4, 0x100, 0x81, 0xfff, 0xfffff665, 0x9, 0x4, 0x6, 0x3, 0x4, 0x80, 0x9, 0x8975, 0x0, 0x3, 0x4d1f, 0x9, 0x10001, 0x5b67]}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0xf5a1, 0x3ff, 0xe389, 0x3c8, 0x1, 0xffffff80, 0x80, 0x3, 0xa9, 0x80, 0x5, 0xf, 0x0, 0x6, 0x1, 0xffffcf9b, 0x465, 0xc, 0x1, 0x6, 0x71, 0x9, 0x5, 0x5, 0x2, 0xb, 0xfff, 0x7, 0x4, 0x9, 0x1, 0x8, 0x2, 0x4, 0x52, 0x9, 0x80, 0x10000, 0x6, 0x7, 0x5, 0x8, 0x2, 0x5, 0xffffff81, 0x9, 0x4, 0xfff, 0x9484, 0x5b2, 0x8, 0xffd, 0x36, 0x3, 0x8000, 0x18, 0x2, 0x9, 0x10, 0xfffffff9, 0xa, 0x6, 0x101, 0x1, 0x7e, 0x40, 0x2, 0x2, 0x37, 0xfff, 0x8, 0x9, 0x1000, 0x10001, 0x40, 0x6, 0x18, 0x9, 0x2, 0x8001, 0x4, 0x0, 0xfe, 0x3ff, 0x6, 0xda2, 0x1, 0x10, 0x5579, 0x739, 0x7, 0x6524, 0x4ff, 0x3, 0x7, 0x9, 0x7, 0x4, 0x4, 0x8000, 0x80000000, 0x7ff, 0x4, 0x405e, 0x6, 0x8, 0x2, 0x32e, 0x6, 0x5, 0xc1, 0xdcb5, 0xc, 0x80000001, 0xfffffff9, 0x1, 0x10000, 0x3, 0x7, 0x6, 0x1, 0x9, 0xffff, 0x6, 0x6, 0x10000, 0x4, 0x0, 0x3, 0x8, 0x1, 0x8, 0x3, 0x9, 0x2, 0xe, 0xa, 0x14d4, 0xea83, 0xa, 0x6, 0x58a16453, 0xff00000, 0x0, 0x9, 0x8, 0x5, 0x4, 0x33, 0xff, 0x1ff, 0x7, 0xffff, 0xdc, 0xfffffffa, 0x3, 0x4, 0x7, 0x6, 0x80dc, 0xb22, 0x80, 0x2, 0x8000, 0x2, 0x9, 0x47d9, 0x7, 0x2, 0x6, 0x3, 0xffffff00, 0x3, 0x5, 0x4, 0x9, 0x7f, 0x6, 0x8, 0x8, 0x7, 0x4, 0x7, 0xd5c, 0x7, 0x3, 0x2, 0x4, 0x80, 0x5, 0x1, 0x8, 0x4, 0x10001, 0x9d9, 0x0, 0x3, 0x3, 0x1000, 0x3, 0x2, 0x401, 0x10001, 0x81, 0x7fff, 0x2, 0x1, 0x3, 0x6, 0x7, 0x5, 0x4b2c, 0x1, 0x80, 0x4, 0x3, 0x0, 0xfffff2ad, 0x4, 0x0, 0x5f6, 0x2, 0xfffffff9, 0x2, 0x10000000, 0x0, 0x100, 0x5, 0x401, 0x5, 0xd, 0x0, 0x9, 0x0, 0x80000000, 0x40, 0x3, 0x0, 0x0, 0x10001, 0x7fff, 0x6, 0x3, 0x90, 0x2, 0x8, 0x6, 0x7, 0x6, 0x1, 0x3, 0x3, 0x7f, 0x7, 0x401, 0x1]}, @TCA_POLICE_TBF={0x3c, 0x1, {0xfff, 0x0, 0x39edfa3b, 0x81, 0x1000, {0x1, 0x2, 0x2, 0x9, 0x5, 0x9}, {0xac, 0x2, 0x6, 0x80, 0xc9d, 0x4}, 0x0, 0x6, 0x8}}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x4e2e32b2}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x3be2}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x7ff, 0x6, 0x2, 0x3, 0x4, 0x9, 0x200, 0x3, 0x5, 0xb901, 0x6, 0x5, 0x4, 0x4, 0x2a4, 0xfffffffc, 0x5, 0x1, 0x8, 0x1000, 0xe, 0x5, 0xd, 0x2, 0x5, 0x4, 0x98ba, 0x4, 0x9, 0x8001, 0x9, 0x3, 0x6, 0xf, 0x0, 0x5, 0x5a57, 0x2, 0x5, 0x7, 0x4, 0x9, 0x3, 0x6, 0x0, 0x2, 0xfffffffb, 0x0, 0xff, 0x970, 0x5, 0x8001, 0xffffffff, 0x0, 0x8, 0x80, 0x1000, 0x4, 0x4, 0x0, 0x401, 0x6f1, 0x4, 0x2b5, 0x0, 0x140000, 0xa, 0x1, 0x3a, 0x80000001, 0x2, 0xbd, 0xe, 0x2, 0x7f, 0x0, 0x4000000, 0x8, 0x2, 0x72, 0x3, 0x6, 0x1, 0x1, 0x100, 0x4, 0x17f, 0x1, 0x2, 0xb739, 0x7f, 0x9, 0x0, 0x2, 0x7fff, 0x4, 0x8, 0x1ff, 0x6, 0x0, 0x4, 0x2, 0x8000, 0x0, 0x1, 0x5, 0x0, 0x2, 0x6, 0x9, 0x5, 0x812, 0xffffffff, 0x4, 0x100, 0x200, 0x4, 0xfffffffd, 0x255, 0x6, 0x9, 0x7, 0x3, 0xe, 0x4, 0xe8, 0x2, 0xf, 0x49a73eb7, 0x1, 0x5, 0x7, 0x96, 0xd3, 0xffff0001, 0x0, 0x5, 0x6, 0x3, 0x100, 0x8, 0xfffffffd, 0x1, 0x4, 0x10000, 0x6, 0x4, 0x8, 0x6, 0x6, 0x3, 0x86c, 0x6, 0x8001, 0x7, 0x0, 0x9, 0x3, 0x5, 0x0, 0xcd, 0x4, 0x7f, 0x7, 0xb6, 0x9, 0x503, 0x2, 0x8, 0x9, 0x7, 0x1, 0xa0000, 0x5, 0x0, 0x6, 0x1, 0x9, 0x800, 0x9, 0x4, 0x2, 0x6, 0xcb4, 0x2b, 0x2, 0x2, 0x1, 0x80000000, 0xee89, 0x1, 0x5, 0x78e8ac68, 0x4, 0x0, 0x6, 0xfffffffb, 0x1, 0x1, 0x4, 0x3ff, 0x1, 0x800, 0x0, 0x9, 0xff, 0x800, 0x10001, 0x7, 0x28000000, 0xa, 0xfffffffa, 0xfffffffb, 0x4, 0x6, 0xe, 0x1ff, 0x1, 0x65, 0x1, 0x0, 0x730, 0x80, 0x401, 0x4, 0x4, 0x0, 0x3, 0x3, 0x80, 0xf64, 0x2, 0x5, 0xffff, 0x5, 0x68bc, 0x0, 0x101, 0x2, 0x6, 0x8, 0x4, 0x220, 0x8001, 0x4, 0x767e21c2, 0x9, 0x5, 0x1, 0x2, 0x2e9, 0x9, 0x6, 0x7, 0xb, 0x8001]}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x6, 0xa, 0x6, 0x2, 0x6, 0x1, 0x5, 0x9bb, 0x2, 0x3, 0xe, 0xa0000000, 0x2, 0x5, 0x0, 0x7, 0x3, 0x6, 0x1, 0x7f, 0xe09, 0x8b9, 0x4, 0x3, 0x400, 0x4, 0x9, 0xa5, 0x5, 0x7ff, 0x0, 0x10001, 0x5, 0x2, 0x1, 0x7, 0xe, 0x4297, 0x9, 0x1, 0x10000, 0x9, 0x3e1, 0x3, 0x1, 0xffff, 0x3, 0xffffffff, 0x5, 0xffff, 0x10, 0x9, 0x6, 0x3, 0x1, 0x9, 0x8, 0x2562, 0x8, 0x0, 0x1, 0x0, 0xacc, 0x9, 0x401, 0x9be0, 0xffffff80, 0xe0, 0x9, 0x0, 0x337, 0x0, 0x80, 0xf, 0xffff8000, 0x4, 0x4, 0x7, 0x6, 0x0, 0x8e000000, 0x0, 0x10000, 0x1, 0xfffffffe, 0x9, 0x6, 0x6, 0x995f, 0xe0000, 0x1, 0x3ff, 0x9, 0xb, 0x2, 0x0, 0x0, 0x2, 0x3, 0x4, 0x20, 0x400, 0x10, 0x7, 0x7, 0x3, 0xff, 0x80000000, 0x4, 0x9, 0x8, 0x1e841ed4, 0x3, 0x1, 0x80000001, 0x10, 0x2, 0x7fffffff, 0xfffffffd, 0x2, 0x9, 0x1, 0x1000, 0xa9, 0xdf, 0x3, 0x5e3, 0x5, 0xfffffffd, 0x1ff, 0x200, 0xfffffffa, 0x4, 0x0, 0x5, 0xc1, 0x7, 0x1, 0x9, 0x0, 0x7b4, 0x3, 0x2, 0xd, 0x0, 0xa, 0xffffff7f, 0x4, 0xea4, 0x3, 0x3, 0xb6b, 0x3, 0x4, 0x5e6, 0xf, 0xa, 0x7f5, 0x4, 0xf, 0x6, 0xfffffff8, 0x8, 0x13c7, 0x4, 0xfffffff9, 0xfffffffa, 0x8, 0x4, 0x735, 0x8, 0xff, 0x0, 0xfff, 0x5, 0x55b1b8e8, 0x7, 0x7, 0x9, 0x40000000, 0x1, 0x42e3, 0xfffffff7, 0x3, 0x4, 0x5, 0x5444, 0x3, 0x0, 0xd, 0xe, 0x9, 0x53, 0x40, 0x4768, 0x0, 0xa, 0x7, 0x8000, 0x4000, 0x4, 0x0, 0x9, 0xfe0, 0x800, 0x31, 0x6, 0xbc97, 0x7f, 0x8, 0x0, 0x8, 0x4, 0x8, 0x6, 0x1, 0x2, 0x4, 0x0, 0xfffffffb, 0x0, 0x5, 0x1, 0x7, 0x0, 0x7, 0x6, 0x8, 0x1, 0x2, 0x8000, 0x5, 0x3ff, 0x1, 0x4, 0xbda, 0x6, 0x1, 0x5, 0x1ff, 0x7f4, 0x0, 0xdac, 0x800, 0xfffffff8, 0xb8, 0x5, 0x840, 0x6, 0x10, 0xc50, 0xeed3, 0x80000000, 0xffffff81, 0x400, 0x6]}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x9}, @TCA_POLICE_RATE={0x404, 0x2, [0x3, 0x6, 0x6, 0x8001, 0x7ff, 0xf136, 0x6, 0x1, 0xe183, 0x7, 0x7c, 0x3, 0x8, 0x7, 0x0, 0x2, 0xe, 0x6, 0xc, 0x1a35, 0x25d78846, 0xc, 0x5, 0x1000, 0x1, 0x3367, 0x7f, 0xf3, 0x40, 0x80, 0x7e5, 0x9, 0x80000001, 0x2, 0xff, 0xb, 0x81, 0x2, 0x3, 0x1000, 0x10, 0x2, 0xb2, 0x9, 0x7, 0x5, 0xfffffffe, 0xfffffc00, 0x5, 0x69, 0x5, 0x1, 0x6, 0x200, 0xca, 0x4, 0x10, 0x6, 0x1000, 0x1ff, 0x7aa1, 0x5, 0x0, 0x0, 0x40, 0x800, 0x0, 0x38, 0x2, 0x7, 0x3, 0x5, 0x2, 0xc42e, 0xff, 0x3, 0x8, 0x6, 0x100, 0x8, 0x1, 0xfffffff8, 0x6, 0x6, 0xa, 0x4d, 0x5, 0x2, 0x0, 0x6f78, 0x9, 0x100, 0x0, 0x8, 0xf, 0x2, 0xffffff7f, 0x8, 0x610, 0x3, 0x4, 0x7, 0xff, 0x101, 0x6c, 0x9, 0x8, 0x3d, 0x0, 0x2, 0x5f8, 0x3, 0x9, 0x7, 0x8, 0x1, 0x7, 0x6, 0xf5e, 0x5, 0x22, 0x80000001, 0x0, 0x5, 0xfffffff7, 0x0, 0x4, 0x3, 0x9, 0x24bbf9fc, 0x8, 0x10000, 0x0, 0x10000, 0xafbf, 0x2, 0x5f7d, 0x0, 0x5, 0x3, 0x0, 0x7f, 0x4, 0x10, 0xf, 0x2, 0x7, 0xf90, 0x80000000, 0x8000, 0x0, 0xa2a, 0x0, 0xa, 0x100, 0x3, 0x8d5, 0x1000, 0x6, 0x8, 0x7, 0x9, 0x2, 0x1, 0x3, 0x6, 0xfffffffc, 0x7, 0x0, 0x2, 0x0, 0x3, 0x9, 0x7, 0x7ff, 0x1f, 0x5, 0x1, 0x9, 0xfb48, 0x1, 0x3, 0x1, 0x1, 0xa9f, 0x400, 0x2, 0x2e, 0x0, 0x2, 0x74e, 0xfffffff9, 0x4, 0x1, 0xff, 0x3, 0x7, 0xd965, 0x4, 0xfff, 0x3, 0xdc, 0x6, 0x0, 0x100, 0x0, 0x3ac6e54f, 0x5, 0x4, 0x7, 0x81, 0x80000000, 0x2, 0x0, 0x5, 0x7, 0x8, 0x8, 0x2, 0x80000000, 0xfff, 0x99, 0xffff8001, 0x40, 0x554, 0x1, 0x4, 0x3d1cd8c1, 0x4, 0x3, 0x80000001, 0xc153, 0x80000000, 0x4, 0x4, 0xfe68, 0x4650866b, 0x2, 0x6, 0xbd, 0x401, 0x4, 0x27, 0x7ff, 0xb, 0x7, 0x1, 0x7ff, 0x1000, 0x7fffffff, 0xffffffff, 0x8, 0x8001, 0x1, 0x1, 0x9]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x40, 0x3, 0x80000000, 0x4540, 0x3, {0x4, 0x1, 0x1, 0xd688, 0x6, 0x61}, {0x96, 0x0, 0x200, 0xc29e, 0x7, 0x9965}, 0x7fffffff, 0x0, 0x81}}]]}, {0x41, 0x6, "043d3eff0c167c2ffd34b2ba939585fbc110096050e6babb95bc8f2b108637207e6e27100bc98bf6a84f32b6794de5a3f28ad2a40de7c29fcfa450ef42"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_mirred={0x118, 0x14, 0x0, 0x0, {{0xb}, {0xa4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x10, 0x10000004, 0xa2, 0x3}, 0x1, r5}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x2, 0x7, 0x4, 0x10001, 0x2}, 0x2, r5}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x80000001, 0xff, 0x2, 0x1, 0x7}, 0x4, r5}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x401, 0x4, 0x5, 0x80, 0x5}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x7, 0x8, 0x6, 0x4, 0x7}, 0x3, r5}}]}, {0x4a, 0x6, "3ae815fa00175591ba2fbd5ca5a8c9dc5dfbbbe561f576ac9728046293b5a509793c2e86b43c14d3ed2230d0e75465c9be912eb7073d9393bc5fe3ad82b96fada4a3b61e4945"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_skbmod={0x108, 0x6, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1d}}]}, {0xd0, 0x6, "9f5649f9c4f05b7d914b5882ca6fd0887fe436b189b02c618857fe03f7a069f502afcc40cd8fc813a8c0da9af6e76eed849e0d9ba0e036b7adfe537f9f9c99f59bd0dba3e5c643b3972c1632f8235b789aa523b846aa0361eb0e2cb0d342a90822997b517c743cdde00c13f433cbbb85cc5f7cf73352a572d90c957b9f15bd676bce0e834be710346ad8e6016a73cdc04a48e3e918a93bfc175071b18c10a3f7159a7a33c3f33b21e969512d04990ef85e438cf0c8109ee379761b796911e47f33dcc3348d7155e9d67acccf"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_mpls={0x90, 0x19, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_MPLS_BOS={0x5}, @TCA_MPLS_PROTO={0x6, 0x4, 0x800}, @TCA_MPLS_TC={0x5, 0x6, 0x1}]}, {0x4a, 0x6, "bf2d6c9d2370469c324cea6578a15aad471c22fecadf3a19b5511bb22739dc30a6280b403ade9ee1e0b11a148202da5a6f2e33e4bb758cc541d99c7395375981277048789ad5"}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}, @m_mpls={0x134, 0x10, 0x0, 0x0, {{0x9}, {0x24, 0x2, 0x0, 0x1, [@TCA_MPLS_LABEL={0x8, 0x5, 0xd7267}, @TCA_MPLS_LABEL={0x8, 0x5, 0x6769d}, @TCA_MPLS_TC={0x5}, @TCA_MPLS_BOS={0x5, 0x8, 0x1}]}, {0xe8, 0x6, "620b3bc610d981589f18dd79506ed5ffb09ff20ff968f6d7535fde9fb900aa9c2ffe239e1324e95d860bb3c75efda042900eae4e3feb27c5bc4fe1c4f4db603187984f1c1121c2a3b5bc394fa83f645c1b53cf25f9c218a5c0044b96674617a5d7932b0269d0eb1acdd780e5b5c1637aa17cc9ef8d846b5f19ca94ab3e3729aade04de7f6ca6c7b1fe548bfd0caa788a2623c299e1d82573401903cad8c8a5f31327db705c83ba2c2b2d9e7acc03111c0aa6bcd6e2209fb7ae86a32910ffab0000f38119da9478c8bcc1ee934cc1491aa7bb35ec69520830d104ea34efd61050f0d8da69"}, {0xc, 0x7, {0x0, 0xdd9a46b3437b7629}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_ctinfo={0x10c, 0x16, 0x0, 0x0, {{0xb}, {0x4c, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0xd9}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x9}, @TCA_CTINFO_ACT={0x18, 0x3, {0xff, 0x606c, 0x5, 0x0, 0x40}}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x3}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x1000}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x10}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x2}]}, {0x95, 0x6, "d9cfd9082c4ce3cddfef24ebb850d1a412e83577ed5665e293ae7c3c9cfb9ec96aa3b915e85f57e208580f44c296b15f9ffd25b30b6bb58288b879a6b8f60b68b8301d1ec3434383ed7c0b2ce0f28d258409c119bf8302cedc8808c85c83314db4d5255ebcafdf15b713da9b81cba6da040da11da9634d8d9e4ac1d075eb786d50b7fb99b102bb20f397d56027a6020160"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_tunnel_key={0x11c, 0x13, 0x0, 0x0, {{0xf}, {0x3c, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x7, 0x0, 0x5, 0x7, 0x8}, 0x1}}, @TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x2, 0x5, 0x6, 0x4, 0x4}, 0x2}}]}, {0xb4, 0x6, "f0d66f1b993afa310ccb16eaa707329598ee4866ff86a681f3b4711ff25834ed71a90816303b2f7cdccb70b505c7e248c7e615ca8a9f97b7eb58a494739077f01d7a9398c0400d331071e76a46ab873864bb336bf8c461823a8250bac7b00f2f5a5e4db084e07278f790394edb9acf71b3ccb39431d03ebeea2204eefca38af33953c817a358bf910314378c0fae4a2c115fbe2209968ca0c85af1ca685e18f1e423782a67176774f4de1b8e2f125e45"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0xb, 0x4}}, @TCA_CHAIN={0x8, 0xb, 0xf40b}, @TCA_CHAIN={0x8, 0xb, 0x80}, @TCA_CHAIN={0x8, 0xb, 0x1000}, @filter_kind_options=@f_matchall={{0xd}, {0x10, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0xf, 0x10}}, @TCA_MATCHALL_ACT={0x4}]}}]}, 0x4414}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
socket$inet6_mptcp(0xa, 0x1, 0x106)

3m15.475538809s ago: executing program 6 (id=1171):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x101142, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x8108551b, &(0x7f0000000000)={0x0, 0x3f00, "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"})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x1, 0xc, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000200), r6)
sendmsg$NFC_CMD_DEV_UP(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="010023010000340200000200000008000100", @ANYRES32=r5], 0x1c}}, 0x4890) (async)
sendmsg$NFC_CMD_DEV_UP(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="010023010000340200000200000008000100", @ANYRES32=r5], 0x1c}}, 0x4890)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r8, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0xf0b, 0x3, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0xfff3, 0xfff2}, {0x2, 0xfffc}, {0xfff3, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_FLOW_MODE={0x8, 0x5, 0x2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44045}, 0xc090)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000280)="6ce88362a97e754ced4f4ef662a3dc7146d6af674804fcf7de876dfa0899eec0f7bb4d9dd08d9dfa8c78ede28c37831b948b3c8a7c89ea1b7caaad9be699f6450e0061cad9d31e31fd", 0x49) (async)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000280)="6ce88362a97e754ced4f4ef662a3dc7146d6af674804fcf7de876dfa0899eec0f7bb4d9dd08d9dfa8c78ede28c37831b948b3c8a7c89ea1b7caaad9be699f6450e0061cad9d31e31fd", 0x49)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)

3m15.453850989s ago: executing program 37 (id=1171):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x101142, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x8108551b, &(0x7f0000000000)={0x0, 0x3f00, "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"})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x1, 0xc, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)=<r5=>0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000200), r6)
sendmsg$NFC_CMD_DEV_UP(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="010023010000340200000200000008000100", @ANYRES32=r5], 0x1c}}, 0x4890) (async)
sendmsg$NFC_CMD_DEV_UP(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="010023010000340200000200000008000100", @ANYRES32=r5], 0x1c}}, 0x4890)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r8, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0xf0b, 0x3, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0xfff3, 0xfff2}, {0x2, 0xfffc}, {0xfff3, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_FLOW_MODE={0x8, 0x5, 0x2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44045}, 0xc090)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000280)="6ce88362a97e754ced4f4ef662a3dc7146d6af674804fcf7de876dfa0899eec0f7bb4d9dd08d9dfa8c78ede28c37831b948b3c8a7c89ea1b7caaad9be699f6450e0061cad9d31e31fd", 0x49) (async)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000280)="6ce88362a97e754ced4f4ef662a3dc7146d6af674804fcf7de876dfa0899eec0f7bb4d9dd08d9dfa8c78ede28c37831b948b3c8a7c89ea1b7caaad9be699f6450e0061cad9d31e31fd", 0x49)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)

2m20.499196316s ago: executing program 8 (id=1445):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) (async)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) (async)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0) (async)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000500), r3)
sendmsg$NFC_CMD_DISABLE_SE(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)={0x24, r4, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0xc0}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008840}, 0x40000) (async, rerun: 64)
setxattr$trusted_overlay_nlink(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0, 0x0) (rerun: 64)

2m20.421448884s ago: executing program 8 (id=1447):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mount$overlay(0x79, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

2m20.269706669s ago: executing program 8 (id=1448):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000197b21914ffe956946da8ee21c6874e1a9d6db296921848fee33341bdbb958b97098f5fbbe7ac32fc1ffffffff09dbbde509124c85c08aeea4a14893e5be7be148d67702ce4b8286ec82826c7b391de158e280b1be66e62cd957c0aa068a20cb5455f738c7fdd9b3a8397b7879e74611bb95d4cf2ded13f7221a82941d6e6a4cd6c5d0a6101f2a2f645d3382cb0d5517855ed2e310e3ba7b932790d79e5d9876ab71a4b2adc15fb3044b887d1892f3742101db765cd8b0b5", @ANYRES16=r1, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000c0003800800038004000180"], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x20000040)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000197b21914ffe956946da8ee21c6874e1a9d6db296921848fee33341bdbb958b97098f5fbbe7ac32fc1ffffffff09dbbde509124c85c08aeea4a14893e5be7be148d67702ce4b8286ec82826c7b391de158e280b1be66e62cd957c0aa068a20cb5455f738c7fdd9b3a8397b7879e74611bb95d4cf2ded13f7221a82941d6e6a4cd6c5d0a6101f2a2f645d3382cb0d5517855ed2e310e3ba7b932790d79e5d9876ab71a4b2adc15fb3044b887d1892f3742101db765cd8b0b5", @ANYRES16=r1, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000c0003800800038004000180"], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x20000040) (async)

2m20.269527864s ago: executing program 8 (id=1449):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
r2 = fanotify_init(0x20, 0x0)
fanotify_mark(r2, 0x445, 0x1003, r1, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$cgroup2(0x2700, &(0x7f0000000100)='./file0\x00', 0x0, 0x2941010, 0x0)

2m20.160031695s ago: executing program 8 (id=1450):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$P9_RREADLINK(r2, &(0x7f0000000180)={0x10, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x300)

2m18.909450307s ago: executing program 8 (id=1458):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, 0x0}, 0xe6}], 0x1, 0x20, 0x0)
r2 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r2, 0x0)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000080)={<r3=>0x0, 0x1}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000100)={r3, 0x1, 0x3, [0xe0, 0x3, 0x9]}, 0xe)
setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000040), 0x2)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000000)={'pimreg1\x00', {0x2, 0x0, @initdev}})

2m18.81884126s ago: executing program 38 (id=1458):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
recvmmsg(r1, &(0x7f0000002880)=[{{0x0, 0x0, 0x0}, 0xe6}], 0x1, 0x20, 0x0)
r2 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r2, 0x0)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000080)={<r3=>0x0, 0x1}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000100)={r3, 0x1, 0x3, [0xe0, 0x3, 0x9]}, 0xe)
setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000040), 0x2)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000000)={'pimreg1\x00', {0x2, 0x0, @initdev}})

1m24.301133935s ago: executing program 9 (id=1920):
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'syz_tun\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r1=>0x0})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$kvm(0xffffffffffffff9c, 0x0, 0x20042, 0x0) (async)
openat$kvm(0xffffffffffffff9c, 0x0, 0x20042, 0x0)
getpid() (async)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x8020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000001dc0)={0xf, 0x0, 0x100000}, 0x20) (async)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000001dc0)={0xf, 0x0, 0x100000}, 0x20)
syz_clone3(&(0x7f0000000300)={0x136820100, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0}, 0x58)
umount2(&(0x7f0000000040)='.\x00', 0x2)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32=r7, @ANYBLOB="0800050200000000"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000640)=ANY=[@ANYBLOB="440000009c5c549ea53b238f0ca9ed5c06ae76222c79572e8b8bfa6f2e4efbaee5383261223f80d1", @ANYRES16=r6, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r7, @ANYBLOB="0a00340002020202020200000a00060008021100000000000800350000000000080026006c090000"], 0x44}}, 0x4000000)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=ANY=[@ANYBLOB="500000000802110000010c021100000008021100000000000000000000000000640001000006020202020202010882848b960c121824"], 0x36)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x8)
nanosleep(&(0x7f0000000340)={0x77359400}, &(0x7f0000000380)) (async)
nanosleep(&(0x7f0000000340)={0x77359400}, &(0x7f0000000380))
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=ANY=[@ANYBLOB="b000000008021100000108021100fb0008ebeb0211000000100000000200"], 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x414c9da587a7c8ee, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, &(0x7f0000000480)) (async)
nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, &(0x7f0000000480))
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=ANY=[@ANYBLOB="100000000802110000010802110000000802110000002000018b96fa111824"], 0x28) (async)
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=ANY=[@ANYBLOB="100000000802110000010802110000000802110000002000018b96fa111824"], 0x28)
syz_80211_inject_frame(&(0x7f0000000540), &(0x7f0000000580)=ANY=[@ANYBLOB="200c0a00080211000000ffffffffffff50020412e595bc1dd72a0050505050500500000002000802110000010006020202020202010482bb1284dd2a50f590b043a3d183f6bf17e262e186d85980c67e30db3a7a3ee8400cbc4a706dd962827f00000000000000233751a63c1bbf221edad62a12771d2af09b2e6cc420e7e318ad"], 0x81)
preadv(r2, &(0x7f0000000000)=[{&(0x7f0000000340)=""/187, 0xbb}], 0x1, 0x33, 0x200)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x2000, 0x9430, @loopback, 0x7}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
setsockopt$inet6_int(r2, 0x29, 0x46, &(0x7f0000000000)=0x46, 0x4) (async)
setsockopt$inet6_int(r2, 0x29, 0x46, &(0x7f0000000000)=0x46, 0x4)

1m24.017459652s ago: executing program 9 (id=1925):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000040)=@l2tp6={0xa, 0x3f, 0x400, @mcast1, 0x4}, 0x80, 0x0}, 0x0)

1m23.730701961s ago: executing program 9 (id=1928):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
r2 = fanotify_init(0x20, 0x0)
fanotify_mark(r2, 0x445, 0x1003, r1, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$cgroup2(0xfff6, &(0x7f0000000100)='./file0\x00', 0x0, 0x2941010, 0x0)

1m21.49753623s ago: executing program 9 (id=1928):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
r2 = fanotify_init(0x20, 0x0)
fanotify_mark(r2, 0x445, 0x1003, r1, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$cgroup2(0xfff6, &(0x7f0000000100)='./file0\x00', 0x0, 0x2941010, 0x0)

1m21.371253464s ago: executing program 9 (id=1952):
syz_open_dev$ttys(0xc, 0x2, 0x1)
r0 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000880)=0x3)
r1 = socket$kcm(0xa, 0x922000000003, 0x11)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x8, 0x4, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3000}, [@jmp={0x5, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x0, 0x1, &(0x7f0000000340)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x7f})
sendmsg$kcm(r1, &(0x7f00000000c0)={&(0x7f0000000040)=@ieee802154={0x24, @short={0x2, 0xffff, 0xfffe}}, 0x80, 0x0}, 0x0)

1m19.441140023s ago: executing program 9 (id=1973):
r0 = io_uring_setup(0x2b9b, &(0x7f0000000640)={0x0, 0xfffffffe, 0x800, 0x400, 0x2b4})
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x2b)
sendmsg$rds(r1, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)

1m19.393156226s ago: executing program 39 (id=1973):
r0 = io_uring_setup(0x2b9b, &(0x7f0000000640)={0x0, 0xfffffffe, 0x800, 0x400, 0x2b4})
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x2b)
sendmsg$rds(r1, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)

32.125968708s ago: executing program 3 (id=2170):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x600, &(0x7f00000000c0)={&(0x7f0000000780)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x4, 0xa}, {}, {0x7, 0xc}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}, @TCA_BPF_CLASSID={0x8, 0x3, {0x2, 0xf}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

32.120611772s ago: executing program 3 (id=2174):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r0, 0x0)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13)

32.040684891s ago: executing program 3 (id=2175):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000003e000701fcfffff7fddbdff6037c0000040036800c000180060006000806"], 0x24}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x100000, 0x154)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x34, r2, 0x1, 0x0, 0x0, {0x10}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}]}, @ETHTOOL_A_COALESCE_USE_ADAPTIVE_RX={0x5, 0xb, 0x1}]}, 0x34}}, 0x4044)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f00000001c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file1'}}], [{@dont_appraise}]})

31.959780011s ago: executing program 3 (id=2178):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
r2 = fanotify_init(0x20, 0x0)
fanotify_mark(r2, 0x445, 0x1003, r1, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$cgroup2(0xf0ffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x2941010, 0x0)

31.889566984s ago: executing program 3 (id=2180):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$cdc_ncm(0x6, 0x0, 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x1)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x103)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f000000c3c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000500)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0xfc1b2d1c5df07dbb, 0x0, 0x441, 0x100, 0x400008, 0x0, 0x0, 0x2}}, 0x50)
chown(&(0x7f0000000080)='./file0\x00', 0x0, 0xee01)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)={0x28, r4, 0x301, 0x70bd25, 0x25dfdbef, {{}, {@val={0x8, 0x7, 0x22}, @void, @val={0xc}}}}, 0x28}, 0x1, 0x0, 0x0, 0x4c800}, 0xc4)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x3, @none}, 0xe)

30.55047604s ago: executing program 3 (id=2183):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x14, 0x15, 0x1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0)
read$FUSE(r0, &(0x7f0000001d00)={0x2020}, 0x2020)
syz_kvm_setup_syzos_vm$x86(r0, &(0x7f0000bfe000/0x400000)=nil)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$inet(r2, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002600)=[@ip_retopts={{0x10, 0x110, 0xe}}], 0x10}, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x14, 0x15, 0x1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) (async)
read$FUSE(r0, &(0x7f0000001d00)={0x2020}, 0x2020) (async)
syz_kvm_setup_syzos_vm$x86(r0, &(0x7f0000bfe000/0x400000)=nil) (async)
socket$kcm(0x21, 0x2, 0x2) (async)
sendmsg$inet(r2, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002600)=[@ip_retopts={{0x10, 0x110, 0xe}}], 0x10}, 0x0) (async)

30.477651848s ago: executing program 40 (id=2183):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x14, 0x15, 0x1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0)
read$FUSE(r0, &(0x7f0000001d00)={0x2020}, 0x2020)
syz_kvm_setup_syzos_vm$x86(r0, &(0x7f0000bfe000/0x400000)=nil)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$inet(r2, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002600)=[@ip_retopts={{0x10, 0x110, 0xe}}], 0x10}, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x14, 0x15, 0x1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) (async)
read$FUSE(r0, &(0x7f0000001d00)={0x2020}, 0x2020) (async)
syz_kvm_setup_syzos_vm$x86(r0, &(0x7f0000bfe000/0x400000)=nil) (async)
socket$kcm(0x21, 0x2, 0x2) (async)
sendmsg$inet(r2, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002600)=[@ip_retopts={{0x10, 0x110, 0xe}}], 0x10}, 0x0) (async)

2.110216707s ago: executing program 2 (id=2318):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000120000002400000008000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f00000000c0)='rpc_request\x00', r1, 0x0, 0x5}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f00000000c0)='rpc_request\x00', r0, 0x0, 0x5}, 0x18)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)}, 0x80)

2.02001791s ago: executing program 2 (id=2319):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket(0x21, 0x2, 0x2)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x700, &(0x7f0000001a80)={&(0x7f0000000a40)={0x3c, r1, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r2}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r2}}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x3}]}, 0x3c}, 0x1, 0x300, 0x0, 0x20004000}, 0x0)

1.928771621s ago: executing program 2 (id=2321):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
open(&(0x7f0000000580)='./file0\x00', 0x181242, 0x1df2a23c5997fa5f)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x106, 0x9}}, 0x20)

1.870405259s ago: executing program 5 (id=2322):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020642500000000002020207b1af8ff000000000006010000f8ffffffb702000008000000b7030000fbffffff85000000060000009500"/88], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000100)=r1, 0x4)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
readv(r2, &(0x7f0000001900)=[{0x0, 0xea}], 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x140, 0x82)
r4 = fanotify_init(0x81, 0x0)
fanotify_mark(r4, 0x105, 0x40001032, r3, 0x0)
read$FUSE(r4, &(0x7f00000057c0)={0x2020}, 0x2020)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x4d00, 0x0)

1.870049142s ago: executing program 2 (id=2323):
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, 0x0, 0x0)
r0 = syz_open_dev$vcsn(0x0, 0x6, 0x800)
write$vhost_msg_v2(r0, &(0x7f00000001c0)={0x2, 0x0, {0x0, 0x0, &(0x7f0000000100)=""/42, 0x1, 0x1}}, 0x48) (async)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x4a243) (async)
writev(0xffffffffffffffff, &(0x7f0000001400), 0x0) (async)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, &(0x7f0000000740)={0x1c, 0x0, 0x0, 0x0}) (async)
close(r1) (async)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0) (async)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mount$overlay(0x0, &(0x7f0000000440)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000380)={0x0, 0x13, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x150}}, 0x0) (async)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x3000005) (async)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r3, &(0x7f00000002c0)='./file1\x00', 0x100, 0x1)
chdir(&(0x7f00000003c0)='./bus\x00') (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000380)=@filter={'filter\x00', 0xe, 0x4, 0x380, 0xffffffff, 0x250, 0x160, 0x160, 0xffffffff, 0xffffffff, 0x320, 0x320, 0x320, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@local, @local, [0x0, 0xffffff00, 0xff000000, 0xffffff00], [0xffffff00, 0x0, 0xffffff00, 0xffffffff], 'syzkaller0\x00', 'dvmrp0\x00', {}, {0xff}, 0x5e, 0xd, 0x4, 0x78}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 'pim6reg0\x00', {0x1}}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x7, 'syz0\x00', {0x338}}}}, {{@ipv6={@private2, @mcast1, [0xff000000, 0x0, 0xff000000, 0xff], [0xff, 0xffffff00, 0x0, 0xff], 'xfrm0\x00', 'caif0\x00', {0xff}, {}, 0x11, 0xff, 0x3, 0x4}, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x5}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3e0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x20, 0x4, &(0x7f0000000900)=ANY=[@ANYBLOB="18000000010000000000000000000000791200000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
sendmsg$nl_generic(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="4801000041000701fcfffffffddbdf25017c0000040036802e0101"], 0x148}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000) (async)
linkat(r3, &(0x7f0000000100)='./file1\x00', r3, &(0x7f0000000240)='./file0\x00', 0x0) (async)
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000001900)='./file1\x00')
mkdirat(r3, &(0x7f0000000000)='./file1\x00', 0x108)

1.810052224s ago: executing program 2 (id=2325):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = open(&(0x7f0000000580)='./file0\x00', 0x181242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r0, &(0x7f00000002c0)={0xa0, 0x0, 0x0, {{0x80000000, 0x3, 0x5, 0xffffffffffffff80, 0x3, 0x1, {0x1, 0x180, 0x20ff, 0x8, 0x8b, 0x800000000000d615, 0x3fb, 0x7ffffffb, 0x6, 0x1000, 0x8, 0x0, 0x0, 0x3ff, 0x100}}, {0x0, 0x12}}}, 0xa0)
sendfile(r0, r0, &(0x7f0000000080), 0x7f04) (fail_nth: 13)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)

1.710409361s ago: executing program 1 (id=2327):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @broadcast, 0x4e1e, 0x1, 'lblcr\x00', 0x1, 0x2, 0x6e}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0)

1.710104745s ago: executing program 2 (id=2328):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$cdc_ncm(0x6, 0x0, 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x1)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x103)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f000000c3c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000500)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0xfc1b2d1c5df07dbb, 0x0, 0x441, 0x100, 0x400008, 0x0, 0x0, 0x2}}, 0x50)
chown(&(0x7f0000000080)='./file0\x00', 0x0, 0xee01)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)={0x28, 0x0, 0x301, 0x70bd25, 0x25dfdbef, {{}, {@val={0x8, 0x7, 0x22}, @void, @val={0xc}}}}, 0x28}, 0x1, 0x0, 0x0, 0x4c800}, 0xc4)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x3, @none}, 0xe)

1.709883882s ago: executing program 1 (id=2329):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="30000000200001"], 0x30}, 0x1, 0x0, 0x0, 0x8010}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000002380)={0x12, {"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", 0x1000}}, 0x1006)
setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x48a, &(0x7f0000000140)={0x1000, 0x6, 0x200}, 0xc)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
write$binfmt_misc(r3, &(0x7f0000000000), 0xd)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$getregset(0x4204, r4, 0x204, &(0x7f0000000040)={0x0})
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000001c0)=0x5b07, 0x4)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

1.636895436s ago: executing program 1 (id=2331):
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @empty, 0xc}, 0x1c) (async)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4ea3, 0x0, @loopback}, 0x1c)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x9521, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newlink={0x38, 0x10, 0x413, 0x0, 0x0, {0x0, 0x0, 0xc}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x38}}, 0x0) (async)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000001c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) (async)
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2}) (async)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000240)=ANY=[@ANYRES64=r0, @ANYBLOB="518480d7d40eb26cbb107e972358c09f57b234cc2d3b14faa06cfe7092d27d27986730f9aa4df6000e30263be5319592db284129d8b66e881631952486085b1dbd7ada8c1beecf29eafdc753a2bdc214ec5fcae535b8700f9047c363eea174fba6ba68596bdf561354da0a2b81788dd43eb71604508a2013e19528839f90629ba87a4923b65f21b597ee580a58305d8e01acaa1c23e212f4015c1c1f49f2c3ab1c6852a608f21c550f890f48ba385b50dca05f5a42e1bd399d5f0af9ba400b94c0071967114d43353295a1a49749ef3665ff12620d6ab66bef32142e3878ab58d62ef6f42a848a44da0c171fd2231d51c790e153f459", @ANYBLOB="619042625f273d634d", @ANYRES64=r3, @ANYBLOB="23b697c83d1122bc65064a4cd84c0618c97ca93cd55b516e1794afcab983269f3383a517d5fd44efc48280ec940e9771f78651c9a2c41d183dd8726d3c2ca8310352c04091b0d11a4935dcdb5bb43953adffcde8784206c8c9bf3266c2bfb7294e02903d108965197ecbbcf92622239c6f4bdcda8a7568f04579f63bae7242aa10e4948e3aedaf3916f4351a233f5e1a69b76e2adb83fda9149c0e0b75a648dbbcddb223de05e261e5fb94cf19557566c397bba882fe826d73cfaa51edf469f4d6fcde4fa119ad4d988bd205d4fd487fc226358a5d34d613c99c841b7d", @ANYRESHEX=r0], 0x48)

1.540589353s ago: executing program 1 (id=2333):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x2, [@volatile={0x7, 0x0, 0x0, 0x9, 0x2}, @volatile={0xffffffff, 0x0, 0x0, 0x9, 0x5}, @const={0xfffffffe, 0x0, 0x0, 0xa, 0x2}, @restrict, @union={0x0, 0x0, 0x0, 0x2}]}}, 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
r1 = timerfd_create(0x2, 0x80000)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x40042, 0x0)
getresuid(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000009c0), 0x40000, 0x0)
ioctl$SG_SET_TIMEOUT(r3, 0x2201, &(0x7f0000000e40)=0xc)
semget$private(0x0, 0x3, 0x29)
renameat2(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', r3, &(0x7f0000000180)='./file1/file0\x00', 0x0)
write$eventfd(0xffffffffffffffff, &(0x7f00000000c0)=0x80000000, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000c07850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000001140)='ext4_allocate_inode\x00', r4}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000040000000110000007"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='ext4_allocate_inode\x00', r7}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000400)='ext4_allocate_inode\x00', r8}, 0x10)
close(r5)
dup3(r1, r2, 0x80000)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)

1.487610719s ago: executing program 1 (id=2334):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0)
io_setup(0x1, &(0x7f00000004c0)=<r1=>0x0)
io_submit(r1, 0xca, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x7, 0x3000, 0x1008, r0, &(0x7f0000000000)="98", 0x3e8000072a, 0x7000000, 0x0, 0x10}])

1.190085063s ago: executing program 1 (id=2339):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) (async)
r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000580), 0x41, 0x0)
read$FUSE(r0, &(0x7f0000000a00)={0x2020, 0x0, 0x0, <r1=>0x0}, 0x2020) (async)
mount$tmpfs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000040), 0x100000, &(0x7f0000000080)=ANY=[@ANYBLOB='mpol=prefer']) (async)
r2 = syz_open_dev$vivid(&(0x7f0000000140), 0x3, 0x2)
close_range(r0, r2, 0x0) (async)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c) (async)
connect$pppl2tp(r3, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x8, 0x0, 0x1003, 0x0, {0xa, 0x0, 0x5cb, @dev={0xfe, 0x80, '\x00', 0x1b}}}}, 0x32) (async, rerun: 32)
writev(r2, &(0x7f00000004c0)=[{&(0x7f00000006c0)="7a053c2bd087dee362b572993496a73ec1c52362b81c679e3a1cadcb2833f54039e1f1af1cf73a8e9caeec2de1d87d0a55c981947dcb650aadf270d1451c9bed4ba7e33c666a74d1dfdc3ce4023ebc8eaab221119cd799462ade1c0054b3eb2f47500cfaa03d5dfe33a62c5872a18d9b4dce313c687cdaee13e7628b1e839b9c5033e9d51da2cff6fe11713a3d9a0aa4962b602e07eb3fd5e6e0b3ef453bdc3fae8cfb55c53bbfc7b272bc3133917e73f887847b5bc5779d2624ff87ae49e01957764796072dce2674c66629180aea93e619eaad06084cae8cf18dde25122a513dea"}, {&(0x7f00000005c0)="2a00bd32a32cd54fb852c4bc00503dbebe8939bf6930d89945c1b9eb6b0b78024b4ca0f887085a94d934ae157043850e94628b20465dde2f8625429ba620fcd47a81728fb61cf64ced4fddca0f6e745b88fd388b7e37e19c14fe9eb7c1cab277f0dfe22e0ecacaa290c976cec17035a934c5b6db8622eeba3975b33f4b657b08540d36ddc647e1bf1b27771674905ae4bac61f59552677203ea759e1a075f118d6c126ac2151df5ae154bc6820f562ca637e3ff971b7b4f4959e69249e7fd433503bc1fb1888d074edff481a2c0523c67a4ec9cd44be6a304baf3e7ad789f1225da80ab97aca"}, {&(0x7f0000000300)="68998dfe81d6804f60b4d63807670283ee3d736e30c0effb6393675e3ffddfd1d9c2794d173309340673234ed16d71fe7ed0b0eb"}], 0x44) (async, rerun: 32)
getsockname$inet6(r0, &(0x7f00000003c0)={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @private}}, &(0x7f0000000400)=0x1c) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x0)
ioctl$CDROMGETSPINDOWN(r0, 0x531d, &(0x7f0000000180)) (async)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0) (async, rerun: 64)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (rerun: 64)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_TLBFLUSH(r6, 0x4068aea3, &(0x7f0000000440)) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000140)="650f22960f20e035200000000f22e0f2d14000c4c3f90f3ffd66c55bf8242428573989ef66bafc0c66b8008066ef66b81e010f00d8b9c9020000b80f000000ba00000000d730f2af0f070f22c0", 0x4d}], 0x1, 0x43, 0x0, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000980)=[@text32={0x20, 0x0}], 0x1, 0x51, 0x0, 0x0) (async, rerun: 32)
clock_gettime(0x0, &(0x7f000000bb40)={<r8=>0x0, <r9=>0x0})
recvmmsg(r0, &(0x7f000000b8c0)=[{{&(0x7f0000000500)=@generic, 0x80, &(0x7f0000003bc0)=[{&(0x7f00000007c0)=""/168, 0xa8}, {&(0x7f0000000880)=""/215, 0xd7}, {&(0x7f00000009c0)=""/8, 0x8}, {&(0x7f0000002a40)=""/145, 0x91}, {&(0x7f0000002b00)=""/124, 0x7c}, {&(0x7f0000002b80)=""/4096, 0x1000}, {&(0x7f0000003b80)=""/8, 0x8}], 0x7, &(0x7f0000003c40)=""/252, 0xfc}, 0x1}, {{&(0x7f0000003d40)=@ax25={{}, [@netrom, @bcast, @default, @null, @default, @default]}, 0x80, &(0x7f0000004f00)=[{&(0x7f0000003dc0)=""/63, 0x3f}, {&(0x7f0000003e00)=""/28, 0x1c}, {&(0x7f0000003e40)=""/4096, 0x1000}, {&(0x7f0000004e40)=""/35, 0x23}, {&(0x7f0000004e80)=""/69, 0x45}], 0x5, &(0x7f0000004f80)=""/205, 0xcd}, 0x9}, {{&(0x7f0000005080)=@in={0x2, 0x0, @multicast2}, 0x80, &(0x7f0000005240)=[{&(0x7f0000005100)=""/38, 0x26}, {&(0x7f0000005140)=""/36, 0x24}, {&(0x7f0000005180)=""/111, 0x6f}, {&(0x7f0000005200)=""/48, 0x30}], 0x4, &(0x7f0000005280)=""/253, 0xfd}, 0xfc7}, {{&(0x7f0000005380)=@can, 0x80, &(0x7f0000005580)=[{&(0x7f0000005400)=""/208, 0xd0}, {&(0x7f0000005500)=""/119, 0x77}], 0x2, &(0x7f00000055c0)=""/80, 0x50}, 0x2}, {{&(0x7f0000005640)=@pptp={0x18, 0x2, {0x0, @empty}}, 0x80, &(0x7f0000005780)=[{&(0x7f00000056c0)=""/157, 0x9d}], 0x1, &(0x7f00000057c0)=""/209, 0xd1}, 0x7ff}, {{0x0, 0x0, &(0x7f00000068c0)=[{&(0x7f00000058c0)=""/4096, 0x1000}], 0x1, &(0x7f0000006900)=""/252, 0xfc}, 0x1}, {{0x0, 0x0, &(0x7f0000008d00)=[{&(0x7f0000006a00)=""/4096, 0x1000}, {&(0x7f0000007a00)=""/248, 0xf8}, {&(0x7f0000007b00)=""/12, 0xc}, {&(0x7f0000007b40)=""/40, 0x28}, {&(0x7f0000007b80)=""/33, 0x21}, {&(0x7f0000007bc0)=""/4096, 0x1000}, {&(0x7f0000008bc0)=""/234, 0xea}, {&(0x7f0000008cc0)=""/45, 0x2d}], 0x8, &(0x7f0000008d80)=""/53, 0x35}, 0x7}, {{&(0x7f0000008dc0)=@can, 0x80, &(0x7f0000009040)=[{&(0x7f0000008e40)=""/148, 0x94}, {&(0x7f0000008f00)=""/48, 0x30}, {&(0x7f0000008f40)=""/72, 0x48}, {&(0x7f0000008fc0)=""/109, 0x6d}], 0x4, &(0x7f0000009080)=""/90, 0x5a}, 0x6}, {{&(0x7f0000009100)=@hci, 0x80, &(0x7f0000009440)=[{&(0x7f0000009180)=""/238, 0xee}, {&(0x7f0000009280)=""/71, 0x47}, {&(0x7f0000009300)=""/186, 0xba}, {&(0x7f00000093c0)=""/113, 0x71}], 0x4, &(0x7f0000009480)=""/4096, 0x1000}, 0x1}, {{&(0x7f000000a480)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast}, 0x80, &(0x7f000000b740)=[{&(0x7f000000a500)=""/249, 0xf9}, {&(0x7f000000a600)=""/81, 0x51}, {&(0x7f000000a680)=""/80, 0x50}, {&(0x7f000000a700)=""/36, 0x24}, {&(0x7f000000a740)=""/4096, 0x1000}], 0x5, &(0x7f000000b7c0)=""/241, 0xf1}, 0x4}], 0xa, 0x22, &(0x7f000000bb80)={r8, r9+10000000}) (async)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@nfs_export_off}], [{@func={'func', 0x3d, 'CREDS_CHECK'}}, {@obj_user={'obj_user', 0x3d, 'lowerdir'}}, {@obj_type={'obj_type', 0x3d, '/dev/kvm\x00'}}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_lt={'fowner<', r1}}, {@subj_user={'subj_user', 0x3d, '*\\^\xd2$[$'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x515002, 0xc6)

1.189837119s ago: executing program 0 (id=2340):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0)
write$vga_arbiter(r2, &(0x7f0000000240)=@target={'target ', {'PCI:', '5', ':', '5', ':', 'a', '.', '19'}}, 0x14)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r3, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r3, 0x84, 0x78, &(0x7f00000001c0), 0x4)
r4 = socket(0x21, 0x2, 0x2)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000a40)={0x3c, r1, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r4}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r4}}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x80102, 0x0)
r6 = dup(r5)
ioctl$TCSETA(r6, 0x5406, &(0x7f0000002280)={0x7, 0x1, 0xffc0, 0x0, 0x9, "803d5490e545a3eb"})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0), r7)
sendmsg$NLBL_UNLABEL_C_STATICADD(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01020000000000000000030000001400060073697430000000000000000000000000140007002600000000000000000000000000000108000500ac1e010108000400ac1e0101"], 0x4c}, 0x8, 0x3000000000002, 0x0, 0x885}, 0x24000090)
sendmsg$NLBL_UNLABEL_C_STATICLIST(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01002cbd7000fddbdf250500000008000500ac1414aa05000100000000002d00070073797374656dff0f3a6f626a6563745f723a61646d696e5f7061737377645f687865635f903a733000000000"], 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x4004044)

1.125839831s ago: executing program 41 (id=2339):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) (async)
r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000580), 0x41, 0x0)
read$FUSE(r0, &(0x7f0000000a00)={0x2020, 0x0, 0x0, <r1=>0x0}, 0x2020) (async)
mount$tmpfs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000040), 0x100000, &(0x7f0000000080)=ANY=[@ANYBLOB='mpol=prefer']) (async)
r2 = syz_open_dev$vivid(&(0x7f0000000140), 0x3, 0x2)
close_range(r0, r2, 0x0) (async)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c) (async)
connect$pppl2tp(r3, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x8, 0x0, 0x1003, 0x0, {0xa, 0x0, 0x5cb, @dev={0xfe, 0x80, '\x00', 0x1b}}}}, 0x32) (async, rerun: 32)
writev(r2, &(0x7f00000004c0)=[{&(0x7f00000006c0)="7a053c2bd087dee362b572993496a73ec1c52362b81c679e3a1cadcb2833f54039e1f1af1cf73a8e9caeec2de1d87d0a55c981947dcb650aadf270d1451c9bed4ba7e33c666a74d1dfdc3ce4023ebc8eaab221119cd799462ade1c0054b3eb2f47500cfaa03d5dfe33a62c5872a18d9b4dce313c687cdaee13e7628b1e839b9c5033e9d51da2cff6fe11713a3d9a0aa4962b602e07eb3fd5e6e0b3ef453bdc3fae8cfb55c53bbfc7b272bc3133917e73f887847b5bc5779d2624ff87ae49e01957764796072dce2674c66629180aea93e619eaad06084cae8cf18dde25122a513dea"}, {&(0x7f00000005c0)="2a00bd32a32cd54fb852c4bc00503dbebe8939bf6930d89945c1b9eb6b0b78024b4ca0f887085a94d934ae157043850e94628b20465dde2f8625429ba620fcd47a81728fb61cf64ced4fddca0f6e745b88fd388b7e37e19c14fe9eb7c1cab277f0dfe22e0ecacaa290c976cec17035a934c5b6db8622eeba3975b33f4b657b08540d36ddc647e1bf1b27771674905ae4bac61f59552677203ea759e1a075f118d6c126ac2151df5ae154bc6820f562ca637e3ff971b7b4f4959e69249e7fd433503bc1fb1888d074edff481a2c0523c67a4ec9cd44be6a304baf3e7ad789f1225da80ab97aca"}, {&(0x7f0000000300)="68998dfe81d6804f60b4d63807670283ee3d736e30c0effb6393675e3ffddfd1d9c2794d173309340673234ed16d71fe7ed0b0eb"}], 0x44) (async, rerun: 32)
getsockname$inet6(r0, &(0x7f00000003c0)={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @private}}, &(0x7f0000000400)=0x1c) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x0)
ioctl$CDROMGETSPINDOWN(r0, 0x531d, &(0x7f0000000180)) (async)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0) (async, rerun: 64)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (rerun: 64)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_TLBFLUSH(r6, 0x4068aea3, &(0x7f0000000440)) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000140)="650f22960f20e035200000000f22e0f2d14000c4c3f90f3ffd66c55bf8242428573989ef66bafc0c66b8008066ef66b81e010f00d8b9c9020000b80f000000ba00000000d730f2af0f070f22c0", 0x4d}], 0x1, 0x43, 0x0, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000980)=[@text32={0x20, 0x0}], 0x1, 0x51, 0x0, 0x0) (async, rerun: 32)
clock_gettime(0x0, &(0x7f000000bb40)={<r8=>0x0, <r9=>0x0})
recvmmsg(r0, &(0x7f000000b8c0)=[{{&(0x7f0000000500)=@generic, 0x80, &(0x7f0000003bc0)=[{&(0x7f00000007c0)=""/168, 0xa8}, {&(0x7f0000000880)=""/215, 0xd7}, {&(0x7f00000009c0)=""/8, 0x8}, {&(0x7f0000002a40)=""/145, 0x91}, {&(0x7f0000002b00)=""/124, 0x7c}, {&(0x7f0000002b80)=""/4096, 0x1000}, {&(0x7f0000003b80)=""/8, 0x8}], 0x7, &(0x7f0000003c40)=""/252, 0xfc}, 0x1}, {{&(0x7f0000003d40)=@ax25={{}, [@netrom, @bcast, @default, @null, @default, @default]}, 0x80, &(0x7f0000004f00)=[{&(0x7f0000003dc0)=""/63, 0x3f}, {&(0x7f0000003e00)=""/28, 0x1c}, {&(0x7f0000003e40)=""/4096, 0x1000}, {&(0x7f0000004e40)=""/35, 0x23}, {&(0x7f0000004e80)=""/69, 0x45}], 0x5, &(0x7f0000004f80)=""/205, 0xcd}, 0x9}, {{&(0x7f0000005080)=@in={0x2, 0x0, @multicast2}, 0x80, &(0x7f0000005240)=[{&(0x7f0000005100)=""/38, 0x26}, {&(0x7f0000005140)=""/36, 0x24}, {&(0x7f0000005180)=""/111, 0x6f}, {&(0x7f0000005200)=""/48, 0x30}], 0x4, &(0x7f0000005280)=""/253, 0xfd}, 0xfc7}, {{&(0x7f0000005380)=@can, 0x80, &(0x7f0000005580)=[{&(0x7f0000005400)=""/208, 0xd0}, {&(0x7f0000005500)=""/119, 0x77}], 0x2, &(0x7f00000055c0)=""/80, 0x50}, 0x2}, {{&(0x7f0000005640)=@pptp={0x18, 0x2, {0x0, @empty}}, 0x80, &(0x7f0000005780)=[{&(0x7f00000056c0)=""/157, 0x9d}], 0x1, &(0x7f00000057c0)=""/209, 0xd1}, 0x7ff}, {{0x0, 0x0, &(0x7f00000068c0)=[{&(0x7f00000058c0)=""/4096, 0x1000}], 0x1, &(0x7f0000006900)=""/252, 0xfc}, 0x1}, {{0x0, 0x0, &(0x7f0000008d00)=[{&(0x7f0000006a00)=""/4096, 0x1000}, {&(0x7f0000007a00)=""/248, 0xf8}, {&(0x7f0000007b00)=""/12, 0xc}, {&(0x7f0000007b40)=""/40, 0x28}, {&(0x7f0000007b80)=""/33, 0x21}, {&(0x7f0000007bc0)=""/4096, 0x1000}, {&(0x7f0000008bc0)=""/234, 0xea}, {&(0x7f0000008cc0)=""/45, 0x2d}], 0x8, &(0x7f0000008d80)=""/53, 0x35}, 0x7}, {{&(0x7f0000008dc0)=@can, 0x80, &(0x7f0000009040)=[{&(0x7f0000008e40)=""/148, 0x94}, {&(0x7f0000008f00)=""/48, 0x30}, {&(0x7f0000008f40)=""/72, 0x48}, {&(0x7f0000008fc0)=""/109, 0x6d}], 0x4, &(0x7f0000009080)=""/90, 0x5a}, 0x6}, {{&(0x7f0000009100)=@hci, 0x80, &(0x7f0000009440)=[{&(0x7f0000009180)=""/238, 0xee}, {&(0x7f0000009280)=""/71, 0x47}, {&(0x7f0000009300)=""/186, 0xba}, {&(0x7f00000093c0)=""/113, 0x71}], 0x4, &(0x7f0000009480)=""/4096, 0x1000}, 0x1}, {{&(0x7f000000a480)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast}, 0x80, &(0x7f000000b740)=[{&(0x7f000000a500)=""/249, 0xf9}, {&(0x7f000000a600)=""/81, 0x51}, {&(0x7f000000a680)=""/80, 0x50}, {&(0x7f000000a700)=""/36, 0x24}, {&(0x7f000000a740)=""/4096, 0x1000}], 0x5, &(0x7f000000b7c0)=""/241, 0xf1}, 0x4}], 0xa, 0x22, &(0x7f000000bb80)={r8, r9+10000000}) (async)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@nfs_export_off}], [{@func={'func', 0x3d, 'CREDS_CHECK'}}, {@obj_user={'obj_user', 0x3d, 'lowerdir'}}, {@obj_type={'obj_type', 0x3d, '/dev/kvm\x00'}}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fowner_lt={'fowner<', r1}}, {@subj_user={'subj_user', 0x3d, '*\\^\xd2$[$'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x515002, 0xc6)

1.045276658s ago: executing program 5 (id=2342):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4050000200000006110600000000000c6000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1ad, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYRES32=r0, @ANYBLOB='&'], 0x10) (async)
close_range(r0, r1, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000002400)=@raw={'raw\x00', 0x3c1, 0x3, 0x2b0, 0xf0, 0x150, 0x150, 0x0, 0x0, 0x1e0, 0x238, 0x206, 0x1e0, 0x238, 0x7fffffe, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [0x0, 0x0, 0x0, 0xffffff00], [], 'veth0_to_bond\x00', 'xfrm0\x00', {}, {}, 0x6}, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00', 0x0, 0x0, {0x3d}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000000c0)={@map=r1, r0, 0x26, 0x0, 0x0, @void, @value}, 0x10)

966.938301ms ago: executing program 5 (id=2343):
r0 = syz_open_dev$evdev(&(0x7f0000000140), 0x0, 0x44002)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000300)={0x0, 0xffffffffffffff36, &(0x7f0000000200)="952bb3e006ae9a4c3a"})
r1 = add_key$fscrypt_provisioning(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000300)={0x2, 0x0, @d}, 0x18, 0xffffffffffffffff)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
keyctl$chown(0x4, r1, 0x0, 0x0)
r2 = gettid()
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="07000000040000000003000005"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000100)={r3, &(0x7f0000000000), 0x0}, 0x20)
keyctl$get_security(0x11, r1, &(0x7f0000000040)=""/234, 0xea)
timer_create(0x5, &(0x7f0000533fa0)={0x0, 0x21, 0x2, @tid=r2}, &(0x7f0000000440))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, 0x0)
keyctl$KEYCTL_PKEY_VERIFY(0x1c, &(0x7f0000000000)={r1, 0x16, 0xaf}, &(0x7f0000000180)={'enc=', 'raw', ' hash=', {'crc32c\x00'}}, &(0x7f0000000240)="3499bdce138eef544dba3d2a4893b6c73dc7be93c7fb", &(0x7f0000000380)="478aeebcfb70e75fa289831aec564e5c6961dd037c23e6a8e6a8c6f85b6cc966c7d18b640ed5ad6f2d795502fdc663523135b0d91341d632100472c5021dd4254e03bca02dc21d5b2182493d8b86a79680a34922b46297264ad9576279ab04fe8ad36bf22ebda49b17a2edf822d83b95bf989b66376f8d8771739357a3a2ea205a689ae96f2e063dba320b3a127d4a63fbc80577051d111c5cee1ee97a44b6d94f291586f90858b2d6e08318404a00")
fdatasync(r0)

920.291061ms ago: executing program 5 (id=2344):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
open(&(0x7f0000000580)='./file0\x00', 0x181242, 0x1df2a23c5997fa5f)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x106, 0x9}}, 0x20)

619.354492ms ago: executing program 5 (id=2345):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="5c00000014006b03000000d86e6c1d0002847ea622fb564500004e23e3f58e76110165f450e71b0075e3002500028d459e37000f0000000000bf9367b47e51f60a64c9f4d49380", 0x47}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newtaction={0xe70, 0x30, 0x25, 0x0, 0x0, {}, [{0xe5c, 0x1, [@m_pedit={0xe58, 0x1, 0x0, 0x0, {{0xa}, {0xe2c, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x8, 0x5, 0x0, 0x1, [{0x4}]}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {}, {}, {}, {}, {0x0, 0x0, 0x10001}, {}, {0x0, 0x801}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x4}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x10}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x5ad8d0b5}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x6}, {}, {0x0, 0x0, 0x20000000}, {}, {}, {}, {}, {0x0, 0x0, 0xdb, 0x0, 0x0, 0x7}, {}, {}, {}, {0x0, 0x0, 0xb53}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x32c}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x8}, {0x0, 0x2}], [{}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x2}, {0x2, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x4}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe70}}, 0x0)
mmap$xdp(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0xa031, 0xffffffffffffffff, 0x180000000)
r2 = accept$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @initdev}, &(0x7f0000000180)=0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
timerfd_create(0x9, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
read$eventfd(r4, &(0x7f0000000080), 0x8)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001180), r4)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001280)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001240)={&(0x7f00000011c0)=ANY=[@ANYBLOB='t\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="00082abd7000fcdbdf253b0000000c009900ab9ca3da723204e96f8832e70e00cd0003008100000006d7000400000800a100010000000400870004008e0008005700629ad20e000004008e0008009f0004000000050018013300000008009f000600000008"], 0x74}, 0x1, 0x0, 0x0, 0x20000004}, 0x4000)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r7=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0xfff3}}}, 0x24}}, 0x0)
remap_file_pages(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
r8 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r8, &(0x7f0000000580)='1\x00', 0x2)
write$sysctl(r8, &(0x7f0000000000)='0\x00', 0x2)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001000)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000100)="90", 0x1}], 0x1}}], 0x1, 0x20008050)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRES16], 0x1000f)

380.239883ms ago: executing program 0 (id=2346):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) (async)
sendmsg$rds(r0, &(0x7f0000001a00)={&(0x7f0000000300)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000880)=""/4089, 0xff9}], 0x1}, 0x10)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000000000)=""/18, 0x12}, {&(0x7f0000000040)=""/83, 0x53}, {&(0x7f00000000c0)=""/234, 0xea}, {&(0x7f00000001c0)=""/93, 0x5d}], 0x4, 0x7, 0x3ff) (async)
recvmsg(r1, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x40012163)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(blowfish))\x00'}, 0x58) (async, rerun: 64)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5", 0x4) (async, rerun: 64)
r3 = accept4(r2, 0x0, 0x0, 0x0) (async)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCGARP(r4, 0x8954, &(0x7f0000000240)={{0x2, 0x4e24, @empty}, {0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3a}}, 0xc, {0x2, 0x4e22, @empty}, 'lo\x00'}) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r3)
sendmsg$alg(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000001c0)="3a56ca6ea916915d19", 0x9}], 0x1, 0x0, 0x0, 0x10}, 0x40804) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000002c0), 0x440000, 0x0)

309.855696ms ago: executing program 0 (id=2347):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @broadcast, 0x4e1e, 0x1, 'lblcr\x00', 0x1, 0x2, 0x6e}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0)

309.452609ms ago: executing program 0 (id=2348):
quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'netpci0\x00', 0x6bf1c2d5adba8c12})
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r2 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r2, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x81, 0x42}, 0x10)
connect$llc(r2, &(0x7f0000000340)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random="48bd00"}, 0x10)
r3 = syz_init_net_socket$llc(0x1a, 0x802, 0x0)
bind$llc(r3, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x10)
close_range(r1, 0xffffffffffffffff, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000040))
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0x5, 0x4, 0x5, 0x0, 0x3, 0x3, 0xa, 0xb8, 0x1, 0xe, 0x5, 0x204}, {0x804, 0x5, 0x1, 0x45, 0x7, 0x2, 0x2, 0xff, 0x0, 0x4, 0x9, 0x7f, 0x20c}, {0x1, 0x3, 0x38, 0x5, 0x84, 0x7, 0x0, 0x50, 0x11, 0x70, 0x4, 0x87}], 0xffffffff})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f00000003c0)={[0x60000000000, 0x1000000000, 0x0, 0x40, 0x2000000, 0x0, 0x2004cb, 0x0, 0x0, 0x68ff, 0x5, 0x0, 0x3], 0x1, 0x202})
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r7 = dup(r6)
write$binfmt_aout(r7, 0x0, 0xffffffdb)
ioctl$VIDIOC_EXPBUF(r7, 0xc0405610, &(0x7f0000000080)={0x6, 0x7, 0x2, 0x800})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

180.073923ms ago: executing program 5 (id=2349):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020642500000000002020207b1af8ff000000000006010000f8ffffffb702000008000000b7030000fbffffff85000000060000009500"/88], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000100)=r1, 0x4)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
readv(r2, &(0x7f0000001900)=[{0x0, 0xea}], 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x140, 0x82)
r4 = fanotify_init(0x81, 0x0)
fanotify_mark(r4, 0x105, 0x40001032, r3, 0x0)
read$FUSE(r4, &(0x7f00000057c0)={0x2020}, 0x2020)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x4d00, 0x0)

57.708886ms ago: executing program 0 (id=2350):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = open(&(0x7f0000000580)='./file0\x00', 0x181242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r0, &(0x7f00000002c0)={0xa0, 0x0, 0x0, {{0x80000000, 0x3, 0x5, 0xffffffffffffff80, 0x3, 0x1, {0x1, 0x180, 0x20ff, 0x8, 0x8b, 0x800000000000d615, 0x3fb, 0x7ffffffb, 0x6, 0x1000, 0x8, 0x0, 0x0, 0x3ff, 0x100}}, {0x0, 0x12}}}, 0xa0)
sendfile(r0, r0, &(0x7f0000000080)=0x1f00, 0x7f04)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)

0s ago: executing program 0 (id=2351):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/schedstat\x00', 0x0, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="200000006800e97800000000000000000a0000000000000008000500", @ANYRES32=r3, @ANYBLOB="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"], 0x20}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)
r4 = socket$inet(0x2, 0x2, 0x1)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002700)=ANY=[@ANYBLOB="fc000000190001645e0000000000510100000000000000000000000000000000fe80000000000000000000050000005f9ac7f3c562f49babbb000c0cf50700bcfe5da7e44917e86e714929f3e7ca59e12fb00f8dd2e328c2aa3eeea658e796b829b47a2bf6e51500399f6d78cac081ec528e1cd6424ff71fa446305a0756854ed71e0596fe9bdc474c79f5a6e0ae800e17e0ca2d2a1988ccd37c88062442b7985b81b96d3e799e1b915a23da50c1f5bf6660a3e1527f7b58726167c6a9f7ca7835b1a7bc235c5719e82c4a503afbf53fc1a64679774c488b580a9a004cf0070c", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000007000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000004400050020010000000000000000000000000000000000022b0000000a000000fc010000000000000000000000000000000000000400"/180], 0xfc}}, 0x0)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f00000002c0)='veth1_virt_wifi\x00', 0x10)
sendmsg$inet(r4, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x4000, @broadcast}, 0x10, &(0x7f0000000100)=[{&(0x7f00000001c0)="08001efb3e6f0000", 0x8}], 0x1, 0x0, 0x0, 0xe0000000}, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r6, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f0000000080)='wg2\x00', 0x4)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000c80), 0xffffffffffffffff)
r9 = accept4$packet(r2, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000200)=0x14, 0x800)
bind$packet(r9, &(0x7f0000000240)={0x11, 0xd, r3, 0x1, 0x9, 0x6, @multicast}, 0x14)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r7, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000cc0)={0x44, r8, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x7}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x3ff}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x1}]}, 0x44}}, 0x4804)
sendmmsg(r6, &(0x7f00000002c0)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000002900)="f46dd9e7ee3cae8f1b329eab9fbb16b5c9c51a59a4507417244d124db5fd51ded6420cec714a5614ebac6519572e60376ef869c163c3b0879a4b593549613366b445b7cc712b348bccaf142d31e8f800df", 0x51}, {&(0x7f0000000300)="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", 0x4d9}, {&(0x7f00000009c0)="67330cd8d08545d1b3bc76051a2e4b3719ad9df890a62a05f1ed80472385fa150b92f484d2a3bd0002f7981380822a6c094ff1fb297bef5fb7691df484e229056afb04264aa7ef9a142db59460ef2e11d58e91babc94278102617b75756df3a1649b6f99d936a195bcd049f56baaa24f9bca148d18552a0000000000000000", 0x7f}], 0x3}}], 0x1, 0x44080)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000680), &(0x7f0000000480)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000002c0)=ANY=[@ANYRESDEC=0x0, @ANYBLOB="7e3fe37957bad3d578ff26865079c4868b9d69b56b01139f2699e8ae90965d09573e9f739dd434946d0430990873cc24198b9f100415357c0b5fcbe5a3a0ad5fd9a3460e6592a2d643b24d24af4053fa8012f4badedd1b780c026fdbacc9ae4ac828914b7010c51bb7c68a85421a193e75", @ANYRES16, @ANYRESDEC=0x0, @ANYRESDEC])
chdir(&(0x7f0000000100)='./file0\x00')
read$FUSE(0xffffffffffffffff, &(0x7f00000006c0)={0x2020}, 0x2020)
mkdir(&(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
rename(&(0x7f0000002980)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000800)='./file0\x00')
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002a80)={0x60, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x8}]}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x2}]}, 0x60}}, 0x4004020)

kernel console output (not intermixed with test programs):

ding state
[  290.567554][T13107] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.569781][T13107] bridge0: port 1(bridge_slave_0) entered forwarding state
[  290.596700][T13107] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.606611][   T77] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.610322][   T77] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.623889][T13107] 8021q: adding VLAN 0 to HW filter on device team0
[  290.633970][ T6552] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.636247][ T6552] bridge0: port 1(bridge_slave_0) entered forwarding state
[  290.645829][ T6552] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.649240][ T6552] bridge0: port 2(bridge_slave_1) entered forwarding state
[  290.709553][ T1142] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.789046][ T1142] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.864074][T13152] tmpfs: Unknown parameter 'usrquotaÿ '
[  290.883685][T13107] 8021q: adding VLAN 0 to HW filter on device batadv0
[  290.915257][ T1142] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.953002][T13107] veth0_vlan: entered promiscuous mode
[  290.958230][T13107] veth1_vlan: entered promiscuous mode
[  290.975106][T13107] veth0_macvtap: entered promiscuous mode
[  290.979112][T13107] veth1_macvtap: entered promiscuous mode
[  290.989126][T13107] batman_adv: batadv0: Interface activated: batadv_slave_0
[  290.996081][T13107] batman_adv: batadv0: Interface activated: batadv_slave_1
[  291.003550][T13107] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  291.006538][T13107] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  291.019207][T13107] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  291.024820][T13107] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  291.135102][T13164] misc userio: Invalid payload size
[  291.136936][T13164] misc userio: The device must be registered before sending interrupts
[  291.171522][   T40] audit: type=1400 audit(1748162431.669:1176): avc:  denied  { bind } for  pid=13166 comm="syz.3.1979" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  291.184138][ T6552] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.186928][ T6552] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  291.188295][ T1142] bridge_slave_1: left allmulticast mode
[  291.189051][   T40] audit: type=1400 audit(1748162431.669:1177): avc:  denied  { node_bind } for  pid=13166 comm="syz.3.1979" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  291.200702][ T1142] bridge_slave_1: left promiscuous mode
[  291.203141][ T1142] bridge0: port 2(bridge_slave_1) entered disabled state
[  291.212896][ T1142] bridge_slave_0: left allmulticast mode
[  291.214701][ T1142] bridge_slave_0: left promiscuous mode
[  291.216537][ T1142] bridge0: port 1(bridge_slave_0) entered disabled state
[  291.258948][T13170] syz.3.1981: attempt to access beyond end of device
[  291.258948][T13170] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[  291.265081][T13170] syz.3.1981: attempt to access beyond end of device
[  291.265081][T13170] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0
[  291.269595][T13170] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  291.273969][T13170] syz.3.1981: attempt to access beyond end of device
[  291.273969][T13170] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0
[  291.278401][T13170] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  291.282539][T13170] syz.3.1981: attempt to access beyond end of device
[  291.282539][T13170] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0
[  291.286744][T13170] syz.3.1981: attempt to access beyond end of device
[  291.286744][T13170] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0
[  291.295443][T13170] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  291.296263][ T6272] SELinux: failure in sel_netif_sid_slow(), invalid network interface (13)
[  291.298662][T13170] syz.3.1981: attempt to access beyond end of device
[  291.298662][T13170] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0
[  291.306916][T13170] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  291.310817][T13170] syz.3.1981: attempt to access beyond end of device
[  291.310817][T13170] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[  291.315053][T13170] syz.3.1981: attempt to access beyond end of device
[  291.315053][T13170] nbd3: rw=0, sector=2048, nr_sectors = 8 limit=0
[  291.319496][T13170] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  291.324519][T13170] syz.3.1981: attempt to access beyond end of device
[  291.324519][T13170] nbd3: rw=0, sector=4096, nr_sectors = 8 limit=0
[  291.330625][T13170] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  291.333857][T13170] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1)
[  291.546868][ T1142] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  291.552437][ T1142] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  291.556125][ T1142] bond0 (unregistering): Released all slaves
[  291.584115][   T77] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.586666][   T77] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  291.601453][ T5940] Bluetooth: hci4: command tx timeout
[  291.644033][T13193] FAULT_INJECTION: forcing a failure.
[  291.644033][T13193] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  291.648221][T13193] CPU: 3 UID: 0 PID: 13193 Comm: syz.1.1974 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  291.648248][T13193] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  291.648256][T13193] Call Trace:
[  291.648261][T13193]  <TASK>
[  291.648266][T13193]  dump_stack_lvl+0x16c/0x1f0
[  291.648286][T13193]  should_fail_ex+0x512/0x640
[  291.648306][T13193]  _copy_from_user+0x2e/0xd0
[  291.648324][T13193]  copy_msghdr_from_user+0x98/0x160
[  291.648338][T13193]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  291.648358][T13193]  ___sys_sendmsg+0xfe/0x1d0
[  291.648372][T13193]  ? __pfx____sys_sendmsg+0x10/0x10
[  291.648401][T13193]  __sys_sendmsg+0x16d/0x220
[  291.648414][T13193]  ? __pfx___sys_sendmsg+0x10/0x10
[  291.648431][T13193]  ? rcu_is_watching+0x12/0xc0
[  291.648449][T13193]  do_syscall_64+0xcd/0x260
[  291.648467][T13193]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.648479][T13193] RIP: 0033:0x7f545618e969
[  291.648489][T13193] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.648499][T13193] RSP: 002b:00007f5457007038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  291.648510][T13193] RAX: ffffffffffffffda RBX: 00007f54563b5fa0 RCX: 00007f545618e969
[  291.648517][T13193] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[  291.648523][T13193] RBP: 00007f5457007090 R08: 0000000000000000 R09: 0000000000000000
[  291.648530][T13193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  291.648537][T13193] R13: 0000000000000000 R14: 00007f54563b5fa0 R15: 00007ffe77632e28
[  291.648550][T13193]  </TASK>
[  291.708234][    C3] vkms_vblank_simulate: vblank timer overrun
[  291.818037][T13206] warn_alloc: 2 callbacks suppressed
[  291.818048][T13206] syz.3.1988: vmalloc error: size 16384, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  291.838895][T13206] CPU: 2 UID: 0 PID: 13206 Comm: syz.3.1988 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  291.838911][T13206] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  291.838919][T13206] Call Trace:
[  291.838923][T13206]  <TASK>
[  291.838928][T13206]  dump_stack_lvl+0x16c/0x1f0
[  291.838948][T13206]  warn_alloc+0x248/0x3a0
[  291.838961][T13206]  ? __pfx_warn_alloc+0x10/0x10
[  291.838973][T13206]  ? alloc_pages_mpol+0x25a/0x550
[  291.838986][T13206]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  291.839003][T13206]  __vmalloc_node_range_noprof+0x12d2/0x1540
[  291.839025][T13206]  ? vhost_task_create+0x1d2/0x2e0
[  291.839041][T13206]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  291.839061][T13206]  ? rcu_is_watching+0x12/0xc0
[  291.839076][T13206]  ? vhost_task_create+0x1d2/0x2e0
[  291.839087][T13206]  __vmalloc_node_noprof+0x74/0xa0
[  291.839103][T13206]  ? vhost_task_create+0x1d2/0x2e0
[  291.839116][T13206]  copy_process+0x2ead/0x91b0
[  291.839131][T13206]  ? kasan_save_track+0x14/0x30
[  291.839141][T13206]  ? __kasan_kmalloc+0xaa/0xb0
[  291.839157][T13206]  ? vhost_task_create+0xe5/0x2e0
[  291.839167][T13206]  ? kvm_mmu_post_init_vm+0x1b7/0x370
[  291.839185][T13206]  ? kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  291.839201][T13206]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  291.839217][T13206]  ? __x64_sys_ioctl+0x190/0x200
[  291.839231][T13206]  ? do_syscall_64+0xcd/0x260
[  291.839247][T13206]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.839265][T13206]  ? __pfx_copy_process+0x10/0x10
[  291.839288][T13206]  ? lockdep_init_map_type+0x5c/0x280
[  291.839300][T13206]  ? lockdep_init_map_type+0x5c/0x280
[  291.839311][T13206]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  291.839324][T13206]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  291.839339][T13206]  vhost_task_create+0x1d2/0x2e0
[  291.839351][T13206]  ? __pfx_vhost_task_create+0x10/0x10
[  291.839362][T13206]  ? register_lock_class+0x41/0x4c0
[  291.839383][T13206]  ? __pfx_vhost_task_fn+0x10/0x10
[  291.839395][T13206]  ? kvm_vcpu_ioctl+0x27e/0x1680
[  291.839416][T13206]  kvm_mmu_post_init_vm+0x1b7/0x370
[  291.839435][T13206]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  291.839457][T13206]  ? kvm_vcpu_ioctl+0x14c2/0x1680
[  291.839476][T13206]  kvm_vcpu_ioctl+0x5e9/0x1680
[  291.839494][T13206]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  291.839514][T13206]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  291.839535][T13206]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  291.839558][T13206]  ? hook_file_ioctl_common+0x145/0x410
[  291.839573][T13206]  ? selinux_file_ioctl+0x180/0x270
[  291.839590][T13206]  ? selinux_file_ioctl+0xb4/0x270
[  291.839608][T13206]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  291.839626][T13206]  __x64_sys_ioctl+0x190/0x200
[  291.839642][T13206]  do_syscall_64+0xcd/0x260
[  291.839659][T13206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.839670][T13206] RIP: 0033:0x7ff28f18e969
[  291.839680][T13206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.839691][T13206] RSP: 002b:00007ff28ffb2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  291.839702][T13206] RAX: ffffffffffffffda RBX: 00007ff28f3b5fa0 RCX: 00007ff28f18e969
[  291.839709][T13206] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  291.839715][T13206] RBP: 00007ff28ffb2090 R08: 0000000000000000 R09: 0000000000000000
[  291.839722][T13206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  291.839728][T13206] R13: 0000000000000000 R14: 00007ff28f3b5fa0 R15: 00007ffc7bb83e88
[  291.839742][T13206]  </TASK>
[  291.839746][T13206] Mem-Info:
[  291.854912][T13211] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1990'.
[  291.856644][T13206] active_anon:12382 inactive_anon:7636 isolated_anon:0
[  291.856644][T13206]  active_file:894 inactive_file:54832 isolated_file:0
[  291.856644][T13206]  unevictable:1768 dirty:416 writeback:0
[  291.856644][T13206]  slab_reclaimable:12493 slab_unreclaimable:81913
[  291.856644][T13206]  mapped:25457 shmem:10723 pagetables:1585
[  291.856644][T13206]  sec_pagetables:317 bounce:0
[  291.856644][T13206]  kernel_misc_reclaimable:0
[  291.856644][T13206]  free:435591 free_pcp:6156 free_cma:0
[  291.988241][T13206] Node 0 active_anon:49772kB inactive_anon:30544kB active_file:3556kB inactive_file:218944kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:104752kB dirty:1652kB writeback:0kB shmem:36280kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:14768kB pagetables:6464kB sec_pagetables:1268kB all_unreclaimable? no Balloon:0kB
[  291.999789][T13206] Node 1 active_anon:4kB inactive_anon:0kB active_file:20kB inactive_file:384kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:176kB dirty:12kB writeback:0kB shmem:6612kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:144kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  292.011719][T13206] Node 0 DMA free:15088kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:220kB local_pcp:104kB free_cma:0kB
[  292.020147][T13206] lowmem_reserve[]: 0 1238 1238 1238 1238
[  292.022211][T13206] Node 0 DMA32 free:158448kB boost:0kB min:27576kB low:34468kB high:41360kB reserved_highatomic:0KB active_anon:49896kB inactive_anon:30544kB active_file:3556kB inactive_file:218944kB unevictable:3536kB writepending:1652kB present:2080628kB managed:1268528kB mlocked:0kB bounce:0kB free_pcp:4564kB local_pcp:820kB free_cma:0kB
[  292.038346][T13206] lowmem_reserve[]: 0 0 0 0 0
[  292.048771][T13206] Node 1 Normal free:1562536kB boost:0kB min:39660kB low:49572kB high:59484kB reserved_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:20kB inactive_file:384kB unevictable:3536kB writepending:12kB present:2097152kB managed:1781964kB mlocked:0kB bounce:0kB free_pcp:20748kB local_pcp:32kB free_cma:0kB
[  292.060058][T13206] lowmem_reserve[]: 0 0 0 0 0
[  292.062983][T13206] Node 0 DMA: 12*4kB (UM) 12*8kB (UM) 12*16kB (UM) 13*32kB (UM) 14*64kB (UM) 11*128kB (UM) 7*256kB (UM) 4*512kB (UM) 2*1024kB (U) 1*2048kB (U) 1*4096kB (M) = 15088kB
[  292.068613][T13206] Node 0 DMA32: 9*4kB (UE) 60*8kB (UME) 112*16kB (UME) 84*32kB (UME) 159*64kB (UME) 178*128kB (UME) 103*256kB (UM) 60*512kB (UM) 32*1024kB (UM) 9*2048kB (UM) 3*4096kB (M) = 158532kB
[  292.077350][T13206] Node 1 Normal: 6*4kB (UME) 6*8kB (UME) 44*16kB (UME) 151*32kB (UME) 85*64kB (UME) 57*128kB (UME) 34*256kB (UME) 33*512kB (UME) 21*1024kB 
[  292.083089][T13222] FAULT_INJECTION: forcing a failure.
[  292.083089][T13222] name failslab, interval 1, probability 0, space 0, times 0
[  292.092481][T13206] (U) 15*2048kB (UM) 358*4096kB (M) = 1562536kB
[  292.094536][T13206] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  292.097521][T13206] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  292.105015][T13206] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  292.108038][T13206] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  292.112331][T13222] CPU: 3 UID: 0 PID: 13222 Comm: syz.2.1991 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  292.112348][T13222] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  292.112356][T13222] Call Trace:
[  292.112360][T13222]  <TASK>
[  292.112365][T13222]  dump_stack_lvl+0x16c/0x1f0
[  292.112385][T13222]  should_fail_ex+0x512/0x640
[  292.112401][T13222]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  292.112414][T13222]  should_failslab+0xc2/0x120
[  292.112426][T13222]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  292.112436][T13222]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  292.112449][T13222]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  292.112462][T13222]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  292.112478][T13222]  mmu_topup_memory_caches+0x25/0x170
[  292.112496][T13222]  kvm_mmu_load+0xd9/0x22a0
[  292.112513][T13222]  ? kvm_apic_has_interrupt+0xb5/0x190
[  292.112528][T13222]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  292.112546][T13222]  ? _raw_read_unlock+0x28/0x50
[  292.112561][T13222]  ? vmx_set_apic_access_page_addr+0x1a0/0x900
[  292.112575][T13222]  ? kvm_apic_accept_pic_intr+0xe8/0x1a0
[  292.112592][T13222]  ? __pfx_kvm_mmu_load+0x10/0x10
[  292.112609][T13206] 66446 total pagecache pages
[  292.112608][T13222]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  292.112621][T13222]  ? kvm_check_and_inject_events+0x71c/0x1310
[  292.112642][T13222]  vcpu_run+0x3446/0x5390
[  292.112656][T13222]  ? kvm_mmu_post_init_vm+0x269/0x370
[  292.112674][T13222]  ? __lock_acquire+0xaa4/0x1ba0
[  292.112696][T13222]  ? __pfx_vcpu_run+0x10/0x10
[  292.112714][T13222]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  292.112729][T13222]  ? __local_bh_enable_ip+0xa4/0x120
[  292.112746][T13222]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  292.112762][T13222]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  292.112783][T13222]  kvm_vcpu_ioctl+0x5e9/0x1680
[  292.112801][T13222]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  292.112822][T13222]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  292.112842][T13222]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  292.112865][T13222]  ? hook_file_ioctl_common+0x145/0x410
[  292.112881][T13222]  ? selinux_file_ioctl+0x180/0x270
[  292.112898][T13222]  ? selinux_file_ioctl+0xb4/0x270
[  292.112916][T13222]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  292.112933][T13222]  __x64_sys_ioctl+0x190/0x200
[  292.112950][T13222]  do_syscall_64+0xcd/0x260
[  292.112967][T13222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.112978][T13222] RIP: 0033:0x7f651538e969
[  292.112988][T13222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.112998][T13222] RSP: 002b:00007f6516171038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  292.113009][T13222] RAX: ffffffffffffffda RBX: 00007f65155b5fa0 RCX: 00007f651538e969
[  292.113016][T13222] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  292.113023][T13222] RBP: 00007f6516171090 R08: 0000000000000000 R09: 0000000000000000
[  292.113030][T13222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  292.113036][T13222] R13: 0000000000000000 R14: 00007f65155b5fa0 R15: 00007ffebd15cb18
[  292.113050][T13222]  </TASK>
[  292.210151][ T1142] hsr_slave_0: left promiscuous mode
[  292.210612][T13206] 0 pages in swap cache
[  292.213356][T13206] Free swap  = 124996kB
[  292.214746][T13206] Total swap = 124996kB
[  292.216117][T13206] 1048443 pages RAM
[  292.217365][ T1142] hsr_slave_1: left promiscuous mode
[  292.217508][T13206] 0 pages HighMem/MovableOnly
[  292.219649][ T1142] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  292.221612][T13206] 281980 pages reserved
[  292.223021][ T1142] batman_adv: batadv0: Removing interface: batadv_slave_0
[  292.224321][T13206] 0 pages cma reserved
[  292.232412][ T1142] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  292.234743][ T1142] batman_adv: batadv0: Removing interface: batadv_slave_1
[  292.257875][ T1142] veth1_macvtap: left promiscuous mode
[  292.259698][ T1142] veth0_macvtap: left promiscuous mode
[  292.262077][ T1142] veth1_vlan: left promiscuous mode
[  292.263880][ T1142] veth0_vlan: left promiscuous mode
[  292.449118][T13242] FAULT_INJECTION: forcing a failure.
[  292.449118][T13242] name failslab, interval 1, probability 0, space 0, times 0
[  292.453669][T13242] CPU: 0 UID: 0 PID: 13242 Comm: syz.2.1992 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  292.453697][T13242] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  292.453704][T13242] Call Trace:
[  292.453708][T13242]  <TASK>
[  292.453712][T13242]  dump_stack_lvl+0x16c/0x1f0
[  292.453733][T13242]  should_fail_ex+0x512/0x640
[  292.453750][T13242]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  292.453763][T13242]  should_failslab+0xc2/0x120
[  292.453776][T13242]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  292.453788][T13242]  ? __alloc_skb+0x2b2/0x380
[  292.453806][T13242]  __alloc_skb+0x2b2/0x380
[  292.453817][T13242]  ? __pfx___alloc_skb+0x10/0x10
[  292.453828][T13242]  ? __pfx_tc_new_tfilter+0x10/0x10
[  292.453849][T13242]  netlink_ack+0x15d/0xb80
[  292.453868][T13242]  netlink_rcv_skb+0x347/0x440
[  292.453882][T13242]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  292.453898][T13242]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  292.453920][T13242]  ? netlink_deliver_tap+0x1ae/0xd30
[  292.453936][T13242]  netlink_unicast+0x53d/0x7f0
[  292.453952][T13242]  ? __pfx_netlink_unicast+0x10/0x10
[  292.453971][T13242]  netlink_sendmsg+0x8d1/0xdd0
[  292.453987][T13242]  ? __pfx_netlink_sendmsg+0x10/0x10
[  292.454007][T13242]  ____sys_sendmsg+0xa95/0xc70
[  292.454023][T13242]  ? copy_msghdr_from_user+0x10a/0x160
[  292.454036][T13242]  ? __pfx_____sys_sendmsg+0x10/0x10
[  292.454058][T13242]  ___sys_sendmsg+0x134/0x1d0
[  292.454071][T13242]  ? __pfx____sys_sendmsg+0x10/0x10
[  292.454101][T13242]  __sys_sendmsg+0x16d/0x220
[  292.454114][T13242]  ? __pfx___sys_sendmsg+0x10/0x10
[  292.454135][T13242]  do_syscall_64+0xcd/0x260
[  292.454153][T13242]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.454165][T13242] RIP: 0033:0x7f651538e969
[  292.454174][T13242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.454185][T13242] RSP: 002b:00007f6516150038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  292.454196][T13242] RAX: ffffffffffffffda RBX: 00007f65155b6080 RCX: 00007f651538e969
[  292.454203][T13242] RDX: 000000002008c014 RSI: 0000200000000580 RDI: 0000000000000004
[  292.454210][T13242] RBP: 00007f6516150090 R08: 0000000000000000 R09: 0000000000000000
[  292.454216][T13242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  292.454223][T13242] R13: 0000000000000000 R14: 00007f65155b6080 R15: 00007ffebd15cb18
[  292.454236][T13242]  </TASK>
[  292.720760][ T5940] Bluetooth: hci3: command 0x1003 tx timeout
[  292.725058][ T5945] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  293.218741][ T1142] team0 (unregistering): Port device team_slave_1 removed
[  293.292757][ T1142] team0 (unregistering): Port device team_slave_0 removed
[  293.347328][T13267] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13267 comm=syz.3.1997
[  293.680568][ T5945] Bluetooth: hci4: command tx timeout
[  293.687325][   T40] audit: type=1400 audit(1748162434.189:1178): avc:  denied  { create } for  pid=13274 comm="syz.3.2001" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  293.696122][   T40] audit: type=1400 audit(1748162434.189:1179): avc:  denied  { ioctl } for  pid=13274 comm="syz.3.2001" path="socket:[50642]" dev="sockfs" ino=50642 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  293.872801][T13278] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2001'.
[  294.039704][T13283] binder: 13282:13283 ioctl 5429 2000000000c0 returned -22
[  294.053332][T13283] binder: 13282:13283 ioctl c00c620f 200000000140 returned -22
[  294.061129][T13283] binder: 13282:13283 ioctl ae01 0 returned -22
[  294.208795][   T40] audit: type=1400 audit(1748162434.709:1180): avc:  denied  { connect } for  pid=13302 comm="syz.0.2009" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  294.370490][  T834] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  294.553392][  T834] usb 6-1: Using ep0 maxpacket: 8
[  294.567051][  T834] usb 6-1: config index 0 descriptor too short (expected 5924, got 36)
[  294.569755][  T834] usb 6-1: config 250 has an invalid interface number: 228 but max is -1
[  294.573215][  T834] usb 6-1: config 250 has 1 interface, different from the descriptor's value: 0
[  294.576077][  T834] usb 6-1: config 250 has no interface number 0
[  294.587923][   T40] audit: type=1400 audit(1748162435.079:1181): avc:  denied  { read } for  pid=13302 comm="syz.0.2009" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  294.587937][  T834] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  294.611024][  T834] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  294.615063][  T834] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 65535, setting to 1024
[  294.621960][  T834] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 1024
[  294.642233][  T834] usb 6-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  294.653609][  T834] usb 6-1: config 250 interface 228 has no altsetting 0
[  294.659428][  T834] usb 6-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  294.663823][  T834] usb 6-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  294.667237][  T834] usb 6-1: Product: syz
[  294.668990][  T834] usb 6-1: SerialNumber: syz
[  294.677970][  T834] hub 6-1:250.228: bad descriptor, ignoring hub
[  294.681599][  T834] hub 6-1:250.228: probe with driver hub failed with error -5
[  294.886386][  T834] usblp 6-1:250.228: usblp0: USB Bidirectional printer dev 2 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  294.921075][ T6848] e1000 0000:00:06.0 eth0: Reset adapter
[  295.071095][ T6848] e1000 0000:00:06.0 eth0: Reset adapter
[  295.089861][   T40] audit: type=1400 audit(1748162435.589:1182): avc:  denied  { read write } for  pid=13295 comm="syz.1.2006" name="lp0" dev="devtmpfs" ino=3011 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  295.110304][   T40] audit: type=1400 audit(1748162435.589:1183): avc:  denied  { open } for  pid=13295 comm="syz.1.2006" path="/dev/usb/lp0" dev="devtmpfs" ino=3011 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  295.194682][    C0] usblp0: nonzero read bulk status received: -71
[  295.232435][ T5934] usb 6-1: USB disconnect, device number 2
[  295.235927][T13346] syzkaller0: entered promiscuous mode
[  295.238201][T13346] syzkaller0: entered allmulticast mode
[  295.238984][ T5934] usblp0: removed
[  295.752265][   T40] audit: type=1400 audit(1748162436.259:1184): avc:  denied  { setattr } for  pid=13365 comm="syz.1.2016" name="[io_uring]" dev="anon_inodefs" ino=50067 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  295.774165][ T5940] Bluetooth: hci4: command tx timeout
[  295.838374][T13370] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2017'.
[  296.171975][ T5940] Bluetooth: hci3: command 0x1003 tx timeout
[  296.172002][ T5945] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  297.283112][   T29] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  297.639143][T13410] netlink: 'syz.2.2021': attribute type 1 has an invalid length.
[  297.665874][T13412] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  297.669290][T13412] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  297.679123][T13410] bond5: (slave wireguard4): The slave device specified does not support setting the MAC address
[  297.685267][T13410] bond5: (slave wireguard4): Setting fail_over_mac to active for active-backup mode
[  297.691364][T13410] bond5: (slave wireguard4): making interface the new active one
[  297.694098][T13410] bond5: (slave wireguard4): Enslaving as an active interface with an up link
[  297.701867][T13417] sp0: Synchronizing with TNC
[  297.749038][   T40] audit: type=1400 audit(1748162438.249:1185): avc:  denied  { read write } for  pid=13423 comm="syz.2.2025" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  297.758617][   T40] audit: type=1400 audit(1748162438.249:1186): avc:  denied  { open } for  pid=13423 comm="syz.2.2025" path="/dev/ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  297.766960][   T40] audit: type=1400 audit(1748162438.259:1187): avc:  denied  { ioctl } for  pid=13423 comm="syz.2.2025" path="/dev/ppp" dev="devtmpfs" ino=730 ioctlcmd=0x7438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  297.802677][T13422] block nbd2: server does not support multiple connections per device.
[  297.809156][T13422] FAULT_INJECTION: forcing a failure.
[  297.809156][T13422] name failslab, interval 1, probability 0, space 0, times 0
[  297.815189][T13422] CPU: 0 UID: 0 PID: 13422 Comm: syz.1.2024 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  297.815214][T13422] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  297.815226][T13422] Call Trace:
[  297.815233][T13422]  <TASK>
[  297.815240][T13422]  dump_stack_lvl+0x16c/0x1f0
[  297.815272][T13422]  should_fail_ex+0x512/0x640
[  297.815296][T13422]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  297.815319][T13422]  should_failslab+0xc2/0x120
[  297.815339][T13422]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  297.815362][T13422]  ? __alloc_skb+0x2b2/0x380
[  297.815388][T13422]  __alloc_skb+0x2b2/0x380
[  297.815407][T13422]  ? __pfx___alloc_skb+0x10/0x10
[  297.815432][T13422]  ? netlink_has_listeners+0x20f/0x430
[  297.815458][T13422]  alloc_uevent_skb+0x7d/0x210
[  297.815498][T13422]  kobject_uevent_env+0xca4/0x1870
[  297.815522][T13422]  ? nbd_config_put+0xe3/0x750
[  297.815547][T13422]  nbd_config_put+0x4fc/0x750
[  297.815571][T13422]  nbd_genl_connect+0x12df/0x1c20
[  297.815596][T13422]  ? __pfx_nbd_genl_connect+0x10/0x10
[  297.815622][T13422]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  297.815649][T13422]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  297.815682][T13422]  genl_family_rcv_msg_doit+0x209/0x2f0
[  297.815716][T13422]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  297.815742][T13422]  ? genl_get_cmd+0x194/0x580
[  297.815775][T13422]  ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[  297.815791][T13422]  ? kmalloc_reserve+0x18b/0x2c0
[  297.815813][T13422]  ? __radix_tree_lookup+0x21f/0x2c0
[  297.815842][T13422]  genl_rcv_msg+0x55c/0x800
[  297.815871][T13422]  ? __pfx_genl_rcv_msg+0x10/0x10
[  297.815897][T13422]  ? __pfx_nbd_genl_connect+0x10/0x10
[  297.815919][T13422]  ? __lock_acquire+0xaa4/0x1ba0
[  297.815954][T13422]  netlink_rcv_skb+0x16a/0x440
[  297.815977][T13422]  ? __pfx_genl_rcv_msg+0x10/0x10
[  297.816004][T13422]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  297.816042][T13422]  ? __pfx_down_read+0x10/0x10
[  297.816060][T13422]  ? netlink_deliver_tap+0x1ae/0xd30
[  297.816087][T13422]  genl_rcv+0x28/0x40
[  297.816110][T13422]  netlink_unicast+0x53d/0x7f0
[  297.816137][T13422]  ? __pfx_netlink_unicast+0x10/0x10
[  297.816169][T13422]  netlink_sendmsg+0x8d1/0xdd0
[  297.816198][T13422]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.816233][T13422]  ____sys_sendmsg+0xa95/0xc70
[  297.816259][T13422]  ? copy_msghdr_from_user+0x10a/0x160
[  297.816280][T13422]  ? __pfx_____sys_sendmsg+0x10/0x10
[  297.816320][T13422]  ___sys_sendmsg+0x134/0x1d0
[  297.816343][T13422]  ? __pfx____sys_sendmsg+0x10/0x10
[  297.816401][T13422]  __sys_sendmsg+0x16d/0x220
[  297.816423][T13422]  ? __pfx___sys_sendmsg+0x10/0x10
[  297.816452][T13422]  ? rcu_is_watching+0x12/0xc0
[  297.816482][T13422]  do_syscall_64+0xcd/0x260
[  297.816511][T13422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.816529][T13422] RIP: 0033:0x7f545618e969
[  297.816544][T13422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.816562][T13422] RSP: 002b:00007f5457007038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  297.816581][T13422] RAX: ffffffffffffffda RBX: 00007f54563b5fa0 RCX: 00007f545618e969
[  297.816593][T13422] RDX: 0000000000000000 RSI: 0000200000001ac0 RDI: 0000000000000004
[  297.816604][T13422] RBP: 00007f5457007090 R08: 0000000000000000 R09: 0000000000000000
[  297.816615][T13422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  297.816626][T13422] R13: 0000000000000000 R14: 00007f54563b5fa0 R15: 00007ffe77632e28
[  297.816653][T13422]  </TASK>
[  297.816856][T13422] block nbd2: shutting down sockets
[  297.840822][ T5945] Bluetooth: hci4: command tx timeout
[  297.989458][T13440] syzkaller0: entered promiscuous mode
[  297.991670][T13440] syzkaller0: entered allmulticast mode
[  299.721144][T13487] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2039'.
[  299.751272][T13492] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  299.756881][T13492] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  299.759834][T13492] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  299.762758][T13492] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  299.797555][T13495] syzkaller0: entered promiscuous mode
[  299.799317][T13495] syzkaller0: entered allmulticast mode
[  299.858838][T13502] binder: binder_mmap: 13501 200000ffd000-200001000000 bad vm_flags failed -1
[  299.866533][T13502] netlink: 'syz.2.2044': attribute type 23 has an invalid length.
[  299.994072][T13508] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  299.999226][T13508] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  300.004107][ T5945] Bluetooth: hci3: command 0x1003 tx timeout
[  300.004466][ T5940] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  300.005568][T13508] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2046'.
[  300.006475][T13508] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2046'.
[  300.006619][T13509] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2046'.
[  300.191531][T13523] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2051'.
[  300.691396][T13535] block nbd2: server does not support multiple connections per device.
[  300.694767][T13535] block nbd2: shutting down sockets
[  301.376228][T13555] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  301.479936][T13565] netlink: 'syz.0.2063': attribute type 1 has an invalid length.
[  301.484833][T13565] netlink: 244 bytes leftover after parsing attributes in process `syz.0.2063'.
[  301.501374][ T5994] IPVS: starting estimator thread 0...
[  301.503847][T13568] autofs: Unknown parameter ''
[  301.611480][T13541] overlayfs: statfs failed on './file0'
[  301.623810][T13569] IPVS: using max 45 ests per chain, 108000 per kthread
[  311.823232][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  311.823244][   T40] audit: type=1400 audit(1748162452.329:1192): avc:  denied  { bind } for  pid=13638 comm="syz.3.2071" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  311.832355][   T40] audit: type=1400 audit(1748162452.329:1193): avc:  denied  { listen } for  pid=13638 comm="syz.3.2071" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  311.837854][   T40] audit: type=1400 audit(1748162452.329:1194): avc:  denied  { connect } for  pid=13638 comm="syz.3.2071" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  311.843663][   T40] audit: type=1400 audit(1748162452.339:1195): avc:  denied  { write } for  pid=13638 comm="syz.3.2071" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  311.845763][T13639] syzkaller0: entered promiscuous mode
[  311.852057][T13639] syzkaller0: entered allmulticast mode
[  311.888517][   T40] audit: type=1400 audit(1748162452.389:1196): avc:  denied  { ioctl } for  pid=13643 comm="syz.2.2070" path="socket:[53363]" dev="sockfs" ino=53363 ioctlcmd=0x8b2d scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  311.947300][T13650] FAULT_INJECTION: forcing a failure.
[  311.947300][T13650] name failslab, interval 1, probability 0, space 0, times 0
[  311.950978][T13650] CPU: 2 UID: 0 PID: 13650 Comm: syz.3.2073 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  311.950994][T13650] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  311.951001][T13650] Call Trace:
[  311.951005][T13650]  <TASK>
[  311.951010][T13650]  dump_stack_lvl+0x16c/0x1f0
[  311.951030][T13650]  should_fail_ex+0x512/0x640
[  311.951046][T13650]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  311.951060][T13650]  should_failslab+0xc2/0x120
[  311.951072][T13650]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  311.951083][T13650]  ? __pfx___might_resched+0x10/0x10
[  311.951098][T13650]  ? alloc_vmap_area+0xd9a/0x2970
[  311.951115][T13650]  alloc_vmap_area+0xd9a/0x2970
[  311.951135][T13650]  ? __pfx_alloc_vmap_area+0x10/0x10
[  311.951153][T13650]  __get_vm_area_node+0x1ca/0x330
[  311.951172][T13650]  __vmalloc_node_range_noprof+0x277/0x1540
[  311.951189][T13650]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  311.951205][T13650]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  311.951218][T13650]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  311.951239][T13650]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  311.951250][T13650]  vmalloc_user_noprof+0x6b/0x90
[  311.951266][T13650]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  311.951276][T13650]  vb2_vmalloc_alloc+0x135/0x3f0
[  311.951287][T13650]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  311.951298][T13650]  __vb2_queue_alloc+0x8c6/0x1280
[  311.951322][T13650]  vb2_core_reqbufs+0xa90/0xfe0
[  311.951343][T13650]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  311.951369][T13650]  __vb2_init_fileio+0x3f1/0x1100
[  311.951388][T13650]  vb2_core_poll+0x5ec/0x700
[  311.951400][T13650]  vb2_poll+0x33/0x150
[  311.951416][T13650]  vb2_fop_poll+0x10f/0x2c0
[  311.951433][T13650]  ? __pfx_vb2_fop_poll+0x10/0x10
[  311.951449][T13650]  v4l2_poll+0x160/0x320
[  311.951463][T13650]  ? __pfx_v4l2_poll+0x10/0x10
[  311.951475][T13650]  do_sys_poll+0x523/0xe00
[  311.951497][T13650]  ? __pfx_do_sys_poll+0x10/0x10
[  311.951532][T13650]  ? find_held_lock+0x2b/0x80
[  311.951550][T13650]  ? __pfx_pollwake+0x10/0x10
[  311.951567][T13650]  ? __pfx_pollwake+0x10/0x10
[  311.951584][T13650]  ? __pfx_pollwake+0x10/0x10
[  311.951601][T13650]  ? __pfx_pollwake+0x10/0x10
[  311.951619][T13650]  ? __pfx_pollwake+0x10/0x10
[  311.951636][T13650]  ? __pfx_pollwake+0x10/0x10
[  311.951653][T13650]  ? __pfx_pollwake+0x10/0x10
[  311.951671][T13650]  ? __pfx_pollwake+0x10/0x10
[  311.951688][T13650]  ? __pfx_pollwake+0x10/0x10
[  311.951704][T13650]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  311.951723][T13650]  ? set_user_sigmask+0x21b/0x2b0
[  311.951736][T13650]  ? __pfx_set_user_sigmask+0x10/0x10
[  311.951749][T13650]  ? __fget_files+0x20e/0x3c0
[  311.951761][T13650]  __x64_sys_ppoll+0x254/0x2d0
[  311.951779][T13650]  ? __pfx___x64_sys_ppoll+0x10/0x10
[  311.951796][T13650]  ? ksys_write+0x1b9/0x240
[  311.951813][T13650]  ? __pfx_ksys_write+0x10/0x10
[  311.951833][T13650]  do_syscall_64+0xcd/0x260
[  311.951851][T13650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.951863][T13650] RIP: 0033:0x7ff28f18e969
[  311.951873][T13650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.951884][T13650] RSP: 002b:00007ff28ffb2038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  311.951895][T13650] RAX: ffffffffffffffda RBX: 00007ff28f3b5fa0 RCX: 00007ff28f18e969
[  311.951902][T13650] RDX: 0000000000000000 RSI: 20000000000000dc RDI: 00002000000000c0
[  311.951909][T13650] RBP: 00007ff28ffb2090 R08: 0000000000000000 R09: 0000000000000000
[  311.951916][T13650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  311.951922][T13650] R13: 0000000000000000 R14: 00007ff28f3b5fa0 R15: 00007ffc7bb83e88
[  311.951936][T13650]  </TASK>
[  312.119932][   T40] audit: type=1400 audit(1748162452.619:1197): avc:  denied  { ioctl } for  pid=13664 comm="syz.1.2075" path="socket:[51807]" dev="sockfs" ino=51807 ioctlcmd=0x660c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  312.163927][T13669] futex_wake_op: syz.3.2076 tries to shift op by 32; fix this program
[  312.230692][T13669] binder: 13668:13669 ioctl c0306201 200000000280 returned -14
[  312.233042][T13670] binder: 13668:13670 ioctl c0306201 200000000000 returned -14
[  312.558396][T13678] FAULT_INJECTION: forcing a failure.
[  312.558396][T13678] name failslab, interval 1, probability 0, space 0, times 0
[  312.564785][T13678] CPU: 3 UID: 0 PID: 13678 Comm: syz.1.2079 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  312.564803][T13678] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  312.564810][T13678] Call Trace:
[  312.564815][T13678]  <TASK>
[  312.564819][T13678]  dump_stack_lvl+0x16c/0x1f0
[  312.564840][T13678]  should_fail_ex+0x512/0x640
[  312.564856][T13678]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  312.564870][T13678]  should_failslab+0xc2/0x120
[  312.564882][T13678]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  312.564895][T13678]  ? smb3_fs_context_parse_param+0x313b/0xa2a0
[  312.564914][T13678]  kstrdup+0x53/0x100
[  312.564932][T13678]  smb3_fs_context_parse_param+0x313b/0xa2a0
[  312.564955][T13678]  ? __pfx_smb3_fs_context_parse_param+0x10/0x10
[  312.564980][T13678]  ? __pfx_selinux_fs_context_parse_param+0x10/0x10
[  312.565004][T13678]  ? __pfx_smb3_fs_context_parse_param+0x10/0x10
[  312.565021][T13678]  ? vfs_parse_fs_param+0x20b/0x3c0
[  312.565032][T13678]  vfs_parse_fs_param+0x20b/0x3c0
[  312.565044][T13678]  vfs_parse_fs_string+0xe9/0x150
[  312.565055][T13678]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  312.565102][T13678]  smb3_fs_context_parse_monolithic+0x201/0x2e0
[  312.565119][T13678]  ? __pfx_smb3_fs_context_parse_monolithic+0x10/0x10
[  312.565136][T13678]  ? alloc_fs_context+0x59b/0x9c0
[  312.565151][T13678]  path_mount+0x148d/0x1f20
[  312.565165][T13678]  ? kmem_cache_free+0x2d4/0x4d0
[  312.565183][T13678]  ? __pfx_path_mount+0x10/0x10
[  312.565197][T13678]  ? putname+0x154/0x1a0
[  312.565212][T13678]  __x64_sys_mount+0x28d/0x310
[  312.565226][T13678]  ? __pfx___x64_sys_mount+0x10/0x10
[  312.565238][T13678]  ? rcu_is_watching+0x12/0xc0
[  312.565256][T13678]  do_syscall_64+0xcd/0x260
[  312.565281][T13678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.565293][T13678] RIP: 0033:0x7f545618e969
[  312.565303][T13678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  312.565315][T13678] RSP: 002b:00007f5457007038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  312.565326][T13678] RAX: ffffffffffffffda RBX: 00007f54563b5fa0 RCX: 00007f545618e969
[  312.565333][T13678] RDX: 0000200000000340 RSI: 0000200000000300 RDI: 0000000000000000
[  312.565340][T13678] RBP: 00007f5457007090 R08: 0000200000000380 R09: 0000000000000000
[  312.565347][T13678] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000002
[  312.565354][T13678] R13: 0000000000000000 R14: 00007f54563b5fa0 R15: 00007ffe77632e28
[  312.565369][T13678]  </TASK>
[  312.565379][T13678] CIFS mount error: No usable UNC path provided in device string!
[  312.565379][T13678] 
[  312.650674][T13678] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  312.988339][T13689] program syz.1.2082 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  313.444733][T13692] overlayfs: unescaped trailing colons in lowerdir mount option.
[  313.928663][T13729] syzkaller0: entered promiscuous mode
[  313.932607][T13729] syzkaller0: entered allmulticast mode
[  314.598445][T13741] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2093'.
[  315.375915][T13752] IPVS: sync thread started: state = MASTER, mcast_ifn = wlan1, syncid = 0, id = 0
[  315.557736][   T40] audit: type=1400 audit(1748162456.059:1198): avc:  denied  { setopt } for  pid=13767 comm="syz.3.2100" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  315.563313][T13768] netlink: 'syz.3.2100': attribute type 4 has an invalid length.
[  315.564800][   T40] audit: type=1400 audit(1748162456.059:1199): avc:  denied  { connect } for  pid=13767 comm="syz.3.2100" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  315.566246][T13768] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2100'.
[  315.578195][T13768] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  315.630175][T13775] netlink: 'syz.3.2101': attribute type 10 has an invalid length.
[  315.633851][T13775] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2101'.
[  315.637090][T13775] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  315.687244][T13781] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2103'.
[  315.840632][ T5940] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  315.841101][ T5945] Bluetooth: hci3: command 0x1003 tx timeout
[  315.865107][T13799] syzkaller0: entered promiscuous mode
[  315.866983][T13799] syzkaller0: entered allmulticast mode
[  315.939762][T13803] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 808
[  316.061425][T13812] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2111'.
[  316.119211][T13814] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2111'.
[  316.166986][   T40] audit: type=1400 audit(1748162456.669:1200): avc:  denied  { write } for  pid=13804 comm="syz.0.2109" path="socket:[53547]" dev="sockfs" ino=53547 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  316.893480][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  317.211865][T13820] FAULT_INJECTION: forcing a failure.
[  317.211865][T13820] name failslab, interval 1, probability 0, space 0, times 0
[  317.215880][T13820] CPU: 0 UID: 0 PID: 13820 Comm: syz.2.2112 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  317.215897][T13820] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.215904][T13820] Call Trace:
[  317.215909][T13820]  <TASK>
[  317.215913][T13820]  dump_stack_lvl+0x16c/0x1f0
[  317.215933][T13820]  should_fail_ex+0x512/0x640
[  317.215953][T13820]  should_failslab+0xc2/0x120
[  317.215966][T13820]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  317.215978][T13820]  ? skb_clone+0x190/0x3f0
[  317.215994][T13820]  skb_clone+0x190/0x3f0
[  317.216007][T13820]  netlink_deliver_tap+0xabd/0xd30
[  317.216024][T13820]  netlink_unicast+0x6b2/0x7f0
[  317.216041][T13820]  ? __pfx_netlink_unicast+0x10/0x10
[  317.216054][T13820]  ? genl_rcv_msg+0x4bb/0x800
[  317.216074][T13820]  netlink_ack+0x696/0xb80
[  317.216093][T13820]  netlink_rcv_skb+0x347/0x440
[  317.216108][T13820]  ? __pfx_genl_rcv_msg+0x10/0x10
[  317.216125][T13820]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  317.216146][T13820]  ? __pfx_down_read+0x10/0x10
[  317.216157][T13820]  ? netlink_deliver_tap+0x1ae/0xd30
[  317.216173][T13820]  genl_rcv+0x28/0x40
[  317.216187][T13820]  netlink_unicast+0x53d/0x7f0
[  317.216203][T13820]  ? __pfx_netlink_unicast+0x10/0x10
[  317.216222][T13820]  netlink_sendmsg+0x8d1/0xdd0
[  317.216239][T13820]  ? __pfx_netlink_sendmsg+0x10/0x10
[  317.216259][T13820]  ____sys_sendmsg+0xa95/0xc70
[  317.216275][T13820]  ? copy_msghdr_from_user+0x10a/0x160
[  317.216288][T13820]  ? __pfx_____sys_sendmsg+0x10/0x10
[  317.216310][T13820]  ___sys_sendmsg+0x134/0x1d0
[  317.216324][T13820]  ? __pfx____sys_sendmsg+0x10/0x10
[  317.216354][T13820]  __sys_sendmsg+0x16d/0x220
[  317.216367][T13820]  ? __pfx___sys_sendmsg+0x10/0x10
[  317.216388][T13820]  do_syscall_64+0xcd/0x260
[  317.216406][T13820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.216418][T13820] RIP: 0033:0x7f651538e969
[  317.216427][T13820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.216438][T13820] RSP: 002b:00007f6516150038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  317.216449][T13820] RAX: ffffffffffffffda RBX: 00007f65155b6080 RCX: 00007f651538e969
[  317.216457][T13820] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[  317.216463][T13820] RBP: 00007f6516150090 R08: 0000000000000000 R09: 0000000000000000
[  317.216469][T13820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.216476][T13820] R13: 0000000000000001 R14: 00007f65155b6080 R15: 00007ffebd15cb18
[  317.216490][T13820]  </TASK>
[  317.303634][T13823] binder: 13821:13823 ioctl c0046209 0 returned -22
[  317.306994][   T40] audit: type=1400 audit(1748162457.809:1201): avc:  denied  { setopt } for  pid=13821 comm="syz.1.2113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  317.316441][   T40] audit: type=1400 audit(1748162457.819:1202): avc:  denied  { bind } for  pid=13821 comm="syz.1.2113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  317.503068][T13841] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2116'.
[  317.588503][   T40] audit: type=1400 audit(1748162458.089:1203): avc:  denied  { bind } for  pid=13846 comm="syz.0.2118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  317.621078][T13856] trusted_key: encrypted_key: hex blob is missing
[  317.677866][T13821] delete_channel: no stack
[  317.780985][   T40] audit: type=1400 audit(1748162458.289:1204): avc:  denied  { ioctl } for  pid=13868 comm="syz.0.2123" path="socket:[52014]" dev="sockfs" ino=52014 ioctlcmd=0x89f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  317.790160][   T40] audit: type=1400 audit(1748162458.289:1205): avc:  denied  { bind } for  pid=13868 comm="syz.0.2123" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  317.867193][T13875] syzkaller0: entered promiscuous mode
[  317.869530][T13875] syzkaller0: entered allmulticast mode
[  319.146693][T13886] FAULT_INJECTION: forcing a failure.
[  319.146693][T13886] name failslab, interval 1, probability 0, space 0, times 0
[  319.152224][T13886] CPU: 0 UID: 0 PID: 13886 Comm: syz.1.2128 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  319.152240][T13886] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  319.152247][T13886] Call Trace:
[  319.152251][T13886]  <TASK>
[  319.152256][T13886]  dump_stack_lvl+0x16c/0x1f0
[  319.152277][T13886]  should_fail_ex+0x512/0x640
[  319.152295][T13886]  should_failslab+0xc2/0x120
[  319.152308][T13886]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  319.152319][T13886]  ? __lock_acquire+0x5ca/0x1ba0
[  319.152338][T13886]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  319.152355][T13886]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  319.152372][T13886]  idr_get_free+0x528/0xa30
[  319.152391][T13886]  idr_alloc_u32+0x190/0x2f0
[  319.152407][T13886]  ? __pfx_idr_alloc_u32+0x10/0x10
[  319.152424][T13886]  ? lock_acquire+0x179/0x350
[  319.152443][T13886]  idr_alloc_cyclic+0x10b/0x230
[  319.152464][T13886]  ? __pfx_idr_alloc_cyclic+0x10/0x10
[  319.152478][T13886]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  319.152494][T13886]  bpf_link_prime+0x6e/0x290
[  319.152510][T13886]  bpf_uprobe_multi_link_attach+0xde9/0x1070
[  319.152528][T13886]  ? __pfx_bpf_uprobe_multi_link_attach+0x10/0x10
[  319.152541][T13886]  ? __fget_files+0x20e/0x3c0
[  319.152554][T13886]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  319.152569][T13886]  __sys_bpf+0x3fb6/0x4d80
[  319.152585][T13886]  ? __pfx___sys_bpf+0x10/0x10
[  319.152599][T13886]  ? ksys_write+0x190/0x240
[  319.152619][T13886]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  319.152644][T13886]  ? fput+0x70/0xf0
[  319.152656][T13886]  ? ksys_write+0x1b9/0x240
[  319.152672][T13886]  ? __pfx_ksys_write+0x10/0x10
[  319.152688][T13886]  ? rcu_is_watching+0x12/0xc0
[  319.152704][T13886]  __x64_sys_bpf+0x78/0xc0
[  319.152718][T13886]  ? lockdep_hardirqs_on+0x7c/0x110
[  319.152734][T13886]  do_syscall_64+0xcd/0x260
[  319.152751][T13886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.152764][T13886] RIP: 0033:0x7f545618e969
[  319.152773][T13886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.152784][T13886] RSP: 002b:00007f5457007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  319.152794][T13886] RAX: ffffffffffffffda RBX: 00007f54563b5fa0 RCX: 00007f545618e969
[  319.152801][T13886] RDX: 000000000000003c RSI: 00002000000012c0 RDI: 000000000000001c
[  319.152808][T13886] RBP: 00007f5457007090 R08: 0000000000000000 R09: 0000000000000000
[  319.152814][T13886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.152821][T13886] R13: 0000000000000000 R14: 00007f54563b5fa0 R15: 00007ffe77632e28
[  319.152835][T13886]  </TASK>
[  319.153175][T13879] (unnamed net_device) (uninitialized): down delay (4) is not a multiple of miimon (8), value rounded to 0 ms
[  319.242694][T13879] workqueue: Failed to create a rescuer kthread for wq "bond8": -EINTR
[  319.372632][T13899] 9pnet_virtio: no channels available for device syz
[  319.387415][   T40] audit: type=1400 audit(1748162459.889:1206): avc:  denied  { read } for  pid=13896 comm="syz.1.2134" name="/" dev="configfs" ino=1068 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  319.396048][   T40] audit: type=1400 audit(1748162459.889:1207): avc:  denied  { open } for  pid=13896 comm="syz.1.2134" path="/" dev="configfs" ino=1068 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  319.725604][T13909] overlay: filesystem on ./file1 not supported
[  319.759752][T13911] syzkaller0: entered promiscuous mode
[  319.760664][ T5940] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  319.760986][ T5945] Bluetooth: hci3: command 0x1003 tx timeout
[  319.770444][T13911] syzkaller0: entered allmulticast mode
[  319.772201][T13913] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2140'.
[  319.776037][T13914] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2140'.
[  320.346911][   T40] audit: type=1400 audit(1748162460.849:1208): avc:  denied  { remount } for  pid=13928 comm="syz.2.2144" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  320.835518][T13933] FAULT_INJECTION: forcing a failure.
[  320.835518][T13933] name failslab, interval 1, probability 0, space 0, times 0
[  320.844571][T13933] CPU: 3 UID: 0 PID: 13933 Comm: syz.2.2145 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  320.844597][T13933] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  320.844608][T13933] Call Trace:
[  320.844615][T13933]  <TASK>
[  320.844621][T13933]  dump_stack_lvl+0x16c/0x1f0
[  320.844650][T13933]  should_fail_ex+0x512/0x640
[  320.844688][T13933]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  320.844710][T13933]  should_failslab+0xc2/0x120
[  320.844731][T13933]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  320.844744][T13933]  ? mntput_no_expire+0x157/0xb20
[  320.844760][T13933]  ? do_raw_spin_lock+0x12c/0x2b0
[  320.844772][T13933]  ? getname_flags.part.0+0x4c/0x550
[  320.844789][T13933]  getname_flags.part.0+0x4c/0x550
[  320.844804][T13933]  getname_flags+0x93/0xf0
[  320.844822][T13933]  user_path_at+0x24/0x60
[  320.844839][T13933]  __x64_sys_truncate+0xf6/0x1e0
[  320.844850][T13933]  ? __pfx___x64_sys_truncate+0x10/0x10
[  320.844860][T13933]  ? rcu_is_watching+0x12/0xc0
[  320.844877][T13933]  do_syscall_64+0xcd/0x260
[  320.844894][T13933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.844906][T13933] RIP: 0033:0x7f651538e969
[  320.844915][T13933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.844926][T13933] RSP: 002b:00007f6516150038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c
[  320.844937][T13933] RAX: ffffffffffffffda RBX: 00007f65155b6080 RCX: 00007f651538e969
[  320.844944][T13933] RDX: 0000000000000000 RSI: 0000000001000000 RDI: 0000200000000040
[  320.844951][T13933] RBP: 00007f6516150090 R08: 0000000000000000 R09: 0000000000000000
[  320.844958][T13933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  320.844964][T13933] R13: 0000000000000000 R14: 00007f65155b6080 R15: 00007ffebd15cb18
[  320.844978][T13933]  </TASK>
[  321.171547][T13939] overlayfs: conflicting lowerdir path
[  321.634272][T13971] binder: 13970:13971 unknown command 1074553621
[  321.635169][   T40] audit: type=1804 audit(1748162462.139:1209): pid=13969 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2157" name="/newroot/575/file0/file0" dev="9p" ino=37093416 res=1 errno=0
[  321.636475][T13971] binder: 13970:13971 ioctl c0306201 200000000640 returned -22
[  321.697951][T13973] kvm: Disabled LAPIC found during irq injection
[  321.708317][T13973] team_slave_0: entered allmulticast mode
[  321.845843][T13975] syzkaller0: entered promiscuous mode
[  321.847674][T13975] syzkaller0: entered allmulticast mode
[  323.244821][T13982] overlayfs: missing 'lowerdir'
[  323.265710][T13982] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1024 sclass=netlink_route_socket pid=13982 comm=syz.1.2163
[  323.281628][ T1021] e1000 0000:00:06.0 eth0: Reset adapter
[  323.306322][   T40] audit: type=1400 audit(1748162463.809:1210): avc:  denied  { create } for  pid=13985 comm="syz.3.2165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  323.314186][   T40] audit: type=1400 audit(1748162463.819:1211): avc:  denied  { ioctl } for  pid=13985 comm="syz.3.2165" path="socket:[55335]" dev="sockfs" ino=55335 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  323.390868][ T1021] e1000 0000:00:06.0 eth0: Reset adapter
[  323.399057][T13993] FAULT_INJECTION: forcing a failure.
[  323.399057][T13993] name failslab, interval 1, probability 0, space 0, times 0
[  323.403787][T13993] CPU: 3 UID: 0 PID: 13993 Comm: syz.1.2167 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  323.403803][T13993] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  323.403810][T13993] Call Trace:
[  323.403814][T13993]  <TASK>
[  323.403818][T13993]  dump_stack_lvl+0x16c/0x1f0
[  323.403839][T13993]  should_fail_ex+0x512/0x640
[  323.403856][T13993]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  323.403874][T13993]  should_failslab+0xc2/0x120
[  323.403887][T13993]  __kmalloc_cache_noprof+0x6a/0x3e0
[  323.403903][T13993]  ? ovl_init_fs_context+0x96/0x5d0
[  323.403922][T13993]  ? kasan_save_track+0x14/0x30
[  323.403933][T13993]  ovl_init_fs_context+0x96/0x5d0
[  323.403951][T13993]  ? __pfx_ovl_init_fs_context+0x10/0x10
[  323.403969][T13993]  alloc_fs_context+0x54a/0x9c0
[  323.403983][T13993]  path_mount+0xb06/0x1f20
[  323.403996][T13993]  ? kmem_cache_free+0x2d4/0x4d0
[  323.404013][T13993]  ? __pfx_path_mount+0x10/0x10
[  323.404028][T13993]  ? putname+0x154/0x1a0
[  323.404042][T13993]  __x64_sys_mount+0x28d/0x310
[  323.404067][T13993]  ? __pfx___x64_sys_mount+0x10/0x10
[  323.404085][T13993]  do_syscall_64+0xcd/0x260
[  323.404103][T13993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.404115][T13993] RIP: 0033:0x7f545618e969
[  323.404124][T13993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.404135][T13993] RSP: 002b:00007f5457007038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  323.404146][T13993] RAX: ffffffffffffffda RBX: 00007f54563b5fa0 RCX: 00007f545618e969
[  323.404154][T13993] RDX: 0000200000000080 RSI: 00002000000000c0 RDI: 0000000000000000
[  323.404160][T13993] RBP: 00007f5457007090 R08: 0000200000000180 R09: 0000000000000000
[  323.404167][T13993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  323.404173][T13993] R13: 0000000000000000 R14: 00007f54563b5fa0 R15: 00007ffe77632e28
[  323.404187][T13993]  </TASK>
[  323.440525][ T5940] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  323.440546][ T5948] Bluetooth: hci3: command 0x1003 tx timeout
[  323.445899][T13994] FAULT_INJECTION: forcing a failure.
[  323.445899][T13994] name failslab, interval 1, probability 0, space 0, times 0
[  323.472258][T13992] nbd2: detected capacity change from 0 to 67108884
[  323.474068][T13994] CPU: 0 UID: 0 PID: 13994 Comm: syz.2.2164 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  323.474085][T13994] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  323.474092][T13994] Call Trace:
[  323.474096][T13994]  <TASK>
[  323.474101][T13994]  dump_stack_lvl+0x16c/0x1f0
[  323.474121][T13994]  should_fail_ex+0x512/0x640
[  323.474137][T13994]  ? fs_reclaim_acquire+0xae/0x150
[  323.474158][T13994]  ? tomoyo_encode2+0x100/0x3e0
[  323.474175][T13994]  should_failslab+0xc2/0x120
[  323.474187][T13994]  __kmalloc_noprof+0xd2/0x510
[  323.474198][T13994]  ? d_absolute_path+0x136/0x1a0
[  323.474215][T13994]  tomoyo_encode2+0x100/0x3e0
[  323.474233][T13994]  tomoyo_encode+0x29/0x50
[  323.474248][T13994]  tomoyo_realpath_from_path+0x18f/0x6e0
[  323.474269][T13994]  tomoyo_mount_acl+0x664/0x850
[  323.474284][T13994]  ? kernel_text_address+0x8d/0x100
[  323.474298][T13994]  ? __kernel_text_address+0xd/0x40
[  323.474313][T13994]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  323.474343][T13994]  ? tomoyo_domain+0xbb/0x150
[  323.474354][T13994]  ? tomoyo_profile+0x47/0x60
[  323.474366][T13994]  tomoyo_mount_permission+0x16d/0x420
[  323.474381][T13994]  ? tomoyo_mount_permission+0x14f/0x420
[  323.474399][T13994]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  323.474423][T13994]  security_sb_mount+0x9b/0x260
[  323.474439][T13994]  path_mount+0x128/0x1f20
[  323.474452][T13994]  ? kmem_cache_free+0x2d4/0x4d0
[  323.474469][T13994]  ? __pfx_path_mount+0x10/0x10
[  323.474483][T13994]  ? putname+0x154/0x1a0
[  323.474497][T13994]  __x64_sys_mount+0x28d/0x310
[  323.474509][T13994]  ? __pfx___x64_sys_mount+0x10/0x10
[  323.474526][T13994]  do_syscall_64+0xcd/0x260
[  323.474543][T13994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.474555][T13994] RIP: 0033:0x7f651538e969
[  323.474564][T13994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.474575][T13994] RSP: 002b:00007f651612f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  323.474586][T13994] RAX: ffffffffffffffda RBX: 00007f65155b6160 RCX: 00007f651538e969
[  323.474593][T13994] RDX: 0000200000000040 RSI: 0000200000004a00 RDI: 0000200000000500
[  323.474599][T13994] RBP: 00007f651612f090 R08: 0000000000000000 R09: 0000000000000000
[  323.474606][T13994] R10: 0000000000008007 R11: 0000000000000246 R12: 0000000000000002
[  323.474612][T13994] R13: 0000000000000001 R14: 00007f65155b6160 R15: 00007ffebd15cb18
[  323.474627][T13994]  </TASK>
[  323.474639][T13994] ERROR: Out of memory at tomoyo_realpath_from_path.
[  323.546362][T13996] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2168'.
[  323.546602][   T40] audit: type=1400 audit(1748162464.049:1212): avc:  denied  { name_bind } for  pid=13995 comm="syz.1.2168" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  323.548555][T13996] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2168'.
[  323.549656][   T40] audit: type=1400 audit(1748162464.049:1213): avc:  denied  { setopt } for  pid=13995 comm="syz.1.2168" lport=28196 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  323.549680][   T40] audit: type=1400 audit(1748162464.049:1214): avc:  denied  { getopt } for  pid=13995 comm="syz.1.2168" lport=28196 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  323.552037][T13686] block nbd2: Send control failed (result -89)
[  323.619055][ T1021] e1000 0000:00:06.0 eth0: Reset adapter
[  323.620444][T13686] block nbd2: Request send failed, requeueing
[  323.623217][T12767] block nbd2: Dead connection, failed to find a fallback
[  323.623308][ T5945] block nbd2: Receive control failed (result -32)
[  323.625462][T12767] block nbd2: shutting down sockets
[  323.629905][T12767] blk_print_req_error: 24 callbacks suppressed
[  323.629914][T12767] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.634701][T12767] buffer_io_error: 23 callbacks suppressed
[  323.634708][T12767] Buffer I/O error on dev nbd2, logical block 0, async page read
[  323.639103][T13686] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.643788][T13686] Buffer I/O error on dev nbd2, logical block 0, async page read
[  323.646973][T13686] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.655125][T13686] Buffer I/O error on dev nbd2, logical block 0, async page read
[  323.658316][T13686] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.662438][T13686] Buffer I/O error on dev nbd2, logical block 0, async page read
[  323.665581][T13686] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.669138][T13686] Buffer I/O error on dev nbd2, logical block 0, async page read
[  323.674935][T13686] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.678490][T13686] Buffer I/O error on dev nbd2, logical block 0, async page read
[  323.682618][T13686] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.686158][T13686] Buffer I/O error on dev nbd2, logical block 0, async page read
[  323.688886][T13686] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.695046][T13686] Buffer I/O error on dev nbd2, logical block 0, async page read
[  323.698152][T13686] ldm_validate_partition_table(): Disk read failed.
[  323.701336][T13686] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.704228][T13686] Buffer I/O error on dev nbd2, logical block 0, async page read
[  323.706766][T13686] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.709608][T13686] Buffer I/O error on dev nbd2, logical block 0, async page read
[  323.713877][T13686] Dev nbd2: unable to read RDB block 0
[  323.715846][T13686]  nbd2: unable to read partition table
[  323.750206][T13686] ldm_validate_partition_table(): Disk read failed.
[  323.752667][T13686] Dev nbd2: unable to read RDB block 0
[  323.754784][T13686]  nbd2: unable to read partition table
[  325.841822][   T58] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  336.742953][T14049] FAULT_INJECTION: forcing a failure.
[  336.742953][T14049] name failslab, interval 1, probability 0, space 0, times 0
[  336.748120][T14049] CPU: 2 UID: 0 PID: 14049 Comm: syz.3.2174 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  336.748163][T14049] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.748176][T14049] Call Trace:
[  336.748183][T14049]  <TASK>
[  336.748191][T14049]  dump_stack_lvl+0x16c/0x1f0
[  336.748222][T14049]  should_fail_ex+0x512/0x640
[  336.748247][T14049]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  336.748269][T14049]  should_failslab+0xc2/0x120
[  336.748289][T14049]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  336.748307][T14049]  ? rcu_is_watching+0x12/0xc0
[  336.748330][T14049]  ? prepare_creds+0x2c/0x7d0
[  336.748354][T14049]  prepare_creds+0x2c/0x7d0
[  336.748374][T14049]  copy_creds+0xa7/0xa50
[  336.748397][T14049]  copy_process+0x10b1/0x91b0
[  336.748423][T14049]  ? _kstrtoull+0x145/0x200
[  336.748442][T14049]  ? __pfx__kstrtoull+0x10/0x10
[  336.748476][T14049]  ? __pfx_copy_process+0x10/0x10
[  336.748510][T14049]  ? find_held_lock+0x2b/0x80
[  336.748544][T14049]  kernel_clone+0xfc/0x960
[  336.748570][T14049]  ? __pfx_kernel_clone+0x10/0x10
[  336.748605][T14049]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  336.748635][T14049]  __do_sys_clone+0xce/0x120
[  336.748660][T14049]  ? __pfx___do_sys_clone+0x10/0x10
[  336.748695][T14049]  ? ksys_write+0x1b9/0x240
[  336.748720][T14049]  ? __pfx_ksys_write+0x10/0x10
[  336.748743][T14049]  ? rcu_is_watching+0x12/0xc0
[  336.748770][T14049]  do_syscall_64+0xcd/0x260
[  336.748797][T14049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.748816][T14049] RIP: 0033:0x7ff28f18e969
[  336.748830][T14049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.748871][T14049] RSP: 002b:00007ff28ffb1fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  336.748890][T14049] RAX: ffffffffffffffda RBX: 00007ff28f3b5fa0 RCX: 00007ff28f18e969
[  336.748901][T14049] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000001000
[  336.748912][T14049] RBP: 00007ff28ffb2090 R08: 0000000000000000 R09: 0000000000000000
[  336.748923][T14049] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  336.748933][T14049] R13: 0000000000000000 R14: 00007ff28f3b5fa0 R15: 00007ffc7bb83e88
[  336.748957][T14049]  </TASK>
[  336.750250][T14051] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2172'.
[  336.774814][T14048] syzkaller0: entered promiscuous mode
[  336.794573][T14054] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  336.795582][T14048] syzkaller0: entered allmulticast mode
[  336.806822][T14054] overlayfs: conflicting lowerdir path
[  336.852870][T14054] overlay: Unknown parameter 'dont_appraise'
[  336.954983][   T57] usb 8-1: USB disconnect, device number 5
[  337.148322][T14072] FAULT_INJECTION: forcing a failure.
[  337.148322][T14072] name failslab, interval 1, probability 0, space 0, times 0
[  337.159302][T14072] CPU: 1 UID: 0 PID: 14072 Comm: syz.2.2181 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  337.159320][T14072] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  337.159327][T14072] Call Trace:
[  337.159331][T14072]  <TASK>
[  337.159336][T14072]  dump_stack_lvl+0x16c/0x1f0
[  337.159357][T14072]  should_fail_ex+0x512/0x640
[  337.159375][T14072]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  337.159388][T14072]  should_failslab+0xc2/0x120
[  337.159401][T14072]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  337.159412][T14072]  ? fuse_request_alloc+0x22/0x200
[  337.159433][T14072]  fuse_request_alloc+0x22/0x200
[  337.159450][T14072]  fuse_get_req+0x748/0xfd0
[  337.159462][T14072]  ? __lock_acquire+0x5ca/0x1ba0
[  337.159485][T14072]  ? __pfx_fuse_get_req+0x10/0x10
[  337.159511][T14072]  __fuse_simple_request+0xb8/0xcb0
[  337.159536][T14072]  fuse_setxattr+0x2af/0x460
[  337.159566][T14072]  ? __pfx_fuse_setxattr+0x10/0x10
[  337.159608][T14072]  ? inode_has_perm+0x16f/0x1d0
[  337.159627][T14072]  ? __pfx_fuse_xattr_set+0x10/0x10
[  337.159643][T14072]  fuse_xattr_set+0x8e/0xe0
[  337.159661][T14072]  __vfs_setxattr+0x175/0x1e0
[  337.159681][T14072]  ? __pfx___vfs_setxattr+0x10/0x10
[  337.159702][T14072]  __vfs_setxattr_noperm+0x127/0x660
[  337.159723][T14072]  __vfs_setxattr_locked+0x182/0x260
[  337.159736][T14072]  vfs_setxattr+0x145/0x360
[  337.159747][T14072]  ? lock_acquire+0x179/0x350
[  337.159765][T14072]  ? __pfx_vfs_setxattr+0x10/0x10
[  337.159775][T14072]  ? mnt_get_write_access+0x54/0x300
[  337.159790][T14072]  ? mnt_get_write_access+0x54/0x300
[  337.159806][T14072]  do_setxattr+0x145/0x180
[  337.159817][T14072]  filename_setxattr+0x16b/0x1d0
[  337.159829][T14072]  ? __pfx_filename_setxattr+0x10/0x10
[  337.159840][T14072]  ? getname_flags.part.0+0x1c5/0x550
[  337.159857][T14072]  path_setxattrat+0x1de/0x2a0
[  337.159868][T14072]  ? __pfx_path_setxattrat+0x10/0x10
[  337.159881][T14072]  ? ksys_write+0x190/0x240
[  337.159909][T14072]  ? fput+0x70/0xf0
[  337.159921][T14072]  ? ksys_write+0x1b9/0x240
[  337.159937][T14072]  ? __pfx_ksys_write+0x10/0x10
[  337.159953][T14072]  ? rcu_is_watching+0x12/0xc0
[  337.159969][T14072]  __x64_sys_setxattr+0xc6/0x140
[  337.159980][T14072]  ? do_syscall_64+0x91/0x260
[  337.159996][T14072]  ? lockdep_hardirqs_on+0x7c/0x110
[  337.160011][T14072]  do_syscall_64+0xcd/0x260
[  337.160029][T14072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.160041][T14072] RIP: 0033:0x7f651538e969
[  337.160051][T14072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  337.160062][T14072] RSP: 002b:00007f651612f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  337.160073][T14072] RAX: ffffffffffffffda RBX: 00007f65155b6160 RCX: 00007f651538e969
[  337.160080][T14072] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000200000000200
[  337.160087][T14072] RBP: 00007f651612f090 R08: 0000000000000000 R09: 0000000000000000
[  337.160094][T14072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  337.160100][T14072] R13: 0000000000000000 R14: 00007f65155b6160 R15: 00007ffebd15cb18
[  337.160119][T14072]  </TASK>
[  338.315312][   T65] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.391690][   T40] audit: type=1400 audit(1748162478.889:1215): avc:  denied  { append } for  pid=14083 comm="syz.0.2186" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  338.456489][T14092] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2190'.
[  338.480493][   T65] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.506834][ T5948] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  338.512511][ T5948] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  338.517133][ T5948] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  338.518409][T14099] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2190'.
[  338.520900][ T5948] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  338.526596][T14098] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2192'.
[  338.526829][ T5948] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  338.529830][T14098] bridge_slave_1: left allmulticast mode
[  338.536714][T14098] bridge_slave_1: left promiscuous mode
[  338.538625][T14098] bridge0: port 2(bridge_slave_1) entered disabled state
[  338.545031][T14098] bridge_slave_0: left allmulticast mode
[  338.547841][T14098] bridge_slave_0: left promiscuous mode
[  338.549938][T14098] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.619300][   T40] audit: type=1400 audit(1748162479.119:1216): avc:  denied  { map } for  pid=14101 comm="syz.0.2193" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  338.653181][   T65] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.690343][T14105] syzkaller0: entered promiscuous mode
[  338.692198][T14105] syzkaller0: entered allmulticast mode
[  339.905738][   T65] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.984477][T14095] chnl_net:caif_netlink_parms(): no params data found
[  340.058266][   T40] audit: type=1804 audit(1748162480.559:1217): pid=14121 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.2196" name="/newroot/158/file0/file0" dev="9p" ino=37093416 res=1 errno=0
[  340.087954][T14126] netlink: 'syz.1.2198': attribute type 2 has an invalid length.
[  340.090749][T14126] netlink: 'syz.1.2198': attribute type 5 has an invalid length.
[  340.193807][T14095] bridge0: port 1(bridge_slave_0) entered blocking state
[  340.196088][T14095] bridge0: port 1(bridge_slave_0) entered disabled state
[  340.198355][T14095] bridge_slave_0: entered allmulticast mode
[  340.201812][T14095] bridge_slave_0: entered promiscuous mode
[  340.205021][T14095] bridge0: port 2(bridge_slave_1) entered blocking state
[  340.207240][T14095] bridge0: port 2(bridge_slave_1) entered disabled state
[  340.209500][T14095] bridge_slave_1: entered allmulticast mode
[  340.212366][T14095] bridge_slave_1: entered promiscuous mode
[  340.417143][   T65] dvmrp0 (unregistering): left allmulticast mode
[  340.446233][   T65] team0: Port device geneve0 removed
[  340.572508][ T5945] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  340.575839][ T5940] Bluetooth: hci3: command tx timeout
[  340.575858][ T5948] Bluetooth: hci2: command 0x1003 tx timeout
[  340.582860][   T65] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  340.595701][   T65] bond0 (unregistering): Released all slaves
[  340.606171][T14095] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  340.615697][T14095] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  340.654356][T14095] team0: Port device team_slave_0 added
[  340.661857][T14095] team0: Port device team_slave_1 added
[  340.703031][T14095] batman_adv: batadv0: Adding interface: batadv_slave_0
[  340.705238][T14095] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  340.713844][T14095] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  340.728241][T14095] batman_adv: batadv0: Adding interface: batadv_slave_1
[  340.734068][T14095] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  340.742266][T14095] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  340.769774][T14142] syzkaller0: entered promiscuous mode
[  340.772684][T14142] syzkaller0: entered allmulticast mode
[  341.697106][T14160] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2206'.
[  342.020986][T14095] hsr_slave_0: entered promiscuous mode
[  342.023965][T14095] hsr_slave_1: entered promiscuous mode
[  342.041398][T14095] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  342.044230][T14095] Cannot create hsr debugfs directory
[  342.071619][   T40] audit: type=1400 audit(1748162482.569:1218): avc:  denied  { accept } for  pid=14163 comm="syz.1.2208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  342.075543][T14164] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=82 sclass=netlink_tcpdiag_socket pid=14164 comm=syz.1.2208
[  342.257008][   T40] audit: type=1400 audit(1748162482.759:1219): avc:  denied  { listen } for  pid=14183 comm="syz.1.2210" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  342.414384][T14195] FAULT_INJECTION: forcing a failure.
[  342.414384][T14195] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.418691][T14195] CPU: 2 UID: 0 PID: 14195 Comm: syz.1.2215 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  342.418707][T14195] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  342.418715][T14195] Call Trace:
[  342.418720][T14195]  <TASK>
[  342.418724][T14195]  dump_stack_lvl+0x16c/0x1f0
[  342.418756][T14195]  should_fail_ex+0x512/0x640
[  342.418777][T14195]  _copy_from_user+0x2e/0xd0
[  342.418794][T14195]  move_addr_to_kernel+0x65/0x170
[  342.418813][T14195]  __copy_msghdr+0x386/0x470
[  342.418825][T14195]  copy_msghdr_from_user+0xc1/0x160
[  342.418838][T14195]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  342.418858][T14195]  ___sys_sendmsg+0xfe/0x1d0
[  342.418871][T14195]  ? __pfx____sys_sendmsg+0x10/0x10
[  342.418901][T14195]  __sys_sendmsg+0x16d/0x220
[  342.418914][T14195]  ? __pfx___sys_sendmsg+0x10/0x10
[  342.418930][T14195]  ? rcu_is_watching+0x12/0xc0
[  342.418949][T14195]  do_syscall_64+0xcd/0x260
[  342.418966][T14195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.418990][T14195] RIP: 0033:0x7f545618e969
[  342.419000][T14195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.419011][T14195] RSP: 002b:00007f5457007038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  342.419022][T14195] RAX: ffffffffffffffda RBX: 00007f54563b5fa0 RCX: 00007f545618e969
[  342.419029][T14195] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[  342.419036][T14195] RBP: 00007f5457007090 R08: 0000000000000000 R09: 0000000000000000
[  342.419042][T14195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.419049][T14195] R13: 0000000000000000 R14: 00007f54563b5fa0 R15: 00007ffe77632e28
[  342.419066][T14195]  </TASK>
[  342.482873][   T65] : left promiscuous mode
[  342.531096][T14197] syzkaller0: entered promiscuous mode
[  342.532907][T14197] syzkaller0: entered allmulticast mode
[  342.650510][ T5948] Bluetooth: hci3: command tx timeout
[  343.729342][   T65] tipc: Left network mode
[  343.795134][T14213] syz.2.2219: vmalloc error: size 20480, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  343.800167][T14213] CPU: 0 UID: 0 PID: 14213 Comm: syz.2.2219 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  343.800183][T14213] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  343.800190][T14213] Call Trace:
[  343.800195][T14213]  <TASK>
[  343.800199][T14213]  dump_stack_lvl+0x16c/0x1f0
[  343.800219][T14213]  warn_alloc+0x248/0x3a0
[  343.800235][T14213]  ? __pfx_warn_alloc+0x10/0x10
[  343.800247][T14213]  ? alloc_pages_mpol+0x25a/0x550
[  343.800261][T14213]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  343.800279][T14213]  __vmalloc_node_range_noprof+0x12d2/0x1540
[  343.800301][T14213]  ? vhost_task_create+0x1d2/0x2e0
[  343.800316][T14213]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  343.800336][T14213]  ? rcu_is_watching+0x12/0xc0
[  343.800362][T14213]  ? vhost_task_create+0x1d2/0x2e0
[  343.800374][T14213]  __vmalloc_node_noprof+0x74/0xa0
[  343.800391][T14213]  ? vhost_task_create+0x1d2/0x2e0
[  343.800403][T14213]  copy_process+0x2ead/0x91b0
[  343.800419][T14213]  ? kasan_save_track+0x14/0x30
[  343.800429][T14213]  ? __kasan_kmalloc+0xaa/0xb0
[  343.800445][T14213]  ? vhost_task_create+0xe5/0x2e0
[  343.800456][T14213]  ? kvm_mmu_post_init_vm+0x1b7/0x370
[  343.800473][T14213]  ? kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  343.800489][T14213]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  343.800505][T14213]  ? __x64_sys_ioctl+0x190/0x200
[  343.800519][T14213]  ? do_syscall_64+0xcd/0x260
[  343.800534][T14213]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.800553][T14213]  ? __pfx_copy_process+0x10/0x10
[  343.800583][T14213]  ? lockdep_init_map_type+0x5c/0x280
[  343.800599][T14213]  ? lockdep_init_map_type+0x5c/0x280
[  343.800614][T14213]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  343.800632][T14213]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  343.800656][T14213]  vhost_task_create+0x1d2/0x2e0
[  343.800674][T14213]  ? __pfx_vhost_task_create+0x10/0x10
[  343.800691][T14213]  ? register_lock_class+0x41/0x4c0
[  343.800723][T14213]  ? __pfx_vhost_task_fn+0x10/0x10
[  343.800739][T14213]  ? kvm_vcpu_ioctl+0x27e/0x1680
[  343.800760][T14213]  kvm_mmu_post_init_vm+0x1b7/0x370
[  343.800799][T14213]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  343.800824][T14213]  ? kvm_vcpu_ioctl+0x14c2/0x1680
[  343.800844][T14213]  kvm_vcpu_ioctl+0x5e9/0x1680
[  343.800863][T14213]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  343.800884][T14213]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  343.800904][T14213]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  343.800928][T14213]  ? hook_file_ioctl_common+0x145/0x410
[  343.800944][T14213]  ? selinux_file_ioctl+0x180/0x270
[  343.800961][T14213]  ? selinux_file_ioctl+0xb4/0x270
[  343.800981][T14213]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  343.800999][T14213]  __x64_sys_ioctl+0x190/0x200
[  343.801015][T14213]  do_syscall_64+0xcd/0x260
[  343.801033][T14213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.801044][T14213] RIP: 0033:0x7f651538e969
[  343.801057][T14213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.801072][T14213] RSP: 002b:00007f6516171038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  343.801086][T14213] RAX: ffffffffffffffda RBX: 00007f65155b5fa0 RCX: 00007f651538e969
[  343.801096][T14213] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  343.801106][T14213] RBP: 00007f6516171090 R08: 0000000000000000 R09: 0000000000000000
[  343.801115][T14213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  343.801121][T14213] R13: 0000000000000000 R14: 00007f65155b5fa0 R15: 00007ffebd15cb18
[  343.801136][T14213]  </TASK>
[  343.914278][T14213] Mem-Info:
[  343.915495][T14213] active_anon:10615 inactive_anon:13 isolated_anon:0
[  343.915495][T14213]  active_file:894 inactive_file:54850 isolated_file:0
[  343.915495][T14213]  unevictable:1768 dirty:45 writeback:0
[  343.915495][T14213]  slab_reclaimable:12471 slab_unreclaimable:82863
[  343.915495][T14213]  mapped:25404 shmem:2465 pagetables:1509
[  343.915495][T14213]  sec_pagetables:319 bounce:0
[  343.915495][T14213]  kernel_misc_reclaimable:0
[  343.915495][T14213]  free:445785 free_pcp:3348 free_cma:0
[  343.931813][T14213] Node 0 active_anon:42212kB inactive_anon:52kB active_file:3556kB inactive_file:219016kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:101292kB dirty:176kB writeback:0kB shmem:3252kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:14832kB pagetables:6036kB sec_pagetables:1276kB all_unreclaimable? no Balloon:0kB
[  343.942396][T14213] Node 1 active_anon:0kB inactive_anon:0kB active_file:20kB inactive_file:384kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:200kB dirty:4kB writeback:0kB shmem:6608kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:144kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  343.952944][T14213] Node 0 DMA free:15196kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:144kB local_pcp:40kB free_cma:0kB
[  343.961518][T14213] lowmem_reserve[]: 0 1238 1238 1238 1238
[  343.963362][T14213] Node 0 DMA32 free:194196kB boost:0kB min:27576kB low:34468kB high:41360kB reserved_highatomic:0KB active_anon:42212kB inactive_anon:52kB active_file:3556kB inactive_file:219016kB unevictable:3536kB writepending:176kB present:2080628kB managed:1268528kB mlocked:0kB bounce:0kB free_pcp:3704kB local_pcp:920kB free_cma:0kB
[  343.974704][T14213] lowmem_reserve[]: 0 0 0 0 0
[  343.976341][T14213] Node 1 Normal free:1572924kB boost:0kB min:39660kB low:49572kB high:59484kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:20kB inactive_file:384kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781964kB mlocked:0kB bounce:0kB free_pcp:10324kB local_pcp:4096kB free_cma:0kB
[  343.985785][T14213] lowmem_reserve[]: 0 0 0 0 0
[  343.987339][T14213] Node 0 DMA: 9*4kB (U) 11*8kB (UM) 10*16kB (UM) 12*32kB (UM) 11*64kB (UM) 8*128kB (UM) 6*256kB (UM) 4*512kB (UM) 3*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 15196kB
[  343.993338][T14213] Node 0 DMA32: 18*4kB (UME) 418*8kB (UME) 449*16kB (UME) 425*32kB (UME) 266*64kB (UME) 39*128kB (UME) 23*256kB (UM) 57*512kB (UM) 39*1024kB (UM) 18*2048kB (UM) 9*4096kB (M) = 194952kB
[  343.998948][T14213] Node 1 Normal: 50*4kB (UME) 39*8kB (UME) 64*16kB (UME) 150*32kB (UME) 86*64kB (UME) 58*128kB (UME) 33*256kB (UME) 34*512kB (UME) 22*1024kB (UM) 17*2048kB (UM) 359*4096kB (M) = 1572928kB
[  344.005001][T14213] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  344.008922][T14213] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  344.012418][T14213] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  344.015445][T14213] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  344.018350][T14213] 58205 total pagecache pages
[  344.020023][T14213] 0 pages in swap cache
[  344.022554][T14213] Free swap  = 124996kB
[  344.024026][T14213] Total swap = 124996kB
[  344.025396][T14213] 1048443 pages RAM
[  344.026642][T14213] 0 pages HighMem/MovableOnly
[  344.028147][T14213] 281980 pages reserved
[  344.029596][T14213] 0 pages cma reserved
[  344.037779][T14223] FAULT_INJECTION: forcing a failure.
[  344.037779][T14223] name failslab, interval 1, probability 0, space 0, times 0
[  344.041842][T14223] CPU: 3 UID: 0 PID: 14223 Comm: syz.1.2220 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  344.041859][T14223] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  344.041866][T14223] Call Trace:
[  344.041870][T14223]  <TASK>
[  344.041874][T14223]  dump_stack_lvl+0x16c/0x1f0
[  344.041895][T14223]  should_fail_ex+0x512/0x640
[  344.041911][T14223]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  344.041924][T14223]  should_failslab+0xc2/0x120
[  344.041937][T14223]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  344.041947][T14223]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  344.041958][T14223]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  344.041975][T14223]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  344.041988][T14223]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  344.042004][T14223]  mmu_topup_memory_caches+0x25/0x170
[  344.042022][T14223]  kvm_mmu_load+0xd9/0x22a0
[  344.042038][T14223]  ? kvm_apic_has_interrupt+0xb5/0x190
[  344.042052][T14223]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  344.042067][T14223]  ? kvm_deliver_exception_payload+0x47/0x200
[  344.042083][T14223]  ? __pfx_kvm_mmu_load+0x10/0x10
[  344.042099][T14223]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  344.042112][T14223]  ? kvm_check_and_inject_events+0x71c/0x1310
[  344.042131][T14223]  vcpu_run+0x3446/0x5390
[  344.042147][T14223]  ? irqentry_exit+0x3b/0x90
[  344.042163][T14223]  ? lockdep_hardirqs_on+0x7c/0x110
[  344.042182][T14223]  ? __pfx_vcpu_run+0x10/0x10
[  344.042198][T14223]  ? lock_acquire+0x62/0x350
[  344.042216][T14223]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  344.042232][T14223]  ? __local_bh_enable_ip+0xa4/0x120
[  344.042249][T14223]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  344.042265][T14223]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  344.042285][T14223]  kvm_vcpu_ioctl+0x5e9/0x1680
[  344.042309][T14223]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  344.042330][T14223]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  344.042351][T14223]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  344.042374][T14223]  ? hook_file_ioctl_common+0x145/0x410
[  344.042390][T14223]  ? selinux_file_ioctl+0x180/0x270
[  344.042407][T14223]  ? selinux_file_ioctl+0xb4/0x270
[  344.042425][T14223]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  344.042442][T14223]  __x64_sys_ioctl+0x190/0x200
[  344.042459][T14223]  do_syscall_64+0xcd/0x260
[  344.042476][T14223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.042488][T14223] RIP: 0033:0x7f545618e969
[  344.042497][T14223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.042508][T14223] RSP: 002b:00007f5457007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  344.042519][T14223] RAX: ffffffffffffffda RBX: 00007f54563b5fa0 RCX: 00007f545618e969
[  344.042526][T14223] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  344.042533][T14223] RBP: 00007f5457007090 R08: 0000000000000000 R09: 0000000000000000
[  344.042540][T14223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  344.042546][T14223] R13: 0000000000000000 R14: 00007f54563b5fa0 R15: 00007ffe77632e28
[  344.042560][T14223]  </TASK>
[  344.240714][ T5948] Bluetooth: hci2: command 0x1003 tx timeout
[  344.241715][ T5945] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  344.283377][T14095] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  344.306897][T14232] No source specified
[  344.308455][   T65] hsr_slave_0: left promiscuous mode
[  344.312898][   T65] hsr_slave_1: left promiscuous mode
[  344.315600][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  344.318579][   T65] batman_adv: batadv0: Removing interface: batadv_slave_0
[  344.323617][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  344.326038][   T65] batman_adv: batadv0: Removing interface: batadv_slave_1
[  344.348762][   T65] veth1_macvtap: left promiscuous mode
[  344.351845][   T65] veth0_macvtap: left promiscuous mode
[  344.353698][   T65] veth1_vlan: left promiscuous mode
[  344.355965][   T65] veth0_vlan: left promiscuous mode
[  344.403482][T14237] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2221'.
[  344.406542][T14237] netlink: 'syz.2.2221': attribute type 30 has an invalid length.
[  344.724488][ T5945] Bluetooth: hci3: command tx timeout
[  345.081835][   T65] team0 (unregistering): Port device team_slave_1 removed
[  345.214295][   T65] team0 (unregistering): Port device team_slave_0 removed
[  345.319313][T14249] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2224'.
[  345.776396][T14095] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  345.782813][T14095] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  345.788873][T14095] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  345.803421][T14237] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  345.807874][T14237] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  345.811693][T14237] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  345.815326][T14237] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  345.897424][T14255] x_tables: duplicate underflow at hook 2
[  345.898097][   T40] audit: type=1400 audit(1748162486.399:1220): avc:  denied  { accept } for  pid=14254 comm="syz.2.2225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  345.928854][T14259] syzkaller0: entered promiscuous mode
[  345.931205][T14259] syzkaller0: entered allmulticast mode
[  346.083289][   T40] audit: type=1400 audit(1748162486.589:1221): avc:  denied  { write } for  pid=14261 comm="syz.2.2227" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  346.086212][T14271] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1
[  346.097389][T14271] netlink: 244 bytes leftover after parsing attributes in process `syz.2.2227'.
[  346.098112][   T40] audit: type=1400 audit(1748162486.589:1222): avc:  denied  { ioctl } for  pid=14261 comm="syz.2.2227" path="/dev/ndctl0" dev="devtmpfs" ino=109 ioctlcmd=0x640a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  346.804884][ T5945] Bluetooth: hci3: command tx timeout
[  347.112893][T14288] rdma_op ffff8880476a31f0 conn xmit_rdma 0000000000000000
[  347.223415][T14263] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2227'.
[  347.256211][T14095] 8021q: adding VLAN 0 to HW filter on device bond0
[  347.269280][T14095] 8021q: adding VLAN 0 to HW filter on device team0
[  347.276846][ T6537] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.279217][ T6537] bridge0: port 1(bridge_slave_0) entered forwarding state
[  347.292631][ T6537] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.295679][ T6537] bridge0: port 2(bridge_slave_1) entered forwarding state
[  347.363655][T14305] FAULT_INJECTION: forcing a failure.
[  347.363655][T14305] name failslab, interval 1, probability 0, space 0, times 0
[  347.367841][T14305] CPU: 1 UID: 0 PID: 14305 Comm: syz.0.2233 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  347.367865][T14305] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  347.367876][T14305] Call Trace:
[  347.367883][T14305]  <TASK>
[  347.367890][T14305]  dump_stack_lvl+0x16c/0x1f0
[  347.367921][T14305]  should_fail_ex+0x512/0x640
[  347.367947][T14305]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  347.367976][T14305]  should_failslab+0xc2/0x120
[  347.367996][T14305]  __kmalloc_cache_noprof+0x6a/0x3e0
[  347.368021][T14305]  ? tcf_chain_tp_find+0x2b5/0x470
[  347.368040][T14305]  ? tc_new_tfilter+0xf0c/0x2340
[  347.368068][T14305]  tc_new_tfilter+0xf0c/0x2340
[  347.368103][T14305]  ? avc_has_perm_noaudit+0x117/0x3b0
[  347.368138][T14305]  ? __pfx_tc_new_tfilter+0x10/0x10
[  347.368170][T14305]  ? __lock_acquire+0x5ca/0x1ba0
[  347.368209][T14305]  ? find_held_lock+0x2b/0x80
[  347.368229][T14305]  ? __pfx_tc_new_tfilter+0x10/0x10
[  347.368244][T14305]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  347.368258][T14305]  ? __pfx_tc_new_tfilter+0x10/0x10
[  347.368278][T14305]  rtnetlink_rcv_msg+0x95b/0xe90
[  347.368293][T14305]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  347.368313][T14305]  netlink_rcv_skb+0x16a/0x440
[  347.368329][T14305]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  347.368343][T14305]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  347.368365][T14305]  ? netlink_deliver_tap+0x1ae/0xd30
[  347.368382][T14305]  netlink_unicast+0x53d/0x7f0
[  347.368398][T14305]  ? __pfx_netlink_unicast+0x10/0x10
[  347.368416][T14305]  netlink_sendmsg+0x8d1/0xdd0
[  347.368433][T14305]  ? __pfx_netlink_sendmsg+0x10/0x10
[  347.368453][T14305]  ____sys_sendmsg+0xa95/0xc70
[  347.368469][T14305]  ? copy_msghdr_from_user+0x10a/0x160
[  347.368482][T14305]  ? __pfx_____sys_sendmsg+0x10/0x10
[  347.368504][T14305]  ___sys_sendmsg+0x134/0x1d0
[  347.368518][T14305]  ? __pfx____sys_sendmsg+0x10/0x10
[  347.368547][T14305]  __sys_sendmsg+0x16d/0x220
[  347.368560][T14305]  ? __pfx___sys_sendmsg+0x10/0x10
[  347.368576][T14305]  ? rcu_is_watching+0x12/0xc0
[  347.368594][T14305]  do_syscall_64+0xcd/0x260
[  347.368612][T14305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.368623][T14305] RIP: 0033:0x7f6f51d8e969
[  347.368633][T14305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.368644][T14305] RSP: 002b:00007f6f52b91038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  347.368655][T14305] RAX: ffffffffffffffda RBX: 00007f6f51fb5fa0 RCX: 00007f6f51d8e969
[  347.368662][T14305] RDX: 000000002008c014 RSI: 0000200000000580 RDI: 0000000000000004
[  347.368669][T14305] RBP: 00007f6f52b91090 R08: 0000000000000000 R09: 0000000000000000
[  347.368676][T14305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  347.368682][T14305] R13: 0000000000000000 R14: 00007f6f51fb5fa0 R15: 00007ffdca99a878
[  347.368696][T14305]  </TASK>
[  347.460123][    C1] vkms_vblank_simulate: vblank timer overrun
[  347.511322][T14095] 8021q: adding VLAN 0 to HW filter on device batadv0
[  347.618278][   T65] IPVS: stop unused estimator thread 0...
[  347.687550][T14095] veth0_vlan: entered promiscuous mode
[  347.696776][T14095] veth1_vlan: entered promiscuous mode
[  347.719998][T14095] veth0_macvtap: entered promiscuous mode
[  347.727177][T14095] veth1_macvtap: entered promiscuous mode
[  347.744683][T14095] batman_adv: batadv0: Interface activated: batadv_slave_0
[  347.752585][T14095] batman_adv: batadv0: Interface activated: batadv_slave_1
[  347.758453][T14095] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  347.762391][T14095] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  347.765137][T14095] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  347.768520][T14095] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  347.826581][ T6552] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  347.829186][ T6552] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  347.857541][ T6552] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  347.861070][ T6552] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  347.867916][T14341] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2236'.
[  347.913461][T14345] FAULT_INJECTION: forcing a failure.
[  347.913461][T14345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  347.918179][T14345] CPU: 3 UID: 0 PID: 14345 Comm: syz.5.2185 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  347.918202][T14345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  347.918213][T14345] Call Trace:
[  347.918219][T14345]  <TASK>
[  347.918226][T14345]  dump_stack_lvl+0x16c/0x1f0
[  347.918254][T14345]  should_fail_ex+0x512/0x640
[  347.918281][T14345]  _copy_to_user+0x32/0xd0
[  347.918307][T14345]  simple_read_from_buffer+0xcb/0x170
[  347.918333][T14345]  proc_fail_nth_read+0x197/0x270
[  347.918358][T14345]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  347.918383][T14345]  ? rw_verify_area+0xcf/0x680
[  347.918404][T14345]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  347.918428][T14345]  vfs_read+0x1e1/0xc70
[  347.918454][T14345]  ? __pfx___mutex_lock+0x10/0x10
[  347.918477][T14345]  ? __pfx_vfs_read+0x10/0x10
[  347.918507][T14345]  ? __fget_files+0x20e/0x3c0
[  347.918530][T14345]  ksys_read+0x12a/0x240
[  347.918552][T14345]  ? __pfx_ksys_read+0x10/0x10
[  347.918573][T14345]  ? rcu_is_watching+0x12/0xc0
[  347.918601][T14345]  do_syscall_64+0xcd/0x260
[  347.918626][T14345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.918642][T14345] RIP: 0033:0x7f140738d37c
[  347.918656][T14345] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  347.918673][T14345] RSP: 002b:00007f14081d3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  347.918689][T14345] RAX: ffffffffffffffda RBX: 00007f14075b5fa0 RCX: 00007f140738d37c
[  347.918700][T14345] RDX: 000000000000000f RSI: 00007f14081d30a0 RDI: 0000000000000007
[  347.918711][T14345] RBP: 00007f14081d3090 R08: 0000000000000000 R09: 0000000000000000
[  347.918721][T14345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  347.918731][T14345] R13: 0000000000000000 R14: 00007f14075b5fa0 R15: 00007ffc4d81ca08
[  347.918754][T14345]  </TASK>
[  348.094454][   T40] audit: type=1400 audit(1748162488.589:1223): avc:  denied  { create } for  pid=14359 comm="syz.0.2239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[  348.114192][ T5997] IPVS: starting estimator thread 0...
[  348.220602][T14365] IPVS: using max 44 ests per chain, 105600 per kthread
[  348.307537][   T40] audit: type=1326 audit(1748162488.809:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14378 comm="syz.0.2243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f51d8e969 code=0x7ffc0000
[  348.315229][   T40] audit: type=1326 audit(1748162488.809:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14378 comm="syz.0.2243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f51d8e969 code=0x7ffc0000
[  348.327265][T14379] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2243'.
[  348.327559][   T40] audit: type=1326 audit(1748162488.809:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14378 comm="syz.0.2243" exe="/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6f51d8e969 code=0x7ffc0000
[  348.338437][   T40] audit: type=1326 audit(1748162488.819:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14378 comm="syz.0.2243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f51d8e969 code=0x7ffc0000
[  348.360700][   T40] audit: type=1326 audit(1748162488.819:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14378 comm="syz.0.2243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f51d8e969 code=0x7ffc0000
[  348.367833][   T40] audit: type=1326 audit(1748162488.819:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14378 comm="syz.0.2243" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6f51d8e969 code=0x7ffc0000
[  348.394476][T14355] tipc: Can't bind to reserved service type 0
[  348.526972][T14395] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2244'.
[  348.529678][T14395] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2244'.
[  348.534576][T14395] netlink: 'syz.5.2244': attribute type 13 has an invalid length.
[  348.537080][T14395] netlink: 'syz.5.2244': attribute type 11 has an invalid length.
[  348.603393][T14403] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2250'.
[  348.659077][T14409] syz.0.2251: attempt to access beyond end of device
[  348.659077][T14409] nbd0: rw=0, sector=0, nr_sectors = 8 limit=0
[  348.763804][T14418] netlink: 1041 bytes leftover after parsing attributes in process `syz.0.2253'.
[  349.299923][T14443] IPv6: addrconf: prefix option has invalid lifetime
[  349.360493][ T5945] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  349.360955][ T5948] Bluetooth: hci2: command 0x1003 tx timeout
[  349.564459][T14462] IPv6: syztnl0: Disabled Multicast RS
[  349.570735][ T1021] e1000 0000:00:06.0 eth0: Reset adapter
[  349.662981][T14476] __nla_validate_parse: 1 callbacks suppressed
[  349.662993][T14476] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2261'.
[  349.722549][ T1021] e1000 0000:00:06.0 eth0: Reset adapter
[  351.841871][ T1021] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  353.602923][ T5945] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  353.606376][ T5945] Bluetooth: hci4: Injecting HCI hardware error event
[  353.612632][ T5948] Bluetooth: hci4: hardware error 0x00
[  355.680533][ T5948] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  363.628521][T14647] tty tty3: ldisc open failed (-12), clearing slot 2
[  363.631616][T14648] vlan0: entered promiscuous mode
[  363.642710][T14648] team0: Port device vlan0 added
[  363.688372][T14660] autofs: Unknown parameter ''
[  363.768576][T14668] netlink: 'syz.2.2274': attribute type 1 has an invalid length.
[  363.800096][T14668] bond8: (slave wireguard5): The slave device specified does not support setting the MAC address
[  363.807109][T14668] bond8: (slave wireguard5): Setting fail_over_mac to active for active-backup mode
[  363.825108][T14668] bond8: (slave wireguard5): making interface the new active one
[  363.828990][T14668] bond8: (slave wireguard5): Enslaving as an active interface with an up link
[  363.851974][T14678] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2277'.
[  363.931342][T14689] unknown channel width for channel at 909000KHz?
[  363.934494][T14689] netlink: 'syz.2.2280': attribute type 10 has an invalid length.
[  363.937420][T14689] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2280'.
[  363.942760][T14689] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  364.060447][   T24] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  364.120506][T14691] block nbd2: server does not support multiple connections per device.
[  364.124548][T14691] block nbd2: shutting down sockets
[  364.220590][   T24] usb 6-1: Using ep0 maxpacket: 16
[  364.224367][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  364.228093][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  364.231298][   T24] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  364.235215][   T24] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  364.237947][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  364.242755][   T24] usb 6-1: config 0 descriptor??
[  364.322311][T14695] autofs: Unknown parameter ''
[  364.403908][T14698] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2284'.
[  364.446530][   T40] kauditd_printk_skb: 32 callbacks suppressed
[  364.446542][   T40] audit: type=1400 audit(1748162504.949:1262): avc:  denied  { read write } for  pid=14674 comm="syz.1.2276" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  364.460641][   T40] audit: type=1400 audit(1748162504.959:1263): avc:  denied  { ioctl open } for  pid=14674 comm="syz.1.2276" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  364.472293][   T24] usbhid 6-1:0.0: can't add hid device: -71
[  364.474323][   T24] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  364.488684][T14705] CIFS mount error: No usable UNC path provided in device string!
[  364.488684][T14705] 
[  364.489478][   T24] usb 6-1: USB disconnect, device number 3
[  364.493515][T14705] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  364.718441][ T5940] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  364.722428][ T5940] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  364.725391][ T5940] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  364.730257][ T5940] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  364.734646][ T5940] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  364.750824][T14714] FAULT_INJECTION: forcing a failure.
[  364.750824][T14714] name failslab, interval 1, probability 0, space 0, times 0
[  364.754995][T14714] CPU: 3 UID: 0 PID: 14714 Comm: syz.0.2289 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  364.755022][T14714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  364.755033][T14714] Call Trace:
[  364.755039][T14714]  <TASK>
[  364.755046][T14714]  dump_stack_lvl+0x16c/0x1f0
[  364.755076][T14714]  should_fail_ex+0x512/0x640
[  364.755102][T14714]  ? __kmalloc_noprof+0xbf/0x510
[  364.755123][T14714]  ? ovl_cache_entry_new+0x3d/0x730
[  364.755143][T14714]  should_failslab+0xc2/0x120
[  364.755158][T14714]  __kmalloc_noprof+0xd2/0x510
[  364.755169][T14714]  ? offset_dir_lookup+0x1d1/0x360
[  364.755189][T14714]  ovl_cache_entry_new+0x3d/0x730
[  364.755205][T14714]  ovl_fill_merge+0x601/0xa90
[  364.755222][T14714]  ? __pfx_ovl_fill_merge+0x10/0x10
[  364.755235][T14714]  offset_readdir+0x458/0x6d0
[  364.755248][T14714]  iterate_dir+0x293/0xb40
[  364.755266][T14714]  ovl_dir_read_merged+0x21c/0x5d0
[  364.755282][T14714]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[  364.755299][T14714]  ? __pfx_ovl_fill_merge+0x10/0x10
[  364.755319][T14714]  ? kasan_save_track+0x14/0x30
[  364.755330][T14714]  ovl_iterate+0x86c/0xe40
[  364.755346][T14714]  ? __pfx_down_read_killable+0x10/0x10
[  364.755359][T14714]  ? __pfx_ovl_iterate+0x10/0x10
[  364.755373][T14714]  wrap_directory_iterator+0xa2/0xe0
[  364.755390][T14714]  iterate_dir+0x293/0xb40
[  364.755407][T14714]  __x64_sys_getdents64+0x14d/0x2d0
[  364.755425][T14714]  ? __pfx___x64_sys_getdents64+0x10/0x10
[  364.755440][T14714]  ? fput+0x70/0xf0
[  364.755452][T14714]  ? __pfx_filldir64+0x10/0x10
[  364.755468][T14714]  ? rcu_is_watching+0x12/0xc0
[  364.755486][T14714]  do_syscall_64+0xcd/0x260
[  364.755504][T14714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.755515][T14714] RIP: 0033:0x7f6f51d8e969
[  364.755525][T14714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.755536][T14714] RSP: 002b:00007f6f52b91038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  364.755547][T14714] RAX: ffffffffffffffda RBX: 00007f6f51fb5fa0 RCX: 00007f6f51d8e969
[  364.755554][T14714] RDX: 0000000000000055 RSI: 00002000000000c0 RDI: 0000000000000003
[  364.755561][T14714] RBP: 00007f6f52b91090 R08: 0000000000000000 R09: 0000000000000000
[  364.755567][T14714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.755573][T14714] R13: 0000000000000000 R14: 00007f6f51fb5fa0 R15: 00007ffdca99a878
[  364.755588][T14714]  </TASK>
[  365.050046][T14711] chnl_net:caif_netlink_parms(): no params data found
[  365.141894][T14739] ubi31: attaching mtd0
[  365.144707][T14739] ubi31 error: ubi_attach_mtd_dev: bad VID header (16) or data offsets (80)
[  365.186010][T14711] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.188252][T14711] bridge0: port 1(bridge_slave_0) entered disabled state
[  365.191829][T14711] bridge_slave_0: entered allmulticast mode
[  365.195713][T14711] bridge_slave_0: entered promiscuous mode
[  365.200620][T14711] bridge0: port 2(bridge_slave_1) entered blocking state
[  365.203649][T14711] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.206450][T14711] bridge_slave_1: entered allmulticast mode
[  365.207340][   T40] audit: type=1400 audit(1748162505.709:1264): avc:  denied  { watch watch_reads } for  pid=14741 comm="syz.1.2297" path="/syzcgroup/unified/syz1" dev="cgroup2" ino=67 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  365.210036][T14711] bridge_slave_1: entered promiscuous mode
[  365.220603][   T40] audit: type=1400 audit(1748162505.729:1265): avc:  denied  { watch_mount } for  pid=14741 comm="syz.1.2297" path="/syzcgroup/unified/syz1" dev="cgroup2" ino=67 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  365.293304][T14711] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  365.299667][T14711] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  365.367327][T14711] team0: Port device team_slave_0 added
[  365.372866][T14711] team0: Port device team_slave_1 added
[  365.382691][T14752] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  365.386433][T14752] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  365.388874][T14752] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  365.391057][T14752] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  365.393157][T14752] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  365.427629][T14711] batman_adv: batadv0: Adding interface: batadv_slave_0
[  365.429960][T14711] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  365.440720][T14711] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  365.444959][T14711] batman_adv: batadv0: Adding interface: batadv_slave_1
[  365.447051][T14711] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  365.454762][T14711] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  365.506169][T14711] hsr_slave_0: entered promiscuous mode
[  365.508479][T14711] hsr_slave_1: entered promiscuous mode
[  365.678339][T14711] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  365.682744][T14711] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.697771][T14772] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2305'.
[  365.773465][T14711] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  365.776506][T14711] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.840802][ T5948] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  365.874039][T14711] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  365.877252][T14711] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.972054][T14711] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  365.975210][T14711] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  366.086425][T14711] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  366.097785][T14711] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  366.103219][T14711] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  366.107651][T14711] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  366.147783][T14711] 8021q: adding VLAN 0 to HW filter on device bond0
[  366.159814][T14711] 8021q: adding VLAN 0 to HW filter on device team0
[  366.167333][ T1142] bridge0: port 1(bridge_slave_0) entered blocking state
[  366.170162][ T1142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  366.178450][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[  366.180842][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[  366.287384][T14784] exFAT-fs (nullb0): mounting with "discard" option, but the device does not support discard
[  366.292421][T14784] exFAT-fs (nullb0): invalid boot record signature
[  366.295041][T14784] exFAT-fs (nullb0): failed to read boot sector
[  366.303698][T14784] exFAT-fs (nullb0): failed to recognize exfat type
[  366.318145][T14711] 8021q: adding VLAN 0 to HW filter on device batadv0
[  366.358319][T14711] veth0_vlan: entered promiscuous mode
[  366.367659][T14711] veth1_vlan: entered promiscuous mode
[  366.385826][T14711] veth0_macvtap: entered promiscuous mode
[  366.389408][T14711] veth1_macvtap: entered promiscuous mode
[  366.398424][T14711] batman_adv: batadv0: Interface activated: batadv_slave_0
[  366.402681][T14711] batman_adv: batadv0: Interface activated: batadv_slave_1
[  366.408569][T14711] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  366.412100][T14711] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  366.414689][T14711] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  366.417299][T14711] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  366.458368][ T6546] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  366.463289][ T6546] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  366.475984][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  366.478830][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  366.558160][T14800] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  366.559413][T14798] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  366.560652][T14800] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  366.561313][T14800] vhci_hcd vhci_hcd.0: Device attached
[  366.563466][T14798] UDF-fs: Scanning with blocksize 2048 failed
[  366.569483][T14801] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 0
[  366.573347][T14798] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  366.573489][ T1142] vhci_hcd: stop threads
[  366.575678][T14798] UDF-fs: Scanning with blocksize 4096 failed
[  366.577169][ T1142] vhci_hcd: release socket
[  366.577180][ T1142] vhci_hcd: disconnect device
[  366.591078][T14798] syz.2.2311: attempt to access beyond end of device
[  366.591078][T14798] nbd2: rw=0, sector=0, nr_sectors = 8 limit=0
[  366.610501][T14798] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2311'.
[  366.613372][T14798] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2311'.
[  366.649653][T14806] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14806 comm=syz.1.2314
[  366.662958][T14806] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2314'.
[  366.666423][T14806] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2314'.
[  366.669867][T14806] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2314'.
[  366.673407][T14806] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2314'.
[  366.740750][T14814] input: syz0 as /devices/virtual/input/input14
[  366.800780][ T5948] Bluetooth: hci0: command tx timeout
[  366.881987][T14819] block nbd2: server does not support multiple connections per device.
[  366.884679][T14819] block nbd2: shutting down sockets
[  366.905833][   T40] audit: type=1400 audit(1748162507.409:1266): avc:  denied  { getopt } for  pid=14820 comm="syz.5.2320" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  366.922277][T14823] 9pnet_virtio: no channels available for device syz
[  367.027921][T14834] Cache volume key already in use (9p,syz,)
[  367.064490][   T40] audit: type=1400 audit(1748162507.569:1267): avc:  denied  { bind } for  pid=14835 comm="syz.1.2324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  367.074054][   T40] audit: type=1400 audit(1748162507.579:1268): avc:  denied  { connect } for  pid=14835 comm="syz.1.2324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  367.125377][T14841] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[  367.137186][T14841] openvswitch: netlink: Message has 8 unknown bytes.
[  367.153778][T14843] Bluetooth: MGMT ver 1.23
[  367.190502][   T40] audit: type=1400 audit(1748162507.689:1269): avc:  denied  { read write } for  pid=14845 comm="syz.0.2330" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  367.200901][   T40] audit: type=1400 audit(1748162507.689:1270): avc:  denied  { open } for  pid=14845 comm="syz.0.2330" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  367.445975][   T40] audit: type=1400 audit(1748162507.949:1271): avc:  denied  { getopt } for  pid=14860 comm="syz.0.2335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  367.489511][T14863] ufs: You didn't specify the type of your ufs filesystem
[  367.489511][T14863] 
[  367.489511][T14863] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  367.489511][T14863] 
[  367.489511][T14863] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  367.500584][T14863] ufs: ufstype=old is supported read-only
[  367.503216][T14863] syz.0.2336: attempt to access beyond end of device
[  367.503216][T14863] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0
[  367.647995][   T65] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.717372][   T65] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.787385][   T65] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.871278][T14871] block nbd2: server does not support multiple connections per device.
[  367.873260][ T5940] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  367.875569][T14871] block nbd2: shutting down sockets
[  367.879863][ T5940] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  367.887684][ T5940] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  367.892765][ T5940] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  367.895525][ T5940] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  367.929145][   T65] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  368.352518][   T65] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  368.358630][   T65] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  368.365149][   T65] bond0 (unregistering): Released all slaves
[  368.384288][T14880] chnl_net:caif_netlink_parms(): no params data found
[  368.501284][   T65] IPVS: stopping master sync thread 13752 ...
[  368.614281][T14880] bridge0: port 1(bridge_slave_0) entered blocking state
[  368.616497][T14880] bridge0: port 1(bridge_slave_0) entered disabled state
[  368.618716][T14880] bridge_slave_0: entered allmulticast mode
[  368.625479][T14880] bridge_slave_0: entered promiscuous mode
[  368.631277][T14880] bridge0: port 2(bridge_slave_1) entered blocking state
[  368.633527][T14880] bridge0: port 2(bridge_slave_1) entered disabled state
[  368.635790][T14880] bridge_slave_1: entered allmulticast mode
[  368.638661][T14880] bridge_slave_1: entered promiscuous mode
[  368.745516][T14880] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  368.752842][T14880] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  368.819602][T14880] team0: Port device team_slave_0 added
[  368.835604][T14880] team0: Port device team_slave_1 added
[  368.874501][   T65] hsr_slave_0: left promiscuous mode
[  368.877482][   T65] hsr_slave_1: left promiscuous mode
[  368.880299][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  368.880527][ T5945] Bluetooth: hci0: command tx timeout
[  368.890842][   T65] batman_adv: batadv0: Removing interface: batadv_slave_0
[  368.894067][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  368.896701][   T65] batman_adv: batadv0: Removing interface: batadv_slave_1
[  368.917075][   T65] veth1_macvtap: left promiscuous mode
[  368.919132][   T65] veth0_macvtap: left promiscuous mode
[  368.922884][   T65] veth1_vlan: left promiscuous mode
[  368.925001][   T65] veth0_vlan: left promiscuous mode
[  368.954523][   T65] 
[  368.956030][   T65] =============================
[  368.957737][   T65] WARNING: suspicious RCU usage
[  368.959345][   T65] 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 Not tainted
[  368.962938][   T65] -----------------------------
[  368.964883][   T65] net/ipv6/ip6_fib.c:2023 suspicious rcu_dereference_protected() usage!
[  368.967541][   T65] 
[  368.967541][   T65] other info that might help us debug this:
[  368.967541][   T65] 
[  368.971046][   T65] 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  368.971046][   T65] rcu_scheduler_active = 2, debug_locks = 1
[  368.974134][   T65] 6 locks held by kworker/u32:3/65:
[  368.975961][   T65]  #0: ffff88801c68d148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  368.979117][   T65]  #1: ffffc90000b6fd18 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  368.982218][   T65]  #2: ffffffff90112ed0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xc9/0xb30
[  368.985039][   T65]  #3: ffffffff90128d68 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0x8b/0xaf0
[  368.988063][   T65]  #4: ffffffff8e3bfc00 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x3a/0x2d0
[  368.991020][   T65]  #5: ffff888058f0b830 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0xeb/0x2d0
[  368.993899][   T65] 
[  368.993899][   T65] stack backtrace:
[  368.995728][   T65] CPU: 2 UID: 0 PID: 65 Comm: kworker/u32:3 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  368.995743][   T65] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  368.995751][   T65] Workqueue: netns cleanup_net
[  368.995767][   T65] Call Trace:
[  368.995772][   T65]  <TASK>
[  368.995776][   T65]  dump_stack_lvl+0x16c/0x1f0
[  368.995795][   T65]  lockdep_rcu_suspicious+0x166/0x260
[  368.995825][   T65]  fib6_del+0xcf2/0x1770
[  368.995842][   T65]  ? find_held_lock+0x2b/0x80
[  368.995856][   T65]  ? __pfx_fib6_del+0x10/0x10
[  368.995868][   T65]  ? __lock_acquire+0x5ca/0x1ba0
[  368.995884][   T65]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  368.995897][   T65]  ? fib6_ifdown+0xcd/0x8f0
[  368.995912][   T65]  fib6_clean_node+0x424/0x5b0
[  368.995926][   T65]  ? __pfx_fib6_clean_node+0x10/0x10
[  368.995945][   T65]  fib6_walk_continue+0x452/0x8d0
[  368.995965][   T65]  fib6_walk+0x182/0x370
[  368.995977][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  368.995988][   T65]  fib6_clean_tree+0xd4/0x110
[  368.995998][   T65]  ? __pfx_fib6_clean_tree+0x10/0x10
[  368.996012][   T65]  ? __pfx_fib6_clean_node+0x10/0x10
[  368.996024][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  368.996040][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  368.996052][   T65]  __fib6_clean_all+0x107/0x2d0
[  368.996071][   T65]  rt6_disable_ip+0x2ec/0x990
[  368.996088][   T65]  ? __mutex_trylock_common+0xe9/0x250
[  368.996106][   T65]  ? __pfx___mutex_trylock_common+0x10/0x10
[  368.996124][   T65]  ? __pfx_rt6_disable_ip+0x10/0x10
[  368.996142][   T65]  ? rcu_is_watching+0x12/0xc0
[  368.996158][   T65]  addrconf_ifdown.isra.0+0x11d/0x1a90
[  368.996174][   T65]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  368.996193][   T65]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  368.996207][   T65]  ? tls_dev_event+0xfd/0x10b0
[  368.996224][   T65]  addrconf_notify+0x220/0x19e0
[  368.996239][   T65]  ? ip6mr_device_event+0x1bc/0x230
[  368.996258][   T65]  notifier_call_chain+0xbc/0x410
[  368.996273][   T65]  ? __pfx_addrconf_notify+0x10/0x10
[  368.996291][   T65]  call_netdevice_notifiers_info+0xbe/0x140
[  368.996309][   T65]  dev_close_many+0x319/0x630
[  368.996327][   T65]  ? __pfx_dev_close_many+0x10/0x10
[  368.996347][   T65]  unregister_netdevice_many_notify+0x578/0x26f0
[  368.996365][   T65]  ? lockdep_hardirqs_on+0x7c/0x110
[  368.996380][   T65]  ? batadv_tt_local_event+0x455/0x7f0
[  368.996392][   T65]  ? __local_bh_enable_ip+0xa4/0x120
[  368.996407][   T65]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  368.996427][   T65]  ? unregister_netdevice_queue+0x22e/0x3f0
[  368.996442][   T65]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  368.996457][   T65]  ? batadv_meshif_destroy_vlan+0xdf/0x160
[  368.996479][   T65]  default_device_exit_batch+0x853/0xaf0
[  368.996497][   T65]  ? __pfx_default_device_exit_batch+0x10/0x10
[  368.996512][   T65]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[  368.996531][   T65]  ? __pfx___might_resched+0x10/0x10
[  368.996547][   T65]  ? __pfx_cfg802154_pernet_exit+0x10/0x10
[  368.996579][   T65]  ? __pfx_default_device_exit_batch+0x10/0x10
[  368.996596][   T65]  ops_exit_list+0x12b/0x180
[  368.996610][   T65]  cleanup_net+0x5c1/0xb30
[  368.996626][   T65]  ? __pfx_cleanup_net+0x10/0x10
[  368.996643][   T65]  ? rcu_is_watching+0x12/0xc0
[  368.996658][   T65]  process_one_work+0x9cf/0x1b70
[  368.996677][   T65]  ? __pfx_process_one_work+0x10/0x10
[  368.996694][   T65]  ? assign_work+0x1a0/0x250
[  368.996706][   T65]  worker_thread+0x6c8/0xf10
[  368.996723][   T65]  ? __kthread_parkme+0x19e/0x250
[  368.996740][   T65]  ? __pfx_worker_thread+0x10/0x10
[  368.996752][   T65]  kthread+0x3c2/0x780
[  368.996763][   T65]  ? __pfx_kthread+0x10/0x10
[  368.996773][   T65]  ? __pfx_kthread+0x10/0x10
[  368.996783][   T65]  ? __pfx_kthread+0x10/0x10
[  368.996793][   T65]  ? __pfx_kthread+0x10/0x10
[  368.996803][   T65]  ? rcu_is_watching+0x12/0xc0
[  368.996816][   T65]  ? __pfx_kthread+0x10/0x10
[  368.996827][   T65]  ret_from_fork+0x45/0x80
[  368.996838][   T65]  ? __pfx_kthread+0x10/0x10
[  368.996849][   T65]  ret_from_fork_asm+0x1a/0x30
[  368.996872][   T65]  </TASK>
[  368.996887][   T65] 
[  369.011615][T14920] __nla_validate_parse: 3 callbacks suppressed
[  369.011626][T14920] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2351'.
[  369.011801][   T65] =============================
[  369.128196][   T65] WARNING: suspicious RCU usage
[  369.130080][   T65] 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 Not tainted
[  369.132912][   T65] -----------------------------
[  369.134750][   T65] net/ipv6/ip6_fib.c:2035 suspicious rcu_dereference_protected() usage!
[  369.137323][   T65] 
[  369.137323][   T65] other info that might help us debug this:
[  369.137323][   T65] 
[  369.140539][   T65] 
[  369.140539][   T65] rcu_scheduler_active = 2, debug_locks = 1
[  369.143085][   T65] 6 locks held by kworker/u32:3/65:
[  369.144759][   T65]  #0: ffff88801c68d148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  369.147963][   T65]  #1: ffffc90000b6fd18 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  369.151107][   T65]  #2: ffffffff90112ed0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xc9/0xb30
[  369.153941][   T65]  #3: ffffffff90128d68 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0x8b/0xaf0
[  369.156964][   T65]  #4: ffffffff8e3bfc00 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x3a/0x2d0
[  369.159785][   T65]  #5: ffff888058f0b830 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0xeb/0x2d0
[  369.162776][   T65] 
[  369.162776][   T65] stack backtrace:
[  369.164637][   T65] CPU: 2 UID: 0 PID: 65 Comm: kworker/u32:3 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  369.164652][   T65] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.164660][   T65] Workqueue: netns cleanup_net
[  369.164676][   T65] Call Trace:
[  369.164681][   T65]  <TASK>
[  369.164686][   T65]  dump_stack_lvl+0x16c/0x1f0
[  369.164704][   T65]  lockdep_rcu_suspicious+0x166/0x260
[  369.164723][   T65]  fib6_del+0x2ef/0x1770
[  369.164743][   T65]  ? find_held_lock+0x2b/0x80
[  369.164758][   T65]  ? __pfx_fib6_del+0x10/0x10
[  369.164768][   T65]  ? __lock_acquire+0x5ca/0x1ba0
[  369.164785][   T65]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  369.164798][   T65]  ? fib6_ifdown+0xcd/0x8f0
[  369.164814][   T65]  fib6_clean_node+0x424/0x5b0
[  369.164828][   T65]  ? __pfx_fib6_clean_node+0x10/0x10
[  369.164846][   T65]  fib6_walk_continue+0x452/0x8d0
[  369.164867][   T65]  fib6_walk+0x182/0x370
[  369.164879][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.164890][   T65]  fib6_clean_tree+0xd4/0x110
[  369.164901][   T65]  ? __pfx_fib6_clean_tree+0x10/0x10
[  369.164914][   T65]  ? __pfx_fib6_clean_node+0x10/0x10
[  369.164927][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.164943][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.164955][   T65]  __fib6_clean_all+0x107/0x2d0
[  369.164969][   T65]  rt6_disable_ip+0x2ec/0x990
[  369.164988][   T65]  ? __mutex_trylock_common+0xe9/0x250
[  369.165006][   T65]  ? __pfx___mutex_trylock_common+0x10/0x10
[  369.165024][   T65]  ? __pfx_rt6_disable_ip+0x10/0x10
[  369.165042][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.165058][   T65]  addrconf_ifdown.isra.0+0x11d/0x1a90
[  369.165074][   T65]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  369.165093][   T65]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  369.165106][   T65]  ? tls_dev_event+0xfd/0x10b0
[  369.165123][   T65]  addrconf_notify+0x220/0x19e0
[  369.165138][   T65]  ? ip6mr_device_event+0x1bc/0x230
[  369.165156][   T65]  notifier_call_chain+0xbc/0x410
[  369.165171][   T65]  ? __pfx_addrconf_notify+0x10/0x10
[  369.165189][   T65]  call_netdevice_notifiers_info+0xbe/0x140
[  369.165207][   T65]  dev_close_many+0x319/0x630
[  369.165225][   T65]  ? __pfx_dev_close_many+0x10/0x10
[  369.165245][   T65]  unregister_netdevice_many_notify+0x578/0x26f0
[  369.165262][   T65]  ? lockdep_hardirqs_on+0x7c/0x110
[  369.165277][   T65]  ? batadv_tt_local_event+0x455/0x7f0
[  369.165290][   T65]  ? __local_bh_enable_ip+0xa4/0x120
[  369.165305][   T65]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  369.165324][   T65]  ? unregister_netdevice_queue+0x22e/0x3f0
[  369.165339][   T65]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  369.165355][   T65]  ? batadv_meshif_destroy_vlan+0xdf/0x160
[  369.165376][   T65]  default_device_exit_batch+0x853/0xaf0
[  369.165394][   T65]  ? __pfx_default_device_exit_batch+0x10/0x10
[  369.165409][   T65]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[  369.165428][   T65]  ? __pfx___might_resched+0x10/0x10
[  369.165443][   T65]  ? __pfx_cfg802154_pernet_exit+0x10/0x10
[  369.165460][   T65]  ? __pfx_default_device_exit_batch+0x10/0x10
[  369.165476][   T65]  ops_exit_list+0x12b/0x180
[  369.165491][   T65]  cleanup_net+0x5c1/0xb30
[  369.165506][   T65]  ? __pfx_cleanup_net+0x10/0x10
[  369.165523][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.165538][   T65]  process_one_work+0x9cf/0x1b70
[  369.165556][   T65]  ? __pfx_process_one_work+0x10/0x10
[  369.165572][   T65]  ? assign_work+0x1a0/0x250
[  369.165585][   T65]  worker_thread+0x6c8/0xf10
[  369.165601][   T65]  ? __kthread_parkme+0x19e/0x250
[  369.165618][   T65]  ? __pfx_worker_thread+0x10/0x10
[  369.165630][   T65]  kthread+0x3c2/0x780
[  369.165641][   T65]  ? __pfx_kthread+0x10/0x10
[  369.165650][   T65]  ? __pfx_kthread+0x10/0x10
[  369.165660][   T65]  ? __pfx_kthread+0x10/0x10
[  369.165670][   T65]  ? __pfx_kthread+0x10/0x10
[  369.165680][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.165693][   T65]  ? __pfx_kthread+0x10/0x10
[  369.165704][   T65]  ret_from_fork+0x45/0x80
[  369.165716][   T65]  ? __pfx_kthread+0x10/0x10
[  369.165731][   T65]  ret_from_fork_asm+0x1a/0x30
[  369.165755][   T65]  </TASK>
[  369.165761][   T65] 
[  369.280686][ T5948] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  369.281074][   T65] =============================
[  369.291486][   T65] WARNING: suspicious RCU usage
[  369.292953][   T65] 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 Not tainted
[  369.295113][   T65] -----------------------------
[  369.296599][   T65] net/ipv6/ip6_fib.c:1921 suspicious rcu_dereference_protected() usage!
[  369.299157][   T65] 
[  369.299157][   T65] other info that might help us debug this:
[  369.299157][   T65] 
[  369.302298][   T65] 
[  369.302298][   T65] rcu_scheduler_active = 2, debug_locks = 1
[  369.304716][   T65] 6 locks held by kworker/u32:3/65:
[  369.306277][   T65]  #0: ffff88801c68d148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  369.309346][   T65]  #1: ffffc90000b6fd18 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  369.312431][   T65]  #2: ffffffff90112ed0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xc9/0xb30
[  369.315340][   T65]  #3: ffffffff90128d68 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0x8b/0xaf0
[  369.318425][   T65]  #4: ffffffff8e3bfc00 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x3a/0x2d0
[  369.321309][   T65]  #5: ffff888058f0b830 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0xeb/0x2d0
[  369.324229][   T65] 
[  369.324229][   T65] stack backtrace:
[  369.326082][   T65] CPU: 2 UID: 0 PID: 65 Comm: kworker/u32:3 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  369.326097][   T65] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.326105][   T65] Workqueue: netns cleanup_net
[  369.326121][   T65] Call Trace:
[  369.326127][   T65]  <TASK>
[  369.326132][   T65]  dump_stack_lvl+0x16c/0x1f0
[  369.326150][   T65]  lockdep_rcu_suspicious+0x166/0x260
[  369.326170][   T65]  fib6_del+0x1084/0x1770
[  369.326185][   T65]  ? find_held_lock+0x2b/0x80
[  369.326200][   T65]  ? __pfx_fib6_del+0x10/0x10
[  369.326211][   T65]  ? __lock_acquire+0x5ca/0x1ba0
[  369.326228][   T65]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  369.326241][   T65]  ? fib6_ifdown+0xcd/0x8f0
[  369.326256][   T65]  fib6_clean_node+0x424/0x5b0
[  369.326270][   T65]  ? __pfx_fib6_clean_node+0x10/0x10
[  369.326288][   T65]  fib6_walk_continue+0x452/0x8d0
[  369.326310][   T65]  fib6_walk+0x182/0x370
[  369.326321][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.326333][   T65]  fib6_clean_tree+0xd4/0x110
[  369.326344][   T65]  ? __pfx_fib6_clean_tree+0x10/0x10
[  369.326357][   T65]  ? __pfx_fib6_clean_node+0x10/0x10
[  369.326370][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.326386][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.326398][   T65]  __fib6_clean_all+0x107/0x2d0
[  369.326413][   T65]  rt6_disable_ip+0x2ec/0x990
[  369.326430][   T65]  ? __mutex_trylock_common+0xe9/0x250
[  369.326448][   T65]  ? __pfx___mutex_trylock_common+0x10/0x10
[  369.326466][   T65]  ? __pfx_rt6_disable_ip+0x10/0x10
[  369.326484][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.326500][   T65]  addrconf_ifdown.isra.0+0x11d/0x1a90
[  369.326516][   T65]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  369.326535][   T65]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  369.326549][   T65]  ? tls_dev_event+0xfd/0x10b0
[  369.326565][   T65]  addrconf_notify+0x220/0x19e0
[  369.326580][   T65]  ? ip6mr_device_event+0x1bc/0x230
[  369.326599][   T65]  notifier_call_chain+0xbc/0x410
[  369.326615][   T65]  ? __pfx_addrconf_notify+0x10/0x10
[  369.326633][   T65]  call_netdevice_notifiers_info+0xbe/0x140
[  369.326651][   T65]  dev_close_many+0x319/0x630
[  369.326669][   T65]  ? __pfx_dev_close_many+0x10/0x10
[  369.326689][   T65]  unregister_netdevice_many_notify+0x578/0x26f0
[  369.326707][   T65]  ? lockdep_hardirqs_on+0x7c/0x110
[  369.326722][   T65]  ? batadv_tt_local_event+0x455/0x7f0
[  369.326734][   T65]  ? __local_bh_enable_ip+0xa4/0x120
[  369.326749][   T65]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  369.326773][   T65]  ? unregister_netdevice_queue+0x22e/0x3f0
[  369.326788][   T65]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  369.326803][   T65]  ? batadv_meshif_destroy_vlan+0xdf/0x160
[  369.326824][   T65]  default_device_exit_batch+0x853/0xaf0
[  369.326842][   T65]  ? __pfx_default_device_exit_batch+0x10/0x10
[  369.326857][   T65]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[  369.326876][   T65]  ? __pfx___might_resched+0x10/0x10
[  369.326891][   T65]  ? __pfx_cfg802154_pernet_exit+0x10/0x10
[  369.326909][   T65]  ? __pfx_default_device_exit_batch+0x10/0x10
[  369.326924][   T65]  ops_exit_list+0x12b/0x180
[  369.326939][   T65]  cleanup_net+0x5c1/0xb30
[  369.326955][   T65]  ? __pfx_cleanup_net+0x10/0x10
[  369.326973][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.326988][   T65]  process_one_work+0x9cf/0x1b70
[  369.327007][   T65]  ? __pfx_process_one_work+0x10/0x10
[  369.327023][   T65]  ? assign_work+0x1a0/0x250
[  369.327036][   T65]  worker_thread+0x6c8/0xf10
[  369.327052][   T65]  ? __kthread_parkme+0x19e/0x250
[  369.327070][   T65]  ? __pfx_worker_thread+0x10/0x10
[  369.327082][   T65]  kthread+0x3c2/0x780
[  369.327093][   T65]  ? __pfx_kthread+0x10/0x10
[  369.327102][   T65]  ? __pfx_kthread+0x10/0x10
[  369.327112][   T65]  ? __pfx_kthread+0x10/0x10
[  369.327121][   T65]  ? __pfx_kthread+0x10/0x10
[  369.327131][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.327145][   T65]  ? __pfx_kthread+0x10/0x10
[  369.327156][   T65]  ret_from_fork+0x45/0x80
[  369.327167][   T65]  ? __pfx_kthread+0x10/0x10
[  369.327178][   T65]  ret_from_fork_asm+0x1a/0x30
[  369.327201][   T65]  </TASK>
[  369.327206][   T65] 
[  369.448215][   T65] =============================
[  369.449686][   T65] WARNING: suspicious RCU usage
[  369.451255][   T65] 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 Not tainted
[  369.453459][   T65] -----------------------------
[  369.454982][   T65] net/ipv6/ip6_fib.c:1930 suspicious rcu_dereference_protected() usage!
[  369.457493][   T65] 
[  369.457493][   T65] other info that might help us debug this:
[  369.457493][   T65] 
[  369.460525][   T65] 
[  369.460525][   T65] rcu_scheduler_active = 2, debug_locks = 1
[  369.462933][   T65] 6 locks held by kworker/u32:3/65:
[  369.464566][   T65]  #0: ffff88801c68d148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  369.467733][   T65]  #1: ffffc90000b6fd18 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  369.470860][   T65]  #2: ffffffff90112ed0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xc9/0xb30
[  369.473714][   T65]  #3: ffffffff90128d68 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0x8b/0xaf0
[  369.476796][   T65]  #4: ffffffff8e3bfc00 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x3a/0x2d0
[  369.479669][   T65]  #5: ffff888058f0b830 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0xeb/0x2d0
[  369.482643][   T65] 
[  369.482643][   T65] stack backtrace:
[  369.484497][   T65] CPU: 2 UID: 0 PID: 65 Comm: kworker/u32:3 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  369.484512][   T65] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.484520][   T65] Workqueue: netns cleanup_net
[  369.484535][   T65] Call Trace:
[  369.484540][   T65]  <TASK>
[  369.484559][   T65]  dump_stack_lvl+0x16c/0x1f0
[  369.484579][   T65]  lockdep_rcu_suspicious+0x166/0x260
[  369.484599][   T65]  fib6_del+0xfef/0x1770
[  369.484613][   T65]  ? find_held_lock+0x2b/0x80
[  369.484628][   T65]  ? __pfx_fib6_del+0x10/0x10
[  369.484639][   T65]  ? __lock_acquire+0x5ca/0x1ba0
[  369.484655][   T65]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  369.484668][   T65]  ? fib6_ifdown+0xcd/0x8f0
[  369.484684][   T65]  fib6_clean_node+0x424/0x5b0
[  369.484698][   T65]  ? __pfx_fib6_clean_node+0x10/0x10
[  369.484716][   T65]  fib6_walk_continue+0x452/0x8d0
[  369.484737][   T65]  fib6_walk+0x182/0x370
[  369.484748][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.484763][   T65]  fib6_clean_tree+0xd4/0x110
[  369.484774][   T65]  ? __pfx_fib6_clean_tree+0x10/0x10
[  369.484787][   T65]  ? __pfx_fib6_clean_node+0x10/0x10
[  369.484800][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.484816][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.484828][   T65]  __fib6_clean_all+0x107/0x2d0
[  369.484843][   T65]  rt6_disable_ip+0x2ec/0x990
[  369.484859][   T65]  ? __mutex_trylock_common+0xe9/0x250
[  369.484878][   T65]  ? __pfx___mutex_trylock_common+0x10/0x10
[  369.484896][   T65]  ? __pfx_rt6_disable_ip+0x10/0x10
[  369.484914][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.484929][   T65]  addrconf_ifdown.isra.0+0x11d/0x1a90
[  369.484946][   T65]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  369.484964][   T65]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  369.484978][   T65]  ? tls_dev_event+0xfd/0x10b0
[  369.484997][   T65]  addrconf_notify+0x220/0x19e0
[  369.485012][   T65]  ? ip6mr_device_event+0x1bc/0x230
[  369.485030][   T65]  notifier_call_chain+0xbc/0x410
[  369.485046][   T65]  ? __pfx_addrconf_notify+0x10/0x10
[  369.485064][   T65]  call_netdevice_notifiers_info+0xbe/0x140
[  369.485081][   T65]  dev_close_many+0x319/0x630
[  369.485099][   T65]  ? __pfx_dev_close_many+0x10/0x10
[  369.485119][   T65]  unregister_netdevice_many_notify+0x578/0x26f0
[  369.485137][   T65]  ? lockdep_hardirqs_on+0x7c/0x110
[  369.485152][   T65]  ? batadv_tt_local_event+0x455/0x7f0
[  369.485165][   T65]  ? __local_bh_enable_ip+0xa4/0x120
[  369.485180][   T65]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  369.485200][   T65]  ? unregister_netdevice_queue+0x22e/0x3f0
[  369.485215][   T65]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  369.485230][   T65]  ? batadv_meshif_destroy_vlan+0xdf/0x160
[  369.485251][   T65]  default_device_exit_batch+0x853/0xaf0
[  369.485270][   T65]  ? __pfx_default_device_exit_batch+0x10/0x10
[  369.485285][   T65]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[  369.485304][   T65]  ? __pfx___might_resched+0x10/0x10
[  369.485319][   T65]  ? __pfx_cfg802154_pernet_exit+0x10/0x10
[  369.485336][   T65]  ? __pfx_default_device_exit_batch+0x10/0x10
[  369.485352][   T65]  ops_exit_list+0x12b/0x180
[  369.485367][   T65]  cleanup_net+0x5c1/0xb30
[  369.485382][   T65]  ? __pfx_cleanup_net+0x10/0x10
[  369.485400][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.485415][   T65]  process_one_work+0x9cf/0x1b70
[  369.485433][   T65]  ? __pfx_process_one_work+0x10/0x10
[  369.485450][   T65]  ? assign_work+0x1a0/0x250
[  369.485462][   T65]  worker_thread+0x6c8/0xf10
[  369.485479][   T65]  ? __kthread_parkme+0x19e/0x250
[  369.485496][   T65]  ? __pfx_worker_thread+0x10/0x10
[  369.485508][   T65]  kthread+0x3c2/0x780
[  369.485519][   T65]  ? __pfx_kthread+0x10/0x10
[  369.485529][   T65]  ? __pfx_kthread+0x10/0x10
[  369.485539][   T65]  ? __pfx_kthread+0x10/0x10
[  369.485549][   T65]  ? __pfx_kthread+0x10/0x10
[  369.485559][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.485573][   T65]  ? __pfx_kthread+0x10/0x10
[  369.485584][   T65]  ret_from_fork+0x45/0x80
[  369.485595][   T65]  ? __pfx_kthread+0x10/0x10
[  369.485606][   T65]  ret_from_fork_asm+0x1a/0x30
[  369.485630][   T65]  </TASK>
[  369.485637][   T65] 
[  369.608365][   T65] =============================
[  369.609888][   T65] WARNING: suspicious RCU usage
[  369.611446][   T65] 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 Not tainted
[  369.613561][   T65] -----------------------------
[  369.615071][   T65] net/ipv6/ip6_fib.c:1975 suspicious rcu_dereference_protected() usage!
[  369.617542][   T65] 
[  369.617542][   T65] other info that might help us debug this:
[  369.617542][   T65] 
[  369.620616][   T65] 
[  369.620616][   T65] rcu_scheduler_active = 2, debug_locks = 1
[  369.623012][   T65] 7 locks held by kworker/u32:3/65:
[  369.624592][   T65]  #0: ffff88801c68d148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  369.627662][   T65]  #1: ffffc90000b6fd18 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  369.630660][   T65]  #2: ffffffff90112ed0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xc9/0xb30
[  369.633510][   T65]  #3: ffffffff90128d68 (rtnl_mutex){+.+.}-{4:4}, at: default_device_exit_batch+0x8b/0xaf0
[  369.636572][   T65]  #4: ffffffff8e3bfc00 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x3a/0x2d0
[  369.639371][   T65]  #5: ffff888058f0b830 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0xeb/0x2d0
[  369.642238][   T65]  #6: ffff888029618d38 (&net->ipv6.fib6_walker_lock){++..}-{3:3}, at: fib6_del+0x880/0x1770
[  369.645283][   T65] 
[  369.645283][   T65] stack backtrace:
[  369.647083][   T65] CPU: 2 UID: 0 PID: 65 Comm: kworker/u32:3 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  369.647097][   T65] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.647105][   T65] Workqueue: netns cleanup_net
[  369.647121][   T65] Call Trace:
[  369.647125][   T65]  <TASK>
[  369.647130][   T65]  dump_stack_lvl+0x16c/0x1f0
[  369.647148][   T65]  lockdep_rcu_suspicious+0x166/0x260
[  369.647168][   T65]  fib6_del+0x1281/0x1770
[  369.647186][   T65]  ? __pfx_fib6_del+0x10/0x10
[  369.647197][   T65]  ? __lock_acquire+0x5ca/0x1ba0
[  369.647213][   T65]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  369.647226][   T65]  ? fib6_ifdown+0xcd/0x8f0
[  369.647242][   T65]  fib6_clean_node+0x424/0x5b0
[  369.647256][   T65]  ? __pfx_fib6_clean_node+0x10/0x10
[  369.647274][   T65]  fib6_walk_continue+0x452/0x8d0
[  369.647295][   T65]  fib6_walk+0x182/0x370
[  369.647307][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.647318][   T65]  fib6_clean_tree+0xd4/0x110
[  369.647328][   T65]  ? __pfx_fib6_clean_tree+0x10/0x10
[  369.647342][   T65]  ? __pfx_fib6_clean_node+0x10/0x10
[  369.647354][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.647370][   T65]  ? __pfx_fib6_ifdown+0x10/0x10
[  369.647382][   T65]  __fib6_clean_all+0x107/0x2d0
[  369.647397][   T65]  rt6_disable_ip+0x2ec/0x990
[  369.647414][   T65]  ? __mutex_trylock_common+0xe9/0x250
[  369.647432][   T65]  ? __pfx___mutex_trylock_common+0x10/0x10
[  369.647450][   T65]  ? __pfx_rt6_disable_ip+0x10/0x10
[  369.647468][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.647484][   T65]  addrconf_ifdown.isra.0+0x11d/0x1a90
[  369.647501][   T65]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  369.647519][   T65]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  369.647533][   T65]  ? tls_dev_event+0xfd/0x10b0
[  369.647550][   T65]  addrconf_notify+0x220/0x19e0
[  369.647565][   T65]  ? ip6mr_device_event+0x1bc/0x230
[  369.647583][   T65]  notifier_call_chain+0xbc/0x410
[  369.647599][   T65]  ? __pfx_addrconf_notify+0x10/0x10
[  369.647617][   T65]  call_netdevice_notifiers_info+0xbe/0x140
[  369.647635][   T65]  dev_close_many+0x319/0x630
[  369.647652][   T65]  ? __pfx_dev_close_many+0x10/0x10
[  369.647673][   T65]  unregister_netdevice_many_notify+0x578/0x26f0
[  369.647690][   T65]  ? lockdep_hardirqs_on+0x7c/0x110
[  369.647705][   T65]  ? batadv_tt_local_event+0x455/0x7f0
[  369.647718][   T65]  ? __local_bh_enable_ip+0xa4/0x120
[  369.647732][   T65]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  369.647756][   T65]  ? unregister_netdevice_queue+0x22e/0x3f0
[  369.647771][   T65]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  369.647786][   T65]  ? batadv_meshif_destroy_vlan+0xdf/0x160
[  369.647808][   T65]  default_device_exit_batch+0x853/0xaf0
[  369.647826][   T65]  ? __pfx_default_device_exit_batch+0x10/0x10
[  369.647842][   T65]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[  369.647860][   T65]  ? __pfx___might_resched+0x10/0x10
[  369.647876][   T65]  ? __pfx_cfg802154_pernet_exit+0x10/0x10
[  369.647893][   T65]  ? __pfx_default_device_exit_batch+0x10/0x10
[  369.647909][   T65]  ops_exit_list+0x12b/0x180
[  369.647924][   T65]  cleanup_net+0x5c1/0xb30
[  369.647939][   T65]  ? __pfx_cleanup_net+0x10/0x10
[  369.647956][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.647972][   T65]  process_one_work+0x9cf/0x1b70
[  369.647990][   T65]  ? __pfx_process_one_work+0x10/0x10
[  369.648006][   T65]  ? assign_work+0x1a0/0x250
[  369.648019][   T65]  worker_thread+0x6c8/0xf10
[  369.648036][   T65]  ? __kthread_parkme+0x19e/0x250
[  369.648053][   T65]  ? __pfx_worker_thread+0x10/0x10
[  369.648065][   T65]  kthread+0x3c2/0x780
[  369.648076][   T65]  ? __pfx_kthread+0x10/0x10
[  369.648085][   T65]  ? __pfx_kthread+0x10/0x10
[  369.648095][   T65]  ? __pfx_kthread+0x10/0x10
[  369.648105][   T65]  ? __pfx_kthread+0x10/0x10
[  369.648115][   T65]  ? rcu_is_watching+0x12/0xc0
[  369.648128][   T65]  ? __pfx_kthread+0x10/0x10
[  369.648139][   T65]  ret_from_fork+0x45/0x80
[  369.648150][   T65]  ? __pfx_kthread+0x10/0x10
[  369.648161][   T65]  ret_from_fork_asm+0x1a/0x30
[  369.648184][   T65]  </TASK>
[  369.921027][ T5948] Bluetooth: hci4: command tx timeout
[  370.503902][   T65] team0 (unregistering): Port device team_slave_1 removed
[  370.587950][   T65] team0 (unregistering): Port device team_slave_0 removed
[  371.127982][T14880] batman_adv: batadv0: Adding interface: batadv_slave_0
[  371.131330][T14880] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  371.141732][T14880] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  371.164109][T14920] ==================================================================
[  371.166562][T14920] BUG: KASAN: slab-use-after-free in binderfs_evict_inode+0x335/0x340
[  371.169080][T14920] Write of size 8 at addr ffff88804e753808 by task syz.0.2351/14920
[  371.171561][T14920] 
[  371.172318][T14920] CPU: 0 UID: 0 PID: 14920 Comm: syz.0.2351 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  371.172333][T14920] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  371.172340][T14920] Call Trace:
[  371.172344][T14920]  <TASK>
[  371.172349][T14920]  dump_stack_lvl+0x116/0x1f0
[  371.172366][T14920]  print_report+0xc3/0x670
[  371.172378][T14920]  ? __virt_addr_valid+0x5e/0x590
[  371.172394][T14920]  ? __phys_addr+0xc6/0x150
[  371.172410][T14920]  ? binderfs_evict_inode+0x335/0x340
[  371.172419][T14920]  kasan_report+0xe0/0x110
[  371.172431][T14920]  ? binderfs_evict_inode+0x335/0x340
[  371.172442][T14920]  ? __pfx_binderfs_evict_inode+0x10/0x10
[  371.172453][T14920]  binderfs_evict_inode+0x335/0x340
[  371.172463][T14920]  evict+0x3e6/0x920
[  371.172476][T14920]  ? __pfx_evict+0x10/0x10
[  371.172490][T14920]  ? iput+0x519/0x880
[  371.172503][T14920]  iput+0x521/0x880
[  371.172516][T14920]  dentry_unlink_inode+0x29c/0x480
[  371.172544][T14920]  __dentry_kill+0x1d0/0x600
[  371.172558][T14920]  ? shrink_dentry_list+0x11a/0x5d0
[  371.172572][T14920]  shrink_dentry_list+0x140/0x5d0
[  371.172588][T14920]  ? shrink_dcache_parent+0x22/0x530
[  371.172603][T14920]  shrink_dcache_parent+0xe1/0x530
[  371.172617][T14920]  ? __pfx_shrink_dcache_parent+0x10/0x10
[  371.172633][T14920]  ? d_walk+0x44c/0xa60
[  371.172648][T14920]  shrink_dcache_for_umount+0xa5/0x3e0
[  371.172664][T14920]  generic_shutdown_super+0x6c/0x390
[  371.172679][T14920]  kill_litter_super+0x70/0xa0
[  371.172694][T14920]  binderfs_kill_super+0x3b/0xa0
[  371.172711][T14920]  deactivate_locked_super+0xc1/0x1a0
[  371.172727][T14920]  deactivate_super+0xde/0x100
[  371.172743][T14920]  cleanup_mnt+0x225/0x450
[  371.172759][T14920]  task_work_run+0x150/0x240
[  371.172772][T14920]  ? __pfx_task_work_run+0x10/0x10
[  371.172785][T14920]  do_exit+0xafb/0x2c30
[  371.172803][T14920]  ? __pfx_do_exit+0x10/0x10
[  371.172819][T14920]  ? do_raw_spin_lock+0x12c/0x2b0
[  371.172831][T14920]  ? find_held_lock+0x2b/0x80
[  371.172844][T14920]  do_group_exit+0xd3/0x2a0
[  371.172861][T14920]  get_signal+0x2673/0x26d0
[  371.172877][T14920]  ? __pfx_get_signal+0x10/0x10
[  371.172893][T14920]  arch_do_signal_or_restart+0x8f/0x7d0
[  371.172909][T14920]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  371.172927][T14920]  ? rcu_is_watching+0x12/0xc0
[  371.172941][T14920]  syscall_exit_to_user_mode+0x150/0x2a0
[  371.172958][T14920]  do_syscall_64+0xda/0x260
[  371.172978][T14920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.172989][T14920] RIP: 0033:0x7f6f51d8e969
[  371.172998][T14920] Code: Unable to access opcode bytes at 0x7f6f51d8e93f.
[  371.173003][T14920] RSP: 002b:00007f6f52b4f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  371.173014][T14920] RAX: 0000000000000044 RBX: 00007f6f51fb6160 RCX: 00007f6f51d8e969
[  371.173021][T14920] RDX: 0000000000004804 RSI: 0000200000000dc0 RDI: 000000000000000b
[  371.173028][T14920] RBP: 00007f6f51e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  371.173035][T14920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  371.173042][T14920] R13: 0000000000000000 R14: 00007f6f51fb6160 R15: 00007ffdca99a878
[  371.173052][T14920]  </TASK>
[  371.173056][T14920] 
[  371.268117][T14920] Allocated by task 13107:
[  371.269525][T14920]  kasan_save_stack+0x33/0x60
[  371.271015][T14920]  kasan_save_track+0x14/0x30
[  371.272443][T14920]  __kasan_kmalloc+0xaa/0xb0
[  371.273896][T14920]  __kmalloc_noprof+0x223/0x510
[  371.275478][T14920]  fib6_info_alloc+0x40/0x160
[  371.276954][T14920]  ip6_route_info_create+0x33f/0x18e0
[  371.278651][T14920]  ip6_route_add+0x26/0x1c0
[  371.280045][T14920]  addrconf_prefix_route+0x2fd/0x510
[  371.281663][T14920]  addrconf_notify+0x12c6/0x19e0
[  371.283154][T14920]  notifier_call_chain+0xbc/0x410
[  371.284726][T14920]  call_netdevice_notifiers_info+0xbe/0x140
[  371.286608][T14920]  __dev_notify_flags+0x12c/0x2e0
[  371.288180][T14920]  netif_change_flags+0x108/0x160
[  371.289750][T14920]  do_setlink.constprop.0+0xddf/0x44b0
[  371.291437][T14920]  rtnl_newlink+0x1446/0x2000
[  371.292912][T14920]  rtnetlink_rcv_msg+0x95b/0xe90
[  371.294463][T14920]  netlink_rcv_skb+0x16a/0x440
[  371.296013][T14920]  netlink_unicast+0x53d/0x7f0
[  371.297516][T14920]  netlink_sendmsg+0x8d1/0xdd0
[  371.299012][T14920]  __sys_sendto+0x498/0x510
[  371.300424][T14920]  __x64_sys_sendto+0xe0/0x1c0
[  371.301920][T14920]  do_syscall_64+0xcd/0x260
[  371.303350][T14920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.305244][T14920] 
[  371.306005][T14920] Freed by task 23:
[  371.307202][T14920]  kasan_save_stack+0x33/0x60
[  371.308675][T14920]  kasan_save_track+0x14/0x30
[  371.310146][T14920]  kasan_save_free_info+0x3b/0x60
[  371.311717][T14920]  __kasan_slab_free+0x51/0x70
[  371.313224][T14920]  kfree+0x2b6/0x4d0
[  371.314471][T14920]  rcu_core+0x79c/0x14e0
[  371.315795][T14920]  handle_softirqs+0x216/0x8e0
[  371.317298][T14920]  run_ksoftirqd+0x3a/0x60
[  371.318694][T14920]  smpboot_thread_fn+0x3f7/0xae0
[  371.320242][T14920]  kthread+0x3c2/0x780
[  371.321549][T14920]  ret_from_fork+0x45/0x80
[  371.322950][T14920]  ret_from_fork_asm+0x1a/0x30
[  371.324447][T14920] 
[  371.325253][T14920] Last potentially related work creation:
[  371.327011][T14920]  kasan_save_stack+0x33/0x60
[  371.328480][T14920]  kasan_record_aux_stack+0xb8/0xd0
[  371.330113][T14920]  __call_rcu_common.constprop.0+0x9a/0x9f0
[  371.331956][T14920]  fib6_del+0xf3c/0x1770
[  371.333310][T14920]  fib6_clean_node+0x424/0x5b0
[  371.334809][T14920]  fib6_walk_continue+0x452/0x8d0
[  371.336383][T14920]  fib6_walk+0x182/0x370
[  371.337725][T14920]  fib6_clean_tree+0xd4/0x110
[  371.339207][T14920]  __fib6_clean_all+0x107/0x2d0
[  371.340741][T14920]  rt6_disable_ip+0x2ec/0x990
[  371.342233][T14920]  addrconf_ifdown.isra.0+0x11d/0x1a90
[  371.343934][T14920]  addrconf_notify+0x220/0x19e0
[  371.345473][T14920]  notifier_call_chain+0xbc/0x410
[  371.347064][T14920]  call_netdevice_notifiers_info+0xbe/0x140
[  371.348917][T14920]  dev_close_many+0x319/0x630
[  371.350400][T14920]  unregister_netdevice_many_notify+0x578/0x26f0
[  371.352414][T14920]  default_device_exit_batch+0x853/0xaf0
[  371.354197][T14920]  ops_exit_list+0x12b/0x180
[  371.355649][T14920]  cleanup_net+0x5c1/0xb30
[  371.357067][T14920]  process_one_work+0x9cf/0x1b70
[  371.358611][T14920]  worker_thread+0x6c8/0xf10
[  371.360066][T14920]  kthread+0x3c2/0x780
[  371.361379][T14920]  ret_from_fork+0x45/0x80
[  371.362778][T14920]  ret_from_fork_asm+0x1a/0x30
[  371.364291][T14920] 
[  371.365073][T14920] The buggy address belongs to the object at ffff88804e753800
[  371.365073][T14920]  which belongs to the cache kmalloc-512 of size 512
[  371.369318][T14920] The buggy address is located 8 bytes inside of
[  371.369318][T14920]  freed 512-byte region [ffff88804e753800, ffff88804e753a00)
[  371.373490][T14920] 
[  371.374271][T14920] The buggy address belongs to the physical page:
[  371.376395][T14920] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4e750
[  371.379034][T14920] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  371.381661][T14920] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  371.383982][T14920] page_type: f5(slab)
[  371.385251][T14920] raw: 00fff00000000040 ffff88801b442c80 dead000000000100 dead000000000122
[  371.387880][T14920] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  371.390552][T14920] head: 00fff00000000040 ffff88801b442c80 dead000000000100 dead000000000122
[  371.393238][T14920] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  371.395906][T14920] head: 00fff00000000002 ffffea000139d401 00000000ffffffff 00000000ffffffff
[  371.398587][T14920] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  371.401267][T14920] page dumped because: kasan: bad access detected
[  371.403242][T14920] page_owner tracks the page as allocated
[  371.405012][T14920] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 167, tgid 167 (kworker/u32:5), ts 54705895993, free_ts 54635756606
[  371.411378][T14920]  post_alloc_hook+0x181/0x1b0
[  371.412837][T14920]  get_page_from_freelist+0x135c/0x3920
[  371.414565][T14920]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  371.416401][T14920]  alloc_pages_mpol+0x1fb/0x550
[  371.417931][T14920]  new_slab+0x244/0x340
[  371.419248][T14920]  ___slab_alloc+0xd9c/0x1940
[  371.420734][T14920]  __slab_alloc.constprop.0+0x56/0xb0
[  371.422419][T14920]  __kmalloc_cache_noprof+0xfb/0x3e0
[  371.424065][T14920]  __ipv6_dev_mc_inc+0x2b9/0xc10
[  371.425636][T14920]  addrconf_dad_work+0x284/0x14e0
[  371.427223][T14920]  process_one_work+0x9cf/0x1b70
[  371.428789][T14920]  worker_thread+0x6c8/0xf10
[  371.430245][T14920]  kthread+0x3c2/0x780
[  371.431550][T14920]  ret_from_fork+0x45/0x80
[  371.432963][T14920]  ret_from_fork_asm+0x1a/0x30
[  371.434450][T14920] page last free pid 5941 tgid 5941 stack trace:
[  371.436330][T14920]  __free_frozen_pages+0x69d/0xff0
[  371.437937][T14920]  qlist_free_all+0x4e/0x120
[  371.439673][T14920]  kasan_quarantine_reduce+0x195/0x1e0
[  371.441583][T14920]  __kasan_slab_alloc+0x69/0x90
[  371.443109][T14920]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  371.444811][T14920]  getname_flags.part.0+0x4c/0x550
[  371.446413][T14920]  __x64_sys_unlink+0xb0/0x110
[  371.447907][T14920]  do_syscall_64+0xcd/0x260
[  371.449350][T14920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.451192][T14920] 
[  371.451955][T14920] Memory state around the buggy address:
[  371.453720][T14920]  ffff88804e753700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  371.456187][T14920]  ffff88804e753780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  371.458671][T14920] >ffff88804e753800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  371.461164][T14920]                       ^
[  371.462496][T14920]  ffff88804e753880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  371.464859][T14920]  ffff88804e753900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  371.467321][T14920] ==================================================================
[  371.475395][T14920] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  371.477674][T14920] CPU: 3 UID: 0 PID: 14920 Comm: syz.0.2351 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  371.481309][T14920] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  371.484587][T14920] Call Trace:
[  371.485633][T14920]  <TASK>
[  371.486579][T14920]  dump_stack_lvl+0x3d/0x1f0
[  371.488035][T14920]  panic+0x71c/0x800
[  371.489276][T14920]  ? __pfx_panic+0x10/0x10
[  371.490668][T14920]  ? irqentry_exit+0x3b/0x90
[  371.492210][T14920]  ? lockdep_hardirqs_on+0x7c/0x110
[  371.493847][T14920]  ? preempt_schedule_thunk+0x16/0x30
[  371.495552][T14920]  ? binderfs_evict_inode+0x335/0x340
[  371.497206][T14920]  ? preempt_schedule_common+0x44/0xc0
[  371.498865][T14920]  ? check_panic_on_warn+0x1f/0xb0
[  371.500436][T14920]  ? binderfs_evict_inode+0x335/0x340
[  371.502124][T14920]  check_panic_on_warn+0xab/0xb0
[  371.503689][T14920]  end_report+0x107/0x170
[  371.505037][T14920]  kasan_report+0xee/0x110
[  371.506430][T14920]  ? binderfs_evict_inode+0x335/0x340
[  371.508092][T14920]  ? __pfx_binderfs_evict_inode+0x10/0x10
[  371.509863][T14920]  binderfs_evict_inode+0x335/0x340
[  371.511467][T14920]  evict+0x3e6/0x920
[  371.512700][T14920]  ? __pfx_evict+0x10/0x10
[  371.514106][T14920]  ? iput+0x519/0x880
[  371.515354][T14920]  iput+0x521/0x880
[  371.516568][T14920]  dentry_unlink_inode+0x29c/0x480
[  371.518164][T14920]  __dentry_kill+0x1d0/0x600
[  371.519609][T14920]  ? shrink_dentry_list+0x11a/0x5d0
[  371.521253][T14920]  shrink_dentry_list+0x140/0x5d0
[  371.522851][T14920]  ? shrink_dcache_parent+0x22/0x530
[  371.524551][T14920]  shrink_dcache_parent+0xe1/0x530
[  371.526655][T14920]  ? __pfx_shrink_dcache_parent+0x10/0x10
[  371.528994][T14920]  ? d_walk+0x44c/0xa60
[  371.530630][T14920]  shrink_dcache_for_umount+0xa5/0x3e0
[  371.533001][T14920]  generic_shutdown_super+0x6c/0x390
[  371.535192][T14920]  kill_litter_super+0x70/0xa0
[  371.537182][T14920]  binderfs_kill_super+0x3b/0xa0
[  371.539231][T14920]  deactivate_locked_super+0xc1/0x1a0
[  371.541455][T14920]  deactivate_super+0xde/0x100
[  371.543397][T14920]  cleanup_mnt+0x225/0x450
[  371.545292][T14920]  task_work_run+0x150/0x240
[  371.547248][T14920]  ? __pfx_task_work_run+0x10/0x10
[  371.549409][T14920]  do_exit+0xafb/0x2c30
[  371.551191][T14920]  ? __pfx_do_exit+0x10/0x10
[  371.553156][T14920]  ? do_raw_spin_lock+0x12c/0x2b0
[  371.555265][T14920]  ? find_held_lock+0x2b/0x80
[  371.557252][T14920]  do_group_exit+0xd3/0x2a0
[  371.559169][T14920]  get_signal+0x2673/0x26d0
[  371.561114][T14920]  ? __pfx_get_signal+0x10/0x10
[  371.563152][T14920]  arch_do_signal_or_restart+0x8f/0x7d0
[  371.565482][T14920]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  371.568059][T14920]  ? rcu_is_watching+0x12/0xc0
[  371.570117][T14920]  syscall_exit_to_user_mode+0x150/0x2a0
[  371.572489][T14920]  do_syscall_64+0xda/0x260
[  371.574421][T14920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.576849][T14920] RIP: 0033:0x7f6f51d8e969
[  371.578564][T14920] Code: Unable to access opcode bytes at 0x7f6f51d8e93f.
[  371.581282][T14920] RSP: 002b:00007f6f52b4f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  371.584599][T14920] RAX: 0000000000000044 RBX: 00007f6f51fb6160 RCX: 00007f6f51d8e969
[  371.587808][T14920] RDX: 0000000000004804 RSI: 0000200000000dc0 RDI: 000000000000000b
[  371.590913][T14920] RBP: 00007f6f51e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  371.594126][T14920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  371.597334][T14920] R13: 0000000000000000 R14: 00007f6f51fb6160 R15: 00007ffdca99a878
[  371.600592][T14920]  </TASK>
[  371.602637][T14920] Kernel Offset: disabled
[  371.604476][T14920] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:41:49  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=ffffc90006507ba8 RCX=ffffc90006508001 RDX=ffffc90006507bb0
RSI=ffffffff8bf4a460 RDI=ffffffff8bf4a4a0 RBP=0000000000000001 RSP=ffffc90006507608
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000004 R11=0000000000084255
R12=ffffc90006507708 R13=ffffc900065076b8 R14=ffffc90006507ba8 R15=ffffc900065076ec
RIP=ffffffff8b6d4ba8 RFL=00000292 [--S-A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69da000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f6f52b6ff98 CR3=000000004391e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000010100 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe374aae10 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dee411a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dee411a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dee411a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dee411aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dee411b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dee411c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000f0 0000000000000003 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffc9000418f064 RDX=1ffff92000831e22
RSI=ffffffff820b0cb9 RDI=ffffc9000418f110 RBP=ffffc9000418f158 RSP=ffffc9000418f0a0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=00000000000117f3
R12=ffffffff81a708b0 R13=ffffc9000418f110 R14=0000000000000000 R15=ffff88802da54880
RIP=ffffffff8169d9c3 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6ada000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f92a14e7d60 CR3=0000000025a75000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=00000000000000ff Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f92a09836a3 00007f92a09836a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcd881dc40 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557768b981 000055557768b8f0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557767dfa4 000055557767dfa0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055557769716a 0000555577696d20
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0102802687c9f285 acfdd8e710000a80 04040104c2003065 6c69662f2e01ffff
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010010000fffffff ffffff041e100006 0102802687c9f285 acfdd8e710000a80
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 04040104c2003065 6c69662f2e01ffff ffffffffffffef08 0a800303fc881000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0280040100000008 0601000000080608 0157d67c80100002 800302c010000b80
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0401000000080606 0176b80008000db8 032408000db00300 10000da003000800
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854faab5 RDI=ffffffff9adfe5a0 RBP=ffffffff9adfe560 RSP=ffffc90000b6ebe8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000065 R14=ffffffff9adfe560 R15=ffffffff854faa50
RIP=ffffffff854faadf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6bda000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f09770f2286 CR3=00000000302f3000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000000032e7 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc4d81cd90 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407411a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407411a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407411a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407411aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407411b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407411c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000006 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000388
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000006 0000000000000000 0000000000000000 0000000000000388
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88806a739dc0 RCX=ffff88806a73a900 RDX=1ffff1100d4e7535
RSI=ffffffff81622895 RDI=0000000000000003 RBP=0000000000013d32 RSP=ffffc900034ff9e0
R8 =ffff88806a73a8c0 R9 =fffffbfff210a622 R10=ffffffff90853117 R11=0000000000000000
R12=ffffffff908560b4 R13=0000000000000003 R14=ffff88806a73a8f0 R15=0000000000013d32
RIP=ffffffff8189c0bc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fc954963c80 ffffffff 00c00000
GS =0000 ffff8880d6cda000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f6f52b90f98 CR3=00000000302f3000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000000032e7 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000005000001 Opmask01=0000000000000001 Opmask02=0000000000018000 Opmask03=0000000000000000
Opmask04=00000000ffff7fff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 205b5d3332353435 392e38363320205b
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 205d353654202020 5b5d333235343539
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe8acd74c0 0000003000000018
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65746e6f63007325 203a726f72726520 64656e7275746572 2072657672657300
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40514b4a46005600 051f574a57574005 41404b5750514057 0557405357405600
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6552203a30766461 746162203a766461 5f6e616d74616220 5d3536542020205b
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 313d657669737369 6d7265702074656b 636f735f636c6c3d 7373616c63742074
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f6d64617379733a 725f6d6461737973 3a746f6f723d7478 65746e6f63742074
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f6d64617379733a 725f6d6461737973 3a746f6f723d7478 65746e6f63732022
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 353333322e302e7a 7973223d6d6d6f63 2030363834313d64 69702020726f6620
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 746f6f723d747865 746e6f637320333d 6f6e692022736670 6d74766564223d76
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000