last executing test programs:

7m49.953420599s ago: executing program 2 (id=114):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x7, 0xa, &(0x7f0000000680)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000002c0000000f00000018000000000000000000000000000000950000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
prctl$PR_GET_SPECULATION_CTRL(0x35, 0x0, 0x4)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x5)
read$FUSE(r2, &(0x7f0000000380)={0x2020}, 0x2020)
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000480)={@host})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r1, 0x7a4, &(0x7f0000000200)={{@any, 0xffffffff}, @host, 0x0, 0x0, 0x4000000f8, 0xffffffffffffffff, 0x0, 0x4000000, 0x7})
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r4, 0x29, 0x3b, &(0x7f00000000c0)=ANY=[], 0xb0)
connect$pppl2tp(r3, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x9, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r3, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)
sendto$inet6(r4, 0x0, 0x0, 0x10, 0x0, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
keyctl$restrict_keyring(0x1d, 0xfffffffffffffffd, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000040)='#,d\x00')
socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
setxattr$security_ima(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140), &(0x7f0000000180)=@sha1={0x1, "fb035c36b1f94f89c5692026ee844bc30059532e"}, 0x15, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000780)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r7, &(0x7f0000000880)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100006a9a4e32a2f3d4a300020000009b4f", @ANYRES32=r8, @ANYBLOB="0a0006000802110000010000"], 0x28}, 0x1, 0x0, 0x0, 0x811}, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r9=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x2000000, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0x2}}}, 0x24}}, 0x0)

7m49.753653111s ago: executing program 2 (id=115):
r0 = socket$alg(0x26, 0x5, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000a80)={{0x2, 0x4e2a, @broadcast}, {0x0, @multicast}, 0x4e, {0x2, 0x0, @multicast2}, 'lo\x00'})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffd}, [@call={0x85, 0x0, 0x0, 0x9b}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
r2 = accept4(r0, 0x0, 0x0, 0x80800)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb995298992ea5400c2", 0x10)
sendmsg$alg(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4002081}, 0x40800)
accept4$rose(r2, 0x0, 0x0, 0x0)

7m49.525547042s ago: executing program 2 (id=116):
socket$kcm(0x2, 0x5, 0x0)
socket$inet6(0xa, 0x3, 0x3c)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100)="89e7ee2c78dad9b4b473fec988cafbe863cac50580cd8b", 0x17}, {&(0x7f0000000440)="9c74dfbf77572856c809ff86bb648daf351a32ad5ea7e5599da7a5b3d468381d8ff50420", 0x24}], 0x2) (fail_nth: 6)

7m48.216311292s ago: executing program 2 (id=124):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x3, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x8b}, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r1, 0x4b72, &(0x7f0000000040)={0xbc01, 0x1, 0x14, 0x15, 0x1bc, 0x0})
write$UHID_INPUT(r0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="6000000002060101000000000000000000bd000005000100070000000900020073797a3000000000140005800500150003000000080012400000000011000300686173683a69702c6d61726b000000000500050002000000050004"], 0x60}}, 0x0)

7m47.252979276s ago: executing program 2 (id=132):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x10)
mknod(&(0x7f0000000080)='./file1\x00', 0xffffa000, 0x7)

7m47.252762124s ago: executing program 2 (id=133):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x2, {0xb4, 0xef, 0x31c, 0x1ff, 0x7, 0x80000001}})
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
write$uinput_user_dev(r0, &(0x7f0000000800)={'syz1\x00', {}, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x200], [0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_DEV_DESTROY(r0, 0x5502)

7m32.20887687s ago: executing program 32 (id=133):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x2, {0xb4, 0xef, 0x31c, 0x1ff, 0x7, 0x80000001}})
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
write$uinput_user_dev(r0, &(0x7f0000000800)={'syz1\x00', {}, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x200], [0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_DEV_DESTROY(r0, 0x5502)

4m22.151981835s ago: executing program 0 (id=1451):
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000090f04000000000000000000850000000f000000850000007d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r0}, 0x10)
stat64(0x0, 0x0)
madvise(&(0x7f0000061000/0x4000)=nil, 0x4000, 0x65)
ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f0000000000))
mlock2(&(0x7f0000546000/0x1000)=nil, 0x1000, 0x0)

4m21.551309878s ago: executing program 0 (id=1455):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mknod(&(0x7f0000000000)='./file0\x00', 0x1ffa, 0x0)
utimensat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000080)={{}, {0x0, 0xfffffffffffffffe}}, 0x100)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x3, 0x17)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="040e04101a0c"], 0x7)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x1c, r2, 0x1, 0x0, 0x0, {{0x65}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0)
r4 = syz_clone(0x1020000, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x40000000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
symlink(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000001540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000240)='./file0\x00')
r5 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380), 0x0, 0x0, 0xffffffffffffffff)
r6 = add_key(&(0x7f0000000300)='dns_resolver\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000280)="dee7030022cf5c6c7bc31bd2599759fafa9e5e1dbac27b0426fc029900000000761ad367dac894f365ae68edf335abf35ec53d6751467ebd2c187491bcab2c8d34fec505fc8a14622dba33719cb230328931deb95ef3fcafb1de27743a93f4715976edec860ab4dc3a4f514173187437437938d275a6d39cea", 0xd7, r5)
io_setup(0x5, &(0x7f0000000040)=<r7=>0x0)
clock_gettime(0x0, &(0x7f00000001c0)={<r8=>0x0, <r9=>0x0})
io_pgetevents(r7, 0xfff, 0x7, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}, {}], &(0x7f0000000200)={r8, r9+10000000}, &(0x7f00000003c0)={&(0x7f0000000240)={[0x4, 0x3]}, 0x8})
keyctl$read(0xb, r6, &(0x7f0000000000)=""/48, 0x30)
ppoll(&(0x7f0000000400)=[{r1, 0x4048}, {0xffffffffffffffff, 0x2101}, {r0, 0x10}, {r0, 0x204}, {r0, 0x400}, {r0, 0x1000}, {r1, 0x28}], 0x7, &(0x7f0000000440)={0x77359400}, &(0x7f0000000500)={[0x3, 0x5]}, 0x8)
ptrace(0x10, r4)
wait4(r4, 0x0, 0xa0000009, 0x0)

4m21.146292361s ago: executing program 0 (id=1457):
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000e40))
r1 = eventfd(0x1e8)
mount$9p_fd(0x0, &(0x7f00000006c0)='./bus\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

4m21.143132776s ago: executing program 0 (id=1458):
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000e40))
r1 = eventfd(0x1e8)
mount$9p_fd(0x0, &(0x7f00000006c0)='./bus\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 2)

4m21.044748061s ago: executing program 0 (id=1460):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x10)
mknod(&(0x7f0000000080)='./file1\x00', 0xffffc000, 0x7)

4m20.971397838s ago: executing program 0 (id=1461):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0xf0, &(0x7f0000000040)={&(0x7f0000000800)=@RTM_NEWMDB={0x38, 0x54, 0x1e5, 0x70bd2b, 0x0, {0x7, r2}, [@MDBA_SET_ENTRY={0x20, 0x1, {r2, 0x0, 0x3, 0x1, {@in6_addr=@loopback, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

4m5.993235492s ago: executing program 33 (id=1461):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0xf0, &(0x7f0000000040)={&(0x7f0000000800)=@RTM_NEWMDB={0x38, 0x54, 0x1e5, 0x70bd2b, 0x0, {0x7, r2}, [@MDBA_SET_ENTRY={0x20, 0x1, {r2, 0x0, 0x3, 0x1, {@in6_addr=@loopback, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

1m30.029319012s ago: executing program 3 (id=2559):
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000e40))
r1 = eventfd(0x1e8)
mount$9p_fd(0x0, &(0x7f00000006c0)='./bus\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1m30.028358694s ago: executing program 3 (id=2560):
setregid(0x0, 0xee01)
getresgid(&(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=<r0=>0x0)
getresgid(&(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
setresgid(0xffffffffffffffff, 0x0, r1)
setregid(0x0, r0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000776fcd8a247f54c8b6aedd76996160a01040000001ffd00000000000211951d9512b3f90000000c00034000ad51d1d99361cbdad7000000000000020900020073797a3200000000090401"], 0x38}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000700)=ANY=[@ANYBLOB="b601000000000000bd110000000000008510000002000000850000007600000095000000000000009500a5050000000077d8f3b4000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f68a7d06d75357f21699cdc6751dfb265a0e3ccae669e173a649c1cfd6587d472d64e7cc955d77578f4c35235138d5421f9453559c35da860e8ef14142b2a3e314422b854421eed734ceb1efeecb9c66854c3b3ffe1b4ce25d7c983c005c03bf3a48dfe3e26e7a23129d6606fd28a697a9d552af6d9a9df2c3af333e2008e11bbec0727cb3f647535deb6277f5696833a71011a7d06602e2fd5234712596b696418f163d1a13ed38a682f87925bfa753f631cd027edd68149ee99eebc6f7d6dd4ae59af7588c8e1f4efab57644ccb1973d7879b70a70001040000000000000000d7900a820b63278f4e9a217b98ef7042ad2a923132f208fd8289eaf8cd00000000000009d27d753a300800000000000000a5686f2fccc33e3e34c3969c5ad781302d40e97a8ad10ce0cbe17366d5ac6af2fca2360a15b80400d52040ef7b28d300747877e176fe4c4b8e40dbf260f5a9f7eee30293c1b163b795d0aef4deb851a30000f569dc8f39943f889008e1ec914faa9e6cd0b3b4b3b5db666ebeb49d6a62019d76459e70b459543c4ac42e53b4ad4c77cff373ebd95848f01864e456969cd28000170996016aceb583df5ee4dd722e8c350af489f9a900000000a0dcc36b3d7c734a9cce0439f832a20d7cbdcda5dff3ba92dd66afb9d74aa222038994dcd3e7784dbea1e51a15b0f1a040cc63177f8fafa3192fc8e5552da1a982ab8dfe31ad1a0968faa47c2069d6bf09c3aa4f0fc128cb578d99b08a150b4cc4b22f6a464c6398c952519818a44a1b223ff502df87865c276588ea478e328e8277e811b99ce1acfecaf8e2c55ccc4b8eae0a61635514e99ffd438784060f23ba74c0b30b1180d935832deb686d789ba1d436d116394534e88492a42b8bf050c719661a2dc50b3a1dcfbc871e5c27e3d7260f6fa589e40000b89db451ff994845f6b49c12e89291398bcb3c06ef1289f74e0b0e2cab592d35f82a69e7284223a171c616b1f0fee6c4711d7aecb69746064d2c096554975d605ebe646302bf3d5cf32a9a09915ae3f3d4eb96615d7b237da56cd5e9904a19e145f25b6d98eb2c019967f553b61d0e80d6913cee9f8d18469a654a239a84a85debbc02846ac5791278f18c6759e3b513a68284d2efc30587e433431b2896a3bd48020af67e9ac071b2dd6dc3b9efae4ff03558fa619aea909c7f2416e7e7da1c51ccc7e6ac27412f728dc6d80da8adf317ca863ed683897321f8c8bb5a5d953d6783b7a06353ee496bbdff418de3e53234df87756eb99e330253cf5da4aa1a9648a38f07e2d302b4165983db4f7b8972923fffa8c03c288512a3a38fbd7c816a44634f7a03fab30811b7b93257bea4369ba46024dee5e9b0b2c3d3324e9b7c1f99ab9bb3f498b1485373b79ec84a67dad4e37575dab87ce55a9a69ed856a4c4410d1242ac1bd1539094a641cc086c2c53e363beafc74ab4e9ff320373705cbf5644586ffe60d293944fa2d9dc18b55f1af5c42f27747bef1ffd0c1766f062d47d61bf9f64e6ee288fa7fc12d48da526527b9f5c318c93ec447cb8b5eee7aa8a1e85696af3dfef96657c0545c8ebd96528d9c28828e5befd80d684b03b6d153da3e3cbd3bfbf4a9375b8ad04a1d241bcb5d5505cb6cc7a44e2e24bd0b1ca4879caaff59d0ce39dc7f3fea447f4e46967855208e63ec988bd2692afefbed2b001205e4b30ee8fe417defa566a73ace8f01f7181de0ef25f1744896a3c38859e6148c42454949cd64b1a888e7fe9c2d86bb01023b6ddeb67f5eb038af3e460c771518a4126c338b0390d459361e03adf6e6b558b3651a0e33d101b5febfff82794203da18db6fcf89715c2d338f78d8b9220171b41f528f857a7cb79ca990de1208777e13faaa9b9cb9e67797b07d9eb9e909410b50c5d981d9a72aa36498b630519d1530ef0000000000000000000037fcffffffffffffff8db8379bd2044c652dff399a9f8bfa4e9c507f049d18837464276830461ee203ba51f6102d262fc9a26bc3638ecce24e65c55da6efaa462f03d0e119c963a8c7a522b59f5a7b44d018cb2648383073d9e032492cae44350bc0a85697f431392eb22cae093e85954af97d6d7b2e6e8f43353062275ad1578a431594243452a2bfb89f91d8eaac038e9e17136e7c698f73faaabb3d00000000000080014573789425c4c32da528d89356aa6d2ae6da082e756c80cf39053431080ea6cbf9997a5a0ddad0b9d12bc3f880476ab32f0feaac5f16e61f7b72b8c9082eec423c6b3eaecfdcc9ec72795e7696421c83b76c2d6bac19bc875d009679778d8ef97d7e05329649d97b0dc54bea9b650873de2d3d702690176e0b23ee5cb5e469a8d1612d611722e6200e3a297d92f8e1de98326c5ef2b89d4e2d47767cd755783e5d865e373338e96ceb8399f296c59b2d70ca27735ecaff62982616d3ac1ab041733bce119d8002a6c8a2b08b32551b2313b1a2ff41b3f04af61c69c85cb2da48215727271bac2ffdeb62d9f5dc4845f1c3f63dc806e615ee8d28d6d7f181e30807afa27f41d0364c746a65a47464db68f3c433d88dd625db35fded2c86d75af88efaf20c8b37c644b6c4e773a9589200faa553bc92f916b75ddbfa18ab73979f46947b35914286d2499a0b8c970000000000000000f4fe74e0c26ab52329bd600627b256ca44dd121ffc8dbb6e5f70cbe03efccac70375b30cc927574d254d1b46c607e8b1ca7d1511568c3ef4b6b885f4582bdcef74e5e010627fc8e4fe00000000000000000000869d9640f06b11df2971909b90133983308ea4f033de613763f32d913bcbe9dd082a6fff197a20730269e6cfd31275395833f1c2b8a50a94c30cceae2a11fe9b9b835d0da73891c0b3ce22dea6bf31e7f51808cf72f44b4455b77a778440795e152dc1b7bb0a5636aa4742ce4d331a47de5836539cdf289176527277b70c8162aaf6f9475418b478329f3565450acfaf07000000eab8cabfa97e35081967bb92a264b07e8003d2f15537e72a1e4ca5ec1e2aaaf8236ecdefbaf512c75e636b6b6f518ad20521f909b12e9bc97e408e0dc82f950d12705f35708bc862196abb27e8d7991b5273987f38c4706289ff4f6130cee76465d487a07a74452f87da2029bd3debd9870335d58d3fe1ac80574fa3ea312997ab81bc6f569ffdb10ba3f20a86d95128d13e0c778998d3b3114bfb07bd61e4bff8a5e2ce4aa572c63e09b44ca4a181bcfe4eec3ce843c65c4948169fe639a186acc2b4a96c6b8d4d2e6d53ab97bea01eab953e6e89e3af34d4ada217bc6fda0fb2095c49195d0d6f365ca80a955b9ec81240a84ef672afa369fc8e3d444ba35d0f51a0065a3b982d09dfc6874fc0d8079b185447cb8a695e132d4d613a529d9c77e2a8f7320ecf698e8a2b170fd601dc1a9767a38b10788e92d1356f6a6c1bcfb2d31b46e735db13f1be80bac1b6be04fd98610000000000000000000000000000139af5493f74751c5e2501a4936bc4a0fa516117f4ccadc692003adee0a080eba2f1059660c0ee0e9aec72d4d0fe095632e4f641b0e34c611c5b3e0ba05fa36542d40837dda323910672a9097d68398fd3539686e4288db0d6bf7cb8a1835f46dfe11865a66ef47e736dada06677a5bca133d6cbc8fe5c4557e51b006bdccd7c5f32ff1d9e8b130f77df09236870fb3de5b87b4f8acc13df534eba329b86670000000000000000b27a2616c03cdf6c009447a652bca9b325e73c0737d5b717945e4fe7a169c5e2c54fc71a4104aa7cf0f5d30e2fcd9503650edbd8a5971a9a1fde5e5df37469ae204a6e899eacc1e63034cbabc5604739881cb82604bed3e53696a0606b26b879ef232a1a038291389593d1575cb79aa8284cf01a7e1a456acab9d8d608ad69d4c4b56492af7004e7ed9d47c5db3d76a00bea7c804f3a3638408bc1636f1009b7f185f51606918eaa0ab6bef11ae3d300"], &(0x7f0000000080)='GPL\x00', 0x9, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)

1m29.950492927s ago: executing program 3 (id=2561):
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000e40))
r1 = eventfd(0x1e8)
mount$9p_fd(0x0, &(0x7f00000006c0)='./bus\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 3)

1m29.869940084s ago: executing program 3 (id=2562):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'tunl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000980)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x6, 0x6797}]}}]}, 0x38}}, 0x0)

1m29.869389073s ago: executing program 3 (id=2563):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x10)
mknod(&(0x7f0000000080)='./file1\x00', 0xffffff8c, 0x7)

1m29.799982453s ago: executing program 3 (id=2564):
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x14d802, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r2}, 0x8)
close(r3)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000009c0)={r3, 0x0, 0x0}, 0x10)
ioctl$NBD_SET_SOCK(r1, 0xab00, r3)
dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x4010, r1, 0x3000)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x989, 0x0, 0x10}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r7, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x0, 0x20}, 0xc)
sendmmsg$inet6(r7, &(0x7f0000003f00)=[{{0x0, 0xf, &(0x7f0000000300)=[{&(0x7f0000000140)="a2", 0x1a058}], 0x1}}], 0x1, 0x0)
writev(r7, &(0x7f0000000580)=[{&(0x7f00000003c0)='k', 0x1600}], 0x1)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r4, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80200008}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000c14010008000308000000ffffffff07003d000400000008000100010000000800030001000000"], 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x8080)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

1m14.51859028s ago: executing program 34 (id=2564):
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x14d802, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r2}, 0x8)
close(r3)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000009c0)={r3, 0x0, 0x0}, 0x10)
ioctl$NBD_SET_SOCK(r1, 0xab00, r3)
dup(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x4010, r1, 0x3000)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x989, 0x0, 0x10}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r7, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x0, 0x20}, 0xc)
sendmmsg$inet6(r7, &(0x7f0000003f00)=[{{0x0, 0xf, &(0x7f0000000300)=[{&(0x7f0000000140)="a2", 0x1a058}], 0x1}}], 0x1, 0x0)
writev(r7, &(0x7f0000000580)=[{&(0x7f00000003c0)='k', 0x1600}], 0x1)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r4, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80200008}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000c14010008000308000000ffffffff07003d000400000008000100010000000800030001000000"], 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x8080)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

22.199259004s ago: executing program 1 (id=3111):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket(0x1, 0x2, 0x0)
lstat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000180))
r2 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000040)={0x0, 0x0, 0x8004, 0x0, 0x0, 0x8}, 0x20)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r5=>0x0})
r6 = fsopen(&(0x7f0000000100)='fuseblk\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f00000000c0)='source', &(0x7f00000001c0)='source', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x0, 0x8, 0xffff, 0xc0, 0x1, 0x9d, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x0, 0x1, @void, @value, @void, @value}, 0x48)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="480000001400090500000000fddbdf25021f00cb", @ANYRES32=r5, @ANYBLOB="080008100002000008000200ffffffff0800090006000000080009000000180008000200ac1414aa080009"], 0x48}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'batadv_slave_1\x00'})
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r7, 0x84, 0x85, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x27c0}, 0x90)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r8=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r8, 0x0)
openat$ttyprintk(0xffffff9c, &(0x7f0000000300), 0x44002, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=@report={0x4c, 0x20, 0x800, 0x70bd29, 0x25dfdbfd, {0x3c, {@in=@local, @in=@local, 0x4e22, 0x6, 0x4e24, 0x8, 0x2, 0x20, 0xa0, 0x2f, 0x0, r8}}}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x48080)

22.198905567s ago: executing program 1 (id=3112):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='romfs\x00', 0x208090, 0x0) (fail_nth: 8)

22.049387924s ago: executing program 1 (id=3113):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_G_FBUF(r0, 0x802c560a, &(0x7f0000000140)={0xc0, 0x0, &(0x7f0000000040)="c15ecf36b919b18ca391246a1d844f6efd1bfeb97457e2ffe4bb857116133120e3312978901d8663b9742bc9ea8099cbe1d55cdab3c9c9284c406b8ac95f0ecd6b26615c5eeaa7049af1b6a6527e31b3e0c902611d67fcb0a473c9cdec43f920f9a1a60b7c88053993ed76588fb2930a47797818d707ab3f59305c172f67389b2d508aa7af2a5937dc7fea9c850d0aa643920c11548c24a414982b1a0a02a1e69c5da877b039b240a17cbecb5070db1630bd0a7d25871f8c95208bf59277eeab97b1ca90cf7c6c1b60447e1cbc807e72768c1b7e435d7e548814037e581264d99e428155bce9e210", {0xd, 0x6, 0x49323159, 0x9, 0x0, 0x101, 0x8, 0x10}}) (async)
r1 = io_uring_setup(0x6e48, &(0x7f0000000180)={0x0, 0x8710, 0x8000, 0x1, 0x399})
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(r1, 0x1e, &(0x7f0000000200)={r0}, 0x1) (async)
r2 = fsmount(0xffffffffffffffff, 0x1, 0x0) (async)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000240)={<r3=>0x0, 0xcb, "e7e7ac565a17ae37734c5529c2bc0e0c2ea9ee6817a63a57d367ab4232b0ffbee25c5e2e13c5ca0405210763be090d5b749e766559d09ac3621a5767636e2122dd404fd1609c71013e22c7638f98b4375fb0d41078bbaa65f1cdc89e7c31e6181f377271462a3b98ba7e00f52ab7e0d6f32a221d660b0f3177dfc11d6d705716dcf4b1bedc19f5172de68145c2c2d187a97cc8261b9a39e577e59d1b7231db2a63f65b7d2c78b62390a9befb94ee224ad6c18192b720a356825dc831582de7dc390f3843e3776d5bcad083"}, &(0x7f0000000340)=0xd3)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f0000000380)=@assoc_value={r3, 0xaa7}, &(0x7f00000003c0)=0x8)
pipe2(&(0x7f0000000400)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x4800)
setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000440)=0x4000, 0x4) (async)
write$cgroup_pressure(r4, &(0x7f0000000480)={'full', 0x20, 0x1, 0x20, 0xdd}, 0x2f)
sched_setaffinity(0xffffffffffffffff, 0x8, &(0x7f00000004c0)=0xabce716) (async)
syz_open_dev$video4linux(&(0x7f0000000500), 0x1, 0x800)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r6, 0x84, 0x16, &(0x7f0000000540)={0x5, [0x2, 0x3000, 0x6, 0x1000, 0x7]}, 0xe) (async)
r7 = socket$l2tp(0x2, 0x2, 0x73)
getsockopt$inet_IP_IPSEC_POLICY(r5, 0x0, 0x10, &(0x7f0000000600)={{{@in6, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@initdev}, 0x0, @in=@private}}, &(0x7f0000000700)=0xe4)
mount$9p_fd(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x10822, &(0x7f0000000740)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@cache_readahead}, {@nodevmap}, {@access_any}], [{@uid_lt={'uid<', r8}}, {@flag='sync'}]}}) (async)
getsockopt$bt_BT_RCVMTU(r5, 0x112, 0xd, &(0x7f00000007c0)=0x5, &(0x7f0000000800)=0x2)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000840), r9)
clock_gettime(0x0, &(0x7f0000000880)={<r10=>0x0, <r11=>0x0})
clock_settime(0x6, &(0x7f00000008c0)={r10, r11+60000000}) (async)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000900)=0x5)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x810, r7, 0xe8b5a000) (async)
ioctl$CEC_S_MODE(r2, 0x40046109, &(0x7f0000000940)) (async)
r12 = syz_io_uring_setup(0x5625, &(0x7f0000000980)={0x0, 0xfee2, 0x0, 0x2, 0x331, 0x0, r5}, &(0x7f0000000a00)=<r13=>0x0, &(0x7f0000000a40))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r13, 0x40, &(0x7f0000000a80)=0x8, 0x0, 0x4)
io_uring_enter(r12, 0x2199, 0x1691, 0x40, &(0x7f0000000ac0)={[0x10001, 0xab]}, 0x8) (async)
umount2(&(0x7f0000000b00)='./file0\x00', 0xa) (async)
socket$inet(0x2, 0xa, 0x8)

22.048011252s ago: executing program 1 (id=3114):
syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000000))
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x20008045)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80181, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = dup(r3)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4048aecb, &(0x7f00000001c0))
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f00000000c0)=0xffff)
ioctl$KVM_RUN(r4, 0xae80, 0x300)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
socket$packet(0x11, 0x3, 0x300)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f00000001c0)=[{0x6, 0x3, 0x3, 0xe5}]}, 0x8)
sendto$inet(r7, 0x0, 0x218, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r7, &(0x7f0000000fc0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001f80)="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", 0x167}], 0x1}}], 0x1, 0x0)
sendto$inet(r7, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

21.04922783s ago: executing program 1 (id=3129):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0, 0x0)
r2 = fanotify_init(0xf00, 0x0)
fanotify_mark(r2, 0x1, 0x50000003, r1, 0x0)
socket$packet(0x11, 0x3, 0x300)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="68919467353ac41541a0c1e483d8054103000000", @ANYRES16=0x0, @ANYBLOB="00022abd7000fcdbdf2514000000640001802c0004001400010002004e210000000000000000000000001400020002004e21e0000001000000000000000008000300060000000d0001007564703a73797a320000000008000300000000001400028008000200020000000800020003000000"], 0x78}, 0x1, 0x0, 0x0, 0x4000064}, 0xc010)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0xa0802, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000240)=0xd)
io_setup(0x5, &(0x7f0000000200)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000780)=[&(0x7f0000000040)={0x300, 0x0, 0x0, 0x5, 0x7, r4, 0x0}])
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f00000002c0)=0x20)
mmap$fb(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000004, 0x11, r7, 0x6f000)
sendmsg$nl_route(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000810500"/20, @ANYRES32, @ANYBLOB="0000000000000000280012800a00010063616e"], 0x48}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000240)={'bridge_slave_1\x00', <r8=>0x0})
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x28)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r8}}, 0x24}}, 0x0)

20.849624865s ago: executing program 1 (id=3131):
r0 = socket(0x2, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000280)={'sit0\x00', &(0x7f0000000200)={'gre0\x00', 0x0, 0x700, 0x700, 0x330, 0x7, {{0x5, 0x4, 0x0, 0x9, 0x14, 0x66, 0x0, 0x4, 0x4, 0x0, @multicast1, @empty}}}})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000ec0)=@raw={'raw\x00', 0x8, 0x3, 0x490, 0x364, 0xa, 0x148, 0x0, 0x60, 0x3fc, 0x2a8, 0x2a8, 0x3fc, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast1, 0x0, 0x0, 'ip_vti0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x364, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x368, 0x0, 0x2, 0x4, 0x0, 0xffffffff, 0x7, 0x78}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x8601, 0x6, './file0\x00'}}]}, @common=@unspec=@NFLOG={0x6c, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x2, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x4ec)
times(&(0x7f0000000100))
add_key$keyring(&(0x7f0000000280), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000080)='trusted\x00', 0x0, &(0x7f0000000040)="30800621", 0x4, 0x0)
io_setup(0x0, &(0x7f0000000000))
r2 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc3}, &(0x7f0000000080)={0x0, "c6292b1452167bc378c7b3b90de001f6da29eb74498244ba616e31c1c700d4286804d7a5da86cab64254c800c413b7051a641d91c12ff065301a27349baf7e1d"}, 0x48, 0xffffffffffffffff)
request_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, r2)
keyctl$get_security(0x11, r2, &(0x7f00000013c0)=""/4096, 0x1000)

5.456446936s ago: executing program 35 (id=3131):
r0 = socket(0x2, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000280)={'sit0\x00', &(0x7f0000000200)={'gre0\x00', 0x0, 0x700, 0x700, 0x330, 0x7, {{0x5, 0x4, 0x0, 0x9, 0x14, 0x66, 0x0, 0x4, 0x4, 0x0, @multicast1, @empty}}}})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000ec0)=@raw={'raw\x00', 0x8, 0x3, 0x490, 0x364, 0xa, 0x148, 0x0, 0x60, 0x3fc, 0x2a8, 0x2a8, 0x3fc, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast1, 0x0, 0x0, 'ip_vti0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x364, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x368, 0x0, 0x2, 0x4, 0x0, 0xffffffff, 0x7, 0x78}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x8601, 0x6, './file0\x00'}}]}, @common=@unspec=@NFLOG={0x6c, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x2, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x4ec)
times(&(0x7f0000000100))
add_key$keyring(&(0x7f0000000280), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000080)='trusted\x00', 0x0, &(0x7f0000000040)="30800621", 0x4, 0x0)
io_setup(0x0, &(0x7f0000000000))
r2 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc3}, &(0x7f0000000080)={0x0, "c6292b1452167bc378c7b3b90de001f6da29eb74498244ba616e31c1c700d4286804d7a5da86cab64254c800c413b7051a641d91c12ff065301a27349baf7e1d"}, 0x48, 0xffffffffffffffff)
request_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, r2)
keyctl$get_security(0x11, r2, &(0x7f00000013c0)=""/4096, 0x1000)

5.453376586s ago: executing program 6 (id=3207):
r0 = socket$rxrpc(0x21, 0x2, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)={0x2c, r2, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40084}, 0x0)
syz_usb_connect(0x1, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a86200000904000002ca744d07090503020000ff99090805848f"], &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

4.379650878s ago: executing program 5 (id=3211):
openat$uhid(0xffffff9c, &(0x7f0000000400), 0x2, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000400)={0x1000000}, &(0x7f0000000000)={0x1f}, 0x0, 0x0, 0x0)

4.31959917s ago: executing program 5 (id=3213):
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000200), 0x20401, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket(0x80000000000000a, 0x2, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000140), r0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x82c02, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
r5 = socket$kcm(0x29, 0x5, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0xf3e, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x4}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x20000000, 0x440, 0x821, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000], 0x0, 0x200306})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4.048383532s ago: executing program 6 (id=3216):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0xb000000)

3.889675174s ago: executing program 6 (id=3219):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = getpid()
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
fcntl$lock(0xffffffffffffffff, 0x7, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
sendto$inet(r0, 0x0, 0x0, 0x4000814, &(0x7f0000000100)={0x2, 0x4e22, @local}, 0x10)

3.889368818s ago: executing program 6 (id=3220):
clock_adjtime(0x0, &(0x7f0000000100)={0x19b1, 0x7a6, 0xffffe6be, 0x2, 0x0, 0x5, 0x101, 0x2, 0x0, 0x2000000000a00, 0x40, 0x0, 0x8, 0x0, 0x8001, 0x4000000, 0x2, 0x0, 0x8, 0x0, 0xffffffff, 0x4000ea, 0xfffffffffffffffd, 0x0, 0x7fffffff})
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
r2 = socket$kcm(0x11, 0x2, 0x0)
setsockopt$sock_attach_bpf(r2, 0x107, 0x14, &(0x7f0000000000), 0x4)
sendmsg$kcm(r2, &(0x7f0000000580)={&(0x7f00000003c0)=@tipc=@nameseq={0x1e, 0x1, 0x2, {0x41, 0x4, 0x2}}, 0x80, 0x0}, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
syz_emit_ethernet(0x86, &(0x7f0000000040)=ANY=[@ANYBLOB="ffffffffffff01030000000086dd6012000800503a00fe8000000000000000000000000000bbfe8000000000000000000000000000aa0200907800000000605b29ab00001100fc010000000000000000000000000000ff0100000000000000000000000000010000000000100000053200fb36eeca6fad50b375a22a584d16ca550000000000"], 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
syz_io_uring_setup(0x1002943, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x34ef, 0x0, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000003c0)=ANY=[@ANYBLOB="260000000000000000ff"], 0x20)
syz_io_uring_submit(0x0, 0x0, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @private}, 0x1, 0x33}, 0x0, @in=@loopback, 0x2, 0x0, 0x0, 0xb7}}, 0xe4)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="5800000002060108000034e4000000000300000a0500010006000000050004000000000014000300686173683a69702c706f72742c693e000000078008000640fffffff70500e584b8ff7253430500020000000900020073797a3100000000a0fdb7eaa236b453686da765a46042cc100f67f651ba46baa5d07a425224e3c1fa15ec832558097d86c4312e84dff161f7413ffc06dcd2b2eef76b8cd55c036670bf59b7a2691ed9409ca5e092b6b9527988e30f2d428c667e7afd518a1eeac37975351f5d8a1f04991d586cbc5b76182fc9f15cba2526f64d9897d95c40ad5142fbd36e1b32a0bcee06613e1ded245cb9fef49ac4640000"], 0x58}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)

3.598546182s ago: executing program 4 (id=3221):
r0 = inotify_init1(0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x84)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
inotify_add_watch(r0, &(0x7f0000000440)='.\x00', 0x12000021)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000001c40)=ANY=[@ANYBLOB="85000000a800000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x8, 0x10002, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0c000000040000000400000009"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0xffffffff, r2}, 0x38)
chdir(&(0x7f0000000140)='./bus\x00')
open(&(0x7f0000000780)='./bus\x00', 0x14117e, 0x0)

3.539342055s ago: executing program 4 (id=3222):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r1=>0x0})
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000000)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, &(0x7f00000002c0)=0x2, 0x4)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x200, 0x0)
mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='iso9660\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_SET_MESH(r0, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x70bd2a, 0x8000600, {0x0, 0x0, 0x0, r1, {0x1f, 0x3}, {0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0x20008040}, 0x4000000)

3.309561514s ago: executing program 5 (id=3223):
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@random="8b6869c6cec4", @multicast, @val={@val={0x88a8, 0x2, 0x0, 0x4}, {0x8100, 0x0, 0x0, 0x3}}, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x1, @multicast, @remote, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @private1}}}}, 0x0)

3.309137847s ago: executing program 5 (id=3224):
wait4(0x0, 0x0, 0x1000000, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_MMAP_OFFSETS(r0, 0x11b, 0x1, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
mkdir(0x0, 0x2)
r3 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r5, 0x4138ae84, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="850000002a0000003500000000000000850000000500000095000000000000001b90b31a08f54ff40571eda5c56ad924a10c7b1e6003c9325fea577f8e56fe212b358f1d0838c8119ed74e74552ce4e6c8093375e35c8250f448a6a31260c2f9fbb70400000000000000b08b7aab5fd5d24dcff1ca14025b73c2da8f550900000000000000c340b111fcee90d6d90100000001000000babdee5b76635ce4f35f985e434196b5699ba66b9cb05e5259a1f61cafa3586a2228c4581dc29931a4ca0f4967706596014dc06b99b9c9ba49b34e516e0baed5cca7aeeb0d5dcdce0900000000000100ef363c9f5ca80b125dabc3adab1179388e76c44e7328318078af6a0a1a248a7b2ca42a05f4b033e9d8a7880a116a60bd69a463a75045e8950a8e03000000000000008c4e7c6037b670a823e59267ae980c73ba09410000000000000000000000000000000042f7ae3d341b2a8e0c1681be5db38db3bf61f7ede5efbf55df1ee21b8e21b7a4a0bbc1d6a5483477260c03bf09959a71dac6b9f67019fe6ddacf40aed79f018c9fb9e9fc69425618b0d46811cff20f7b13e3e35c670b87bae02b63ebb47ca8e16be95b2ec5bde931fd425b3944783b922733b688b96e998bf39a2213f05ef1aad563d787d58d37cf2236ee2f00decc43c496fe7b27f0d98c0754bc7c305726ef314eb082d2989f2481d71f96c2d175145cec2251d7c080c782af32edd0ae00d83cfcd3d5a7abb0175a6be378acd0bbdc5c"], &(0x7f0000000140)='GPL\x00', 0x0, 0xa0, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r6, 0x0, 0xe, 0x2000000, &(0x7f00000000c0)="61df712bc884fed5722780b6c2a7", 0x0, 0xa68}, 0x28)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='cifs\x00', 0x4, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), 0x200000, &(0x7f0000000200)=ANY=[])
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x28, r8, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_TX_RATES={0xc, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x4}]}]}]}, 0x28}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r10 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace_dev_match', 0x0, 0x0)
pread64(r10, &(0x7f0000000080)=""/75, 0x8e, 0x0)

2.959431586s ago: executing program 6 (id=3225):
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000021c0)="d56cea33946c0eae3241d3604bfce89adddb2eb96960338db7572fa254eb7c69dc0cb526989630e26224c258c8d70ccacc5564d67723f4756c0399174c5460c4995942d24092c36dc820e97344798b5bb45423f853bf50e374323abacf0388cd091016b7a3d7843f4d3ae1658bd34d967e3323a64908442788dbc99c1f4248da53fb5be2c8001236b994ca594e3b3c588beaf3cb1c32c072d768b9e665e7d87044fdfc1fd6452593e6793963153f3850bf85042a5c139799ba8f6cb8d877fc436c4f1601270d6e29d60a4c80d6315e46f4219494ce897127d0b76f5d681e90f4e9282468ef7993cd92076aed266c1db8b81b93adc4969c9b89b32b8768c9f39f2d148e933dbb651746a9364f49986ef73b4c29f647b82b83216bb8179fe5346fdacdc5fda4bd48875cd2f1cf57a0c9a91e059446bac310a6d68948675c35a8e442168fd84d78d9800e5b05bdbce3a6eac65bee7279a3628f2a08931d3d52ce490652c20f8ae529eaf24bf421dad976c68b234ee6f6210c9f9aac3a55c6939d6aa3805b95619546264ff3ff82d0dc690e8ead61b6ed528c3c117cd771a3b7feb214ce8d720640d97f14b399b7f46dc4aad83117e8e642ccb117d13f345536fc3801c124cfaf8aa7aafff6c8df3fdd4469c077eccbd8ddacad80d9113dfde26ae67b226185743b2d53667fb3016fe114f87484ab614ddf0887c4b2c85351ab21a0ece6c066a154b38b4d7c1792d2db2cc5f8ceb42078187949d354b7a08d1529f3d10814757179c860db031dad4a3dc13ca01d1013238ed5f7a9674fcc77f0d34e2118fb851c970d86ecf9de1cfdb8d3ab197480e263c3207c3d7ebe17f9547c7c56b08e83de875294d0fd68df1926ecac24350b2c70bd73e14122ed480c564353d34049e67c26036fc35d04022cd35d6ac00756d3b8550bb22ae80a4bd630a00268d07fa249b0bf545dfbf01bea2f12b30738c6e13156244eb24e6d69ba7c3acdbbefe8bbc06b821aebf836ca07a3cc7b6b24686ed8f3b23085c893e72188b797651c5ab5cceb1465414a325f793a3af6d06eed7eb734ad05bc1f6619e8485259f570a482a67273ee01fe15dd938afce026f1111c7a38ed6d1aba34f009ce1e99140fd0db2de74150541fd48dd2ec5b1d15669de2ffe3a198184b6186ccda31aa64c585ff8cb65b67fe1455753895a88b6ab4c6bf1bb8329739178147e6f15801bfa707bd9ec9da662573ce07af684bb7c880a7d63b0a0a7300881408c44e95c679ea32b0eab845d0b333f245e8d6006258678704aa8cccdaf80cc46138d5b7a0804fdfa34c91d61a0d2fa6c62e7d1a675e5743f845ab40ea5df0182d6eb9781905c94751c75a411699a76f48433142c5f109d5dfddcc0b1dc6254efd5ea50d6ffbc7b9ca031e1a0123844b63c48b964645c6d24707582825e219bcd61677ed4fc45ee1f4be91b4c1b856d65a86acf22b8b0d588bc473248ac040326b1490c2fea24bc0c0a721e2ed63e39973cd4d38df1001dba9b9d995c229655dd26f3cd3d64077ec111e2c370717cb4cd068e0d3a52f1027d3df953e1f1ac768a7215a3695722b1b6714ce43801451a9532212b651d073c780d61712aebadd145c1cd95c1dc0dcf51850046ae5771e365f45858a36e48afe563ec0afee3803ff6a35bc25217b53eda39bb813b8d3d728c21a0b80d014003143666c0d1398cc46a01aaaf97117edda217f984010e7c5cf32535a669d4f11f6b70e3a3b823987ef7c9f878415063bf05205e13bcf7acb287bd0bb0fce77529a711f0ed145ea2ecf2194658dff17c5681cf8c7ad8521d235a705292af4878b3f124be2df661026c091d6c07aae1a74c919f7478d1083f70b3a0fe00c2e220ab998b4595268b6f7cabbfc85e59dfb6ab7a794cd3fd70d5cc4d70ca933a4452df5a345cb31f3267de53519ba39c915d492cd4652843f1d30a5fb311e3b5d868347969f013c5e3b4841b22240abcb61a14ff567186766ce8f6ae64877f672835dbff4fcf19c8230d8a402397630effb698a8b0c9a28ae028d7938ffde488fd64113085bce504cd0551e0eb3730c3f781cbecf0c41d2338766d3f6096661c1f1bec3162b8a0c4099fccd9480e821df8782c2e070530befb62bccd8539fe9dc7d8d3f9bded1bb34db3f2d6050885c8f1d57f5e603f629de7491f5fd9fafcceb565abeaec838b10a763a00a4607d4330bdcedc066d8cf9790d806e03c219866bb8f053a6e602645436d1f469df1d5008f5dcd4bdb7ce5b76ec015a8f4693cb2a63ceb2be00bcf221f0ca32db4efaf8f7022622b335fa8dea4afdd86be10be6c4d66e5f57416add4480509cb98cf31cdda84644eeb782eea041d4bc0e005a20bccc3c4a08cefcdb91cc2c61d9231c4e36e96f6edd2133f9b34e7da90ce20d1c60ff223c6a204bb942766a359b923573bbbaf2a827d79e4f649e79a840216ac4ddb3409c94e71ff08d109bc3f0cf6583219de7d7131a956f835ecf5c131a0b1e056a86d800a0204243f3b695029578c064306a31db53f28a8f0c0302486cd05970904e9b5c53100ac1aabb3110a89820e4d8307c3d46084999d0456c53fec61a9242b486eb41a90f3300fdfd0d8a472e8da7a842588721d1df1f5e4cc425efebc75a904ef4cc881346a4bc23eef4d492e3efccebab86ae4213f42671370579ee7f8341396e9515619e100a8fae2c5cba0139a088579ece7a603c8b8bab9998223fe862dff8480aeaa5970c90b894e5f71c2784e4dfd50ed3e9ed91036e8356c09464de13b4a95227203133b2c2c71cd6323492f083bda58ad7721b6666b9cd93f93f0288482813fd8aade02cca81cd35257e023504ac4f86be1c7a810b67c6d7077f5cdbd305b618a05c03d196894bfb1a6ff511e59ac8ce45d16cee95e1de0797a543728caaa43e5ae42a12b6bb7910d18d4e1ea89d264491287eb23a76095a12a39c46a7c85349e2969edaed3c1fa6a2150494f63f4c98c65fcdd650ac7424ac1ae64421294356ac1e4dbf9d4c817f081f4f7751ebf56788d799bac29dc0bfe83ead7ab3e338b8b84df4cad2b549aaac4e6048a6fa8f8f6f1f7e0e51c8b3c872f18c466e590222b03230f46bc8e9a0171bbd2096c7a480d6a6f29bd74b60105bebda42e59cc830c4b31f6c52687b4ec2ba869149ae363d711d099f94ceade1ada193e931ed9aea0a280ed5f25ad5ab3b4083f140ca17b43e5f6aef2c24a28a0262c80a040187e052ea7d54a528b6fcc176ed3afc07fe6a661d050fb4a3a6abfa3dac5f3230540b45af060781cb5499c2894d6a4a2bf908ddd48d6b34207f56c31229e206c88db3552ceb6e82a0fa2bf7f97baf603d37d6a8b1f2b1f5f95b251129ed05351681908b7cf5cf6cc86dd854174cc19713b4d262b021952b6da5f20f57bbacca62f5b7124409aa625bbea59819baebc1bc2dd188feba48c998d0dbed60d44b8a4f0ac28f6c1c8c9998f7406f1a34e4ce902be2420f7ff51a5ab3b1faa86ab2ec1edbea2493cae090abde43ff27d685c993dedb24eb255772cc56fbd104f4f5275f10d54d7cacb8cbf188ae1a4d29ea880068fb2696b3ba6e8a7c15939e1f7c394ab4bd4c4bef2383121cbeb18646a8e013d570cee3eeecd7fbe84a619f8aa2e34f2e1e9b99d0c7d7d179d9df8d2e2f1cd7ba2c7e60166dc14e5e4ed9c41195935e2884b5bd0057ed0155a5d4c6482e8f554e4cd0d0aef7d6487801ab54d54eb41755d833ab83883b40f47595063ad2a0fee5c661f86b8ab04ad0047d988ad86b3c520eb78dc3d750a57e777f5d766349f1a687e090f744206cb5d048346061b414060f6826d8a884e93f73f1f1f4cb8bd6e8d1215d436d390dbda35b555f550e11e6d8008fce1c429bd9bbd04a1fbb9de28663c1be4d8d7e506bc681ada28a69014b972919b5f70cbb770349324c9af0b7ee7ff4cc8bfe807fb9faa0a69498448b22192d578a1e82582b943051beb543ddca8b643ee6c76ee32278aa8bc92b44a8439a24ed5040545349ab05e831d4511a8da03ca539659585b2267a73775f1cb7c2c5548d3508c896f99a8e5cb55160ab1267e320ac2d7c8f8b57079dd14d301636a1374e24541f8d453978998ed256b381bcf638bb372ce1ebefb341656c02f4092a7667ffec5505e4938dcb03d404654430e244f9f7f7d0fb4189a93f7c2bd7a4fcb3ccff79e41a98adcac3e4c19eebebaec15bd8cea1df0e509cdef62ae10c66734d162caf35a6e511baa717f769c2e449892224fa8ae78de9138cf6ea1d939998a8cb68b0e83cf604e03b99634796d3d495e4617f8fdd9764631e7ed6eafa797deb1159259777bf2915d48b63286f6d6528ad4ca5783609263d9a03aad41ec8ef1e2e1e77734d27229f801192be238468854945c20dab4e1baff9dd593361efda1de95e04561d33cd73a45dff5f85b2e85b0747a49345ac8d38add8ef9c14685eb3d3432f3f994e3ddd4e45b16005870485253afc4f08d8a6d8023b722284d11d56c6ff9209a5bacb7ce1708244bd21878b8cd5c13ab453bd589f6196322de9faede39ce6f94c75d008d2d7ced27a2375cc62c3d5c15c1c4301a01299d8f4c41e5a44e4130e9555a356d6b19728c7d3c86cb9a1ddf906ab63a9447f8233bcd09bd74cf9749f085f0c4689ef40dbc41a7a299f0f891d9d0d3e39409d4d774da53bfb6e8ce668ce50885558e909add2cb9bda2f7e9232541b1a7f742a99740f486ef4f7c98e4052f2da705c56a18d5a8289ae6cbb9dc7de13a8cf420b7a930abaae813b40517d84ae984dfc94cd1021e0e4a7a9e7de841018d474083ca28a829ee03fe625cafcbedadcdef6621ccd679fcd9c9a9ab2136211f8c9a679895aa39facf2d6668e5098b3dd8e0ad78d8caf250dc38f2c9518bccb353ef3418d3906827514c1959d58344ee11a0ef1c1424495cc1a9910187685a47d6dd91f07e5081c5ac3f1b6e363069694dd9072684c5ab0ba56157c10f5fa8409e5bc43b38b31f24a306ca5f7e3de9a392eac1984e877ecb3dfd044f1449b4ae9b586051b1780c0ce462919f4a4b54ad8011d013c3962fc6697d33c2dc6771fec664c82cb16144619b207deb4391866d6c1976b945c5959d19018f15376ce3b05666747743527f22b54171da4dabee2f4e469a5521067de4f92e2bad02e15e812b6cbd27ec88a9eccf600ce7f5643392da9ff6b6412f8e7c68d8c8b9e0006e41777e2a1363a9556befbbb110dff3a84b179da3838acde0b25f53798733a9fb463d76b630aef7c8a43f6219482b34b893fd99cf3a013ecefde7c5c6528e304c1868ff3fd8dd5aba348a05dc950b1c4c281cbb28b800d6d0da180fdee06ec3bad6f97180295ed1d77078156a885b5b0c501ea563e8871adb97dd6052de0ab369bf2d98f434bb2d172d9967bb73d3eba6b52bb8d55d8963bf58d310afedb51c0f94c7814b6da30fd8056ab7be74ac31b1b75c217e3ab93eadcb2d253e5d8bbe47c0f1a411a9e502cf4301d898d905cd5db828e56a722394fa11cca64a03a42e7fc1b3481b71ca0b6a3d9bd1fc8229f7f9d3e6aa0d48051942579fb759201d4715db9a2d399e0745a66dbbd571accf1f2e15573ce832e91bd1f042ab758d9ec13e354f38454cc42668c8d60358916f7e937015f6c38732bcf6131ecde001892cb20fe47153e7e23b1cd2fc4a22662e7bde09f7df10fcbf475783fe23a0fdcb2c3bd8b28453ce523ac19ff77e68c3e9fa0193b796ea68f44132b3a96adebc04181e503f52be4778ef422ce3e6ca38514fa18b500ca518590479e8c73a7942dc2e237d82cda953ae1b296b97ee8ed62e2e755d6ddea7c0334e1b8d76c278bdc454724003106cb6fdc85340d1e784ac8b6551eaabc33c502163ce0d401627bd22ba6be90089372bfa3f91ee745e45844ef8dc0fe3936bef07f9c1d3aadfa4c8e99be6b038bed6beb9597add881da2acc1a3a471f500d68f639cd2bf6f4afab919a2cf747bcbb42b95684e8741b485c3297cf07c7bd98d6653421b61f701a06b82be0fbeecd32eb00feca9c5732bb5e565bccf8c9feb27a50760a785bbb50402768cbd458811e284a604b3374faf3480e1736743665617de9c32fd10e37105ac6dd5303f1a6dc78950bce56215c2a2f9e0ccbc0bf9fe8ccf7647ed29e2aa4948689d681a7a9fe582631338f3eea3df846f28564038ab75aa2a8ee5416b66ceeda9d8f56ecefe07f6a21ace83a2e15ad408d0a480f56708e3d1c96020b124c58f6ff5247f73aff7f77d389167650b8a0b98c97f87a1e5d6c08fa99874ff144bfa905e9da3812f010eeee00f3c9b594450faab5342e1b6e98fed5714a802b67b3e5b1964a62606aacb8222efd4980823f076675ae859e64de7b08f7a0b3d8bc829e1a93eb3b4975b4761cd7fa743e393da537c91f658ea2b23c94244498cdc4bc32c8b9859b9d9792eeabdce635b2d61c311949204826054dba0880505e2b53cc3521fa8b68bbba2ec05050bd3244c02752af1555625ddf50a3656c0043005c43c26a2dc907d5dd67efa831ad974151067b436a75fe99b8c94c9ca9737279fa1aaa09b0108c48c79c7e4ec1eeccfd43aa8e7ab6cacf5a956fc47d4ce77fe719d6eec1730d3e3b3be71d313f644177b6d16df0180848c28b850fbf71168a1ee4e5639bc46f2555b3984dbb91520538dfa6a1905abfb7238ff344d0a7d760f040718a57cfb56634e7de7584097f69f87630693bcf410796266cc3f50302feacfb556bad2506b7191023817527dfe5973101712bda922472076633133a11a76e8bc7d763a2cdaa53fa8d47d442fcc572f791d66d10d8d6a9058ecbbcd6d3dbe45d67b75e1091dd0368bea33ef0f56ba68885630429c24800922062e1066f2d4c4b795332ab03239548df4e6e01c432fe5eb29e8e63f6c7ba4f2edefa208c69e781786e4717c2f71dc2032a98cf1e6d66c10831e17ee776edc6b060ae20d025dc570a88e17da771acd32b7b93d46e43a917b8e2ba8232ad2707324b9b04dd8ee50c3c5a4372c0b1461ab2b7424faf00c7162bd8e8ffc7fadcb055403b0fa7087226ba4330e746af97a3f915f0b9e105759e81fe94a0df0cd6c324fb0b871491b5516c2fbc82c77b07159e3f4c0b7952b74cb4e203a69f241485191e1afc76d12a56db065b0513a41582f655340603c73cb39b728c97d1e919ecf963b91ec2282d25dc426db873394055beb0f9ba20545e2465ce2d0d962f42e1e4c79bdea4cd2829269ff7ef650bbeb5083d39dc7aad668af0b01c521192c548857473b29991f7bb917b5814fe945f4c3ed9bbe0563f4004b391b76860e9fd6b7c0baae82e4ac033f62a2c6ce6a2311b8700b06b5215e604a9b99d37e00450fc7790e893176e9fecda220f838a078a8ef7da7d499b1fe0eb8780c4b9705a6a10674e61b5c228fae1c13488f98c10c1792fa40229dba44b1cb534f9fab6a14407687761d738c91f4b8d4371a1de1a47bde0563a6fc88c4886be5d48c4cb89078c255eb1639598379daf50a672cbf4d8add2d4af6c02aeb1d0f86b611abd363409c7c7fc0b66f307ad3df24241fe06d0f7617d6c3987bb9e5d8f1712aebf095fad19b3b4fcb9cc4fb39012f333c4b040666259ee7bc43cff299a527a8914d71324e91c774b84e9392e615453e9fc648c539059b66f780c888892fe8b30eba799ed18fab08ebc3b9da8bc12a249456351bc0ebafc9f54d5d24697fb53eeb5e734527d690620989f605f57dc65a15a754d304be592acc616cd528b6986064b4457b96cf1fb0ab383a0585acf9887b18e1d6d3aff1e7f2328ea0313a2b36f6f79d671d9ddc4d34fb8fb55a596b2a16c63757083fb4bd01be2e1d82e47c5a44e052279097c5a18feae9884e102cf087611a3b94467ad61635dae6275974f6e6ca7a42ded0ee4577574d56b142853a8c955d92d1eb780de11dc9289acd193214ed4c9f5f26d0481cb3c0c0b8d4c9ad929c61ffeed66bf2e4f7018049593b99358d93559847d55654cee93da30f6578d2e295909791d227a12c09cd4a0edec25d3155086b64a787997a53265cbffb7fe6a2bfd589e12b4d0e21a600276e920397888443584aa99a06d7cfef8e68eeab8fa739c3d8fb74581ceff295110742e763320bed3a4be982b3ebed15ecde37e849aaa91959327d25149f38854ea1137f870aff99979e5e74cc9e45be12e3f0f9912a0955e718a4917e835bca50f43ce92a6bc60ed006b8f623fbacebbfb3dcb4fabd9941a5487c6f637de9a2005a6bc4062e1210a08a51d6f8a5e3f6f97fe90dc7e2e21d4d2f038c0fbc1918aa00e230a4a0e5c41a4808fb9a731271fcc1e73713c9592aa4b2ddccd0d13c3cb68d51166623153445c9ec955c6870dc8543c0684883186082e34ea5714febf8b46921015c3623220d17529896e1a6edac6e32fea2ba30db203238300353602c17dddad7608cad8170b520f6d9d32cdf0156a1de4e9b9eea78f73255ddc6da6994a6018ff900d9886590602ca6a072d8aa5645e2adac0744e2d5b2e1038c746635d5814692c3498aa9043b68f8ce79c44678c5a7d5bc26c085475853b229b2af3dc822ec58047f313c778aae2b64995148174e42908f3ecacd3921855790c0c5a25814416930293010b4f917979d837f4ef9d2d6dce804f5c0926244097746252124a6e0055559ffab197c38778f717362152af8f6dbf7ee03df050ab9b8909556691c2c2775f0f9c26a545db7ba698a4ce37de877705ea97ac0a002db274ea8360a4aa732c2d5e7417138c60cbea69d3b4993ada6a9d8f51d851543a6500a31bac5a057dbef498001f08a44e3c4141900e18b6d73c28c8c67dca805edeb5376384cefe75be1f127225e4d9724b7047d68fa2ed4629e91711a37c80158a07dbce78918931402b472a98a5d5c6b66a2d116314577e94298c37bc441499a9ecea132d87c5d305a0f8f0b3ed16f3b820941082c73b28391d8482ca0cfa78e1e09aa588b0eb1849c6c7916a6bbe56134a6bd93ea306dec125982628dea1db6d022d210627959e1dc819c841f173ed25f356909222e481a1ebb31185fbaeacbd359d2779efe4554ccdac7f4bcc528f656a45049331e16e9c0c796423ec9c7cba15c69d4a8a7741699910f33cc9798a8bf1e48182f08029a14d0131654fd388225d7509e1d7a484e9c7df34d1680bfc6b8d1f6f3920cc4113509fe42dfbd6b261000da9651f7e18088f6c2564472046e5eb7e8c9f8b5286a7452741a7103ced710bfb8e699fb8b1a85c0ae887cc06ef2ff9e2a2b1a77bb4d44ddd4a4e1ba60afcb92baaef108b60486d409889cbb2b1cc77ddff7e4b6caf8cf3488764d84bf3605eb9df709ac6cb36d1a3de89cdd6657f0e6b4009e6dac5d9be14f4ed997cf61e5aaec932520c321359cf286adf6e2dc3094794ae61a4f16089d06e3dc62c958950e73213c1e865c894fe7b8a30de65f5534a1e9c5d19ed49397980126322cb9c72c46a86d7487571300d85b3b5661555f20ab63a78f846c1b8f51a19610a11ffee44f7ccf0f1d67f4148b2c828d74c7f3993965c9067114467a71d242113a68574e28601fce343a023ecc68a72d75259f9a5dce144a7f61ef327192f6474d2bbd06fde3049fe7fb306ba3f54337008d7dbdeaf28a37a224e38ade23adb076cefd3148efcb62539a96d4dfc53f369e34c3d493ac3a5e8c8881133be630a2a906703da62ce7cc02ace9f666d6c3d4b9763a83548825ee1efb54ee3475b09e2616c5bdde3d193181bf020e8ac9ac25f32604b6c11de8ad1a15b9f908c6d7e79181aad1d741b7434aa92597a835c53b9e4b61d6069fa4ee921824d17c98784a8c04590f8d2cf877662b410cae4ebd1ba3616074c020d8cb6099a095735635490d318821310ddd016150edb80370b8d4e2f05557fd619b17192c13353cdae76d495821c610c8641e5b3dff1e7f2ea77b17810ca7975b8e36b7f501a8710b326ef92672096ef66598510902fe663e2a9ef00c3a052f1cfb1739fccb4371f8f28bb92654de5bf87cc2863e92e6d7e4b45d773f90f434eafc8f8398a48527af829a6cae359e7af5941bef158f53798058351107ce58f79ed21036770f6e10e7da92bbca25f369ee83a0f894bbf366a1361f8125b4ffd8e8b4d47ec68cd6b37c840cc5beb8cf65b2269ea1a0e9c371a571f30458ff8ad9bbf8723c19ddae1de5ca7461a436ffcd103c01a20f3252ba0965ee928cfb0d002b9aa4d4f20c805b77e67c8d991c4d07e5419bec9626a32c115d28253dd5f16c17182c1779edf49bdfe3823d87fec88929801163a27bfaeddfd8cdccae8cc3bfd6a9f2e2fec5971fa560c434debd434ff4d0058dcb05d9f3ac5193c458472d6d1685f9f46c8864900c5edbaeeee08971ee1c087f2e11467ff4766743bccf9e3414feedd6dcb904b92a05eec5de8db95444b920c995c770edcedcf7bffc48836c8f30037dde47f0e66fd79550de0ebc3c0c3eba0b66e2a353542eeb20397800e5f41635c5ec2f9a271461bcee8e570ddf945b186f15ab5cabe2a3123189935c6b9010b31732c425a9b2582b097486a5a7b1880b2f16104484e1ca83fa9c278b87e30e4b0cf6ed66c87a979c05683ac94a295d1c53e6f0975a079dd9a2825fdd6ae0926ba1a69f3f69f408eea9d00fbd43235a52c53d11963a611b81dd9f5e05582e1822398873e883662a64c225be19e0b85e102e23fb73d5dcb11435a5437d7418b0409f2e60793038f55ed54c79882b3a17e74ae2148bd558d131dbf446edeb0d05353492534e216761cfcf6582d066a8235a2bd5eb383350a52d7fc2761514e27b6125cb3e387c103dd62e31f5b789c217811c80ccbe3f10fec7a19ad32dc9271368b6d6ba549c45dfd8018507c40962b6ac6468c3078edb71d8ec7f728be8cc23dea1139ac30c2e8d0fc077280e420fbbffc896863db5f1e76922d7dd8e4479c1be822e74212c6f74765e108f916a1b83f6efc8ea54080e9a28b1ba5813a1fefddbe2d0cda413ee1463985b51b59f818f440c9b6a10e4ebf71d37995ae9694ba5867ca2eb2f7bf4e58d26149f2b25943fba216beb3de1f954bcf1bd32ce358b5d23023ab456ebbc493ead41e25b62b5b4ace6c5c18c9a8d512a9cbb4dd59f33663f6138d6b06bc8eb1ec9caccc0077b2e68e7a09d412dfa352e7e5c3942b710ab1648e16d0adda424d9fc2d15c619f4e8093c2b9521e4cdb3f22e655f52ce0fcc1bfd94e56cba8decadb68214451be53f9286c82d2a4912bd2394d1133be908409d791d6d8c2194ca37a76a38d6d0a1fced6478848891d9264cfc08fa849d720339ce00977cad8d9738372184098a7333dd1564d1d7754b4aa4afd6217585804159d31f53017869cb78b718c837b7fd176ce19e3d6996b6f055ed3ba7cd55b0349676c0c113c33d070081ce4ef29af156c4ac8ce760013688d0295d90271e23ef3ca10ec2b3b889855a153c867ce79297a10a02d21e5e8995fbc10d2f4d4bf521565376053b80937bfafaac688108f9962b7c72cf0111874ac8ae27d024ee2f9d57f15b9910a7486ef7542c6629fb0520c93a445542d", 0x2000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000240)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8}]}, 0x3c}}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
openat$cgroup_root(0xffffff9c, &(0x7f00000001c0)='./cgroup.net/syz1\x00', 0x200002, 0x0)
quotactl_fd$Q_SETQUOTA(r1, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0xcbe8, 0x1, 0x2, 0x7, 0x18a0, 0x6, 0x84})
r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/clear_refs\x00', 0x1, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
utimensat(r3, 0x0, 0x0, 0x0)
write$sysctl(r2, &(0x7f0000000180)='5\x00', 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

2.559494624s ago: executing program 4 (id=3226):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=@bridge_delneigh={0x28, 0x1c, 0x8, 0x70bd29, 0x20000, {0x7, 0x0, 0x0, 0x0, 0x20, 0x1e, 0xa}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}]}, 0x28}, 0x1, 0x0, 0x0, 0xc0041}, 0x0)

2.559215146s ago: executing program 4 (id=3227):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = getpid()
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
fcntl$lock(0xffffffffffffffff, 0x7, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
sendto$inet(r0, 0x0, 0x0, 0x4000814, &(0x7f0000000100)={0x2, 0x4e22, @local}, 0x10)

2.478876499s ago: executing program 4 (id=3228):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r1}, 0x18)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'tunl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000980)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x6, 0x6797}]}}]}, 0x38}}, 0x0)

918.16281ms ago: executing program 4 (id=3229):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x2, 0xb, [{}, {}, {}, {0xfffffffd}, {}, {0x0, 0x1000000}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = fsopen(0x0, 0x1)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000080)='iocharset', &(0x7f00000000c0)='io#harset', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x10000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffd}, {0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @private}, 0x2, 0x6c}, 0x0, @in=@empty, 0x3503, 0x0, 0x0, 0xb7}}, 0xe4)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x7000000)

902.765986ms ago: executing program 5 (id=3236):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r1}, 0x18)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'tunl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000980)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x6, 0x6797}]}}]}, 0x38}}, 0x0)

850.405553ms ago: executing program 6 (id=3230):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setsockopt$RXRPC_SECURITY_KEYRING(0xffffffffffffffff, 0x110, 0x2, &(0x7f0000000140)='\')\x00', 0x3)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close(0xffffffffffffffff)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
futex(&(0x7f0000000180)=0xfffffff9, 0xc, 0x0, 0x0, &(0x7f00000001c0)=0x2, 0x80000000)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000280)={0x77359400}, &(0x7f0000048000)=0x2, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000440)={0x53, 0xfffffffe, 0x0, 0x0, @buffer={0x0, 0x18, &(0x7f0000000140)=""/24}, &(0x7f0000000380), 0x0, 0xfffffffb, 0x39, 0x0, 0x0})
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000002080)={0xc, {"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", 0x1000}}, 0x1006)

849.752128ms ago: executing program 5 (id=3231):
socket(0x5, 0x5, 0x0)
keyctl$unlink(0x9, 0x0, 0xfffffffffffffffd)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000300)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x2)
socket$inet6_sctp(0xa, 0x801, 0x84)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
r3 = memfd_secret(0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, r3, 0x0)
ftruncate(r3, 0x51a9497)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x309})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f000050a000/0x13000)=nil, 0x13000}, 0x1})
readv(r4, &(0x7f00000002c0)=[{&(0x7f0000000400)=""/224, 0xe0}], 0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x18)
r5 = syz_open_dev$usbfs(&(0x7f0000000240), 0x8, 0x101a01)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)=@usbdevfs_disconnect={0x3})
ioctl$USBDEVFS_IOCTL(r5, 0x80045505, &(0x7f0000000040)=@usbdevfs_disconnect={0x1})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='devices.list\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
recvmsg(r6, 0x0, 0x102)

0s ago: executing program 7 (id=3205):
socket$can_bcm(0x1d, 0x2, 0x2)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000300)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
socket$pppl2tp(0x18, 0x1, 0x1)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r5, 0x0, 0x218, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000280)={0x8, 0x2, 0x8, 0x3, 0x11, "463f5a17b8391c3d063fe75c0076100d7dac32"})
sendto$inet(r5, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

kernel console output (not intermixed with test programs):

tdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.748258][T15491] bridge0: port 1(bridge_slave_0) entered blocking state
[  459.750290][T15491] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.752381][T15491] bridge_slave_0: entered allmulticast mode
[  459.758844][T15491] bridge_slave_0: entered promiscuous mode
[  459.761617][T15491] bridge0: port 2(bridge_slave_1) entered blocking state
[  459.763661][T15491] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.766466][T15491] bridge_slave_1: entered allmulticast mode
[  459.768721][T15491] bridge_slave_1: entered promiscuous mode
[  459.795490][T15491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  459.800194][T15491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  459.850360][T15491] team0: Port device team_slave_0 added
[  459.856705][T15491] team0: Port device team_slave_1 added
[  459.889951][T14881] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.903684][T15491] batman_adv: batadv0: Adding interface: batadv_slave_0
[  459.905828][T15491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  459.913482][T15491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  459.918078][T15491] batman_adv: batadv0: Adding interface: batadv_slave_1
[  459.920132][T15491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  459.927428][T15491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  459.953598][T15491] hsr_slave_0: entered promiscuous mode
[  459.956438][T15491] hsr_slave_1: entered promiscuous mode
[  459.958266][T15491] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  459.960417][T15491] Cannot create hsr debugfs directory
[  460.298152][T14881] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.382739][T14881] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.418730][T15491] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  460.423031][T15491] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  460.430261][T15491] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  460.434698][T15520] sch_fq: defrate 26519 ignored.
[  460.436341][T15491] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  460.478472][T15491] 8021q: adding VLAN 0 to HW filter on device bond0
[  460.514557][T15491] 8021q: adding VLAN 0 to HW filter on device team0
[  460.528329][T14883] bridge0: port 1(bridge_slave_0) entered blocking state
[  460.530423][T14883] bridge0: port 1(bridge_slave_0) entered forwarding state
[  460.535522][T14881] bridge_slave_1: left allmulticast mode
[  460.538004][T14881] bridge_slave_1: left promiscuous mode
[  460.539853][T14881] bridge0: port 2(bridge_slave_1) entered disabled state
[  460.547975][T14881] bridge_slave_0: left allmulticast mode
[  460.549777][T14881] bridge_slave_0: left promiscuous mode
[  460.551809][T14881] bridge0: port 1(bridge_slave_0) entered disabled state
[  460.970235][T14881] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  460.974635][T14881] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  460.978495][T14881] bond0 (unregistering): Released all slaves
[  460.992108][T14883] bridge0: port 2(bridge_slave_1) entered blocking state
[  460.994210][T14883] bridge0: port 2(bridge_slave_1) entered forwarding state
[  461.042777][T15491] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  461.067384][T15491] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  461.199387][T15491] 8021q: adding VLAN 0 to HW filter on device batadv0
[  461.320203][T14881] hsr_slave_0: left promiscuous mode
[  461.322148][T14881] hsr_slave_1: left promiscuous mode
[  461.361595][T14881] veth1_macvtap: left promiscuous mode
[  461.363172][T14881] veth0_macvtap: left promiscuous mode
[  461.365289][T14881] veth1_vlan: left promiscuous mode
[  461.366758][T14881] veth0_vlan: left promiscuous mode
[  461.504039][ T5300] Bluetooth: hci3: command tx timeout
[  461.873236][T15556] FAULT_INJECTION: forcing a failure.
[  461.873236][T15556] name failslab, interval 1, probability 0, space 0, times 0
[  461.876958][T15556] CPU: 2 UID: 0 PID: 15556 Comm: syz.1.2662 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  461.876972][T15556] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  461.876980][T15556] Call Trace:
[  461.876984][T15556]  <TASK>
[  461.876988][T15556]  dump_stack_lvl+0x16c/0x1f0
[  461.877006][T15556]  should_fail_ex+0x50a/0x650
[  461.877025][T15556]  ? sctp_add_bind_addr+0x9a/0x3d0
[  461.877111][T15556]  should_failslab+0xc2/0x120
[  461.877131][T15556]  __kmalloc_cache_noprof+0x68/0x410
[  461.877150][T15556]  sctp_add_bind_addr+0x9a/0x3d0
[  461.877169][T15556]  sctp_copy_local_addr_list+0x39e/0x5a0
[  461.877184][T15556]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  461.877199][T15556]  ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360
[  461.877216][T15556]  ? sctp_bind_addr_copy+0xe0/0x530
[  461.877226][T15556]  sctp_bind_addr_copy+0xe0/0x530
[  461.877240][T15556]  sctp_connect_new_asoc+0x1d8/0x790
[  461.877256][T15556]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  461.877273][T15556]  ? mark_held_locks+0x9f/0xe0
[  461.877290][T15556]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  461.877310][T15556]  sctp_sendmsg+0x1610/0x1eb0
[  461.877324][T15556]  ? __pfx___lock_acquire+0x10/0x10
[  461.877343][T15556]  ? __pfx_sctp_sendmsg+0x10/0x10
[  461.877366][T15556]  ? __pfx_aa_sk_perm+0x10/0x10
[  461.877380][T15556]  ? __pfx_sctp_sendmsg+0x10/0x10
[  461.877396][T15556]  inet_sendmsg+0x119/0x140
[  461.877413][T15556]  __sys_sendto+0x42a/0x4f0
[  461.877428][T15556]  ? __pfx___sys_sendto+0x10/0x10
[  461.877453][T15556]  ? ksys_write+0x1ba/0x250
[  461.877468][T15556]  ? __pfx_ksys_write+0x10/0x10
[  461.877485][T15556]  __ia32_sys_sendto+0xdd/0x1b0
[  461.877498][T15556]  ? lockdep_hardirqs_on+0x7c/0x110
[  461.877511][T15556]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  461.877524][T15556]  __do_fast_syscall_32+0x73/0x120
[  461.877538][T15556]  do_fast_syscall_32+0x32/0x80
[  461.877552][T15556]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  461.877570][T15556] RIP: 0023:0xf73ee579
[  461.877579][T15556] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  461.877591][T15556] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  461.877602][T15556] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000500
[  461.877609][T15556] RDX: 0000000000034000 RSI: 000000002000c851 RDI: 0000000080000140
[  461.877615][T15556] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  461.877622][T15556] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  461.877628][T15556] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  461.877641][T15556]  </TASK>
[  462.090417][T15562] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  462.144632][T15562] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  462.149416][T15562] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  462.591073][T14881] team0 (unregistering): Port device team_slave_1 removed
[  462.710641][T14881] team0 (unregistering): Port device team_slave_0 removed
[  463.335525][T15572] ISOFS: Unable to identify CD-ROM format.
[  463.340438][T15572] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2665'.
[  463.587455][ T5300] Bluetooth: hci3: command tx timeout
[  463.606303][T15491] veth0_vlan: entered promiscuous mode
[  463.611052][T15491] veth1_vlan: entered promiscuous mode
[  463.628227][T15491] veth0_macvtap: entered promiscuous mode
[  463.632555][T15491] veth1_macvtap: entered promiscuous mode
[  463.639845][T15491] batman_adv: batadv0: Interface activated: batadv_slave_0
[  463.648986][T15491] batman_adv: batadv0: Interface activated: batadv_slave_1
[  463.654551][T15491] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  463.657036][T15491] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  463.659829][T15491] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  463.662266][T15491] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  463.722584][T15579] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2666'.
[  463.739394][T14880] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  463.741649][T14880] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  463.750135][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  463.752388][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  463.842670][T15585] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2643'.
[  463.855910][T15585] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2643'.
[  463.858584][T15585] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2643'.
[  463.903126][T14881] IPVS: stop unused estimator thread 0...
[  464.002534][T15593] sch_fq: defrate 26519 ignored.
[  464.014677][T15592] fuse: Unknown parameter 'f'
[  464.072556][ T5958] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  464.084423][ T5958] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  464.091017][ T5958] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  464.093575][ T5958] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  464.097209][ T5958] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  464.099486][ T5958] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  464.147255][T14882] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.231001][T15607] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2676'.
[  464.252812][T14882] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.261261][T15607] ÿÿÿÿ: renamed from veth1_vlan (while UP)
[  464.273840][T15597] chnl_net:caif_netlink_parms(): no params data found
[  464.369181][T14882] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.376786][T15597] bridge0: port 1(bridge_slave_0) entered blocking state
[  464.379280][T15597] bridge0: port 1(bridge_slave_0) entered disabled state
[  464.381471][T15597] bridge_slave_0: entered allmulticast mode
[  464.383692][T15597] bridge_slave_0: entered promiscuous mode
[  464.387069][T15597] bridge0: port 2(bridge_slave_1) entered blocking state
[  464.389079][T15597] bridge0: port 2(bridge_slave_1) entered disabled state
[  464.391069][T15597] bridge_slave_1: entered allmulticast mode
[  464.393254][T15597] bridge_slave_1: entered promiscuous mode
[  464.397638][T15624] sch_fq: defrate 26519 ignored.
[  464.443177][T15597] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  464.457757][T15629] can: request_module (can-proto-0) failed.
[  464.461382][T14882] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.485586][T15597] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  464.518627][T15597] team0: Port device team_slave_0 added
[  464.521837][T15597] team0: Port device team_slave_1 added
[  464.540151][T15597] batman_adv: batadv0: Adding interface: batadv_slave_0
[  464.542121][T15597] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  464.557486][T15597] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  464.561658][T15597] batman_adv: batadv0: Adding interface: batadv_slave_1
[  464.563649][T15597] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  464.572710][T15597] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  464.603623][T15597] hsr_slave_0: entered promiscuous mode
[  464.605857][T15635] ISOFS: Unable to identify CD-ROM format.
[  464.628853][T15635] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2679'.
[  464.745639][T15597] hsr_slave_1: entered promiscuous mode
[  464.747630][T15597] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  464.749811][T15597] Cannot create hsr debugfs directory
[  464.905284][T14882] bridge_slave_0: left allmulticast mode
[  464.907120][T14882] bridge_slave_0: left promiscuous mode
[  464.908996][T14882] bridge0: port 1(bridge_slave_0) entered disabled state
[  465.088896][T14882] team0: Port device geneve0 removed
[  465.111238][T14882] bond3 (unregistering): (slave geneve2): Releasing active interface
[  465.113652][T14882] geneve2 (unregistering): left promiscuous mode
[  465.115931][T14882] geneve2 (unregistering): left allmulticast mode
[  465.349172][T14882] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  465.353018][T14882] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  465.357593][T14882] bond0 (unregistering): Released all slaves
[  465.481097][T14882] bond1 (unregistering): (slave veth3): Releasing active interface
[  465.482335][T14882] bond1 (unregistering): Released all slaves
[  465.602442][T14882] bond2 (unregistering): Released all slaves
[  465.607485][T14882] bond3 (unregistering): Released all slaves
[  465.612297][T14882] bond4 (unregistering): Released all slaves
[  465.622695][   T39] audit: type=1400 audit(1739658222.562:632): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=15646 comm="syz.5.2686"
[  465.664003][ T5300] Bluetooth: hci3: command tx timeout
[  465.949087][T15658] 9pnet_fd: Insufficient options for proto=fd
[  465.951277][T15659] 9pnet_fd: Insufficient options for proto=fd
[  465.971929][T15659] netlink: 'syz.6.2688': attribute type 5 has an invalid length.
[  465.974454][T15658] netlink: 'syz.6.2688': attribute type 5 has an invalid length.
[  466.037699][T15597] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  466.041783][T15597] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  466.045636][T15597] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  466.049212][T15663] sch_fq: defrate 26519 ignored.
[  466.069994][T15597] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  466.102274][T15597] 8021q: adding VLAN 0 to HW filter on device bond0
[  466.112187][T15597] 8021q: adding VLAN 0 to HW filter on device team0
[  466.126845][T14883] bridge0: port 1(bridge_slave_0) entered blocking state
[  466.128913][T14883] bridge0: port 1(bridge_slave_0) entered forwarding state
[  466.131720][T14883] bridge0: port 2(bridge_slave_1) entered blocking state
[  466.133734][T14883] bridge0: port 2(bridge_slave_1) entered forwarding state
[  466.144696][ T5300] Bluetooth: hci1: command tx timeout
[  466.239533][T15597] 8021q: adding VLAN 0 to HW filter on device batadv0
[  466.342155][T15597] veth0_vlan: entered promiscuous mode
[  466.347901][T15597] veth1_vlan: entered promiscuous mode
[  466.361952][T15597] veth0_macvtap: entered promiscuous mode
[  466.365965][T15597] veth1_macvtap: entered promiscuous mode
[  466.371889][T15597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  466.378369][T15597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  466.382230][T15597] batman_adv: batadv0: Interface activated: batadv_slave_0
[  466.391329][T15597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  466.395654][T15597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  466.399055][T15597] batman_adv: batadv0: Interface activated: batadv_slave_1
[  466.403851][T15597] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  466.406450][T15597] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  466.408886][T15597] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  466.411306][T15597] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  466.435639][   T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  466.437928][   T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  466.450567][T14885] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  466.452751][T14885] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  466.761917][T15698] tmpfs: Unknown parameter '01777777777777777777777'
[  466.831447][T15702] sch_fq: defrate 26519 ignored.
[  467.023009][T14882] tipc: Left network mode
[  467.137949][T15717] FAULT_INJECTION: forcing a failure.
[  467.137949][T15717] name failslab, interval 1, probability 0, space 0, times 0
[  467.141337][T15717] CPU: 2 UID: 0 PID: 15717 Comm: syz.1.2702 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  467.141352][T15717] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  467.141359][T15717] Call Trace:
[  467.141363][T15717]  <TASK>
[  467.141368][T15717]  dump_stack_lvl+0x16c/0x1f0
[  467.141386][T15717]  should_fail_ex+0x50a/0x650
[  467.141404][T15717]  ? fs_reclaim_acquire+0xae/0x150
[  467.141419][T15717]  should_failslab+0xc2/0x120
[  467.141438][T15717]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  467.141455][T15717]  ? rcu_is_watching+0x12/0xc0
[  467.141467][T15717]  ? security_file_alloc+0x34/0x2b0
[  467.141483][T15717]  security_file_alloc+0x34/0x2b0
[  467.141497][T15717]  init_file+0x93/0x4c0
[  467.141509][T15717]  alloc_empty_file+0x91/0x1e0
[  467.141521][T15717]  alloc_file_pseudo+0x13b/0x230
[  467.141533][T15717]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  467.141546][T15717]  ? do_raw_spin_unlock+0x172/0x230
[  467.141559][T15717]  __anon_inode_getfile+0xf8/0x370
[  467.141577][T15717]  anon_inode_getfd+0x52/0xb0
[  467.141592][T15717]  __ia32_sys_fsopen+0x18f/0x240
[  467.141604][T15717]  __do_fast_syscall_32+0x73/0x120
[  467.141619][T15717]  do_fast_syscall_32+0x32/0x80
[  467.141632][T15717]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  467.141652][T15717] RIP: 0023:0xf73ee579
[  467.141661][T15717] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  467.141673][T15717] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 00000000000001ae
[  467.141684][T15717] RAX: ffffffffffffffda RBX: 0000000080000340 RCX: 0000000000000001
[  467.141691][T15717] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  467.141697][T15717] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  467.141703][T15717] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  467.141709][T15717] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  467.141722][T15717]  </TASK>
[  467.238566][T15725] FAULT_INJECTION: forcing a failure.
[  467.238566][T15725] name failslab, interval 1, probability 0, space 0, times 0
[  467.243364][T15725] CPU: 0 UID: 0 PID: 15725 Comm: syz.6.2707 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  467.243381][T15725] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  467.243388][T15725] Call Trace:
[  467.243392][T15725]  <TASK>
[  467.243397][T15725]  dump_stack_lvl+0x16c/0x1f0
[  467.243415][T15725]  should_fail_ex+0x50a/0x650
[  467.243437][T15725]  should_failslab+0xc2/0x120
[  467.243456][T15725]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  467.243474][T15725]  ? trace_lock_acquire+0x14e/0x1f0
[  467.243486][T15725]  ? kasan_save_stack+0x42/0x60
[  467.243502][T15725]  ? skb_clone+0x190/0x3f0
[  467.243520][T15725]  skb_clone+0x190/0x3f0
[  467.243536][T15725]  dev_queue_xmit_nit+0x38f/0xbc0
[  467.243553][T15725]  ? __pfx_passthru_features_check+0x10/0x10
[  467.243566][T15725]  ? netif_skb_features+0x3b0/0xd50
[  467.243579][T15725]  dev_hard_start_xmit+0x283/0x7b0
[  467.243594][T15725]  __dev_queue_xmit+0x7f0/0x43e0
[  467.243610][T15725]  ? __might_fault+0x13b/0x190
[  467.243622][T15725]  ? __pfx___dev_queue_xmit+0x10/0x10
[  467.243636][T15725]  ? __might_fault+0xe3/0x190
[  467.243647][T15725]  ? __might_fault+0xe3/0x190
[  467.243660][T15725]  ? _copy_from_iter+0x15e/0x1560
[  467.243672][T15725]  ? trace_lock_acquire+0x14e/0x1f0
[  467.243689][T15725]  ? __pfx_eth_header+0x10/0x10
[  467.243704][T15725]  ? macvlan_hard_header+0xd8/0x150
[  467.243722][T15725]  ? __pfx_macvlan_hard_header+0x10/0x10
[  467.243737][T15725]  pppoe_sendmsg+0x5fb/0x7a0
[  467.243750][T15725]  ? __pfx_pppoe_sendmsg+0x10/0x10
[  467.243759][T15725]  ? __import_iovec+0x1f2/0x6d0
[  467.243774][T15725]  ____sys_sendmsg+0xaaf/0xc90
[  467.243786][T15725]  ? __pfx_____sys_sendmsg+0x10/0x10
[  467.243797][T15725]  ? get_compat_msghdr+0x11b/0x170
[  467.243814][T15725]  ___sys_sendmsg+0x135/0x1e0
[  467.243830][T15725]  ? __pfx____sys_sendmsg+0x10/0x10
[  467.243851][T15725]  ? trace_lock_acquire+0x14e/0x1f0
[  467.243885][T15725]  __sys_sendmmsg+0x2fa/0x420
[  467.243903][T15725]  ? __pfx___sys_sendmmsg+0x10/0x10
[  467.243927][T15725]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  467.243947][T15725]  ? fput+0x67/0x440
[  467.243958][T15725]  ? ksys_write+0x1ba/0x250
[  467.243973][T15725]  ? __pfx_ksys_write+0x10/0x10
[  467.243990][T15725]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  467.244003][T15725]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  467.244017][T15725]  __do_fast_syscall_32+0x73/0x120
[  467.244032][T15725]  do_fast_syscall_32+0x32/0x80
[  467.244045][T15725]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  467.244064][T15725] RIP: 0023:0xf741e579
[  467.244073][T15725] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  467.244084][T15725] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  467.244096][T15725] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001340
[  467.244103][T15725] RDX: 0000000000000484 RSI: 0000000024048084 RDI: 0000000000000000
[  467.244109][T15725] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  467.244115][T15725] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  467.244121][T15725] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  467.244135][T15725]  </TASK>
[  467.278167][T15723] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2706'.
[  467.335796][T15729] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2706'.
[  467.338412][T15723] netlink: 'syz.1.2706': attribute type 7 has an invalid length.
[  467.340595][T15729] netlink: 'syz.1.2706': attribute type 7 has an invalid length.
[  467.342625][T15723] netlink: 'syz.1.2706': attribute type 8 has an invalid length.
[  467.342637][T15723] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2706'.
[  467.345529][T15729] netlink: 'syz.1.2706': attribute type 8 has an invalid length.
[  467.351700][T15727] sch_fq: defrate 26519 ignored.
[  467.447581][T15739] netlink: zone id is out of range
[  467.456839][T15739] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  467.460495][T15741] netlink: zone id is out of range
[  467.530014][T14882] hsr_slave_0: left promiscuous mode
[  467.532167][T14882] hsr_slave_1: left promiscuous mode
[  467.561429][T14882] veth1_vlan: left promiscuous mode
[  467.563098][T14882] veth0_vlan: left promiscuous mode
[  467.597622][T15748] openvswitch: netlink: Missing key (keys=40, expected=100)
[  467.601677][T15748] [U] 

[  467.602607][T15748] [U] ÿ6Æ«Í ¸ýò€s
[  467.603771][T15748] [U] 
[  467.604582][T15748] [U] 
[  467.605706][T15748] [U] 
[  467.606522][T15748] [U] ö1[_¸9{¿øË£n
Â糪Û2½=Õ(Ši©‘ÙÆtq~:»§r€²Û;…¯¤óò–Å2Q�-×›µî²ZÛ^ÝÛÝœ	ÑMÂçáâ½l�«5‘»"é}i’#m"sÈ»•SoqЖP±%ÇÚ¬(æ»á­¿£W*з­\&È
AØ7L©ò…w�þçqZ@9jtÞa³…9ÈŸDL磋ÝFÄí6ë€n¥˜ôMìžÿž$vô8!b¶fs´]#k#‘Î2.0ûœiþ
[  467.612294][T15748] [U] QMÁø¶ã—œýR$°}¤OìOooe‹¶­Ì)[òÝ}êY×à<aþX").E–‰V¹1½ÄÖD_ñc˜ä´D‡tÝKœÕ:E‰oÛ?p'xtâ´Z%¿š#üû—¦0ñ2¿�ïlmJ{®¶)rñ¨öò7{ÏÇŽ.†6Œ… Lí÷ZøÂO®tã¬èǹ ¯§ ¦íŽ VHS]«ó²øQ–®Ókƒž<ÕJä“:Õ)ˆ�ÚÇ»ŠpÇ+Àü�ºPo-[Çhn!›¾Rƒ•œ¾ù•¶ÙóAübJQ4&νq
[  467.618927][T15748] [U] íxÿ©Ü+V}|¿”%GôŠQ1ñ™l®Õ¦‡�˜æŽy—©¢·æ@§
[  467.620800][T15748] [U] 4­¸
[  467.621673][T15748] [U] â†Æi*»_	.N:¨2à=¤O4¯:eÿk6ó•·jyÏúý];°çÉ5Êìó§«ul#ý`Éþ?O²¾uõºâ+oñX�ϳ'ÓðH�ºŠõ³<Ï-}‡ô;¼HüÔñ‘­jù1:Ó‹‹)gKú½fQ¼lå«´¢ñA1”ùk&×ÖíÄàû¥I\—îõ¯\§‡6d°X·¼ôU¨ KY)ú¶6l„K·UvºÂÕ##çG0=
[  467.626820][T15748] [U] tqÏnŒé•õì+År!/©î?Z�ú8þU𻱬Î*ã/ù!pz»¡9¼Ýô+ýM)µ@AÄá¡?:bŒcŽÄÓ¨„ß¼	>#ì
[  467.629494][T15748] [U] q´kAÜ‹BÙPÈa[¥î‡ô›]	ÿ¤‡™P
’
[  467.631034][T15748] [U] °Z•™gð—º{U»ÒqØiB8@k@£ßÄ/¥jg;S©kT3&Åg8¶ÐCY4
†–õ«I4~QH§�-i§ú¸3sÔnϺNàX¥8VI…¹IÛû9â�”Aų'T§`°—ôdÝ°¸?�hºß§¶bÏ"û4óºÅÇæY¬¥(…ÈøÝ«»/ï•,PH<%h¼pÿ
[  467.635971][T15748] [U] B¦8ÊtMêL~»Oêw|öc»OíysE¼†äˆ¡?’Cw¨âîfp ,¥(t®B£]U¹vWW{,Ãt*¥£ä?²ÁÉ*ÒºÒRÁ¨)fÝ
o§ñÃ�´UQcó™½Ó?ô:Ñ}žE»t8ÁɆq'6òKáOq«þ’¢^ÀnèÇ—€w¡>X¨è¾£œŽ²Q�ŸË
[  467.640396][T15748] [U] 圌GN6üs÷±³¸mñ´$��Uh¯¿~‡K–†ï®lEìü¦
[  467.642041][T15748] [U] d
[  467.645134][T15748] [U] oý1ùC|=ad´ŒØ˜hd¿àÔ›Ýw	f"b6�¼>Ìë$ÌA�Lv׊µÅ+f¯ZrÝj’õ+àgd'¥n2å¼P…²_�­ÒŠvòüæøðïtôe–˜T–F½cZßwµÍÏævᱩ¯)FUK¦l¼ƒÆ&ŽäóÉÔq€%h‹5Ò&[öø‰ÿbŸx4Xnôn«z‘v3u6»`
ævTk˜6±þKŸnF¨Îsë"뻜Øâ´>§~ø‡å¢dHôo¨¢^'rZÁ˜…‹Ä_,äC‘zÞ^¨Ä4ÃòWnÿ¾µ!76åÉUtPd0h°Àû*~™Þl¢’$j™7ú}~åœõœå¹øBb�I“F¯@¨¡%k£s¨�	Ü
[  467.652607][T15748] [U] û{‹!]½Éx{[ªrLúqîgE´ =è·yGW¬2ŽÅVu@¹Qµ0ÃÔî4p^¡ÆoÖYˆVƒèmHÄ^ó¸:0)1��=ŽeÎÁÜ<¹-
[  467.655682][T15748] [U] }¾¶	¨Òy9(Ê yðû»+ÉŸŒÀHô AÑL[Ê
[  467.657423][T15748] [U] æoÃOW¬Ž‰’¢.‰Löž�©·­=&4ꌈX�’ýGØè±
[  467.659261][T15748] [U] YÞP]èÊòøÓ
[  467.660337][T15748] [U] ©ý(¬‘Ѧ�PÈîú\D2ßöÆê<ÿo4
[  467.661911][T15748] [U] àÄAžŽ`ü”Ø‚�¤z–Í÷îOaâ?@u%Ïœ¡)PA£Pø?g•Ö´´n,œè™žø5«Áf<ïÏr�óx1ôጊOêñûôL8É12„@JPºLØ«è5³;þËÍl�CXS´ÈÕ«ƒÏFQ'9f”vVXºæK1'-!`U®ù²\p¨£³u-{‡‘ÆW¹óü�
ï)ŸÑ£IIæî™@‘`Pĸ%Ô}—Ü,$2	Ò@5ƒ¬>öݾܪvC"UH|
[  467.668337][T15748] [U] åž>W*³®À¯jkj-ÉÏ®ï§WˆlM’Jˆòñ¼Ž‰äϦ—Ñï<FXøabxµˆ
�Ù¾ìe¶ROº>?#]X7>™°v"¥êÞt~/œó‹ÁgʼŒ±Œp�7âVHp~Œr‡eǤœ*®åížžÏËÌ#à2ÄÞ¶>Hç
ˆdhúÓHä´.}bûÏÁÂÏ°Ï
[  467.673135][T15748] [U] µè¡b½¹½‚v?¹l#ó-¹ÑÁ×MÛæW´ùYZ—–˜*B1±^HM�þ¾GÎ
[  467.675053][T15748] [U] x¤G
[  467.675946][T15748] [U] 4ì.¶îøûA_«Pú–[ìjYw ­äþÖ†ü$á/SdŸ||5µ`ÊÇ&ÛÈ)ÛÒH÷ìÚ†¢>ñr¢Œ–Ù½±õ˜ê³k¯!1-¢9 Àt¹ÒÒäBq,!
[  467.679388][T15748] [U] *³ÑäÒ¬§
Þ%sS$áM¥ˆ4ݽ7¾!Ü’�¹±
M*Ç2ZZæÒM�ùzŠ‰C�†vEzxÏðR
R�CXþgöˆ¿*�<.‹I—¸ût™k€ÔeH›-x©Eë§*”^Œøb]ºÖööã7²žUŒ¨¨°b_WŒvm4òÒ�pGùMñö1Š0€BªIKª)V@gŸ«jƒ¯ŒæDZØ¢óÔwëS¯
[  467.685726][T15748] [U] úædD“ñC@0¸6!4
[  467.686941][T15748] [U] ÓÜï¦Øð�í9)ØšÙÀº
¦�03B�Øù†0K}*a0¿
[  467.688677][T15748] [U] ã÷5Ð6š%üÔæ]$;~«‘:{ý‹È¬ž9û»2µÉQx†(zêÍ�¿Ú›‘Ûi<±.BË¥˜‚€àžQç+‘ ó`em�!̳$ŠÃE­QѦ+A’w…«
à(ÇèâÏ4	^ý(&xR �ÌöEµäi0
[  467.699594][T15748] [U] ¯P(+àX'NõŒH¶†ÐÈ̈j¸wŠ*+_¢Uz׿
òU#ÎuˆqÓ4Â
[  467.701508][T15748] [U] ˜9÷¨Ÿâ†|(œŠ/dV¬~OºÞå:Äîh!KÇfi…;ªOX%[9ºXòèÄ´“ø“j3ºåËÉk)¥Ç$ÕµL*ͽ�Þ‰=6Î
[  467.704515][T15748] [U] WT6‚ì¿ÊælASÃ7åЖRLŽ'é ‰‚¢{¿ãü›¢J‚:îÈÔ­Žø¦\X[îMÏÊ£ÚPŒ¢;."’К‹1þ«È‰Û÷Ãr¯ÅѦÛ�‹ÅþŠi `ŸËÍ˧Å#ÓÄ$ª;eV8~Q¼Þž_…
[  467.708228][T15748] [U] ¿bÒÂ:'† Ë”“(w œ¶¶J¦¨Ê³´#ç­ÄÄp¦^‡"Wáimœ²ëcÌå¶Î
[  467.712324][T15747] [U] J‰ÏQ—gàE9|^8A íŠ‰°d´•ì�-£t3¿—Ù¦–Ò­&½öü¨ÞB+²Ë€ÐQbèNåE£ÜµÞã<1GQæŽX¾½¢ûXi…¥¥°dVuoDæÛþô»™Ês/
[  467.748479][ T5300] Bluetooth: hci3: command tx timeout
[  468.224350][ T5300] Bluetooth: hci1: command tx timeout
[  468.283604][T15771] FAULT_INJECTION: forcing a failure.
[  468.283604][T15771] name failslab, interval 1, probability 0, space 0, times 0
[  468.290764][T15771] CPU: 1 UID: 0 PID: 15771 Comm: syz.5.2720 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  468.290784][T15771] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  468.290791][T15771] Call Trace:
[  468.290797][T15771]  <TASK>
[  468.290802][T15771]  dump_stack_lvl+0x16c/0x1f0
[  468.290822][T15771]  should_fail_ex+0x50a/0x650
[  468.290839][T15771]  ? hlock_class+0x4e/0x130
[  468.290853][T15771]  ? skcipher_walk_next+0x8d1/0xba0
[  468.290867][T15771]  should_failslab+0xc2/0x120
[  468.290903][T15771]  __kmalloc_noprof+0xcb/0x510
[  468.290927][T15771]  ? gcm_process_assoc+0x5dd/0x730
[  468.290945][T15771]  skcipher_walk_next+0x8d1/0xba0
[  468.290968][T15771]  skcipher_walk_done+0x4ae/0xd10
[  468.290987][T15771]  gcm_encrypt_vaes_avx10_256+0x52e/0x630
[  468.291001][T15771]  ? __pfx_gcm_encrypt_vaes_avx10_256+0x10/0x10
[  468.291022][T15771]  ? gup_fast_fallback+0x1db4/0x2690
[  468.291040][T15771]  ? lockdep_hardirqs_on+0x7c/0x110
[  468.291054][T15771]  crypto_aead_encrypt+0xbd/0x100
[  468.291073][T15771]  crypto_aead_encrypt+0xbd/0x100
[  468.291090][T15771]  tls_push_record+0x1cb9/0x31b0
[  468.291111][T15771]  ? __pfx_tls_push_record+0x10/0x10
[  468.291122][T15771]  ? sk_psock_get+0x13f/0x470
[  468.291132][T15771]  ? __pfx_sk_psock_get+0x10/0x10
[  468.291142][T15771]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  468.291160][T15771]  bpf_exec_tx_verdict+0xe24/0x1280
[  468.291177][T15771]  ? iov_iter_advance+0x7d/0x6c0
[  468.291187][T15771]  ? hlock_class+0x4e/0x130
[  468.291201][T15771]  ? __pfx_bpf_exec_tx_verdict+0x10/0x10
[  468.291244][T15771]  ? sk_msg_alloc+0x706/0xad0
[  468.291261][T15771]  tls_sw_sendmsg+0x1b59/0x23c0
[  468.291283][T15771]  ? __pfx_tls_sw_sendmsg+0x10/0x10
[  468.291295][T15771]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  468.291315][T15771]  ? aa_sk_perm+0x2f5/0xb20
[  468.291329][T15771]  ? __pfx_aa_sk_perm+0x10/0x10
[  468.291342][T15771]  ? __fget_files+0x206/0x3a0
[  468.291359][T15771]  ? __pfx_tls_sw_sendmsg+0x10/0x10
[  468.291372][T15771]  inet6_sendmsg+0x119/0x140
[  468.291391][T15771]  __sys_sendto+0x374/0x4f0
[  468.291406][T15771]  ? __pfx___sys_sendto+0x10/0x10
[  468.291430][T15771]  ? ksys_write+0x1ba/0x250
[  468.291446][T15771]  ? __pfx_ksys_write+0x10/0x10
[  468.291462][T15771]  __ia32_sys_sendto+0xdd/0x1b0
[  468.291475][T15771]  ? lockdep_hardirqs_on+0x7c/0x110
[  468.291487][T15771]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  468.291500][T15771]  __do_fast_syscall_32+0x73/0x120
[  468.291515][T15771]  do_fast_syscall_32+0x32/0x80
[  468.291528][T15771]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  468.291548][T15771] RIP: 0023:0xf743e579
[  468.291558][T15771] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  468.291569][T15771] RSP: 002b:00000000f50a555c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  468.291581][T15771] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800001c0
[  468.291588][T15771] RDX: 00000000fffffede RSI: 0000000000000000 RDI: 0000000000000000
[  468.291594][T15771] RBP: 0000000003000137 R08: 0000000000000000 R09: 0000000000000000
[  468.291601][T15771] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  468.291607][T15771] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  468.291620][T15771]  </TASK>
[  468.668596][T14882] team0 (unregistering): Port device team_slave_1 removed
[  468.786256][T14882] team0 (unregistering): Port device team_slave_0 removed
[  469.295431][   T64] bond0: (slave bond_slave_0): interface is now down
[  469.298323][   T64] bond0: (slave bond_slave_1): interface is now down
[  469.305152][T15764] sch_fq: defrate 26519 ignored.
[  469.309239][T15784] ISOFS: Unable to identify CD-ROM format.
[  469.321289][T15784] __nla_validate_parse: 1 callbacks suppressed
[  469.321300][T15784] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2724'.
[  469.335827][T14885] bond0: (slave bond_slave_0): interface is now down
[  469.339407][T14885] bond0: (slave bond_slave_1): interface is now down
[  469.347284][T14885] bond0: now running without any active interface!
[  469.591285][T14882] IPVS: stop unused estimator thread 0...
[  469.819222][T15811] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2734'.
[  470.304077][ T5300] Bluetooth: hci1: command tx timeout
[  470.565243][T15814] sch_fq: defrate 26519 ignored.
[  470.647760][T15824] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2740'.
[  470.653349][T15824] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2740'.
[  470.714850][T15837] sch_fq: defrate 26519 ignored.
[  470.746086][T15842] lo: entered promiscuous mode
[  470.749951][T15842] lo: left promiscuous mode
[  471.261868][T15853] ISOFS: Unable to identify CD-ROM format.
[  471.271249][T15853] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2746'.
[  471.568937][T15862] syz_tun: entered allmulticast mode
[  471.571752][T15862] syz_tun: left allmulticast mode
[  471.613480][T15867] tipc: Started in network mode
[  471.616981][T15867] tipc: Node identity ac1414aa, cluster identity 4711
[  471.620569][T15867] tipc: Enabled bearer <udp:s>, priority 10
[  471.652076][T15872] fuse: Unknown parameter '000000000000000000000030x0000000000000003'
[  471.869855][T15889] fuse: Bad value for 'user_id'
[  471.871382][T15889] fuse: Bad value for 'user_id'
[  472.384130][ T5300] Bluetooth: hci1: command tx timeout
[  472.683376][T15908] ISOFS: Unable to identify CD-ROM format.
[  472.734069][ T5949] tipc: Node number set to 2886997162
[  472.738238][T15908] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2763'.
[  474.106099][T15931] sch_fq: defrate 26519 ignored.
[  474.428524][T15945] FAULT_INJECTION: forcing a failure.
[  474.428524][T15945] name failslab, interval 1, probability 0, space 0, times 0
[  474.432060][T15945] CPU: 3 UID: 0 PID: 15945 Comm: syz.4.2777 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  474.432075][T15945] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  474.432082][T15945] Call Trace:
[  474.432087][T15945]  <TASK>
[  474.432092][T15945]  dump_stack_lvl+0x16c/0x1f0
[  474.432111][T15945]  should_fail_ex+0x50a/0x650
[  474.432129][T15945]  ? fs_reclaim_acquire+0xae/0x150
[  474.432148][T15945]  ? do_check_common+0x43e3/0xb960
[  474.432160][T15945]  should_failslab+0xc2/0x120
[  474.432179][T15945]  __kmalloc_cache_noprof+0x68/0x410
[  474.432198][T15945]  do_check_common+0x43e3/0xb960
[  474.432211][T15945]  ? __pfx_cg_skb_func_proto+0x10/0x10
[  474.432226][T15945]  ? mark_fastcall_pattern_for_call+0xc1/0xd90
[  474.432242][T15945]  ? __pfx_mark_fastcall_pattern_for_call+0x10/0x10
[  474.432263][T15945]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  474.432280][T15945]  ? __pfx_do_check_common+0x10/0x10
[  474.432292][T15945]  ? __pfx_verbose+0x10/0x10
[  474.432302][T15945]  ? __pfx_disasm_kfunc_name+0x10/0x10
[  474.432324][T15945]  bpf_check+0x77f7/0xb330
[  474.432343][T15945]  ? __pfx_bpf_check+0x10/0x10
[  474.432356][T15945]  ? find_held_lock+0x2d/0x110
[  474.432370][T15945]  ? bpf_prog_load+0xd42/0x2480
[  474.432386][T15945]  ? __pfx_lock_release+0x10/0x10
[  474.432402][T15945]  ? trace_lock_acquire+0x14e/0x1f0
[  474.432414][T15945]  ? bpf_prog_load+0xd42/0x2480
[  474.432433][T15945]  ? __asan_memset+0x23/0x50
[  474.432447][T15945]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  474.432464][T15945]  bpf_prog_load+0xe3c/0x2480
[  474.432483][T15945]  ? __pfx_bpf_prog_load+0x10/0x10
[  474.432499][T15945]  ? find_held_lock+0x2d/0x110
[  474.432513][T15945]  ? __might_fault+0x13b/0x190
[  474.432528][T15945]  ? __might_fault+0xe3/0x190
[  474.432543][T15945]  __sys_bpf+0x4043/0x49c0
[  474.432559][T15945]  ? __pfx_lock_release+0x10/0x10
[  474.432575][T15945]  ? __pfx___sys_bpf+0x10/0x10
[  474.432591][T15945]  ? vfs_write+0x306/0x1150
[  474.432609][T15945]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  474.432630][T15945]  ? fput+0x67/0x440
[  474.432641][T15945]  ? ksys_write+0x1ba/0x250
[  474.432655][T15945]  ? __pfx_ksys_write+0x10/0x10
[  474.432672][T15945]  __ia32_sys_bpf+0x76/0xe0
[  474.432690][T15945]  __do_fast_syscall_32+0x73/0x120
[  474.432705][T15945]  do_fast_syscall_32+0x32/0x80
[  474.432719][T15945]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  474.432738][T15945] RIP: 0023:0xf7f04579
[  474.432747][T15945] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  474.432758][T15945] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  474.432768][T15945] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000840
[  474.432775][T15945] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  474.432781][T15945] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  474.432787][T15945] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  474.432793][T15945] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  474.432806][T15945]  </TASK>
[  474.548038][T15949] netlink: 512 bytes leftover after parsing attributes in process `syz.4.2779'.
[  474.774003][T15956] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  474.775844][T15956] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  474.778139][T15956] vhci_hcd vhci_hcd.0: Device attached
[  474.782070][T15957] vhci_hcd: unknown pdu 2
[  474.793115][   T64] vhci_hcd: stop threads
[  474.794442][   T64] vhci_hcd: release socket
[  474.801790][   T64] vhci_hcd: disconnect device
[  475.063959][    T8] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[  475.134258][T15966] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2783'.
[  475.140007][T15966] IPVS: set_ctl: invalid protocol: 58 100.1.1.2:20000
[  475.215156][    T8] usb 11-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  475.217546][    T8] usb 11-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  475.220253][    T8] usb 11-1: config 1 has 1 interface, different from the descriptor's value: 66
[  475.222668][    T8] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  475.225953][    T8] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  475.231285][    T8] usb 11-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  475.233805][    T8] usb 11-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  475.236311][    T8] usb 11-1: Product: syz
[  475.237513][    T8] usb 11-1: Manufacturer: syz
[  475.240796][    T8] cdc_wdm 11-1:1.0: skipping garbage
[  475.242301][    T8] cdc_wdm 11-1:1.0: skipping garbage
[  475.246410][    T8] cdc_wdm 11-1:1.0: cdc-wdm0: USB WDM device
[  475.248116][    T8] cdc_wdm 11-1:1.0: Unknown control protocol
[  475.443362][T15963] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  475.445943][T15963] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  475.458750][    T8] usb 11-1: USB disconnect, device number 2
[  475.762302][T15993] loop6: detected capacity change from 0 to 524287999
[  475.769758][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.772411][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  475.774927][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.777464][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  475.782360][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.785062][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  475.787856][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.790309][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  475.792590][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.795283][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  475.797659][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.800304][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  475.806944][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.809514][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  475.811869][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.814465][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  475.815874][T15993] ldm_validate_partition_table(): Disk read failed.
[  475.820551][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.823127][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  475.825538][T15995] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  475.828292][T15993] Buffer I/O error on dev loop6, logical block 1, async page read
[  475.831459][T15993] Dev loop6: unable to read RDB block 8
[  475.833179][T15993]  loop6: unable to read partition table
[  475.835260][T15993] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  476.407252][T16015] sch_fq: defrate 26519 ignored.
[  476.649458][T16025] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2803'.
[  477.307914][T16038] 9pnet_fd: Insufficient options for proto=fd
[  477.845218][T16045] can0: slcan on ptm0.
[  477.846915][T16045] netlink: 'syz.4.2808': attribute type 8 has an invalid length.
[  477.944320][T16049] can0 (unregistered): slcan off ptm0.
[  478.059474][    T8] kernel write not supported for file /sequencer2 (pid: 8 comm: kworker/0:0)
[  478.337209][T16074] sch_fq: defrate 26519 ignored.
[  478.672239][T16078] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2816'.
[  478.682260][T16078] random: crng reseeded on system resumption
[  479.245760][T16102] sch_fq: defrate 26519 ignored.
[  479.578827][T16119] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2824'.
[  480.044547][T16128] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2830'.
[  480.381864][T16146] ISOFS: Unable to identify CD-ROM format.
[  480.387360][T16146] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2834'.
[  480.474567][T16152] block nbd4: shutting down sockets
[  480.556584][T16152] vivid-008: disconnect
[  480.584212][T16150] vivid-008: reconnect
[  481.034725][T16156] FAULT_INJECTION: forcing a failure.
[  481.034725][T16156] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  481.038942][T16156] CPU: 3 UID: 0 PID: 16156 Comm: syz.1.2838 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  481.038958][T16156] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  481.038965][T16156] Call Trace:
[  481.039000][T16156]  <TASK>
[  481.039005][T16156]  dump_stack_lvl+0x16c/0x1f0
[  481.039218][T16156]  should_fail_ex+0x50a/0x650
[  481.039296][T16156]  _copy_to_user+0x32/0xd0
[  481.039330][T16156]  simple_read_from_buffer+0xd0/0x160
[  481.039382][T16156]  proc_fail_nth_read+0x198/0x270
[  481.039413][T16156]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  481.039428][T16156]  ? rw_verify_area+0xcf/0x680
[  481.039457][T16156]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  481.039470][T16156]  vfs_read+0x1df/0xbf0
[  481.039485][T16156]  ? __fget_files+0x1fc/0x3a0
[  481.039502][T16156]  ? __pfx___mutex_lock+0x10/0x10
[  481.039534][T16156]  ? __pfx_vfs_read+0x10/0x10
[  481.039552][T16156]  ? __fget_files+0x206/0x3a0
[  481.039572][T16156]  ksys_read+0x12b/0x250
[  481.039587][T16156]  ? __pfx_ksys_read+0x10/0x10
[  481.039606][T16156]  __do_fast_syscall_32+0x73/0x120
[  481.039621][T16156]  do_fast_syscall_32+0x32/0x80
[  481.039634][T16156]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  481.039654][T16156] RIP: 0023:0xf73ee579
[  481.039663][T16156] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  481.039674][T16156] RSP: 002b:00000000f5034590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  481.039715][T16156] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5034620
[  481.039722][T16156] RDX: 000000000000000f RSI: 00000000f73dcff4 RDI: 0000000000000000
[  481.039729][T16156] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  481.039735][T16156] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  481.039742][T16156] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  481.039755][T16156]  </TASK>
[  481.130843][T16166] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2841'.
[  481.139201][T16166] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2841'.
[  481.167535][T16166] gretap0: entered promiscuous mode
[  481.177447][T16166] hsr1: Slave A (netdevsim0) is not up; please bring it up to get a fully working HSR network
[  481.281521][T16174] ALSA: mixer_oss: invalid index 80000
[  481.498478][T16185] sch_fq: defrate 26519 ignored.
[  481.526246][T16183] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2847'.
[  481.528857][T16183] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2847'.
[  482.700633][T16213] xt_TPROXY: Can be used only with -p tcp or -p udp
[  483.048998][T16221] batman_adv: batadv0: Adding interface: dummy0
[  483.051193][T16221] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  483.059189][T16221] batman_adv: batadv0: Interface activated: dummy0
[  483.354537][T16239] netem: change failed
[  483.358268][T16237] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2869'.
[  483.362981][T16237] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2869'.
[  483.365781][T16237] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2869'.
[  483.443533][T16245] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  483.547293][T16247] ISOFS: Unable to identify CD-ROM format.
[  483.552641][T16247] batman_adv: batadv0: Interface deactivated: dummy0
[  483.555352][T16247] batman_adv: batadv0: Removing interface: dummy0
[  483.557843][T16247] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  483.559950][T16247] batman_adv: batadv0: Removing interface: batadv_slave_0
[  483.563194][T16247] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  483.565437][T16247] batman_adv: batadv0: Removing interface: batadv_slave_1
[  484.560718][ T5958] Bluetooth: hci4: sending frame failed (-49)
[  484.564225][ T5300] Bluetooth: hci4: Entering manufacturer mode failed (-49)
[  484.564942][T16270] Bluetooth: hci4: Frame reassembly failed (-84)
[  484.819875][T16284] sch_fq: defrate 26519 ignored.
[  485.451168][T16304] ISOFS: Unable to identify CD-ROM format.
[  485.458874][T16304] __nla_validate_parse: 4 callbacks suppressed
[  485.458885][T16304] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2887'.
[  486.650926][T16330] program syz.1.2897 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  487.155414][T16346] ISOFS: Unable to identify CD-ROM format.
[  487.166613][T16346] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2901'.
[  487.638601][T16353] could not allocate digest TFM handle sha256-mb
[  488.322396][T16384] overlay: filesystem on ./bus not supported as upperdir
[  488.365111][T16386] sch_fq: defrate 26519 ignored.
[  488.683677][T16395] ISOFS: Unable to identify CD-ROM format.
[  488.689031][T16395] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2914'.
[  488.938515][T16397] netlink: 'syz.6.2915': attribute type 1 has an invalid length.
[  489.192938][T16398] XFS (nullb0): Invalid superblock magic number
[  489.234546][T16398] netlink: 'syz.6.2915': attribute type 12 has an invalid length.
[  489.988786][T16402] syz.4.2916 (16402) used greatest stack depth: 19936 bytes left
[  490.063556][T16425] FAULT_INJECTION: forcing a failure.
[  490.063556][T16425] name failslab, interval 1, probability 0, space 0, times 0
[  490.068266][T16425] CPU: 2 UID: 0 PID: 16425 Comm: syz.4.2922 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  490.068283][T16425] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  490.068290][T16425] Call Trace:
[  490.068294][T16425]  <TASK>
[  490.068299][T16425]  dump_stack_lvl+0x16c/0x1f0
[  490.068317][T16425]  should_fail_ex+0x50a/0x650
[  490.068335][T16425]  ? fs_reclaim_acquire+0xae/0x150
[  490.068381][T16425]  should_failslab+0xc2/0x120
[  490.068418][T16425]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  490.068437][T16425]  ? io_submit_one+0x123/0x1da0
[  490.068454][T16425]  io_submit_one+0x123/0x1da0
[  490.068473][T16425]  ? __pfx_io_submit_one+0x10/0x10
[  490.068488][T16425]  ? __might_fault+0x13b/0x190
[  490.068503][T16425]  ? lock_acquire+0x2f/0xb0
[  490.068577][T16425]  ? __might_fault+0xe3/0x190
[  490.068590][T16425]  ? __ia32_compat_sys_io_submit+0x1ba/0x3a0
[  490.068605][T16425]  __ia32_compat_sys_io_submit+0x1ba/0x3a0
[  490.068621][T16425]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[  490.068643][T16425]  __do_fast_syscall_32+0x73/0x120
[  490.068658][T16425]  do_fast_syscall_32+0x32/0x80
[  490.068671][T16425]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  490.068689][T16425] RIP: 0023:0xf7f04579
[  490.068698][T16425] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  490.068709][T16425] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[  490.068720][T16425] RAX: ffffffffffffffda RBX: 00000000f7397000 RCX: 0000000000000002
[  490.068726][T16425] RDX: 0000000080000780 RSI: 0000000000000000 RDI: 0000000000000000
[  490.068737][T16425] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  490.068743][T16425] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  490.068750][T16425] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  490.068762][T16425]  </TASK>
[  490.414926][T16439] ISOFS: Unable to identify CD-ROM format.
[  490.427140][T16439] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2926'.
[  490.427204][T16439] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  490.432591][T16439] batman_adv: batadv0: Removing interface: batadv_slave_0
[  490.436594][T16439] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  490.436620][T16439] batman_adv: batadv0: Removing interface: batadv_slave_1
[  490.703300][T16445] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  490.706286][T16445] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  490.709195][T16445] vhci_hcd vhci_hcd.0: Device attached
[  490.711929][T16446] vhci_hcd: connection closed
[  490.712159][T14883] vhci_hcd: stop threads
[  490.715099][T14883] vhci_hcd: release socket
[  490.716373][T14883] vhci_hcd: disconnect device
[  490.840712][T16449] overlayfs: failed to resolve './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa': -2
[  491.406861][T16462] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2934'.
[  491.410261][T16462] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2934'.
[  491.419831][ T6071] IPVS: starting estimator thread 0...
[  491.505493][T16463] IPVS: using max 21 ests per chain, 50400 per kthread
[  491.730920][T16466] sch_fq: defrate 26519 ignored.
[  491.767515][T16470] netlink: 'syz.4.2936': attribute type 18 has an invalid length.
[  491.998182][T16479] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2939'.
[  492.000978][T16479] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2939'.
[  492.014621][ T6071] IPVS: starting estimator thread 0...
[  492.107311][T16480] IPVS: using max 36 ests per chain, 86400 per kthread
[  492.232343][T16493] sch_fq: defrate 26519 ignored.
[  492.262160][T16495] program syz.6.2946 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  492.387452][T16496] ISOFS: Unable to identify CD-ROM format.
[  492.398804][T16496] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2942'.
[  493.098763][T16526] sch_fq: defrate 26519 ignored.
[  493.858107][T16552] ISOFS: Unable to identify CD-ROM format.
[  493.869294][T16552] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2962'.
[  494.260784][T16564] 9pnet_fd: Insufficient options for proto=fd
[  495.394566][   T39] audit: type=1326 audit(1739658252.342:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16583 comm="syz.1.2972" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0
[  496.227715][T16599] ISOFS: Unable to identify CD-ROM format.
[  496.236973][T16597] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2975'.
[  496.455179][   T39] audit: type=1804 audit(1739658253.402:634): pid=16621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2983" name="/newroot/216/file0/file0" dev="9p" ino=36186047 res=1 errno=0
[  496.593995][ T6867] psmouse serio4: Failed to reset mouse on : -5
[  496.867907][T16632] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2986'.
[  496.871287][T16632] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2986'.
[  496.876215][T16627] FAULT_INJECTION: forcing a failure.
[  496.876215][T16627] name failslab, interval 1, probability 0, space 0, times 0
[  496.880911][T16627] CPU: 0 UID: 0 PID: 16627 Comm: syz.5.2986 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  496.880931][T16627] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  496.880941][T16627] Call Trace:
[  496.880947][T16627]  <TASK>
[  496.880953][T16627]  dump_stack_lvl+0x16c/0x1f0
[  496.880977][T16627]  should_fail_ex+0x50a/0x650
[  496.881003][T16627]  should_failslab+0xc2/0x120
[  496.881026][T16627]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  496.881050][T16627]  ? skb_clone+0x190/0x3f0
[  496.881168][T16627]  skb_clone+0x190/0x3f0
[  496.881188][T16627]  netlink_deliver_tap+0xabd/0xd30
[  496.881245][T16627]  netlink_unicast+0x5e1/0x7f0
[  496.881267][T16627]  ? __pfx_netlink_unicast+0x10/0x10
[  496.881289][T16627]  ? __phys_addr_symbol+0x30/0x80
[  496.881335][T16627]  ? __check_object_size+0x488/0x710
[  496.881356][T16627]  netlink_sendmsg+0x8b8/0xd70
[  496.881381][T16627]  ? __pfx_netlink_sendmsg+0x10/0x10
[  496.881413][T16627]  ____sys_sendmsg+0xaaf/0xc90
[  496.881431][T16627]  ? __pfx_____sys_sendmsg+0x10/0x10
[  496.881447][T16627]  ? get_compat_msghdr+0x11b/0x170
[  496.881496][T16627]  ___sys_sendmsg+0x135/0x1e0
[  496.881522][T16627]  ? __pfx____sys_sendmsg+0x10/0x10
[  496.881555][T16627]  ? __pfx_lock_release+0x10/0x10
[  496.881579][T16627]  ? trace_lock_acquire+0x14e/0x1f0
[  496.881607][T16627]  ? __fget_files+0x206/0x3a0
[  496.881638][T16627]  __sys_sendmsg+0x16e/0x220
[  496.881662][T16627]  ? __pfx___sys_sendmsg+0x10/0x10
[  496.881701][T16627]  __do_fast_syscall_32+0x73/0x120
[  496.881722][T16627]  do_fast_syscall_32+0x32/0x80
[  496.881740][T16627]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  496.881765][T16627] RIP: 0023:0xf743e579
[  496.881779][T16627] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  496.881794][T16627] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  496.881809][T16627] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000380
[  496.881819][T16627] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 0000000000000000
[  496.881827][T16627] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  496.881836][T16627] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  496.881851][T16627] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  496.881870][T16627]  </TASK>
[  497.043671][T16642] FAULT_INJECTION: forcing a failure.
[  497.043671][T16642] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  497.047594][T16642] CPU: 0 UID: 0 PID: 16642 Comm: syz.5.2990 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  497.047611][T16642] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  497.047620][T16642] Call Trace:
[  497.047624][T16642]  <TASK>
[  497.047629][T16642]  dump_stack_lvl+0x16c/0x1f0
[  497.047647][T16642]  should_fail_ex+0x50a/0x650
[  497.047664][T16642]  ? __pfx___might_resched+0x10/0x10
[  497.047719][T16642]  should_fail_alloc_page+0xe7/0x130
[  497.047731][T16642]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  497.047749][T16642]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  497.047768][T16642]  ? hlock_class+0x4e/0x130
[  497.047779][T16642]  ? mark_lock+0xb5/0xc60
[  497.047796][T16642]  ? __pfx_mark_lock+0x10/0x10
[  497.047812][T16642]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  497.047831][T16642]  ? mark_lock+0xb5/0xc60
[  497.047853][T16642]  ? hlock_class+0x4e/0x130
[  497.047867][T16642]  ? hlock_class+0x4e/0x130
[  497.047878][T16642]  ? __lock_acquire+0xcc5/0x3c40
[  497.047894][T16642]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  497.047940][T16642]  ? policy_nodemask+0xea/0x4e0
[  497.047961][T16642]  alloc_pages_mpol+0x1fc/0x540
[  497.047979][T16642]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  497.047997][T16642]  ? __lock_acquire+0x15a9/0x3c40
[  497.048016][T16642]  folio_alloc_mpol_noprof+0x36/0x2f0
[  497.048029][T16642]  vma_alloc_folio_noprof+0xee/0x1b0
[  497.048041][T16642]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  497.048054][T16642]  ? find_held_lock+0x2d/0x110
[  497.048072][T16642]  do_pte_missing+0x202f/0x3e10
[  497.048102][T16642]  __handle_mm_fault+0x1166/0x2c60
[  497.048133][T16642]  ? __pfx___handle_mm_fault+0x10/0x10
[  497.048157][T16642]  ? follow_page_pte+0x3ac/0x1490
[  497.048204][T16642]  ? __pfx_lock_release+0x10/0x10
[  497.048233][T16642]  handle_mm_fault+0x3fa/0xaa0
[  497.048252][T16642]  __get_user_pages+0x773/0x36f0
[  497.048271][T16642]  ? __pfx_mt_find+0x10/0x10
[  497.048286][T16642]  ? __pfx___get_user_pages+0x10/0x10
[  497.048307][T16642]  populate_vma_page_range+0x27f/0x3a0
[  497.048325][T16642]  ? __pfx_populate_vma_page_range+0x10/0x10
[  497.048341][T16642]  ? __pfx_find_vma_intersection+0x10/0x10
[  497.048357][T16642]  ? do_mlock+0x37e/0x810
[  497.048375][T16642]  __mm_populate+0x1d6/0x380
[  497.048392][T16642]  ? __pfx___mm_populate+0x10/0x10
[  497.048410][T16642]  ? up_write+0x1b2/0x520
[  497.048429][T16642]  do_mlock+0x448/0x810
[  497.048447][T16642]  ? __fget_files+0x206/0x3a0
[  497.048464][T16642]  ? __pfx_do_mlock+0x10/0x10
[  497.048482][T16642]  ? fput+0x67/0x440
[  497.048493][T16642]  ? ksys_write+0x1ba/0x250
[  497.048508][T16642]  ? __pfx_ksys_write+0x10/0x10
[  497.048526][T16642]  __ia32_sys_mlock+0x57/0x80
[  497.048536][T16642]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  497.048551][T16642]  __do_fast_syscall_32+0x73/0x120
[  497.048565][T16642]  do_fast_syscall_32+0x32/0x80
[  497.048578][T16642]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  497.048611][T16642] RIP: 0023:0xf743e579
[  497.048621][T16642] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  497.048633][T16642] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000096
[  497.048644][T16642] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000800000
[  497.048651][T16642] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  497.048657][T16642] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  497.048663][T16642] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  497.048670][T16642] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  497.048683][T16642]  </TASK>
[  497.095133][T16643] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  497.732921][T16667] ISOFS: Unable to identify CD-ROM format.
[  497.750178][T16667] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2994'.
[  498.523276][T16690] netlink: 144 bytes leftover after parsing attributes in process `syz.5.3000'.
[  498.534426][ T5949] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  498.774216][T16698] FAULT_INJECTION: forcing a failure.
[  498.774216][T16698] name failslab, interval 1, probability 0, space 0, times 0
[  498.777865][T16698] CPU: 1 UID: 0 PID: 16698 Comm: syz.6.3004 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  498.777886][T16698] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  498.777893][T16698] Call Trace:
[  498.777899][T16698]  <TASK>
[  498.777905][T16698]  dump_stack_lvl+0x16c/0x1f0
[  498.777924][T16698]  should_fail_ex+0x50a/0x650
[  498.777945][T16698]  ? skcipher_walk_next+0x8d1/0xba0
[  498.777959][T16698]  should_failslab+0xc2/0x120
[  498.777978][T16698]  __kmalloc_noprof+0xcb/0x510
[  498.777997][T16698]  ? gcm_process_assoc+0x5dd/0x730
[  498.778011][T16698]  skcipher_walk_next+0x8d1/0xba0
[  498.778028][T16698]  skcipher_walk_done+0x4ae/0xd10
[  498.778046][T16698]  gcm_encrypt_vaes_avx10_256+0x52e/0x630
[  498.778060][T16698]  ? __pfx_gcm_encrypt_vaes_avx10_256+0x10/0x10
[  498.778080][T16698]  ? gup_fast_fallback+0x1dc6/0x2690
[  498.778099][T16698]  ? gup_fast_fallback+0x958/0x2690
[  498.778117][T16698]  crypto_aead_encrypt+0xbd/0x100
[  498.778135][T16698]  crypto_aead_encrypt+0xbd/0x100
[  498.778153][T16698]  tls_push_record+0x1cb9/0x31b0
[  498.778227][T16698]  ? __pfx_tls_push_record+0x10/0x10
[  498.778238][T16698]  ? sk_psock_get+0x13f/0x470
[  498.778248][T16698]  ? __pfx_sk_psock_get+0x10/0x10
[  498.778258][T16698]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  498.778303][T16698]  bpf_exec_tx_verdict+0xe24/0x1280
[  498.778316][T16698]  ? iov_iter_advance+0x7d/0x6c0
[  498.778327][T16698]  ? hlock_class+0x4e/0x130
[  498.778342][T16698]  ? __pfx_bpf_exec_tx_verdict+0x10/0x10
[  498.778387][T16698]  ? sk_msg_alloc+0x706/0xad0
[  498.778404][T16698]  tls_sw_sendmsg+0x1b59/0x23c0
[  498.778427][T16698]  ? __pfx_tls_sw_sendmsg+0x10/0x10
[  498.778438][T16698]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  498.778459][T16698]  ? aa_sk_perm+0x2f5/0xb20
[  498.778472][T16698]  ? __pfx_aa_sk_perm+0x10/0x10
[  498.778485][T16698]  ? __fget_files+0x206/0x3a0
[  498.778503][T16698]  ? __pfx_tls_sw_sendmsg+0x10/0x10
[  498.778516][T16698]  inet6_sendmsg+0x119/0x140
[  498.778558][T16698]  __sys_sendto+0x374/0x4f0
[  498.778574][T16698]  ? __pfx___sys_sendto+0x10/0x10
[  498.778600][T16698]  ? ksys_write+0x1ba/0x250
[  498.778636][T16698]  ? __pfx_ksys_write+0x10/0x10
[  498.778653][T16698]  __ia32_sys_sendto+0xdd/0x1b0
[  498.778666][T16698]  ? lockdep_hardirqs_on+0x7c/0x110
[  498.778679][T16698]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  498.778692][T16698]  __do_fast_syscall_32+0x73/0x120
[  498.778707][T16698]  do_fast_syscall_32+0x32/0x80
[  498.778721][T16698]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  498.778740][T16698] RIP: 0023:0xf741e579
[  498.778749][T16698] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  498.778761][T16698] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  498.778772][T16698] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800001c0
[  498.778779][T16698] RDX: 00000000fffffede RSI: 0000000000000000 RDI: 0000000000000000
[  498.778785][T16698] RBP: 0000000003000137 R08: 0000000000000000 R09: 0000000000000000
[  498.778791][T16698] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  498.778797][T16698] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  498.778811][T16698]  </TASK>
[  498.872278][    C1] vkms_vblank_simulate: vblank timer overrun
[  498.915576][T16703] FAULT_INJECTION: forcing a failure.
[  498.915576][T16703] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  498.919111][T16703] CPU: 3 UID: 0 PID: 16703 Comm: syz.6.3006 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  498.919126][T16703] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  498.919134][T16703] Call Trace:
[  498.919139][T16703]  <TASK>
[  498.919145][T16703]  dump_stack_lvl+0x16c/0x1f0
[  498.919164][T16703]  should_fail_ex+0x50a/0x650
[  498.919184][T16703]  __fpu_restore_sig+0xa9c/0x1430
[  498.919229][T16703]  ? __pfx___fpu_restore_sig+0x10/0x10
[  498.919250][T16703]  ? lock_acquire+0x2f/0xb0
[  498.919265][T16703]  ? __might_fault+0xe3/0x190
[  498.919279][T16703]  fpu__restore_sig+0x113/0x190
[  498.919294][T16703]  ia32_restore_sigcontext+0x40f/0x5d0
[  498.919334][T16703]  ? __pfx_ia32_restore_sigcontext+0x10/0x10
[  498.919350][T16703]  ? __pfx_lock_release+0x10/0x10
[  498.919368][T16703]  ? _raw_spin_unlock_irq+0x23/0x50
[  498.919380][T16703]  ? lockdep_hardirqs_on+0x7c/0x110
[  498.919394][T16703]  __do_compat_sys_rt_sigreturn+0x121/0x1f0
[  498.919411][T16703]  ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10
[  498.919432][T16703]  do_int80_emulation+0x104/0x200
[  498.919447][T16703]  asm_int80_emulation+0x1a/0x20
[  498.919464][T16703] RIP: 0023:0xf741e577
[  498.919473][T16703] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 <cd> 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00
[  498.919485][T16703] RSP: 002b:00000000f50a655c EFLAGS: 00000296
[  498.919494][T16703] RAX: 0000000000000003 RBX: 0000000000000004 RCX: 0000000080000040
[  498.919501][T16703] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[  498.919507][T16703] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  498.919513][T16703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  498.919520][T16703] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  498.919532][T16703]  </TASK>
[  499.570443][T16716] FAULT_INJECTION: forcing a failure.
[  499.570443][T16716] name failslab, interval 1, probability 0, space 0, times 0
[  499.575510][T16716] CPU: 1 UID: 0 PID: 16716 Comm: syz.5.3008 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  499.575526][T16716] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  499.575533][T16716] Call Trace:
[  499.575537][T16716]  <TASK>
[  499.575542][T16716]  dump_stack_lvl+0x116/0x1f0
[  499.575560][T16716]  should_fail_ex+0x50a/0x650
[  499.575579][T16716]  ? virtqueue_add_sgs+0x724/0x1b10
[  499.575621][T16716]  should_failslab+0xc2/0x120
[  499.575640][T16716]  __kmalloc_noprof+0xcb/0x510
[  499.575659][T16716]  ? lock_acquire.part.0+0x11b/0x380
[  499.575678][T16716]  virtqueue_add_sgs+0x724/0x1b10
[  499.575694][T16716]  ? __virt_addr_valid+0x1a4/0x590
[  499.575707][T16716]  ? __pfx_virtqueue_add_sgs+0x10/0x10
[  499.575720][T16716]  ? __virt_addr_valid+0x5e/0x590
[  499.575730][T16716]  ? __phys_addr+0xc6/0x150
[  499.575741][T16716]  ? pack_sg_list.constprop.0+0x255/0x2b0
[  499.575787][T16716]  p9_virtio_request+0x271/0x6a0
[  499.575807][T16716]  ? __pfx_p9_virtio_request+0x10/0x10
[  499.575823][T16716]  ? p9_client_prepare_req+0x111/0x4d0
[  499.575836][T16716]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  499.575849][T16716]  ? hlock_class+0x4e/0x130
[  499.575860][T16716]  ? mark_lock+0xb5/0xc60
[  499.575877][T16716]  p9_client_rpc+0x33d/0xc10
[  499.575889][T16716]  ? __pfx_p9_client_rpc+0x10/0x10
[  499.575907][T16716]  ? idr_preload_end+0xc2/0x230
[  499.575925][T16716]  ? __pfx_lock_release+0x10/0x10
[  499.575940][T16716]  ? __pfx_lock_release+0x10/0x10
[  499.575957][T16716]  ? mark_held_locks+0x9f/0xe0
[  499.575972][T16716]  ? rcu_is_watching+0x12/0xc0
[  499.575987][T16716]  p9_client_walk+0x1ac/0x530
[  499.576001][T16716]  ? __pfx_p9_client_walk+0x10/0x10
[  499.576015][T16716]  ? v9fs_fid_lookup+0xe9/0xec0
[  499.576050][T16716]  v9fs_file_open+0x596/0xac0
[  499.576062][T16716]  ? __pfx_apparmor_file_open+0x10/0x10
[  499.576076][T16716]  ? __pfx_v9fs_file_open+0x10/0x10
[  499.576088][T16716]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  499.576106][T16716]  do_dentry_open+0x735/0x1c40
[  499.576123][T16716]  ? __pfx_v9fs_file_open+0x10/0x10
[  499.576134][T16716]  ? inode_permission+0xdd/0x5f0
[  499.576148][T16716]  vfs_open+0x82/0x3f0
[  499.576159][T16716]  ? may_open+0x1f2/0x400
[  499.576172][T16716]  path_openat+0x1e88/0x2d80
[  499.576193][T16716]  ? __pfx_path_openat+0x10/0x10
[  499.576209][T16716]  ? __pfx___lock_acquire+0x10/0x10
[  499.576224][T16716]  ? lock_acquire.part.0+0x11b/0x380
[  499.576238][T16716]  ? find_held_lock+0x2d/0x110
[  499.576251][T16716]  do_filp_open+0x20c/0x470
[  499.576267][T16716]  ? __pfx_do_filp_open+0x10/0x10
[  499.576282][T16716]  ? find_held_lock+0x2d/0x110
[  499.576302][T16716]  ? _raw_spin_unlock+0x28/0x50
[  499.576313][T16716]  ? alloc_fd+0x41f/0x760
[  499.576332][T16716]  do_sys_openat2+0x17a/0x1e0
[  499.576343][T16716]  ? __pfx_do_sys_openat2+0x10/0x10
[  499.576356][T16716]  ? __fget_files+0x206/0x3a0
[  499.576374][T16716]  __ia32_compat_sys_open+0x147/0x1e0
[  499.576387][T16716]  ? __pfx___ia32_compat_sys_open+0x10/0x10
[  499.576402][T16716]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  499.576418][T16716]  __do_fast_syscall_32+0x73/0x120
[  499.576432][T16716]  do_fast_syscall_32+0x32/0x80
[  499.576446][T16716]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  499.576465][T16716] RIP: 0023:0xf743e579
[  499.576475][T16716] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  499.576486][T16716] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000005
[  499.576497][T16716] RAX: ffffffffffffffda RBX: 00000000800000c0 RCX: 0000000000000000
[  499.576504][T16716] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[  499.576510][T16716] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  499.576516][T16716] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  499.576522][T16716] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  499.576535][T16716]  </TASK>
[  499.698636][    C1] vkms_vblank_simulate: vblank timer overrun
[  500.060337][T16739] netlink: 'syz.5.3015': attribute type 10 has an invalid length.
[  500.062828][T16739] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3015'.
[  500.074374][T16738] overlay: Unknown parameter 'uid'
[  500.124421][T16739] team0: Port device geneve0 added
[  500.131246][T16742] overlayfs: failed to resolve './file0': -2
[  500.323988][ T6867] misc userio: Buffer overflowed, userio client isn't keeping up
[  500.876230][T16756] overlay: ./file0 is not a directory
[  500.880790][T16756] overlay: ./file0 is not a directory
[  500.885533][T16756] overlayfs: failed to resolve './file0': -2
[  500.974072][T15205] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  500.994535][ T5987] kernel read not supported for file /276/net/igmp (pid: 5987 comm: kworker/1:3)
[  501.026104][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  501.162101][T15205] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  501.171977][T15205] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  501.172224][T15205] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  501.172296][T15205] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  501.203684][T16753] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  501.238723][T15205] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  501.249777][T16772] FAULT_INJECTION: forcing a failure.
[  501.249777][T16772] name failslab, interval 1, probability 0, space 0, times 0
[  501.254233][T16772] CPU: 3 UID: 0 PID: 16772 Comm: syz.4.3026 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  501.254253][T16772] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  501.254263][T16772] Call Trace:
[  501.254268][T16772]  <TASK>
[  501.254276][T16772]  dump_stack_lvl+0x16c/0x1f0
[  501.254302][T16772]  should_fail_ex+0x50a/0x650
[  501.254326][T16772]  ? fs_reclaim_acquire+0xae/0x150
[  501.254349][T16772]  ? sctp_transport_new+0x94/0x790
[  501.254429][T16772]  should_failslab+0xc2/0x120
[  501.254456][T16772]  __kmalloc_cache_noprof+0x68/0x410
[  501.254486][T16772]  sctp_transport_new+0x94/0x790
[  501.254511][T16772]  sctp_assoc_add_peer+0x2e5/0x1530
[  501.254537][T16772]  sctp_connect_new_asoc+0x209/0x790
[  501.254563][T16772]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  501.254613][T16772]  ? mark_held_locks+0x9f/0xe0
[  501.254646][T16772]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  501.254698][T16772]  sctp_sendmsg+0x1610/0x1eb0
[  501.254728][T16772]  ? __pfx_sctp_sendmsg+0x10/0x10
[  501.254760][T16772]  ? __pfx_aa_sk_perm+0x10/0x10
[  501.254778][T16772]  ? __import_iovec+0x1f2/0x6d0
[  501.254796][T16772]  ? __pfx_sctp_sendmsg+0x10/0x10
[  501.254817][T16772]  inet_sendmsg+0x119/0x140
[  501.254838][T16772]  ____sys_sendmsg+0x98c/0xc90
[  501.254856][T16772]  ? __pfx_____sys_sendmsg+0x10/0x10
[  501.254871][T16772]  ? get_compat_msghdr+0x11b/0x170
[  501.254898][T16772]  ___sys_sendmsg+0x135/0x1e0
[  501.254920][T16772]  ? __pfx____sys_sendmsg+0x10/0x10
[  501.254949][T16772]  ? trace_lock_acquire+0x14e/0x1f0
[  501.254982][T16772]  __sys_sendmmsg+0x2fa/0x420
[  501.255005][T16772]  ? __pfx___sys_sendmmsg+0x10/0x10
[  501.255033][T16772]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  501.255060][T16772]  ? fput+0x67/0x440
[  501.255076][T16772]  ? ksys_write+0x1ba/0x250
[  501.255097][T16772]  ? __pfx_ksys_write+0x10/0x10
[  501.255120][T16772]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  501.255137][T16772]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  501.255155][T16772]  __do_fast_syscall_32+0x73/0x120
[  501.255175][T16772]  do_fast_syscall_32+0x32/0x80
[  501.255193][T16772]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  501.255216][T16772] RIP: 0023:0xf7f04579
[  501.255229][T16772] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  501.255244][T16772] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  501.255260][T16772] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001ec0
[  501.255269][T16772] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  501.255278][T16772] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  501.255287][T16772] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  501.255296][T16772] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  501.255316][T16772]  </TASK>
[  501.481045][T16779] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  501.484099][T16779] overlayfs: missing 'lowerdir'
[  501.599098][ T6867] input: PS/2 Generic Mouse as /devices/serio4/input/input36
[  501.824031][ T6867] psmouse serio4: Failed to enable mouse on 
[  502.190422][T16790] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3033'.
[  503.296047][T16822] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3042'.
[  503.302810][T16822] mac80211_hwsim hwsim19 wlan1: entered promiscuous mode
[  503.310014][T16822] macvtap1: entered promiscuous mode
[  503.317716][T16822] mac80211_hwsim hwsim19 wlan1: left promiscuous mode
[  503.487380][T16826] FAULT_INJECTION: forcing a failure.
[  503.487380][T16826] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  503.491190][T16826] CPU: 1 UID: 0 PID: 16826 Comm: syz.1.3043 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  503.491216][T16826] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  503.491224][T16826] Call Trace:
[  503.491229][T16826]  <TASK>
[  503.491241][T16826]  dump_stack_lvl+0x16c/0x1f0
[  503.491263][T16826]  should_fail_ex+0x50a/0x650
[  503.491283][T16826]  _copy_from_iter+0x2a1/0x1560
[  503.491295][T16826]  ? trace_lock_acquire+0x14e/0x1f0
[  503.491309][T16826]  ? __alloc_skb+0x1fe/0x380
[  503.491324][T16826]  ? __pfx__copy_from_iter+0x10/0x10
[  503.491334][T16826]  ? __virt_addr_valid+0x1a4/0x590
[  503.491348][T16826]  ? __virt_addr_valid+0x5e/0x590
[  503.491358][T16826]  ? __phys_addr_symbol+0x30/0x80
[  503.491369][T16826]  ? __check_object_size+0x488/0x710
[  503.491382][T16826]  netlink_sendmsg+0x813/0xd70
[  503.491398][T16826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  503.491417][T16826]  ____sys_sendmsg+0xaaf/0xc90
[  503.491429][T16826]  ? __pfx_____sys_sendmsg+0x10/0x10
[  503.491439][T16826]  ? get_compat_msghdr+0x11b/0x170
[  503.491457][T16826]  ___sys_sendmsg+0x135/0x1e0
[  503.491473][T16826]  ? __pfx____sys_sendmsg+0x10/0x10
[  503.491493][T16826]  ? __pfx_lock_release+0x10/0x10
[  503.491508][T16826]  ? trace_lock_acquire+0x14e/0x1f0
[  503.491525][T16826]  ? __fget_files+0x206/0x3a0
[  503.491546][T16826]  __sys_sendmsg+0x16e/0x220
[  503.491561][T16826]  ? __pfx___sys_sendmsg+0x10/0x10
[  503.491585][T16826]  __do_fast_syscall_32+0x73/0x120
[  503.491600][T16826]  do_fast_syscall_32+0x32/0x80
[  503.491618][T16826]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  503.491637][T16826] RIP: 0023:0xf73ee579
[  503.491646][T16826] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  503.491658][T16826] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  503.491671][T16826] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000e40
[  503.491678][T16826] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  503.491684][T16826] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  503.491690][T16826] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  503.491696][T16826] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  503.491709][T16826]  </TASK>
[  503.533510][T16827] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  503.533834][    C1] vkms_vblank_simulate: vblank timer overrun
[  503.535439][T16827] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  503.827030][T16834] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3045'.
[  503.949601][   T30] usb 10-1: USB disconnect, device number 8
[  504.261883][   T39] audit: type=1326 audit(1739658261.202:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16839 comm="syz.5.3046" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf743e579 code=0x0
[  505.524199][T16870] netlink: 164 bytes leftover after parsing attributes in process `syz.6.3057'.
[  505.526847][T16870] netlink: 164 bytes leftover after parsing attributes in process `syz.6.3057'.
[  505.635117][T16874] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3058'.
[  505.640819][T16874] bridge0: port 2(bridge_slave_1) entered disabled state
[  505.741447][T16874] bridge_slave_1 (unregistering): left allmulticast mode
[  505.744469][T16874] bridge_slave_1 (unregistering): left promiscuous mode
[  505.747315][T16874] bridge0: port 2(bridge_slave_1) entered disabled state
[  506.809845][T16911] ISOFS: Unable to identify CD-ROM format.
[  506.823618][T16911] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3065'.
[  507.288385][T16924] ata1.00: invalid multi_count 128 ignored
[  507.360281][T16924] ata1.00: invalid multi_count 128 ignored
[  507.456164][T16934] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3076'.
[  508.239091][T16960] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3084'.
[  508.302771][T16964] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3085'.
[  508.489938][T16970] ISOFS: Unable to identify CD-ROM format.
[  508.510463][T16970] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3083'.
[  509.851865][T16994] FAULT_INJECTION: forcing a failure.
[  509.851865][T16994] name failslab, interval 1, probability 0, space 0, times 0
[  509.855783][T16994] CPU: 1 UID: 0 PID: 16994 Comm: syz.4.3092 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  509.855803][T16994] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  509.855812][T16994] Call Trace:
[  509.855819][T16994]  <TASK>
[  509.855825][T16994]  dump_stack_lvl+0x16c/0x1f0
[  509.855847][T16994]  should_fail_ex+0x50a/0x650
[  509.855869][T16994]  ? fs_reclaim_acquire+0xae/0x150
[  509.855889][T16994]  should_failslab+0xc2/0x120
[  509.855912][T16994]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  509.855934][T16994]  ? irq_work_queue+0x2a/0x80
[  509.855984][T16994]  ? ptlock_alloc+0x1f/0x70
[  509.856008][T16994]  ptlock_alloc+0x1f/0x70
[  509.856027][T16994]  pte_alloc_one+0x74/0x390
[  509.856049][T16994]  do_pte_missing+0x1aff/0x3e10
[  509.856070][T16994]  ? __pfx_lock_release+0x10/0x10
[  509.856095][T16994]  __handle_mm_fault+0x1166/0x2c60
[  509.856121][T16994]  ? __pfx___handle_mm_fault+0x10/0x10
[  509.856140][T16994]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  509.856170][T16994]  ? find_vma+0xc0/0x140
[  509.856187][T16994]  ? __pfx_find_vma+0x10/0x10
[  509.856206][T16994]  handle_mm_fault+0x3fa/0xaa0
[  509.856229][T16994]  do_user_addr_fault+0x7a3/0x13f0
[  509.856253][T16994]  exc_page_fault+0x5c/0xc0
[  509.856269][T16994]  asm_exc_page_fault+0x26/0x30
[  509.856288][T16994] RIP: 0010:_copy_from_user+0x93/0xd0
[  509.856303][T16994] Code: 6f f7 fc 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 19 b4 59 fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 <f3> a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 05 6a
[  509.856317][T16994] RSP: 0018:ffffc90006dbfc38 EFLAGS: 00050297
[  509.856330][T16994] RAX: 0000000000000001 RBX: 00000000800001c0 RCX: 000000000000000c
[  509.856338][T16994] RDX: ffffed10035d0d49 RSI: 00000000800001c0 RDI: ffff88801ae86a40
[  509.856347][T16994] RBP: 000000000000000c R08: 0000000000000001 R09: ffffed10035d0d49
[  509.856357][T16994] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  509.856365][T16994] R13: ffff88801ae86a40 R14: 00000000800001c0 R15: 000000000000000c
[  509.856384][T16994]  ? _copy_from_user+0x87/0xd0
[  509.856399][T16994]  sctp_setsockopt+0x2050/0xb810
[  509.856424][T16994]  ? __pfx_sctp_setsockopt+0x10/0x10
[  509.856443][T16994]  ? __pfx_aa_sk_perm+0x10/0x10
[  509.856462][T16994]  ? sock_common_setsockopt+0x2e/0xf0
[  509.856486][T16994]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  509.856508][T16994]  do_sock_setsockopt+0x222/0x480
[  509.856529][T16994]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  509.856551][T16994]  ? lock_acquire+0x2f/0xb0
[  509.856584][T16994]  __sys_setsockopt+0x1a0/0x230
[  509.856604][T16994]  __ia32_sys_setsockopt+0xbc/0x160
[  509.856649][T16994]  ? lockdep_hardirqs_on+0x7c/0x110
[  509.856663][T16994]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  509.856680][T16994]  __do_fast_syscall_32+0x73/0x120
[  509.856698][T16994]  do_fast_syscall_32+0x32/0x80
[  509.856714][T16994]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  509.856736][T16994] RIP: 0023:0xf7f04579
[  509.856747][T16994] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  509.856771][T16994] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  509.856785][T16994] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000084
[  509.856794][T16994] RDX: 0000000000000072 RSI: 00000000800001c0 RDI: 000000000000000c
[  509.856803][T16994] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  509.856812][T16994] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  509.856821][T16994] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  509.856840][T16994]  </TASK>
[  511.160631][T17026] fuse: Unknown parameter 'f'
[  511.235134][T17031] qnx6: unable to read the first superblock
[  511.366267][T17033] overlayfs: failed to resolve './file1': -2
[  511.407258][T17036] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3107'.
[  511.546925][T17044] FAULT_INJECTION: forcing a failure.
[  511.546925][T17044] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  511.550690][T17044] CPU: 2 UID: 0 PID: 17044 Comm: syz.1.3110 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  511.550706][T17044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  511.550713][T17044] Call Trace:
[  511.550718][T17044]  <TASK>
[  511.550723][T17044]  dump_stack_lvl+0x16c/0x1f0
[  511.550742][T17044]  should_fail_ex+0x50a/0x650
[  511.550762][T17044]  _copy_from_user+0x2e/0xd0
[  511.550774][T17044]  __do_sys_add_key+0x22d/0x460
[  511.550792][T17044]  ? __pfx___do_sys_add_key+0x10/0x10
[  511.550808][T17044]  ? ksys_write+0x1ba/0x250
[  511.550828][T17044]  __do_fast_syscall_32+0x73/0x120
[  511.550843][T17044]  do_fast_syscall_32+0x32/0x80
[  511.550856][T17044]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  511.550876][T17044] RIP: 0023:0xf73ee579
[  511.550885][T17044] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  511.550896][T17044] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 000000000000011e
[  511.550907][T17044] RAX: ffffffffffffffda RBX: 0000000080000440 RCX: 0000000000000000
[  511.550914][T17044] RDX: 00000000800000c0 RSI: 0000000000000004 RDI: 0000000034424fdc
[  511.550920][T17044] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  511.550926][T17044] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  511.550933][T17044] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  511.550945][T17044]  </TASK>
[  511.600594][    C2] vkms_vblank_simulate: vblank timer overrun
[  511.656058][T17048] FAULT_INJECTION: forcing a failure.
[  511.656058][T17048] name failslab, interval 1, probability 0, space 0, times 0
[  511.660200][T17048] CPU: 3 UID: 0 PID: 17048 Comm: syz.1.3112 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  511.660215][T17048] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  511.660223][T17048] Call Trace:
[  511.660227][T17048]  <TASK>
[  511.660233][T17048]  dump_stack_lvl+0x16c/0x1f0
[  511.660250][T17048]  should_fail_ex+0x50a/0x650
[  511.660268][T17048]  ? fs_reclaim_acquire+0xae/0x150
[  511.660283][T17048]  ? tomoyo_realpath_from_path+0xb9/0x720
[  511.660298][T17048]  should_failslab+0xc2/0x120
[  511.660317][T17048]  __kmalloc_noprof+0xcb/0x510
[  511.660333][T17048]  ? trace_kmalloc+0x2d/0xd0
[  511.660345][T17048]  ? __kmalloc_noprof+0x23b/0x510
[  511.660363][T17048]  tomoyo_realpath_from_path+0xb9/0x720
[  511.660379][T17048]  ? tomoyo_fill_path_info+0x233/0x420
[  511.660392][T17048]  tomoyo_mount_acl+0x1af/0x880
[  511.660405][T17048]  ? hlock_class+0x4e/0x130
[  511.660418][T17048]  ? __lock_acquire+0x15a9/0x3c40
[  511.660435][T17048]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  511.660451][T17048]  ? __pfx___lock_acquire+0x10/0x10
[  511.660466][T17048]  ? stack_trace_save+0x95/0xd0
[  511.660481][T17048]  ? __pfx_lock_release+0x10/0x10
[  511.660503][T17048]  ? trace_lock_acquire+0x14e/0x1f0
[  511.660515][T17048]  ? tomoyo_mount_permission+0x149/0x420
[  511.660530][T17048]  ? lock_acquire+0x2f/0xb0
[  511.660543][T17048]  ? tomoyo_mount_permission+0x149/0x420
[  511.660559][T17048]  tomoyo_mount_permission+0x16e/0x420
[  511.660572][T17048]  ? tomoyo_mount_permission+0x149/0x420
[  511.660586][T17048]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  511.660606][T17048]  ? get_current_fs_domain+0x184/0x1f0
[  511.660620][T17048]  security_sb_mount+0x9b/0x260
[  511.660632][T17048]  path_mount+0x129/0x1f10
[  511.660652][T17048]  ? kmem_cache_free+0x2e2/0x4d0
[  511.660667][T17048]  ? __pfx_path_mount+0x10/0x10
[  511.660686][T17048]  ? putname+0x13c/0x180
[  511.660698][T17048]  __ia32_sys_mount+0x28d/0x310
[  511.660716][T17048]  ? __pfx___ia32_sys_mount+0x10/0x10
[  511.660741][T17048]  __do_fast_syscall_32+0x73/0x120
[  511.660756][T17048]  do_fast_syscall_32+0x32/0x80
[  511.660769][T17048]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  511.660788][T17048] RIP: 0023:0xf73ee579
[  511.660797][T17048] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  511.660808][T17048] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  511.660819][T17048] RAX: ffffffffffffffda RBX: 0000000080000080 RCX: 0000000080000140
[  511.660826][T17048] RDX: 0000000080000040 RSI: 0000000000208090 RDI: 0000000000000000
[  511.660832][T17048] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  511.660849][T17048] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  511.660855][T17048] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  511.660868][T17048]  </TASK>
[  511.660872][T17048] ERROR: Out of memory at tomoyo_realpath_from_path.
[  511.819946][T17056] Cannot find add_set index 3 as target
[  511.855864][T17059] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3117'.
[  511.964785][ T6867] IPVS: starting estimator thread 0...
[  512.074105][T17066] IPVS: using max 36 ests per chain, 86400 per kthread
[  512.325725][T17081] xt_CONNSECMARK: invalid mode: 0
[  512.453254][T17089] netlink: 'syz.6.3124': attribute type 6 has an invalid length.
[  512.724012][ T5949] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[  512.816212][T17101] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3129'.
[  512.850358][T17101] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3129'.
[  512.876404][ T5949] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  512.881318][ T5949] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  512.884214][ T5949] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.886573][ T5949] usb 11-1: Product: syz
[  512.887927][ T5949] usb 11-1: Manufacturer: syz
[  512.889358][ T5949] usb 11-1: SerialNumber: syz
[  513.003954][T17105] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3130'.
[  513.644046][ T6867] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  513.732985][T17116] FAULT_INJECTION: forcing a failure.
[  513.732985][T17116] name failslab, interval 1, probability 0, space 0, times 0
[  513.736540][T17116] CPU: 3 UID: 0 PID: 17116 Comm: syz.4.3135 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  513.736554][T17116] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  513.736561][T17116] Call Trace:
[  513.736566][T17116]  <TASK>
[  513.736571][T17116]  dump_stack_lvl+0x16c/0x1f0
[  513.736589][T17116]  should_fail_ex+0x50a/0x650
[  513.736607][T17116]  ? fs_reclaim_acquire+0xae/0x150
[  513.736623][T17116]  should_failslab+0xc2/0x120
[  513.736642][T17116]  __kmalloc_node_noprof+0xd1/0x510
[  513.736660][T17116]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  513.736677][T17116]  __kvmalloc_node_noprof+0xad/0x1a0
[  513.736693][T17116]  bpf_test_run_xdp_live+0x140/0x500
[  513.736707][T17116]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  513.736721][T17116]  ? handle_mm_fault+0x497/0xaa0
[  513.736740][T17116]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  513.736752][T17116]  ? do_user_addr_fault+0x83d/0x13f0
[  513.736778][T17116]  ? _copy_from_user+0x93/0xd0
[  513.736790][T17116]  ? _copy_from_user+0x59/0xd0
[  513.736801][T17116]  ? bpf_test_init.isra.0+0x111/0x150
[  513.736813][T17116]  bpf_prog_test_run_xdp+0x81f/0x1560
[  513.736829][T17116]  ? lock_acquire+0x2f/0xb0
[  513.736844][T17116]  ? __fget_files+0x40/0x3a0
[  513.736860][T17116]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  513.736874][T17116]  ? __fget_files+0x206/0x3a0
[  513.736892][T17116]  ? fput+0x67/0x440
[  513.736902][T17116]  ? __bpf_prog_get+0xa0/0x290
[  513.736945][T17116]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  513.736958][T17116]  __sys_bpf+0xfc6/0x49c0
[  513.736975][T17116]  ? __pfx_lock_release+0x10/0x10
[  513.736991][T17116]  ? __pfx___sys_bpf+0x10/0x10
[  513.737007][T17116]  ? vfs_write+0x306/0x1150
[  513.737025][T17116]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  513.737046][T17116]  ? fput+0x67/0x440
[  513.737057][T17116]  ? ksys_write+0x1ba/0x250
[  513.737071][T17116]  ? __pfx_ksys_write+0x10/0x10
[  513.737089][T17116]  __ia32_sys_bpf+0x76/0xe0
[  513.737107][T17116]  __do_fast_syscall_32+0x73/0x120
[  513.737122][T17116]  do_fast_syscall_32+0x32/0x80
[  513.737136][T17116]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  513.737155][T17116] RIP: 0023:0xf7f04579
[  513.737164][T17116] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  513.737176][T17116] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  513.737188][T17116] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000080
[  513.737195][T17116] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  513.737201][T17116] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  513.737207][T17116] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  513.737214][T17116] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  513.737226][T17116]  </TASK>
[  513.845582][ T6867] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  513.848692][ T6867] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  513.851443][ T6867] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  513.853830][ T6867] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  513.860400][T17109] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  513.865743][ T6867] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  513.904720][ T5949] cdc_ncm 11-1:1.0: MAC-Address: 42:42:42:42:42:42
[  513.906625][ T5949] cdc_ncm 11-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048
[  513.908830][ T5949] cdc_ncm 11-1:1.0: setting rx_max = 2048
[  513.982261][T17123] net veth1_virt_wifi ÿÿÿÿ: renamed from virt_wifi0
[  514.305494][ T5949] cdc_ncm 11-1:1.0: setting tx_max = 88
[  514.613393][   T57] usb 10-1: USB disconnect, device number 9
[  514.891230][T17134] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3140'.
[  515.987629][ T5949] cdc_ncm 11-1:1.0 eth14: register 'cdc_ncm' at usb-dummy_hcd.6-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  515.994023][ T5949] usb 11-1: USB disconnect, device number 3
[  515.996572][ T5949] cdc_ncm 11-1:1.0 eth14: unregister 'cdc_ncm' usb-dummy_hcd.6-1, CDC NCM (NO ZLP)
[  516.579133][T17151] FAULT_INJECTION: forcing a failure.
[  516.579133][T17151] name failslab, interval 1, probability 0, space 0, times 0
[  516.582827][T17151] CPU: 2 UID: 0 PID: 17151 Comm: syz.4.3147 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  516.582843][T17151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  516.582851][T17151] Call Trace:
[  516.582855][T17151]  <TASK>
[  516.582860][T17151]  dump_stack_lvl+0x16c/0x1f0
[  516.582877][T17151]  should_fail_ex+0x50a/0x650
[  516.582897][T17151]  ? sctp_add_bind_addr+0x9a/0x3d0
[  516.582915][T17151]  should_failslab+0xc2/0x120
[  516.582934][T17151]  __kmalloc_cache_noprof+0x68/0x410
[  516.582954][T17151]  sctp_add_bind_addr+0x9a/0x3d0
[  516.582972][T17151]  sctp_copy_local_addr_list+0x39e/0x5a0
[  516.582988][T17151]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  516.583003][T17151]  ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360
[  516.583020][T17151]  ? sctp_bind_addr_copy+0xe0/0x530
[  516.583030][T17151]  sctp_bind_addr_copy+0xe0/0x530
[  516.583043][T17151]  sctp_connect_new_asoc+0x1d8/0x790
[  516.583060][T17151]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  516.583077][T17151]  ? __ipv6_addr_type+0x225/0x300
[  516.583124][T17151]  ? __ipv6_addr_type+0x225/0x300
[  516.583140][T17151]  __sctp_connect+0x3f5/0xc60
[  516.583156][T17151]  ? sctp_inet_connect+0xac/0x200
[  516.583171][T17151]  ? __pfx___sctp_connect+0x10/0x10
[  516.583186][T17151]  ? __pfx_sctp_inet_connect+0x10/0x10
[  516.583203][T17151]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  516.583222][T17151]  ? __pfx_sctp_inet_connect+0x10/0x10
[  516.583236][T17151]  sctp_inet_connect+0x15f/0x200
[  516.583251][T17151]  __sys_connect_file+0x13e/0x1a0
[  516.583267][T17151]  __sys_connect+0x14f/0x170
[  516.583280][T17151]  ? __pfx___sys_connect+0x10/0x10
[  516.583298][T17151]  ? __pfx_ksys_write+0x10/0x10
[  516.583316][T17151]  __ia32_sys_connect+0x71/0xb0
[  516.583329][T17151]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  516.583344][T17151]  __do_fast_syscall_32+0x73/0x120
[  516.583358][T17151]  do_fast_syscall_32+0x32/0x80
[  516.583371][T17151]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  516.583390][T17151] RIP: 0023:0xf7f04579
[  516.583400][T17151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  516.583410][T17151] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[  516.583421][T17151] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  516.583428][T17151] RDX: 000000000000001c RSI: 0000000000000000 RDI: 0000000000000000
[  516.583434][T17151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  516.583440][T17151] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  516.583446][T17151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  516.583459][T17151]  </TASK>
[  516.749297][T17157] FAULT_INJECTION: forcing a failure.
[  516.749297][T17157] name failslab, interval 1, probability 0, space 0, times 0
[  516.752834][T17157] CPU: 0 UID: 0 PID: 17157 Comm: syz.4.3150 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  516.752849][T17157] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  516.752857][T17157] Call Trace:
[  516.752860][T17157]  <TASK>
[  516.752865][T17157]  dump_stack_lvl+0x16c/0x1f0
[  516.752883][T17157]  should_fail_ex+0x50a/0x650
[  516.752903][T17157]  should_failslab+0xc2/0x120
[  516.752922][T17157]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  516.752940][T17157]  ? skb_clone+0x190/0x3f0
[  516.752959][T17157]  skb_clone+0x190/0x3f0
[  516.752975][T17157]  netlink_deliver_tap+0xabd/0xd30
[  516.752992][T17157]  netlink_unicast+0x5e1/0x7f0
[  516.753007][T17157]  ? __pfx_netlink_unicast+0x10/0x10
[  516.753021][T17157]  ? __phys_addr_symbol+0x30/0x80
[  516.753034][T17157]  ? __check_object_size+0x488/0x710
[  516.753047][T17157]  netlink_sendmsg+0x8b8/0xd70
[  516.753063][T17157]  ? __pfx_netlink_sendmsg+0x10/0x10
[  516.753082][T17157]  ____sys_sendmsg+0xaaf/0xc90
[  516.753094][T17157]  ? __pfx_____sys_sendmsg+0x10/0x10
[  516.753104][T17157]  ? get_compat_msghdr+0x11b/0x170
[  516.753124][T17157]  ___sys_sendmsg+0x135/0x1e0
[  516.753140][T17157]  ? __pfx____sys_sendmsg+0x10/0x10
[  516.753160][T17157]  ? __pfx_lock_release+0x10/0x10
[  516.753176][T17157]  ? trace_lock_acquire+0x14e/0x1f0
[  516.753194][T17157]  ? __fget_files+0x206/0x3a0
[  516.753213][T17157]  __sys_sendmsg+0x16e/0x220
[  516.753229][T17157]  ? __pfx___sys_sendmsg+0x10/0x10
[  516.753252][T17157]  __do_fast_syscall_32+0x73/0x120
[  516.753267][T17157]  do_fast_syscall_32+0x32/0x80
[  516.753281][T17157]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  516.753300][T17157] RIP: 0023:0xf7f04579
[  516.753309][T17157] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  516.753320][T17157] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  516.753331][T17157] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001200
[  516.753338][T17157] RDX: 0000000004000080 RSI: 0000000000000000 RDI: 0000000000000000
[  516.753344][T17157] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  516.753350][T17157] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  516.753356][T17157] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  516.753369][T17157]  </TASK>
[  517.433622][T17177] mkiss: ax0: crc mode is auto.
[  517.450679][T17177] Falling back ldisc for ttyS3.
[  517.485201][T17179] FAULT_INJECTION: forcing a failure.
[  517.485201][T17179] name failslab, interval 1, probability 0, space 0, times 0
[  517.488799][T17179] CPU: 3 UID: 0 PID: 17179 Comm: syz.6.3156 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  517.488813][T17179] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  517.488820][T17179] Call Trace:
[  517.488825][T17179]  <TASK>
[  517.488829][T17179]  dump_stack_lvl+0x16c/0x1f0
[  517.488847][T17179]  should_fail_ex+0x50a/0x650
[  517.488864][T17179]  ? fs_reclaim_acquire+0xae/0x150
[  517.488880][T17179]  should_failslab+0xc2/0x120
[  517.488898][T17179]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  517.488917][T17179]  ? vfs_parse_fs_string+0xc4/0x150
[  517.488937][T17179]  kmemdup_nul+0x49/0xf0
[  517.488951][T17179]  vfs_parse_fs_string+0xc4/0x150
[  517.488967][T17179]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  517.488983][T17179]  ? kasan_save_track+0x14/0x30
[  517.489000][T17179]  ? legacy_init_fs_context+0x96/0xe0
[  517.489017][T17179]  ? alloc_fs_context+0x59b/0x9c0
[  517.489035][T17179]  path_mount+0x677/0x1f10
[  517.489053][T17179]  ? kmem_cache_free+0x2e2/0x4d0
[  517.489068][T17179]  ? __pfx_path_mount+0x10/0x10
[  517.489087][T17179]  ? putname+0x13c/0x180
[  517.489099][T17179]  __ia32_sys_mount+0x28d/0x310
[  517.489117][T17179]  ? __pfx___ia32_sys_mount+0x10/0x10
[  517.489138][T17179]  __do_fast_syscall_32+0x73/0x120
[  517.489153][T17179]  do_fast_syscall_32+0x32/0x80
[  517.489166][T17179]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  517.489184][T17179] RIP: 0023:0xf741e579
[  517.489192][T17179] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  517.489203][T17179] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  517.489215][T17179] RAX: ffffffffffffffda RBX: 00000000800001c0 RCX: 0000000080000480
[  517.489221][T17179] RDX: 00000000800004c0 RSI: 0000000000000040 RDI: 0000000080000840
[  517.489227][T17179] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  517.489233][T17179] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  517.489239][T17179] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  517.489252][T17179]  </TASK>
[  517.601201][T17181] overlay: ./bus is not a directory
[  517.607272][T17181] overlay: ./bus is not a directory
[  518.357340][T17188] FAULT_INJECTION: forcing a failure.
[  518.357340][T17188] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  518.361220][T17188] CPU: 2 UID: 0 PID: 17188 Comm: syz.5.3159 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  518.361235][T17188] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  518.361242][T17188] Call Trace:
[  518.361247][T17188]  <TASK>
[  518.361251][T17188]  dump_stack_lvl+0x16c/0x1f0
[  518.361269][T17188]  should_fail_ex+0x50a/0x650
[  518.361286][T17188]  ? __pfx___might_resched+0x10/0x10
[  518.361306][T17188]  should_fail_alloc_page+0xe7/0x130
[  518.361318][T17188]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  518.361334][T17188]  ? arch_stack_walk+0xa7/0x100
[  518.361347][T17188]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  518.361367][T17188]  ? stack_trace_save+0x95/0xd0
[  518.361380][T17188]  ? __pfx_stack_trace_save+0x10/0x10
[  518.361393][T17188]  ? stack_depot_save_flags+0x28/0x9c0
[  518.361411][T17188]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  518.361430][T17188]  ? kasan_save_stack+0x42/0x60
[  518.361445][T17188]  ? kasan_save_stack+0x33/0x60
[  518.361459][T17188]  ? kasan_save_track+0x14/0x30
[  518.361474][T17188]  ? __kasan_kmalloc+0xaa/0xb0
[  518.361489][T17188]  ? mon_bin_open+0x1a8/0x4a0
[  518.361535][T17188]  ? chrdev_open+0x237/0x6a0
[  518.361553][T17188]  ? __ia32_compat_sys_openat+0x16e/0x210
[  518.361569][T17188]  ? __do_fast_syscall_32+0x73/0x120
[  518.361583][T17188]  ? do_fast_syscall_32+0x32/0x80
[  518.361598][T17188]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  518.361620][T17188]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  518.361640][T17188]  ? policy_nodemask+0xea/0x4e0
[  518.361659][T17188]  alloc_pages_mpol+0x1fc/0x540
[  518.361678][T17188]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  518.361703][T17188]  alloc_pages_noprof+0x131/0x390
[  518.361721][T17188]  get_zeroed_page_noprof+0x14/0x50
[  518.361734][T17188]  mon_alloc_buff+0xc0/0x190
[  518.361749][T17188]  ? kasan_save_track+0x14/0x30
[  518.361766][T17188]  mon_bin_open+0x207/0x4a0
[  518.361782][T17188]  ? __pfx_mon_bin_open+0x10/0x10
[  518.361797][T17188]  chrdev_open+0x237/0x6a0
[  518.361814][T17188]  ? __pfx_apparmor_file_open+0x10/0x10
[  518.361828][T17188]  ? __pfx_chrdev_open+0x10/0x10
[  518.361845][T17188]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  518.361863][T17188]  do_dentry_open+0x735/0x1c40
[  518.361879][T17188]  ? __pfx_chrdev_open+0x10/0x10
[  518.361898][T17188]  vfs_open+0x82/0x3f0
[  518.361908][T17188]  ? may_open+0x1f2/0x400
[  518.361922][T17188]  path_openat+0x1e88/0x2d80
[  518.361943][T17188]  ? __pfx_path_openat+0x10/0x10
[  518.361958][T17188]  ? __pfx___lock_acquire+0x10/0x10
[  518.361974][T17188]  ? lock_acquire.part.0+0x11b/0x380
[  518.361989][T17188]  ? find_held_lock+0x2d/0x110
[  518.362002][T17188]  do_filp_open+0x20c/0x470
[  518.362018][T17188]  ? __pfx_do_filp_open+0x10/0x10
[  518.362033][T17188]  ? find_held_lock+0x2d/0x110
[  518.362053][T17188]  ? alloc_fd+0x41f/0x760
[  518.362073][T17188]  do_sys_openat2+0x17a/0x1e0
[  518.362084][T17188]  ? __pfx_do_sys_openat2+0x10/0x10
[  518.362097][T17188]  ? __fget_files+0x206/0x3a0
[  518.362115][T17188]  __ia32_compat_sys_openat+0x16e/0x210
[  518.362128][T17188]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  518.362140][T17188]  ? ksys_write+0x1ba/0x250
[  518.362160][T17188]  __do_fast_syscall_32+0x73/0x120
[  518.362174][T17188]  do_fast_syscall_32+0x32/0x80
[  518.362187][T17188]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  518.362205][T17188] RIP: 0023:0xf743e579
[  518.362214][T17188] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  518.362225][T17188] RSP: 002b:00000000f50a5100 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  518.362236][T17188] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f50a5150
[  518.362243][T17188] RDX: 000000000016d701 RSI: 0000000000000000 RDI: 00000000f742cff4
[  518.362249][T17188] RBP: 000000000016d701 R08: 0000000000000000 R09: 0000000000000000
[  518.362255][T17188] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  518.362261][T17188] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  518.362274][T17188]  </TASK>
[  518.870846][T17195] serio: Serial port ptm0
[  519.057888][T17200] netlink: 197276 bytes leftover after parsing attributes in process `syz.6.3164'.
[  519.324151][T15205] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  519.401100][T17202] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3165'.
[  519.485023][T15205] usb 11-1: too many configurations: 9, using maximum allowed: 8
[  519.489048][T15205] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9
[  519.491569][T15205] usb 11-1: config 0 interface 0 has no altsetting 0
[  519.494249][T15205] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9
[  519.496774][T15205] usb 11-1: config 0 interface 0 has no altsetting 0
[  519.499367][T15205] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9
[  519.501841][T15205] usb 11-1: config 0 interface 0 has no altsetting 0
[  519.514270][T15205] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9
[  519.516808][T15205] usb 11-1: config 0 interface 0 has no altsetting 0
[  519.524147][T15205] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9
[  519.526797][T15205] usb 11-1: config 0 interface 0 has no altsetting 0
[  519.529372][T15205] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9
[  519.531871][T15205] usb 11-1: config 0 interface 0 has no altsetting 0
[  519.534687][T15205] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9
[  519.537244][T15205] usb 11-1: config 0 interface 0 has no altsetting 0
[  519.540429][T15205] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9
[  519.542929][T15205] usb 11-1: config 0 interface 0 has no altsetting 0
[  519.546904][T15205] usb 11-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  519.549526][T15205] usb 11-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  519.551799][T15205] usb 11-1: Product: syz
[  519.552989][T15205] usb 11-1: Manufacturer: syz
[  519.554498][T15205] usb 11-1: SerialNumber: syz
[  519.557332][T15205] usb 11-1: config 0 descriptor??
[  519.561406][T15205] yurex 11-1:0.0: USB YUREX device now attached to Yurex #0
[  519.770075][  T937] usb 11-1: USB disconnect, device number 4
[  519.785114][  T937] yurex 11-1:0.0: USB YUREX #0 now disconnected
[  520.170158][T17222] netlink: 'syz.5.3171': attribute type 3 has an invalid length.
[  520.173920][T17222] netlink: 132 bytes leftover after parsing attributes in process `syz.5.3171'.
[  520.424484][T17231] syz.6.3173 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  520.921682][T17240] futex_wake_op: syz.4.3175 tries to shift op by 32; fix this program
[  523.072049][T17266] sch_fq: defrate 26519 ignored.
[  523.102807][T17268] fuse: Bad value for 'fd'
[  523.834504][   T39] audit: type=1326 audit(1739658280.782:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17282 comm="syz.6.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  523.841642][   T39] audit: type=1326 audit(1739658280.782:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17282 comm="syz.6.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  523.854197][   T39] audit: type=1326 audit(1739658280.782:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17282 comm="syz.6.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  523.861148][   T39] audit: type=1326 audit(1739658280.782:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17282 comm="syz.6.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf741e579 code=0x7ffc0000
[  523.868660][   T39] audit: type=1326 audit(1739658280.782:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17282 comm="syz.6.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  523.875982][   T39] audit: type=1326 audit(1739658280.782:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17282 comm="syz.6.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  523.883208][   T39] audit: type=1326 audit(1739658280.782:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17282 comm="syz.6.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  523.890498][   T39] audit: type=1326 audit(1739658280.782:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17282 comm="syz.6.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf741e579 code=0x7ffc0000
[  523.897665][   T39] audit: type=1326 audit(1739658280.782:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17282 comm="syz.6.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  523.903626][   T39] audit: type=1326 audit(1739658280.782:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17282 comm="syz.6.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf741e579 code=0x7ffc0000
[  524.771133][T17301] netlink: 137456 bytes leftover after parsing attributes in process `syz.5.3192'.
[  524.773801][T17301] netlink: zone id is out of range
[  524.775385][T17301] netlink: zone id is out of range
[  524.776904][T17301] netlink: zone id is out of range
[  524.778476][T17301] netlink: zone id is out of range
[  524.779973][T17301] netlink: zone id is out of range
[  524.781548][T17301] netlink: zone id is out of range
[  524.783082][T17301] netlink: zone id is out of range
[  524.784643][T17301] netlink: zone id is out of range
[  524.786158][T17301] netlink: zone id is out of range
[  524.787737][T17301] netlink: zone id is out of range
[  524.793722][T17301] mac80211_hwsim hwsim17 wlan1: entered promiscuous mode
[  524.795980][T17301] mac80211_hwsim hwsim17 wlan1: entered allmulticast mode
[  527.434178][ T5300] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  527.439117][ T5300] Bluetooth: hci3: Injecting HCI hardware error event
[  527.445522][ T5958] Bluetooth: hci3: hardware error 0x00
[  528.566583][T13657] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  528.571470][T13657] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  528.577290][T13657] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  528.580465][T13657] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  528.583421][T13657] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  528.586398][T13657] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  528.601064][T17360] sch_fq: defrate 26519 ignored.
[  528.691968][T17354] chnl_net:caif_netlink_parms(): no params data found
[  528.714065][T15496] usb 11-1: new low-speed USB device number 5 using dummy_hcd
[  528.853678][T17370] netlink: 1280 bytes leftover after parsing attributes in process `syz.5.3210'.
[  528.889408][T15496] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[  528.890283][   T64] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.891534][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  528.891552][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  528.904592][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  528.907754][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  528.911406][T15496] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[  528.913497][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  528.916358][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  528.919126][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  528.923922][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  528.932693][T15496] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[  528.935143][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  528.937995][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  528.940783][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  528.945117][T15496] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  528.952554][T17354] bridge0: port 1(bridge_slave_0) entered blocking state
[  528.961277][T17354] bridge0: port 1(bridge_slave_0) entered disabled state
[  528.963560][T17354] bridge_slave_0: entered allmulticast mode
[  528.967992][T15496] usb 11-1: string descriptor 0 read error: -22
[  528.969794][T15496] usb 11-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  528.972332][T15496] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  528.975418][T17354] bridge_slave_0: entered promiscuous mode
[  528.978099][T17354] bridge0: port 2(bridge_slave_1) entered blocking state
[  528.980045][T17354] bridge0: port 2(bridge_slave_1) entered disabled state
[  528.982068][T17354] bridge_slave_1: entered allmulticast mode
[  528.984282][T17354] bridge_slave_1: entered promiscuous mode
[  529.003965][   T64] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  529.029608][T15496] adutux 11-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  529.036134][T17354] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  529.039827][T17354] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  529.072697][T17354] team0: Port device team_slave_0 added
[  529.097477][   T64] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  529.102551][T17354] team0: Port device team_slave_1 added
[  529.122804][T17354] batman_adv: batadv0: Adding interface: batadv_slave_0
[  529.125942][T17354] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  529.132991][T17354] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  529.154876][T17354] batman_adv: batadv0: Adding interface: batadv_slave_1
[  529.156995][T17354] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  529.164147][T17354] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  529.230316][T15496] usb 11-1: USB disconnect, device number 5
[  529.256220][   T64] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  529.431898][T17354] hsr_slave_0: entered promiscuous mode
[  529.435599][T17354] hsr_slave_1: entered promiscuous mode
[  529.439042][T17354] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  529.443415][T17354] Cannot create hsr debugfs directory
[  529.504022][ T5958] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  529.553375][   T64] bridge_slave_0: left allmulticast mode
[  529.555053][   T64] bridge_slave_0: left promiscuous mode
[  529.556849][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[  529.572869][T17381] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  529.603273][T17381] kvm: pic: level sensitive irq not supported
[  529.603698][T17381] kvm: pic: non byte read
[  529.642605][   T64] bond1 (unregistering): (slave ip6gre1): Releasing backup interface
[  529.645691][   T64] ip6gre1 (unregistering): left promiscuous mode
[  530.014706][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  530.018656][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  530.022282][   T64] bond0 (unregistering): Released all slaves
[  530.157704][   T64] bond1 (unregistering): Released all slaves
[  530.175606][T17393] sch_fq: defrate 26519 ignored.
[  530.274755][T17402] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3220'.
[  530.494376][T17354] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  530.499702][T17354] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  530.517264][T17354] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  530.521416][T17354] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  530.587671][T17354] 8021q: adding VLAN 0 to HW filter on device bond0
[  530.600207][T17354] 8021q: adding VLAN 0 to HW filter on device team0
[  530.623008][T17354] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  530.626404][T17354] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  530.638874][T14883] bridge0: port 1(bridge_slave_0) entered blocking state
[  530.641357][T14883] bridge0: port 1(bridge_slave_0) entered forwarding state
[  530.654513][T14883] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.656789][T14883] bridge0: port 2(bridge_slave_1) entered forwarding state
[  530.659130][T17413] ISOFS: Unable to identify CD-ROM format.
[  530.678165][T17413] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3222'.
[  530.698466][ T5958] Bluetooth: hci2: command tx timeout
[  530.886891][   T64] hsr_slave_0: left promiscuous mode
[  530.889028][   T64] hsr_slave_1: left promiscuous mode
[  530.928919][   T64] veth1_macvtap: left promiscuous mode
[  530.930706][   T64] veth0_macvtap: left promiscuous mode
[  530.932489][   T64] veth1_vlan: left promiscuous mode
[  530.934651][   T64] veth0_vlan: left promiscuous mode
[  532.072541][   T64] team0 (unregistering): Port device team_slave_1 removed
[  532.193013][   T64] team0 (unregistering): Port device team_slave_0 removed
[  532.714062][ T5958] Bluetooth: hci2: command tx timeout
[  532.920819][T17426] sch_fq: defrate 26519 ignored.
[  532.926909][T17354] 8021q: adding VLAN 0 to HW filter on device batadv0
[  532.965166][T17432] sch_fq: defrate 26519 ignored.
[  533.245939][T17354] veth0_vlan: entered promiscuous mode
[  533.250560][T17354] veth1_vlan: entered promiscuous mode
[  533.270656][T17354] veth0_macvtap: entered promiscuous mode
[  533.275919][T17354] veth1_macvtap: entered promiscuous mode
[  533.286522][T17354] batman_adv: batadv0: Interface activated: batadv_slave_0
[  533.291199][T17354] batman_adv: batadv0: Interface activated: batadv_slave_1
[  533.296874][T17354] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  533.300805][T17354] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  533.305577][T17354] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  533.309078][T17354] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  533.548718][   T64] IPVS: stop unused estimator thread 0...
[  533.569397][T14881] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  533.579939][T14881] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  533.641559][T14885] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  533.649545][T14885] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  533.902015][T17448] page: refcount:3 mapcount:1 mapping:ffff888079642448 index:0x200 pfn:0x6f4cf
[  533.906411][T17448] memcg:ffff88802b308000
[  533.907685][T17448] aops:shmem_aops ino:487
[  533.908972][T17448] flags: 0x4fff2800002002d(locked|referenced|uptodate|lru|swapbacked|node=1|zone=1|lastcpupid=0x7ff)
[  533.912437][T17448] raw: 04fff2800002002d ffffea00016e0388 ffffea0001bd3388 ffff888079642448
[  533.914873][T17448] raw: 0000000000000200 0000000000000000 0000000300000000 ffff88802b308000
[  533.917288][T17448] page dumped because: VM_BUG_ON_FOLIO(folio_mapped(folio))
[  533.919328][T17448] page_owner tracks the page as allocated
[  533.922625][T17448] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 17439, tgid 17438 (syz.5.3231), ts 533065742002, free_ts 532937925018
[  533.927535][T17448]  post_alloc_hook+0x181/0x1b0
[  533.928907][T17448]  get_page_from_freelist+0xfce/0x2f80
[  533.930462][T17448]  __alloc_frozen_pages_noprof+0x221/0x2470
[  533.932132][T17448]  alloc_pages_mpol+0x1fc/0x540
[  533.933514][T17448]  folio_alloc_mpol_noprof+0x36/0x2f0
[  533.935043][T17448]  shmem_alloc_folio+0x135/0x160
[  533.936454][T17448]  shmem_alloc_and_add_folio+0x48e/0xc10
[  533.938074][T17448]  shmem_get_folio_gfp+0x689/0x1530
[  533.939539][T17448]  shmem_fault+0x200/0xae0
[  533.940747][T17448]  __do_fault+0x10a/0x490
[  533.941980][T17448]  do_pte_missing+0xecf/0x3e10
[  533.943339][T17448]  __handle_mm_fault+0x1166/0x2c60
[  533.944778][T17448]  handle_mm_fault+0x3fa/0xaa0
[  533.946136][T17448]  __get_user_pages+0x773/0x36f0
[  533.947585][T17448]  populate_vma_page_range+0x27f/0x3a0
[  533.949119][T17448]  __mm_populate+0x1d6/0x380
[  533.950467][T17448] page last free pid 17419 tgid 17417 stack trace:
[  533.952304][T17448]  free_unref_folios+0xa7b/0x1500
[  533.953728][T17448]  folios_put_refs+0x587/0x7b0
[  533.955081][T17448]  free_pages_and_swap_cache+0x351/0x500
[  533.956650][T17448]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  533.958375][T17448]  tlb_flush_mmu+0xe9/0x590
[  533.959656][T17448]  unmap_page_range+0x1e14/0x43a0
[  533.961071][T17448]  unmap_single_vma+0x194/0x2b0
[  533.962477][T17448]  unmap_vmas+0x22f/0x490
[  533.963700][T17448]  exit_mmap+0x1c1/0xba0
[  533.964907][T17448]  __mmput+0x12a/0x410
[  533.966074][T17448]  mmput+0x62/0x70
[  533.967196][T17448]  do_exit+0x9ba/0x2d70
[  533.968410][T17448]  do_group_exit+0xd3/0x2a0
[  533.969691][T17448]  get_signal+0x24ed/0x26c0
[  533.970984][T17448]  arch_do_signal_or_restart+0x90/0x7e0
[  533.972545][T17448]  syscall_exit_to_user_mode+0x150/0x2a0
[  533.974231][T17448] ------------[ cut here ]------------
[  533.975758][T17448] kernel BUG at mm/filemap.c:154!
[  533.977195][T17448] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  533.979255][T17448] CPU: 2 UID: 0 PID: 17448 Comm: syz.5.3231 Not tainted 6.14.0-rc2-syzkaller-00259-g7ff71e6d9239 #0
[  533.984108][T17448] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  533.987074][T17448] RIP: 0010:filemap_unaccount_folio+0xef/0x860
[  533.988812][T17448] Code: f7 10 cb ff 4c 8d 6b 30 31 ff 89 ee e8 ea 0b cb ff 85 ed 7e 17 e8 e1 10 cb ff 48 c7 c6 00 85 78 8b 48 89 df e8 42 94 11 00 90 <0f> 0b e8 ca 10 cb ff 4c 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1
[  533.994081][T17448] RSP: 0018:ffffc90004fdf3a0 EFLAGS: 00010093
[  533.995775][T17448] RAX: 0000000000000000 RBX: ffffea0001bd33c0 RCX: ffffc90004fdf248
[  533.998006][T17448] RDX: ffff888026614880 RSI: ffffffff81eec5ae RDI: ffff888026614cc4
[  534.000205][T17448] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff20c4cc2
[  534.002401][T17448] R10: ffffffff90626617 R11: 0000000000000003 R12: ffff888079642448
[  534.004576][T17448] R13: ffffea0001bd33f0 R14: 0000000000000000 R15: ffffc90004fdf688
[  534.006781][T17448] FS:  0000000000000000(0000) GS:ffff88802b600000(0000) knlGS:0000000000000000
[  534.009255][T17448] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  534.011098][T17448] CR2: 0000000033df6ffc CR3: 000000000df80000 CR4: 0000000000352ef0
[  534.013296][T17448] DR0: 0000000000000008 DR1: 000000000000360a DR2: 00000000000002a3
[  534.015488][T17448] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  534.017695][T17448] Call Trace:
[  534.018653][T17448]  <TASK>
[  534.019471][T17448]  ? die+0x31/0x80
[  534.020534][T17448]  ? do_trap+0x232/0x430
[  534.021723][T17448]  ? filemap_unaccount_folio+0xef/0x860
[  534.023267][T17448]  ? filemap_unaccount_folio+0xef/0x860
[  534.024802][T17448]  ? do_error_trap+0xf4/0x230
[  534.026130][T17448]  ? filemap_unaccount_folio+0xef/0x860
[  534.027712][T17448]  ? handle_invalid_op+0x34/0x40
[  534.029099][T17448]  ? filemap_unaccount_folio+0xef/0x860
[  534.030655][T17448]  ? exc_invalid_op+0x2e/0x50
[  534.031977][T17448]  ? asm_exc_invalid_op+0x1a/0x20
[  534.033384][T17448]  ? filemap_unaccount_folio+0xee/0x860
[  534.034931][T17448]  ? filemap_unaccount_folio+0xef/0x860
[  534.036468][T17448]  filemap_remove_folio+0xf1/0x250
[  534.037930][T17448]  truncate_inode_folio+0x49/0x70
[  534.039361][T17448]  shmem_undo_range+0x36e/0x1170
[  534.040754][T17448]  ? __pfx_shmem_undo_range+0x10/0x10
[  534.042261][T17448]  ? __lock_acquire+0xcc5/0x3c40
[  534.043669][T17448]  ? mark_lock+0xb5/0xc60
[  534.045102][T17448]  ? __pfx___lock_acquire+0x10/0x10
[  534.046578][T17448]  ? hlock_class+0x4e/0x130
[  534.047867][T17448]  ? mark_lock+0xb5/0xc60
[  534.048944][T17448]  ? __pfx___lock_acquire+0x10/0x10
[  534.050221][T17448]  ? hlock_class+0x4e/0x130
[  534.051515][T17448]  ? percpu_counter_add_batch+0xb5/0x1e0
[  534.053056][T17448]  shmem_evict_inode+0x3a3/0xba0
[  534.054495][T17448]  ? find_held_lock+0x2d/0x110
[  534.055846][T17448]  ? __pfx_shmem_evict_inode+0x10/0x10
[  534.057415][T17448]  ? evict+0x3c8/0x960
[  534.058594][T17448]  ? __pfx_lock_release+0x10/0x10
[  534.060024][T17448]  ? lock_acquire+0x2f/0xb0
[  534.061315][T17448]  ? __pfx_shmem_evict_inode+0x10/0x10
[  534.062848][T17448]  evict+0x409/0x960
[  534.063956][T17448]  ? __pfx_evict+0x10/0x10
[  534.065226][T17448]  iput+0x52a/0x890
[  534.066329][T17448]  ? __pfx_generic_delete_inode+0x10/0x10
[  534.067968][T17448]  dentry_unlink_inode+0x29c/0x480
[  534.069415][T17448]  __dentry_kill+0x1d0/0x600
[  534.070728][T17448]  dput.part.0+0x4b1/0x9b0
[  534.071988][T17448]  dput+0x1f/0x30
[  534.073034][T17448]  __fput+0x51c/0xb70
[  534.074170][T17448]  ? _raw_spin_unlock_irq+0x23/0x50
[  534.075638][T17448]  task_work_run+0x14e/0x250
[  534.076941][T17448]  ? __pfx_task_work_run+0x10/0x10
[  534.078423][T17448]  ? do_raw_spin_unlock+0x172/0x230
[  534.079882][T17448]  do_exit+0xad8/0x2d70
[  534.081063][T17448]  ? get_signal+0x8f7/0x26c0
[  534.082374][T17448]  ? __pfx_do_exit+0x10/0x10
[  534.083671][T17448]  ? do_raw_spin_lock+0x210/0x2c0
[  534.085086][T17448]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  534.086618][T17448]  do_group_exit+0xd3/0x2a0
[  534.087935][T17448]  get_signal+0x24ed/0x26c0
[  534.089224][T17448]  ? lock_acquire+0x2f/0xb0
[  534.090525][T17448]  ? __pfx_get_signal+0x10/0x10
[  534.091902][T17448]  ? __pfx_do_futex+0x10/0x10
[  534.093243][T17448]  arch_do_signal_or_restart+0x90/0x7e0
[  534.094807][T17448]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  534.096528][T17448]  syscall_exit_to_user_mode+0x150/0x2a0
[  534.098126][T17448]  __do_fast_syscall_32+0x80/0x120
[  534.099578][T17448]  do_fast_syscall_32+0x32/0x80
[  534.100949][T17448]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  534.102737][T17448] RIP: 0023:0xf743e579
[  534.103888][T17448] Code: Unable to access opcode bytes at 0xf743e54f.
[  534.105775][T17448] RSP: 002b:00000000f483e60c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  534.108137][T17448] RAX: fffffffffffffe00 RBX: 00000000f74651c8 RCX: 0000000000000080
[  534.110339][T17448] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f74651cc
[  534.112545][T17448] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[  534.114774][T17448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  534.116960][T17448] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  534.119205][T17448]  </TASK>
[  534.120086][T17448] Modules linked in:
[  534.121198][T17448] ---[ end trace 0000000000000000 ]---
[  534.122721][T17448] RIP: 0010:filemap_unaccount_folio+0xef/0x860
[  534.124437][T17448] Code: f7 10 cb ff 4c 8d 6b 30 31 ff 89 ee e8 ea 0b cb ff 85 ed 7e 17 e8 e1 10 cb ff 48 c7 c6 00 85 78 8b 48 89 df e8 42 94 11 00 90 <0f> 0b e8 ca 10 cb ff 4c 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1
[  534.129743][T17448] RSP: 0018:ffffc90004fdf3a0 EFLAGS: 00010093
[  534.131450][T17448] RAX: 0000000000000000 RBX: ffffea0001bd33c0 RCX: ffffc90004fdf248
[  534.133634][T17448] RDX: ffff888026614880 RSI: ffffffff81eec5ae RDI: ffff888026614cc4
[  534.135829][T17448] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff20c4cc2
[  534.138037][T17448] R10: ffffffff90626617 R11: 0000000000000003 R12: ffff888079642448
[  534.140227][T17448] R13: ffffea0001bd33f0 R14: 0000000000000000 R15: ffffc90004fdf688
[  534.142422][T17448] FS:  0000000000000000(0000) GS:ffff88802b600000(0000) knlGS:0000000000000000
[  534.144876][T17448] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  534.146779][T17448] CR2: 0000000033df6ffc CR3: 000000000df80000 CR4: 0000000000352ef0
[  534.149023][T17448] DR0: 0000000000000008 DR1: 000000000000360a DR2: 00000000000002a3
[  534.151231][T17448] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  534.153428][T17448] Kernel panic - not syncing: Fatal exception
[  534.155805][T17448] Kernel Offset: disabled
[  534.157037][T17448] Rebooting in 86400 seconds..

VM DIAGNOSIS:
22:24:51  Registers:
info registers vcpu 0

CPU#0
RAX=00000000010c0ae4 RBX=0000000000000000 RCX=ffffffff8b54f469 RDX=ffffed1005686f86
RSI=ffffffff8bd34300 RDI=ffffffff81907269 RBP=fffffbfff1bd2ee8 RSP=ffffffff8de07e20
R8 =0000000000000000 R9 =ffffed1005686f85 R10=ffff88802b437c2b R11=0000000000000001
R12=0000000000000000 R13=ffffffff8de97740 R14=ffffffff90626610 R15=0000000000000000
RIP=ffffffff8b55084f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000022156000 CR4=00352ef0
DR0=0000000440000000 DR1=0000000000003f98 DR2=000000000000007f DR3=ffff7ffffffffffd 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000016800000000 0000000600000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000080000 RBX=ffffea0001cc8580 RCX=ffffffff81eea408 RDX=ffff8880262e2440
RSI=0000000000000002 RDI=0000000000000007 RBP=ffffc90002e877d8 RSP=ffffc90002e87668
R8 =0000000000000007 R9 =0000000000000002 R10=0000000000000000 R11=0000000000010195
R12=ffff888050942100 R13=0000000000000000 R14=0000000000000000 R15=1ffff920005d0efe
RIP=ffffffff81b9cfd1 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000004d42a000 CR4=00352ef0
DR0=0000000440000000 DR1=0000000000003f98 DR2=000000000000007f DR3=ffff7ffffffffffd 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff853e45b0 RDI=ffffffff9ab6be20 RBP=ffffffff9ab6bde0 RSP=ffffc90004fdec88
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=7973203a6d6d6f43
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff356d816 R15=dffffc0000000000
RIP=ffffffff853e45d7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000033df6ffc CR3=000000000df80000 CR4=00352ef0
DR0=0000000000000008 DR1=000000000000360a DR2=00000000000002a3 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000020c00000000 0000000600000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000658cad RBX=0000000000000003 RCX=ffffffff8b54f469 RDX=0000000000000000
RSI=ffffffff8b6ced20 RDI=ffffffff8bd34380 RBP=ffffed1003ad2488 RSP=ffffc9000049fe08
R8 =0000000000000001 R9 =ffffed10056e6f85 R10=ffff88802b737c2b R11=0000000000000000
R12=0000000000000003 R13=ffff88801d692440 R14=ffffffff90626610 R15=0000000000000000
RIP=ffffffff8b55084f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000006a750000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000