last executing test programs:

4m6.124463757s ago: executing program 3 (id=730):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xf, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}, @printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x5}}]}, &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1, 0x2500}, 0x10)

4m6.054038899s ago: executing program 3 (id=732):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000080eff95"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r0}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000840)={0xffffffffffffffff, 0xe0, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, &(0x7f0000001f00), 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001158000000000000800000850000006d00000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000008c0)={r1, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0xf5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

4m6.053772275s ago: executing program 3 (id=733):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0xdbe3, 0x1, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xe1000, 0x280000b, 0x28011, r0, 0x2000)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0xa, &(0x7f0000000480)=0x47a, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r5, &(0x7f0000000580)='1\x00', 0x2)
write$sysctl(r5, &(0x7f0000000000)='2\x00', 0x2)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0)
fsetxattr$security_capability(r7, 0x0, 0x0, 0x0, 0x2)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r8 = dup(r1)
write$6lowpan_enable(r8, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x10, 0x0, r8}, &(0x7f0000000180), &(0x7f00000001c0))
read$FUSE(r8, 0x0, 0x49)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r8, 0xc0605345, &(0x7f0000000300)={0x9b46, 0x2, {0x3, 0x0, 0x9}, 0x322})
setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r8, 0x111, 0x5, 0x8001, 0x4)
openat$vim2m(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)

4m5.844567535s ago: executing program 3 (id=735):
sendmsg$MPTCP_PM_CMD_GET_ADDR(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{0x1}, 0x0, 0x0}, 0x1c)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x1, &(0x7f00000000c0)=@raw=[@exit], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x6, 0x20000003, 0x2000006}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000280)=[0x1], &(0x7f0000000340)=[{0x4, 0x2, 0x6, 0x8}, {0x0, 0x2, 0x9, 0x5}, {0x1, 0x2, 0xf, 0x7}, {0x5, 0x2, 0xf, 0x2}], 0x10, 0xfffffffb, @void, @value}, 0x94)
r2 = syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = getpid()
sched_setscheduler(r3, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
getsockopt$IP_VS_SO_GET_SERVICES(r2, 0x0, 0x482, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0xe08}}, './file0\x00'})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/netlink\x00')
r6 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000019c0)=@newqdisc={0x40, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r8, {0x0, 0xe}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_ECN={0x8}]}}]}, 0x40}}, 0x0)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c00000009f02ff05d86750447f272a948eb9006010200"], 0x4c}}, 0x4008080)

4m4.884577134s ago: executing program 3 (id=741):
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r2 = eventfd(0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000080)={r2, 0x9})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r2, 0x9, 0x3})
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'geneve0\x00'})
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

4m4.752948414s ago: executing program 3 (id=744):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/mnt\x00')
ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x8008b705, &(0x7f0000000140)={0x0, 0x8})
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0xa, &(0x7f0000000180)=0x67e, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000140), &(0x7f00000001c0))
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$inet(0x2, 0x5, 0x8)
process_vm_readv(0x0, &(0x7f0000000400)=[{0x0}, {&(0x7f0000000300)=""/87, 0x57}], 0x2, &(0x7f00000006c0), 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x10080, 0x0)
r5 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r5, 0xc0045006, &(0x7f0000000180)=0x6)
ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f0000000200))
ioctl$VT_RESIZE(r3, 0x5609, &(0x7f00000000c0)={0x0, 0x9, 0xc})
ioctl$SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f00000013c0))
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000080)={r3, r3}, 0xc)
read$dsp(r5, &(0x7f0000000440)=""/171, 0xab)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x800, 0x3)

3m49.570758365s ago: executing program 32 (id=744):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/mnt\x00')
ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x8008b705, &(0x7f0000000140)={0x0, 0x8})
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0xa, &(0x7f0000000180)=0x67e, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000140), &(0x7f00000001c0))
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$inet(0x2, 0x5, 0x8)
process_vm_readv(0x0, &(0x7f0000000400)=[{0x0}, {&(0x7f0000000300)=""/87, 0x57}], 0x2, &(0x7f00000006c0), 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x10080, 0x0)
r5 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r5, 0xc0045006, &(0x7f0000000180)=0x6)
ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f0000000200))
ioctl$VT_RESIZE(r3, 0x5609, &(0x7f00000000c0)={0x0, 0x9, 0xc})
ioctl$SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f00000013c0))
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000080)={r3, r3}, 0xc)
read$dsp(r5, &(0x7f0000000440)=""/171, 0xab)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x800, 0x3)

2m31.802408163s ago: executing program 4 (id=1307):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='contention_end\x00', r0}, 0x10)
unshare(0x68040200)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a0, 0x0, 0x18c, 0x203, 0x0, 0x19030000, 0x1d8, 0x2e0, 0x2e0, 0x1d8, 0x2e0, 0x3, 0x0, {[{{@ipv6={@private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth1_to_batadv\x00', 'team_slave_1\x00'}, 0x300, 0xa4, 0xec}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xa4, 0xec}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x2fc)
r2 = socket$inet6(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, &(0x7f0000000140)={'security\x00', 0x0, [0x2, 0x81, 0x10, 0x89]}, &(0x7f00000001c0)=0x54)

2m31.583196691s ago: executing program 4 (id=1308):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000009100000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0xffffffffffffffbb, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="00010000", @ANYRES16, @ANYBLOB="c88845e7e05ae52d00009300000008001317"], 0x1c}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b28, &(0x7f0000000000)={'wlan1\x00'})

2m31.582866367s ago: executing program 4 (id=1309):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0cc5605, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
process_vm_readv(0x0, &(0x7f0000000040)=[{0x0}, {&(0x7f0000000780)=""/205, 0xcd}], 0x2, &(0x7f00000019c0), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r5 = shmget$private(0x0, 0x9000, 0x0, &(0x7f0000ff7000/0x9000)=nil)
shmat(r5, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
shmat(r5, &(0x7f0000ff9000/0x1000)=nil, 0x5000)

2m30.663206966s ago: executing program 4 (id=1315):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@getchain={0x74, 0x66, 0xb3cf1c901cb57e8f, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0xfff1, 0xa}, {0x0, 0x3}, {0xa, 0xf}}, [{0x8, 0xb, 0x2}, {0x8, 0xb, 0x4b}, {0x8}, {0x8, 0xb, 0x3e0}, {0x8, 0xb, 0x6}, {0x8}, {0x8, 0xb, 0x800}, {0x8, 0xb, 0x9}, {0x8, 0xb, 0x2}, {0x8, 0xb, 0x8}]}, 0x74}, 0x1, 0x0, 0x0, 0x804}, 0xc015)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b701000000000000850000006d00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x14, 0x30, 0x9}, 0x14}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, 0x0, 0x24008011)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbefe, 0x8031, 0xffffffffffffffff, 0x0)
r3 = socket(0x10, 0x803, 0x0)
r4 = socket(0x200000100000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000008c0)=ANY=[@ANYBLOB="400000001400b59500000000000000000a1f0000", @ANYRES32=r5, @ANYBLOB="14000200fe8000000000000000000000000000aa1400060000000040ff"], 0x40}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
ppoll(&(0x7f00000001c0)=[{0xffffffffffffffff, 0x40}], 0x1, 0x0, 0x0, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f0000002240)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000440)=""/53, 0x35}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f0000000480)=""/187, 0xbb}, {&(0x7f00000005c0)=""/226, 0xe2}], 0x4, &(0x7f00000006c0)=""/181, 0xb5}, 0xa3e1}, {{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000780)}], 0x1, &(0x7f0000001940)=""/1, 0x1}, 0x4}, {{&(0x7f0000001980)=@in={0x2, 0x0, @multicast2}, 0x80, &(0x7f0000001a80)=[{&(0x7f0000001a00)=""/104, 0x68}], 0x1, &(0x7f0000001ac0)=""/14, 0xe}, 0x8001}, {{&(0x7f0000001b00)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000001c80)=[{&(0x7f0000001b80)=""/251, 0xfb}], 0x1}}, {{0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000001cc0)=""/104, 0x68}], 0x1}, 0x5}, {{&(0x7f0000001d80)=@pptp={0x18, 0x2, {0x0, @broadcast}}, 0x80, &(0x7f00000021c0)=[{&(0x7f0000001e00)=""/240, 0xf0}, {&(0x7f0000003880)=""/4096, 0x1000}, {&(0x7f0000001f00)=""/71, 0x47}, {&(0x7f0000001f80)=""/150, 0x96}, {&(0x7f0000002040)=""/164, 0xa4}, {&(0x7f0000004880)=""/4096, 0x1000}, {&(0x7f0000002100)=""/147, 0x93}], 0x7, &(0x7f0000002200)=""/64, 0x40}, 0x81}], 0x6, 0x40000003, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0xb, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0), 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x10)
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r8, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

2m29.773367592s ago: executing program 4 (id=1319):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x40, 0x108)
r1 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000023c0)=ANY=[@ANYRES16=r1, @ANYRES32=r1, @ANYRESOCT=r1, @ANYRES16=r0, @ANYRESOCT=r0, @ANYRES32=r1, @ANYRESDEC=r0], &(0x7f00000000c0)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=ANY=[@ANYBLOB="3800000018000100000000000000000002000000fcffff0600000000060015000400000014001680100008800c0003800500010002"], 0x38}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000009000a01010000000000000000070000000900010073797a300000000050000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010033797a3000000200080005400000000414000980100002800c0001800800014000000002140000001000010000000000000000000084000a"], 0x98}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="0900000006000000040000"], 0x48)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000003c0)="057e30aae10df4f97559054b9a301ecfe91b645115e1421774006df60cb393573839b0078ce169ec2fde0afea66b5bbefa9d4f3cd8c2458336ceb1f0efe647d6d7b1cdbd12c9b8e3a822cbd51494bf79a1dbe5c22338ce37ed467a1d3d616564cbb81faa2e935b2697c12efb0ed141fa2eaad4747725c4bf20f8975e402b03eb77d1aa3f10f512397b5037b1b4cd4b7c08c03dc5e52a066e5982969fa044125ae251f46c26e2536cc8b77e8edb251378be4beedfb8dca0d449123f57677ca3da5bdebf91b195f1a5d49d7c292f20f58d490de36d8ee0e8a86bd04c3165549465cbee7891fc747d7def370ce644db894b56bd53af0d0e261bcfa6bf72a684dafc5bcafe07ece74cbd1d5fa32716dd03f7acd4f32d935438c91e033beaf49e3963e13d05e7a8334a858639636799f04a9033193e7d18a2a4b20bcc96811bb5efe476db70a76b7456ac4e71f3e89c00da0c7761c188570c7902bf2fee1be273be8a9f7a2d7508ef2188d3ba1db4fa9d1533d2f2a288cdfe3b0c50908d56ba69e81386e7e979e9d7ff78685ffb8de6baea2451762736a2bbafa11d541790b0564aef9b0b80fa24832090b84341a9fdf712d3296f911020f8021eda8130befaaab01cbe91dfc5768e6ff31ec50dd88596832a9f5fd4f558d367f40e454d3c97ad16a7f30b93629ee2def77b99f8a17c157529b0782fd847a4c75a2302ca96bbdcff660c2cca753e1a8c60dbcfb319a1594565a2e15bb6124316e196e3cafaf1a29eef84a0908d1dc80af7e333c65736699f1254addf2ab582f5c87c4f6ca234d7ca9673dc29444044b95abdaea958274e39aeb163ee2d05bc2ade5c33a0466e14fbdf8aa70ca2964c06ee5bc57b894b0143a7a503cc43574a07958940b029678df44d6c82fa2e6937ea6aeb5b8f33c21628e3b0d623c23c2e5a3546194fea742d90c1d61f343a005b9e58c3e8292b256fd0ecca81cda433f3bb0ed633607f0b635cdd8b4919bfa37c1e99df087d3f8f3ba5dec7930657eb3a4d8febb5234e048881fbfc499fe5eb6a0ce34546f7010ae2291e6731d0798ca451387a123998e68f6f577ba4e556bb9a119011a191a6bbcf55beb1fb0b8252deeed5721b271b964534a04462720c4c03e8ea7f120cfa1be630e7fc680d1f6e067075c72f642babcacf6b00cd3fdb9f3200e4ff8935b17ebe222053c78c3752666088017c2150dd014b9578af6adb15527a483eff5bb623710ca7b37ed49ff7cf1525f296af6f27846524e4aaea7476a2d08dceeca84a1ab11e2767abff12d10deaf63681dcabe9b1fb9ebe207d8e3793dba9a73a02ebea4e3a072397a88c47795d5e88b2040c9fe3f96f66f8f7d593547c8fc8f4e75a1c20962ecf2dd1e7bddf896f2a6c5f37a8784e2bc5b10cef2feab3b6eee7430908eeadd372248041a09b0c29385cd7a75754d2c429e72bf5fdac34097bbbbb3790f86399c60cb5054fbeb8eb1241608b506beb135091c18110c1d10d9a80f4adb11a6fd3001957cae0b4f8f730cc4fa4a7328e23f390caab014cfeec0ebfd0e14021f47fe330a68680678d23e7ca1ff18e7e242f4c1e3cca51dec73c58b596c2a92267ee76d3657c1e2b34102b09fa4c59c2619148440bf26802c6f858b8eee6d8c697bad2c4d5a0f76c6a4cdd3b8fdc21e447920491ef40578b68a7a5dfda04fa235fac01ad4e824b627137dc48807100e52ec5ae2f3a3fd84d68b824033b4f0ee28a9e72333b4e209ae905d0781e4fe8116e03b1ca5c3b1ea84974cabaa0214ed15bfe01e974491e8a20f9d03ed1b73799b083f3a65e809c3ff3cf126288fc1627409d46f78b5fe8b8ba0b3ddc3ac79aecd6eee2e0cc59826e5798f48f80f0c7f549b3a656e9acbc5e51bdc3becef93533166c1d9ffe4335ec973d3d27ce5987d150f554c4095650528578fe4858b670b0786f23c886612191f89ec57970dbc0e33cd62b57a08fa940b339577fd12d07dec2ac50e9e0b27f0716b3233803153389a95df956637af8d9778e27bce49ab0a832978712a074d3f7516ad512ed0d9b43049b5990c841a7b7146a24c62fb70645b8d85b6c8863d5c6aab03638ffa4e30c8de24383cf320eee735a4fd37262d473076f495da8b2f0f028b8f178c238010738d6afb1dc2e48089e80f6a7658ad3496f1a1f7f78abdcf934c733d22abb0671a0d41b9b33a5faf99d7b82166e27df0f97a7953dcc1fb364478200253757e8311ba61cb4c78a380cdd820553c7296816210f64b34619966f1540a407c8d6e8e30788909de19ede4116d09a14ce26ad59957add80b90602855c0134ba7fe8afd4493f7cd9ced61fda7d0ae02505c046acf68d68ecd9b1507a4d4eba4c2c834777b2c3c5a8b3c06677fe468072dcab48c1ac9deec30265c7f6c5864df89e25bba52715c82e9921db601b3935f5047b8cc07351b9965b1a1f6ef36c1fba89d9d96e332eacc1e8a78e09d7d6ba30845866449ed5264f763735d4e7cc133dba4b296b2dd9331efea01e5b3d05f38055e41c49993d679ef133b9b1af435fd0ac5fad33f571c76d02c40d4e301110b4442aa134364f0456da0cf362b2c27ebd667c0969ae09dad18becba9d6918fb1e741f685735cc7078f0e6328181a83da67516fac31522f9d9fc64a4b769e57e76bfff6f9867fa2fee1e7dddd11128322210e44eeef6db7269dfa1bfbd9099dd6f8219d585c22c20483251447772719a6115ccb690609de352989610a138110c884562b65de3cf63c3ebe9adfeb53c6e4ecc637c98b60161f71952b84c6fc4cea6af0ed533144bde4f8fbab2d3ffe0b2a5d0c55ec9979ea85a25045ad3a84becf0e891b89c1a83178d7368aea4bdfa0ebd46b8e110a2972c8ac96e10ac630e89f8d76bf35b03b5ecd393d1986fc61318e08ef02721e5f2cd2fe098ebcd1bd30a8f87b2a5650b51dd50d0d78ab7fe66490f5827372f1779d3d389e9fa66bd0296f0203af010d8f76783837cdde2555a90be577626a12de47d4da638efd0017750a230485f6ade34a27284d85dd87f9db8a832c571106d8296629418777b4d933fa049f0f4e5958c193e889305074091be14c66a4bf02cdfe1e8d26a5d21fa78c5628a7ee3d7a0c550296b2f0625e2dd18d45f2d45bee6746d4462c92bc3cf50503c7479bd121393821afe1cd7144ea37f4e8e5ee21f739024ad25af9430dee006b76617725556ff8a820b767fa821629819732f086a5fdf2ccb4edae0aceb3d6dea698e798ead905a2eef9065d633b007271e93101a71cbe385f56e32b3a8fb081c5c1ab09b729f89294a0007df3a3b8e93686020d993b812c6f85fe1618db897cd67be6cd5053dc8490bbebee133d140503c4aa51eea0c156523a1d81ae849dbe5a273bfc0de94836f8160ea9f146147fc02dd7b55dca6a2a43692268ee98f51fcd2d3faa76071d9716e877b2a3dcb51a51d5359a2ee705da52b43306f1f3caf33342fc281bc9c58d1ce05ecdeca371e3a788542f8fa999e4d8e10e66f0b6053d7d4cfc6acb815628bc2409b3dec01726121c267b3ee85fd61bbbdda68ae2c13026863e4a54b93d956fe692707a179411c841ca7d2f33a5223181b18b7ba2eebdd7c2a8dec3ac2a317b5fbd996e8598c394ee627308f0e887480a8dcd59b0256b636f4c62566501a733fa74232945ba1d9e2bae347391bf9ae2da4d3af2b262b772421fd3a5cab46862ea6049f5c9c76dd8549ce0e6c31c792b81b6b21f0bcca18bb2fa6a9d4d6e0a837bb119e2e002a69d6ca95a4b2acc463076c2e05731ef0cfaea84387a6baf6737cc14a25f5329ea924090311213344625a69ee382dd4bc72e00e63329956f3e021092585c9affa06a95bd0ef653ae9ff0abed5ee561ada4f83d8ef202d9c0b2225ebe8660cc408859d45e0332f4f78f6a339bce9d12ca2bc5116a8fd4007c485f5c1c41af96c41d96db35411842d7babc05c8b228066dccb9b67f348974363be521e41fa94d2034a0bc1e87360a80606e1e1bfa8e6399601b30bf93ac41129869158bc2b791b50e51519133ab58afd4023d4d721129b1307f054103a47c49e0524ac4df511c3409fa62d8b5c1a897794600f53efdcc987e06bffd77c9fc75fb7221ef29ed2f7e3e8abcb4a1875b85bd5176a6fba9a361d8684876508443bd50e630f4c684002b15930cf81d740b880eed25d22d8de8c00066790df084fea7c5021184a210a6d24f9bc862c4e3eafbb1782fa240ecfa5959d7a681bae84e8a96a5ff45dea4f9e16dd2cff2dccc6cf4042b44b7ad1f55dc1db5998ed40a409c0e67e1e64fab423d2c00fabb8976d9dacf0c82530e356a99f75082f3411adddfe4ab1ad3b55599fa15450dd5feee23591f1ce398e4c5ae8aad71ad26ea189c333c8467d1eaba9589bb8c41bbfe8c0c173e5446bc06b578c1db849fabe5fcd8fe0fca94bdc799b53b897249826037499e8b6213d640724fda1bcc9341ac61fbea02c8f39a53c496902d5c7922f678a273cdf5ffff38ea028ae19dc72f0b0688f2b9b7d5a9c04153c10ff4168cf9f243dea03b336be778f6c79d67a2d0ade82863eaf95d6fc7f745569864f369f4b39177c356c8c393bded485df28622f01251e58f3d39498520ff90e6c670f0dce5b494cb1d78dfad108406dc5857086d386bd42bd03fe716f049407e5e55caa0e73e96c1a4f6d5791ce7195b2ce72de52ed617ecefaeeabfa9350af49d1d91f9a4b97dc0808869b916f34ee242c40fe8c8aee57b6ddb69f9a10636e481dfa059ef001bad7020266f0d74b14edce6c18ffef854768a60885bad798658a6b9d0b438c483ba159346d5ce0771f53ff18e0bd47d8583bd56237f8da2747ac7eb2a87b6e26c4820d4fe18b76e06bb6e0c0cdf478b4aecd381c2a6ca9f10ec433f0aca63a66d04f70557baf9f2844005351a21664c2430fb0002cd03bcf0b2004068a2567f91a9fbee8c6d948fb35d48527b23e1398ce9f535e2b0b33c2bc31ab737ba4b980f46f5d424e33892c8093f3cd18510a3157afc023f63ad3ba999e950747c78c06ab141a26d74ffc049a6f76c465f9f9f03a8d339a8e61fef26a5239fbc11c01a87800c81efd7b9f28ee2ab2ed88a383f5013bfd6671ea3086121b235a0cc45ccb300c02588895f8d13ec7e00a3aaaa8b0e739f666fd1b13a90b23998704859c9c76108ed7ecdc63770e6ebaa0aeb9208b92ec4e948ac7fc81cc6f305f06c2f2d8c9267463af92e185ff627eed54313fa2ee0bff2cfa8be411982fd19fa88db5ec99f238f88782f8c7a957bef14f79351b63799a4cce160357c068987a5516b04c79644c140850cddc8bd5541fcca9e30826aad864240f434bd1fc67b58e3d664f782e9e46edcb34e2db98a39c23e334e51c71c9fa466470992cc1fbc36c3c8ff4340be67f9b85a74c9114cb9fe5ca4dcbb641ea17a54ba4658aeaa515109e117625a6196dd66d3584d293b468fce63b5a9c4b9461700c74ae955539bfbbe3eccfa7d9c9f737792a9d4b978baa2e92819e88340b73c88c2900b723248b18ae9414cb37a64ef8cb8ca85cda9677d9f1e71a6b70fe3ad17f2d13c1df48d93bfa50fd939a72ea26f9fbeaa6f8af2eec91b04a8fa7dc14fec0f54fcd1c5c848b4432f979f10e661cd2d7f8ff669ce99f9813fc5440fbbeb35f1a5e5115f5ca35dcc270bdbcae07a9ae8e22aabf8178379dee08874ec7840de27815890a88fc9a3bcfa88a33f9baef9af0ae01b2bd34a907f1151cb14bc8b396bc43a60f884f425e4a04348cc645aae68db49980139ddad0fed303e40b124fd654b36c961a56c44cc3686a7529b1f1ee47da3a0f1158542337df15780444790a2ff1b57e062f0db66730c9f98de395f939f44188225211c514447f67fcbf320a34c43ce09ed272bb992db3a35ae2c3c491c36f2de88984129fcea1ffd235aff7bef7fa95d65894db9a5f1b348efcb571a81b3d73ccd07cbef052389001e4d456800e05ca53bcf3485ce05791ff65a9f7913416ae26972f34f51a3270580b81307ce31c98eda06f3b35890ce317e79a16d728cd0bb6a3835667555c0c5138cfa5305a91db1f873b2a75b82ffcb27616ee67777708f7dc2ed9ddbeb38a60f446d3ac88ded25265c25ef38b0755a9d34bab5e669b6501d8c9787aae7eced9945cad3d4d1c32fa68b48a1d773750f814631db3e088c1b5e7ffa854ea1343d94ec1343918d7a1c5a095bb72b00eb3bff210aeec0b8a581a2a13429b83a193f4d447059265b63c4b8f8ea1b9494f65e79844d956c5d80780849dc086506e9eba002e682a1bae1543f8289588c574bb6ca9a2e57b908aaffed23ecf3536abaf96fe08291f3d70773288b4698e972b0187385dfff4cba59175814e75e7e5146205c7f2d2f749583b393f46c448c152d8be50d60ed8d8bdb30fc7925656a0f90b1de967c729980815e5f19ed453fbefcff67832cb90d753410a0b18eb7504600b11b0360c3d3594d48d832160d357afc1f17dc71dccabef7bbcf1fdd55b48cb02135c32650ab07b902f36b48be9376b2dd68343eacfe80d9dab3205a393a4c6ffd405f6db323dea11be4f22ce50df1e0cfec9e9b1e23acb94d66ea787d08f615a7c7288cdf1921a13a85d885e47cf1067d89ebad5b92ce5c9da255f8d74bd2d5b78366f998cc35bf35e45d06128f1c5984fabee7542642bbf6d981b60759d3e7900e5b3d1d7310f90df0c88a600ff2f39932bf7411e61c692c9444dc9ae0dff28c0b94292c430ac4464e83ce8a29b886f45c98b8396667740c5be51e592eac0250d6e479505d36e930ca3a32cb671d58707d25b10e2660cd5e661b08e268c8bf1b3cbceb2d995a2a6fdfe5475cccc965f71baa7c84054e3bb6cbcb7167b06c708cd72ad4301e943dd1b2b2c325f682be3eaae730a8ed8bc3134b28d1ce04543bc66a529744561c42d25e65c7b5cc2a17875ebf35e53aa46e1edec29ff8d046a7e01459d9639c10d1df998cd9a12d7e50b2dc71ee7338cf71beb72d5020dc69eeafc354bf822d65ee0328eb07d04ac0d266fdb53227a158411da5ded254b3c359ee710e0278e1a06f06002538e108450fd6b11949fdc618a29baf34f232aa192230ddb318aa6d59d122257e50713fe73e6c0059399589c382dc901a8c3381139436f7331b69f457bbb38ed54daaa07a52cceb053c32690836c664b73d86261216b8610fc7b4d53dd3e5d9bcb3e25528e132911cac37e7f2618274c733b5ae02f9c27638d9e11988f1dfbb281ffd8cddf8558a481861cbe9d53a4ad8282d3587449cd51759ca397eda122d286e117d01539359870b94c98a3ce383ed1d280bcceb228acf73193e87fd3650e4dfd563cc55bfbc8626a41293cc90ef76e28e2dedaf968602d2997ae1c2752a0febe3a78f3756d40201ae13074091238324422caabe22c66b7866065264261fc2c3e0569493468d1c1c36259aedd5f078a231e72decd70f4de8532f6753287435296f33a096bc1c8b0ebb68c9f783881e45ac54159ec1c2f9e1f5cb48f96729a62d1b4fdaa89ef5de8741bca04e953534dc977e881a61281812af435206378eff173d7929ab4967e511bdc14e6a783ab647a4c257a4fcd6ba38ef32bc48a00643416d7e34f7465b3e6240589d854db4d9714e998f2edf3a03986598a52aaf647d938f4a8e07c1c29615803af6cd403d261ad6da3c1c804034b4a4eef3ea1cc8db39d9e171b3f6dd074388577a4eb901c25c8031e4592cea80b6354850657f53b2acd910ec2c5a7db6abb0153e051dadfbcdf047e35591b96b5657ca55d99ef6fb48e07c34321cd20c40b30a646132f8afcb9426fe84a790567fb847076a8762ca29cfb037e0c948edc12122a1160a55d465f5c912406a10dc0d3c1156cd207e9ffe906d267c9c870521934e1c56af460c0ad0dea9c929acf85768e22bb65eca6e25e4ec8e6edb7a6215e8c7e5fdb56c7131b156ab6a78fc808f8f17a2708ff68b37778c00b3b546004fb2b2c588d8ca8276d281026bfe896698569814410422f27421b8fc5c09d47635f17ddf6b9f56a203c991514678c18a4afabe1eeca6fce1187fffcb6ebdacfc6cac9750766ed40c80e7eceb342a3fa6f86d014949f9d111bfd96e2a39d364f2e2722f2d9ab0577befe26055890161d780e52eff4022461c1d3b019b86af28c4f02fd1f7496d8c141344ad5756bcdc45158f3af7aac227c8853f607cae412db6fa924c039859fe455857bd5fde66cc1b773c12f516401a31c80d750079247c128a103361e7f0a392d21b4b1b594307ff6b37e5a242666209ec517561e04645b92e7cf3cff1a6c76c900d12d9556e2962c535401b1e61fa85e06551ed678703fb3bf8590f2608ae3c278b8d1ac286af38061afbbc3cb27ee7adc6ad299151cd00a84506e6a97648ff99f2a9d35d8421e71589437406fa8e6def8ce34c9abe5de3481c492887176d4485dac794b84567d5ebaf68d0007cb2256a0f1ce4318f6891f750fa9696fed3525059688cf973e70d688b1759cd0f3dfb0b2a7078174b978767cbdbfc3f7d5850e2f7772e2bd6e3ed69ef13cc141238b5ee04b6615e33c42fcd6cf979a0ac848458b713b9a988c1e3fc32f2a182fc0cab2e6933e9aa5c2d77db8c6a1802b43bd8220ff0ca92229fc26a44761d00eeebec834e5f7d382b4f58a2759c56e53b163dae034ffa1970acc57165746e575470e13c4044f392ae4bea93e7d666256436507bb987a247785301274d4f262f94989cdc94b209b7499bd0cb4437525b72be79c87c6076533e4a14799a60bd3563d46ee4767108bed7e637cfed6f3139637bb01f36385dc5873eed726fbec9a87da294cc11db8b49fe45b798ae74e1a8cb0f2907eb0178d2baf5f0f88f654baab9f147741945c496ddea1cfed65a82e913a131c4ac7bb6f0d8d5d28225dab8a33c6e60c0d2b2d5dbd8c35089f13f9a2ae81ec9addaefea9b8ddabc8cdeb6437381ce346db6e14d9d1e8bb4662b508d61da77fc8d9ebebceb1c23be5d0a7bba4a48c0591333ab7779bae78ff23c4bbf8a8cf30f3120a5b63a047064d7ed7d37191cf39b6d1e8ffe3b47379767bd691cb855a9c938e9a0235a5ec9c316a6dceca63fa5fe6df0b9f0d6b38add216aaf2726d3377ab827b00b4cbf490708a0f679b8cd7caadb3dee40cc98f778917d6a6263fcc0747bf75fd676d84abb7d10087da323f95c2571139fd4c9826ad5db6ee4c246b9da20592cae11f9264bd2945aa1a427b2acefb514a2daafbbae35ff761eb1e3b98b4a1dfca348b8c4ff96325a618d677180ceb7e916654ecc2deecb4e61d01080f44b98776b1b43aebeffe2c14006dd1d78c8babf1179f42fd20d87654d3246d41e9dc633eac1741be44f8d751d8c9fd57316fe06d60872939b7a2906bb27a299a3408a51d74e5d98417f05f85fc1b332e103e79203e9fe344dc1d1572de39d914c5270c839870d2b33da5a6efc08c4f0c8227cc35a7f77c6a55f80ceef90e217c80e5ecb4c236685f5219787b01612cfbac90794e8269c07fb7ca4f7dba4defb2aae2b37f7b1696e78de15dbb1b6d4ee0cc4c0fae274b2c2de9343862de1d9847515ad235b1837daa9b814f19e895ae3966ed262e3e7add9f19009e6b61462917b29502b67e124c43538a6bcab7296529e01bb26ab8b3ef094ed057383c4f92790b6f705ae9d943c4e8dad84f6ef82b54d062713c16960fb475d74d46a1b16062563da3391cc6ff5185162c31ff7339e4837e38adab8ab911abaaa006e313dd19a1f92b4f7bede4525b154e1b9f796136a85f3602da011ae2232be902347e08ce0bbf3d23d91c4aac11c8824caafa1d1ff0343ce655802c1915f3ae7c0c670b18e56e139be66a33613afcb3b1928613b3afba9d635070af678216d57023d1911f0eb7ebddefc96f0efd8e9dc10e8a87a68393e19733ef900c6264722940750ae16f664e445414e85e98570303c6d87d7f265cfae0a1e9314fc14674c2871c0d59bbe2eddaf9330a4e2a28673af73910d6cb90790f800e89d55a2930910a8430ade9551819d83d5ea6da4e58326b7ce555d01da86ea78200f0219ec92473da95cd5a632c525ca9fbcddebb8168881cdb2f5da787d0e31881e2b17d78184f3a0bed8662486d3937dab275d050b9dd5a2ce904208a91a467afc33e10fb6c1ca788a5ef30d6e8b615ec0ae1503fea7006569559b7b155c31b196b85881c5671173c06fc5373e9fd973e7111ed45874609bf3c88c6db732210a3ea04cb68662bbc2048bb55d811482af5c658e29bd18c57ffa25e88d7297cd20d4c2b13007cfae89f4dcd90177a0806a2ceb2095333b58f828c093b9bf63cd07e3d56a446fd12e755fd651211bc160948836939c17623b317b9e935307044bab2c11879a62288e7ecbbb97f10f52516f517b7b8e44cff5964fdfaf8044065056b48db13b1365004c336afa3535af1242c9b7271b8b1ba2213fcbb80926bcd394815cd7c27e3aeb2348dc45f5e06e32f5bd56d1c472f41b564ec0939cd012028412883cc098d086fd43858747b746be72b979d175f6a6447fc5908616dec7fc6c962e12e96e09bd068acd2fcf0ce1cc26d9f82b2b91bc9aafcbf8435011f73b6a8ea1bb2f3289b23236136b31656600762feff53e607df8cf3c9a7f257b212630c19f142e4cf5094250b629cabb145c77f1f14ad60ab7617078f810a766cfa341fb7c16086609bc0a768fb1cd782606f32b83a0a55d883269a05b80275612dc571cb993ea9e447b4d32570d412203ab4c8b050b63bb5ac0f8d6f4e9a1644e4b622587b2ae125c2093bd363493d58544d6303a0de17780fcd83e993aa83f4432274eee1e6333fcdc77bcfdea95b8b9ed787723e35b71f1dbe89ff1e3e6fde146c05b6fe9eae52b472624e412253a63e7fcf1b77dbff7509eec5a55501e222f66bd84d36663cd244fa1556bd34b4c9957a93a71e63961ffc7700c5545acdd3e79da41e1cfaca0956d4978222cda23a574d691dbb6c6bd083c70c2782c045bbbe0fcaa10efbc002af6832e3fa7dda0ec8ff6ded69302d55d5a62a7ec213f16ecc5e3304a83103d1c2b21e04e3f5f3730339a630a407e8cc6a5afd2f2ed78ff992035a3783a2708195a46e565a9113be8c228ccaae3510363b475732ad48fe8ff34801f4c35132359d4c5c5bff65141f4a8684d462cf5d97b44496440fff3f7a28d28bbaa8e6db2a6064cbe9fca4679afe8ca6dd27a25c56f3e58165040f19a0455199a0ece4583f060979427f2f3495f40a83bc6ee3eaadab18705d464662b8aba9c7aa2f29114f7acc247548a85bd44723064abeee18f7f558f6d0d74fa08103dd906124454745d23005c425b260b0034372123b642a0cbebbc1a0bcf0cfc3639876eceac5f9734057ff659cfd35b1a3eaa768b86d66244aabc23a45676a59d492614f1c0011c9253e53fc7bb3e20d303afdb5b6614dcc7bbf72a339e414672aac23c2e2983083f08dbc34e3452def00f402598b6aaa4f0d896d1648b1442621993b7d0c930560cb6152b9ce59f94356726816a224fca84da5dbde6675d20f546a3e4635e82ff9575cac9160e6819f", 0x2000, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r7, @ANYBLOB="318300000000002300ffffffff00000001800800030003000000"], 0x20}}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1b, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000600), 0x0, 0x3ff, r5, 0x0, 0x100000000000000}, 0x38)
r8 = socket(0x2, 0x2, 0x0)
ioctl$NBD_SET_SOCK(r1, 0xab00, r8)
ioctl$NBD_DO_IT(0xffffffffffffffff, 0xab03)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00')

2m28.902648053s ago: executing program 4 (id=1330):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xb, 0x13, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='fd/4\x00')
mount$9p_fd(0x0, &(0x7f0000000180)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x19, &(0x7f0000000100)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}}, @exit], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
close(r4)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, &(0x7f0000005580)=ANY=[@ANYBLOB="620af8ff0c20"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$KVM_GET_NESTED_STATE(r7, 0xc080aebe, &(0x7f0000005580)={{0x0, 0x0, 0x80}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
ioctl$SIOCSIFHWADDR(r4, 0x8b1b, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00\\ \x00'})

2m13.412939808s ago: executing program 33 (id=1330):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xb, 0x13, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='fd/4\x00')
mount$9p_fd(0x0, &(0x7f0000000180)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x19, &(0x7f0000000100)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}}, @exit], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
close(r4)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, &(0x7f0000005580)=ANY=[@ANYBLOB="620af8ff0c20"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$KVM_GET_NESTED_STATE(r7, 0xc080aebe, &(0x7f0000005580)={{0x0, 0x0, 0x80}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
ioctl$SIOCSIFHWADDR(r4, 0x8b1b, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00\\ \x00'})

5.289401306s ago: executing program 2 (id=2444):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xf, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
r4 = openat$audio1(0xffffff9c, &(0x7f0000000240), 0x80000, 0x0)
io_setup(0x4, &(0x7f00000014c0)=<r5=>0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000002c0)='mounts\x00')
io_submit(r5, 0x2, &(0x7f0000000700)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r6, 0x0, 0x0, 0x2, 0x0, 0x2}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x3, 0x4a, r4, 0x0, 0x0, 0x7, 0x0, 0x3}])
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000000300)={0x4376ea830d5f549a})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r7 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
write$cgroup_int(r7, &(0x7f0000000000)=0x5, 0x12)
ioctl$TCXONC(r0, 0x4b63, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={0xffffffffffffffff, r8, 0x6, 0x0, @val=@tracing}, 0x40)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r8, 0x6, 0x0, 0x4, &(0x7f0000000240)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000000280), 0x0, 0x0}, 0x40)
r9 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_DIRECT_TLBFLUSH(r9, 0x4068aea3, &(0x7f00000003c0))

5.042197523s ago: executing program 2 (id=2448):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x1a1000, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg$unix(r4, &(0x7f0000001c00)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r3, &(0x7f00000017c0)={0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000040)="a5", 0x1}], 0x1}, 0x11)
sendmsg$inet(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000080)='\b', 0x1}], 0x1}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = eventfd(0x4)
ioctl$VHOST_SET_LOG_FD(r5, 0x4004af07, 0x0)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r6})

4.121443663s ago: executing program 2 (id=2459):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x480}, 0x20004000)
socket$inet6_dccp(0xa, 0x6, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x8})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00`\x00\x00'], 0x48)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000040)={0x0, 0x0, 0x800, 0x0, 0x2}, 0x20)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
migrate_pages(r4, 0x7, &(0x7f0000000000)=0x6, &(0x7f0000000040)=0x100000001)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x4000000000000000}, 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r6 = dup(0xffffffffffffffff)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000100)=0x7)
setsockopt$WPAN_SECURITY_LEVEL(r6, 0x0, 0x2, &(0x7f0000000000)=0x2, 0x4)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r7, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="200000005e0001df000000000000000008000000010000000600"], 0x20}], 0x1}, 0x0)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r8, 0x6, 0x13, 0x0, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000040)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0xc0686611, &(0x7f0000000200)={0x10003, 0x2, 0xeeee0000, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
bind$inet(r8, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
syz_emit_ethernet(0xc4, &(0x7f0000000580)=ANY=[@ANYBLOB="aaaaaaaaaaaa6a2ddcf6177a0800450000900068000000069078ac1414bbac1414aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5486000290780000c3077e06d7920928db3b28cabcde4ee5db0571fd13e23744b0398f34ef631e5a92cd80f4c840ae932ebe960c3bdacea6681ce1ab461dd2b9912bc3e5f332e261b708f341e6566a9048e0a9bfea312a5821547b69c613de9339df2726a7ad5521c0b6f1385055e793b6a047a4615024f013f209c5c0e1fc566a549d3f4892ca3a7baca726e10000a53b5c892b0549c29e9d03a78592e34d7800a70ef0bb0f4add65e4b5c2883dd01425ac127e333894a157baf5906714fa1892267d6f08d26e16ab2af4173b7d57e6"], 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)

3.53089818s ago: executing program 1 (id=2467):
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, 0x0)
r0 = socket$packet(0x11, 0xa, 0x300)
setsockopt$sock_int(r0, 0x1, 0x28, 0x0, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x3000000, @loopback}, 0x1c)

3.19210349s ago: executing program 2 (id=2468):
r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @fixed}, &(0x7f0000000040)=0xe, 0x80000)
ioctl$sock_ifreq(r0, 0x8926, &(0x7f00000000c0)={'veth0_to_hsr\x00', @ifru_data=&(0x7f0000000080)="5515124355c5cdbd611f9c5974ebcf6dd6ec9c4b71a0ba7e1555964a588bd77f"})
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000100)={0x0, 'syzkaller1\x00', {0x3}, 0x7263})
r1 = syz_open_dev$vcsn(&(0x7f0000000140), 0x2, 0x88400)
connect$can_j1939(r1, &(0x7f0000000180)={0x1d, 0x0, 0x3, {0x1, 0x1}}, 0x18)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'hsr0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_COALESCE_GET(r1, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000400)={&(0x7f0000000280)={0x150, r2, 0x8, 0x70bd2b, 0x25dfdbfc, {}, [@HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x94, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}]}]}, 0x150}, 0x1, 0x0, 0x0, 0x1}, 0x24000000)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000480)=0x1, 0x4)
read$FUSE(r1, &(0x7f00000004c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
sendmsg(r1, &(0x7f0000002a00)={&(0x7f0000002500)=@hci={0x1f, 0x2, 0x2}, 0x80, &(0x7f00000029c0)=[{&(0x7f0000002580)="e99f6a1acbc698f9b642e873074ad645d7c5d3da25988435457182418c9a69c8420df512fb948503d10138c36c0e244b70e45110048ea5bd3d853463297803acb84ec9d8533064e1a189ff881a01f8650f322c056d2c464b4155f612286cb7ac22082e994fe8529227afd33158ddbdaf421e264fe3400df485221288dd17dfda9469fee5ef4338d0c10898ae9f41610f2752d650a67973cdf5f07d4316f92d8e", 0xa0}, {&(0x7f0000002640)="02b47fd11a34ada1c62a0fb0ad52af96ab04e68fdbb650164c3531d2778e9a0e34b52876ee774a7208e725c2973b1e50e7ace2779cf000b5f961db6dbadca8fe8934856650c6d85a18b1733eee6a3f150abdf52099bb056fcd5a0e660f35d606525d42321b1a0fe48cc2f51467d8b7cbc5860582386d971be151eba21c2796b2dc0d0a51", 0x84}, {&(0x7f0000002700)="dd68275db456222036be076537bdcc6748f9abe5fcf4fdcedc47e47a00c00938c1e75ce5fdfae1faf4198750cc2e80b40f255b9c626a1e948a67482d4201c8836a40e34504fb8846ba7b8e22d0b5b7ca5cdbe0f0100adcc95a27e8cf0775fed344e50b9bd0f820c93f82fbef675c12c969dffe69b576fe02365e67ee4f638672c37f7ac28203d8942eca84d98cffeca93da532bc1fd1fd3bec872e", 0x9b}, {&(0x7f00000027c0)="a86a297cf3125bc174c767eeb90fcc0dc8facead622f79f5cd519d74456794125466594d0753230f530eeea86eb16fa251d2835472c87b94fa3ec4c4bc0a548679dfa5e46640012e70427c044f7bc172b64d797d22c4230987228702fd6a6c8cb3bf7d00388aa055185e47e26b867e454d2d59bb1f9f9e6ba5f533f06d95253f5289184b67a3c7905c28481efebfbf9d59f08be6393385e79a4c14c0df1f4a83706828177031e23a2ff26eb000cd6387724ac5f7db4c0d47097e58b60f1426a1b6f08dc9ea043c81ef2dd95eb58e8c45fa32376d5d0e48", 0xd7}, {&(0x7f00000028c0)="a293b25fd008e6115283e1f7cfc4a82a07a48bae3991b97d85ebec316fa50b062d7db2d76bb4aebfda9583f06c61f0248ad0c83bee76f9baf20693d3ecf02a73ac5731f2e08d1561a96eefc43ea147a4a143eeb9358a03d1a96f4634e2c325d710a2273fcca44ff299ad632275ce4390e9c9aa4ce50ad78f2bdb1638b790c97e76312dc56a38bc285660a3e55b5e27d70a34e575075c8d69b9dfdca5457dfd17e77c68d2d6441da8460a2e5d8e08aaba00f1e58d2ee145c1567259ceb2fd66627aa56130dadaad3d7d4edc4d9b5d9e65119bc56258b81a8b497902134e09d1e2ce7cba51f9a72350b3ed", 0xea}], 0x5}, 0xb144a6a318a35eed)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000003b80)={0x53, 0x7, 0xbd, 0xb8, @buffer={0x0, 0x1000, &(0x7f0000002a40)=""/4096}, &(0x7f0000003a40)="f637ad204461ee59339250d2cdb0021523bd6830f02cf7ebc681bb9f828c237e0b9bbb8694fa482a4a4b739fcfb1ec493da0fda264cc0dba6af5a747984ff2577f41a7d7a43a3da37e0209323e1cbcfdc6512332c938ba5753a2957bb43eb84d8d98cb6a83f47209301818c39a238e75000b1fed72fa2c57306c2f41f9d232338ad6b88f1dda29afc54b509c7a885bc2e6b6c033ffb4998bebbf562dd8742717a1fcb9d2aaf288476f7fbcfb3914a8c0eba6bcb25afd233fe367ca2122", &(0x7f0000003b00)=""/39, 0x10, 0x10000, 0x2, &(0x7f0000003b40)})
recvmsg(r1, &(0x7f0000004000)={&(0x7f0000003bc0)=@tipc=@name, 0x80, &(0x7f0000003f00)=[{&(0x7f0000003c40)=""/65, 0x41}, {&(0x7f0000003cc0)=""/123, 0x7b}, {&(0x7f0000003d40)=""/81, 0x51}, {&(0x7f0000003dc0)=""/119, 0x77}, {&(0x7f0000003e40)=""/152, 0x98}], 0x5, &(0x7f0000003f40)=""/152, 0x98}, 0x40000002)
r5 = add_key$fscrypt_v1(&(0x7f0000004080), &(0x7f00000040c0)={'fscrypt:', @desc4}, &(0x7f0000004100)={0x0, "d486c0c215ea7504a800012b15ac1f81abfe0cebed13f85cfda80718a03503a903229ea768e367ab228db86ccfd53983b13d55a16e43c185d0546ce768ed7828", 0x17}, 0x48, 0xfffffffffffffffa)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000004040)='encrypted\x00', &(0x7f0000004180)=@keyring={'key_or_keyring:', r5})
tee(r1, r1, 0x3ff, 0x2)
write$FUSE_OPEN(r1, &(0x7f00000041c0)={0x20, 0xfffffffffffffffe, r4, {0x0, 0xe}}, 0x20)
r6 = socket$netlink(0x10, 0x3, 0x5)
connect$pppl2tp(r1, &(0x7f0000004200)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x4, 0x3, 0x3, 0x3, {0xa, 0x4e21, 0x401, @private0, 0x8}}}, 0x32)
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, &(0x7f0000004280)=@arm64_sys={0x142b, &(0x7f0000004240)=0x8157})
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000004540)={0x1, 0x1, &(0x7f00000042c0)=""/250, &(0x7f00000043c0)=""/91, &(0x7f0000004440)=""/229, 0xeeef0000})
getsockopt$packet_int(r1, 0x107, 0xe, &(0x7f0000004580), &(0x7f00000045c0)=0x4)
sendmsg$nl_route(r1, &(0x7f00000046c0)={&(0x7f0000004600)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000004680)={&(0x7f0000004640)=@ipv4_getnetconf={0x2c, 0x52, 0x648, 0x70bd25, 0x25dfdbfb, {}, [@NETCONFA_FORWARDING={0x8, 0x2, 0x80000000}, @NETCONFA_IFINDEX={0x8, 0x1, r3}, @NETCONFA_FORWARDING={0x8, 0x2, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008084}, 0x1)
keyctl$KEYCTL_PKEY_QUERY(0x18, r5, 0x0, &(0x7f0000004700)='bridge_slave_1\x00', &(0x7f0000004740))
sendmsg$key(r1, &(0x7f0000004800)={0x0, 0x0, &(0x7f00000047c0)={&(0x7f0000004780)={0x2, 0x0, 0x40, 0x0, 0x2, 0x0, 0x70bd28, 0x25dfdbfc}, 0x10}}, 0x90)
r8 = dup2(r0, r6)
write$sndseq(r8, &(0x7f0000005840)=[{0x7, 0x8, 0x8, 0x1, @time={0x9, 0x9}, {0x60, 0x8}, {0x0, 0x3}, @ext={0x1000, &(0x7f0000004840)="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"}}, {0x5, 0x1, 0x2, 0x50, @time={0x3, 0xfffffff9}, {0x4, 0x2}, {0xc, 0x89}, @queue={0x2, {0x4148, 0x5}}}, {0xff, 0x8, 0x8, 0x5, @tick=0x100, {0x9, 0x1}, {0x3, 0x9}, @raw32={[0x1ff, 0x3e3cd1e3]}}, {0xf8, 0x5, 0x8, 0x8, @tick=0x4, {0xd6, 0x3}, {0xc, 0x5}, @note={0x8, 0x9, 0x5, 0x7, 0x7}}, {0xc8, 0xc, 0x8e, 0x7, @time={0xfff, 0x5}, {0x6, 0x8}, {0x6, 0x7}, @note={0xf5, 0x9, 0x1, 0x9, 0x5}}, {0x81, 0x3, 0x5, 0x1, @time={0x8, 0xa2}, {0x73, 0x7}, {0x1, 0x40}, @note={0x5e, 0xff, 0x71, 0x3, 0x7fff}}, {0x5, 0xcd, 0x2, 0x9, @tick=0xa, {0x7f, 0x1}, {0x73, 0x7f}, @queue={0x0, {0x2, 0xf5}}}], 0xc4)
r9 = syz_clone(0x1000800, &(0x7f0000005940)="3c5de1bb00897b4d4c8f269173a79fb4fc4219d909e2340959b4e994011041e8e15ef706a2cd1ad13ec021c1960376d10e92cebe1f720460e010b5bb4159f70a585835a5632d46a730c721a3abcdaf8bbd9e1e55a3237bfc432d115a2f5b7ff4f8fc6ac954a531575662e4901d44d21786d21513895941ba903b151aba2654b6ab35bed82485f05ba4073484918458fe91c21924cd267ecf5cfe109d2d59b11dca19cadb0791", 0xa6, &(0x7f0000005a00), &(0x7f0000005a40), &(0x7f0000005a80)="05c66d9c80ab91717ade6d2c79cc9be120e1413208cf92ada56636b1d1e41075551ab876870c8234fed05c720e4c2836b85d9c901fc3332c8094d14c9476d0019e0105595d395155459b482988b091ef902c48446b966d46ea0f4413d347433428e06d136b447377c972a4de05bac6df025a424058797d1f5bb5b0d9da6b6f1840ff1a389c4552c7795bc44342b258")
move_pages(r9, 0x1, &(0x7f0000005b40)=[&(0x7f0000ffc000/0x1000)=nil], &(0x7f0000005b80)=[0x80], &(0x7f0000005bc0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0)

3.191761117s ago: executing program 2 (id=2469):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f00000003c0)=ANY=[@ANYBLOB="120100009ac0b620110f211066865578ac010902"], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x12)
r1 = syz_open_dev$vcsu(0x0, 0x9, 0x2000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r4=>0x0, <r5=>0x0})
close(r4)
recvmsg$unix(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000380)=""/139, 0x8b}], 0x1, &(0x7f0000000840)}, 0x40)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r6, 0x6, 0x1f, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r7 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r7, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = creat(&(0x7f00000001c0)='\x00', 0x0)
write(r9, &(0x7f0000000300)='(', 0x1)
write$uinput_user_dev(r9, &(0x7f0000000400)={'syz1\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x6, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x1, 0x4000007f, 0x6, 0x4d, 0xffffffee, 0x5f, 0xa, 0x3, 0xffff2d37, 0x1dd2, 0x6, 0x7, 0x0, 0x80000001, 0x4, 0x7, 0x3, 0x3cdb, 0x1, 0x24, 0xffffffff, 0x1, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x7, 0x3, 0x7fff, 0x4c74, 0x8f00, 0x642, 0x3, 0xa, 0x0, 0x71, 0x7, 0x7, 0x103, 0x0, 0x5, 0x3c, 0x8f, 0x6, 0x6, 0x6, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0xa, 0x8, 0x4, 0x1, 0x200003e], [0x10000007, 0xffff, 0x12f, 0x8000, 0x3, 0xfffffff3, 0x129432e6, 0xcb, 0xfa, 0xd, 0x2bf, 0x6c9, 0x9, 0xfffffffc, 0x3, 0x0, 0x7, 0x5, 0x2f, 0xcbc1, 0x312, 0x78, 0xea4, 0xa, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x3, 0x6, 0x1, 0xff, 0x1005, 0x7ff, 0x5f35, 0x4, 0x0, 0x6, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x5, 0x0, 0x1, 0x8000, 0xffff, 0x2, 0x7f, 0x9, 0x5, 0x3, 0x4, 0x1, 0x7, 0x6, 0x7, 0x48c93690, 0x2, 0xff], [0xa, 0x4, 0x0, 0x64e, 0xfffffdfe, 0x7fffffff, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0x20000b, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x10000009, 0x3e7, 0x2, 0x5, 0x2, 0x2, 0xf, 0x8, 0x4, 0x6d01, 0x2, 0x2003b, 0x3, 0x201, 0x1, 0x3, 0x4, 0x2950bfaf, 0x0, 0xa2, 0x7, 0x6, 0x5, 0x6, 0x54fe12d6, 0xbf, 0x5, 0x3, 0x400000, 0xfffffff9, 0x0, 0x1, 0x5, 0x0, 0x6, 0x0, 0x120000, 0x3, 0x6, 0x9, 0x4, 0x3], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x938, 0x5, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x6, 0x7, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0x10, 0x80000000, 0x5, 0x8, 0xc8, 0x128, 0x9, 0xffff, 0x3, 0x9, 0x100, 0x7fffffff, 0xa, 0x2, 0x4, 0x6, 0x1, 0x10000, 0x5, 0x8, 0x2b91, 0xa1f, 0x8, 0xfffffff7, 0x1, 0x9, 0x0, 0x4, 0x0, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r8, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c)

2.971951429s ago: executing program 5 (id=2472):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0) (async, rerun: 64)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000900)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r2, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0xa, 0x0, 0x80000005, 0x1}}, 0x20) (async, rerun: 64)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f00000000c0)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x3ff}}, 0xfffffe28) (async, rerun: 64)
ioctl$PIO_CMAP(r1, 0x4b71, &(0x7f0000000380)={0x400, 0x4, 0x10001, 0x5, 0x4, 0x8}) (async)
socket$inet6(0xa, 0x5, 0x8)
r3 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/time\x00')
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0x8004b708, 0x0) (async)
r4 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r4, 0xc0405665, &(0x7f0000000080)={0x0, 0x3, 0x80, 0x400, 0x101, 0x4, 0x2}) (async, rerun: 32)
getsockopt$netrom_NETROM_T1(0xffffffffffffffff, 0x103, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0x4) (rerun: 32)
ioctl$NS_GET_USERNS(r3, 0xb701, 0x0)

2.950383417s ago: executing program 5 (id=2473):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000480)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xa8, 0xa8, 0x5, [@union={0x4, 0x5, 0x0, 0x5, 0x0, 0x8, [{0xf, 0x4, 0x5}, {0xe, 0x0, 0xe9dc8a2}, {0xf, 0x0, 0x351}, {0xf, 0x5, 0xc}, {0x9, 0x3, 0xe34}]}, @ptr={0x1, 0x0, 0x0, 0x2, 0x4}, @struct={0x6, 0x3, 0x0, 0x4, 0x1, 0x4, [{0x7, 0x0, 0x1}, {0x2, 0x5, 0xa7f}, {0xe, 0x2, 0x1}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x2, 0x10}}, @ptr={0x10, 0x0, 0x0, 0x2, 0x4}]}, {0x0, [0x30, 0x61, 0x30]}}, &(0x7f0000000580)=""/153, 0xc5, 0x99, 0x1, 0x3, 0x0, @void, @value}, 0x28)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
epoll_create1(0x0)
unshare(0x400)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440), 0x10)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x2711, @local}, 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$kcm(0x2, 0xa, 0x2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x0, 0x0, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r6, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="310300000000000000000b00000008000300db"], 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000000)
read$msr(r5, &(0x7f0000032680)=""/102392, 0x18ff8)

2.628982813s ago: executing program 1 (id=2474):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000005, 0x12, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000000))
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x3f000000, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.62792504s ago: executing program 0 (id=2475):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000808000000000000000000850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x4f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='jbd2_write_superblock\x00', r1}, 0x18)
io_uring_setup(0x1957, &(0x7f0000000140)={0x0, 0x401e98, 0x200, 0x3, 0x2b2})
socket$alg(0x26, 0x5, 0x0)
openat$snapshot(0xffffff9c, &(0x7f0000000080), 0xc20c0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@gettclass={0x24, 0x2a, 0x20, 0x70bd26, 0x25dfdbf5, {0x0, 0x0, 0x0, 0x0, {0xd, 0xd}, {0xd, 0x2}, {0xffff, 0x4}}, ["", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r4 = dup(r2)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x9801)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='mounts\x00')
socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = syz_open_dev$vim2m(&(0x7f0000000140), 0x3, 0x2)
connect$unix(0xffffffffffffffff, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000040)={0x6, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r5, 0x40045612, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x8805}, 0x0)
close(r7)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000000)=ANY=[], 0x18)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002c00)=[{{&(0x7f0000000b40)={0xa, 0x4e22, 0x900000, @private1={0xfc, 0x1, '\x00', 0x1}, 0x3}, 0x1c, &(0x7f00000001c0)}}, {{&(0x7f00000001c0)={0xa, 0x4e23, 0x8, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xa000}, 0x1c, &(0x7f0000000740)=[{&(0x7f0000000480)="ad1bc9a2e8740e0cfbe13cf402255da664a1c2cfe7c7a0a3a62bff32f5bf7d250f2a6b27539c00a6985ac2c12f2d5edc6ccc2b1801ddf6efc724845cee1f06cf681f2727bd2a1913358752b2d95ad67b8233590acefb4a15acb235c96fd11b5e93af2b08418495d1ffd85b37678d044f0d8208911a36070612cdffc0803bde605793aa997d059be0386abe2552283ba7cb536d05093c1cb89090f83a0d3b9ecf69a96cc628c3706bd46956742780c42dcffb4c88dbfa783c9eb416e385cf8a", 0xbf}, {&(0x7f0000000540)="802d90a28b19db01aba11a63438de75c8489c15d324abb69478229a257ca753ac3f5881cd4c937691f9c52fd99d1851ed472703307c8a1969ae11447056423cd5016ff279e8411e11185a0c92cc4dfe40c60afddb68ec454f0d7c664f2b3298a95c4c60e7152c95d46ce7d630a73c6b9e129b9875101a281f3d000e0e1a5905b1de2dc26f4c209ea2cf5f0a971b02ba604b4dc1ae58cae9e6c646b2040a211c85236b6a7cce1158454a4869aadeb594c83a6c3", 0xb3}, {&(0x7f0000000680)="d4275ff8592cdcc68c8266333865b63943eb08550e9f8fff3664dfb96290b8ef00404b9c90bbe032f402f8732d7c639e73304d8ed48e29beae1f55b0c400f284c488be0196bd6507c487d710c982c2c62b8b1cf38869526693b2c2fa00edcfd9d474b6bbbdedc2", 0x67}, {&(0x7f0000000600)="26589d75dad152f1b971e543d28ac8ba863d4c", 0x13}, {&(0x7f0000000700)="16a219f5306e0c43e7dcb3fe9f6ccee83ca85876bbdb45f82a38f289f61e69956eb149d5275644fa0ca560e585e8d8d80005db0e53bb9a6ce8fc571f19b6", 0x3e}, {&(0x7f00000027c0)="a156ff7506e2b358ce7b3efd726ad3eeea628169308bf323f2990fee8503453276b10e8f5b681fcbf548ed28eb27e06dea926f8ac8c7a444d49839fd574a720c15b6496303c0bc16c573d642c4cec9c197e88f25b7094892b89b68112e557e5ec748f774146ff81e5e8b9de37ca4ee7653f225f6663762664d0cc66e779210", 0x7f}, {&(0x7f0000002840)="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", 0xfa}, {&(0x7f0000002940)="8ce3b75e463708492bb883c36d3b58a894a54d80570ddc4708f07febbe64c1a719bc1818536a6199f5f0005157fe0bccc09c805a3cbf66010ed9f7afd1b88acd48902e2ac4c42b8990258846acf858a19cb0", 0x52}], 0x8, &(0x7f0000002b00)=[@pktinfo={{0x20, 0x29, 0x32, {@private2}}}, @hopopts={{0x14, 0x29, 0x36, {0x4}}}, @rthdr_2292={{0x94, 0x29, 0x39, {0x89, 0x10, 0x1, 0xe, 0x0, [@private0, @ipv4={'\x00', '\xff\xff', @loopback}, @local, @dev={0xfe, 0x80, '\x00', 0x32}, @private2, @empty, @private1, @private2]}}}, @pktinfo={{0x20, 0x29, 0x32, {@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}], 0xe8}}], 0x2, 0x48080)
read$FUSE(r6, &(0x7f0000000780)={0x2020}, 0x2020)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_MKDIRAT={0x25, 0x20, 0x0, r4, 0x0, &(0x7f0000000400)='./file0\x00'})
r9 = add_key$keyring(&(0x7f0000000180), &(0x7f0000000200)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(0x0, 0x0, &(0x7f00000003c0), 0x0, r9)

2.562042457s ago: executing program 1 (id=2476):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYRES64=0x0, @ANYBLOB="bc437073a8f6a3dd1661ae44b066", @ANYBLOB="0100000091ac70ada173000100000008000200030000000c00048005000300020000007236297193ef068a25eb7978ebdc670359975949dac1317c31728317d26690e03e0265a2f60e9f1bca4ba12bf3f32197e53300000000a0000000d436b9bd24f9ac142c762566d92a3e445b71f2c8de50b078e766e85df5019c5ab2421a6a9a657b4cfe1f1cdd45cbcdbcc96ad8215b8376f677558f19a81b53a68fd2f9063eeecbac7486f51cfb10"], 0x28}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x400, 0x70bd2c}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x145842, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r3 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x28, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc, 0x1})
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))

2.30102822s ago: executing program 0 (id=2477):
r0 = mq_open(0x0, 0x42, 0x0, 0x0)
syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x7f, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x40010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
lstat(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
r5 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$sock_buf(r5, 0x1, 0x1c, 0x0, &(0x7f0000000200))
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000280)=<r6=>0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000800)={{{@in=@multicast2, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0, <r8=>0x0}}, {{@in=@private}, 0x0, @in=@multicast2}}, &(0x7f0000000300)=0xe4)
r9 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
read$FUSE(r9, &(0x7f0000002140)={0x2020}, 0x2020)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000000c0)=ANY=[@ANYRESHEX=r7, @ANYRESHEX=r9, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r2])
sendmmsg$unix(r3, &(0x7f0000001400)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000380)="1acbbbc731eafd4eca5f42f00de5e9e0063db7ffa9f8db4ebfe5dc09c6d901084ffd03fc938ab54cd06c9a0ee911b1ed533f73e3df5b3ae11b9da869e0240be8116aa4d5710c7eb4267cfd7d7c8d0556cb4a17f80ae83baac2dca457b3981f67e6b6721d9ef22c11cd30f2ca7d61e206a21bbcf7c6865d5ed5af479f737d750c146c47fa28537c29f42eab9e152c1682b4a4ecd37f17502b608f4196f47a7400eba5ead162d1f63df524733a3d051b9e3090ecf1e59f9d6b275d3bb39d7662fdef"}, {&(0x7f0000000480)="bf765c29f94467dd34b9aff8599df12d08b3418136b6d36c77f78823c710d061074fc1da819a3087fb09fa9aaee6cd6ecf474b10c355a46fe950acc2ec5551831385a1cb8fb982894c68fcdc81d5f95f93d937185adbd7820cc5aab4700effe3efaf2374ed99eb9ca69255d420d170b0b3f4663b19d5da0675a19b16ee30c0bdc664bd9f6b0f8d8f649e00091783f647c78f7d2d18fe0890ea9c6ccf92a3854c1567c50ecccf227b344a95d6a915f4a08f04cdd5019703b4aa729b7e84"}, {&(0x7f0000000540)="dac306615f75bd255a094e91ecf64f76b71040cbfa22d7fcfe22d247c7c16417f1df416368f91d528d8f50401ce0138a448fb271451f67c7b8680592bb61a96e53a11892fbd7a0215361c7719b24aab057a619ed2ab090982fdfd6c9f0b8b31926fcee56a4644b36185443af4190d1541012dd46adf7c1dd44058d3fd8140dfe074110eaf662da4e8bdf06fb01627a1c3d02525bb74ca0a5f8cc60a447f9aabf4a6258"}, {&(0x7f0000000680)="e2ec2eabbd914179e3bfed1d2c423517b8effd4a6ebed4a45991089738ad4b06d17c6870d3893f39fb5efd82e833ad95c0fbf45f5f1bd4d24b2831c5dd488c5aee1675d37d720d4aa32e45f0b584f3a8d8e8543653e4d4ac11882a45519e429ba6edc65c5fefbef7016dff15a521ff08df9e4a65f260fb91cbc18335c56748f89f548a03799e91deba6f002d8a043f0d51d0ebacf737f68efeb17d71a080a138e9e4289b6fa7ae785970f5b000ee424376139ec86ddcdde21ed203d3d00d1bd64fa5c446628a6ddc8c323176284f"}], 0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="00090000000004a861b30000", @ANYRES32=r0, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r2, @ANYBLOB="000000000100000001000000", @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r2, @ANYBLOB="000000000100000002000000", @ANYRES32=r1, @ANYRES32=r4, @ANYRES32=0xee00, @ANYBLOB="000000000100000002000000", @ANYRES32=r6, @ANYRES32=r8, @ANYRES32=0x0, @ANYBLOB="000000000100000002000000", @ANYRES32=r1, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000100000001000000", @ANYRES32, @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r2, @ANYRES32, @ANYBLOB="000000000100000001000000", @ANYRES32, @ANYRES32=r0, @ANYRES32=r2], 0x0, 0x800}}, {{&(0x7f0000000ac0)=@file={0x1, './file1\x00'}, 0x0, &(0x7f0000000f80)=[{&(0x7f0000000b40)="865452415fe92b7bc786a73ed0d874d37b561d25595b33bfef32c8b06955ae4c568d545b531399e50425040a39292d3f07471c65595d96e699198d163a1dce92394547bcb283155dc3bdb08836eedc6d3535c0780fc16223260d6d6c4e4da704507c1b7dcef6d756e018ba4adf3bb5bf58f76d2f909aa9c0d8b475340b94a5c1eb0723d0b0bc56dce740b98621c150be58cab069203cae40ac98cb7ac753a389602e09b3169ca9aabd7e153a269f0bc1f303e7948ea9c4a8b32754400bfce01c257718c5f1587d5a9227e28bbaf65b4f046e56cf2426808534d716e8fbab"}, {&(0x7f0000000c40)="a6af34b8e6339bba3286538f395aece40ebb9668d7afeb1695a2e79474fcdfc205ddedec2b3c8cff3e29402676cc6482e3754268be8a8fabf13c7485125518022055ba673a066be2890436cf6bd4528090e72d1cdf45e3033b5d5aefdb0ce006c283998cd1c11de666c3115050fb98527a61db89f5638a5899bc1338632672787519aaf6976ee147dc4d3858e9fb607aea36cb1c4a5796c2315a710b5ecd92bd0eff23209d4bb0d315d15bcb4d2f5d04b4325d43979abfac31807655a09c58cb1cef1d04e64c2360ccc5f0a8fc9deb1cb5ee615067b70eed1a7c4da9cca5be"}, {&(0x7f0000000d40)="35d14e7164ecbb74743c4b2025f9d3a9846ccd264c0aeb2543eab5803a5e0ea390360ba2b29a043122b89f548e4d5a90aed3ccfa16957435cf6a9065123edd7c9d2daaa88bb92373905de1f91b7c5a6dbd232328298a73c5ce731aa1dfe83e036817a5af9d01a6434a47da440e811bbda09d96e5d6c7b0a7bff0dd354af4a3f692850c1cb47a843e78f404bee43891964dfa7d9d362c828a8fc9512f82eda5bbc1c4b5712b1000d88cebad37a2c8959a720629565d130f8cb78d063652eece458adeb52f5bbbc63c939a389dd5dada745881b683e4ca612b0c799ae069a24c71e5e058f55d"}, {&(0x7f0000000e40)="b765320ed28e8b95fedf660a7230cd39133d5000ee673833bd5828bd9726a7655c895f8bfdb5937a76cf7a0f4a1961f07f08e10d0c2d1ca35940c2a90e8dc37246053b73d9040f77c4cce54b4e4b667ff9765b28b5bd570da64a7d77b895abae5c6e7652581626720b46f2525cb30d647f8d3dfd1e9395205f15a17dbb516dfe80c4cf6aa54e3e0d278f972ae374178f3ff6049224b430507587d0329f084e0337f84bca1a58af395e6a34f732491d6cd3edf1e481ea167f82"}, {&(0x7f0000000f00)="9d7456c2b10595b5b265"}, {&(0x7f0000000f40)="7f4f441c1c4d755e9e41c539c21e4f02ad0c9438e718455c226259b7e2d6fc6269249933"}], 0x0, 0x0, 0x0, 0x4080}}, {{&(0x7f0000000fc0)=@abs={0x1, 0x0, 0x4e21}, 0x0, &(0x7f0000001340)=[{&(0x7f0000001040)="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"}, {&(0x7f0000001140)="2eab6e7ec77900ecd61c3bcd8cf61fd89fc5ecaf4c6ff44ed0c45ba0512e6d1be2193cb5ecaa5b61db359498338b9f491e28e105360b"}, {&(0x7f0000001180)="14b4a8582dcc"}, {&(0x7f00000011c0)="395197fff5448bf73656aea1e1"}, {&(0x7f0000001200)="5a40e738feb2fac59ffaf47321ca8af20ce2b58b397955249477f602ae7d9f691186cc99b20d376e82b6b311e90c1c722abe680271a008a78a81d8b9901396965a4fd54a7b"}, {&(0x7f0000001280)="b624a81d0ed82cb69b297e80942b679eafa3070050378ceb29a1b93a7c73c2998be41ab6742f6be0935a5b7072beba3d3b08b104a0f6fdb6e843235db1020fbbe805354dc2dcfd905b96f412615d539f8dc1cb060377a6f546beca32ebabecc5d182037305fd9436d4b566b9233025a97e0715af7568b5b124a48864ee56af8722d1833f5c82bfc3453cf4698b41c32e639c658bf08c6be4c7484a259273a73758f6f2ea6d75468192069f6aa2936932835bc1fcc5299882377c2501"}], 0x0, &(0x7f00000013c0)=[@cred], 0x0, 0x8001}}], 0x81b, 0x8040)
keyctl$link(0x8, 0x0, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
times(0x0)
pipe2(0x0, 0x188000)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x1)
dup2(r0, r0)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
openat$ocfs2_control(0xffffff9c, &(0x7f0000000340), 0x46a00, 0x0)

2.300562418s ago: executing program 0 (id=2478):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000005000000020000000400000000000000", @ANYRES32, @ANYBLOB="000000070000000000000023906aae73b2ae238e", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x400)
ioctl$NBD_CLEAR_QUE(r2, 0xab05)
close(r1)
r3 = socket(0x10, 0x3, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/meminfo\x00', 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
keyctl$join(0x1, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, 0x0)
write(r3, &(0x7f0000000100)="1400000052004f7fb3e4bf80a000f00c00000000", 0x14)
recvmmsg(r3, &(0x7f0000001b40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a00)={0x14, 0x15, 0x301, 0x0, 0x25dfdbfb, {0xb}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000e00), r0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020e0000150000000000000000000000030005000000000002004e24ac1e00010000000000000000030006003c000000020000fc34000000000000000000000001001800000000000800120000000200fcffffff0000000006003300000000000000000000000000fe8000000000000000000000000000aa00000000000000000000000000000000040003"], 0xa8}}, 0x0)

2.040339598s ago: executing program 5 (id=2479):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r0, &(0x7f0000000180)="0100000000000000", 0x8, 0x0, &(0x7f0000000340)={0x2, 0x0, @remote}, 0x10)

2.039872564s ago: executing program 5 (id=2480):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000080)={0x0, 0x0, 0x30}, 0xc)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)={0x40, 0x1410, 0x1, 0x70bd30, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_STAT_AUTO_MODE_MASK={0x8, 0x4c, 0x1}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @RDMA_NLDEV_ATTR_STAT_AUTO_MODE_MASK={0x8}, @RDMA_NLDEV_ATTR_STAT_AUTO_MODE_MASK={0x8, 0x4c, 0x1}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x3}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
syz_genetlink_get_family_id$gtp(&(0x7f00000001c0), 0xffffffffffffffff)
futex_waitv(&(0x7f0000001700)=[{0x8ba, &(0x7f0000000180)=0xfffffffffffffff5, 0x2}, {0x7, &(0x7f00000001c0), 0x82}, {0x7, &(0x7f0000000380)=0x66, 0x2}, {0x10000, 0x0}, {0x5, &(0x7f00000002c0)=0x2, 0x82}, {0x3, &(0x7f0000000300)=0xe5, 0x82}, {0xffff, &(0x7f0000000340)=0x3ff, 0x2}, {0x7, &(0x7f0000000500)=0x80000001, 0x82}, {0xe1b, 0x0, 0x2}, {0x9, &(0x7f0000000400)=0x9, 0x82}, {0x2, &(0x7f0000000480)=0xfff, 0x82}, {0x5, &(0x7f00000004c0)=0x69b, 0x82}, {0x0, &(0x7f0000000240)=0x6, 0x2}, {0x8001, &(0x7f0000000540)=0x7, 0x82}, {0x78e55cfd, &(0x7f00000005c0)=0x1, 0x82}, {0x4, &(0x7f0000000600)=0x200, 0x82}, {0x25fa7ef3, &(0x7f0000000640)=0x2, 0x82}, {0xfff, &(0x7f00000006c0)=0x10000, 0x2}, {0xd55e, &(0x7f0000000740)=0xc, 0x2}, {0x252dedfd, 0x0}, {0xf61b, 0x0, 0x82}, {0x80000001, &(0x7f0000000800)=0xb, 0x82}, {0x2, &(0x7f0000000880)=0x3, 0x2}, {0xffffffff, 0x0, 0x82}, {0x9, 0x0, 0x82}, {0x80, 0x0, 0x2}, {0x0, 0x0, 0x2}, {0x3, &(0x7f0000000d80)=0x4, 0x2}, {0x1, 0x0, 0x2}], 0x1d, 0x0, &(0x7f0000001f40), 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x8, 0xb4, &(0x7f0000000140)=""/180, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffe94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "b4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95d83ffffa407677d18bc"}})
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000005c0)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "80"}}, 0x119)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6(0xa, 0x1, 0x0)
socketpair(0x25, 0x1, 0x0, &(0x7f0000000000))
setsockopt$inet6_int(r5, 0x29, 0x31, &(0x7f0000000200)=0x8, 0x4)

1.528485299s ago: executing program 1 (id=2481):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
ioperm(0x0, 0xbea, 0x4)
fsopen(&(0x7f0000000040)='ntfs3\x00', 0x0)

1.372136983s ago: executing program 0 (id=2482):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'geneve0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYRES16=r0, @ANYRES32=r1, @ANYBLOB="0001000000000000140012800b00010067656e657665000004000280"], 0x34}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x2}}, './file0\x00'})
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000100)={@empty, 0x9, 0x0, 0x0, 0x0, 0x3, 0x2}, &(0x7f0000000140)=0x20)
flock(r3, 0x4)

1.371691531s ago: executing program 0 (id=2483):
r0 = openat$ttyS3(0xffffff9c, &(0x7f0000000000), 0x1041c0, 0x0)
ioctl$KDGETMODE(r0, 0x4b3b, &(0x7f0000000040))
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0, {0x2}}, './file0\x00'})
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r2, 0x810c5701, &(0x7f00000000c0))
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000240), r2)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r2, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r3, 0x300, 0x70bd29, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_TOKEN={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000)
syz_usb_connect$uac1(0x3, 0x103, &(0x7f0000000340)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xf1, 0x3, 0x1, 0x8, 0x40, 0x6, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x0, 0x7}, [@selector_unit={0x7, 0x24, 0x5, 0x6, 0x6, "8c44"}, @mixer_unit={0x9, 0x24, 0x4, 0x4, 0x2, "f0c5bf33"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0xd, 0x24, 0x2, 0x1, 0x1, 0x3, 0x80, 0x10, "d9c3b2", "e9c1"}, @as_header={0x7, 0x24, 0x1, 0x6b, 0xe2, 0x3}, @format_type_i_continuous={0xa, 0x24, 0x2, 0x1, 0x9, 0x1, 0x93, 0x1, 'E', "92"}, @as_header={0x7, 0x24, 0x1, 0xda, 0x6, 0x1001}, @format_type_ii_discrete={0xf, 0x24, 0x2, 0x2, 0x7, 0x4, 0x80, "4a8d8bf6e259"}, @format_type_i_continuous={0xb, 0x24, 0x2, 0x1, 0x25, 0x1, 0xff, 0x3, "", "b987ed"}]}, {{0x9, 0x5, 0x1, 0x9, 0x3ff, 0x2, 0x7f, 0x40, {0x7, 0x25, 0x1, 0x1, 0x3, 0x9}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0xb, 0x24, 0x2, 0x1, 0x2, 0x3, 0x2, 0x6, "1e3f8b"}, @format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0x5, 0x3, 0x8, 0x87, "15ea62e205"}, @format_type_i_discrete={0xc, 0x24, 0x2, 0x1, 0x44, 0x4, 0xd, 0x1, "cff105d1"}, @as_header={0x7, 0x24, 0x1, 0x6, 0x7, 0x4}, @format_type_ii_discrete={0xc, 0x24, 0x2, 0x2, 0x5, 0x3, 0x7, "0080c5"}, @format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x9, 0x4, 0x7f, 0x2, "511e34", "ed"}]}, {{0x9, 0x5, 0x82, 0x9, 0x40, 0x1, 0x9, 0x5, {0x7, 0x25, 0x1, 0x3, 0x4}}}}}}}]}}, &(0x7f00000008c0)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x250, 0x9, 0x0, 0x0, 0xf7, 0x3}, 0x8c, &(0x7f00000004c0)={0x5, 0xf, 0x8c, 0x6, [@ssp_cap={0x10, 0x10, 0xa, 0x3, 0x1, 0xa7, 0xf, 0x80, [0xc0c0]}, @wireless={0xb, 0x10, 0x1, 0xc, 0x86, 0x2, 0x10, 0xa4c, 0x8}, @ss_container_id={0x14, 0x10, 0x4, 0x4, "2f44f30185c8d25d64679ded45dbc81c"}, @ss_container_id={0x14, 0x10, 0x4, 0x10, "5aa0e0220f1be06cbf42fb377e030a86"}, @ssp_cap={0x20, 0x10, 0xa, 0x9, 0x5, 0x35555b0, 0xf000, 0x0, [0xc0a0, 0xf, 0xff0000, 0x3f00, 0xf]}, @ssp_cap={0x24, 0x10, 0xa, 0x0, 0x6, 0x10001, 0x0, 0x8000, [0x3f00, 0xffcf, 0xc000, 0xff3fc0, 0xc0, 0xff00cf]}]}, 0x7, [{0x4, &(0x7f0000000580)=@lang_id={0x4, 0x3, 0x2801}}, {0xd2, &(0x7f00000005c0)=@string={0xd2, 0x3, "5d2544931847326ef2b582d8c78f83e629b5122bc4f986522d138dded77f2d7eba8c9e053f0a131a51f35d71cdd84b1aefe4585c13246674fe1b05549d948471b8a9553dd4bab28b295e38012bcfdb3fd7a4420d2260b342f1efe2776860be4a3fb5f5f10e04bb1ca9ada8e8c80195558cba30ef15d4094cf00351e05daf8c3b1d1e7716d5955850788a06008dc218241c14097fa2a1470e76237a9578e9dcef312b17cee92c823106891cc979d512895208f421211eafec7196ff6b305a8a8899bd63a6d1f793adcecf590e684456bd"}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x144d}}, {0x4, &(0x7f0000000700)=@lang_id={0x4, 0x3, 0x3c01}}, {0xcc, &(0x7f0000000740)=@string={0xcc, 0x3, "a7fc6950aaa3065dc74d2310cf83dd4f3b5b4eca81059a8c0e6fada43da1ea0bf355cc926272287ce355feab8a02ce995708ed8fb373d7d015bce49b660a4ab0d4c486c920096ed6a34df29654fa7c14149de7c09f673c56ab7c44af89247935b78c2393073d39db4f3ffd80820af64b675311bb5c62441311135959acf200f771c9ee40d4e214c642545ffa6f74e96f001f324c1df188729c22829c2f38b9a9a697955062bd2b9bb2ff186e182a38ff46d654e63099e4b03273e5de02bf45780c4bde20a36ee712c8c5"}}, {0x4, &(0x7f0000000840)=@lang_id={0x4, 0x3, 0x812}}, {0x34, &(0x7f0000000880)=@string={0x34, 0x3, "02b210f2ad13e4527e17e2de15dd55e538dfd4300ad8a5f1dfc8c146dd3fb4ff13f815ad8648a84902f8f02595b796ab3bf9"}}]})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(r2, 0x4c09, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
syz_clone(0x41900080, &(0x7f0000000940)="12de7593eb02322f107a5852a8d0c66e1e728ab00fad66ce84b37becf7d97755baa573611665cfc29f1bf5eb71aa984055e4d1c4629a3f948be2f8172eb89053b217ee66eeee7a03f706d4380ad9462a91e9da1dd1b11752646cc644f355e397c78beed1f81e9e678360e373047454bcc7d08ea931c8d9f63c4ebb6218e2a7c3652ba295cfdec02179215b1b27e2be3fb4a57bd89aa62481ea9a1e68f220f513e0b5f9fba243b8dbfdac0d1528", 0xad, &(0x7f0000000a00), &(0x7f0000000a40), &(0x7f0000000a80)="9d1fd0880882a83ca2f6a1e8dfa29f6e0a54f4ddb0ac79ecff56eb3cdb562891ef44232c7c6f742b7b08810dee0e8ca8358d02ea35f5c4cae2862f816c6bac92c1731911becbeb2a37b46dbb7ff098018d648d037de2f7952f3eeee73768dffb1df03daa25d0fe9d4f343493fab52d9ab60bfaf7d6d9feda151f94f443c8ff5eabd1286489e09122f94427cdf963c25a7f5dd3d248e3d12dcc030a848423b525406b4a44ec268df9d56e8f12c7d5de04c0ab328d")
getsockopt$PNPIPE_IFINDEX(r2, 0x113, 0x2, &(0x7f0000000b40), &(0x7f0000000b80)=0x4)
ioctl$BTRFS_IOC_SEND(r5, 0x40449426, &(0x7f0000000c00)={{r5}, 0x4, &(0x7f0000000bc0)=[0x7, 0x0, 0x7, 0x5], 0x0, 0x7})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000cc0), r1)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000d00)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r2, &(0x7f0000000dc0)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d40)={0x34, r6, 0x800, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xa}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x4}, @NL80211_ATTR_BANDS={0x8, 0xef, 0xa}]}, 0x34}, 0x1, 0x0, 0x0, 0x40044000}, 0x20000001)
memfd_create(&(0x7f0000000e00)='\x00', 0x6)
r8 = openat$dir(0xffffff9c, &(0x7f0000000e80)='./file0\x00', 0x440, 0x123)
symlinkat(&(0x7f0000000e40)='./file0\x00', r8, &(0x7f0000000ec0)='./file0\x00')
getsockopt$llc_int(r2, 0x10c, 0x4, &(0x7f0000000f00), &(0x7f0000000f40)=0x4)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000001080)={&(0x7f0000000f80)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001040)={&(0x7f0000000fc0)={0x48, 0x2, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x1}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x8008800}, 0x1)
r9 = openat$fuse(0xffffff9c, &(0x7f00000010c0), 0x2, 0x0)
read$FUSE(r2, &(0x7f0000001100)={0x2020, 0x0, <r10=>0x0}, 0x2020)
write$FUSE_GETXATTR(r9, &(0x7f0000003140)={0x18, 0xfffffffffffffff5, r10, {0xb}}, 0x18)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000003280)={&(0x7f0000003180)=[0x0, 0x0, 0x0], &(0x7f00000031c0)=[0x0, 0x0], &(0x7f0000003200)=[<r11=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000003240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x3, 0x2, 0x7, 0x7})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f00000033c0)={&(0x7f00000032c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000003300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000003340)=[0x0, 0x0, <r12=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000003380)=[0x0], 0x6, 0x6, 0xa, 0x1})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000003500)={&(0x7f0000003400)=[0x0, 0x0], &(0x7f0000003440)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000003480)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0], &(0x7f00000034c0)=[0x0], 0x2, 0x4, 0x7, 0x1})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000003640)={&(0x7f0000003540)=[0x0, 0x0, 0x0], &(0x7f0000003580)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000035c0)=[0x0, 0x0, <r14=>0x0, 0x0], &(0x7f0000003600)=[0x0], 0x3, 0x6, 0x4, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f0000003b00)={&(0x7f0000003a40)=[r11, 0x0, r12, r13, r14, 0x0, 0x0, 0x0, 0x0, 0x0], 0xa, 0x0, 0x0, 0x0, 0x0, 0x8, 0x6, {0xd, 0x4, 0x7, 0x6, 0x8, 0x1ff, 0x0, 0x9, 0x4, 0x1, 0x91, 0x5, 0xfffffff7, 0x4, "72713aed23e45a2ccc0e71c033d6e74c58b15a6252b632cb973f2c88836f9020"}})

1.232048483s ago: executing program 1 (id=2484):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYRES64=0x0, @ANYBLOB="bc437073a8f6a3dd1661ae44b066", @ANYBLOB="0100000091ac70ada173000100000008000200030000000c00048005000300020000007236297193ef068a25eb7978ebdc670359975949dac1317c31728317d26690e03e0265a2f60e9f1bca4ba12bf3f32197e53300000000a0000000d436b9bd24f9ac142c762566d92a3e445b71f2c8de50b078e766e85df5019c5ab2421a6a9a657b4cfe1f1cdd45cbcdbcc96ad8215b8376f677558f19a81b53a68fd2f9063eeecbac7486f51cfb10"], 0x28}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x88, 0x30, 0x400, 0x70bd2c, 0x0, {}, [{0x74, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x2c, 0x5, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x145842, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r3 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x28, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc, 0x1})
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))

1.112079371s ago: executing program 5 (id=2485):
socket$tipc(0x1e, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x2000000000000376, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0xa, 0x4}, 0x36, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x5, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x800005d, 0x4810)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, 0x0})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
socket$rxrpc(0x21, 0x2, 0xa)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
set_mempolicy(0x0, &(0x7f0000000080)=0x20000000000200, 0x2)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000340), 0x14)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000600)=@newlink={0x34, 0x10, 0x437, 0x800, 0x0, {0x0, 0x0, 0x0, r5, 0x430}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_TRUST={0xc, 0x9, {0x7, 0x7fffffff}}]}]}]}, 0x34}}, 0x40000854)
write$binfmt_script(r3, &(0x7f00000000c0)={'#! ', './file0'}, 0xb)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000500)=@gcm_256={{0x403}, "2a4001011f891d5b", "11682d84dd05bb63db142ade2bd907f400", "fd6ed24e", "01000010ffffffff"}, 0x38)

332.402325ms ago: executing program 1 (id=2486):
socket$tipc(0x1e, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x2000000000000376, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0xa, 0x4}, 0x36, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x5, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x800005d, 0x4810)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, 0x0})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
socket$rxrpc(0x21, 0x2, 0xa)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
set_mempolicy(0x0, &(0x7f0000000080)=0x20000000000200, 0x2)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000340), 0x14)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000600)=@newlink={0x34, 0x10, 0x437, 0x800, 0x0, {0x0, 0x0, 0x0, r5, 0x430}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_TRUST={0xc, 0x9, {0x7, 0x7fffffff}}]}]}]}, 0x34}}, 0x40000854)
write$binfmt_script(r3, &(0x7f00000000c0)={'#! ', './file0'}, 0xb)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000500)=@gcm_256={{0x303}, "2a4001011f891d5b", "11682d84dd05bb63db142ade2bd907f400", "fd6ed24e", "01000010ffffffff"}, 0x38) (fail_nth: 4)

212.098187ms ago: executing program 5 (id=2487):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000480)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xa8, 0xa8, 0x5, [@union={0x4, 0x5, 0x0, 0x5, 0x0, 0x8, [{0xf, 0x4, 0x5}, {0xe, 0x0, 0xe9dc8a2}, {0xf, 0x0, 0x351}, {0xf, 0x5, 0xc}, {0x9, 0x3, 0xe34}]}, @ptr={0x1, 0x0, 0x0, 0x2, 0x4}, @struct={0x6, 0x3, 0x0, 0x4, 0x1, 0x4, [{0x7, 0x0, 0x1}, {0x2, 0x5, 0xa7f}, {0xe, 0x2, 0x1}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x2, 0x10}}, @ptr={0x10, 0x0, 0x0, 0x2, 0x4}]}, {0x0, [0x30, 0x61, 0x30]}}, &(0x7f0000000580)=""/153, 0xc5, 0x99, 0x1, 0x3, 0x0, @void, @value}, 0x28)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
epoll_create1(0x0)
unshare(0x400)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440), 0x10)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x2711, @local}, 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$kcm(0x2, 0xa, 0x2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x0, 0x0, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r6, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="310300000000000000000b00000008000300db"], 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000000)
read$msr(r5, &(0x7f0000032680)=""/102392, 0x18ff8)

111.682082ms ago: executing program 2 (id=2488):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup(r0)
r2 = fsopen(&(0x7f0000000000)='exfat\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000ac0)='gid', &(0x7f0000000440)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
r3 = socket(0x10, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_GET_EXTENDED_ERROR(r4, 0xc00c6211, 0x0)
r5 = syz_open_dev$vim2m(0x0, 0x7, 0x2)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
truncate(&(0x7f0000000140)='./file2\x00', 0x3000)
mount(0x0, 0x0, &(0x7f00000000c0)='pstore\x00', 0x0, 0x0)
mkdir(0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000180)='./bus\x00', 0x0, 0x0, &(0x7f0000000480)={[], [{@smackfsdef={'smackfsdef', 0x3d, 'user_u'}}], 0x2f})
ioctl$vim2m_VIDIOC_S_FMT(r5, 0xc0d05605, &(0x7f0000000cc0)={0x1, @pix_mp={0x0, 0x0, 0xb5315258, 0x0, 0x0, [], 0x0, 0x0, 0x0, 0x1}})
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
write$cgroup_int(r6, &(0x7f0000000040)=0x900, 0x12)
bind$bt_l2cap(r1, &(0x7f0000000080), 0xe)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r9, 0x4008ae90, &(0x7f0000000140)=ANY=[@ANYRES16=r9])
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_SET_CPUID2(r9, 0x4008ae90, &(0x7f0000000040)=ANY=[])

0s ago: executing program 0 (id=2489):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
epoll_create(0x47f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
geteuid()
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000180)=@gcm_128={{0x304}, "967cdef875f8738a", "902295394fc6d0b5aa39eb14eac2d9a2", "cabd27f3", "393bedfa875e7d07"}, 0x28)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
socket(0x10, 0x803, 0x0)
ppoll(&(0x7f0000000500)=[{r0}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

kernel console output (not intermixed with test programs):

  285.573890][T11396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  285.577038][T11396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.588496][T11396] batman_adv: batadv0: Interface activated: batadv_slave_1
[  285.596024][T11396] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  285.599811][T11396] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  285.602887][T11396] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  285.605495][T11396] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  285.654843][ T6576] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  285.663463][ T6576] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  285.701747][ T6576] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  285.703987][ T6576] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  285.940129][T11433] netlink: zone id is out of range
[  285.948937][T11433] netlink: zone id is out of range
[  285.950740][T11433] netlink: zone id is out of range
[  285.952256][T11433] netlink: del zone limit has 8 unknown bytes
[  286.530483][ T5952] Bluetooth: hci4: command tx timeout
[  287.541413][T11452] block nbd2: shutting down sockets
[  288.620132][T11482] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  288.690619][ T5952] Bluetooth: hci4: command tx timeout
[  289.400359][ T6004] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  289.550314][ T6004] usb 6-1: Using ep0 maxpacket: 8
[  289.560882][ T6004] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  289.563942][ T6004] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  289.566665][ T6004] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  289.569266][ T6004] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  289.573017][   T39] audit: type=1800 audit(1735094065.547:344): pid=11504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1436" name="bus" dev="overlay" ino=2293 res=0 errno=0
[  289.578637][ T6004] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  289.581290][ T6004] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.789381][ T6004] usb 6-1: GET_CAPABILITIES returned 0
[  289.791538][ T6004] usbtmc 6-1:16.0: can't read capabilities
[  290.094364][  T833] usb 6-1: USB disconnect, device number 29
[  290.770580][ T5952] Bluetooth: hci4: command tx timeout
[  290.774372][T11531] Cannot find del_set index 0 as target
[  291.595566][T11530] block nbd0: shutting down sockets
[  291.720337][T11550] digital: digital_start_poll: Unknown protocol
[  291.756253][T11535] block nbd5: shutting down sockets
[  291.936991][ T6748] libceph: connect (1)[c::]:6789 error -101
[  291.939275][ T6748] libceph: mon0 (1)[c::]:6789 connect error
[  291.965266][T11567] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  292.225853][ T6748] libceph: connect (1)[c::]:6789 error -101
[  292.245907][ T6748] libceph: mon0 (1)[c::]:6789 connect error
[  292.437668][T11577] netlink: zone id is out of range
[  292.439172][T11577] netlink: zone id is out of range
[  292.442648][T11577] FAULT_INJECTION: forcing a failure.
[  292.442648][T11577] name failslab, interval 1, probability 0, space 0, times 0
[  292.446219][T11577] CPU: 3 UID: 0 PID: 11577 Comm: syz.2.1455 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  292.449264][T11577] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  292.452339][T11577] Call Trace:
[  292.453345][T11577]  <TASK>
[  292.454205][T11577]  dump_stack_lvl+0x16c/0x1f0
[  292.455566][T11577]  should_fail_ex+0x497/0x5b0
[  292.456944][T11577]  ? fs_reclaim_acquire+0xae/0x150
[  292.458419][T11577]  should_failslab+0xc2/0x120
[  292.459873][T11577]  __kmalloc_cache_noprof+0x68/0x420
[  292.461436][T11577]  ovs_ct_limit_cmd_set+0x30b/0xa90
[  292.462972][T11577]  ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10
[  292.464608][T11577]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  292.466705][T11577]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  292.468813][T11577]  genl_family_rcv_msg_doit+0x202/0x2f0
[  292.470388][T11577]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  292.472121][T11577]  ? genl_get_cmd+0x195/0x580
[  292.473496][T11577]  ? bpf_lsm_capable+0x9/0x10
[  292.474841][T11577]  ? security_capable+0x7e/0x260
[  292.476272][T11577]  ? ns_capable+0xd7/0x110
[  292.477563][T11577]  genl_rcv_msg+0x565/0x800
[  292.478884][T11577]  ? __pfx_genl_rcv_msg+0x10/0x10
[  292.480337][T11577]  ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10
[  292.481914][T11577]  netlink_rcv_skb+0x165/0x410
[  292.483297][T11577]  ? __pfx_genl_rcv_msg+0x10/0x10
[  292.484746][T11577]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  292.486271][T11577]  ? down_read+0xc9/0x330
[  292.487521][T11577]  ? __pfx_down_read+0x10/0x10
[  292.488912][T11577]  ? netlink_deliver_tap+0x1ae/0xca0
[  292.490437][T11577]  genl_rcv+0x28/0x40
[  292.491588][T11577]  netlink_unicast+0x53c/0x7f0
[  292.492995][T11577]  ? __pfx_netlink_unicast+0x10/0x10
[  292.494502][T11577]  ? __phys_addr_symbol+0x30/0x80
[  292.495943][T11577]  ? __check_object_size+0x488/0x710
[  292.497439][T11577]  netlink_sendmsg+0x8b8/0xd70
[  292.498829][T11577]  ? __pfx_netlink_sendmsg+0x10/0x10
[  292.500344][T11577]  ____sys_sendmsg+0x9ae/0xb40
[  292.501706][T11577]  ? __pfx_____sys_sendmsg+0x10/0x10
[  292.503289][T11577]  ? get_compat_msghdr+0x11b/0x170
[  292.504771][T11577]  ___sys_sendmsg+0x135/0x1e0
[  292.506130][T11577]  ? __pfx____sys_sendmsg+0x10/0x10
[  292.507624][T11577]  ? __pfx_lock_release+0x10/0x10
[  292.509078][T11577]  ? trace_lock_acquire+0x14e/0x1f0
[  292.510572][T11577]  ? __fget_files+0x206/0x3a0
[  292.511937][T11577]  __sys_sendmsg+0x16e/0x220
[  292.513321][T11577]  ? __pfx___sys_sendmsg+0x10/0x10
[  292.514790][T11577]  __do_fast_syscall_32+0x73/0x120
[  292.516271][T11577]  do_fast_syscall_32+0x32/0x80
[  292.517573][T11577]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  292.519379][T11577] RIP: 0023:0xf7fb3579
[  292.520555][T11577] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  292.526018][T11577] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  292.528388][T11577] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  292.530629][T11577] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  292.532907][T11577] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  292.535161][T11577] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  292.537412][T11577] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  292.539700][T11577]  </TASK>
[  292.541757][T11561] ceph: No mds server is up or the cluster is laggy
[  292.851396][ T5952] Bluetooth: hci4: command tx timeout
[  293.207336][ T6033] IPVS: starting estimator thread 0...
[  293.261121][T11600] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1471'.
[  293.295394][T11597] IPVS: using max 41 ests per chain, 98400 per kthread
[  293.449497][T11580] block nbd2: shutting down sockets
[  293.580281][T11608] loop9: detected capacity change from 0 to 8
[  293.586943][T11608] Dev loop9: unable to read RDB block 8
[  293.588569][T11608]  loop9: unable to read partition table
[  293.599131][T11608] loop9: partition table beyond EOD, truncated
[  293.601103][T11608] loop_reread_partitions: partition scan of loop9 (�被x������ ) failed (rc=-5)
[  294.031829][T11614] netlink: 'syz.2.1475': attribute type 1 has an invalid length.
[  294.034158][T11614] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1475'.
[  294.410606][T11603] block nbd0: shutting down sockets
[  295.868069][T11638] block nbd5: shutting down sockets
[  295.952233][T11651] FAULT_INJECTION: forcing a failure.
[  295.952233][T11651] name failslab, interval 1, probability 0, space 0, times 0
[  295.955832][T11651] CPU: 1 UID: 0 PID: 11651 Comm: syz.5.1480 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  295.958861][T11651] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  295.962855][T11651] Call Trace:
[  295.964127][T11651]  <TASK>
[  295.965257][T11651]  dump_stack_lvl+0x16c/0x1f0
[  295.967034][T11651]  should_fail_ex+0x497/0x5b0
[  295.968804][T11651]  ? fs_reclaim_acquire+0xae/0x150
[  295.970710][T11651]  should_failslab+0xc2/0x120
[  295.972291][T11651]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  295.974122][T11651]  ? rcu_is_watching+0x12/0xc0
[  295.975513][T11651]  ? ovl_mount_dir+0x26/0x1f0
[  295.976894][T11651]  kstrdup+0x42/0xb0
[  295.978035][T11651]  ovl_mount_dir+0x26/0x1f0
[  295.979359][T11651]  ovl_parse_param+0xc48/0x13d0
[  295.980840][T11651]  ? __pfx_ovl_parse_param+0x10/0x10
[  295.982360][T11651]  ? trace_kmalloc+0x2d/0xd0
[  295.983722][T11651]  ? static_key_count+0x5a/0x70
[  295.985143][T11651]  ? __pfx_ovl_parse_param+0x10/0x10
[  295.986671][T11651]  vfs_parse_fs_param+0x208/0x3c0
[  295.988141][T11651]  vfs_parse_fs_string+0xea/0x150
[  295.989595][T11651]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  295.991207][T11651]  ? ovl_next_opt+0x143/0x1c0
[  295.992593][T11651]  ? __pfx_ovl_next_opt+0x10/0x10
[  295.994046][T11651]  vfs_parse_monolithic_sep+0x171/0x1f0
[  295.995644][T11651]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  295.997406][T11651]  ? alloc_fs_context+0x59b/0x9c0
[  295.998869][T11651]  path_mount+0x69a/0x1f10
[  296.000169][T11651]  ? kmem_cache_free+0x152/0x4c0
[  296.001599][T11651]  ? __pfx_path_mount+0x10/0x10
[  296.003012][T11651]  ? putname+0x13c/0x180
[  296.004276][T11651]  __ia32_sys_mount+0x292/0x310
[  296.005687][T11651]  ? __pfx___ia32_sys_mount+0x10/0x10
[  296.007237][T11651]  __do_fast_syscall_32+0x73/0x120
[  296.008730][T11651]  do_fast_syscall_32+0x32/0x80
[  296.010143][T11651]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  296.011968][T11651] RIP: 0023:0xf70ce579
[  296.013189][T11651] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  296.018661][T11651] RSP: 002b:00000000f50c055c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  296.021069][T11651] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  296.023383][T11651] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000200
[  296.025659][T11651] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  296.028018][T11651] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  296.030321][T11651] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  296.032647][T11651]  </TASK>
[  296.033624][    C1] vkms_vblank_simulate: vblank timer overrun
[  296.440288][  T833] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  296.610273][  T833] usb 10-1: Using ep0 maxpacket: 32
[  296.613412][  T833] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  296.617044][  T833] usb 10-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  296.623440][  T833] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  296.626768][  T833] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  296.629787][  T833] usb 10-1: Product: syz
[  296.631433][  T833] usb 10-1: Manufacturer: syz
[  296.633129][  T833] usb 10-1: SerialNumber: syz
[  296.842735][  T833] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  297.041619][   T30] usb 10-1: USB disconnect, device number 2
[  297.044236][   T30] usblp0: removed
[  298.207286][T11665] block nbd1: shutting down sockets
[  298.268415][   T39] audit: type=1800 audit(1735094074.247:345): pid=11678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1485" name="bus" dev="overlay" ino=100 res=0 errno=0
[  299.187428][T11691] block nbd5: shutting down sockets
[  299.399142][T11702] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1493'.
[  299.449102][   T39] audit: type=1800 audit(1735094075.427:346): pid=11704 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1490" name="bus" dev="overlay" ino=2401 res=0 errno=0
[  300.753396][T11722] overlayfs: failed to set uuid (367/file1, err=-1); falling back to uuid=null.
[  300.756008][T11722] overlayfs: failed to verify upper root origin
[  301.894383][T11727] block nbd1: shutting down sockets
[  302.874865][T11756] FAULT_INJECTION: forcing a failure.
[  302.874865][T11756] name failslab, interval 1, probability 0, space 0, times 0
[  302.880329][T11756] CPU: 2 UID: 0 PID: 11756 Comm: syz.2.1509 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  302.883496][T11756] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  302.886549][T11756] Call Trace:
[  302.887514][T11756]  <TASK>
[  302.888376][T11756]  dump_stack_lvl+0x16c/0x1f0
[  302.889738][T11756]  should_fail_ex+0x497/0x5b0
[  302.891095][T11756]  ? fs_reclaim_acquire+0xae/0x150
[  302.892567][T11756]  should_failslab+0xc2/0x120
[  302.893935][T11756]  __kmalloc_node_noprof+0xd1/0x520
[  302.895402][T11756]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  302.896948][T11756]  __kvmalloc_node_noprof+0xad/0x1a0
[  302.898429][T11756]  hash_netportnet_create+0x45b/0x1250
[  302.900006][T11756]  ? __nla_parse+0x4a/0x60
[  302.901305][T11756]  ? __pfx_hash_netportnet_create+0x10/0x10
[  302.903015][T11756]  ip_set_create+0x62a/0x1400
[  302.904353][T11756]  ? rcu_is_watching+0x12/0xc0
[  302.905713][T11756]  ? __pfx_ip_set_create+0x10/0x10
[  302.907154][T11756]  nfnetlink_rcv_msg+0x9c3/0x11e0
[  302.908580][T11756]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  302.910119][T11756]  ? find_held_lock+0x2d/0x110
[  302.911484][T11756]  netlink_rcv_skb+0x165/0x410
[  302.912854][T11756]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  302.914392][T11756]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  302.915882][T11756]  ? __pfx_aa_get_newest_label+0x10/0x10
[  302.917472][T11756]  ? bpf_lsm_capable+0x9/0x10
[  302.918809][T11756]  ? security_capable+0x7e/0x260
[  302.920215][T11756]  ? ns_capable+0xd7/0x110
[  302.921486][T11756]  nfnetlink_rcv+0x1b4/0x430
[  302.922793][T11756]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  302.924226][T11756]  ? netlink_deliver_tap+0x1ae/0xca0
[  302.925719][T11756]  netlink_unicast+0x53c/0x7f0
[  302.927072][T11756]  ? __pfx_netlink_unicast+0x10/0x10
[  302.928558][T11756]  ? __phys_addr_symbol+0x30/0x80
[  302.929982][T11756]  ? __check_object_size+0x488/0x710
[  302.931468][T11756]  netlink_sendmsg+0x8b8/0xd70
[  302.932836][T11756]  ? __pfx_netlink_sendmsg+0x10/0x10
[  302.934317][T11756]  ____sys_sendmsg+0x9ae/0xb40
[  302.935660][T11756]  ? __pfx_____sys_sendmsg+0x10/0x10
[  302.937149][T11756]  ? get_compat_msghdr+0x11b/0x170
[  302.938614][T11756]  ___sys_sendmsg+0x135/0x1e0
[  302.939945][T11756]  ? __pfx____sys_sendmsg+0x10/0x10
[  302.941400][T11756]  ? __pfx_lock_release+0x10/0x10
[  302.942804][T11756]  ? trace_lock_acquire+0x14e/0x1f0
[  302.944274][T11756]  ? __fget_files+0x206/0x3a0
[  302.945589][T11756]  __sys_sendmsg+0x16e/0x220
[  302.946905][T11756]  ? __pfx___sys_sendmsg+0x10/0x10
[  302.948356][T11756]  __do_fast_syscall_32+0x73/0x120
[  302.949802][T11756]  do_fast_syscall_32+0x32/0x80
[  302.951184][T11756]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  302.952980][T11756] RIP: 0023:0xf7fb3579
[  302.954135][T11756] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  302.959481][T11756] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  302.961812][T11756] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  302.964007][T11756] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  302.966216][T11756] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  302.968445][T11756] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  302.970656][T11756] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  302.972889][T11756]  </TASK>
[  302.973837][    C2] vkms_vblank_simulate: vblank timer overrun
[  303.076641][   T39] audit: type=1800 audit(1735094079.057:347): pid=11761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1508" name="bus" dev="overlay" ino=158 res=0 errno=0
[  303.084241][T11762] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1510'.
[  304.140360][ T5951] Bluetooth: hci4: command 0x0405 tx timeout
[  304.576236][T11770] block nbd5: shutting down sockets
[  304.590371][   T39] audit: type=1800 audit(1735094080.577:348): pid=11783 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1516" name="bus" dev="overlay" ino=2447 res=0 errno=0
[  304.657648][T11785] random: crng reseeded on system resumption
[  304.666403][T11785] netlink: 'syz.5.1517': attribute type 11 has an invalid length.
[  305.156387][T11798] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1520'.
[  305.400316][ T6033] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  305.550485][ T6033] usb 7-1: Using ep0 maxpacket: 8
[  305.554431][ T6033] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  305.558177][ T6033] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  305.568589][ T6033] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  305.574727][   T39] audit: type=1800 audit(1735094081.557:349): pid=11803 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1521" name="bus" dev="overlay" ino=2396 res=0 errno=0
[  305.574793][ T6033] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  305.591458][ T6033] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  305.595581][ T6033] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.842780][ T6033] usb 7-1: GET_CAPABILITIES returned 0
[  305.844434][ T6033] usbtmc 7-1:16.0: can't read capabilities
[  306.116285][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.119374][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.122557][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.125597][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.128927][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.131791][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.134941][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.140997][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.143556][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.146606][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.149223][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.151792][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.154364][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.156930][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.159488][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.162113][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  306.169370][  T831] usb 7-1: USB disconnect, device number 29
[  306.518464][T11806] block nbd5: shutting down sockets
[  306.525775][   T39] audit: type=1800 audit(1735094082.507:350): pid=11810 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1530" name="bus" dev="overlay" ino=2304 res=0 errno=0
[  307.400537][   T39] audit: type=1800 audit(1735094083.377:351): pid=11816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1532" name="bus" dev="overlay" ino=2411 res=0 errno=0
[  307.522382][T11820] block nbd2: shutting down sockets
[  307.541631][   T39] audit: type=1800 audit(1735094083.527:352): pid=11822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1524" name="bus" dev="overlay" ino=2319 res=0 errno=0
[  307.550584][   T39] audit: type=1800 audit(1735094083.537:353): pid=11817 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1523" name="bus" dev="overlay" ino=192 res=0 errno=0
[  308.168059][T11840] random: crng reseeded on system resumption
[  308.172688][   T39] audit: type=1800 audit(1735094084.157:354): pid=11835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1527" name="bus" dev="overlay" ino=2426 res=0 errno=0
[  308.186278][T11840] netlink: 'syz.1.1531': attribute type 11 has an invalid length.
[  309.757576][   T39] audit: type=1800 audit(1735094085.737:355): pid=11862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1533" name="bus" dev="overlay" ino=2495 res=0 errno=0
[  309.769637][   T39] audit: type=1800 audit(1735094085.747:356): pid=11857 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1534" name="bus" dev="overlay" ino=212 res=0 errno=0
[  309.792827][T11860] block nbd1: shutting down sockets
[  310.451297][T11867] block nbd1: shutting down sockets
[  310.675324][   T39] audit: type=1800 audit(1735094086.657:357): pid=11884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1537" name="bus" dev="overlay" ino=2446 res=0 errno=0
[  310.834010][T11900] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  310.982881][   T39] audit: type=1800 audit(1735094086.967:358): pid=11904 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1541" name="bus" dev="overlay" ino=2366 res=0 errno=0
[  311.452909][T11910] netlink: zone id is out of range
[  311.454399][T11910] netlink: zone id is out of range
[  311.458926][T11910] netlink: set zone limit has 8 unknown bytes
[  311.670434][T11918] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  311.673490][T11918] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  312.678155][T11930] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  312.712799][   T39] audit: type=1800 audit(1735094088.697:359): pid=11938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1557" name="bus" dev="overlay" ino=247 res=0 errno=0
[  312.853188][ T5952] Bluetooth: hci4: command 0x0405 tx timeout
[  313.002393][T11948] FAULT_INJECTION: forcing a failure.
[  313.002393][T11948] name failslab, interval 1, probability 0, space 0, times 0
[  313.027471][T11948] CPU: 2 UID: 0 PID: 11948 Comm: syz.1.1563 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  313.030517][T11948] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.033592][T11948] Call Trace:
[  313.034536][T11948]  <TASK>
[  313.035389][T11948]  dump_stack_lvl+0x16c/0x1f0
[  313.036741][T11948]  should_fail_ex+0x497/0x5b0
[  313.038072][T11948]  ? fs_reclaim_acquire+0xae/0x150
[  313.039505][T11948]  should_failslab+0xc2/0x120
[  313.040800][T11948]  __kmalloc_noprof+0xce/0x4f0
[  313.042150][T11948]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  313.043774][T11948]  ? tomoyo_realpath_from_path+0xbf/0x710
[  313.045397][T11948]  tomoyo_realpath_from_path+0xbf/0x710
[  313.046967][T11948]  ? tomoyo_path_perm+0x262/0x480
[  313.048355][T11948]  tomoyo_path_perm+0x276/0x480
[  313.049760][T11948]  ? tomoyo_path_perm+0x262/0x480
[  313.051146][T11948]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  313.052650][T11948]  ? __kernel_text_address+0xd/0x40
[  313.054124][T11948]  ? kasan_save_stack+0x42/0x60
[  313.055498][T11948]  ? kasan_save_stack+0x33/0x60
[  313.056893][T11948]  ? kasan_save_track+0x14/0x30
[  313.058270][T11948]  ? kasan_save_free_info+0x3b/0x60
[  313.059734][T11948]  ? __kasan_slab_free+0x51/0x70
[  313.061147][T11948]  security_inode_getattr+0x116/0x290
[  313.062683][T11948]  vfs_getattr+0x25/0x60
[  313.063889][T11948]  ovl_copy_up_one+0x15a/0x35d0
[  313.065278][T11948]  ? hlock_class+0x4e/0x130
[  313.066577][T11948]  ? mark_lock+0xb5/0xc60
[  313.067809][T11948]  ? hlock_class+0x4e/0x130
[  313.069116][T11948]  ? mark_lock+0xb5/0xc60
[  313.070302][T11948]  ? __pfx_mark_lock+0x10/0x10
[  313.071628][T11948]  ? mark_lock+0xb5/0xc60
[  313.072914][T11948]  ? __pfx_mark_lock+0x10/0x10
[  313.074277][T11948]  ? __pfx_ovl_copy_up_one+0x10/0x10
[  313.075784][T11948]  ? __pfx_mark_lock+0x10/0x10
[  313.077147][T11948]  ? __pfx_mark_lock+0x10/0x10
[  313.078495][T11948]  ? register_lock_class+0xb1/0x1240
[  313.080001][T11948]  ? hlock_class+0x4e/0x130
[  313.081298][T11948]  ? __lock_acquire+0x15a9/0x3c40
[  313.082821][T11948]  ? do_raw_spin_unlock+0x172/0x230
[  313.084324][T11948]  ovl_copy_up_flags+0x18d/0x200
[  313.085700][T11948]  ovl_link+0x31/0x220
[  313.086816][T11948]  ? bpf_lsm_inode_link+0x9/0x10
[  313.088186][T11948]  vfs_link+0x842/0xe60
[  313.089400][T11948]  do_linkat+0x45c/0x590
[  313.090564][T11948]  ? __pfx_do_linkat+0x10/0x10
[  313.091881][T11948]  ? strncpy_from_user+0x1fe/0x2d0
[  313.093316][T11948]  ? getname_flags.part.0+0x1c5/0x550
[  313.094784][T11948]  __ia32_sys_link+0x7c/0xa0
[  313.096085][T11948]  __do_fast_syscall_32+0x73/0x120
[  313.097481][T11948]  do_fast_syscall_32+0x32/0x80
[  313.098821][T11948]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  313.100558][T11948] RIP: 0023:0xf7fa3579
[  313.101698][T11948] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  313.106969][T11948] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000009
[  313.109273][T11948] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000020000300
[  313.111419][T11948] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  313.113697][T11948] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  313.115848][T11948] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  313.118054][T11948] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  313.120206][T11948]  </TASK>
[  313.121143][    C2] vkms_vblank_simulate: vblank timer overrun
[  313.144741][T11948] ERROR: Out of memory at tomoyo_realpath_from_path.
[  313.323061][T11954] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  313.741934][T11944] block nbd2: shutting down sockets
[  314.082096][T11972] overlayfs: failed to resolve './file0': -2
[  314.260626][T11977] syz.1.1573: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  314.266096][T11977] CPU: 3 UID: 0 PID: 11977 Comm: syz.1.1573 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  314.269994][T11977] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  314.273902][T11977] Call Trace:
[  314.275135][T11977]  <TASK>
[  314.276241][T11977]  dump_stack_lvl+0x16c/0x1f0
[  314.277987][T11977]  warn_alloc+0x24d/0x3a0
[  314.279602][T11977]  ? __pfx_warn_alloc+0x10/0x10
[  314.281418][T11977]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  314.283541][T11977]  ? kasan_save_stack+0x42/0x60
[  314.285327][T11977]  ? kasan_save_stack+0x33/0x60
[  314.287110][T11977]  ? kasan_save_track+0x14/0x30
[  314.288902][T11977]  ? __kasan_kmalloc+0xaa/0xb0
[  314.290660][T11977]  ? xskq_create+0x52/0x1d0
[  314.292337][T11977]  ? do_sock_setsockopt+0x222/0x480
[  314.294244][T11977]  ? __sys_setsockopt+0x1a0/0x230
[  314.296100][T11977]  ? __ia32_sys_setsockopt+0xbc/0x160
[  314.298063][T11977]  __vmalloc_node_range_noprof+0x10df/0x1530
[  314.300248][T11977]  ? xskq_create+0xfb/0x1d0
[  314.301942][T11977]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  314.304297][T11977]  ? xskq_create+0xfb/0x1d0
[  314.305989][T11977]  vmalloc_user_noprof+0x6b/0x90
[  314.307835][T11977]  ? xskq_create+0xfb/0x1d0
[  314.309536][T11977]  xskq_create+0xfb/0x1d0
[  314.311145][T11977]  xsk_setsockopt+0x869/0xac0
[  314.312890][T11977]  ? __pfx_xsk_setsockopt+0x10/0x10
[  314.314821][T11977]  ? find_held_lock+0x2d/0x110
[  314.316588][T11977]  ? __pfx_xsk_setsockopt+0x10/0x10
[  314.318504][T11977]  do_sock_setsockopt+0x222/0x480
[  314.320360][T11977]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  314.322381][T11977]  ? lock_acquire+0x2f/0xb0
[  314.324062][T11977]  __sys_setsockopt+0x1a0/0x230
[  314.325843][T11977]  __ia32_sys_setsockopt+0xbc/0x160
[  314.327734][T11977]  ? lockdep_hardirqs_on+0x7c/0x110
[  314.329640][T11977]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  314.332044][T11977]  __do_fast_syscall_32+0x73/0x120
[  314.333931][T11977]  do_fast_syscall_32+0x32/0x80
[  314.335719][T11977]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  314.338035][T11977] RIP: 0023:0xf7fa3579
[  314.339541][T11977] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  314.346448][T11977] RSP: 002b:00000000f50d555c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  314.349578][T11977] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 000000000000011b
[  314.352588][T11977] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[  314.355441][T11977] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  314.358296][T11977] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  314.361150][T11977] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  314.363088][T11979] =======================================================
[  314.363088][T11979] WARNING: The mand mount option has been deprecated and
[  314.363088][T11979]          and is ignored by this kernel. Remove the mand
[  314.363088][T11979]          option from the mount to silence this warning.
[  314.363088][T11979] =======================================================
[  314.364007][T11977]  </TASK>
[  314.387862][T11977] Mem-Info:
[  314.389090][T11977] active_anon:8769 inactive_anon:212 isolated_anon:0
[  314.389090][T11977]  active_file:21302 inactive_file:22405 isolated_file:0
[  314.389090][T11977]  unevictable:1768 dirty:317 writeback:0
[  314.389090][T11977]  slab_reclaimable:5726 slab_unreclaimable:59426
[  314.389090][T11977]  mapped:32838 shmem:5348 pagetables:844
[  314.389090][T11977]  sec_pagetables:309 bounce:0
[  314.389090][T11977]  kernel_misc_reclaimable:0
[  314.389090][T11977]  free:41248 free_pcp:5833 free_cma:0
[  314.398717][T11979] syz.5.1574: attempt to access beyond end of device
[  314.398717][T11979] nbd5: rw=0, sector=1, nr_sectors = 1 limit=0
[  314.405350][T11977] Node 0 active_anon:5164kB inactive_anon:848kB active_file:5428kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2264kB dirty:56kB writeback:0kB shmem:5220kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9744kB pagetables:800kB sec_pagetables:1116kB all_unreclaimable? yes
[  314.409056][T11979] VFS: could not find a valid V7 on nbd5.
[  314.420160][T11977] Node 1 active_anon:29912kB inactive_anon:0kB active_file:79780kB inactive_file:89620kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:129088kB dirty:1212kB writeback:0kB shmem:16172kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5064kB pagetables:2576kB sec_pagetables:120kB all_unreclaimable? no
[  314.433728][T11977] Node 0 DMA free:2960kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:452kB inactive_anon:336kB active_file:20kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:860kB local_pcp:208kB free_cma:0kB
[  314.444351][T11977] lowmem_reserve[]: 0 273 0 0 0
[  314.446178][T11977] Node 0 DMA32 free:24192kB boost:6144kB min:20048kB low:23524kB high:27000kB reserved_highatomic:4096KB active_anon:4712kB inactive_anon:512kB active_file:5408kB inactive_file:0kB unevictable:3536kB writepending:56kB present:1032196kB managed:306308kB mlocked:0kB bounce:0kB free_pcp:2020kB local_pcp:372kB free_cma:0kB
[  314.456856][T11977] lowmem_reserve[]: 0 0 0 0 0
[  314.458616][T11977] Node 1 DMA32 free:147160kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:31712kB inactive_anon:0kB active_file:79780kB inactive_file:89620kB unevictable:3536kB writepending:1212kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:9192kB local_pcp:104kB free_cma:0kB
[  314.469272][T11977] lowmem_reserve[]: 0 0 0 0 0
[  314.471212][T11977] Node 0 DMA: 14*4kB (U) 21*8kB (U) 59*16kB (UE) 56*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2960kB
[  314.476153][T11977] Node 0 DMA32: 294*4kB (UMH) 101*8kB (UEH) 18*16kB (UMEH) 173*32kB (UMEH) 108*64kB (UMEH) 22*128kB (UME) 6*256kB (UE) 0*512kB 1*1024kB (M) 2*2048kB (M) 0*4096kB = 24192kB
[  314.482911][T11977] Node 1 DMA32: 41*4kB (UME) 93*8kB (UE) 32*16kB (UME) 49*32kB (UME) 78*64kB (UE) 41*128kB (UME) 45*256kB (UME) 43*512kB (UME) 18*1024kB (UM) 12*2048kB (UM) 13*4096kB (UM) = 143020kB
[  314.489634][T11977] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  314.493325][T11977] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  314.496757][T11977] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  314.500177][T11977] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  314.503620][T11977] 51105 total pagecache pages
[  314.505334][T11977] 0 pages in swap cache
[  314.506852][T11977] Free swap  = 124704kB
[  314.508371][T11977] Total swap = 124996kB
[  314.509883][T11977] 524155 pages RAM
[  314.511325][T11977] 0 pages HighMem/MovableOnly
[  314.513060][T11977] 206675 pages reserved
[  314.514605][T11977] 0 pages cma reserved
[  314.644275][T11990] netlink: 'syz.0.1575': attribute type 4 has an invalid length.
[  315.128123][   T39] audit: type=1800 audit(1735094091.107:360): pid=12008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1579" name="bus" dev="overlay" ino=2568 res=0 errno=0
[  316.506663][T12053] FAULT_INJECTION: forcing a failure.
[  316.506663][T12053] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  316.511011][T12053] CPU: 3 UID: 0 PID: 12053 Comm: syz.0.1598 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  316.514049][T12053] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  316.517167][T12053] Call Trace:
[  316.518135][T12053]  <TASK>
[  316.518991][T12053]  dump_stack_lvl+0x16c/0x1f0
[  316.520387][T12053]  should_fail_ex+0x497/0x5b0
[  316.521739][T12053]  _copy_from_user+0x2e/0xd0
[  316.523080][T12053]  move_addr_to_kernel+0x68/0x160
[  316.524521][T12053]  __get_compat_msghdr+0x3f1/0x4d0
[  316.525989][T12053]  get_compat_msghdr+0xd3/0x170
[  316.527387][T12053]  ? __pfx_get_compat_msghdr+0x10/0x10
[  316.528954][T12053]  ___sys_sendmsg+0x1b0/0x1e0
[  316.530302][T12053]  ? __pfx____sys_sendmsg+0x10/0x10
[  316.531785][T12053]  ? __pfx_lock_release+0x10/0x10
[  316.533218][T12053]  ? trace_lock_acquire+0x14e/0x1f0
[  316.534728][T12053]  ? __fget_files+0x206/0x3a0
[  316.536043][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  316.536114][T12053]  __sys_sendmsg+0x16e/0x220
[  316.539200][T12053]  ? __pfx___sys_sendmsg+0x10/0x10
[  316.540672][T12053]  __do_fast_syscall_32+0x73/0x120
[  316.542123][T12053]  do_fast_syscall_32+0x32/0x80
[  316.543505][T12053]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  316.545310][T12053] RIP: 0023:0xf70be579
[  316.546474][T12053] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  316.551896][T12053] RSP: 002b:00000000f50b055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  316.554279][T12053] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001140
[  316.556523][T12053] RDX: 0000000024004800 RSI: 0000000000000000 RDI: 0000000000000000
[  316.558771][T12053] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  316.561077][T12053] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  316.563318][T12053] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  316.565564][T12053]  </TASK>
[  317.099097][   T39] audit: type=1800 audit(1735094093.077:361): pid=12061 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1599" name="bus" dev="overlay" ino=2594 res=0 errno=0
[  317.294448][T12066] FAULT_INJECTION: forcing a failure.
[  317.294448][T12066] name failslab, interval 1, probability 0, space 0, times 0
[  317.299410][T12066] CPU: 3 UID: 0 PID: 12066 Comm: syz.5.1602 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  317.303334][T12066] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.307252][T12066] Call Trace:
[  317.308505][T12066]  <TASK>
[  317.309617][T12066]  dump_stack_lvl+0x16c/0x1f0
[  317.311362][T12066]  should_fail_ex+0x497/0x5b0
[  317.313131][T12066]  ? fs_reclaim_acquire+0xae/0x150
[  317.315025][T12066]  should_failslab+0xc2/0x120
[  317.316779][T12066]  __kmalloc_noprof+0xce/0x4f0
[  317.318566][T12066]  ? io_alloc_async_data+0x9d/0x150
[  317.320487][T12066]  ? __io_alloc_req_refill+0xeb/0x5b0
[  317.322470][T12066]  io_alloc_async_data+0x9d/0x150
[  317.324341][T12066]  io_prep_rw+0x30d/0xb70
[  317.326113][T12066]  io_prep_rwv+0xa8/0x360
[  317.327713][T12066]  ? __pfx_io_prep_rwv+0x10/0x10
[  317.329554][T12066]  io_submit_sqes+0x850/0x25f0
[  317.331345][T12066]  __do_sys_io_uring_enter+0xd43/0x1620
[  317.333400][T12066]  ? __fget_files+0x206/0x3a0
[  317.335144][T12066]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  317.337364][T12066]  ? fput+0x67/0x440
[  317.338838][T12066]  ? ksys_write+0x1ba/0x250
[  317.340530][T12066]  ? __pfx_ksys_write+0x10/0x10
[  317.342333][T12066]  __do_fast_syscall_32+0x73/0x120
[  317.344237][T12066]  do_fast_syscall_32+0x32/0x80
[  317.346037][T12066]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  317.348369][T12066] RIP: 0023:0xf70ce579
[  317.349879][T12066] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  317.356893][T12066] RSP: 002b:00000000f509f55c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  317.359946][T12066] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000003516
[  317.362851][T12066] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  317.365748][T12066] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  317.368656][T12066] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  317.371676][T12066] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  317.374605][T12066]  </TASK>
[  318.931721][ T6576] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  318.934065][ T6576] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  319.102456][   T39] audit: type=1800 audit(1735094095.087:362): pid=12110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1614" name="bus" dev="overlay" ino=2630 res=0 errno=0
[  320.335808][T12141] trusted_key: syz.1.1626 sent an empty control message without MSG_MORE.
[  320.341036][T12141] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1626'.
[  320.650419][   T39] audit: type=1800 audit(1735094096.627:363): pid=12149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1627" name="bus" dev="overlay" ino=2494 res=0 errno=0
[  321.610315][  T831] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  321.651772][T12182] netlink: 'syz.5.1639': attribute type 10 has an invalid length.
[  321.663951][T12182] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  321.780330][  T831] usb 7-1: Using ep0 maxpacket: 16
[  321.783333][  T831] usb 7-1: config index 0 descriptor too short (expected 16456, got 72)
[  321.785728][  T831] usb 7-1: config 0 has an invalid interface number: 125 but max is 1
[  321.788049][  T831] usb 7-1: config 0 has an invalid interface number: 125 but max is 1
[  321.790538][  T831] usb 7-1: config 0 has an invalid descriptor of length 52, skipping remainder of the config
[  321.793422][  T831] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2
[  321.795933][  T831] usb 7-1: config 0 has no interface number 0
[  321.797679][  T831] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[  321.800913][  T831] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[  321.803663][  T831] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[  321.806420][  T831] usb 7-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  321.810121][  T831] usb 7-1: config 0 interface 125 has no altsetting 0
[  321.813727][  T831] usb 7-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  321.816317][  T831] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  321.818595][  T831] usb 7-1: Product: syz
[  321.819800][  T831] usb 7-1: Manufacturer: syz
[  321.821504][  T831] usb 7-1: SerialNumber: syz
[  321.825161][  T831] usb 7-1: config 0 descriptor??
[  322.288619][T12189] nvme_fabrics: missing parameter 'transport=%s'
[  322.290755][T12189] nvme_fabrics: missing parameter 'nqn=%s'
[  322.607619][T12196] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1644'.
[  322.908797][T12214] overlayfs: failed to clone upperpath
[  323.125451][  T833] usb 7-1: USB disconnect, device number 30
[  323.686770][T12233] net veth1_virt_wifi virt_wifi0: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  323.702820][T12235] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1657'.
[  323.706206][T12235] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1657'.
[  323.770833][T12244] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1661'.
[  323.775744][T12244] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1661'.
[  324.226887][   T39] audit: type=1800 audit(1735094100.207:364): pid=12265 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1662" name="bus" dev="overlay" ino=2720 res=0 errno=0
[  324.434860][T12273] overlayfs: failed to clone upperpath
[  324.490338][  T831] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  324.640305][  T831] usb 5-1: Using ep0 maxpacket: 8
[  324.643396][  T831] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  324.660305][  T831] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  324.664752][  T831] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  324.673040][  T831] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  324.680340][  T831] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  324.690289][  T831] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  324.692899][  T831] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  324.702824][T12279] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  324.705116][T12279] IPv6: NLM_F_CREATE should be set when creating new route
[  324.707861][T12279] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  324.963878][  T831] usb 5-1: GET_CAPABILITIES returned 0
[  324.965505][  T831] usbtmc 5-1:16.0: can't read capabilities
[  325.168549][  T831] usb 5-1: USB disconnect, device number 22
[  325.528422][T12281] block nbd2: shutting down sockets
[  325.572924][T12303] FAULT_INJECTION: forcing a failure.
[  325.572924][T12303] name failslab, interval 1, probability 0, space 0, times 0
[  325.577348][T12303] CPU: 2 UID: 0 PID: 12303 Comm: syz.2.1681 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  325.580903][T12303] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  325.584093][T12303] Call Trace:
[  325.585069][T12303]  <TASK>
[  325.585935][T12303]  dump_stack_lvl+0x16c/0x1f0
[  325.587304][T12303]  should_fail_ex+0x497/0x5b0
[  325.588688][T12303]  ? fs_reclaim_acquire+0xae/0x150
[  325.590175][T12303]  should_failslab+0xc2/0x120
[  325.591557][T12303]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  325.593289][T12303]  ? __alloc_skb+0x2b3/0x380
[  325.594746][T12303]  __alloc_skb+0x2b3/0x380
[  325.596082][T12303]  ? __pfx___alloc_skb+0x10/0x10
[  325.597517][T12303]  ? lock_acquire+0x2f/0xb0
[  325.598845][T12303]  netlink_alloc_large_skb+0x69/0x130
[  325.600405][T12303]  netlink_sendmsg+0x689/0xd70
[  325.601830][T12303]  ? __pfx_netlink_sendmsg+0x10/0x10
[  325.603359][T12303]  ____sys_sendmsg+0x9ae/0xb40
[  325.604777][T12303]  ? __pfx_____sys_sendmsg+0x10/0x10
[  325.606295][T12303]  ? get_compat_msghdr+0x11b/0x170
[  325.607794][T12303]  ___sys_sendmsg+0x135/0x1e0
[  325.609179][T12303]  ? __pfx____sys_sendmsg+0x10/0x10
[  325.610687][T12303]  ? __pfx_lock_release+0x10/0x10
[  325.612156][T12303]  ? trace_lock_acquire+0x14e/0x1f0
[  325.613660][T12303]  ? __fget_files+0x206/0x3a0
[  325.615031][T12303]  __sys_sendmsg+0x16e/0x220
[  325.616382][T12303]  ? __pfx___sys_sendmsg+0x10/0x10
[  325.617870][T12303]  __do_fast_syscall_32+0x73/0x120
[  325.619355][T12303]  do_fast_syscall_32+0x32/0x80
[  325.620772][T12303]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  325.622593][T12303] RIP: 0023:0xf7fb3579
[  325.623771][T12303] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  325.629283][T12303] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  325.631660][T12303] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000100
[  325.633918][T12303] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  325.636200][T12303] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  325.638713][T12303] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  325.641659][T12303] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  325.644471][T12303]  </TASK>
[  325.651805][T12307] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  325.653940][T12307] IPv6: NLM_F_CREATE should be set when creating new route
[  325.665675][T12307] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  325.668428][T12303] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  325.670617][T12303] IPv6: NLM_F_CREATE should be set when creating new route
[  325.672757][T12303] IPv6: NLM_F_CREATE should be set when creating new route
[  325.940079][   T39] audit: type=1800 audit(1735094101.917:365): pid=12319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1683" name="bus" dev="overlay" ino=2747 res=0 errno=0
[  326.507176][T12330] overlayfs: failed to clone upperpath
[  326.570355][T12332] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1691'.
[  326.814792][T12355] netlink: 19 bytes leftover after parsing attributes in process `syz.5.1701'.
[  327.639549][T12350] block nbd2: shutting down sockets
[  327.646021][T12376] overlayfs: failed to clone upperpath
[  328.180317][   T25] usb 6-1: new full-speed USB device number 30 using dummy_hcd
[  328.310416][   T25] usb 6-1: device descriptor read/64, error -71
[  328.474749][T12416] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1720'.
[  328.477385][T12416] 0�X���: renamed from caif0
[  328.482687][T12416] 0�X���: entered allmulticast mode
[  328.484208][T12416] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  328.550400][   T25] usb 6-1: new full-speed USB device number 31 using dummy_hcd
[  328.700442][   T25] usb 6-1: device descriptor read/64, error -71
[  328.786550][T12403] block nbd0: shutting down sockets
[  328.820568][   T25] usb usb6-port1: attempt power cycle
[  329.160316][   T25] usb 6-1: new full-speed USB device number 32 using dummy_hcd
[  329.182402][   T25] usb 6-1: device descriptor read/8, error -71
[  329.420482][   T25] usb 6-1: new full-speed USB device number 33 using dummy_hcd
[  329.440767][   T25] usb 6-1: device descriptor read/8, error -71
[  329.550513][   T25] usb usb6-port1: unable to enumerate USB device
[  329.567636][T12428] overlayfs: failed to clone upperpath
[  330.376599][T12455] netlink: 'syz.5.1733': attribute type 4 has an invalid length.
[  330.394764][T12455] netlink: 'syz.5.1733': attribute type 4 has an invalid length.
[  330.831637][T12447] block nbd2: shutting down sockets
[  330.882252][T12461] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1735'.
[  331.021993][T12466] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  331.347916][T12482] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  331.380251][   T39] audit: type=1800 audit(1735094107.357:366): pid=12487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1739" name="bus" dev="overlay" ino=2829 res=0 errno=0
[  332.037447][T12488] block nbd1: shutting down sockets
[  332.182425][T12512] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117
[  332.184561][T12512] PKCS7: Only support pkcs7_signedData type
[  332.617510][   T39] audit: type=1800 audit(1735094108.597:367): pid=12522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1754" name="bus" dev="overlay" ino=2859 res=0 errno=0
[  332.688179][T12524] sp0: Synchronizing with TNC
[  332.723189][T12523] [U] �`
[  333.685072][T12527] block nbd1: shutting down sockets
[  334.177759][   T39] audit: type=1800 audit(1735094110.157:368): pid=12568 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1771" name="bus" dev="overlay" ino=2764 res=0 errno=0
[  334.180709][   T25] usb 6-1: new high-speed USB device number 34 using dummy_hcd
[  334.342726][   T25] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  334.345141][   T25] usb 6-1: config 1 has an invalid descriptor of length 164, skipping remainder of the config
[  334.347956][   T25] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  334.352488][   T25] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  334.355035][   T25] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  334.357303][   T25] usb 6-1: Product: 邃
[  334.358551][   T25] usb 6-1: Manufacturer: 펅왒럇⽑䨅爫籂䴣㰥毀傉邽᤾쇦
[  334.361334][   T25] usb 6-1: SerialNumber: ࠠ
[  334.363494][   T25] usb 6-1: rejected 1 configuration due to insufficient available bus power
[  334.366610][   T25] usb 6-1: no configuration chosen from 1 choice
[  335.080882][T12569] block nbd2: shutting down sockets
[  335.107848][T12579] netlink: 'syz.2.1774': attribute type 7 has an invalid length.
[  335.110179][T12579] netlink: 140 bytes leftover after parsing attributes in process `syz.2.1774'.
[  335.642716][T12594] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  335.644640][T12594] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  335.647600][T12594] vhci_hcd vhci_hcd.0: Device attached
[  335.830420][   T25] vhci_hcd: vhci_device speed not set
[  335.900533][   T25] usb 37-1: new full-speed USB device number 3 using vhci_hcd
[  336.072492][T12605] block nbd2: shutting down sockets
[  336.378149][   T39] audit: type=1800 audit(1735094112.357:369): pid=12614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1785" name="bus" dev="overlay" ino=2925 res=0 errno=0
[  336.392521][T12597] vhci_hcd: connection reset by peer
[  336.394223][ T6585] vhci_hcd: stop threads
[  336.395610][ T6585] vhci_hcd: release socket
[  336.396960][ T6585] vhci_hcd: disconnect device
[  336.953891][ T5984] usb 6-1: USB disconnect, device number 34
[  337.792471][T12662] FAULT_INJECTION: forcing a failure.
[  337.792471][T12662] name failslab, interval 1, probability 0, space 0, times 0
[  337.796154][T12662] CPU: 3 UID: 0 PID: 12662 Comm: syz.0.1804 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  337.799238][T12662] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  337.802319][T12662] Call Trace:
[  337.803280][T12662]  <TASK>
[  337.804136][T12662]  dump_stack_lvl+0x16c/0x1f0
[  337.805477][T12662]  should_fail_ex+0x497/0x5b0
[  337.806826][T12662]  ? fs_reclaim_acquire+0xae/0x150
[  337.808309][T12662]  should_failslab+0xc2/0x120
[  337.809660][T12662]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  337.811478][T12662]  ? register_net_sysctl_sz+0x228/0x3e0
[  337.813063][T12662]  ? __devinet_sysctl_register+0xbc/0x360
[  337.814677][T12662]  kmemdup_noprof+0x29/0x60
[  337.815975][T12662]  __devinet_sysctl_register+0xbc/0x360
[  337.817561][T12662]  ? __pfx_neigh_sysctl_register+0x10/0x10
[  337.819211][T12662]  ? inetdev_init+0x24b/0x5a0
[  337.820556][T12662]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  337.822328][T12662]  ? netlink_unicast+0x53c/0x7f0
[  337.823747][T12662]  ? netlink_sendmsg+0x8b8/0xd70
[  337.825181][T12662]  ? ____sys_sendmsg+0x9ae/0xb40
[  337.826609][T12662]  ? ___sys_sendmsg+0x135/0x1e0
[  337.828032][T12662]  ? __sys_sendmsg+0x16e/0x220
[  337.829411][T12662]  ? __do_fast_syscall_32+0x73/0x120
[  337.830911][T12662]  ? do_fast_syscall_32+0x32/0x80
[  337.832388][T12662]  devinet_sysctl_register+0x17b/0x200
[  337.833954][T12662]  inetdev_init+0x2be/0x5a0
[  337.835255][T12662]  inetdev_event+0x4eb/0x16b0
[  337.836623][T12662]  ? __pfx_inetdev_event+0x10/0x10
[  337.838087][T12662]  ? cfg802154_netdev_notifier_call+0x391/0xa00
[  337.839900][T12662]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  337.841733][T12662]  notifier_call_chain+0xb7/0x410
[  337.843253][T12662]  ? __pfx_inetdev_event+0x10/0x10
[  337.844743][T12662]  call_netdevice_notifiers_info+0xbe/0x140
[  337.846426][T12662]  dev_set_mtu_ext+0x3c1/0x5c0
[  337.847780][T12662]  ? __pfx_dev_set_mtu_ext+0x10/0x10
[  337.849264][T12662]  ? hlock_class+0x4e/0x130
[  337.850557][T12662]  ? __pfx_validate_linkmsg+0x10/0x10
[  337.852078][T12662]  do_setlink.constprop.0+0x6f0/0x3f20
[  337.853588][T12662]  ? stack_depot_save_flags+0x28/0x9e0
[  337.855117][T12662]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  337.856808][T12662]  ? lock_acquire.part.0+0x11b/0x380
[  337.858306][T12662]  ? __mutex_trylock_common+0xea/0x250
[  337.859857][T12662]  ? __pfx___mutex_trylock_common+0x10/0x10
[  337.861550][T12662]  ? rtnl_newlink+0x5e4/0x1d70
[  337.862942][T12662]  ? rcu_is_watching+0x12/0xc0
[  337.864282][T12662]  ? trace_contention_end+0xee/0x140
[  337.865750][T12662]  ? __mutex_lock+0x1cc/0xa60
[  337.867065][T12662]  ? rtnl_newlink+0x5e4/0x1d70
[  337.868418][T12662]  ? __pfx___mutex_lock+0x10/0x10
[  337.869867][T12662]  ? apparmor_capable+0x114/0x1d0
[  337.871329][T12662]  ? netlink_ns_capable+0xfa/0x130
[  337.872845][T12662]  rtnl_newlink+0x17f4/0x1d70
[  337.874169][T12662]  ? __pfx_rtnl_newlink+0x10/0x10
[  337.875576][T12662]  ? __pfx___lock_acquire+0x10/0x10
[  337.877068][T12662]  ? kmem_cache_free+0x152/0x4c0
[  337.878487][T12662]  ? aa_get_newest_label+0x376/0x680
[  337.880025][T12662]  ? find_held_lock+0x2d/0x110
[  337.881385][T12662]  ? find_held_lock+0x2d/0x110
[  337.882744][T12662]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  337.884196][T12662]  ? __pfx_lock_release+0x10/0x10
[  337.885635][T12662]  ? trace_lock_acquire+0x14e/0x1f0
[  337.887128][T12662]  ? __pfx_rtnl_newlink+0x10/0x10
[  337.888590][T12662]  rtnetlink_rcv_msg+0x95b/0xea0
[  337.890010][T12662]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  337.891573][T12662]  ? __pfx___dev_queue_xmit+0x10/0x10
[  337.893181][T12662]  netlink_rcv_skb+0x165/0x410
[  337.894581][T12662]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  337.896174][T12662]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  337.897715][T12662]  ? netlink_deliver_tap+0x1ae/0xca0
[  337.899258][T12662]  netlink_unicast+0x53c/0x7f0
[  337.900666][T12662]  ? __pfx_netlink_unicast+0x10/0x10
[  337.902208][T12662]  ? __phys_addr_symbol+0x30/0x80
[  337.903676][T12662]  ? __check_object_size+0x488/0x710
[  337.905222][T12662]  netlink_sendmsg+0x8b8/0xd70
[  337.906613][T12662]  ? __pfx_netlink_sendmsg+0x10/0x10
[  337.908152][T12662]  ____sys_sendmsg+0x9ae/0xb40
[  337.909539][T12662]  ? __pfx_____sys_sendmsg+0x10/0x10
[  337.911072][T12662]  ? get_compat_msghdr+0x11b/0x170
[  337.912578][T12662]  ___sys_sendmsg+0x135/0x1e0
[  337.913955][T12662]  ? __pfx____sys_sendmsg+0x10/0x10
[  337.915466][T12662]  ? __pfx_lock_release+0x10/0x10
[  337.916932][T12662]  ? trace_lock_acquire+0x14e/0x1f0
[  337.918448][T12662]  ? __fget_files+0x206/0x3a0
[  337.919828][T12662]  __sys_sendmsg+0x16e/0x220
[  337.921178][T12662]  ? __pfx___sys_sendmsg+0x10/0x10
[  337.922698][T12662]  __do_fast_syscall_32+0x73/0x120
[  337.924189][T12662]  do_fast_syscall_32+0x32/0x80
[  337.925587][T12662]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  337.927381][T12662] RIP: 0023:0xf70be579
[  337.928558][T12662] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  337.933992][T12662] RSP: 002b:00000000f50b055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  337.936324][T12662] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000140
[  337.938535][T12662] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  337.940757][T12662] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  337.942977][T12662] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  337.945207][T12662] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  337.947425][T12662]  </TASK>
[  337.991779][   T39] audit: type=1800 audit(1735094113.977:370): pid=12669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1803" name="bus" dev="overlay" ino=2699 res=0 errno=0
[  338.857953][T12685] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1811'.
[  338.948079][T12686] block nbd1: shutting down sockets
[  339.694681][T12713] overlayfs: failed to clone upperpath
[  339.974829][T12726] block nbd1: shutting down sockets
[  340.120111][T12739] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1830'.
[  340.123024][T12739] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1830'.
[  340.769411][   T39] audit: type=1326 audit(1735094116.747:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.5.1839" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ce579 code=0x0
[  340.841783][T12757] block nbd2: shutting down sockets
[  341.000542][   T25] vhci_hcd: vhci_device speed not set
[  341.108509][   T39] audit: type=1800 audit(1735094117.087:372): pid=12769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1835" name="bus" dev="overlay" ino=2754 res=0 errno=0
[  342.266217][T12811] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1855'.
[  342.343412][T12812] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1855'.
[  342.362725][T12791] block nbd1: shutting down sockets
[  342.683854][   T39] audit: type=1800 audit(1735094118.667:373): pid=12836 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1856" name="bus" dev="overlay" ino=2849 res=0 errno=0
[  343.037712][T12840] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744071562067977)
[  343.040774][T12840] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647
[  343.697354][T12845] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1867'.
[  343.728525][T12841] block nbd1: shutting down sockets
[  343.759111][T12849] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1867'.
[  343.815450][T12856] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1872'.
[  343.824806][T12856] netlink: 'syz.1.1872': attribute type 10 has an invalid length.
[  343.845272][T12856] team0: Cannot enslave team device to itself
[  344.772218][T12885] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  344.774336][T12885] IPv6: NLM_F_CREATE should be set when creating new route
[  344.776407][T12885] IPv6: NLM_F_CREATE should be set when creating new route
[  344.778497][T12885] IPv6: NLM_F_CREATE should be set when creating new route
[  344.781365][T12885] netlink: 'syz.5.1880': attribute type 7 has an invalid length.
[  344.783683][T12885] netlink: 140 bytes leftover after parsing attributes in process `syz.5.1880'.
[  345.482198][T12892] overlayfs: failed to clone upperpath
[  345.540475][T12906] FAULT_INJECTION: forcing a failure.
[  345.540475][T12906] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.544235][T12906] CPU: 2 UID: 0 PID: 12906 Comm: syz.1.1886 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  345.547295][T12906] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  345.550340][T12906] Call Trace:
[  345.551304][T12906]  <TASK>
[  345.552173][T12906]  dump_stack_lvl+0x16c/0x1f0
[  345.553538][T12906]  should_fail_ex+0x497/0x5b0
[  345.554892][T12906]  _copy_from_user+0x2e/0xd0
[  345.556228][T12906]  kstrtouint_from_user+0xd7/0x1c0
[  345.557700][T12906]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  345.559345][T12906]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  345.560956][T12906]  proc_fail_nth_write+0x84/0x250
[  345.562432][T12906]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  345.564047][T12906]  ? ksys_write+0x12b/0x250
[  345.565360][T12906]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  345.566966][T12906]  vfs_write+0x24c/0x1150
[  345.568215][T12906]  ? __fget_files+0x1fc/0x3a0
[  345.569576][T12906]  ? __pfx___mutex_lock+0x10/0x10
[  345.571027][T12906]  ? __pfx_vfs_write+0x10/0x10
[  345.572430][T12906]  ? __fget_files+0x206/0x3a0
[  345.573792][T12906]  ksys_write+0x12b/0x250
[  345.575039][T12906]  ? __pfx_ksys_write+0x10/0x10
[  345.576450][T12906]  ? syscall_user_dispatch+0x77/0x140
[  345.577995][T12906]  __do_fast_syscall_32+0x73/0x120
[  345.579483][T12906]  do_fast_syscall_32+0x32/0x80
[  345.580891][T12906]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  345.582716][T12906] RIP: 0023:0xf7fa3579
[  345.583898][T12906] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  345.589324][T12906] RSP: 002b:00000000f50d5590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  345.591691][T12906] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50d5620
[  345.593948][T12906] RDX: 0000000000000001 RSI: 00000000f7433ff4 RDI: 0000000000000000
[  345.596195][T12906] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  345.598451][T12906] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  345.600692][T12906] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  345.602951][T12906]  </TASK>
[  345.675634][T12910] fuse: Unknown parameter ''
[  345.738923][T12915] netlink: 88 bytes leftover after parsing attributes in process `syz.1.1889'.
[  345.749297][T12915] netlink: 'syz.1.1889': attribute type 4 has an invalid length.
[  345.758211][T12915] netlink: 'syz.1.1889': attribute type 4 has an invalid length.
[  345.780897][T12903] block nbd2: shutting down sockets
[  346.870458][   T39] audit: type=1800 audit(1735094122.857:374): pid=12963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1897" name="bus" dev="overlay" ino=3111 res=0 errno=0
[  347.111707][   T39] audit: type=1800 audit(1735094123.097:375): pid=12973 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1898" name="bus" dev="overlay" ino=2891 res=0 errno=0
[  347.720165][T12986] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1906'.
[  347.793599][T12968] block nbd2: shutting down sockets
[  348.894831][T13026] overlayfs: failed to clone upperpath
[  348.978418][   T39] audit: type=1800 audit(1735094124.957:376): pid=13028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1920" name="SYSV00000000" dev="hugetlbfs" ino=11 res=0 errno=0
[  348.998029][T13009] block nbd2: shutting down sockets
[  349.115889][T13028] ptrace attach of "/syz-executor exec"[13032] was attempted by "/syz-executor exec"[13028]
[  349.492555][T13044] IPv6: addrconf: prefix option has invalid lifetime
[  349.494641][T13044] IPv6: addrconf: prefix option has invalid lifetime
[  349.537031][T13052] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1927'.
[  349.647454][T13064] 9pnet_fd: Insufficient options for proto=fd
[  350.447300][T13083] input: syz0 as /devices/virtual/input/input33
[  351.149084][   T39] audit: type=1800 audit(1735094127.127:377): pid=13088 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1939" name="bus" dev="overlay" ino=2892 res=0 errno=0
[  351.157498][T13089] block nbd2: shutting down sockets
[  351.271486][T13111] team0: Port device team_slave_1 removed
[  351.710409][   T25] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  351.870295][   T25] usb 7-1: Using ep0 maxpacket: 16
[  351.873697][   T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  351.876852][   T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  351.879632][   T25] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  351.883373][   T25] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  351.885947][   T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.892482][   T25] usb 7-1: config 0 descriptor??
[  352.288012][T13126] block nbd0: shutting down sockets
[  352.301160][   T25] shield 0003:0955:7214.0009: unknown main item tag 0x0
[  352.303222][   T25] shield 0003:0955:7214.0009: unknown main item tag 0x0
[  352.305516][   T25] shield 0003:0955:7214.0009: unknown main item tag 0x0
[  352.307536][   T25] shield 0003:0955:7214.0009: unknown main item tag 0x0
[  352.309534][   T25] shield 0003:0955:7214.0009: unknown main item tag 0x0
[  352.313204][   T25] input: HID 0955:7214 Haptics as /devices/virtual/input/input34
[  352.342928][   T25] shield 0003:0955:7214.0009: Registered Thunderstrike controller
[  352.347154][   T25] shield 0003:0955:7214.0009: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.2-1/input0
[  352.349219][T13133] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  352.500640][T13116] random: crng reseeded on system resumption
[  352.695251][   T39] audit: type=1800 audit(1735094128.677:378): pid=13151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1960" name="bus" dev="overlay" ino=2917 res=0 errno=0
[  352.745043][   T62] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  352.749566][   T62] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  352.754615][   T62] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  352.758929][   T62] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  352.762232][  T831] usb 7-1: USB disconnect, device number 31
[  352.993958][T13156] netlink: 'syz.5.1962': attribute type 1 has an invalid length.
[  353.998826][T13184] IPVS: sync thread started: state = MASTER, mcast_ifn = geneve0, syncid = 0, id = 0
[  354.797828][T13181] block nbd1: shutting down sockets
[  354.808785][T13204] overlayfs: failed to clone upperpath
[  356.625226][T13230] block nbd1: shutting down sockets
[  357.189982][T13259] IPVS: sync thread started: state = MASTER, mcast_ifn = geneve0, syncid = 0, id = 0
[  357.669186][T13250] block nbd2: shutting down sockets
[  357.924114][   T39] audit: type=1800 audit(1735094133.907:379): pid=13269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1992" name="bus" dev="overlay" ino=2971 res=0 errno=0
[  358.030416][T13273] overlayfs: failed to clone upperpath
[  358.596762][T13281] sch_tbf: burst 4398 is lower than device lo mtu (39799) !
[  358.979768][T13294] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2011'.
[  359.841328][T13308] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  360.709372][T13325] overlayfs: failed to clone upperpath
[  360.745476][   T39] audit: type=1326 audit(1735094136.667:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13319 comm="syz.0.2009" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  360.752074][   T39] audit: type=1326 audit(1735094136.667:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13319 comm="syz.0.2009" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  360.758320][   T39] audit: type=1326 audit(1735094136.667:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13319 comm="syz.0.2009" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf70be579 code=0x7ffc0000
[  360.764812][   T39] audit: type=1326 audit(1735094136.667:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13319 comm="syz.0.2009" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  360.770973][   T39] audit: type=1326 audit(1735094136.667:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13319 comm="syz.0.2009" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  360.777520][   T39] audit: type=1326 audit(1735094136.667:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13319 comm="syz.0.2009" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70be579 code=0x7ffc0000
[  360.784169][   T39] audit: type=1326 audit(1735094136.667:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13319 comm="syz.0.2009" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  360.791192][   T39] audit: type=1326 audit(1735094136.667:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13319 comm="syz.0.2009" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  360.798470][   T39] audit: type=1326 audit(1735094136.667:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13319 comm="syz.0.2009" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf70be579 code=0x7ffc0000
[  361.432608][T13327] block nbd2: shutting down sockets
[  361.873850][T13362] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  362.987907][    C0] vcan0: j1939_tp_rxtimer: 0xffff88804d916400: rx timeout, send abort
[  362.992915][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88804d916400: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  363.193843][T13387] overlayfs: failed to clone upperpath
[  365.548466][T13402] block nbd0: shutting down sockets
[  365.791369][T13416] overlayfs: failed to clone upperpath
[  367.490297][T13438] overlayfs: failed to clone upperpath
[  367.940351][ T5984] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  368.113828][ T5984] usb 5-1: Using ep0 maxpacket: 16
[  368.201382][ T5984] usb 5-1: config index 0 descriptor too short (expected 16456, got 72)
[  368.204369][ T5984] usb 5-1: config 0 has an invalid interface number: 125 but max is 1
[  368.208457][ T5984] usb 5-1: config 0 has an invalid interface number: 125 but max is 1
[  368.211182][ T5984] usb 5-1: config 0 has an invalid descriptor of length 52, skipping remainder of the config
[  368.214177][ T5984] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  368.218431][ T5984] usb 5-1: config 0 has no interface number 0
[  368.221503][ T5984] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[  368.224773][ T5984] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[  368.228427][ T5984] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[  368.232785][ T5984] usb 5-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  368.236693][ T5984] usb 5-1: config 0 interface 125 has no altsetting 0
[  368.265734][ T5984] usb 5-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  368.268842][ T5984] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  368.272606][ T5984] usb 5-1: Product: syz
[  368.274373][ T5984] usb 5-1: Manufacturer: syz
[  368.275963][ T5984] usb 5-1: SerialNumber: syz
[  368.333311][ T5984] usb 5-1: config 0 descriptor??
[  368.763177][T13463] nvme_fabrics: missing parameter 'transport=%s'
[  368.765971][T13463] nvme_fabrics: missing parameter 'nqn=%s'
[  369.044202][T13466] overlayfs: failed to clone upperpath
[  369.447020][T13142] usb 5-1: USB disconnect, device number 23
[  370.027772][T13481] input: syz0 as /devices/virtual/input/input35
[  370.093649][T13468] block nbd1: shutting down sockets
[  370.223585][   T39] kauditd_printk_skb: 7 callbacks suppressed
[  370.223596][   T39] audit: type=1800 audit(1735094146.207:396): pid=13482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2057" name="bus" dev="overlay" ino=3351 res=0 errno=0
[  370.404844][   T39] audit: type=1800 audit(1735094146.387:397): pid=13494 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2060" name="bus" dev="overlay" ino=3088 res=0 errno=0
[  371.119532][T13508] netlink: 'syz.5.2067': attribute type 10 has an invalid length.
[  371.129337][T13508] batman_adv: batadv0: Adding interface: team0
[  371.135355][T13508] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  371.162948][T13508] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  371.167831][T13508] netlink: 'syz.5.2067': attribute type 10 has an invalid length.
[  371.170263][T13508] netlink: 2 bytes leftover after parsing attributes in process `syz.5.2067'.
[  371.173039][T13508] team0: entered promiscuous mode
[  371.174613][T13508] team_slave_0: entered promiscuous mode
[  371.176348][T13508] team_slave_1: entered promiscuous mode
[  371.178763][T13508] 8021q: adding VLAN 0 to HW filter on device team0
[  371.181580][T13508] batman_adv: batadv0: Interface activated: team0
[  371.184171][T13508] batman_adv: batadv0: Interface deactivated: team0
[  371.186158][T13508] batman_adv: batadv0: Removing interface: team0
[  371.188461][T13508] bridge0: port 3(team0) entered blocking state
[  371.190415][T13508] bridge0: port 3(team0) entered disabled state
[  371.192417][T13508] team0: entered allmulticast mode
[  371.194147][T13508] team_slave_0: entered allmulticast mode
[  371.195855][T13508] team_slave_1: entered allmulticast mode
[  371.198349][T13508] bridge0: port 3(team0) entered blocking state
[  371.200421][T13508] bridge0: port 3(team0) entered forwarding state
[  371.400484][T13517] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  371.403216][T13517] IPv6: NLM_F_CREATE should be set when creating new route
[  371.405993][T13517] IPv6: NLM_F_CREATE should be set when creating new route
[  371.408638][T13517] IPv6: NLM_F_CREATE should be set when creating new route
[  371.415056][T13517] netlink: 'syz.2.2069': attribute type 7 has an invalid length.
[  371.417375][T13517] netlink: 140 bytes leftover after parsing attributes in process `syz.2.2069'.
[  372.320775][   T39] audit: type=1800 audit(1735094148.307:398): pid=13528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2072" name="bus" dev="overlay" ino=3108 res=0 errno=0
[  372.351808][T13532] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2074'.
[  372.457673][T13535] kAFS: unparsable volume name
[  372.630375][ T5984] usb 6-1: new high-speed USB device number 35 using dummy_hcd
[  372.810301][ T5984] usb 6-1: Using ep0 maxpacket: 8
[  372.813598][ T5984] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  372.816640][ T5984] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  372.820013][ T5984] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  372.823448][ T5984] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  372.830618][ T5984] usb 6-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  372.833824][ T5984] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  372.836099][ T5984] usb 6-1: Product: syz
[  372.837305][ T5984] usb 6-1: Manufacturer: syz
[  372.838650][ T5984] usb 6-1: SerialNumber: syz
[  372.840949][ T5984] usb 6-1: config 0 descriptor??
[  372.844573][ T5984] input: KB Gear Tablet as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input36
[  373.099610][T13142] usb 6-1: USB disconnect, device number 35
[  373.325146][T13557] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2083'.
[  374.804316][T13598] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  374.806487][T13598] IPv6: NLM_F_CREATE should be set when creating new route
[  374.808640][T13598] IPv6: NLM_F_CREATE should be set when creating new route
[  374.810823][T13598] IPv6: NLM_F_CREATE should be set when creating new route
[  374.819228][T13598] netlink: 'syz.0.2097': attribute type 7 has an invalid length.
[  374.822337][T13598] netlink: 140 bytes leftover after parsing attributes in process `syz.0.2097'.
[  374.846370][T13607] usb 2-1: USB disconnect, device number 2
[  374.913248][T13608] hub 2-0:1.0: USB hub found
[  374.914976][T13608] hub 2-0:1.0: 6 ports detected
[  375.080295][  T832] usb 2-1: new high-speed USB device number 3 using ehci-pci
[  375.264561][  T832] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  375.267681][  T832] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  375.270101][  T832] usb 2-1: Product: QEMU USB Tablet
[  375.271750][  T832] usb 2-1: Manufacturer: QEMU
[  375.273495][  T832] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  375.288680][  T832] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.000A/input/input37
[  375.302815][  T832] hid-generic 0003:0627:0001.000A: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  376.418081][T13643] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2108'.
[  377.116754][T13661] can0: slcan on ptm0.
[  377.200587][T13660] can0 (unregistered): slcan off ptm0.
[  377.981475][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  378.109657][T13686] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2121'.
[  378.653608][T13709] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  379.373818][T13727] net veth1_virt_wifi virt_wifi0: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  379.436276][T13728] usb usb7: selecting invalid altsetting 6
[  379.677938][T13735] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2135'.
[  379.749746][T13744] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2148'.
[  379.830239][   T39] audit: type=1800 audit(1735094155.807:399): pid=13748 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2137" name="bus" dev="overlay" ino=3447 res=0 errno=0
[  380.870769][   T39] audit: type=1800 audit(1735094156.857:400): pid=13762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2150" name="bus" dev="overlay" ino=3170 res=0 errno=0
[  381.078297][T13775] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  381.080482][T13775] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  381.084886][T13775] vhci_hcd vhci_hcd.0: Device attached
[  381.282034][    T8] vhci_hcd: vhci_device speed not set
[  381.350863][    T8] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[  381.726413][T13786] overlayfs: failed to clone upperpath
[  381.739239][T13779] vhci_hcd: connection reset by peer
[  381.741661][ T6587] vhci_hcd: stop threads
[  381.742913][ T6587] vhci_hcd: release socket
[  381.744267][ T6587] vhci_hcd: disconnect device
[  382.165796][T13798] fuse: Bad value for 'fd'
[  382.307552][T13805] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2160'.
[  382.310946][T13805] bridge_slave_1: left allmulticast mode
[  382.313151][T13805] bridge_slave_1: left promiscuous mode
[  382.315383][T13805] bridge0: port 2(bridge_slave_1) entered disabled state
[  382.320843][T13805] bridge_slave_0: left allmulticast mode
[  382.322866][T13805] bridge_slave_0: left promiscuous mode
[  382.324601][T13805] bridge0: port 1(bridge_slave_0) entered disabled state
[  382.430679][T13806] vlan2: entered allmulticast mode
[  382.432322][T13806] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  382.435533][T13806] mac80211_hwsim hwsim3 wlan1: left allmulticast mode
[  382.521680][T13811] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2161'.
[  382.940405][   T39] audit: type=1800 audit(1735094158.917:401): pid=13819 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2163" name="bus" dev="overlay" ino=3184 res=0 errno=0
[  383.507935][T13834] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  384.479180][T13864] FAULT_INJECTION: forcing a failure.
[  384.479180][T13864] name failslab, interval 1, probability 0, space 0, times 0
[  384.483395][T13864] CPU: 2 UID: 0 PID: 13864 Comm: syz.1.2176 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  384.486519][T13864] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  384.489573][T13864] Call Trace:
[  384.490543][T13864]  <TASK>
[  384.491413][T13864]  dump_stack_lvl+0x16c/0x1f0
[  384.492802][T13864]  should_fail_ex+0x497/0x5b0
[  384.494166][T13864]  ? fs_reclaim_acquire+0xae/0x150
[  384.495649][T13864]  should_failslab+0xc2/0x120
[  384.497011][T13864]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  384.498696][T13864]  ? __alloc_skb+0x2b3/0x380
[  384.500054][T13864]  __alloc_skb+0x2b3/0x380
[  384.501350][T13864]  ? __pfx___alloc_skb+0x10/0x10
[  384.502787][T13864]  ? lock_acquire+0x2f/0xb0
[  384.504116][T13864]  netlink_alloc_large_skb+0x69/0x130
[  384.505662][T13864]  netlink_sendmsg+0x689/0xd70
[  384.507045][T13864]  ? __pfx_netlink_sendmsg+0x10/0x10
[  384.508577][T13864]  ____sys_sendmsg+0x9ae/0xb40
[  384.509957][T13864]  ? __pfx_____sys_sendmsg+0x10/0x10
[  384.511484][T13864]  ? get_compat_msghdr+0x11b/0x170
[  384.512982][T13864]  ___sys_sendmsg+0x135/0x1e0
[  384.514343][T13864]  ? __pfx____sys_sendmsg+0x10/0x10
[  384.515856][T13864]  ? __pfx_lock_release+0x10/0x10
[  384.517301][T13864]  ? trace_lock_acquire+0x14e/0x1f0
[  384.518816][T13864]  ? __fget_files+0x206/0x3a0
[  384.520188][T13864]  __sys_sendmsg+0x16e/0x220
[  384.521534][T13864]  ? __pfx___sys_sendmsg+0x10/0x10
[  384.523045][T13864]  __do_fast_syscall_32+0x73/0x120
[  384.524533][T13864]  do_fast_syscall_32+0x32/0x80
[  384.525933][T13864]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  384.527743][T13864] RIP: 0023:0xf7fa3579
[  384.528911][T13864] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  384.534371][T13864] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  384.536767][T13864] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080
[  384.539009][T13864] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  384.541278][T13864] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  384.543509][T13864] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  384.545751][T13864] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  384.548005][T13864]  </TASK>
[  384.712538][T13871] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2179'.
[  385.066404][T13890] netlink: 'syz.1.2184': attribute type 4 has an invalid length.
[  385.168730][T13894] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2186'.
[  385.399878][T13901] : entered promiscuous mode
[  385.744345][T13918] net veth1_virt_wifi virt_wifi0: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  386.412125][T13948] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2198'.
[  386.450573][    T8] vhci_hcd: vhci_device speed not set
[  386.788083][   T39] audit: type=1800 audit(1735094162.767:402): pid=13960 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2200" name="bus" dev="overlay" ino=3266 res=0 errno=0
[  386.858055][   T62] kernel write not supported for file /sequencer (pid: 62 comm: kworker/2:1)
[  387.357362][   T39] audit: type=1804 audit(1735094163.337:403): pid=13977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2207" name="/newroot/563/bus/bus" dev="overlay" ino=3536 res=1 errno=0
[  387.414942][T13977] Invalid ELF header magic: != ELF
[  387.417419][   T39] audit: type=1800 audit(1735094163.397:404): pid=13977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2207" name="file1" dev="overlay" ino=3537 res=0 errno=0
[  387.647854][T13993] tmpfs: Unknown parameter 'git�0x0000000000000000'
[  387.851643][T13998] tipc: Started in network mode
[  387.853678][T13998] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  387.856625][T13998] tipc: Enabled bearer <eth:team0>, priority 6
[  387.895908][T14002] overlayfs: failed to clone upperpath
[  388.036719][T14008] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2217'.
[  388.039372][T14008] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2217'.
[  388.392505][   T39] audit: type=1800 audit(1735094164.377:405): pid=14017 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2220" name="bus" dev="overlay" ino=3245 res=0 errno=0
[  388.587888][T14025] input: syz0 as /devices/virtual/input/input38
[  388.830791][T13142] usb 6-1: new low-speed USB device number 36 using dummy_hcd
[  388.980348][T13142] usb 6-1: Invalid ep0 maxpacket: 16
[  388.980365][  T832] tipc: Node number set to 11578026
[  389.110400][T13142] usb 6-1: new low-speed USB device number 37 using dummy_hcd
[  389.270477][T13142] usb 6-1: Invalid ep0 maxpacket: 16
[  389.273143][T13142] usb usb6-port1: attempt power cycle
[  389.620376][T13142] usb 6-1: new low-speed USB device number 38 using dummy_hcd
[  389.651725][T13142] usb 6-1: Invalid ep0 maxpacket: 16
[  389.790344][T13142] usb 6-1: new low-speed USB device number 39 using dummy_hcd
[  389.823079][T13142] usb 6-1: Invalid ep0 maxpacket: 16
[  389.826299][T13142] usb usb6-port1: unable to enumerate USB device
[  390.236813][T14055] netlink: 'syz.2.2237': attribute type 3 has an invalid length.
[  390.239136][T14055] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2237'.
[  390.281303][T14060] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2239'.
[  390.892709][   T39] audit: type=1326 audit(1735094166.877:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14078 comm="syz.2.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  390.900066][   T39] audit: type=1326 audit(1735094166.877:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14078 comm="syz.2.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  390.906628][   T39] audit: type=1326 audit(1735094166.877:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14078 comm="syz.2.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=377 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  390.913984][   T39] audit: type=1326 audit(1735094166.877:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14078 comm="syz.2.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  390.928924][   T39] audit: type=1326 audit(1735094166.877:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14078 comm="syz.2.2245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb3579 code=0x7ffc0000
[  391.041788][T14094] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2250'.
[  392.228681][T14128] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2260'.
[  392.233682][T14128] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2260'.
[  392.343484][T14138] FAULT_INJECTION: forcing a failure.
[  392.343484][T14138] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  392.347540][T14138] CPU: 2 UID: 0 PID: 14138 Comm: syz.1.2264 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  392.350743][T14138] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  392.353930][T14138] Call Trace:
[  392.354895][T14138]  <TASK>
[  392.355771][T14138]  dump_stack_lvl+0x16c/0x1f0
[  392.357139][T14138]  should_fail_ex+0x497/0x5b0
[  392.358527][T14138]  ? fs_reclaim_acquire+0xae/0x150
[  392.360015][T14138]  should_fail_alloc_page+0xe7/0x130
[  392.362051][T14138]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  392.364497][T14138]  ? __pfx_mark_lock+0x10/0x10
[  392.365884][T14138]  __alloc_pages_noprof+0x190/0x25b0
[  392.367444][T14138]  ? __pfx_mark_lock+0x10/0x10
[  392.368828][T14138]  ? lock_acquire.part.0+0x11b/0x380
[  392.370384][T14138]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  392.372099][T14138]  ? hlock_class+0x4e/0x130
[  392.373545][T14138]  ? hlock_class+0x4e/0x130
[  392.374862][T14138]  ? __lock_acquire+0xcc5/0x3c40
[  392.376539][T14138]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  392.378800][T14138]  ? policy_nodemask+0xea/0x4e0
[  392.380488][T14138]  alloc_pages_mpol_noprof+0x2c9/0x610
[  392.382120][T14138]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  392.383864][T14138]  ? find_held_lock+0x2d/0x110
[  392.385252][T14138]  folio_alloc_mpol_noprof+0x36/0xd0
[  392.386760][T14138]  shmem_alloc_folio+0x135/0x160
[  392.388216][T14138]  shmem_alloc_and_add_folio+0x48b/0xc00
[  392.389827][T14138]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  392.391599][T14138]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  392.393390][T14138]  ? shmem_huge_global_enabled+0x176/0x250
[  392.395067][T14138]  ? shmem_allowable_huge_orders+0xcd/0x3e0
[  392.396776][T14138]  shmem_get_folio_gfp+0x689/0x1530
[  392.398289][T14138]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  392.399919][T14138]  shmem_fault+0x200/0xae0
[  392.401611][T14138]  ? __pfx_shmem_fault+0x10/0x10
[  392.403624][T14138]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  392.405504][T14138]  ? rcu_is_watching+0x12/0xc0
[  392.406883][T14138]  ? __pfx_filemap_map_pages+0x10/0x10
[  392.408465][T14138]  __do_fault+0x10a/0x490
[  392.409715][T14138]  ? __pfx_filemap_map_pages+0x10/0x10
[  392.411341][T14138]  do_pte_missing+0x1a8/0x3e00
[  392.412744][T14138]  __handle_mm_fault+0x103c/0x2a40
[  392.414227][T14138]  ? find_held_lock+0x2d/0x110
[  392.415665][T14138]  ? __pfx___handle_mm_fault+0x10/0x10
[  392.417237][T14138]  ? follow_page_pte+0x3c3/0x1b20
[  392.418699][T14138]  ? __pfx_lock_release+0x10/0x10
[  392.420166][T14138]  ? follow_page_pte+0x3f7/0x1b20
[  392.422212][T14138]  handle_mm_fault+0x3fa/0xaa0
[  392.424190][T14138]  __get_user_pages+0x8d9/0x3b50
[  392.425718][T14138]  ? hlock_class+0x4e/0x130
[  392.427027][T14138]  ? __lock_acquire+0x15a9/0x3c40
[  392.428481][T14138]  ? __pfx___get_user_pages+0x10/0x10
[  392.430025][T14138]  __gup_longterm_locked+0x5ff/0x1870
[  392.431631][T14138]  ? __pfx___gup_longterm_locked+0x10/0x10
[  392.433310][T14138]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  392.434926][T14138]  ? rwsem_read_trylock+0x12d/0x250
[  392.436460][T14138]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  392.438052][T14138]  ? xdp_umem_create+0x6c8/0x1270
[  392.439514][T14138]  pin_user_pages+0x13f/0x160
[  392.441115][T14138]  ? __pfx_pin_user_pages+0x10/0x10
[  392.443159][T14138]  ? down_read+0xc9/0x330
[  392.444760][T14138]  ? __kvmalloc_node_noprof+0x6f/0x1a0
[  392.446347][T14138]  xdp_umem_create+0x73c/0x1270
[  392.447763][T14138]  xsk_setsockopt+0x7e7/0xac0
[  392.449126][T14138]  ? __pfx_xsk_setsockopt+0x10/0x10
[  392.450681][T14138]  ? ksys_write+0x191/0x250
[  392.452009][T14138]  ? find_held_lock+0x2d/0x110
[  392.453390][T14138]  ? __pfx_xsk_setsockopt+0x10/0x10
[  392.454890][T14138]  do_sock_setsockopt+0x222/0x480
[  392.456387][T14138]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  392.457985][T14138]  ? lock_acquire+0x2f/0xb0
[  392.459310][T14138]  __sys_setsockopt+0x1a0/0x230
[  392.460905][T14138]  __ia32_sys_setsockopt+0xbc/0x160
[  392.463018][T14138]  ? lockdep_hardirqs_on+0x7c/0x110
[  392.464899][T14138]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  392.466815][T14138]  __do_fast_syscall_32+0x73/0x120
[  392.468311][T14138]  do_fast_syscall_32+0x32/0x80
[  392.469712][T14138]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  392.471622][T14138] RIP: 0023:0xf7fa3579
[  392.472800][T14138] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  392.478327][T14138] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  392.480915][T14138] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000011b
[  392.484082][T14138] RDX: 0000000000000004 RSI: 0000000020000080 RDI: 0000000000000020
[  392.486557][T14138] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  392.488815][T14138] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  392.491309][T14138] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  392.493585][T14138]  </TASK>
[  392.771600][T14149] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2269'.
[  393.116599][T14170] bridge0: port 2(bridge_slave_1) entered disabled state
[  393.325602][   T39] audit: type=1326 audit(1735094169.307:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.1.2279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  393.333365][   T39] audit: type=1326 audit(1735094169.307:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.1.2279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  393.336754][T14176] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  393.339421][   T39] audit: type=1326 audit(1735094169.307:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.1.2279" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  393.348389][   T39] audit: type=1326 audit(1735094169.307:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.1.2279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  393.354517][   T39] audit: type=1326 audit(1735094169.307:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.1.2279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  393.360875][   T39] audit: type=1326 audit(1735094169.307:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.1.2279" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  393.369822][   T39] audit: type=1326 audit(1735094169.307:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.1.2279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  393.397880][   T39] audit: type=1326 audit(1735094169.307:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.1.2279" exe="/syz-executor" sig=0 arch=40000003 syscall=275 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  393.405855][   T39] audit: type=1326 audit(1735094169.307:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.1.2279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  393.414265][   T39] audit: type=1326 audit(1735094169.307:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14175 comm="syz.1.2279" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[  394.125550][T14194] block nbd2: shutting down sockets
[  394.481220][T14217] Invalid ELF header magic: != ELF
[  395.186292][T14240] xt_socket: unknown flags 0xd0
[  395.424785][T14257] infiniband syz1: set active
[  395.426356][T14257] infiniband syz1: added syz_tun
[  395.440040][T14257] RDS/IB: syz1: added
[  395.441643][T14257] smc: adding ib device syz1 with port count 1
[  395.443437][T14257] smc:    ib device syz1 port 1 has pnetid 
[  397.269428][T14306] FAULT_INJECTION: forcing a failure.
[  397.269428][T14306] name failslab, interval 1, probability 0, space 0, times 0
[  397.273185][T14306] CPU: 3 UID: 0 PID: 14306 Comm: syz.0.2321 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  397.276259][T14306] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  397.279302][T14306] Call Trace:
[  397.280276][T14306]  <TASK>
[  397.281127][T14306]  dump_stack_lvl+0x16c/0x1f0
[  397.282496][T14306]  should_fail_ex+0x497/0x5b0
[  397.284177][T14306]  ? fs_reclaim_acquire+0xae/0x150
[  397.286232][T14306]  should_failslab+0xc2/0x120
[  397.288010][T14306]  __kmalloc_noprof+0xce/0x4f0
[  397.289377][T14306]  ? io_alloc_async_data+0x9d/0x150
[  397.290860][T14306]  ? __io_alloc_req_refill+0xeb/0x5b0
[  397.292420][T14306]  io_alloc_async_data+0x9d/0x150
[  397.294139][T14306]  io_prep_rw+0x30d/0xb70
[  397.295599][T14306]  io_prep_rwv+0xa8/0x360
[  397.296885][T14306]  ? __pfx_io_prep_rwv+0x10/0x10
[  397.298391][T14306]  io_submit_sqes+0x850/0x25f0
[  397.299823][T14306]  __do_sys_io_uring_enter+0xd43/0x1620
[  397.301474][T14306]  ? __fget_files+0x206/0x3a0
[  397.302871][T14306]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  397.304676][T14306]  ? fput+0x67/0x440
[  397.305862][T14306]  ? ksys_write+0x1ba/0x250
[  397.307241][T14306]  ? __pfx_ksys_write+0x10/0x10
[  397.308681][T14306]  __do_fast_syscall_32+0x73/0x120
[  397.310216][T14306]  do_fast_syscall_32+0x32/0x80
[  397.311913][T14306]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  397.314076][T14306] RIP: 0023:0xf70be579
[  397.315602][T14306] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  397.321490][T14306] RSP: 002b:00000000f508f55c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  397.323950][T14306] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000003516
[  397.326236][T14306] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  397.328562][T14306] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  397.330855][T14306] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  397.333255][T14306] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  397.336244][T14306]  </TASK>
[  397.640653][ T5984] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  397.801033][ T5984] usb 6-1: Using ep0 maxpacket: 16
[  397.805600][ T5984] usb 6-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  397.808528][ T5984] usb 6-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  397.813865][ T5984] usb 6-1: Product: syz
[  397.815172][ T5984] usb 6-1: Manufacturer: syz
[  397.816573][ T5984] usb 6-1: SerialNumber: syz
[  397.819389][ T5984] usb 6-1: config 0 descriptor??
[  398.741494][T14345] input: syz1 as /devices/virtual/input/input39
[  399.643822][T14347] block nbd0: shutting down sockets
[  399.656960][T14363] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  399.660657][T14363] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  400.327516][T13142] usb 6-1: USB disconnect, device number 40
[  400.358906][T14380] FAULT_INJECTION: forcing a failure.
[  400.358906][T14380] name failslab, interval 1, probability 0, space 0, times 0
[  400.364440][T14380] CPU: 2 UID: 0 PID: 14380 Comm: syz.1.2343 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  400.368305][T14380] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  400.372212][T14380] Call Trace:
[  400.373472][T14380]  <TASK>
[  400.374571][T14380]  dump_stack_lvl+0x16c/0x1f0
[  400.376320][T14380]  should_fail_ex+0x497/0x5b0
[  400.378115][T14380]  ? fs_reclaim_acquire+0xae/0x150
[  400.380041][T14380]  should_failslab+0xc2/0x120
[  400.381770][T14380]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  400.383904][T14380]  ? __alloc_skb+0x2b3/0x380
[  400.385577][T14380]  __alloc_skb+0x2b3/0x380
[  400.387343][T14380]  ? __pfx___alloc_skb+0x10/0x10
[  400.388968][T14380]  ? lock_acquire+0x2f/0xb0
[  400.390445][T14380]  netlink_alloc_large_skb+0x69/0x130
[  400.392504][T14380]  netlink_sendmsg+0x689/0xd70
[  400.394094][T14380]  ? __pfx_netlink_sendmsg+0x10/0x10
[  400.395633][T14380]  sock_write_iter+0x4fe/0x5b0
[  400.397204][T14380]  ? __pfx_sock_write_iter+0x10/0x10
[  400.399111][T14380]  ? bpf_lsm_file_permission+0x9/0x10
[  400.400844][T14380]  ? security_file_permission+0x71/0x210
[  400.402615][T14380]  vfs_write+0x5ae/0x1150
[  400.404112][T14380]  ? __pfx_sock_write_iter+0x10/0x10
[  400.406016][T14380]  ? __pfx_vfs_write+0x10/0x10
[  400.407715][T14380]  ? __fget_files+0x40/0x3a0
[  400.409216][T14380]  ksys_write+0x207/0x250
[  400.410404][T14380]  ? __pfx_ksys_write+0x10/0x10
[  400.411945][T14380]  __do_fast_syscall_32+0x73/0x120
[  400.413371][T14380]  do_fast_syscall_32+0x32/0x80
[  400.414734][T14380]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  400.416513][T14380] RIP: 0023:0xf7fa3579
[  400.417842][T14380] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  400.423546][T14380] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  400.425769][T14380] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  400.427931][T14380] RDX: 000000000000001c RSI: 0000000000000000 RDI: 0000000000000000
[  400.430066][T14380] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  400.432246][T14380] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  400.434362][T14380] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  400.436530][T14380]  </TASK>
[  401.448978][ T5952] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  401.453046][ T5952] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  401.456007][ T5952] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  401.461404][ T5952] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  401.464653][ T5952] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  401.468313][ T5952] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  401.707896][T14389] chnl_net:caif_netlink_parms(): no params data found
[  401.824040][T14389] bridge0: port 1(bridge_slave_0) entered blocking state
[  401.826147][T14389] bridge0: port 1(bridge_slave_0) entered disabled state
[  401.828306][T14389] bridge_slave_0: entered allmulticast mode
[  401.831181][T14389] bridge_slave_0: entered promiscuous mode
[  401.836870][T14389] bridge0: port 2(bridge_slave_1) entered blocking state
[  401.839319][T14389] bridge0: port 2(bridge_slave_1) entered disabled state
[  401.842633][T14389] bridge_slave_1: entered allmulticast mode
[  401.845418][T14389] bridge_slave_1: entered promiscuous mode
[  401.917911][T14389] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  401.929517][T14389] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  402.028795][T14389] team0: Port device team_slave_0 added
[  402.036231][T14389] team0: Port device team_slave_1 added
[  402.127596][T14389] batman_adv: batadv0: Adding interface: batadv_slave_0
[  402.129813][T14389] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  402.143078][T14389] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  402.151525][T14389] batman_adv: batadv0: Adding interface: batadv_slave_1
[  402.153864][T14389] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  402.168072][T14389] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  402.289806][T14389] hsr_slave_0: entered promiscuous mode
[  402.299596][T14389] hsr_slave_1: entered promiscuous mode
[  402.310447][T14389] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  402.312731][T14389] Cannot create hsr debugfs directory
[  402.466251][T14389] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.553283][T14389] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.559356][T14413] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2352'.
[  402.604762][T14389] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.725609][T14389] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.817997][T14389] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  402.821617][T14389] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  402.833881][T14389] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  402.837289][T14389] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  402.871713][T14389] 8021q: adding VLAN 0 to HW filter on device bond0
[  402.882130][T14389] 8021q: adding VLAN 0 to HW filter on device team0
[  402.886140][ T6587] bridge0: port 1(bridge_slave_0) entered blocking state
[  402.888687][ T6587] bridge0: port 1(bridge_slave_0) entered forwarding state
[  402.897081][ T6588] bridge0: port 2(bridge_slave_1) entered blocking state
[  402.899174][ T6588] bridge0: port 2(bridge_slave_1) entered forwarding state
[  402.974100][T14389] 8021q: adding VLAN 0 to HW filter on device batadv0
[  402.992159][T14389] veth0_vlan: entered promiscuous mode
[  402.996249][T14389] veth1_vlan: entered promiscuous mode
[  403.008894][T14389] veth0_macvtap: entered promiscuous mode
[  403.012350][T14389] veth1_macvtap: entered promiscuous mode
[  403.018349][T14389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  403.021811][T14389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.024654][T14389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  403.027647][T14389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.030554][T14389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  403.033727][T14389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.036511][T14389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  403.039567][T14389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.042659][T14389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  403.045670][T14389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.049041][T14389] batman_adv: batadv0: Interface activated: batadv_slave_0
[  403.055557][T14389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  403.058581][T14389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.062047][T14389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  403.065109][T14389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.067950][T14389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  403.071215][T14389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.074056][T14389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  403.077071][T14389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.079937][T14389] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  403.083472][T14389] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.086948][T14389] batman_adv: batadv0: Interface activated: batadv_slave_1
[  403.092668][T14389] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  403.095185][T14389] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  403.097694][T14389] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  403.100452][T14389] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  403.128530][ T6587] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  403.135309][ T6587] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  403.144158][ T6585] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  403.146444][ T6585] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  403.588778][ T5952] Bluetooth: hci5: command tx timeout
[  404.056907][T14447] rdma_rxe: rxe_newlink: failed to add syz_tun
[  404.070143][T14449] input: syz1 as /devices/virtual/input/input40
[  404.445453][T14460] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2365'.
[  405.393419][   T39] kauditd_printk_skb: 36 callbacks suppressed
[  405.393429][   T39] audit: type=1800 audit(1735094181.377:457): pid=14478 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2369" name="bus" dev="overlay" ino=3435 res=0 errno=0
[  405.660455][ T5952] Bluetooth: hci5: command tx timeout
[  405.827216][T14489] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2374'.
[  405.873445][T14492] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2375'.
[  405.876099][T14492] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  405.878265][T14492] batman_adv: batadv0: Removing interface: batadv_slave_0
[  405.882099][T14492] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  405.884288][T14492] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.068218][T14498] x_tables: duplicate underflow at hook 2
[  406.269958][T14506] binder: BINDER_SET_CONTEXT_MGR already set
[  406.272866][T14506] binder: 14505:14506 ioctl 4018620d 20000540 returned -16
[  407.142987][T14522] overlayfs: failed to clone upperpath
[  407.254890][T14524] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  407.302748][T14526] futex_wake_op: syz.2.2387 tries to shift op by 36; fix this program
[  407.322696][T14528] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2388'.
[  407.326081][T14528] FAULT_INJECTION: forcing a failure.
[  407.326081][T14528] name failslab, interval 1, probability 0, space 0, times 0
[  407.329660][T14528] CPU: 2 UID: 0 PID: 14528 Comm: syz.1.2388 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  407.333004][T14528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  407.336053][T14528] Call Trace:
[  407.337026][T14528]  <TASK>
[  407.337896][T14528]  dump_stack_lvl+0x16c/0x1f0
[  407.339275][T14528]  should_fail_ex+0x497/0x5b0
[  407.340642][T14528]  ? fs_reclaim_acquire+0xae/0x150
[  407.342137][T14528]  should_failslab+0xc2/0x120
[  407.343510][T14528]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  407.345190][T14528]  ? __lock_acquire+0x15a9/0x3c40
[  407.346641][T14528]  ? __alloc_skb+0x2b3/0x380
[  407.347993][T14528]  __alloc_skb+0x2b3/0x380
[  407.349287][T14528]  ? __pfx___alloc_skb+0x10/0x10
[  407.350722][T14528]  netlink_alloc_large_skb+0x69/0x130
[  407.352298][T14528]  netlink_sendmsg+0x689/0xd70
[  407.353682][T14528]  ? __pfx_netlink_sendmsg+0x10/0x10
[  407.355216][T14528]  ____sys_sendmsg+0x9ae/0xb40
[  407.356601][T14528]  ? __pfx_____sys_sendmsg+0x10/0x10
[  407.358144][T14528]  ? get_compat_msghdr+0x11b/0x170
[  407.359640][T14528]  ___sys_sendmsg+0x135/0x1e0
[  407.361004][T14528]  ? __pfx____sys_sendmsg+0x10/0x10
[  407.362517][T14528]  ? __pfx_lock_release+0x10/0x10
[  407.363968][T14528]  ? trace_lock_acquire+0x14e/0x1f0
[  407.365474][T14528]  ? __fget_files+0x206/0x3a0
[  407.366843][T14528]  __sys_sendmsg+0x16e/0x220
[  407.368188][T14528]  ? __pfx___sys_sendmsg+0x10/0x10
[  407.369673][T14528]  __do_fast_syscall_32+0x73/0x120
[  407.371159][T14528]  do_fast_syscall_32+0x32/0x80
[  407.372567][T14528]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  407.374384][T14528] RIP: 0023:0xf7fa3579
[  407.375567][T14528] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  407.381049][T14528] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  407.383481][T14528] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200001c0
[  407.385753][T14528] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  407.388039][T14528] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  407.390306][T14528] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  407.392607][T14528] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  407.394880][T14528]  </TASK>
[  407.730402][ T5952] Bluetooth: hci5: command tx timeout
[  408.463311][T14554] ALSA: mixer_oss: invalid OSS volume '�}8z��00000'
[  408.867952][T14570] bond2 (unregistering): Released all slaves
[  408.942598][T14573] 9pnet_fd: Insufficient options for proto=fd
[  409.419455][T14598] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2406'.
[  409.810471][ T5952] Bluetooth: hci5: command tx timeout
[  409.959591][T14600] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2412'.
[  409.967939][T14600] sch_tbf: peakrate 3 is lower than or equals to rate 5628977692805006585 !
[  410.019561][T14609] netlink: 'syz.5.2414': attribute type 10 has an invalid length.
[  410.275255][T14627] bond0: entered promiscuous mode
[  410.276976][T14627] bond_slave_0: entered promiscuous mode
[  410.279557][T14627] bond_slave_1: entered promiscuous mode
[  410.282408][T14627] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  410.943814][T14647] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2425'.
[  410.947198][T14647] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2425'.
[  411.233172][T14666] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2430'.
[  411.236194][T14666] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2430'.
[  411.551379][   T39] audit: type=1800 audit(1735094187.537:458): pid=14675 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2432" name="bus" dev="overlay" ino=3525 res=0 errno=0
[  411.591601][   T39] audit: type=1800 audit(1735094187.577:459): pid=14676 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2433" name="bus" dev="overlay" ino=111 res=0 errno=0
[  411.950365][    T9] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  412.120274][    T9] usb 5-1: Using ep0 maxpacket: 8
[  412.123677][    T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  412.126437][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  412.129202][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  412.133544][    T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  412.137392][    T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  412.139979][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  412.359286][    T9] usb 5-1: GET_CAPABILITIES returned 0
[  412.359332][    T9] usbtmc 5-1:16.0: can't read capabilities
[  412.414879][   T39] audit: type=1326 audit(1735094188.397:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14709 comm="syz.5.2446" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  412.421456][   T39] audit: type=1326 audit(1735094188.407:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14709 comm="syz.5.2446" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  412.428434][   T39] audit: type=1326 audit(1735094188.407:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14709 comm="syz.5.2446" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  412.437692][   T39] audit: type=1326 audit(1735094188.407:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14709 comm="syz.5.2446" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  412.444981][   T39] audit: type=1326 audit(1735094188.407:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14709 comm="syz.5.2446" exe="/syz-executor" sig=0 arch=40000003 syscall=92 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  412.451110][   T39] audit: type=1326 audit(1735094188.407:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14709 comm="syz.5.2446" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  412.457196][   T39] audit: type=1326 audit(1735094188.407:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14709 comm="syz.5.2446" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  412.464193][   T39] audit: type=1326 audit(1735094188.407:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14709 comm="syz.5.2446" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  412.555827][   T62] usb 5-1: USB disconnect, device number 24
[  412.668169][T14716] overlayfs: failed to clone upperpath
[  412.731819][T14721] netlink: 'syz.1.2450': attribute type 14 has an invalid length.
[  413.599637][T14753] 9pnet_fd: Insufficient options for proto=fd
[  413.692855][T14758] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2459'.
[  413.702602][T14759] 9pnet_fd: Insufficient options for proto=fd
[  413.762286][T14760] netlink: 'syz.5.2462': attribute type 30 has an invalid length.
[  416.510519][  T833] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  416.604826][   T39] kauditd_printk_skb: 30 callbacks suppressed
[  416.604837][   T39] audit: type=1800 audit(1735094192.587:498): pid=14831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2484" name="bus" dev="overlay" ino=3616 res=0 errno=0
[  416.694864][  T833] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  416.697799][  T833] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  416.700546][  T833] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  416.706964][  T833] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  416.709572][  T833] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  416.714284][  T833] usb 5-1: Product: ᑍ
[  416.715827][  T833] usb 5-1: Manufacturer: ╝鍄䜘渲뗲过딩⬒龍劆ጭ翗縭貺֞ਿᨓ煝ᩋ屘␓瑦᯾吅钝熄ꦸ㵕뫔讲帩ĸ켫㿛ꓗൂ怢䊳矢恨䪾딿Ў᲻궩Lj喕몌퐕䰉ϰ꽝㮌ḝᙷ闕偘詸슍␘ᐜ缉ꆢ็⍶镺⬱츗⳩ㆂ褆줜핹褒ࡒ⇴ḡ陱毿娰袊붙ꙣ궓쿎๙䑨뵖
[  416.726246][  T833] usb 5-1: SerialNumber: 㰁
[  416.758138][T14825] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  417.549430][T14844] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  417.565139][T14844] FAULT_INJECTION: forcing a failure.
[  417.565139][T14844] name failslab, interval 1, probability 0, space 0, times 0
[  417.570116][T14844] CPU: 1 UID: 0 PID: 14844 Comm: syz.1.2486 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  417.573825][T14844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  417.577833][T14844] Call Trace:
[  417.579109][T14844]  <TASK>
[  417.580138][T14844]  dump_stack_lvl+0x16c/0x1f0
[  417.581971][T14844]  should_fail_ex+0x497/0x5b0
[  417.583772][T14844]  ? fs_reclaim_acquire+0xae/0x150
[  417.585681][T14844]  should_failslab+0xc2/0x120
[  417.587486][T14844]  __kmalloc_node_noprof+0xd1/0x520
[  417.589448][T14844]  ? crypto_alloc_tfmmem.isra.0+0x38/0x110
[  417.591612][T14844]  ? __pfx_crypto_alg_extsize+0x10/0x10
[  417.593366][T14844]  crypto_alloc_tfmmem.isra.0+0x38/0x110
[  417.595487][T14844]  crypto_create_tfm_node+0x83/0x320
[  417.597498][T14844]  crypto_alloc_tfm_node+0x102/0x260
[  417.599501][T14844]  tls_set_sw_offload+0xd98/0x11d0
[  417.601452][T14844]  tls_setsockopt+0x108c/0x1550
[  417.603298][T14844]  ? __pfx_tls_setsockopt+0x10/0x10
[  417.605298][T14844]  ? sock_common_setsockopt+0x2e/0xf0
[  417.607329][T14844]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  417.609545][T14844]  do_sock_setsockopt+0x222/0x480
[  417.611376][T14844]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  417.612988][T14844]  ? lock_acquire+0x2f/0xb0
[  417.614297][T14844]  __sys_setsockopt+0x1a0/0x230
[  417.615708][T14844]  __ia32_sys_setsockopt+0xbc/0x160
[  417.617192][T14844]  ? lockdep_hardirqs_on+0x7c/0x110
[  417.618686][T14844]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  417.620577][T14844]  __do_fast_syscall_32+0x73/0x120
[  417.622047][T14844]  do_fast_syscall_32+0x32/0x80
[  417.623456][T14844]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  417.625258][  T833] usb 5-1: 0:2 : does not exist
[  417.625265][T14844] RIP: 0023:0xf7fa3579
[  417.627896][T14844] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  417.633340][T14844] RSP: 002b:00000000f50b455c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  417.633773][  T833] usb 5-1: USB disconnect, device number 25
[  417.635715][T14844] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000000011a
[  417.639691][T14844] RDX: 0000000000000002 RSI: 0000000020000500 RDI: 0000000000000038
[  417.641973][T14844] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  417.644160][T14844] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  417.646424][T14844] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  417.648701][T14844]  </TASK>
[  417.649996][   T39] audit: type=1326 audit(1735094193.547:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14845 comm="syz.2.2488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f70579 code=0x7ffc0000
[  417.656247][   T39] audit: type=1326 audit(1735094193.547:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14845 comm="syz.2.2488" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f70579 code=0x7ffc0000
[  417.662535][   T39] audit: type=1326 audit(1735094193.557:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14845 comm="syz.2.2488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f70579 code=0x7ffc0000
[  417.668011][T14846] 
[  417.668902][   T39] audit: type=1326 audit(1735094193.557:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14845 comm="syz.2.2488" exe="/syz-executor" sig=0 arch=40000003 syscall=92 compat=1 ip=0xf7f70579 code=0x7ffc0000
[  417.669705][T14846] ======================================================
[  417.675956][   T39] audit: type=1326 audit(1735094193.567:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14845 comm="syz.2.2488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f70579 code=0x7ffc0000
[  417.677682][T14846] WARNING: possible circular locking dependency detected
[  417.677689][T14846] 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0 Not tainted
[  417.677696][T14846] ------------------------------------------------------
[  417.677699][T14846] syz.2.2488/14846 is trying to acquire lock:
[  417.677704][T14846] ffff888024dd9968 (
[  417.683808][   T39] audit: type=1326 audit(1735094193.567:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14845 comm="syz.2.2488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f70579 code=0x7ffc0000
[  417.686488][T14846] &q->sysfs_lock){+.+.}-{4:4}, at: blk_register_queue+0x132/0x4f0
[  417.689370][   T39] audit: type=1326 audit(1735094193.567:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14845 comm="syz.2.2488" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f70579 code=0x7ffc0000
[  417.692506][T14846] 
[  417.692506][T14846] but task is already holding lock:
[  417.692512][T14846] ffff888024dd99f8 (&q->sysfs_dir_lock){+.+.}-{4:4}, at: blk_register_queue+0x5c/0x4f0
[  417.692541][T14846] 
[  417.692541][T14846] which lock already depends on the new lock.
[  417.692541][T14846] 
[  417.692544][T14846] 
[  417.692544][T14846] the existing dependency chain (in reverse order) is:
[  417.692547][T14846] 
[  417.692547][T14846] -> #5
[  417.694769][   T39] audit: type=1326 audit(1735094193.567:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14845 comm="syz.2.2488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f70579 code=0x7ffc0000
[  417.695428][T14846]  (&q->sysfs_dir_lock
[  417.701777][   T39] audit: type=1326 audit(1735094193.567:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14845 comm="syz.2.2488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f70579 code=0x7ffc0000
[  417.704399][T14846] ){+.+.}-{4:4}:
[  417.739156][T14846]        __mutex_lock+0x19b/0xa60
[  417.740588][T14846]        blk_mq_sysfs_unregister_hctxs+0x92/0x2d0
[  417.742593][T14846]        __blk_mq_update_nr_hw_queues+0x93f/0x1460
[  417.744454][T14846]        blk_mq_update_nr_hw_queues+0x2a/0x40
[  417.746169][T14846]        nbd_start_device+0x15b/0xd70
[  417.747739][T14846]        nbd_ioctl+0x21a/0xfd0
[  417.749117][T14846]        compat_blkdev_ioctl+0x2f7/0x750
[  417.750705][T14846]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  417.752557][T14846]        __do_fast_syscall_32+0x73/0x120
[  417.754812][T14846]        do_fast_syscall_32+0x32/0x80
[  417.756726][T14846]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  417.758646][T14846] 
[  417.758646][T14846] -> #4 (&q->q_usage_counter(io)#50){++++}-{0:0}:
[  417.761101][T14846]        blk_mq_submit_bio+0x1fb6/0x24c0
[  417.762718][T14846]        __submit_bio+0x384/0x540
[  417.764167][T14846]        submit_bio_noacct_nocheck+0x698/0xd70
[  417.765902][T14846]        submit_bio_noacct+0x93a/0x1e20
[  417.767483][T14846]        mpage_readahead+0x41d/0x590
[  417.768970][T14846]        read_pages+0x1a8/0xdc0
[  417.770321][T14846]        page_cache_ra_unbounded+0x3dc/0x750
[  417.772069][T14846]        force_page_cache_ra+0x24b/0x340
[  417.774319][T14846]        page_cache_sync_ra+0x110/0x9c0
[  417.776279][T14846]        filemap_get_pages+0xd7b/0x1be0
[  417.777861][T14846]        filemap_read+0x3ca/0xd70
[  417.779326][T14846]        blkdev_read_iter+0x187/0x480
[  417.780853][T14846]        vfs_read+0x87f/0xbe0
[  417.782275][T14846]        ksys_read+0x12b/0x250
[  417.783766][T14846]        do_syscall_64+0xcd/0x250
[  417.785262][T14846]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.787404][T14846] 
[  417.787404][T14846] -> #3 (mapping.invalidate_lock#2){.+.+}-{4:4}:
[  417.789951][T14846]        down_read+0x9a/0x330
[  417.791338][T14846]        filemap_fault+0x62c/0x2820
[  417.793250][T14846]        __do_fault+0x10a/0x490
[  417.795230][T14846]        do_pte_missing+0xebd/0x3e00
[  417.796907][T14846]        __handle_mm_fault+0x103c/0x2a40
[  417.798528][T14846]        handle_mm_fault+0x3fa/0xaa0
[  417.800074][T14846]        do_user_addr_fault+0x7a3/0x13f0
[  417.801675][T14846]        exc_page_fault+0x5c/0xc0
[  417.803159][T14846]        asm_exc_page_fault+0x26/0x30
[  417.804698][T14846]        _copy_from_user+0x95/0xd0
[  417.806155][T14846]        get_user_ifreq+0x190/0x250
[  417.807651][T14846]        sock_do_ioctl+0x16c/0x280
[  417.809092][T14846]        compat_sock_ioctl+0x318/0x7e0
[  417.810672][T14846]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  417.812487][T14846]        __do_fast_syscall_32+0x73/0x120
[  417.814760][T14846]        do_fast_syscall_32+0x32/0x80
[  417.816532][T14846]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  417.818478][T14846] 
[  417.818478][T14846] -> #2 (&mm->mmap_lock){++++}-{4:4}:
[  417.820630][T14846]        __might_fault+0x11b/0x190
[  417.820680][T13445] udevd[13445]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  417.822107][T14846]        _copy_from_user+0x29/0xd0
[  417.822123][T14846]        compat_blk_trace_setup+0xc9/0x200
[  417.822135][T14846]        blk_trace_ioctl+0x24a/0x290
[  417.831259][T14846]        compat_blkdev_ioctl+0x13c/0x750
[  417.832879][T14846]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  417.834976][T14846]        __do_fast_syscall_32+0x73/0x120
[  417.837202][T14846]        do_fast_syscall_32+0x32/0x80
[  417.838735][T14846]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  417.840707][T14846] 
[  417.840707][T14846] -> #1 (&q->debugfs_mutex){+.+.}-{4:4}:
[  417.843094][T14846]        __mutex_lock+0x19b/0xa60
[  417.844551][T14846]        blk_register_queue+0x13c/0x4f0
[  417.846126][T14846]        add_disk_fwnode+0x785/0x1300
[  417.847628][T14846]        brd_alloc.isra.0+0x50a/0x7c0
[  417.849158][T14846]        brd_init+0x12b/0x1d0
[  417.850474][T14846]        do_one_initcall+0x128/0x630
[  417.852009][T14846]        kernel_init_freeable+0x58f/0x8b0
[  417.854290][T14846]        kernel_init+0x1c/0x2b0
[  417.856245][T14846]        ret_from_fork+0x45/0x80
[  417.857687][T14846]        ret_from_fork_asm+0x1a/0x30
[  417.859208][T14846] 
[  417.859208][T14846] -> #0 (&q->sysfs_lock){+.+.}-{4:4}:
[  417.861351][T14846]        __lock_acquire+0x249e/0x3c40
[  417.863074][T14846]        lock_acquire.part.0+0x11b/0x380
[  417.864671][T14846]        __mutex_lock+0x19b/0xa60
[  417.866107][T14846]        blk_register_queue+0x132/0x4f0
[  417.867684][T14846]        add_disk_fwnode+0x785/0x1300
[  417.869211][T14846]        md_alloc+0x393/0x1030
[  417.870581][T14846]        md_probe+0x6e/0xd0
[  417.871900][T14846]        blk_request_module+0x115/0x1e0
[  417.874094][T14846]        blkdev_get_no_open+0x7a/0xe0
[  417.876059][T14846]        bdev_file_open_by_dev+0x6b/0x210
[  417.877685][T14846]        swsusp_check+0x78/0x410
[  417.879117][T14846]        software_resume+0x6d/0x400
[  417.880591][T14846]        resume_store+0x249/0x460
[  417.882153][T14846]        kobj_attr_store+0x55/0x80
[  417.883625][T14846]        sysfs_kf_write+0x117/0x170
[  417.885113][T14846]        kernfs_fop_write_iter+0x33d/0x500
[  417.886776][T14846]        vfs_write+0x5ae/0x1150
[  417.888169][T14846]        ksys_write+0x12b/0x250
[  417.889881][T14846]        __do_fast_syscall_32+0x73/0x120
[  417.891534][T14846]        do_fast_syscall_32+0x32/0x80
[  417.893496][T14846]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  417.896307][T14846] 
[  417.896307][T14846] other info that might help us debug this:
[  417.896307][T14846] 
[  417.899899][T14846] Chain exists of:
[  417.899899][T14846]   &q->sysfs_lock --> &q->q_usage_counter(io)#50 --> &q->sysfs_dir_lock
[  417.899899][T14846] 
[  417.905099][T14846]  Possible unsafe locking scenario:
[  417.905099][T14846] 
[  417.907866][T14846]        CPU0                    CPU1
[  417.909849][T14846]        ----                    ----
[  417.911915][T14846]   lock(&q->sysfs_dir_lock);
[  417.913693][T14846]                                lock(&q->q_usage_counter(io)#50);
[  417.916658][T14846]                                lock(&q->sysfs_dir_lock);
[  417.919325][T14846]   lock(&q->sysfs_lock);
[  417.920938][T14846] 
[  417.920938][T14846]  *** DEADLOCK ***
[  417.920938][T14846] 
[  417.923927][T14846] 8 locks held by syz.2.2488/14846:
[  417.925860][T14846]  #0: ffff8880239a5278 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x267/0x390
[  417.929199][T14846]  #1: ffff888022d08420 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12b/0x250
[  417.932556][T14846]  #2: ffff888067896888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x27b/0x500
[  417.936138][T14846]  #3: ffff88801bb70a58 (kn->active#62){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x29e/0x500
[  417.940028][T14846]  #4: ffffffff8dc80d08 (system_transition_mutex){+.+.}-{4:4}, at: software_resume+0x63/0x400
[  417.943888][T14846]  #5: ffffffff8e8b8be8 (major_names_lock){+.+.}-{4:4}, at: blk_request_module+0x29/0x1e0
[  417.947540][T14846]  #6: ffffffff8f62a5c8 (disks_mutex){+.+.}-{4:4}, at: md_alloc+0x3e/0x1030
[  417.950714][T14846]  #7: ffff888024dd99f8 (&q->sysfs_dir_lock){+.+.}-{4:4}, at: blk_register_queue+0x5c/0x4f0
[  417.954447][T14846] 
[  417.954447][T14846] stack backtrace:
[  417.956634][T14846] CPU: 2 UID: 0 PID: 14846 Comm: syz.2.2488 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[  417.960619][T14846] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  417.964578][T14846] Call Trace:
[  417.965828][T14846]  <TASK>
[  417.966930][T14846]  dump_stack_lvl+0x116/0x1f0
[  417.968705][T14846]  print_circular_bug+0x41c/0x610
[  417.970598][T14846]  check_noncircular+0x31a/0x400
[  417.972463][T14846]  ? __pfx_check_noncircular+0x10/0x10
[  417.974520][T14846]  ? kernfs_add_one+0x39d/0x520
[  417.976363][T14846]  ? lockdep_lock+0xc6/0x200
[  417.978102][T14846]  ? __pfx_lockdep_lock+0x10/0x10
[  417.979973][T14846]  ? up_write+0x1b2/0x520
[  417.981598][T14846]  __lock_acquire+0x249e/0x3c40
[  417.983400][T14846]  ? __pfx___lock_acquire+0x10/0x10
[  417.985325][T14846]  ? sysfs_add_file_mode_ns+0x227/0x3b0
[  417.987387][T14846]  lock_acquire.part.0+0x11b/0x380
[  417.989267][T14846]  ? blk_register_queue+0x132/0x4f0
[  417.991187][T14846]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  417.993266][T14846]  ? rcu_is_watching+0x12/0xc0
[  417.995045][T14846]  ? trace_lock_acquire+0x14e/0x1f0
[  417.996971][T14846]  ? blk_register_queue+0x132/0x4f0
[  417.998898][T14846]  ? lock_acquire+0x2f/0xb0
[  418.000607][T14846]  ? blk_register_queue+0x132/0x4f0
[  418.002533][T14846]  __mutex_lock+0x19b/0xa60
[  418.004253][T14846]  ? blk_register_queue+0x132/0x4f0
[  418.006208][T14846]  ? kernfs_get+0x1f/0x30
[  418.007978][T14846]  ? kobject_add_internal+0x54e/0x990
[  418.009995][T14846]  ? blk_register_queue+0x132/0x4f0
[  418.011947][T14846]  ? __pfx___mutex_lock+0x10/0x10
[  418.013841][T14846]  ? kobject_add+0x17c/0x240
[  418.015581][T14846]  ? blk_register_queue+0x132/0x4f0
[  418.017528][T14846]  blk_register_queue+0x132/0x4f0
[  418.019452][T14846]  add_disk_fwnode+0x785/0x1300
[  418.021319][T14846]  md_alloc+0x393/0x1030
[  418.022905][T14846]  md_probe+0x6e/0xd0
[  418.024420][T14846]  ? __pfx_md_probe+0x10/0x10
[  418.026175][T14846]  blk_request_module+0x115/0x1e0
[  418.027921][T14846]  blkdev_get_no_open+0x7a/0xe0
[  418.029745][T14846]  bdev_file_open_by_dev+0x6b/0x210
[  418.031685][T14846]  swsusp_check+0x78/0x410
[  418.033387][T14846]  software_resume+0x6d/0x400
[  418.035153][T14846]  resume_store+0x249/0x460
[  418.036848][T14846]  ? __pfx_resume_store+0x10/0x10
[  418.038742][T14846]  ? __pfx_resume_store+0x10/0x10
[  418.040624][T14846]  kobj_attr_store+0x55/0x80
[  418.042328][T14846]  ? __pfx_kobj_attr_store+0x10/0x10
[  418.044324][T14846]  sysfs_kf_write+0x117/0x170
[  418.046098][T14846]  kernfs_fop_write_iter+0x33d/0x500
[  418.048078][T14846]  ? __pfx_sysfs_kf_write+0x10/0x10
[  418.050012][T14846]  vfs_write+0x5ae/0x1150
[  418.051632][T14846]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  418.053780][T14846]  ? __pfx___mutex_lock+0x10/0x10
[  418.055646][T14846]  ? __pfx_vfs_write+0x10/0x10
[  418.057397][T14846]  ksys_write+0x12b/0x250
[  418.059051][T14846]  ? __pfx_ksys_write+0x10/0x10
[  418.060875][T14846]  ? __secure_computing+0x273/0x3f0
[  418.062859][T14846]  __do_fast_syscall_32+0x73/0x120
[  418.064573][T14846]  do_fast_syscall_32+0x32/0x80
[  418.066391][T14846]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  418.068724][T14846] RIP: 0023:0xf7f70579
[  418.070243][T14846] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  418.077361][T14846] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  418.080451][T14846] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000040
[  418.083402][T14846] RDX: 0000000000000012 RSI: 0000000000000000 RDI: 0000000000000000
[  418.086298][T14846] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  418.089213][T14846] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  418.092139][T14846] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  418.095089][T14846]  </TASK>
[  418.099208][T14846] block device autoloading is deprecated and will be removed.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  418.102109][T14846] syz.2.2488: attempt to access beyond end of device
[  418.102109][T14846] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  418.107234][T14846] PM: Image not found (code -5)
[  418.251137][ T7351] infiniband syz1: set down
[  418.274048][ T6588] smc: removing ib device syz1
[  418.419799][ T7351] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  418.563456][ T6594] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  418.633945][ T6594] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  418.683425][ T6594] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  418.723471][ T6594] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  418.770913][ T6594] bridge_slave_1: left allmulticast mode
[  418.772548][ T6594] bridge_slave_1: left promiscuous mode
[  418.774191][ T6594] bridge0: port 2(bridge_slave_1) entered disabled state
[  418.777577][ T6594] bridge_slave_0: left allmulticast mode
[  418.779303][ T6594] bridge_slave_0: left promiscuous mode
[  418.781191][ T6594] bridge0: port 1(bridge_slave_0) entered disabled state
[  418.894387][ T6594] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  418.897611][ T6594] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  418.902297][ T6594] bond0 (unregistering): Released all slaves
[  419.114648][ T6594] hsr_slave_0: left promiscuous mode
[  419.116603][ T6594] hsr_slave_1: left promiscuous mode
[  419.118883][ T6594] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  419.122483][ T6594] batman_adv: batadv0: Removing interface: batadv_slave_0
[  419.125119][ T6594] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  419.127302][ T6594] batman_adv: batadv0: Removing interface: batadv_slave_1
[  419.131614][ T6594] veth1_macvtap: left promiscuous mode
[  419.133350][ T6594] veth0_macvtap: left promiscuous mode
[  419.135069][ T6594] veth1_vlan: left promiscuous mode
[  419.136592][ T6594] veth0_vlan: left promiscuous mode
[  419.318910][ T6594] team0 (unregistering): Port device team_slave_1 removed
[  419.372114][ T6594] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
02:36:33  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85142d25 RDI=ffffffff9a667240 RBP=ffffffff9a667200 RSP=ffffc900006678d0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36
R12=0000000000000000 R13=0000000000000020 R14=ffffffff85142cc0 R15=0000000000000000
RIP=ffffffff85142d4f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000003351fffc CR3=00000000657ae000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffff888000000000 RBX=ffff88804cda4b18 RCX=000000004cda4000 RDX=ffffffffce1a4b18
RSI=ffffea0001336900 RDI=0000000000000007 RBP=0000000000000000 RSP=ffffc90003d675a0
R8 =00000000000002c0 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=ffff88801ac50b40 R13=0000000000000007 R14=ffffc90003d676f2 R15=ffffc90003d676e0
RIP=ffffffff81fbb751 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50b3fac CR3=000000004baa2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=fffffff800000000 Opmask01=00000000fffffff8 Opmask02=0000000000004000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc8ef64960 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 79732f223d657865 2022383834322e32 2e7a7973223d6d6d 6f63203534383431
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20332f2230303030 2022383834322030 2e67697320226d6d 6f63203534382d31
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3530376637667830 3d706920313d7461 706d6f6320303432 3d6c6c6163737973
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000a3937
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85142d25 RDI=ffffffff9a667240 RBP=ffffffff9a667200 RSP=ffffc90002bb6ef0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000020 R14=ffffffff85142cc0 R15=0000000000000000
RIP=ffffffff85142d4f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7436188 CR3=000000004c2f2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=fffffff800000000 Opmask01=00000000fffffff8 Opmask02=0000000000004000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc8ef64960 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 79732f223d657865 2022383834322e32 2e7a7973223d6d6d 6f63203534383431
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20332f2230303030 2022383834322030 2e67697320226d6d 6f63203534382d31
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3530376637667830 3d706920313d7461 706d6f6320303432 3d6c6c6163737973
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000a3937
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000007227ec RBX=0000000000000003 RCX=ffffffff8b1a3819 RDX=ffffed10056e6fee
RSI=ffffffff8bb16f80 RDI=ffffffff81702e79 RBP=ffffed10036ed488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000
R12=0000000000000003 R13=ffff88801b76a440 R14=ffffffff901ce3d0 R15=0000000000000000
RIP=ffffffff8b1a4bff RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002f5ebffc CR3=00000000657ae000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000