last executing test programs:

1m12.111220883s ago: executing program 1 (id=319):
read$msr(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x8, &(0x7f0000001b40)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x9}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendfile(r3, r2, 0x0, 0x180000504)

1m11.871208289s ago: executing program 1 (id=324):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'xfrm0\x00', <r2=>0x0})
r3 = syz_io_uring_setup(0x20fa, &(0x7f0000000080)={0x0, 0x614c, 0x800, 0x400003, 0x10c}, &(0x7f0000000100), &(0x7f0000000180)=<r4=>0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000040)=ANY=[@ANYRES64=r3], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r5, 0x0)
sendto$packet(r5, &(0x7f00000002c0)="12040500fc01004788031c09100628000000", 0x12, 0x4, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)
unshare(0x1a000000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r6, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x80040000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x4c)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f00000001c0)=0x1000000, 0xc7)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000040)=ANY=[], 0x118)
r8 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r8, 0x89f1, &(0x7f0000000380)={'gretap0\x00', 0x0})
syz_io_uring_submit(0x0, r4, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x2c, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x20008801})
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(r5, 0x80045104, &(0x7f0000000240))
ioctl$int_in(r10, 0x40000000af01, 0x0)
r11 = socket$packet(0x11, 0x3, 0x300)
r12 = fcntl$dupfd(r10, 0x0, r11)
ioctl$VHOST_NET_SET_BACKEND(r12, 0x4008af30, &(0x7f0000000080))
write$UHID_INPUT2(r12, &(0x7f0000000440)=ANY=[@ANYBLOB="0c0000007e005d2029e25f1d0132542b7b7a253057b76fbc9da285cfc088119a7c507eda4db923e681f38b2214c117a5e41357e8637df4e86cb8e268e54bad162ca3ad639da7201af29f3f312b982f688ee6c3d6d1924a753803a9002076ab9fb9fc89c1b7f349999f3e1990946d054ac8839255cdc9a3d4464598e35cf80677b2ef14c38218c5d43b35dd77df4cc07d15ea45917ea393ce307ead142308be9e76a593906beaa431acf302ae8f69b0b70724748f889c2fdba6"], 0x84)
sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)

1m11.231098433s ago: executing program 1 (id=331):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
r5 = getpid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f0000009f80)=[{{0x0, 0x0, &(0x7f0000005280)=[{&(0x7f0000004bc0)="a1e829bb", 0x4}], 0x1, &(0x7f0000005440)=[@cred={{0x18, 0x1, 0x2, {r5}}}], 0x18, 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000005900)=ANY=[@ANYBLOB="10000000010058202fa46fa8", @ANYRES32], 0x10, 0x20000000}}], 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x10, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000)=0x200, 0x1)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IPT_SO_GET_INFO(r7, 0x0, 0x40, &(0x7f0000000180)={'nat\x00', 0x7003, [0x80000000]}, &(0x7f0000000040)=0x54)
r8 = syz_open_dev$sndctrl(&(0x7f0000000180), 0x0, 0x0)
r9 = openat$dlm_control(0xffffff9c, &(0x7f0000000000), 0x204080, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r9, 0x13, &(0x7f0000000200)=[0x7, 0x4], 0x2)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r8, 0xc008551c, &(0x7f00000001c0)=ANY=[@ANYBLOB='\x00\x00\b\x00\x00\x00\x00\x00'])
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000080)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
mkdir(&(0x7f0000000280)='./file2\x00', 0x138)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, 0x0, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

1m10.17804326s ago: executing program 1 (id=337):
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
recvmmsg(r0, &(0x7f0000000240)=[{{0x0, 0x0, 0x0}}], 0x44b, 0x10101, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r1}, 0x10)
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff})
read(r2, &(0x7f00000003c0)=""/52, 0x34)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f00000001c0)='./file0/file1\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x21a5099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
ioctl$PPPIOCATTACH(r2, 0x4004743d, 0x0)

1m9.169815365s ago: executing program 1 (id=340):
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
r0 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000180), 0x0)
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f0000000140)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
write(r5, &(0x7f0000000400)="454d1905430e5c6b16b8500fbed3cf5488bd2d1c2db0bfb721c2fb63ac916d8d9ac32a2332c4e0c46770cf027d023593a275744b2b13c29e00a95eced00a1853613a5a59a2e7e65dbeff8dc3b5988c45545d6a9681049086756da35d178e5f26dbeb1d1cf76a5fb9acd5d8ef08a85715f6916d80ba0fdca18d4649b9c013f0946470facbcd9aeb75bb58ea8d39308c61b45e53b658e71a76a538e75d5bb000c1e3cd14a94b016d350ea95fdcab95ad5b7b6ebeaf2b4a40a67ea2fcc1864e39cc4533bd30aa637fb2382190892171f632cd7b535ee24cb723c97d7636542c837ae7c3937cbbae1a4ecb2df9a5bc2c8032dc1059465f4e", 0xf6)
r8 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r8, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r10, 0x4010ae68, &(0x7f0000000000)={0x1000, 0x7000})
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r8, 0x6, 0x21, 0x0, 0x0)
vmsplice(r6, &(0x7f0000000380)=[{&(0x7f0000013580)='\r', 0x1}], 0x1, 0xc)
tee(r4, r7, 0x8f5, 0x0)
r11 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$inet6(0xa, 0x6, 0x0)
setsockopt(r8, 0x8000010d, 0x800, 0x0, 0x0)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x8, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r12, @ANYBLOB="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"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r13 = fcntl$dupfd(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
splice(r11, 0x0, r13, 0x0, 0x2000, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x80080, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f00000005c0)='#mS\xb2j\xcb\xa18:.)\xc7\xcb\xc5\xd8\x91\xa1\"\xd5\r\x89M;\x99\xd6\x8e?K\x82\xd5\xd7\xab\x10\xea\x14\n\xea\xe9\xcc\xdc\xf3\xc0\xf8\x89\xd0\x0ep\xb1I\x04T[\r&\xf0z\xde\xc0\xf3\xcd\x9a\xae\xa8*v_(\x94]\xdf\xf1\x95!\xb3+\x1aD\xda\xa1G\x06M\xdaz2\xe9\xe6\xda\x92U\xaaN\xff\xca\xb37-<3\xb28\xb8:UQ\x95|\xe5\xaa\x0e\xe7{\xd4T\x84\x83\x86\x9d', 0x0)
r14 = syz_open_dev$sndctrl(&(0x7f00000012c0), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r14, 0xc2c45512, &(0x7f0000000a00)={{0xa, 0x0, 0x0, 0x0, '\x00', 0xffff}, 0x0, [0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x5, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x429a3bbf, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x1]})

1m8.861483046s ago: executing program 1 (id=344):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000006cc0)=[{{&(0x7f00000000c0)={0xa, 0x0, 0x0, @remote}, 0x1c, 0x0, 0x0, &(0x7f0000000100)=[@dstopts_2292={{0x14, 0x29, 0x4, {0x32}}}, @flowinfo={{0x10, 0x29, 0xb, 0x4}}], 0x24}}], 0x1, 0x0) (fail_nth: 1)

1m8.84878102s ago: executing program 32 (id=344):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000006cc0)=[{{&(0x7f00000000c0)={0xa, 0x0, 0x0, @remote}, 0x1c, 0x0, 0x0, &(0x7f0000000100)=[@dstopts_2292={{0x14, 0x29, 0x4, {0x32}}}, @flowinfo={{0x10, 0x29, 0xb, 0x4}}], 0x24}}], 0x1, 0x0) (fail_nth: 1)

34.609992093s ago: executing program 2 (id=601):
r0 = socket$inet(0x2, 0x3, 0x4)
prctl$PR_SET_NAME(0xf, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
sendmmsg$inet(r0, &(0x7f0000001180)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x502}}], 0x10}}], 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000003c0)={0x74, r3, 0x1, 0x0, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_FRAME={0x52, 0x33, @probe_response={{{0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1}, {}, @device_b, @device_a, @initial, {0xb}}, 0x0, @random=0x3d, 0x10, @val={0x0, 0x6, @default_ibss_ssid}, @val, @void, @void, @val={0x6, 0xffffff35, 0xb}, @val={0x2d, 0x1a, {0x8, 0x3, 0x2, 0x0, {0x6, 0xf, 0x0, 0xe, 0x0, 0x0, 0x0, 0x2}, 0x1, 0x3, 0x2}}, @void, @void}}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x74}, 0x1, 0x0, 0x0, 0xba4820d6e6815606}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x44, r3, 0x200, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_OPMODE_NOTIF={0x5}, @NL80211_ATTR_STA_SUPPORTED_RATES={0xf, 0x13, [{0xe, 0x1}, {0x2, 0x1}, {0xc, 0x1}, {0x16}, {0xb}, {0x6a, 0x1}, {0x9}, {0x16, 0x1}, {0x36}, {0x4}, {0x36}]}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x1}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x7}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)

34.609384234s ago: executing program 2 (id=603):
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000040)=0x5, 0x4)
bind$inet6(r0, &(0x7f0000f65000)={0xa, 0x4e20, 0x7, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0xfffffefffbfbbfbe, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=@updsa={0x150, 0x1a, 0x1, 0x0, 0x0, {{@in6=@private0, @in6=@empty}, {@in, 0x0, 0x6c}, @in=@broadcast, {}, {0x1}, {0x0, 0x1a00000}, 0x0, 0x0, 0xa, 0x0, 0x0, 0x88}, [@encap={0x1c, 0x4, {0x0, 0x0, 0xfffc, @in6=@loopback}}, @algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x150}}, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r2, 0x29, 0xb, &(0x7f0000000040)=0x5, 0x4)
bind$inet6(r2, &(0x7f0000f65000)={0xa, 0x4e20, 0x7, @loopback}, 0x1c)
sendto$inet6(r2, 0x0, 0x0, 0xfffffefffbfbbfbe, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000000040)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x490420, 0x2}}, 0x50)
syz_fuse_handle_req(r4, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x20, 0x0, 0x0, {0x0, 0x1f60b41f8e61cce9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
dup3(r3, r4, 0x0)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f0000000040)=0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r9)
r10 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r9, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r10, 0x80000000)
syz_emit_ethernet(0x8a, &(0x7f0000001480)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6000000000540600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22"], 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x84, &(0x7f0000000140)={r8, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f0000000200)=0x90)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, &(0x7f0000000000)={r8, 0x4, 0x10, 0x9, 0x9}, &(0x7f0000000140)=0x18)
getsockopt$inet6_buf(r2, 0x29, 0x6, 0x0, &(0x7f0000000080))

33.748723397s ago: executing program 2 (id=606):
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0), 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x3)
pwritev(r0, &(0x7f0000000700)=[{&(0x7f0000000280)="5d7aee3b073a9e2b9360ec989975dba9cc05d77ebef729df800d5e604bfed34c244db5d38fe8b5e16d0b1aa965ad364ca3a34e33c1534e54c0122b09056984e52f2b797059b99baac4973effd2086cd5adfda63033922ba05aea4cb3b70bc3b7a81205d3d5bdbfb39e6df793b6556b340de6684379dd3555cffb18bec9eee19e10ca400abbe834b3870fa568ac952a5485def1d7c34d8b424c31bb2bdc40e3a735da01d00de0bf911dacf9a46bb0d5911ee7aaed1b65175744df914dab7eb6cf1378f10c54e47078754d08c66298e26dc987723fc1994b7d862149889b69f07352e3b0e5236556d72ea84db4a3b3668fffdc369e9b", 0xf5}, {&(0x7f0000000380)="f7fff4adf001a71bfb85306e25737ee2a2dd59", 0x13}, {&(0x7f0000000440)="fbb2f3fec1cbff678abbac1a09b99737c572aee8d5d19c9da7c4bade847646a4d11fc821ee6e821f44038b89483ba116d4be2e542fe1d2685bd173ee37c08158d5c37fb2a04dafdea4de32826573cca94880da5b1f26fb5696a9d60fd26b793d8ba2ccea309550c886e04310dc70007e97b56ba918d5b87b4d74aba8d49c", 0x7e}, {&(0x7f00000004c0)="41ec646b915e7eb2840845f63f5722aaf1d7be5823b4060f32d1ddf255ccd1496959893c023f3b8d2101de043fcc5167d57c2e73fe574ca892730cba5cb9bc9157fd0447d610fb7472a9db933004e275ead3653ae9bcf8f45e7a212f4b3dd556c8c3ff9330e830eb3360d430e37e445d5b4b768dda31f7e9bae3eceb59e9a318fb2410f0587bfa610f89b9262704f924ea0c0eba460999d0ca0ffcb8d6b17b8d18d8f6541b3d9e518a408cec68ba4b", 0xaf}, {&(0x7f0000000580)="a23ff7", 0x3}, {&(0x7f0000000680)="1e1eb49b14d7a0c043f90ffcf520e0bf3b383179364d333e6deea8884e0a383f1e1affe8a7531485b1d9de", 0x2b}, {&(0x7f00000006c0)="b6356f1d6a4d8ab0ef81bec07e05aaf3ec5eb9411e37cb", 0x17}], 0x7, 0x6, 0x5)
bind$ax25(0xffffffffffffffff, &(0x7f0000000200)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x2}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x2, 0xffff, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x7, 0xf72}]}}}}}}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x7}}, './file0\x00'})
ioctl$HIDIOCSREPORT(r2, 0x400c4808, &(0x7f00000000c0)={0x3, 0x1, 0x2})
syz_emit_ethernet(0x82, &(0x7f00000005c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x18, 0x2, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x6}, @exp_smc={0xfe, 0x6}, @exp_fastopen={0xfe, 0x10, 0xf989, "9fca59893b5031248415bcf1"}, @timestamp={0x8, 0xa, 0x200, 0x9}, @sack={0x5, 0xa, [0x2, 0x2]}, @exp_fastopen={0xfe, 0xb, 0xf989, "43ecdca921d221"}, @sack_perm={0x4, 0x2}, @fastopen={0x22, 0x6, "8537c855"}, @sack={0x5, 0x2}]}}}}}}}, 0x0)

33.600759138s ago: executing program 2 (id=608):
ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @sliced={0x3, [0xa64e, 0x2, 0x72, 0x979, 0x10, 0xff, 0x83, 0x1, 0x800, 0xfffc, 0xae, 0x1, 0x7, 0x6, 0xfffa, 0x0, 0x3, 0x6cd, 0x0, 0x9, 0x7, 0xff81, 0x7, 0xd2, 0x1ff, 0x45, 0x1, 0x3, 0x5, 0x1, 0x1, 0x8001, 0x6, 0x4, 0x9, 0xa922, 0x3, 0x5, 0x9, 0xd, 0xfff1, 0x6, 0xa6, 0x2, 0x800, 0x8, 0xfff9, 0x9b6f], 0x3}})

33.420975083s ago: executing program 2 (id=610):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffffffffffff01, &(0x7f0000000900)=[{&(0x7f0000001300)="89004001120081ae08060cdc030000017f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56333dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120c0001000b080c00bdad01409bbc7a46e39a8285dcdf12174679df069163ce955fed0009d78f0a947ee2b49e33538afaeb272af450ebd010a20ff27fff", 0x89}], 0x1}, 0xff0f00002400c0c0)

33.280802185s ago: executing program 2 (id=611):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xe)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file1\x00', 0xd)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r0 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
io_setup(0xff, &(0x7f0000000380)=<r1=>0x0)
openat$procfs(0xffffff9c, &(0x7f0000000200)='/proc/mdstat\x00', 0x0, 0x0)
r2 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x129002)
r3 = dup(r2)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
io_submit(r1, 0x1, &(0x7f0000000140)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f00000001c0)="7f", 0x1, 0x0, 0x0, 0x0, r0}])
syz_emit_ethernet(0x8a, &(0x7f0000000240)=ANY=[@ANYBLOB="ffffffffffff0000000000008100130008004500007800000000001190787f0000010000000000044e2200649078020000000900000000000000b1a2393fa9b11d4309c00254aea1649d40f3a5540e812fcb9aeb0a9463ba46606f6fe9a03c69f557399743460ed5a14de993bab85dd094df2ba9fa17c93ca99cda9b7ed73344c005604f936390111365"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_emit_ethernet(0x9e, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x90, 0x0, 0x0, 0x4, 0x11, 0x0, @empty, @empty}, {0x4e22, 0x4e22, 0x7c, 0x0, @opaque="6ee4ec4566b603d93057616398b72b96b72ac0bd48bfb890ff68164d175f3df23e1f6a7353967afb8853e033559220710cd13ec5efac1fe0c3c3e1de127c1ed66b905b50c0da7708b88fef4864b07cb9787c3d196a321b345e32a8b06dcaabb194a1fdea2db646e317341d8385d012cecffa4448"}}}}}, 0x0)

21.950071491s ago: executing program 3 (id=696):
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0), 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x3)
pwritev(r0, &(0x7f0000000700)=[{&(0x7f0000000280)="5d7aee3b073a9e2b9360ec989975dba9cc05d77ebef729df800d5e604bfed34c244db5d38fe8b5e16d0b1aa965ad364ca3a34e33c1534e54c0122b09056984e52f2b797059b99baac4973effd2086cd5adfda63033922ba05aea4cb3b70bc3b7a81205d3d5bdbfb39e6df793b6556b340de6684379dd3555cffb18bec9eee19e10ca400abbe834b3870fa568ac952a5485def1d7c34d8b424c31bb2bdc40e3a735da01d00de0bf911dacf9a46bb0d5911ee7aaed1b65175744df914dab7eb6cf1378f10c54e47078754d08c66298e26dc987723fc1994b7d862149889b69f07352e3b0e5236556d72ea84db4a3b3668fffdc369e9b", 0xf5}, {0x0}, {&(0x7f00000004c0)="41ec646b915e7eb2840845f63f5722aaf1d7be5823b4060f32d1ddf255ccd1496959893c023f3b8d2101de043fcc5167d57c2e73fe574ca892730cba5cb9bc9157fd0447d610fb7472a9db933004e275ead3653ae9bcf8f45e7a212f4b3dd556c8c3ff9330e830eb3360d430e37e445d5b4b768dda31f7e9bae3eceb59e9a318fb2410f0587bfa610f89b9262704f924ea0c0eba460999d0ca0ffcb8d6b17b8d18d8f6541b3d9e518a408cec68ba4b", 0xaf}, {&(0x7f0000000580)="a23ff7", 0x3}, {&(0x7f0000000680)="1e1eb49b14d7a0c043f90ffcf520e0bf3b383179364d333e6deea8884e0a383f1e1affe8a7531485b1d9de", 0x2b}, {&(0x7f00000006c0)="b6356f1d6a4d8ab0ef81bec07e05aaf3ec5eb9411e37cb", 0x17}], 0x6, 0x6, 0x5)
bind$ax25(0xffffffffffffffff, &(0x7f0000000200)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x2}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x2, 0xffff, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x7, 0xf72}]}}}}}}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x7}}, './file0\x00'})
ioctl$HIDIOCSREPORT(r2, 0x400c4808, &(0x7f00000000c0)={0x3, 0x1, 0x2})
syz_emit_ethernet(0x82, &(0x7f00000005c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x18, 0x2, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x6}, @exp_smc={0xfe, 0x6}, @exp_fastopen={0xfe, 0x10, 0xf989, "9fca59893b5031248415bcf1"}, @timestamp={0x8, 0xa, 0x200, 0x9}, @sack={0x5, 0xa, [0x2, 0x2]}, @exp_fastopen={0xfe, 0xb, 0xf989, "43ecdca921d221"}, @sack_perm={0x4, 0x2}, @fastopen={0x22, 0x6, "8537c855"}, @sack={0x5, 0x2}]}}}}}}}, 0x0)

21.949630144s ago: executing program 3 (id=697):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000080)=@req3={0x28000, 0x200, 0x80080, 0x20000}, 0x1c) (async)
semctl$IPC_STAT(0x0, 0x0, 0x2, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300006773da2085000000040000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, @void, @value}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_split\x00', r4}, 0x10)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x11, r6, 0x0) (async)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r7, &(0x7f0000000200), 0x43400) (async)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r9, &(0x7f0000000000), 0xe) (async)
r10 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
listen(r9, 0x1) (async, rerun: 64)
bind$bt_l2cap(r10, &(0x7f0000000400), 0xe) (rerun: 64)
listen(r10, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0) (async)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x8, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7020000001000008500000086000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000040)='mm_lru_insertion\x00', r12}, 0x10) (async)
r13 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r13, &(0x7f0000000180), 0x40010)
sendmsg$NFT_BATCH(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYRESHEX=r0], 0xc8}}, 0x20000054)

21.807536895s ago: executing program 3 (id=698):
unshare(0x62040200)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x80040500, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x4c)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0x1000000, 0xc7)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000040)=ANY=[], 0x118)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)

21.180315856s ago: executing program 3 (id=708):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSLCKTRMIOS(r1, 0x5457, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha1)\x00'}, 0x58)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)={0x20, r3, 0x301, 0x70bd28, 0x25dfdbfe, {0x1c}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x20}}, 0x10)
syz_emit_ethernet(0xea, &(0x7f0000000240)={@local, @local, @void, {@ipv4={0x800, @udp={{0x34, 0x4, 0x0, 0x10, 0xdc, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@lsrr={0x83, 0x2b, 0x13, [@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @multicast2, @empty, @loopback, @loopback, @empty, @private=0xa010102, @rand_addr=0x64010101]}, @ra={0x94, 0x4, 0x1}, @timestamp={0x44, 0x1c, 0xbb, 0x0, 0x4, [0x4, 0x7, 0x3b, 0x0, 0x8, 0x6]}, @timestamp_addr={0x44, 0x1c, 0xb7, 0x1, 0xa, [{@rand_addr=0x64010100, 0x5}, {@multicast2, 0x2}, {@loopback, 0x10}]}, @noop, @cipso={0x86, 0x2e, 0x2, [{0x1, 0x7, "0f2b32c674"}, {0x3, 0xf, "3e27016cf94c051be7d3632fc0"}, {0x2, 0x4, "49c5"}, {0x0, 0x3, '['}, {0x1, 0xb, "f29ec6f88e85a79d9a"}]}, @lsrr={0x83, 0xf, 0xf6, [@remote, @multicast2, @multicast1]}, @timestamp_addr={0x44, 0x14, 0x5f, 0x1, 0x7, [{@broadcast, 0x6e2f}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x3ff}]}]}}, {0x4e24, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x3, 0x1, 0x100, @void}}}}}}}, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r5 = accept4(r0, 0x0, 0x0, 0x0)
r6 = dup2(r5, r0)
sendmmsg$alg(r6, &(0x7f0000002e40)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)="a7", 0x1}], 0x1}], 0x1, 0x8000)
r7 = accept4(r5, 0x0, 0x0, 0x800)
r8 = syz_open_dev$sndctrl(&(0x7f0000000600), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000004c0)='./file0\x00', 0x0, 0x120002, 0x0)
r9 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r9, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
sendmsg$sock(r7, &(0x7f0000000480)={&(0x7f00000003c0)=@ax25={{0x3, @bcast, 0x5}, [@null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default]}, 0x80, &(0x7f00000001c0), 0x0, &(0x7f0000000440)=[@txtime={{0x14, 0x1, 0x3d, 0xfffffffffffffff2}}, @mark={{0x10}}, @timestamping={{0x10, 0x1, 0x25, 0x67}}], 0x34}, 0x4004800)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x80700a, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x4, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0xe27, 0x0, 0x33, 0x8, @empty=0xac1414aa}, "341517c1b7df60c7"}}}}}, 0x0)
umount2(&(0x7f0000000100)='./file0/file0\x00', 0xb)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r8, 0xc1105517, &(0x7f0000001340)={{0x0, 0x0, 0x0, 0x3, 'syz0\x00', 0x3e}, 0x3, 0x0, 0x8, 0x0, 0x2, 0x2, 'syz1\x00', &(0x7f0000000180)=['-[\'\x00', 'h\x00\x05\x00'/16], 0x14})

21.110263755s ago: executing program 3 (id=709):
r0 = socket$inet6(0xa, 0xa, 0x100)
r1 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0)
r2 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = creat(0x0, 0x0)
r6 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xd, 0x1, 0x6, 0x6}, 0x1c)
recvmmsg$unix(r6, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
sendmmsg(r6, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
ftruncate(0xffffffffffffffff, 0xffff)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r2, &(0x7f0000000000)={0xa0000001})
epoll_wait(r7, &(0x7f0000000340)=[{}], 0x1, 0x1000)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r6)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r5, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2bc41}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, r8, 0x100, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x4}, @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24c7ee7695d5ca62}, 0x1)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, 0x0, 0x0)

21.010930904s ago: executing program 3 (id=710):
socket$kcm(0xa, 0x5, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r0, 0x107, 0x13, 0x0, &(0x7f0000000040))
r1 = syz_io_uring_setup(0x16c2, &(0x7f0000000480)={0x0, 0xbd12, 0x10100, 0x2, 0x341}, &(0x7f0000001600)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3}})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_service_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

20.972483937s ago: executing program 33 (id=710):
socket$kcm(0xa, 0x5, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r0, 0x107, 0x13, 0x0, &(0x7f0000000040))
r1 = syz_io_uring_setup(0x16c2, &(0x7f0000000480)={0x0, 0xbd12, 0x10100, 0x2, 0x341}, &(0x7f0000001600)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3}})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_service_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

18.247005143s ago: executing program 34 (id=611):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xe)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file1\x00', 0xd)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r0 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
io_setup(0xff, &(0x7f0000000380)=<r1=>0x0)
openat$procfs(0xffffff9c, &(0x7f0000000200)='/proc/mdstat\x00', 0x0, 0x0)
r2 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x129002)
r3 = dup(r2)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
io_submit(r1, 0x1, &(0x7f0000000140)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f00000001c0)="7f", 0x1, 0x0, 0x0, 0x0, r0}])
syz_emit_ethernet(0x8a, &(0x7f0000000240)=ANY=[@ANYBLOB="ffffffffffff0000000000008100130008004500007800000000001190787f0000010000000000044e2200649078020000000900000000000000b1a2393fa9b11d4309c00254aea1649d40f3a5540e812fcb9aeb0a9463ba46606f6fe9a03c69f557399743460ed5a14de993bab85dd094df2ba9fa17c93ca99cda9b7ed73344c005604f936390111365"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_emit_ethernet(0x9e, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x90, 0x0, 0x0, 0x4, 0x11, 0x0, @empty, @empty}, {0x4e22, 0x4e22, 0x7c, 0x0, @opaque="6ee4ec4566b603d93057616398b72b96b72ac0bd48bfb890ff68164d175f3df23e1f6a7353967afb8853e033559220710cd13ec5efac1fe0c3c3e1de127c1ed66b905b50c0da7708b88fef4864b07cb9787c3d196a321b345e32a8b06dcaabb194a1fdea2db646e317341d8385d012cecffa4448"}}}}}, 0x0)

3.299691306s ago: executing program 6 (id=853):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="640000000206050000000000000000000000000005000100070000000900020073797a30000000001400078008001240fff50000080008400000008016000300686173683a6e65742c706f72742c6e65740034500500050002000000050004"], 0x64}}, 0x0)

3.255203218s ago: executing program 6 (id=855):
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
r0 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCFLSH(r0, 0x40204706, 0x20000000)

3.180682138s ago: executing program 6 (id=856):
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(0xffffffffffffffff, 0xc02c564a, &(0x7f0000000000)={0x7fffffff, 0x33424752, 0x0, @stepwise={0x4, 0x6, 0x0, 0x5, 0xffffffd8, 0x5}})
r0 = add_key$keyring(&(0x7f0000000280), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000440)='asymmetric\x00', 0x0, &(0x7f0000000000)="30800201", 0x1001, r0)
socket$nl_generic(0x10, 0x3, 0x10)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900), 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
munmap(&(0x7f00008b4000/0x4000)=nil, 0x4000)
mremap(&(0x7f00006bd000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f0000721000/0x4000)=nil)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32)
getsockopt$bt_BT_SECURITY(r1, 0x111, 0x3, 0x0, 0x20000000)
munmap(&(0x7f0000a88000/0x1000)=nil, 0x1000)
munmap(&(0x7f000060f000/0x4000)=nil, 0x4000)
madvise(&(0x7f0000492000/0x2000)=nil, 0x2000, 0x12)
mremap(&(0x7f000061c000/0x13000)=nil, 0x13000, 0x4000, 0x3, &(0x7f0000fb0000/0x4000)=nil)
madvise(&(0x7f0000da1000/0x4000)=nil, 0x4000, 0x2)
mlock2(&(0x7f000072d000/0x1000)=nil, 0x1000, 0x0)
mremap(&(0x7f0000b89000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00006e6000/0x3000)=nil)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x62000000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
r6 = dup(r5)
ioctl$KVM_SET_MSRS(r6, 0x4048aecb, &(0x7f0000000980)=ANY=[@ANYRES64=r5, @ANYRES64])
add_key$keyring(0x0, 0x0, 0x0, 0x0, r0)

2.794354112s ago: executing program 6 (id=859):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x8000000000000000}, 0x18)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
openat$sequencer2(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x3, 0xa, [{}, {0x5}, {}, {}, {0x0, 0xfffffffe}, {0x0, 0x7ff}], 0x1}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
syz_80211_inject_frame(0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000bc0)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x198}, 0x0)

2.267759272s ago: executing program 5 (id=863):
r0 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@initdev={0xfe, 0x88, '\x00', 0x8, 0x0}, 0x0, 0x3, 0x1, 0x0, 0xa, 0x0, 0x0, 0x89}, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff80}, {0xffffffffffffffff, 0x2}, 0x0, 0x0, 0x1}, {{@in6=@loopback, 0x8000, 0x33}, 0x0, @in=@multicast2, 0x0, 0x0, 0x0, 0x7}}, 0xe4)
sendmmsg(r0, &(0x7f0000000480), 0x2e9, 0x0)

2.11936846s ago: executing program 5 (id=864):
syz_open_dev$dri(0x0, 0x1, 0x0)
r0 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCFLSH(r0, 0x40204706, 0x20000000)

2.010604897s ago: executing program 4 (id=865):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x10, 0x7fff0000}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x14)
mount(&(0x7f0000000300)=@md0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000240)='cifs\x00', 0x5000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x8, 0xa2, &(0x7f0000000140)=""/162, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000022c0)=[{&(0x7f00000030c0)={0x19d8, 0x32, 0x10, 0x70bd25, 0x25dfdbfe, "", [@nested={0x1d4, 0x5f, 0x0, 0x1, [@nested={0x4, 0x146}, @generic="c17f7ecc01636c04b1a9dac984f469d13a6495f93f2a58e5cc660e1187eea3ca8985600ef5c37c4af7cb1db4b43589dcb27b7a7352f248c3e5c1ce4fdfb2bc6064ec6676c59ab3e263b15e63dbd2074c55c3a236e3eab98b5283dbe866054e73941ab9cb6a148802202d16577bf90827596e3a2894806f8457c9697e3328f7ee17da9a4991477f5fdafc4a4cc1a154d0f7d025135cbb35542aade06994f1146571aae9f747a15d77d6716e35d06941c8fe2659a4ee901d408c6daa1403c4c8e94299a78362037ee19cfb", @nested={0x4, 0xbc}, @generic="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"]}, @typed={0x8, 0xfa, 0x0, 0x0, @fd}, @nested={0xdc, 0x4c, 0x0, 0x1, [@generic="127957229a92d6de854f502de9400a639d2166127ab3c5452b06e0e10be8dbdb10775deecc5d9382e96676a65809d328d43e36b0a851660337357b8289dc2b16c53f9f17656c4329bbc8b83c14869f66241f2c8c6487e922eb3b8536a144d52c9fbeb1e142639b0aa8bc5dc75b80b3912bb6388338c9835beccdac5494b13f47d253c1584d3d369bd01b657f", @typed={0x4, 0x7a}, @generic="d2f2d830d579f9cae4dfaa761025a8182fdc8ad08a8d428fe089f4fee44368e7186d34c35ecb190718eb8b0f41c14461d687c1f2f18e3a016f01dae126225699f398d39eb2d7ed4f"]}, @nested={0x251, 0xb6, 0x0, 0x1, [@generic="bebe9298e5116e4bc366f7e8422bb29b0f4faf722db31d2a873490f0b7f9bc8e5be6637b18772cd2b3316721a75e66096d510160e8a89233c5b3147083da71bfaaf10aab458d16ea", @generic="be11bcd474f0273782d30f20cf02a50177c47d50fbe30fc2bfe4a1287557b954e1194604e039253780b14822893749763b73fcedefa8ba62c29a3feef14b74ee9a70a79243c9b02596edef568cebc522599b1dd7350821602ad321e213fedd12eb0eb8e918568b41ed94da0462c92ac4c8d6bf8e2373c39928060dfe424d76ddf484b1cdd4b3fb6248f5925db4795d371fa44167757f73f06d8d7d3c6cf43e8b5103c87e1f53b1be52bf5575d441650f720feabcaab47fa47aa739b7fc79e6e15ed1b9318fdad31e76c25c0f41db2f7a8d30b5c9c0abd4805078c763fe908a9eb978c70095056fa96907", @typed={0x8, 0xa7, 0x0, 0x0, @u32=0x80000001}, @typed={0xc, 0xc, 0x0, 0x0, @u64=0x1ff}, @typed={0xc, 0xa1, 0x0, 0x0, @u64=0xa1e}, @generic="d4729675e5a04433f2555e97c3b77e3aac165bedeb7cacb82903951f25514cea59dbbc064de5ac01b5954a5547166fafdd43eb1a1728ce236ad915c8f039", @generic="ef9b756489e69bda1e28847c780f2ee5757cde7463d8d0603b040efff16795716f66d75fa3d0c36bc59ece2a6f1f3ae9500c7d7fbe34c33fb1492a9c7ef2f802bfc3bcaa8b3ea9e3bc8a6ffb9b8e4d1feb01d489e021e346cf1d1457e7a2e463b674995e4ff0b85f6015a9c26c2e5c46731ebb5c1274a69f7829f39dae508e81e2c7c3c00c5fb989a86067115fab69563b977571834b2d1491193a83fea83b097864440fef15dadc762a1eb7b3119aaac3fbd07649839fe5cc437c4b9e"]}, @nested={0x29b, 0xf0, 0x0, 0x1, [@generic="8846cc3059f9f1fe177105a587c6b96b16e54419675d4dd4253febeeb7aa8fa92cbdaa04cdc6b29272c3eca684341358d24424ce6a229cea38eff36d7e173fb5b670d6a0fe5d34482b0e1032d87d6596be130f1e9bb35f26acfb5a97857a4a73ed55841a29c99afae3bfb5b6398c699b16b27eb30132136dad8b4f2b776b84389cca2e0be023", @generic="20bde1999c5a0a547765767742c11eba264610fae2dc2da73008d7790ec1655ceefbadd6f29d461dfc30fa6f810352a5d15b18d5601341efb8040056b7314d899c267de6ecb815282a89aaed56c730d9c00256f728ac93e864e6bdf808beb728cdd6555c0c7c896d422985971a4639a693e0c0fbbd0a7c549876bcdf8ae2864bdb6313ba978d1b4e88dcd19f0363f9f053f14c91b2d0429da1fac0f00c8058ac06bffa835666240b31fae8e232", @typed={0xc, 0x10a, 0x0, 0x0, @u64=0xfffffffffffffffc}, @typed={0x8, 0xa4, 0x0, 0x0, @u32}, @generic="6fca9b34e4d16b2a6a0b87300cded5fef0b6aacc965e4731402077ae47fb9855000b81a3d84af4f569cd195be190186564f368a5a41359b9c98045adce19883fe56616146a3839ede255eca69aef1a614a1ff9d344c218a06fafd9b29229c7b4997b0161", @nested={0x4, 0x5c}, @typed={0x8, 0x2, 0x0, 0x0, @fd}, @generic="450b09b4986c5a0ad57b3d809f96413fd483c37accf73985a5c473471087ae2605e50b8615b0787ea6195e0500fb9633887dea183b0a77beb6f4f6b9587bbb821148e2ed557fa7cce1d9089876455e47c610ad0ac4d42d10bfbc3c6707e316ea81c4ec3583064bca158591c7595b554bc9c4b69a4654f853094cfe06d30a210ae73fda341fda761d6ec2608b6a0393d08385e47b331d5b14e9fab827b48ed8dd2aba1762ccadd27e47578995b412529549b1e6c5696dc19a4733ca384ad49552df7eee26e59c7870ffba4e6f8b5bedc36510fa10c8aa7bd067fd58eba37ef08f"]}, @generic="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", @nested={0x163, 0x145, 0x0, 0x1, [@generic="96a815af25c94447d28b3c5de16ac7da5b120fd5d1f5b1ed1fde65526aaf33e11f640e4fb1ca0e41606f295cdc3432a899dc64641167c3b7236409dedaf695c477bae83c8b10ff92214e62d244a0f7d1d340439eb8927afc9139abd9cb4497df22b6ec915b", @typed={0xc, 0xaf, 0x0, 0x0, @u64=0x80b}, @typed={0x14, 0x3b, 0x0, 0x0, @ipv6=@local}, @nested={0x4, 0x3c}, @nested={0x4, 0x96}, @typed={0x8, 0x15, 0x0, 0x0, @pid=r0}, @generic="6210c6c0f028943a68919200cb09cb875442e691cf2ea7df8a6fc9bde76c65698867ca6dec0528ca0462b56dbdd58a317e9e98729879ce9ab50860b22515adaa137974da840b70a55084d58c3fd01fefd36e1cabe57c5104b1054059e79df4522714097d5db70ee1a15349ce134d8ad792d23920e58c37153f4d377b44677a99cd2700f75580ff49c72b448020e5f7bfbb68bf7227ac91f6ddf96f41aa2c70307d7f3dba7267596c86dc0c52dca9bb811e58", @typed={0x4, 0x1d}, @typed={0xc, 0x12a, 0x0, 0x0, @u64=0x80000000}, @typed={0x8, 0x70, 0x0, 0x0, @pid=r0}]}, @generic="b4038a1d230da166d0950d8432c46a064f0dd1a334be18813b188cbb2dcf08b9e37c94c33979bc6c1b0cbaec4ad4afe58b54d455ca8e274c089b", @generic="13a94940da552ec6f4f36b5d3e6f8b0c4638801182a7cf4358332c714fc233e5fd82b633306d6d3640c88bc66fcebd576ab9f197278603ea271d42b1fec5fb3f2a96a2b9c9e75743c2b370f640c2c809f169fec59e7b4be2c236512ab09adb2962883a133a0c2607660dbcf106b0b18a4c0fa8fb00a0098b29d324730f93e296d579"]}, 0x19d8}, {&(0x7f00000020c0)={0x200, 0x18, 0x10, 0x70bd27, 0x25dfdbfb, "", [@typed={0x8, 0x1a, 0x0, 0x0, @pid}, @nested={0x87, 0xdc, 0x0, 0x1, [@generic="c28ab2c98dedfc54ee18d6c5af0498232b1b4d5b83c87ca71ab54c780f7215f734b5", @typed={0x4, 0x94}, @generic="f4f5af68c0e34a27612577ce01dcd630e49d89e893eeaa5c0c07e2bbaea8059d49f3f4ae1b64577c10515d0ae189273d610781b7b4cde83b99d0b2a3c28b12c6e01a055392f7f96f5bb01b63561571575d8ac1fbc4", @typed={0x8, 0xc7, 0x0, 0x0, @fd=r1}]}, @nested={0x160, 0xdc, 0x0, 0x1, [@typed={0xc, 0x136, 0x0, 0x0, @u64=0x1}, @generic="d786cd7615af7160318172ea2552fef3d69a7b5ca56fefd303b2ec48eff8d7557295ebbd792117d706484b1f1fa69e809a5dfbc8214f3fac95690ef367", @typed={0xa1, 0xaa, 0x0, 0x0, @binary="1b30d3074a7e299157ed9c670d0b05592880b2702d6244568be4b7a48604c5d2fa0685d0c7864fab8e8b7eb4a979bdedd4a487a30badb37525527f8cef44c6c4490962d96a3d80e5cdeae531302135746842a60745778c89e05a359591005584bb50daf9cb84629d82cb58dea1bd9332a64626c26c709271695c9aaf479a4eb6cedbee067c2a6683ab70ecb3e3c2a968a903968a7e3eb41be1fc9abdfb"}, @typed={0x8, 0xc6, 0x0, 0x0, @uid}, @generic="b4031751fc9df06eb0d72df21fe590300d136638895aa798e94209407e3cc986a218a6b825782e53c61691c7174f8d45aa7d778249d336e6bf25914f45878de6a6af70a3e34f6787a4308bad036238c3055b9692e756f359cae0114e23b1ac42124f5ed91b7a31"]}]}, 0x200}], 0x2}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
r5 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000002380)="1b0000001a007f029e741683c28f7b331d00"/27, 0x1b}], 0x1}, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000680)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000340)='cgroup2\x00', 0x2914c6a, 0x0)
creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)
acct(&(0x7f0000000100)='./file0/bus\x00')
chroot(&(0x7f0000000040)='./file0\x00')
umount2(&(0x7f0000000280)='./file0\x00', 0x0)
r6 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r6, 0x720, &(0x7f0000003080)={0x0, 0x0, 0x6, &(0x7f00000004c0)={0x20, "f4e1a2305e485b747aa95df8c01eaf07677d18bc00"}})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000400)={0x0, 0x0})
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, &(0x7f00000000c0))
syz_init_net_socket$rose(0xb, 0x5, 0x0)

1.790925154s ago: executing program 5 (id=866):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001400010000000000000000c903"], 0x1c}], 0x1, 0x0, 0x0, 0x100}, 0x0) (fail_nth: 9)

1.790714716s ago: executing program 5 (id=867):
r0 = socket$inet(0x2, 0x3, 0x4)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
sendmmsg$inet(r0, &(0x7f0000001180)=[{{&(0x7f0000000040)={0x2, 0x0, @rand_addr=0x64010101}, 0x10, 0x0}}, {{&(0x7f0000000240)={0x2, 0x4e20, @multicast2}, 0x10, &(0x7f0000000480)=[{&(0x7f0000000440)="d0d924edb6e85629f28df31a", 0xc}, {&(0x7f0000000500)="fdf7f83ded01047de91e68a6a5b5d9c94fc32975beed91b9799938ba5496d8a178d55a06f6675f6633775b41eb9807ceebf18c999448590a0eea749a1996f6fd7725df93c7dc699800ae5ec513aa408bc20af7aee8fa8780bdad17145d099bba487b9bceb53b6adfd3270478149de700f091e020f4a5c8c554b110e5c9bb6bdb47f1ae3bbf18fc5c434ca265c02949b4437dcd781b4f108305a4de84f1a6399ce7adedd5fdfb479a5795defcb67f3e8645614eb7dc451ff68d755053872b71f29c29f8c9acffec9a93cd4ddc16197204045a978eef103d1c2325154fda37e7cd4165e577b4c643646d24", 0xea}, {&(0x7f0000000600)="3cbcbdc2b82371c429e686de99b25a0185635e159cbd3f9a76049e3e4e857edcc9bb2daa8add0134558544ca10cb0c9850d9e14aa8080f2e73fcb31125f62cf28c90fb4687d341657ee4f5a8bb34345b7b2cd5f0b677b7b1b1b4b44a87dcbccb0e602d2ba5c57a2ced0cbc7972fc7b87c149ffdc3b7f1cb18201fdc9efb444058a0f16e659a1349602b9e3d10d10f51eb8d3cecaaa7a28e7edb9e55bee33aa764795c61441d008072765fe850f4dc7f2e64a5840cf318979d920259a24064afc3d1849119f24222dbc88e0df82824fefe91b36457e3f8a858cf304e9e7884ff29b0ecca24220df1d6a5920d9b3ab1033ccc95e67519937c73c", 0xf9}, {&(0x7f0000001200)="5100851d42597be7740dca18f34ad0b9cb77da0eb55ad53e6d3c26461f49eea0db0692f73abfaf3ad193372dabf70ec90c180f7ab70ded3c4c5444db0666f78cc02be79020045cd2e76cb420eb1404069960af73295ba858673415ca", 0x5c}, {0x0}], 0x5}}, {{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000880)="28ecbc1148d3da445419238a1ca10f061e78ee45c2b75f207b644f81299b255aec30e71d607bd9f83fb1f59077a48f", 0x2f}, {&(0x7f00000008c0)="60dcd6630975db7238452c2c5657c15765a2e80225170701763606a6edb1f10941d540cb15dfb105f64da08e2e9c946ad9720fc082c5177feb11a88e61aa77bafb7775370ef5c125f6434fad8c535ba29a70b2b16e0185f12c39d9a85f5b23bb324e47e2542e9b85fe24cc86f53eee63aedfbb66e004dc177c6d6818da194fc0a5b5b7424e8622e934ad36e9a44499a0248b968e5a84065c184cacba440b5383d5c1dc0ebe438ea6fd5ad3f385d23044a0f0e14df878c74e406e24e8e6b818758381", 0xc2}, {&(0x7f00000009c0)}, {&(0x7f0000000a00)="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", 0xfa}], 0x4, &(0x7f0000000b40)=[@ip_ttl={{0x10, 0x0, 0x2, 0x3}}, @ip_retopts={{0x10, 0x0, 0x7, {[@end]}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x502}}, @ip_tos_int={{0x10, 0x0, 0x1, 0xfb6d}}], 0x40}}, {{&(0x7f0000000b80)={0x2, 0x4e24, @remote}, 0x10, &(0x7f0000001100)=[{&(0x7f0000000c00)="cecf804be53cb2b0b50e852d6002879a0bf4f08e", 0x14}, {&(0x7f0000000c40)}, {&(0x7f0000000d00)="cc7d53036d8dd013602d38cf9434b8398ef543cc312da5dd099dd0d6eca22ab8817ba1e066e9beda61e06246e36e3edc3617712637779c7f423f85409825179a68a37da19718108c8586cee64504cc04b3ca5b5b6eef2d1feec9bb34c1255ee344", 0x61}, {&(0x7f0000000d80)="628a8799e23d576f5809ef4370816c01987dc1d432cc348123ea95f6f84f93e1c1d12295d30e3f6b6fd7d299114ed4549d9dc0c553b75d553ff3a8c834a081e74a6fc9617306443033c593e52408bacbd9e4ab1d20", 0x55}, {&(0x7f0000000e00)="320012414141a1a2986d660ba361f7d8134e26664031f015df5ac29b7a97bc0eca17db9046399881dce75b79cc55339de6880be3f524d79f9c172a1a8eb71e99eec56668d13badfa9ac8d933c6e6d3665e29b3287ccbf94d4871646bca749577a61499c435e1b40ce7e331239c3f8382b59ab2a923", 0x75}, {&(0x7f0000000e80)="a729adee5c7e96a10b74a639355d5ab60fbb47a88b9819ef6a3e8bb4e990f98e05426063ab055a5de9c85073c15d115552150f26ab2c153ad3e3197f001eebd0c8903023f0d69defec583248710812e64344cc7b87421fb9a9dd0540fbd2986b84296dc2aba2dec0b655148549c65d5982fea048605fac4de3833d7710de73d14fa6cae09ce66b02fc13530aafa6a4d50dd1f9502459e7", 0x97}, {&(0x7f0000000f80)="28de5d0f3d3dbce0a1ff16ff8bca8521c2d31b7d46ee3f392f43716eef3e1be5e2e0db0cb18749ec1625eceebbb28fdd70cd9da28fc348c305d82232f3b897725a27d3a90e1162bf6afd88d8090e5beb250ecb5ce1f6339d1eca672c01b9b0f50a35df26f599ca45e5e32eaed10b", 0x6e}, {&(0x7f0000001000)="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", 0xfa}], 0x8}}], 0x4, 0x0)

1.754468551s ago: executing program 5 (id=868):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@private1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet6(r0, &(0x7f0000000080)={&(0x7f0000000100)={0xa, 0x4e21, 0x80000, @remote}, 0x17, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000"], 0x18}, 0x0)

1.699980004s ago: executing program 5 (id=869):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @win={{0x4, 0x52, 0x4, 0x9b}, 0x3, 0x0, &(0x7f0000000300)={{0x80000000, 0xffffffff, 0x9, 0xe06b}}, 0x5, &(0x7f0000000380)="c6ee8b927808006d174e6bf48d7b487a541cd3", 0x1}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket(0x2000000000000021, 0x2, 0x10000000000002)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf)
r3 = fcntl$dupfd(r2, 0x0, r2)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
ioctl$TCFLSH(r3, 0x400455c8, 0x20000000009)
r5 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r5, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r5, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0xcc, &(0x7f0000000080)={{0xa, 0x4e22, 0x7, @local, 0x55437151}, {0xa, 0x4e20, 0xfffffffe, @mcast1, 0xfffffffc}, 0xffffffffffffffff, {[0x60000010, 0x435d3c68, 0x8, 0xe, 0x6, 0x4, 0x3, 0x2]}}, 0x5c)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000008080)={0x0, 0x0, &(0x7f0000001240)=[{0x0, 0x2198}, {0x0}], 0x2}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)

1.320220632s ago: executing program 0 (id=870):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$alg(0x26, 0x5, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/cpuinfo\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x4)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000040)=0x32)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="500000000008010100000000000000418b5529ff6047145b5de59dac28000200000e050003001d000000050003000600000006000240020000002400048008000740fffffffe08000640e2ff7f0308200940000000100800074000000004"], 0x50}}, 0x20048004)
syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
getpeername(r4, 0x0, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0x0, [{}, {}, {}, {0x1}, {}, {0xfffffffa, 0x6}], 0x0, 0x0, 0x8, 0x0, 0x1}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2000005, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$vim2m(&(0x7f0000000180), 0x0, 0x2)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x2, 0x0, 0x2, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000004c0)={'#! ', './file0'}, 0x1f7000)
openat$procfs(0xffffff9c, &(0x7f0000001080)='/proc/meminfo\x00', 0x0, 0x0)
syz_io_uring_setup(0x10b, &(0x7f00000000c0)={0x0, 0x68f0, 0x80, 0x1, 0x1df}, &(0x7f0000000300), &(0x7f0000000280))

1.130070612s ago: executing program 6 (id=871):
mount$bind(0x0, 0x0, 0x0, 0x100000, 0xffffffff)

948.265052ms ago: executing program 6 (id=872):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f0000000680)=ANY=[], 0x0, 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x5, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
ioctl$NBD_SET_TIMEOUT(0xffffffffffffffff, 0xab09, 0x5)
socket$key(0xf, 0x3, 0x2)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r2, 0xc02064b6, &(0x7f00000001c0)={r3, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r2, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000380)={0x0, 0x1, &(0x7f0000000440)=[r4], &(0x7f0000000200), 0x0, &(0x7f0000000040)})
write$apparmor_current(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[], 0x17)

946.097633ms ago: executing program 4 (id=873):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100f5ffffffffffffff0000000a20000000000a010200000000000000000100ffff0900010073797a300000000040000000030a01080000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a30000000004c000000060a010400000000000000000100000008000b40000000000900010073797a300000000024000480200081"], 0xd4}}, 0x0)

849.49399ms ago: executing program 4 (id=874):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x28, 0x9, 0x6, 0x801, 0x0, 0x0, {0x7, 0x0, 0xefff}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x39}]}, 0x28}}, 0x24040865)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='pids.events\x00', 0x26e1, 0x0)
close(r0)
r1 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r1, 0xc0045627, &(0x7f00000000c0)=0x3)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f0000000200)={0x0, @bt={0x8a5, 0x93, 0x1, 0x2, 0xd59f80, 0x196f, 0x100, 0x19ef, 0x2800, 0x5, 0x2800, 0x2, 0x3, 0xbb6, 0x16, 0x10, {0x81, 0xfffffff8}, 0xd0, 0x9}})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r0, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000300202800"})

848.014297ms ago: executing program 4 (id=875):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000200), 0x4002, &(0x7f0000000040)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@uuid_null}], [], 0x2c})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0xeaff, &(0x7f0000000440)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@index_off}]})

779.777728ms ago: executing program 4 (id=876):
r0 = socket$inet(0x2, 0x3, 0x4)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
sendmmsg$inet(r0, &(0x7f0000001180)=[{{&(0x7f0000000040)={0x2, 0x0, @rand_addr=0x64010101}, 0x10, 0x0}}, {{&(0x7f0000000240)={0x2, 0x4e20, @multicast2}, 0x10, &(0x7f0000000480)=[{&(0x7f0000000440)="d0d924edb6e85629f28df31a", 0xc}, {&(0x7f0000000500)="fdf7f83ded01047de91e68a6a5b5d9c94fc32975beed91b9799938ba5496d8a178d55a06f6675f6633775b41eb9807ceebf18c999448590a0eea749a1996f6fd7725df93c7dc699800ae5ec513aa408bc20af7aee8fa8780bdad17145d099bba487b9bceb53b6adfd3270478149de700f091e020f4a5c8c554b110e5c9bb6bdb47f1ae3bbf18fc5c434ca265c02949b4437dcd781b4f108305a4de84f1a6399ce7adedd5fdfb479a5795defcb67f3e8645614eb7dc451ff68d755053872b71f29c29f8c9acffec9a93cd4ddc16197204045a978eef103d1c2325154fda37e7cd4165e577b4c643646d24", 0xea}, {&(0x7f0000000600)="3cbcbdc2b82371c429e686de99b25a0185635e159cbd3f9a76049e3e4e857edcc9bb2daa8add0134558544ca10cb0c9850d9e14aa8080f2e73fcb31125f62cf28c90fb4687d341657ee4f5a8bb34345b7b2cd5f0b677b7b1b1b4b44a87dcbccb0e602d2ba5c57a2ced0cbc7972fc7b87c149ffdc3b7f1cb18201fdc9efb444058a0f16e659a1349602b9e3d10d10f51eb8d3cecaaa7a28e7edb9e55bee33aa764795c61441d008072765fe850f4dc7f2e64a5840cf318979d920259a24064afc3d1849119f24222dbc88e0df82824fefe91b36457e3f8a858cf304e9e7884ff29b0ecca24220df1d6a5920d9b3ab1033ccc95e67519937c73c", 0xf9}, {&(0x7f0000001200)="5100851d42597be7740dca18f34ad0b9cb77da0eb55ad53e6d3c26461f49eea0db0692f73abfaf3ad193372dabf70ec90c180f7ab70ded3c4c5444db0666f78cc02be79020045cd2e76cb420eb1404069960af73295ba858673415ca", 0x5c}, {&(0x7f0000000780)}], 0x5}}, {{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000880)="28ecbc1148d3da445419238a1ca10f061e78ee45c2b75f207b644f81299b255aec30e71d607bd9f83fb1f59077a48f", 0x2f}, {&(0x7f00000008c0)="60dcd6630975db7238452c2c5657c15765a2e80225170701763606a6edb1f10941d540cb15dfb105f64da08e2e9c946ad9720fc082c5177feb11a88e61aa77bafb7775370ef5c125f6434fad8c535ba29a70b2b16e0185f12c39d9a85f5b23bb324e47e2542e9b85fe24cc86f53eee63aedfbb66e004dc177c6d6818da194fc0a5b5b7424e8622e934ad36e9a44499a0248b968e5a84065c184cacba440b5383d5c1dc0ebe438ea6fd5ad3f385d23044a0f0e14df878c74e406e24e8e6b818758381", 0xc2}, {&(0x7f00000009c0)}, {&(0x7f0000000a00)="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", 0xfa}], 0x4, &(0x7f0000000b40)=[@ip_ttl={{0x10, 0x0, 0x2, 0x3}}, @ip_retopts={{0x10, 0x0, 0x7, {[@end]}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x502}}, @ip_tos_int={{0x10, 0x0, 0x1, 0xfb6d}}], 0x40}}, {{&(0x7f0000000b80)={0x2, 0x4e24, @remote}, 0x10, &(0x7f0000001100)=[{&(0x7f0000000c00)="cecf804be53cb2b0b50e852d6002879a0bf4f08e", 0x14}, {&(0x7f0000000c40)}, {&(0x7f0000000d00)="cc7d53036d8dd013602d38cf9434b8398ef543cc312da5dd099dd0d6eca22ab8817ba1e066e9beda61e06246e36e3edc3617712637779c7f423f85409825179a68a37da19718108c8586cee64504cc04b3ca5b5b6eef2d1feec9bb34c1255ee344", 0x61}, {&(0x7f0000000d80)="628a8799e23d576f5809ef4370816c01987dc1d432cc348123ea95f6f84f93e1c1d12295d30e3f6b6fd7d299114ed4549d9dc0c553b75d553ff3a8c834a081e74a6fc9617306443033c593e52408bacbd9e4ab1d20", 0x55}, {&(0x7f0000000e00)="320012414141a1a2986d660ba361f7d8134e26664031f015df5ac29b7a97bc0eca17db9046399881dce75b79cc55339de6880be3f524d79f9c172a1a8eb71e99eec56668d13badfa9ac8d933c6e6d3665e29b3287ccbf94d4871646bca749577a61499c435e1b40ce7e331239c3f8382b59ab2a923", 0x75}, {&(0x7f0000000e80)="a729adee5c7e96a10b74a639355d5ab60fbb47a88b9819ef6a3e8bb4e990f98e05426063ab055a5de9c85073c15d115552150f26ab2c153ad3e3197f001eebd0c8903023f0d69defec583248710812e64344cc7b87421fb9a9dd0540fbd2986b84296dc2aba2dec0b655148549c65d5982fea048605fac4de3833d7710de73d14fa6cae09ce66b02fc13530aafa6a4d50dd1f9502459e7", 0x97}, {&(0x7f0000000f80)="28de5d0f3d3dbce0a1ff16ff8bca8521c2d31b7d46ee3f392f43716eef3e1be5e2e0db0cb18749ec1625eceebbb28fdd70cd9da28fc348c305d82232f3b897725a27d3a90e1162bf6afd88d8090e5beb250ecb5ce1f6339d1eca672c01b9b0f50a35df26f599ca45e5e32eaed10b", 0x6e}, {&(0x7f0000001000)="73969053eabaa7c61b7d3abe08121f4cc189bd2121f91c0b9eabd6dd5608729f57323d93661bd655c090e4d5ef91a101df69052a4282f8f318c37c0201ddfe9b9afba2ff51b9866b9204531c815e2b346860e32f4a5edfc30ebb0d83b8dfc1776ee47974308394b6f2497a8924c4835ac74fa521cb48af1d8e111c936d73426682590f34d55bd640ad1ef456c40beb57c38b1ba83c52cea62c1c58da0b66cb65202df1f1ff0edf76740e566afba258bad321efd2e48bffff83facfc42e32c4ad16815cf4fbf6124d892c301fee7822c295d6586d69a7f3e12613a8a825b8aab39c69754ca77fc9ca0d5e80b11d5d8252653fbb71c150f5399861", 0xfa}], 0x8}}], 0x4, 0x0)

779.153892ms ago: executing program 4 (id=877):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x7, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9c, 0x11e41e7a, 0x7, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x101}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_ECN_PROB={0x8, 0x9, 0x64}]}}]}, 0x3c}}, 0x0)
setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000180)={@empty}, 0x14)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
r7 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r7, 0x29, 0x4a, &(0x7f0000000040)=0x7, 0x4)
sendto(r7, &(0x7f00000002c0)="d1fcf7e7af071647c5ae173bddcbece87310969aa62dc70f7fe8aeefc9c15db1fb66f0041743ae74f496f089aaaff1517c802fb453293e0fecc3d151a92b0bc6e6b02b7bcfb014b15cced1d789088d62d0d0806c566cc40a252ba20aba405071787fe682a032ea7bb6cf5d771619269a06b3b923395f1ead6b29fd5986536fed8bde95957dc35bac927b448abaf84d6c3f", 0x91, 0x4004000, &(0x7f0000000380)=@in={0x2, 0x4e22, @empty}, 0x80)
r8 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r9=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000240)={'lo\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002fc0)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_RTT={0x8, 0x7, 0x80000000}]}}]}, 0x3c}}, 0x0)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000063d3635c0017000000500006804c00040067636d28616573290000000000000000000000000000000000000000000000c82ee91108b90024000000e37de66a65122c567774fc00f600200096d54442092098ea4388286edd4d0a091c64076b"], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_emit_ethernet(0x3e, &(0x7f0000000140)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr, @broadcast}, @dest_unreach={0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @multicast1}}}}}}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x3ff)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x169043, 0x51)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
connect$unix(r11, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r12, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r11, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

170.84569ms ago: executing program 0 (id=878):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x1, @empty, 0xf684}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000008000400699b000008001b"], 0x30}}, 0x0)
connect$pppl2tp(r0, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, {0xa, 0x0, 0x8, @rand_addr=' \x01\x00'}}}, 0x32)

170.53496ms ago: executing program 0 (id=879):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_NG_DREG={0x8}, @NFTA_NG_MODULUS={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xc4}}, 0x3000000)

100.419655ms ago: executing program 0 (id=880):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000180)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
r3 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r4, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r1, 0xc06864a2, &(0x7f00000005c0)={0x0, 0x0, r2, r5, 0x9, 0x3, 0x401, 0x5, {0x1ff, 0x7, 0x8, 0xfe00, 0x7ff, 0x0, 0xaca, 0x1, 0xff, 0x5, 0x2, 0x4, 0x7, 0x6, "99ea41fdf050a0f43d64381232d238fa9ef92dfedbea28863fd059c4ae4ba259"}})
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x14, r6, 0x73976972ba3f4b55, 0x0, 0x0, {0x8}}, 0x14}}, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r7, 0x3)
pwritev(r1, &(0x7f0000000700)=[{&(0x7f0000000280)="5d7aee3b073a9e2b9360ec989975dba9cc05d77ebef729df800d5e604bfed34c244db5d38fe8b5e16d0b1aa965ad364ca3a34e33c1534e54c0122b09056984e52f2b797059b99baac4973effd2086cd5adfda63033922ba05aea4cb3b70bc3b7a81205d3d5bdbfb39e6df793b6556b340de6684379dd3555cffb18bec9eee19e10ca400abbe834b3870fa568ac952a5485def1d7c34d8b424c31bb2bdc40e3a735da01d00de0bf911dacf9a46bb0d5911ee7aaed1b65175744df914dab7eb6cf1378f10c54e47078754d08c66298e26dc987723fc1994b7d862149889b69f07352e3b0e5236556d72ea84db4a3b3668fffdc369e9b", 0xf5}, {&(0x7f0000000380)="f7fff4adf001a71bfb85306e25737ee2a2dd59", 0x13}, {&(0x7f0000000440)="fbb2f3fec1cbff678abbac1a09b99737c572aee8d5d19c9da7c4bade847646a4d11fc821ee6e821f44038b89483ba116d4be2e542fe1d2685bd173ee37c08158d5c37fb2a04dafdea4de32826573cca94880da5b1f26fb5696a9d60fd26b793d8ba2ccea309550c886e04310dc70007e97b56ba918d5b87b4d74aba8d49c", 0x7e}, {&(0x7f00000004c0)="41ec646b915e7eb2840845f63f5722aaf1d7be5823b4060f32d1ddf255ccd1496959893c023f3b8d2101de043fcc5167d57c2e73fe574ca892730cba5cb9bc9157fd0447d610fb7472a9db933004e275ead3653ae9bcf8f45e7a212f4b3dd556c8c3ff9330e830eb3360d430e37e445d5b4b768dda31f7e9bae3eceb59e9a318fb2410f0587bfa610f89b9262704f924ea0c0eba460999d0ca0ffcb8d6b17b8d18d8f6541b3d9e518a408cec68ba", 0xae}, {&(0x7f0000000580)="a23ff7", 0x3}, {&(0x7f0000000680)="1e1eb49b14d7a0c043f90ffcf520e0bf3b383179364d333e6deea8884e0a383f1e1affe8a7531485b1d9de1d", 0x2c}, {&(0x7f00000006c0)="b6356f1d6a4d8ab0ef81bec07e05aaf3ec5eb9411e37cb", 0x17}], 0x7, 0x6, 0x5)
bind$ax25(0xffffffffffffffff, &(0x7f0000000200)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x2}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x2, 0xffff, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x7, 0xf72}]}}}}}}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r8=>r7, {0x7}}, './file0\x00'})
ioctl$HIDIOCSREPORT(r8, 0x400c4808, &(0x7f00000000c0)={0x3, 0x1, 0x2})
syz_emit_ethernet(0x82, &(0x7f00000005c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x18, 0x2, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x6}, @exp_smc={0xfe, 0x6}, @exp_fastopen={0xfe, 0x10, 0xf989, "9fca59893b5031248415bcf1"}, @timestamp={0x8, 0xa, 0x200, 0x9}, @sack={0x5, 0xa, [0x2, 0x2]}, @exp_fastopen={0xfe, 0xb, 0xf989, "43ecdca921d221"}, @sack_perm={0x4, 0x2}, @fastopen={0x22, 0x6, "8537c855"}, @sack={0x5, 0x2}]}}}}}}}, 0x0)

50.797753ms ago: executing program 0 (id=881):
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x1000000, &(0x7f00000004c0)={[{@userxattr}, {@nfs_export_off}]})

0s ago: executing program 0 (id=882):
r0 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000100)=ANY=[@ANYBLOB="e4050000160001000000000000000000e0000001000000000006000000000000fe88000000000000000000000000000100000100"/64, @ANYRES32=<r4=>0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x5e4}}, 0x0)
r5 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000080)={0x0, 0x8000fd})
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r5)
openat$kvm(0xffffff9c, &(0x7f00000007c0), 0x240000, 0x0)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r5})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r6)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x44, r7, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0xfeffffff}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x1}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @local}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}]}, 0x44}}, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f00000002c0)={0x1, r5})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000380)={0x0, 0x1fffe000000})
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_SEND_PRIO(r8, 0x6b, 0x3, &(0x7f0000000080)=0x4025, 0x4)
r9 = dup(0xffffffffffffffff)
socket$nl_crypto(0x10, 0x3, 0x15)
write$6lowpan_enable(r9, &(0x7f0000000000)='0', 0xfffffd2c)
syz_emit_ethernet(0x4a, &(0x7f0000002640)=ANY=[@ANYRES16=r4, @ANYRES8=r1, @ANYBLOB="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", @ANYRES16], 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000640)=ANY=[@ANYBLOB="00000000000000008508"])
sendmsg$RDMA_NLDEV_CMD_GET(r9, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x30, 0x1401, 0x200, 0x70bd25, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x40)

kernel console output (not intermixed with test programs):


[  110.464763][ T7483]  ? lock_acquire+0x2f/0xb0
[  110.466072][ T7483]  ? tomoyo_mount_permission+0x149/0x420
[  110.467647][ T7483]  tomoyo_mount_permission+0x16e/0x420
[  110.469204][ T7483]  ? tomoyo_mount_permission+0x149/0x420
[  110.470824][ T7483]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  110.472560][ T7483]  ? get_current_fs_domain+0x184/0x1f0
[  110.474130][ T7483]  security_sb_mount+0x9b/0x260
[  110.475555][ T7483]  path_mount+0x129/0x1f00
[  110.476875][ T7483]  ? kmem_cache_free+0x152/0x4c0
[  110.478307][ T7483]  ? __pfx_path_mount+0x10/0x10
[  110.479801][ T7483]  ? putname+0x13c/0x180
[  110.481053][ T7483]  __ia32_sys_mount+0x292/0x310
[  110.482458][ T7483]  ? __pfx___ia32_sys_mount+0x10/0x10
[  110.484011][ T7483]  __do_fast_syscall_32+0x73/0x120
[  110.485510][ T7483]  do_fast_syscall_32+0x32/0x80
[  110.486933][ T7483]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.488666][ T7483] RIP: 0023:0xf7f12579
[  110.489851][ T7483] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.495362][ T7483] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  110.497773][ T7483] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200005c0
[  110.500019][ T7483] RDX: 0000000000000000 RSI: 0000000000100000 RDI: 0000000000000000
[  110.502291][ T7483] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.504568][ T7483] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  110.506859][ T7483] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.509125][ T7483]  </TASK>
[  110.510086][    C3] vkms_vblank_simulate: vblank timer overrun
[  110.772288][ T5956] Bluetooth: hci1: command tx timeout
[  111.161477][ T5951] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  111.198364][ T7503] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  111.268536][ T7522] netlink: 12 bytes leftover after parsing attributes in process `syz.4.383'.
[  111.282249][ T7522] FAULT_INJECTION: forcing a failure.
[  111.282249][ T7522] name failslab, interval 1, probability 0, space 0, times 0
[  111.287887][ T7522] CPU: 0 UID: 0 PID: 7522 Comm: syz.4.383 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  111.291223][ T7522] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  111.294226][ T7522] Call Trace:
[  111.295205][ T7522]  <TASK>
[  111.296065][ T7522]  dump_stack_lvl+0x16c/0x1f0
[  111.297473][ T7522]  should_fail_ex+0x497/0x5b0
[  111.298848][ T7522]  ? fs_reclaim_acquire+0xae/0x150
[  111.300584][ T7522]  should_failslab+0xc2/0x120
[  111.302397][ T7522]  __kmalloc_cache_noprof+0x68/0x420
[  111.304409][ T7522]  ? do_raw_read_unlock+0x44/0xe0
[  111.306370][ T7522]  ? lockdep_init_map_type+0x16d/0x7d0
[  111.308540][ T7522]  fl_init+0x45/0x2c0
[  111.310135][ T7522]  tc_new_tfilter+0x11c0/0x23a0
[  111.312057][ T7522]  ? __pfx_tc_new_tfilter+0x10/0x10
[  111.313688][ T7522]  ? __pfx___lock_acquire+0x10/0x10
[  111.315271][ T7522]  ? kmem_cache_free+0x152/0x4c0
[  111.316713][ T7522]  ? aa_get_newest_label+0x376/0x680
[  111.318257][ T7522]  ? find_held_lock+0x2d/0x110
[  111.319645][ T7522]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  111.321296][ T7522]  ? __pfx_lock_release+0x10/0x10
[  111.323173][ T7522]  ? trace_lock_acquire+0x14e/0x1f0
[  111.325274][ T7522]  ? __pfx_tc_new_tfilter+0x10/0x10
[  111.327418][ T7522]  rtnetlink_rcv_msg+0x95b/0xea0
[  111.329310][ T7522]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  111.331270][ T7522]  ? __pfx___dev_queue_xmit+0x10/0x10
[  111.333348][ T7522]  netlink_rcv_skb+0x165/0x410
[  111.334805][ T7522]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  111.336370][ T7522]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  111.337934][ T7522]  ? netlink_deliver_tap+0x1ae/0xca0
[  111.339647][ T7522]  netlink_unicast+0x53c/0x7f0
[  111.341179][ T7522]  ? __pfx_netlink_unicast+0x10/0x10
[  111.343314][ T7522]  ? __phys_addr_symbol+0x30/0x80
[  111.345259][ T7522]  ? __check_object_size+0x488/0x710
[  111.347327][ T7522]  netlink_sendmsg+0x8b8/0xd70
[  111.349268][ T7522]  ? __pfx_netlink_sendmsg+0x10/0x10
[  111.350887][ T7522]  ____sys_sendmsg+0x9ae/0xb40
[  111.352286][ T7522]  ? __pfx_____sys_sendmsg+0x10/0x10
[  111.354234][ T7522]  ? get_compat_msghdr+0x11b/0x170
[  111.356019][ T7522]  ___sys_sendmsg+0x135/0x1e0
[  111.357847][ T7522]  ? __pfx____sys_sendmsg+0x10/0x10
[  111.359928][ T7522]  ? __pfx_lock_release+0x10/0x10
[  111.361796][ T7522]  ? trace_lock_acquire+0x14e/0x1f0
[  111.363669][ T7522]  ? __fget_files+0x206/0x3a0
[  111.365598][ T7522]  __sys_sendmsg+0x16e/0x220
[  111.367476][ T7522]  ? __pfx___sys_sendmsg+0x10/0x10
[  111.369589][ T7522]  __do_fast_syscall_32+0x73/0x120
[  111.371649][ T7522]  do_fast_syscall_32+0x32/0x80
[  111.373622][ T7522]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  111.376034][ T7522] RIP: 0023:0xf70fe579
[  111.377643][ T7522] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  111.384372][ T7522] RSP: 002b:00000000f50f055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  111.386791][ T7522] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  111.389039][ T7522] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  111.391285][ T7522] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  111.393609][ T7522] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  111.396120][ T7522] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  111.398590][ T7522]  </TASK>
[  111.891573][   T25] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  112.051228][ T1016] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  112.237218][ T1016] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  112.244342][ T1016] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  112.247743][ T1016] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  112.250295][ T1016] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  112.281921][ T1016] usb 7-1: Manufacturer: syz
[  112.285386][ T1016] usb 7-1: config 0 descriptor??
[  112.312011][   T25] usb 9-1: Using ep0 maxpacket: 16
[  112.332689][   T25] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.337857][   T25] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  112.340837][   T25] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  112.344561][   T25] usb 9-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  112.347260][   T25] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.351113][   T25] usb 9-1: config 0 descriptor??
[  112.396979][ T1016] rc_core: IR keymap rc-hauppauge not found
[  112.440623][ T1016] Registered IR keymap rc-empty
[  112.444481][ T1016] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  112.447832][ T1016] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input8
[  112.492922][ T7567] netlink: 4 bytes leftover after parsing attributes in process `syz.2.387'.
[  112.554176][ T5987] usb 7-1: USB disconnect, device number 4
[  112.851400][ T5951] Bluetooth: hci1: command tx timeout
[  112.864550][   T25] usbhid 9-1:0.0: can't add hid device: -71
[  112.866499][   T25] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  112.872531][   T25] usb 9-1: USB disconnect, device number 2
[  113.677350][ T7599] FAULT_INJECTION: forcing a failure.
[  113.677350][ T7599] name failslab, interval 1, probability 0, space 0, times 0
[  113.682093][ T7599] CPU: 0 UID: 0 PID: 7599 Comm: syz.2.395 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  113.685363][ T7599] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.689958][ T7599] Call Trace:
[  113.691244][ T7599]  <TASK>
[  113.692149][ T7599]  dump_stack_lvl+0x16c/0x1f0
[  113.693519][ T7599]  should_fail_ex+0x497/0x5b0
[  113.694874][ T7599]  should_failslab+0xc2/0x120
[  113.696237][ T7599]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  113.697806][ T7599]  ? trace_lock_acquire+0x14e/0x1f0
[  113.699270][ T7599]  ? __pfx_mark_lock+0x10/0x10
[  113.700678][ T7599]  ? skb_clone+0x190/0x3f0
[  113.701979][ T7599]  skb_clone+0x190/0x3f0
[  113.703201][ T7599]  dev_queue_xmit_nit+0x38f/0xbc0
[  113.704671][ T7599]  ? rcu_is_watching+0x12/0xc0
[  113.706083][ T7599]  dev_hard_start_xmit+0x283/0x7b0
[  113.707549][ T7599]  __dev_queue_xmit+0x7f0/0x43e0
[  113.708981][ T7599]  ? hlock_class+0x4e/0x130
[  113.710275][ T7599]  ? __lock_acquire+0x15a9/0x3c40
[  113.711732][ T7599]  ? __pfx___dev_queue_xmit+0x10/0x10
[  113.713221][ T7599]  ? hlock_class+0x4e/0x130
[  113.714526][ T7599]  ? mark_lock+0xb5/0xc60
[  113.715793][ T7599]  ? __pfx___lock_acquire+0x10/0x10
[  113.717294][ T7599]  ? __pfx_mark_lock+0x10/0x10
[  113.718673][ T7599]  ? __pfx_lock_release+0x10/0x10
[  113.720111][ T7599]  ? find_held_lock+0x2d/0x110
[  113.721533][ T7599]  ? ip_finish_output2+0x7f0/0x2130
[  113.723028][ T7599]  ? __pfx_lock_release+0x10/0x10
[  113.724617][ T7599]  ? mark_held_locks+0x9f/0xe0
[  113.726008][ T7599]  neigh_connected_output+0x45c/0x630
[  113.727599][ T7599]  ip_finish_output2+0x7f0/0x2130
[  113.729075][ T7599]  ? __pfx_ip_finish_output2+0x10/0x10
[  113.730650][ T7599]  ? ip_skb_dst_mtu+0x3fc/0xc70
[  113.732073][ T7599]  ? __pfx_ip_skb_dst_mtu+0x10/0x10
[  113.733584][ T7599]  ? __pfx_nf_hook+0x10/0x10
[  113.734933][ T7599]  __ip_finish_output+0x49e/0x950
[  113.736406][ T7599]  ? __ip_make_skb+0x1150/0x1d00
[  113.737854][ T7599]  ip_finish_output+0x35/0x380
[  113.739247][ T7599]  ip_output+0x13b/0x2a0
[  113.740497][ T7599]  ? __pfx_ip_output+0x10/0x10
[  113.741914][ T7599]  ip_push_pending_frames+0x2fb/0x5b0
[  113.743461][ T7599]  raw_sendmsg+0x135c/0x3870
[  113.744815][ T7599]  ? __pfx_raw_sendmsg+0x10/0x10
[  113.746245][ T7599]  ? hlock_class+0x4e/0x130
[  113.747590][ T7599]  ? __pfx___might_resched+0x10/0x10
[  113.749122][ T7599]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  113.750828][ T7599]  ? aa_sk_perm+0x2f5/0xb20
[  113.752181][ T7599]  ? __import_iovec+0x1f2/0x6d0
[  113.753609][ T7599]  ? __pfx_raw_sendmsg+0x10/0x10
[  113.755053][ T7599]  inet_sendmsg+0x119/0x140
[  113.756386][ T7599]  ____sys_sendmsg+0x907/0xb40
[  113.757797][ T7599]  ? __pfx_____sys_sendmsg+0x10/0x10
[  113.759316][ T7599]  ? get_compat_msghdr+0x11b/0x170
[  113.760808][ T7599]  ___sys_sendmsg+0x135/0x1e0
[  113.762184][ T7599]  ? __pfx____sys_sendmsg+0x10/0x10
[  113.763711][ T7599]  ? trace_lock_acquire+0x14e/0x1f0
[  113.765218][ T7599]  __sys_sendmmsg+0x2fa/0x420
[  113.766590][ T7599]  ? __pfx___sys_sendmmsg+0x10/0x10
[  113.768286][ T7599]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  113.770037][ T7599]  ? fput+0x67/0x440
[  113.771200][ T7599]  ? ksys_write+0x1ba/0x250
[  113.772525][ T7599]  ? __pfx_ksys_write+0x10/0x10
[  113.773930][ T7599]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  113.775511][ T7599]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  113.777420][ T7599]  __do_fast_syscall_32+0x73/0x120
[  113.778902][ T7599]  do_fast_syscall_32+0x32/0x80
[  113.780312][ T7599]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  113.782154][ T7599] RIP: 0023:0xf7f26579
[  113.783341][ T7599] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  113.788867][ T7599] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  113.791265][ T7599] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001180
[  113.793561][ T7599] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  113.795812][ T7599] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  113.798083][ T7599] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  113.800327][ T7599] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  113.802610][ T7599]  </TASK>
[  113.956900][ T7608] netlink: 'syz.2.397': attribute type 4 has an invalid length.
[  113.959217][ T7608] netlink: 17 bytes leftover after parsing attributes in process `syz.2.397'.
[  114.666388][ T7626] net_ratelimit: 9 callbacks suppressed
[  114.666397][ T7626] openvswitch: netlink: Duplicate key (type 32).
[  114.671282][ T1016] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  114.832342][ T1016] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  114.834876][ T1016] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  114.838340][ T1016] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  114.841826][ T1016] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  114.845161][ T1016] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  114.849167][ T1016] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  114.852136][ T1016] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.856152][ T1016] usb 7-1: config 0 descriptor??
[  114.858308][ T7622] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  115.288433][ T1016] plantronics 0003:047F:FFFF.0007: unknown main item tag 0xd
[  115.293486][ T1016] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving
[  115.309133][ T1016] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  115.372437][ T5951] Bluetooth: hci1: unexpected cc 0x042d length: 63 > 7
[  115.575019][ T1016] usb 7-1: USB disconnect, device number 5
[  115.692694][ T7644] netlink: 'syz.3.408': attribute type 4 has an invalid length.
[  115.704748][ T7644] netlink: 'syz.3.408': attribute type 4 has an invalid length.
[  116.291644][ T5951] block nbd2: Receive control failed (result -107)
[  116.680832][ T7663] team0: No ports can be present during mode change
[  116.838014][   T40] audit: type=1326 audit(1736830220.803:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7666 comm="syz.3.415" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f12579 code=0x0
[  116.861086][ T7653] block nbd2: shutting down sockets
[  117.192080][ T7679] netlink: 20 bytes leftover after parsing attributes in process `syz.4.417'.
[  117.722815][ T7688] tipc: Started in network mode
[  117.724935][ T7688] tipc: Node identity 4, cluster identity 4711
[  117.731218][ T7688] tipc: Node number set to 4
[  118.446335][ T5956] Bluetooth: hci4: sending frame failed (-49)
[  118.448637][ T5951] Bluetooth: hci4: Entering manufacturer mode failed (-49)
[  118.634277][ T7717] 9pnet: Could not find request transport: ff
[  119.357865][ T7740] netlink: 16215 bytes leftover after parsing attributes in process `syz.2.429'.
[  119.406847][ T5951] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  119.410375][ T5951] Bluetooth: hci1: Injecting HCI hardware error event
[  119.414193][ T5951] Bluetooth: hci1: hardware error 0x00
[  120.405344][ T7786] overlayfs: missing 'lowerdir'
[  120.438345][ T7786] xt_limit: Overflow, try lower: 0/0
[  120.627966][ T7813] netlink: 24 bytes leftover after parsing attributes in process `syz.0.442'.
[  121.161698][ T7829] netlink: 12 bytes leftover after parsing attributes in process `syz.2.447'.
[  121.243694][ T7832] syz.2.449: attempt to access beyond end of device
[  121.243694][ T7832] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  121.248048][ T7832] XFS (nbd2): SB validate failed with error -5.
[  121.317155][ T7840] SET target dimension over the limit!
[  121.561653][ T5951] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  122.441573][    T9] hid-generic 0000:0000:0000.0008: item fetching failed at offset 0/1
[  122.446295][    T9] hid-generic 0000:0000:0000.0008: probe with driver hid-generic failed with error -22
[  122.659521][ T7894] geneve2: entered promiscuous mode
[  122.661104][ T7894] geneve2: entered allmulticast mode
[  122.822461][ T5987] IPVS: starting estimator thread 0...
[  122.911407][ T7904] IPVS: using max 40 ests per chain, 96000 per kthread
[  123.116202][ T7907] FAULT_INJECTION: forcing a failure.
[  123.116202][ T7907] name failslab, interval 1, probability 0, space 0, times 0
[  123.120230][ T7907] CPU: 1 UID: 0 PID: 7907 Comm: syz.0.469 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  123.123292][ T7907] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.126350][ T7907] Call Trace:
[  123.127340][ T7907]  <TASK>
[  123.128199][ T7907]  dump_stack_lvl+0x16c/0x1f0
[  123.129590][ T7907]  should_fail_ex+0x497/0x5b0
[  123.131103][ T7907]  ? fs_reclaim_acquire+0xae/0x150
[  123.133086][ T7907]  should_failslab+0xc2/0x120
[  123.134908][ T7907]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  123.136772][ T7907]  ? vm_area_dup+0x53/0x300
[  123.138095][ T7907]  vm_area_dup+0x53/0x300
[  123.139357][ T7907]  __split_vma+0x181/0x1210
[  123.140788][ T7907]  ? mark_lock+0xb5/0xc60
[  123.142076][ T7907]  ? __pfx___split_vma+0x10/0x10
[  123.143525][ T7907]  ? hlock_class+0x4e/0x130
[  123.144860][ T7907]  vms_gather_munmap_vmas+0x1c3/0x1730
[  123.146500][ T7907]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  123.148267][ T7907]  ? mas_walk+0x6a6/0x910
[  123.149590][ T7907]  __mmap_region+0x32c/0x2760
[  123.151050][ T7907]  ? __pfx___mmap_region+0x10/0x10
[  123.152775][ T7907]  ? hlock_class+0x4e/0x130
[  123.154149][ T7907]  ? mark_lock+0xb5/0xc60
[  123.155448][ T7907]  ? process_measurement+0x1e8/0x2370
[  123.157097][ T7907]  ? __pfx___lock_acquire+0x10/0x10
[  123.158873][ T7907]  ? __pfx_process_measurement+0x10/0x10
[  123.160575][ T7907]  ? cap_mmap_addr+0x53/0x320
[  123.162013][ T7907]  mmap_region+0x127/0x320
[  123.163330][ T7907]  do_mmap+0xa09/0x1050
[  123.164580][ T7907]  vm_mmap_pgoff+0x1ba/0x360
[  123.165978][ T7907]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  123.167577][ T7907]  ? __fget_files+0x206/0x3a0
[  123.169095][ T7907]  ksys_mmap_pgoff+0x32c/0x5c0
[  123.170480][ T7907]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  123.172320][ T7907]  __do_fast_syscall_32+0x73/0x120
[  123.173816][ T7907]  do_fast_syscall_32+0x32/0x80
[  123.175232][ T7907]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  123.177329][ T7907] RIP: 0023:0xf7fc0579
[  123.178564][ T7907] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  123.184230][ T7907] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  123.186648][ T7907] RAX: ffffffffffffffda RBX: 0000000020ffd000 RCX: 0000000000002000
[  123.188905][ T7907] RDX: 000000000100000e RSI: 0000000000008012 RDI: 0000000000000003
[  123.191363][ T7907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  123.194166][ T7907] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  123.196416][ T7907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  123.198668][ T7907]  </TASK>
[  123.725607][ T7924] syz.3.473 (7924): /proc/7923/oom_adj is deprecated, please use /proc/7923/oom_score_adj instead.
[  124.014858][ T7932] netlink: 8 bytes leftover after parsing attributes in process `syz.4.474'.
[  124.164754][ T7946] fuse: Bad value for 'rootmode'
[  124.266491][ T7952] netlink: 12 bytes leftover after parsing attributes in process `syz.3.481'.
[  125.174188][ T1016] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  125.351233][ T1016] usb 5-1: Using ep0 maxpacket: 8
[  125.354779][ T1016] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  125.358640][ T1016] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  125.361405][ T1016] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.364631][ T1016] usb 5-1: config 0 descriptor??
[  125.576424][ T1016] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  125.765524][ T7986] netlink: 12 bytes leftover after parsing attributes in process `syz.2.493'.
[  125.768425][ T7986] FAULT_INJECTION: forcing a failure.
[  125.768425][ T7986] name failslab, interval 1, probability 0, space 0, times 0
[  125.773255][ T7986] CPU: 3 UID: 0 PID: 7986 Comm: syz.2.493 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  125.776401][ T7986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.779419][ T7986] Call Trace:
[  125.780383][ T7986]  <TASK>
[  125.781224][ T7986]  dump_stack_lvl+0x16c/0x1f0
[  125.782552][ T7986]  should_fail_ex+0x497/0x5b0
[  125.783900][ T7986]  ? fs_reclaim_acquire+0xae/0x150
[  125.785325][ T7986]  should_failslab+0xc2/0x120
[  125.786791][ T7986]  __kmalloc_node_noprof+0xd1/0x520
[  125.788350][ T7986]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  125.789899][ T7986]  __kvmalloc_node_noprof+0xad/0x1a0
[  125.791430][ T7986]  bucket_table_alloc.isra.0+0x86/0x460
[  125.792968][ T7986]  ? __raw_spin_lock_init+0x3a/0x110
[  125.794431][ T7986]  rhashtable_init_noprof+0x43b/0x7d0
[  125.795979][ T7986]  fl_init+0x22e/0x2c0
[  125.797552][ T7986]  tc_new_tfilter+0x11c0/0x23a0
[  125.799335][ T7986]  ? __pfx_tc_new_tfilter+0x10/0x10
[  125.800843][ T7986]  ? __pfx___lock_acquire+0x10/0x10
[  125.802313][ T7986]  ? kmem_cache_free+0x152/0x4c0
[  125.803711][ T7986]  ? aa_get_newest_label+0x376/0x680
[  125.805197][ T7986]  ? find_held_lock+0x2d/0x110
[  125.806597][ T7986]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  125.808056][ T7986]  ? __pfx_lock_release+0x10/0x10
[  125.809478][ T7986]  ? trace_lock_acquire+0x14e/0x1f0
[  125.810943][ T7986]  ? __pfx_tc_new_tfilter+0x10/0x10
[  125.812412][ T7986]  rtnetlink_rcv_msg+0x95b/0xea0
[  125.813807][ T7986]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  125.815335][ T7986]  ? __pfx___dev_queue_xmit+0x10/0x10
[  125.816886][ T7986]  netlink_rcv_skb+0x165/0x410
[  125.818248][ T7986]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  125.819789][ T7986]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  125.821290][ T7986]  ? netlink_deliver_tap+0x1ae/0xca0
[  125.822792][ T7986]  netlink_unicast+0x53c/0x7f0
[  125.824155][ T7986]  ? __pfx_netlink_unicast+0x10/0x10
[  125.825674][ T7986]  ? __phys_addr_symbol+0x30/0x80
[  125.827707][ T7986]  ? __check_object_size+0x488/0x710
[  125.829573][ T7986]  netlink_sendmsg+0x8b8/0xd70
[  125.830953][ T7986]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.832626][ T7986]  ____sys_sendmsg+0x9ae/0xb40
[  125.834062][ T7986]  ? __pfx_____sys_sendmsg+0x10/0x10
[  125.835579][ T7986]  ? get_compat_msghdr+0x11b/0x170
[  125.837144][ T7986]  ___sys_sendmsg+0x135/0x1e0
[  125.838509][ T7986]  ? __pfx____sys_sendmsg+0x10/0x10
[  125.840026][ T7986]  ? __pfx_lock_release+0x10/0x10
[  125.841485][ T7986]  ? trace_lock_acquire+0x14e/0x1f0
[  125.842975][ T7986]  ? __fget_files+0x206/0x3a0
[  125.844488][ T7986]  __sys_sendmsg+0x16e/0x220
[  125.845835][ T7986]  ? __pfx___sys_sendmsg+0x10/0x10
[  125.847401][ T7986]  __do_fast_syscall_32+0x73/0x120
[  125.848851][ T7986]  do_fast_syscall_32+0x32/0x80
[  125.850279][ T7986]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.852078][ T7986] RIP: 0023:0xf7f26579
[  125.853272][ T7986] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.858772][ T7986] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  125.861162][ T7986] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  125.863411][ T7986] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  125.865667][ T7986] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.868141][ T7986] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  125.870461][ T7986] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.872615][ T7986]  </TASK>
[  125.873622][    C3] vkms_vblank_simulate: vblank timer overrun
[  126.012325][ T7993] loop6: detected capacity change from 0 to 524287999
[  126.017900][    C3] blk_print_req_error: 25 callbacks suppressed
[  126.017911][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[  126.023852][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  126.026880][    C3] buffer_io_error: 25 callbacks suppressed
[  126.026891][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  126.033611][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  126.036216][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  126.039920][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  126.042757][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  126.045178][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  126.047918][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  126.050554][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  126.054167][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  126.058369][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  126.061039][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  126.067632][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  126.070351][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  126.074066][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  126.076760][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  126.080254][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  126.082939][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  126.086321][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  126.195625][ T5987] usb 5-1: USB disconnect, device number 5
[  126.441456][ T1016] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  126.591284][ T1016] usb 7-1: Using ep0 maxpacket: 16
[  126.591474][   T40] audit: type=1326 audit(1736830230.553:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.3.500" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f12579 code=0x7ffc0000
[  126.595269][ T1016] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  126.598660][   T40] audit: type=1326 audit(1736830230.563:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.3.500" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f12579 code=0x7ffc0000
[  126.603182][ T1016] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  126.608398][   T40] audit: type=1326 audit(1736830230.563:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.3.500" exe="/syz-executor" sig=0 arch=40000003 syscall=62 compat=1 ip=0xf7f12579 code=0x7ffc0000
[  126.611555][ T1016] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  126.617341][   T40] audit: type=1326 audit(1736830230.563:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.3.500" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f12579 code=0x7ffc0000
[  126.621678][ T8005] netlink: 'syz.3.500': attribute type 4 has an invalid length.
[  126.621689][ T8005] netlink: 17 bytes leftover after parsing attributes in process `syz.3.500'.
[  126.621909][ T1016] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  126.621932][ T1016] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.622965][ T1016] usb 7-1: config 0 descriptor??
[  126.631864][ T8005] netlink: 12 bytes leftover after parsing attributes in process `syz.3.500'.
[  126.632572][   T40] audit: type=1326 audit(1736830230.563:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.3.500" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f12579 code=0x7ffc0000
[  126.632604][   T40] audit: type=1326 audit(1736830230.573:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.3.500" exe="/syz-executor" sig=0 arch=40000003 syscall=156 compat=1 ip=0xf7f12579 code=0x7ffc0000
[  126.632634][   T40] audit: type=1326 audit(1736830230.573:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.3.500" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f12579 code=0x7ffc0000
[  126.632656][   T40] audit: type=1326 audit(1736830230.573:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.3.500" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f12579 code=0x7ffc0000
[  126.632683][   T40] audit: type=1326 audit(1736830230.573:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.3.500" exe="/syz-executor" sig=0 arch=40000003 syscall=241 compat=1 ip=0xf7f12579 code=0x7ffc0000
[  126.632711][   T40] audit: type=1326 audit(1736830230.573:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8004 comm="syz.3.500" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f12579 code=0x7ffc0000
[  126.658393][ T7987] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  126.848419][ T8012] overlayfs: missing 'lowerdir'
[  126.866325][ T8012] xt_limit: Overflow, try lower: 0/0
[  127.244206][ T1016] usbhid 7-1:0.0: can't add hid device: -71
[  127.246744][ T1016] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  127.249895][ T1016] usb 7-1: USB disconnect, device number 6
[  127.290976][ T8022] netlink: 8 bytes leftover after parsing attributes in process `syz.4.506'.
[  127.419883][ T8026] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.425893][ T8026] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.611309][  T832] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  127.648063][ T8034] FAULT_INJECTION: forcing a failure.
[  127.648063][ T8034] name failslab, interval 1, probability 0, space 0, times 0
[  127.653582][ T8034] CPU: 0 UID: 0 PID: 8034 Comm: syz.0.508 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  127.657423][ T8034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.661283][ T8034] Call Trace:
[  127.662651][ T8034]  <TASK>
[  127.663912][ T8034]  dump_stack_lvl+0x16c/0x1f0
[  127.665802][ T8034]  should_fail_ex+0x497/0x5b0
[  127.667773][ T8034]  ? lockdep_hardirqs_on+0x7c/0x110
[  127.670091][ T8034]  should_failslab+0xc2/0x120
[  127.672092][ T8034]  __kmalloc_cache_noprof+0x68/0x420
[  127.674438][ T8034]  ? __pfx_ip_dst_mtu_maybe_forward.constprop.0+0x10/0x10
[  127.677214][ T8034]  ? __pfx_icmp_route_lookup.constprop.0+0x10/0x10
[  127.679581][ T8034]  ip_setup_cork+0x73e/0xab0
[  127.681541][ T8034]  ip_append_data+0x163/0x1a0
[  127.683556][ T8034]  ? __pfx_icmp_glue_bits+0x10/0x10
[  127.685792][ T8034]  icmp_push_reply+0xab/0x450
[  127.687772][ T8034]  __icmp_send+0xac1/0x1750
[  127.689728][ T8034]  ? __pfx___icmp_send+0x10/0x10
[  127.691722][ T8034]  ? kasan_save_stack+0x42/0x60
[  127.693750][ T8034]  ? kasan_addr_to_slab+0x1/0x80
[  127.695376][ T8034]  ? kasan_save_track+0x14/0x30
[  127.697313][ T8034]  ? kasan_save_free_info+0x3b/0x60
[  127.699200][ T8034]  ? __kasan_slab_free+0x51/0x70
[  127.700695][ T8034]  ? kfree_skbmem+0x1a4/0x1f0
[  127.702108][ T8034]  ? sk_skb_reason_drop+0x136/0x1a0
[  127.703602][ T8034]  ? packet_rcv+0x16c/0x15a0
[  127.705356][ T8034]  ? hlock_class+0x4e/0x130
[  127.707161][ T8034]  ? mark_lock+0xb5/0xc60
[  127.708510][ T8034]  ? raw_sendmsg+0x135c/0x3870
[  127.709813][ T8034]  ? __pfx_mark_lock+0x10/0x10
[  127.711216][ T8034]  ? __pfx_xfrm_lookup_with_ifid+0x10/0x10
[  127.713184][ T8034]  ipv4_link_failure+0x591/0xb00
[  127.714694][ T8034]  ? __pfx_ipv4_link_failure+0x10/0x10
[  127.716307][ T8034]  ? __pfx_ipv4_link_failure+0x10/0x10
[  127.717886][ T8034]  vti6_tnl_xmit+0x7d3/0x21d0
[  127.719522][ T8034]  ? packet_rcv+0x171/0x15a0
[  127.721541][ T8034]  ? __pfx_vti6_tnl_xmit+0x10/0x10
[  127.723629][ T8034]  dev_hard_start_xmit+0x9a/0x7b0
[  127.725635][ T8034]  __dev_queue_xmit+0x7f0/0x43e0
[  127.727662][ T8034]  ? hlock_class+0x4e/0x130
[  127.729512][ T8034]  ? __lock_acquire+0x15a9/0x3c40
[  127.731556][ T8034]  ? __pfx___dev_queue_xmit+0x10/0x10
[  127.733392][ T8034]  ? hlock_class+0x4e/0x130
[  127.734730][ T8034]  ? mark_lock+0xb5/0xc60
[  127.736052][ T8034]  ? __pfx___lock_acquire+0x10/0x10
[  127.737737][ T8034]  ? __pfx_mark_lock+0x10/0x10
[  127.739120][ T8034]  ? find_held_lock+0x2d/0x110
[  127.740538][ T8034]  ? ip_finish_output2+0x7f0/0x2130
[  127.742055][ T8034]  ? __pfx_lock_release+0x10/0x10
[  127.743510][ T8034]  ? mark_held_locks+0x9f/0xe0
[  127.744909][ T8034]  neigh_connected_output+0x45c/0x630
[  127.746459][ T8034]  ip_finish_output2+0x7f0/0x2130
[  127.748492][ T8034]  ? __pfx_ip_finish_output2+0x10/0x10
[  127.750675][ T8034]  ? ip_skb_dst_mtu+0x3fc/0xc70
[  127.752665][ T8034]  ? __pfx_ip_skb_dst_mtu+0x10/0x10
[  127.754730][ T8034]  ? __pfx_nf_hook+0x10/0x10
[  127.756541][ T8034]  __ip_finish_output+0x49e/0x950
[  127.758537][ T8034]  ? __ip_make_skb+0x1150/0x1d00
[  127.760601][ T8034]  ip_finish_output+0x35/0x380
[  127.762188][ T8034]  ip_output+0x13b/0x2a0
[  127.763655][ T8034]  ? __pfx_ip_output+0x10/0x10
[  127.765368][ T8034]  ip_push_pending_frames+0x2fb/0x5b0
[  127.767132][ T8034]  raw_sendmsg+0x135c/0x3870
[  127.768554][ T8034]  ? __pfx_raw_sendmsg+0x10/0x10
[  127.770027][ T8034]  ? hlock_class+0x4e/0x130
[  127.771374][ T8034]  ? __pfx___might_resched+0x10/0x10
[  127.772903][ T8034]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  127.774766][ T8034]  ? aa_sk_perm+0x2f5/0xb20
[  127.776105][ T8034]  ? __import_iovec+0x1f2/0x6d0
[  127.777578][ T8034]  ? __pfx_raw_sendmsg+0x10/0x10
[  127.779034][ T8034]  inet_sendmsg+0x119/0x140
[  127.780373][ T8034]  ____sys_sendmsg+0x907/0xb40
[  127.781795][ T8034]  ? __pfx_____sys_sendmsg+0x10/0x10
[  127.783511][ T8034]  ? get_compat_msghdr+0x11b/0x170
[  127.785060][ T8034]  ___sys_sendmsg+0x135/0x1e0
[  127.786426][ T8034]  ? __pfx____sys_sendmsg+0x10/0x10
[  127.787970][ T8034]  ? trace_lock_acquire+0x14e/0x1f0
[  127.789512][ T8034]  __sys_sendmmsg+0x2fa/0x420
[  127.790909][ T8034]  ? __pfx___sys_sendmmsg+0x10/0x10
[  127.792440][ T8034]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  127.794579][ T8034]  ? fput+0x67/0x440
[  127.796202][ T8034]  ? ksys_write+0x1ba/0x250
[  127.797908][ T8034]  ? __pfx_ksys_write+0x10/0x10
[  127.799409][ T8034]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  127.801047][ T8034]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  127.802975][ T8034]  __do_fast_syscall_32+0x73/0x120
[  127.804610][ T8034]  do_fast_syscall_32+0x32/0x80
[  127.806140][ T8034]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  127.808186][ T8034] RIP: 0023:0xf7fc0579
[  127.809396][ T8034] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  127.815268][ T8034] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  127.817782][ T8034] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001180
[  127.820053][ T8034] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  127.822331][ T8034] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  127.824657][ T8034] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  127.826953][ T8034] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  127.829289][ T8034]  </TASK>
[  127.903315][ T8043] openvswitch: netlink: Multiple metadata blocks provided
[  129.310046][ T8077] netlink: 'syz.0.522': attribute type 2 has an invalid length.
[  129.313367][ T8077] netlink: 'syz.0.522': attribute type 1 has an invalid length.
[  129.316286][ T8077] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.522'.
[  129.320912][ T8077] nbd: couldn't find device at index 1568768
[  129.466791][ T8084] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  129.468826][ T8084] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  129.474722][ T8084] vhci_hcd vhci_hcd.0: Device attached
[  129.662613][ T1016] vhci_hcd: vhci_device speed not set
[  129.731246][ T1016] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[  129.916669][ T8086] vhci_hcd: connection reset by peer
[  129.920205][ T1050] vhci_hcd: stop threads
[  129.923907][ T1050] vhci_hcd: release socket
[  129.926084][ T1050] vhci_hcd: disconnect device
[  130.029389][ T8098] overlay: Unknown parameter 'defcontext'
[  131.666963][ T8151] netlink: 4 bytes leftover after parsing attributes in process `syz.3.536'.
[  132.203714][ T1411] ieee802154 phy1 wpan1: encryption failed: -22
[  132.398166][ T8186] can0: slcan on ptm0.
[  132.531937][ T8185] can0 (unregistered): slcan off ptm0.
[  132.831312][  T832] usb 9-1: device descriptor read/64, error -110
[  132.931299][ T5956] Bluetooth: hci3: command 0x0405 tx timeout
[  133.006820][ T8211] Process accounting resumed
[  133.101349][  T832] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  133.208437][ T6009] hid-generic 0000:0000:0000.0009: item fetching failed at offset 0/1
[  133.211969][ T6009] hid-generic 0000:0000:0000.0009: probe with driver hid-generic failed with error -22
[  133.243430][  T832] usb 9-1: device descriptor read/64, error -32
[  133.341448][ T8030] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  133.351338][  T832] usb usb9-port1: attempt power cycle
[  133.614471][ T8030] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  133.616936][ T8030] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  133.620226][ T8030] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  133.623424][ T8030] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  133.626467][ T8030] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  133.630023][ T8030] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  133.633705][ T8030] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.645019][ T8030] usb 7-1: config 0 descriptor??
[  133.650074][ T8219] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  133.701285][  T832] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  133.721458][  T832] usb 9-1: device descriptor read/8, error -32
[  133.831869][  T832] raw-gadget.0 gadget.4: failed to queue suspend event
[  133.834610][  T832] raw-gadget.0 gadget.4: failed to queue reset event
[  133.901488][  T832] raw-gadget.0 gadget.4: failed to queue resume event
[  133.961571][  T832] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  133.981514][    C3] raw-gadget.0 gadget.4: ignoring, device is not running
[  133.984239][  T832] usb 9-1: device descriptor read/8, error -32
[  134.068214][ T8030] plantronics 0003:047F:FFFF.000A: unknown main item tag 0xd
[  134.072070][ T8030] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  134.077071][ T8030] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  134.101657][  T832] raw-gadget.0 gadget.4: failed to queue suspend event
[  134.111269][  T832] usb usb9-port1: unable to enumerate USB device
[  134.225811][ T8026] raw-gadget.0 gadget.4: failed to queue disconnect event
[  134.249479][ T8235] netlink: 'syz.3.553': attribute type 4 has an invalid length.
[  134.333930][  T832] usb 7-1: USB disconnect, device number 7
[  134.721328][   T35] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  134.831330][ T1016] vhci_hcd: vhci_device speed not set
[  134.882678][   T35] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.886756][   T35] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  134.889797][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.895990][   T35] usb 5-1: config 0 descriptor??
[  134.953479][ T8256] netlink: 4 bytes leftover after parsing attributes in process `syz.2.559'.
[  135.105200][   T35] usbhid 5-1:0.0: can't add hid device: -71
[  135.107111][   T35] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  135.110440][   T35] usb 5-1: USB disconnect, device number 6
[  135.408499][ T8274] input: syz1 as /devices/virtual/input/input11
[  135.479287][ T8280] netlink: 580 bytes leftover after parsing attributes in process `syz.3.567'.
[  135.483075][ T8280] netlink: 580 bytes leftover after parsing attributes in process `syz.3.567'.
[  135.561271][   T35] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  135.576737][ T8282] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  135.582410][ T8282] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.587469][ T8282] bond0 (unregistering): Released all slaves
[  135.599435][ T8286] batman_adv: batadv0: Adding interface: ipvlan3
[  135.602337][ T8286] batman_adv: batadv0: The MTU of interface ipvlan3 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.610463][ T8286] batman_adv: batadv0: Not using interface ipvlan3 (retrying later): interface not active
[  135.678251][ T8290] netlink: 'syz.4.572': attribute type 7 has an invalid length.
[  135.683512][ T8292] FAULT_INJECTION: forcing a failure.
[  135.683512][ T8292] name failslab, interval 1, probability 0, space 0, times 0
[  135.688402][ T8292] CPU: 2 UID: 0 PID: 8292 Comm: syz.3.573 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  135.691556][ T8292] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  135.694601][ T8292] Call Trace:
[  135.695567][ T8292]  <TASK>
[  135.696433][ T8292]  dump_stack_lvl+0x16c/0x1f0
[  135.697812][ T8292]  should_fail_ex+0x497/0x5b0
[  135.699169][ T8292]  should_failslab+0xc2/0x120
[  135.700543][ T8292]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  135.702194][ T8292]  ? trace_lock_acquire+0x14e/0x1f0
[  135.703850][ T8292]  ? skb_clone+0x190/0x3f0
[  135.705194][ T8292]  skb_clone+0x190/0x3f0
[  135.706503][ T8292]  dev_queue_xmit_nit+0x38f/0xbc0
[  135.708203][ T8292]  dev_hard_start_xmit+0x283/0x7b0
[  135.709691][ T8292]  __dev_queue_xmit+0x7f0/0x43e0
[  135.711115][ T8292]  ? __pfx___dev_queue_xmit+0x10/0x10
[  135.712783][ T8292]  ? rcu_is_watching+0x12/0xc0
[  135.714153][ T8292]  ? trace_kmalloc+0x2d/0xd0
[  135.714169][ T8292]  ? __kmalloc_node_track_caller_noprof+0x23b/0x520
[  135.717464][ T8292]  ? pskb_expand_head+0x236/0x1170
[  135.718937][ T8292]  ? skb_release_data+0x565/0x730
[  135.720409][ T8292]  ? kmalloc_reserve+0x13c/0x2c0
[  135.721996][ T8292]  ? skb_headers_offset_update+0x129/0x260
[  135.723815][ T8292]  ? pskb_expand_head+0x609/0x1170
[  135.725301][ T8292]  ? __pfx_pskb_expand_head+0x10/0x10
[  135.726873][ T8292]  __bpf_redirect+0x71c/0xfc0
[  135.728226][ T8292]  bpf_clone_redirect+0x2cb/0x3d0
[  135.729682][ T8292]  bpf_prog_973cd02a7a0e8181+0x5f/0x64
[  135.731268][ T8292]  ? __pfx___lock_acquire+0x10/0x10
[  135.733126][ T8292]  ? arch_stack_walk+0xa7/0x100
[  135.734725][ T8292]  ? __pfx___lock_acquire+0x10/0x10
[  135.736244][ T8292]  ? find_held_lock+0x2d/0x110
[  135.737656][ T8292]  ? bpf_test_timer_enter+0x9d/0x180
[  135.739187][ T8292]  ? __pfx_lock_release+0x10/0x10
[  135.740656][ T8292]  ? trace_lock_acquire+0x14e/0x1f0
[  135.742173][ T8292]  ? bpf_test_timer_enter+0x9d/0x180
[  135.743705][ T8292]  ? ktime_get+0x206/0x300
[  135.745027][ T8292]  ? lockdep_hardirqs_on+0x7c/0x110
[  135.746547][ T8292]  ? read_tsc+0x9/0x20
[  135.747732][ T8292]  ? __pfx___cant_migrate+0x10/0x10
[  135.749266][ T8292]  bpf_test_run+0x49d/0xa90
[  135.750596][ T8292]  ? __pfx_bpf_test_run+0x10/0x10
[  135.752057][ T8292]  ? kfree+0x490/0x4b0
[  135.753263][ T8292]  bpf_prog_test_run_skb+0xbaa/0x22c0
[  135.754835][ T8292]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  135.756542][ T8292]  ? fput+0x67/0x440
[  135.757699][ T8292]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  135.759371][ T8292]  __sys_bpf+0x1921/0x57a0
[  135.760676][ T8292]  ? __pfx_lock_release+0x10/0x10
[  135.762119][ T8292]  ? __pfx___sys_bpf+0x10/0x10
[  135.763510][ T8292]  ? vfs_write+0x306/0x1150
[  135.764833][ T8292]  ? __mutex_unlock_slowpath+0x164/0x690
[  135.766467][ T8292]  ? fput+0x67/0x440
[  135.767622][ T8292]  ? ksys_write+0x1ba/0x250
[  135.768962][ T8292]  ? __pfx_ksys_write+0x10/0x10
[  135.770366][ T8292]  __ia32_sys_bpf+0x76/0xe0
[  135.771706][ T8292]  __do_fast_syscall_32+0x73/0x120
[  135.773200][ T8292]  do_fast_syscall_32+0x32/0x80
[  135.774603][ T8292]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  135.776438][ T8292] RIP: 0023:0xf7f12579
[  135.777644][ T8292] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  135.783121][ T8292] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  135.785540][ T8292] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000080
[  135.787825][ T8292] RDX: 000000000000002c RSI: 0000000000000000 RDI: 0000000000000000
[  135.788499][ T8298] can0: slcan on ttyS3.
[  135.790077][ T8292] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  135.790086][ T8292] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  135.790093][ T8292] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  135.790106][ T8292]  </TASK>
[  135.790206][    C2] vkms_vblank_simulate: vblank timer overrun
[  135.791337][   T35] usb 5-1: Using ep0 maxpacket: 32
[  135.803702][   T35] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  135.806650][   T35] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  135.809211][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.814690][   T35] usb 5-1: config 0 descriptor??
[  135.819594][   T35] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  135.825811][   T35] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  136.021601][ T8303] can0 (unregistered): slcan off ttyS3.
[  136.119125][ T8325] netlink: 36 bytes leftover after parsing attributes in process `syz.2.579'.
[  136.646278][ T2103] usb 5-1: USB disconnect, device number 7
[  136.651780][ T2103] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  136.768363][ T8351] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_bond, syncid = 1, id = 0
[  137.729624][   T57] libceph: connect (1)[c::]:6789 error -101
[  137.732842][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  137.742611][   T57] libceph: connect (1)[c::]:6789 error -101
[  137.745946][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  137.871403][ T8375] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  137.879028][ T8375] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  138.004037][   T57] libceph: connect (1)[c::]:6789 error -101
[  138.006301][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  138.081931][ T8370] ceph: No mds server is up or the cluster is laggy
[  138.267025][ T8395] FAULT_INJECTION: forcing a failure.
[  138.267025][ T8395] name failslab, interval 1, probability 0, space 0, times 0
[  138.270707][ T8395] CPU: 3 UID: 0 PID: 8395 Comm: syz.3.595 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  138.274431][ T8395] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.278646][ T8395] Call Trace:
[  138.280006][ T8395]  <TASK>
[  138.281204][ T8395]  dump_stack_lvl+0x16c/0x1f0
[  138.282974][ T8395]  should_fail_ex+0x497/0x5b0
[  138.284557][ T8395]  ? lockdep_hardirqs_on+0x7c/0x110
[  138.286630][ T8395]  should_failslab+0xc2/0x120
[  138.288580][ T8395]  __kmalloc_cache_noprof+0x68/0x420
[  138.290708][ T8395]  ? __pfx_ip_dst_mtu_maybe_forward.constprop.0+0x10/0x10
[  138.293525][ T8395]  ip_setup_cork+0x73e/0xab0
[  138.295425][ T8395]  ip_append_data+0x163/0x1a0
[  138.297368][ T8395]  ? __pfx_icmp_glue_bits+0x10/0x10
[  138.299467][ T8395]  icmp_push_reply+0xab/0x450
[  138.301393][ T8395]  __icmp_send+0xac1/0x1750
[  138.303235][ T8395]  ? __pfx___icmp_send+0x10/0x10
[  138.305246][ T8395]  ? kasan_save_stack+0x42/0x60
[  138.307236][ T8395]  ? kasan_addr_to_slab+0x1/0x80
[  138.309266][ T8395]  ? kasan_save_track+0x14/0x30
[  138.311263][ T8395]  ? kasan_save_free_info+0x3b/0x60
[  138.313370][ T8395]  ? __kasan_slab_free+0x51/0x70
[  138.315384][ T8395]  ? kfree_skbmem+0x1a4/0x1f0
[  138.316521][ T8400] FAULT_INJECTION: forcing a failure.
[  138.316521][ T8400] name failslab, interval 1, probability 0, space 0, times 0
[  138.317299][ T8395]  ? sk_skb_reason_drop+0x136/0x1a0
[  138.322848][ T8395]  ? packet_rcv+0x16c/0x15a0
[  138.324199][ T8395]  ? hlock_class+0x4e/0x130
[  138.325541][ T8395]  ? mark_lock+0xb5/0xc60
[  138.326793][ T8395]  ? raw_sendmsg+0x135c/0x3870
[  138.328165][ T8395]  ? __pfx_mark_lock+0x10/0x10
[  138.329556][ T8395]  ? __pfx_xfrm_lookup_with_ifid+0x10/0x10
[  138.331218][ T8395]  ipv4_link_failure+0x591/0xb00
[  138.333032][ T8395]  ? __pfx_ipv4_link_failure+0x10/0x10
[  138.335045][ T8395]  ? __pfx_ipv4_link_failure+0x10/0x10
[  138.336615][ T8395]  vti6_tnl_xmit+0x7d3/0x21d0
[  138.337971][ T8395]  ? packet_rcv+0x171/0x15a0
[  138.339294][ T8395]  ? __pfx_vti6_tnl_xmit+0x10/0x10
[  138.340775][ T8395]  dev_hard_start_xmit+0x9a/0x7b0
[  138.342438][ T8395]  __dev_queue_xmit+0x7f0/0x43e0
[  138.344445][ T8395]  ? hlock_class+0x4e/0x130
[  138.346283][ T8395]  ? __lock_acquire+0x15a9/0x3c40
[  138.348277][ T8395]  ? __pfx___dev_queue_xmit+0x10/0x10
[  138.350430][ T8395]  ? hlock_class+0x4e/0x130
[  138.352267][ T8395]  ? mark_lock+0xb5/0xc60
[  138.354022][ T8395]  ? __pfx___lock_acquire+0x10/0x10
[  138.356102][ T8395]  ? __pfx_mark_lock+0x10/0x10
[  138.358059][ T8395]  ? find_held_lock+0x2d/0x110
[  138.359872][ T8395]  ? ip_finish_output2+0x7f0/0x2130
[  138.361987][ T8395]  ? __pfx_lock_release+0x10/0x10
[  138.364038][ T8395]  ? mark_held_locks+0x9f/0xe0
[  138.365791][ T8395]  neigh_connected_output+0x45c/0x630
[  138.367354][ T8395]  ip_finish_output2+0x7f0/0x2130
[  138.369158][ T8395]  ? __pfx_ip_finish_output2+0x10/0x10
[  138.371274][ T8395]  ? ip_skb_dst_mtu+0x3fc/0xc70
[  138.373213][ T8395]  ? __pfx_ip_skb_dst_mtu+0x10/0x10
[  138.375311][ T8395]  ? __pfx_nf_hook+0x10/0x10
[  138.377189][ T8395]  __ip_finish_output+0x49e/0x950
[  138.379208][ T8395]  ? __ip_make_skb+0x1150/0x1d00
[  138.381184][ T8395]  ip_finish_output+0x35/0x380
[  138.382765][ T8395]  ip_output+0x13b/0x2a0
[  138.384014][ T8395]  ? __pfx_ip_output+0x10/0x10
[  138.385447][ T8395]  ip_push_pending_frames+0x2fb/0x5b0
[  138.387017][ T8395]  raw_sendmsg+0x135c/0x3870
[  138.388852][ T8395]  ? __pfx_raw_sendmsg+0x10/0x10
[  138.390634][ T8395]  ? hlock_class+0x4e/0x130
[  138.392479][ T8395]  ? __pfx___might_resched+0x10/0x10
[  138.394572][ T8395]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  138.396752][ T8395]  ? aa_sk_perm+0x2f5/0xb20
[  138.398080][ T8395]  ? __import_iovec+0x1f2/0x6d0
[  138.400010][ T8395]  ? __pfx_raw_sendmsg+0x10/0x10
[  138.401985][ T8395]  inet_sendmsg+0x119/0x140
[  138.403613][ T8395]  ____sys_sendmsg+0x907/0xb40
[  138.405287][ T8395]  ? __pfx_____sys_sendmsg+0x10/0x10
[  138.407396][ T8395]  ? get_compat_msghdr+0x11b/0x170
[  138.409458][ T8395]  ___sys_sendmsg+0x135/0x1e0
[  138.411355][ T8395]  ? __pfx____sys_sendmsg+0x10/0x10
[  138.413480][ T8395]  ? trace_lock_acquire+0x14e/0x1f0
[  138.415645][ T8395]  __sys_sendmmsg+0x2fa/0x420
[  138.417575][ T8395]  ? __pfx___sys_sendmmsg+0x10/0x10
[  138.419678][ T8395]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  138.422119][ T8395]  ? fput+0x67/0x440
[  138.423732][ T8395]  ? ksys_write+0x1ba/0x250
[  138.425589][ T8395]  ? __pfx_ksys_write+0x10/0x10
[  138.427589][ T8395]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  138.429825][ T8395]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  138.432468][ T8395]  __do_fast_syscall_32+0x73/0x120
[  138.434543][ T8395]  do_fast_syscall_32+0x32/0x80
[  138.436009][ T8395]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  138.437840][ T8395] RIP: 0023:0xf7f12579
[  138.439008][ T8395] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  138.444489][ T8395] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  138.446890][ T8395] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001180
[  138.449143][ T8395] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  138.451377][ T8395] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  138.454391][ T8395] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  138.457062][ T8395] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  138.459313][ T8395]  </TASK>
[  138.460209][ T8400] CPU: 2 UID: 0 PID: 8400 Comm: syz.0.597 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  138.464386][ T8400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.468352][ T8400] Call Trace:
[  138.469608][ T8400]  <TASK>
[  138.470727][ T8400]  dump_stack_lvl+0x16c/0x1f0
[  138.472515][ T8400]  should_fail_ex+0x497/0x5b0
[  138.474283][ T8400]  ? fs_reclaim_acquire+0xae/0x150
[  138.476216][ T8400]  should_failslab+0xc2/0x120
[  138.478029][ T8400]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  138.480036][ T8400]  ? mas_alloc_nodes+0x18b/0x880
[  138.481908][ T8400]  mas_alloc_nodes+0x18b/0x880
[  138.483707][ T8400]  mas_node_count_gfp+0x105/0x130
[  138.485606][ T8400]  mas_preallocate+0x53f/0xce0
[  138.487442][ T8400]  ? __pfx_mas_preallocate+0x10/0x10
[  138.489444][ T8400]  ? anon_vma_name+0x75/0x100
[  138.491213][ T8400]  __split_vma+0x474/0x1210
[  138.492942][ T8400]  ? __pfx___split_vma+0x10/0x10
[  138.494801][ T8400]  ? hlock_class+0x4e/0x130
[  138.496531][ T8400]  vms_gather_munmap_vmas+0x1c3/0x1730
[  138.498575][ T8400]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  138.500794][ T8400]  ? mas_walk+0x6a6/0x910
[  138.502441][ T8400]  __mmap_region+0x32c/0x2760
[  138.504217][ T8400]  ? __pfx___mmap_region+0x10/0x10
[  138.506193][ T8400]  ? hlock_class+0x4e/0x130
[  138.507922][ T8400]  ? mark_lock+0xb5/0xc60
[  138.509569][ T8400]  ? process_measurement+0x1e8/0x2370
[  138.511568][ T8400]  ? __pfx___lock_acquire+0x10/0x10
[  138.513523][ T8400]  ? __pfx_process_measurement+0x10/0x10
[  138.515656][ T8400]  ? cap_mmap_addr+0x53/0x320
[  138.517429][ T8400]  mmap_region+0x127/0x320
[  138.519098][ T8400]  do_mmap+0xa09/0x1050
[  138.520664][ T8400]  vm_mmap_pgoff+0x1ba/0x360
[  138.522409][ T8400]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  138.524325][ T8400]  ? __fget_files+0x206/0x3a0
[  138.526057][ T8400]  ksys_mmap_pgoff+0x32c/0x5c0
[  138.527894][ T8400]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  138.529910][ T8400]  __do_fast_syscall_32+0x73/0x120
[  138.531831][ T8400]  do_fast_syscall_32+0x32/0x80
[  138.533678][ T8400]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  138.536054][ T8400] RIP: 0023:0xf7fc0579
[  138.537618][ T8400] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  138.544764][ T8400] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  138.547804][ T8400] RAX: ffffffffffffffda RBX: 0000000020ffd000 RCX: 0000000000002000
[  138.550755][ T8400] RDX: 000000000100000e RSI: 0000000000008012 RDI: 0000000000000003
[  138.553723][ T8400] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  138.556727][ T8400] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  138.559682][ T8400] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  138.562709][ T8400]  </TASK>
[  138.563947][    C2] vkms_vblank_simulate: vblank timer overrun
[  139.655938][ T8435] netlink: 'syz.3.605': attribute type 5 has an invalid length.
[  139.908181][ T8439] netlink: 12 bytes leftover after parsing attributes in process `syz.4.609'.
[  140.095321][ T8444] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  140.097376][ T8444] overlayfs: failed to set xattr on upper
[  140.099028][ T8444] overlayfs: ...falling back to redirect_dir=nofollow.
[  140.101874][ T8444] overlayfs: ...falling back to index=off.
[  140.103567][ T8444] overlayfs: ...falling back to uuid=null.
[  140.122550][ T8447] FAULT_INJECTION: forcing a failure.
[  140.122550][ T8447] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  140.127245][ T8447] CPU: 3 UID: 0 PID: 8447 Comm: syz.3.613 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  140.130907][ T8447] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  140.134157][ T8447] Call Trace:
[  140.135393][ T8447]  <TASK>
[  140.136540][ T8447]  dump_stack_lvl+0x16c/0x1f0
[  140.138319][ T8447]  should_fail_ex+0x497/0x5b0
[  140.140038][ T8447]  _copy_to_user+0x32/0xd0
[  140.141418][ T8447]  simple_read_from_buffer+0xd0/0x160
[  140.143424][ T8447]  proc_fail_nth_read+0x198/0x270
[  140.144920][ T8447]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  140.146545][ T8447]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  140.148163][ T8447]  vfs_read+0x1df/0xbe0
[  140.149424][ T8447]  ? __fget_files+0x1fc/0x3a0
[  140.150811][ T8447]  ? __pfx___mutex_lock+0x10/0x10
[  140.152339][ T8447]  ? __pfx_vfs_read+0x10/0x10
[  140.153733][ T8447]  ? __fget_files+0x206/0x3a0
[  140.155097][ T8447]  ksys_read+0x12b/0x250
[  140.156345][ T8447]  ? __pfx_ksys_read+0x10/0x10
[  140.157773][ T8447]  __do_fast_syscall_32+0x73/0x120
[  140.159274][ T8447]  do_fast_syscall_32+0x32/0x80
[  140.160700][ T8447]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  140.162539][ T8447] RIP: 0023:0xf7f12579
[  140.163728][ T8447] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  140.169293][ T8447] RSP: 002b:00000000f5066590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  140.171662][ T8447] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5066620
[  140.173964][ T8447] RDX: 000000000000000f RSI: 00000000f73a3ff4 RDI: 0000000000000000
[  140.176270][ T8447] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  140.178552][ T8447] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  140.180801][ T8447] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  140.183078][ T8447]  </TASK>
[  140.532133][ T5951] Bluetooth: hci4: sending frame failed (-49)
[  140.536782][ T5956] Bluetooth: hci4: Entering manufacturer mode failed (-49)
[  142.348895][ T8483] FAULT_INJECTION: forcing a failure.
[  142.348895][ T8483] name failslab, interval 1, probability 0, space 0, times 0
[  142.348922][ T8483] CPU: 2 UID: 0 PID: 8483 Comm: syz.4.623 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  142.348941][ T8483] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  142.348950][ T8483] Call Trace:
[  142.348955][ T8483]  <TASK>
[  142.348961][ T8483]  dump_stack_lvl+0x16c/0x1f0
[  142.348984][ T8483]  should_fail_ex+0x497/0x5b0
[  142.349009][ T8483]  should_failslab+0xc2/0x120
[  142.349035][ T8483]  __kmalloc_noprof+0xce/0x4f0
[  142.349059][ T8483]  ? do_raw_spin_unlock+0x172/0x230
[  142.349078][ T8483]  ? bit_cursor+0x87c/0x1800
[  142.349096][ T8483]  ? fb_get_color_depth+0x120/0x250
[  142.349115][ T8483]  bit_cursor+0x87c/0x1800
[  142.349140][ T8483]  ? __pfx_bit_cursor+0x10/0x10
[  142.349170][ T8483]  ? fb_get_color_depth+0x120/0x250
[  142.349186][ T8483]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  142.349208][ T8483]  ? get_color+0x1ce/0x440
[  142.349233][ T8483]  ? __pfx_bit_cursor+0x10/0x10
[  142.349248][ T8483]  fbcon_cursor+0x409/0x5f0
[  142.349269][ T8483]  hide_cursor+0x84/0x220
[  142.349289][ T8483]  redraw_screen+0x5d6/0x760
[  142.349313][ T8483]  ? __pfx_redraw_screen+0x10/0x10
[  142.349335][ T8483]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  142.349364][ T8483]  vc_do_resize+0xe7d/0x10f0
[  142.349397][ T8483]  ? __pfx_vc_do_resize+0x10/0x10
[  142.349428][ T8483]  fbcon_do_set_font+0x427/0x910
[  142.349462][ T8483]  fbcon_set_font+0x85f/0xa50
[  142.349492][ T8483]  ? __pfx_fbcon_set_font+0x10/0x10
[  142.349518][ T8483]  con_font_op+0x7fd/0xf50
[  142.349546][ T8483]  ? __pfx_con_font_op+0x10/0x10
[  142.349568][ T8483]  ? lock_acquire+0x2f/0xb0
[  142.349581][ T8483]  ? __might_fault+0xe3/0x190
[  142.349603][ T8483]  ? __might_fault+0xe3/0x190
[  142.349636][ T8483]  vt_compat_ioctl+0x36b/0x4e0
[  142.349659][ T8483]  ? __pfx_vt_compat_ioctl+0x10/0x10
[  142.349686][ T8483]  ? __fget_files+0x206/0x3a0
[  142.349706][ T8483]  ? __pfx_vt_compat_ioctl+0x10/0x10
[  142.349726][ T8483]  tty_compat_ioctl+0x2ee/0x4d0
[  142.349750][ T8483]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  142.349773][ T8483]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  142.349793][ T8483]  __do_fast_syscall_32+0x73/0x120
[  142.349819][ T8483]  do_fast_syscall_32+0x32/0x80
[  142.349843][ T8483]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  142.349870][ T8483] RIP: 0023:0xf70fe579
[  142.349886][ T8483] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  142.349902][ T8483] RSP: 002b:00000000f50f055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  142.349921][ T8483] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004b72
[  142.349932][ T8483] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[  142.349943][ T8483] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  142.349954][ T8483] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  142.349964][ T8483] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  142.349987][ T8483]  </TASK>
[  143.748579][ T8496] input: syz0 as /devices/virtual/input/input12
[  143.750329][ T8496] input: failed to attach handler leds to device input12, error: -6
[  144.789461][ T8523] netlink: 36 bytes leftover after parsing attributes in process `syz.0.635'.
[  145.982314][ T8560] A link change request failed with some changes committed already. Interface ip6gretap0 may have been left with an inconsistent configuration, please check.
[  146.011522][ T2103] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  146.036537][ T8562] netlink: 8 bytes leftover after parsing attributes in process `syz.4.649'.
[  146.122196][ T1016] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  146.232710][ T8570] netlink: 15064 bytes leftover after parsing attributes in process `syz.3.653'.
[  146.331370][ T1016] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  146.376450][ T8574] nilfs2: Unknown parameter 'discardu/#/msr'
[  147.957961][ T8605] netlink: 4 bytes leftover after parsing attributes in process `syz.4.666'.
[  148.006167][ T8607] PKCS7: Unknown OID: [4] 2.19.13055.940354.15722
[  148.008277][ T8607] PKCS7: Only support pkcs7_signedData type
[  149.049818][ T8641] vlan1: entered allmulticast mode
[  149.204859][   T57] hid-generic 0000:0000:0000.000B: item fetching failed at offset 0/1
[  149.207571][   T57] hid-generic 0000:0000:0000.000B: probe with driver hid-generic failed with error -22
[  150.007099][ T8647] syz.0.678 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  150.878768][ T8681] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  150.941949][ T8684] syz.4.689: vmalloc error: size 2147483616, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  150.946038][ T8684] CPU: 1 UID: 0 PID: 8684 Comm: syz.4.689 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  150.949780][ T8684] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.953571][ T8684] Call Trace:
[  150.954877][ T8684]  <TASK>
[  150.956027][ T8684]  dump_stack_lvl+0x16c/0x1f0
[  150.957873][ T8684]  warn_alloc+0x24d/0x3a0
[  150.959511][ T8684]  ? __pfx_warn_alloc+0x10/0x10
[  150.961512][ T8684]  ? stack_depot_save_flags+0x36d/0x9e0
[  150.963662][ T8684]  ? mark_held_locks+0x9f/0xe0
[  150.965605][ T8684]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  150.967963][ T8684]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  150.970314][ T8684]  __vmalloc_node_range_noprof+0x10df/0x1530
[  150.972727][ T8684]  ? kasan_save_stack+0x42/0x60
[  150.974707][ T8684]  ? kasan_save_stack+0x33/0x60
[  150.976678][ T8684]  ? kasan_save_track+0x14/0x30
[  150.978639][ T8684]  ? kasan_save_free_info+0x3b/0x60
[  150.980718][ T8684]  ? __kasan_slab_free+0x51/0x70
[  150.982620][ T8684]  ? kfree+0x14f/0x4b0
[  150.984195][ T8684]  ? xt_compat_flush_offsets+0x8f/0x160
[  150.986326][ T8684]  ? do_ebt_set_ctl+0x4af/0x580
[  150.988209][ T8684]  ? nf_setsockopt+0x8a/0xf0
[  150.990000][ T8684]  ? do_replace_finish+0xe7/0x22b0
[  150.991993][ T8684]  ? hlock_class+0x4e/0x130
[  150.993833][ T8684]  ? mark_lock+0xb5/0xc60
[  150.995599][ T8684]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  150.998091][ T8684]  ? do_replace_finish+0xe7/0x22b0
[  151.000085][ T8684]  vmalloc_noprof+0x6b/0x90
[  151.001409][ T8684]  ? do_replace_finish+0xe7/0x22b0
[  151.003253][ T8684]  do_replace_finish+0xe7/0x22b0
[  151.004747][ T8684]  ? __pfx_lock_release+0x10/0x10
[  151.006208][ T8684]  ? kasan_quarantine_put+0x10a/0x240
[  151.007677][ T8684]  ? lockdep_hardirqs_on+0x7c/0x110
[  151.009139][ T8684]  ? __pfx_do_replace_finish+0x10/0x10
[  151.010607][ T8684]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  151.012617][ T8684]  ? vfree+0x311/0x950
[  151.013812][ T8684]  ? compat_do_replace+0x353/0x750
[  151.015254][ T8684]  compat_do_replace+0x4c7/0x750
[  151.016639][ T8684]  ? __pfx_compat_do_replace+0x10/0x10
[  151.018127][ T8684]  ? aa_get_newest_label+0x376/0x680
[  151.019618][ T8684]  ? __pfx_aa_get_newest_label+0x10/0x10
[  151.021250][ T8684]  ? bpf_lsm_capable+0x9/0x10
[  151.022652][ T8684]  ? security_capable+0x7e/0x260
[  151.024029][ T8684]  do_ebt_set_ctl+0x4af/0x580
[  151.025341][ T8684]  ? sockopt_release_sock+0x52/0x60
[  151.026771][ T8684]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  151.028426][ T8684]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  151.030038][ T8684]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  151.032264][ T8684]  nf_setsockopt+0x8a/0xf0
[  151.033896][ T8684]  ip_setsockopt+0xcb/0xf0
[  151.035343][ T8684]  udp_setsockopt+0x7d/0xd0
[  151.036618][ T8684]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  151.038240][ T8684]  do_sock_setsockopt+0x222/0x480
[  151.039630][ T8684]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  151.041178][ T8684]  ? lock_acquire+0x2f/0xb0
[  151.042496][ T8684]  __sys_setsockopt+0x1a0/0x230
[  151.043991][ T8684]  __ia32_sys_setsockopt+0xbc/0x160
[  151.045435][ T8684]  ? lockdep_hardirqs_on+0x7c/0x110
[  151.047240][ T8684]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  151.049650][ T8684]  __do_fast_syscall_32+0x73/0x120
[  151.051267][ T8684]  do_fast_syscall_32+0x32/0x80
[  151.052664][ T8684]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.054427][ T8684] RIP: 0023:0xf70fe579
[  151.055571][ T8684] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.060936][ T8684] RSP: 002b:00000000f50f055c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  151.063215][ T8684] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000000000
[  151.065346][ T8684] RDX: 0000000000000080 RSI: 0000000020000000 RDI: 00000000000000e0
[  151.067520][ T8684] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  151.069701][ T8684] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  151.071850][ T8684] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.074006][ T8684]  </TASK>
[  151.075120][ T8684] Mem-Info:
[  151.076054][ T8684] active_anon:11661 inactive_anon:4432 isolated_anon:0
[  151.076054][ T8684]  active_file:9816 inactive_file:39557 isolated_file:0
[  151.076054][ T8684]  unevictable:1769 dirty:300 writeback:0
[  151.076054][ T8684]  slab_reclaimable:7273 slab_unreclaimable:57758
[  151.076054][ T8684]  mapped:27659 shmem:11475 pagetables:975
[  151.076054][ T8684]  sec_pagetables:303 bounce:0
[  151.076054][ T8684]  kernel_misc_reclaimable:0
[  151.076054][ T8684]  free:45542 free_pcp:1811 free_cma:0
[  151.089012][ T8684] Node 0 active_anon:4816kB inactive_anon:1344kB active_file:10496kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5032kB dirty:168kB writeback:0kB shmem:4956kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9812kB pagetables:1040kB sec_pagetables:1172kB all_unreclaimable? yes
[  151.098059][ T8684] Node 1 active_anon:41828kB inactive_anon:16384kB active_file:28768kB inactive_file:158228kB unevictable:3540kB isolated(anon):0kB isolated(file):0kB mapped:105604kB dirty:1032kB writeback:0kB shmem:40944kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2660kB pagetables:2860kB sec_pagetables:40kB all_unreclaimable? no
[  151.109745][ T8684] Node 0 DMA free:2972kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:516kB inactive_anon:84kB active_file:372kB inactive_file:0kB unevictable:0kB writepending:16kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:420kB local_pcp:124kB free_cma:0kB
[  151.119694][ T8684] lowmem_reserve[]: 0 273 0 0 0
[  151.121421][ T8684] Node 0 DMA32 free:18580kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:4336kB inactive_anon:1260kB active_file:10124kB inactive_file:0kB unevictable:3536kB writepending:152kB present:1032196kB managed:306308kB mlocked:0kB bounce:0kB free_pcp:2280kB local_pcp:1960kB free_cma:0kB
[  151.130692][ T8684] lowmem_reserve[]: 0 0 0 0 0
[  151.132560][ T8684] Node 1 DMA32 free:160520kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:41728kB inactive_anon:16384kB active_file:28768kB inactive_file:158328kB unevictable:3540kB writepending:1032kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:4868kB local_pcp:3092kB free_cma:0kB
[  151.142922][ T8684] lowmem_reserve[]: 0 0 0 0 0
[  151.144412][ T8684] Node 0 DMA: 64*4kB (UME) 45*8kB (UME) 12*16kB (UME) 41*32kB (UME) 13*64kB (UE) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2952kB
[  151.149515][ T8684] Node 0 DMA32: 243*4kB (UMEH) 48*8kB (UMEH) 7*16kB (UEH) 55*32kB (UMEH) 50*64kB (UMEH) 29*128kB (UMEH) 9*256kB (UE) 4*512kB (U) 2*1024kB (UM) 1*2048kB (M) 0*4096kB = 18588kB
[  151.155321][ T8684] Node 1 DMA32: 9*4kB (UM) 148*8kB (UME) 257*16kB (UME) 263*32kB (UME) 33*64kB (UME) 36*128kB (UME) 41*256kB (UM) 29*512kB (UM) 22*1024kB (UME) 15*2048kB (UM) 15*4096kB (UM) = 160500kB
[  151.161249][ T8684] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  151.164446][ T8684] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  151.167673][ T8684] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  151.171084][ T8684] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  151.174654][ T8684] 60852 total pagecache pages
[  151.176360][ T8684] 0 pages in swap cache
[  151.177996][ T8684] Free swap  = 123960kB
[  151.179543][ T8684] Total swap = 124996kB
[  151.180826][ T8684] 524155 pages RAM
[  151.181994][ T8684] 0 pages HighMem/MovableOnly
[  151.183411][ T8684] 206675 pages reserved
[  151.184696][ T8684] 0 pages cma reserved
[  151.511300][   T57] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  151.651326][   T57] usb 9-1: device descriptor read/64, error -71
[  151.891235][   T57] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  152.007183][ T8728] nftables ruleset with unbound chain
[  152.031326][   T57] usb 9-1: device descriptor read/64, error -71
[  152.151782][   T57] usb usb9-port1: attempt power cycle
[  152.448058][ T5951] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  152.451642][ T5951] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  152.456296][ T5951] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  152.462862][ T5951] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  152.466725][ T5951] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  152.470045][ T5951] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  152.491239][   T57] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  152.513868][   T57] usb 9-1: device descriptor read/8, error -71
[  152.582555][ T8736] chnl_net:caif_netlink_parms(): no params data found
[  152.651082][ T8736] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.653360][ T8736] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.655276][ T8736] bridge_slave_0: entered allmulticast mode
[  152.657997][ T8736] bridge_slave_0: entered promiscuous mode
[  152.661803][ T8736] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.663836][ T8736] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.665802][ T8736] bridge_slave_1: entered allmulticast mode
[  152.667918][ T8736] bridge_slave_1: entered promiscuous mode
[  152.701065][ T8736] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  152.705794][ T8736] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  152.743349][ T8736] team0: Port device team_slave_0 added
[  152.747531][ T8736] team0: Port device team_slave_1 added
[  152.751403][   T57] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  152.766346][ T8736] batman_adv: batadv0: Adding interface: batadv_slave_0
[  152.768457][ T8736] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  152.776644][ T8736] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  152.781422][ T8736] batman_adv: batadv0: Adding interface: batadv_slave_1
[  152.783518][ T8736] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  152.783799][   T57] usb 9-1: device descriptor read/8, error -71
[  152.790432][ T8736] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  152.813458][ T8736] hsr_slave_0: entered promiscuous mode
[  152.816429][ T8736] hsr_slave_1: entered promiscuous mode
[  152.819257][ T8736] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  152.823227][ T8736] Cannot create hsr debugfs directory
[  152.901039][ T8736] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  152.905576][ T8736] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  152.909328][ T8736] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  152.911538][   T57] usb usb9-port1: unable to enumerate USB device
[  152.913271][ T8736] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  152.923361][ T8736] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.925423][ T8736] bridge0: port 2(bridge_slave_1) entered forwarding state
[  152.927503][ T8736] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.929469][ T8736] bridge0: port 1(bridge_slave_0) entered forwarding state
[  152.955069][ T8736] 8021q: adding VLAN 0 to HW filter on device bond0
[  152.962422][ T1134] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.965982][ T1134] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.982910][ T8736] 8021q: adding VLAN 0 to HW filter on device team0
[  152.990653][ T1134] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.992818][ T1134] bridge0: port 1(bridge_slave_0) entered forwarding state
[  153.004920][ T1134] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.007962][ T1134] bridge0: port 2(bridge_slave_1) entered forwarding state
[  153.117793][ T8736] 8021q: adding VLAN 0 to HW filter on device batadv0
[  153.233502][ T8736] veth0_vlan: entered promiscuous mode
[  153.237950][ T8736] veth1_vlan: entered promiscuous mode
[  153.248294][ T8736] veth0_macvtap: entered promiscuous mode
[  153.251407][ T8736] veth1_macvtap: entered promiscuous mode
[  153.257541][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.260476][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.264616][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.268465][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.272090][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.275813][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.279395][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.283327][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.287840][ T8736] batman_adv: batadv0: Interface activated: batadv_slave_0
[  153.292917][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  153.295830][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.298598][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  153.301987][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.304716][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  153.307768][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.310616][ T8736] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  153.313666][ T8736] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.317022][ T8736] batman_adv: batadv0: Interface activated: batadv_slave_1
[  153.321535][ T8736] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  153.324046][ T8736] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  153.326575][ T8736] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  153.329013][ T8736] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  153.382666][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.387575][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.398468][   T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.400799][   T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.711299][ T5987] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  153.861240][ T5987] usb 10-1: Using ep0 maxpacket: 32
[  153.864398][ T5987] usb 10-1: config index 0 descriptor too short (expected 29220, got 36)
[  153.866850][ T5987] usb 10-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  153.869220][ T5987] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 81
[  153.871948][ T5987] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  153.874633][ T5987] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  153.877339][ T5987] usb 10-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  153.880856][ T5987] usb 10-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  153.883701][ T5987] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.887277][ T5987] usb 10-1: config 0 descriptor??
[  154.094852][ T5987] usblp 10-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  154.303583][ T8769] FAULT_INJECTION: forcing a failure.
[  154.303583][ T8769] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  154.307675][ T8769] CPU: 0 UID: 0 PID: 8769 Comm: syz.4.716 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  154.310720][ T8769] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.314166][ T8769] Call Trace:
[  154.315296][ T8769]  <TASK>
[  154.316340][ T8769]  dump_stack_lvl+0x16c/0x1f0
[  154.317696][ T8769]  should_fail_ex+0x497/0x5b0
[  154.319089][ T8769]  _copy_to_user+0x32/0xd0
[  154.320421][ T8769]  simple_read_from_buffer+0xd0/0x160
[  154.322097][ T8769]  proc_fail_nth_read+0x198/0x270
[  154.323903][ T8769]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  154.326145][ T8769]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  154.328174][ T8769]  vfs_read+0x1df/0xbe0
[  154.329362][ T8769]  ? __fget_files+0x1fc/0x3a0
[  154.330718][ T8769]  ? __pfx___mutex_lock+0x10/0x10
[  154.332118][ T8769]  ? __pfx_vfs_read+0x10/0x10
[  154.333481][ T8769]  ? __fget_files+0x206/0x3a0
[  154.334831][ T8769]  ksys_read+0x12b/0x250
[  154.336087][ T8769]  ? __pfx_ksys_read+0x10/0x10
[  154.337506][ T8769]  __do_fast_syscall_32+0x73/0x120
[  154.338963][ T8769]  do_fast_syscall_32+0x32/0x80
[  154.340356][ T8769]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  154.342140][ T8769] RIP: 0023:0xf70fe579
[  154.343328][ T8769] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  154.349928][ T8769] RSP: 002b:00000000f50f0590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  154.352265][ T8769] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50f0620
[  154.354464][ T8769] RDX: 000000000000000f RSI: 00000000f7433ff4 RDI: 0000000000000000
[  154.356707][ T8769] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  154.358966][ T8769] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  154.361170][ T8769] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  154.363393][ T8769]  </TASK>
[  154.376961][ T8771] netlink: 24 bytes leftover after parsing attributes in process `syz.5.711'.
[  154.409163][   T40] kauditd_printk_skb: 65 callbacks suppressed
[  154.409175][   T40] audit: type=1326 audit(1736830258.373:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8765 comm="syz.0.715" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc0579 code=0x0
[  154.479344][    C3] usblp0: nonzero read bulk status received: -71
[  154.485787][ T8760] usblp0: error -71 reading from printer
[  154.486144][ T6009] usb 10-1: USB disconnect, device number 2
[  154.496312][ T6009] usblp0: removed
[  154.521310][ T5951] Bluetooth: hci0: command tx timeout
[  155.266014][ T5956] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  155.272428][ T5956] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  155.276779][ T5956] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  155.285514][ T5956] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  155.289589][ T5956] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  155.304415][ T5956] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  155.488107][ T8787] chnl_net:caif_netlink_parms(): no params data found
[  155.506417][ T8805] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  155.548887][ T8787] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.550982][ T8787] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.553042][ T8787] bridge_slave_0: entered allmulticast mode
[  155.555225][ T8787] bridge_slave_0: entered promiscuous mode
[  155.557950][ T8787] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.559986][ T8787] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.562213][ T8787] bridge_slave_1: entered allmulticast mode
[  155.564620][ T8787] bridge_slave_1: entered promiscuous mode
[  155.586873][ T8787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  155.590619][ T8787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  155.635496][ T8787] team0: Port device team_slave_0 added
[  155.639000][ T8787] team0: Port device team_slave_1 added
[  155.671711][ T8787] batman_adv: batadv0: Adding interface: batadv_slave_0
[  155.675307][ T8787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.683733][ T8787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  155.687894][ T8787] batman_adv: batadv0: Adding interface: batadv_slave_1
[  155.690168][ T8787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.697775][ T8787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  155.741430][ T8787] hsr_slave_0: entered promiscuous mode
[  155.744329][ T8787] hsr_slave_1: entered promiscuous mode
[  155.746381][ T8787] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  155.748643][ T8787] Cannot create hsr debugfs directory
[  155.831354][ T6009] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  155.851725][ T8787] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  155.856988][ T8787] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  155.864310][ T8787] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  155.869118][ T8787] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  155.885039][ T8787] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.887827][ T8787] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.890817][ T8787] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.893676][ T8787] bridge0: port 1(bridge_slave_0) entered forwarding state
[  155.930002][ T8787] 8021q: adding VLAN 0 to HW filter on device bond0
[  155.942526][   T70] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.946706][   T70] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.965153][ T8787] 8021q: adding VLAN 0 to HW filter on device team0
[  155.975148][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.977876][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  155.983932][ T6009] usb 5-1: config 0 has no interfaces?
[  155.986322][ T6009] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  155.989316][ T6009] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  155.992821][ T1137] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.993105][ T6009] usb 5-1: Manufacturer: syz
[  155.995601][ T1137] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.998772][ T6009] usb 5-1: config 0 descriptor??
[  156.127158][ T8787] 8021q: adding VLAN 0 to HW filter on device batadv0
[  156.246502][ T8787] veth0_vlan: entered promiscuous mode
[  156.251942][ T8787] veth1_vlan: entered promiscuous mode
[  156.267581][ T8787] veth0_macvtap: entered promiscuous mode
[  156.270810][ T8833] FAULT_INJECTION: forcing a failure.
[  156.270810][ T8833] name failslab, interval 1, probability 0, space 0, times 0
[  156.274948][ T8833] CPU: 2 UID: 0 PID: 8833 Comm: syz.5.728 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  156.278430][ T8833] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.281543][ T8833] Call Trace:
[  156.282480][ T8833]  <TASK>
[  156.283349][ T8833]  dump_stack_lvl+0x16c/0x1f0
[  156.284698][ T8833]  should_fail_ex+0x497/0x5b0
[  156.286046][ T8833]  ? fs_reclaim_acquire+0xae/0x150
[  156.287542][ T8833]  should_failslab+0xc2/0x120
[  156.288870][ T8833]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  156.290508][ T8833]  ? __alloc_skb+0x2b3/0x380
[  156.291804][ T8833]  __alloc_skb+0x2b3/0x380
[  156.293213][ T8833]  ? __pfx___alloc_skb+0x10/0x10
[  156.295206][ T8833]  ? kasan_quarantine_put+0x10a/0x240
[  156.296735][ T8833]  ? lockdep_hardirqs_on+0x7c/0x110
[  156.298180][ T8833]  ? kfree+0x14f/0x4b0
[  156.299304][ T8833]  mpls_netconf_notify_devconf+0x4a/0x110
[  156.300876][ T8833]  mpls_dev_notify+0x727/0xa20
[  156.302263][ T8833]  notifier_call_chain+0xb7/0x410
[  156.303878][ T8833]  ? __pfx_mpls_dev_notify+0x10/0x10
[  156.305519][ T8833]  call_netdevice_notifiers_info+0xbe/0x140
[  156.307199][ T8833]  unregister_netdevice_many_notify+0x8d5/0x1e60
[  156.309016][ T8833]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  156.310837][ T8833]  ? __pfx___mutex_lock+0x10/0x10
[  156.312248][ T8833]  ? __pfx___nla_validate_parse+0x10/0x10
[  156.314106][ T8833]  ? unregister_netdevice_queue+0x22f/0x3f0
[  156.316168][ T8833]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  156.317929][ T8833]  rtnl_dellink+0x3d7/0xaa0
[  156.319255][ T8833]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  156.320999][ T8833]  ? kasan_save_stack+0x42/0x60
[  156.322293][ T8833]  ? kasan_save_stack+0x33/0x60
[  156.323872][ T8833]  ? __pfx_rtnl_dellink+0x10/0x10
[  156.325927][ T8833]  ? kmem_cache_free+0x152/0x4c0
[  156.327404][ T8833]  ? hlock_class+0x4e/0x130
[  156.328743][ T8833]  ? aa_get_newest_label+0x376/0x680
[  156.330223][ T8833]  ? find_held_lock+0x2d/0x110
[  156.331615][ T8833]  ? find_held_lock+0x2d/0x110
[  156.333007][ T8833]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  156.335005][ T8833]  ? __pfx_lock_release+0x10/0x10
[  156.336592][ T8833]  ? trace_lock_acquire+0x14e/0x1f0
[  156.338105][ T8833]  ? __pfx_rtnl_dellink+0x10/0x10
[  156.339594][ T8833]  rtnetlink_rcv_msg+0x95b/0xea0
[  156.341019][ T8833]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  156.342534][ T8833]  ? __pfx___dev_queue_xmit+0x10/0x10
[  156.344055][ T8833]  netlink_rcv_skb+0x165/0x410
[  156.345475][ T8833]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  156.347077][ T8833]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  156.348625][ T8833]  ? netlink_deliver_tap+0x1ae/0xca0
[  156.350191][ T8833]  netlink_unicast+0x53c/0x7f0
[  156.351540][ T8833]  ? __pfx_netlink_unicast+0x10/0x10
[  156.353061][ T8833]  ? __phys_addr_symbol+0x30/0x80
[  156.355068][ T8833]  ? __check_object_size+0x4a1/0x710
[  156.357098][ T8833]  netlink_sendmsg+0x8b8/0xd70
[  156.358450][ T8833]  ? __pfx_netlink_sendmsg+0x10/0x10
[  156.359890][ T8833]  ____sys_sendmsg+0x9ae/0xb40
[  156.361253][ T8833]  ? __pfx_____sys_sendmsg+0x10/0x10
[  156.362693][ T8833]  ? get_compat_msghdr+0x11b/0x170
[  156.364529][ T8833]  ___sys_sendmsg+0x135/0x1e0
[  156.365941][ T8833]  ? __pfx____sys_sendmsg+0x10/0x10
[  156.367443][ T8833]  ? __pfx_lock_release+0x10/0x10
[  156.368828][ T8833]  ? trace_lock_acquire+0x14e/0x1f0
[  156.370291][ T8833]  ? __fget_files+0x206/0x3a0
[  156.371662][ T8833]  __sys_sendmsg+0x16e/0x220
[  156.373018][ T8833]  ? __pfx___sys_sendmsg+0x10/0x10
[  156.374504][ T8833]  __do_fast_syscall_32+0x73/0x120
[  156.375927][ T8833]  do_fast_syscall_32+0x32/0x80
[  156.377399][ T8833]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  156.379185][ T8833] RIP: 0023:0xf7ff4579
[  156.380319][ T8833] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  156.385622][ T8833] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  156.387944][ T8833] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000240
[  156.390185][ T8833] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  156.392360][ T8833] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  156.394872][ T8833] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  156.397132][ T8833] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  156.399410][ T8833]  </TASK>
[  156.400415][    C2] vkms_vblank_simulate: vblank timer overrun
[  156.410073][ T8787] veth1_macvtap: entered promiscuous mode
[  156.419263][ T8787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.423030][ T8787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.426984][ T8787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.430056][ T8787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.432870][ T8787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.435835][ T8787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.438660][ T8787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.446141][ T8787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.448973][ T8787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.455099][ T8835] ptrace attach of "/syz-executor exec"[5945] was attempted by ""[8835]
[  156.455634][ T8787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.462527][ T8787] batman_adv: batadv0: Interface activated: batadv_slave_0
[  156.472360][ T8787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.475314][ T8787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.481008][ T8787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.486780][ T8787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.489565][ T8787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.492565][ T8787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.495213][ T8787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.498187][ T8787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.500938][ T8787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  156.503857][ T8787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.508811][ T8787] batman_adv: batadv0: Interface activated: batadv_slave_1
[  156.514782][ T8787] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  156.518300][ T8787] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  156.522006][ T8787] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  156.525392][ T8787] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  156.588134][ T1134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  156.590469][ T1134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.608234][ T1134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  156.610494][ T1134] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.611781][ T5956] Bluetooth: hci0: command tx timeout
[  156.670380][ T5956] Bluetooth: hci0: unexpected cc 0x042d length: 63 > 7
[  156.818046][ T8856] FAULT_INJECTION: forcing a failure.
[  156.818046][ T8856] name failslab, interval 1, probability 0, space 0, times 0
[  156.821824][ T8856] CPU: 2 UID: 0 PID: 8856 Comm: syz.6.735 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  156.825181][ T8856] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.828320][ T8856] Call Trace:
[  156.829302][ T8856]  <TASK>
[  156.830354][ T8856]  dump_stack_lvl+0x16c/0x1f0
[  156.832288][ T8856]  should_fail_ex+0x497/0x5b0
[  156.833838][ T8856]  ? lockdep_hardirqs_on+0x7c/0x110
[  156.835951][ T8856]  should_failslab+0xc2/0x120
[  156.837644][ T8856]  __kmalloc_cache_noprof+0x68/0x420
[  156.839188][ T8856]  ? __pfx_ip_dst_mtu_maybe_forward.constprop.0+0x10/0x10
[  156.841303][ T8856]  ? __pfx_icmp_route_lookup.constprop.0+0x10/0x10
[  156.843118][ T8856]  ip_setup_cork+0x73e/0xab0
[  156.844582][ T8856]  ip_append_data+0x163/0x1a0
[  156.845990][ T8856]  ? __pfx_icmp_glue_bits+0x10/0x10
[  156.847511][ T8856]  icmp_push_reply+0xab/0x450
[  156.848948][ T8856]  __icmp_send+0xac1/0x1750
[  156.850348][ T8856]  ? __pfx___icmp_send+0x10/0x10
[  156.851753][ T8856]  ? kasan_save_stack+0x42/0x60
[  156.853174][ T8856]  ? kasan_addr_to_slab+0x1/0x80
[  156.854641][ T8856]  ? kasan_save_track+0x14/0x30
[  156.856040][ T8856]  ? kasan_save_free_info+0x3b/0x60
[  156.857559][ T8856]  ? __kasan_slab_free+0x51/0x70
[  156.859010][ T8856]  ? kfree_skbmem+0x1a4/0x1f0
[  156.860698][ T8856]  ? sk_skb_reason_drop+0x136/0x1a0
[  156.862217][ T8856]  ? packet_rcv+0x16c/0x15a0
[  156.863632][ T8856]  ? hlock_class+0x4e/0x130
[  156.865006][ T8856]  ? mark_lock+0xb5/0xc60
[  156.866313][ T8856]  ? raw_sendmsg+0x135c/0x3870
[  156.867714][ T8856]  ? __pfx_mark_lock+0x10/0x10
[  156.869129][ T8856]  ? __pfx_xfrm_lookup_with_ifid+0x10/0x10
[  156.870971][ T8856]  ipv4_link_failure+0x591/0xb00
[  156.872402][ T8856]  ? __pfx_ipv4_link_failure+0x10/0x10
[  156.874244][ T8856]  ? __pfx_ipv4_link_failure+0x10/0x10
[  156.876426][ T8856]  vti6_tnl_xmit+0x7d3/0x21d0
[  156.878297][ T8856]  ? packet_rcv+0x171/0x15a0
[  156.879633][ T8856]  ? __pfx_vti6_tnl_xmit+0x10/0x10
[  156.881556][ T8856]  dev_hard_start_xmit+0x9a/0x7b0
[  156.883400][ T8856]  __dev_queue_xmit+0x7f0/0x43e0
[  156.885238][ T8856]  ? hlock_class+0x4e/0x130
[  156.886594][ T8856]  ? __lock_acquire+0x15a9/0x3c40
[  156.888050][ T8856]  ? __pfx___dev_queue_xmit+0x10/0x10
[  156.889593][ T8856]  ? hlock_class+0x4e/0x130
[  156.891264][ T8856]  ? mark_lock+0xb5/0xc60
[  156.892706][ T8856]  ? __pfx___lock_acquire+0x10/0x10
[  156.894364][ T8856]  ? __pfx_mark_lock+0x10/0x10
[  156.895772][ T8856]  ? __pfx_lock_release+0x10/0x10
[  156.897245][ T8856]  ? find_held_lock+0x2d/0x110
[  156.898602][ T8856]  ? ip_finish_output2+0x7f0/0x2130
[  156.900186][ T8856]  ? __pfx_lock_release+0x10/0x10
[  156.902180][ T8856]  ? mark_held_locks+0x9f/0xe0
[  156.903865][ T8856]  neigh_connected_output+0x45c/0x630
[  156.905393][ T8856]  ip_finish_output2+0x7f0/0x2130
[  156.906835][ T8856]  ? __pfx_ip_finish_output2+0x10/0x10
[  156.908402][ T8856]  ? ip_skb_dst_mtu+0x3fc/0xc70
[  156.909826][ T8856]  ? __pfx_ip_skb_dst_mtu+0x10/0x10
[  156.911319][ T8856]  ? __pfx_nf_hook+0x10/0x10
[  156.912661][ T8856]  __ip_finish_output+0x49e/0x950
[  156.914078][ T8856]  ? __ip_make_skb+0x1150/0x1d00
[  156.915503][ T8856]  ip_finish_output+0x35/0x380
[  156.916912][ T8856]  ip_output+0x13b/0x2a0
[  156.918131][ T8856]  ? __pfx_ip_output+0x10/0x10
[  156.919497][ T8856]  ip_push_pending_frames+0x2fb/0x5b0
[  156.921474][ T8856]  raw_sendmsg+0x135c/0x3870
[  156.923146][ T8856]  ? __pfx_raw_sendmsg+0x10/0x10
[  156.924548][ T8856]  ? hlock_class+0x4e/0x130
[  156.925850][ T8856]  ? __pfx___might_resched+0x10/0x10
[  156.927392][ T8856]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  156.929079][ T8856]  ? aa_sk_perm+0x2f5/0xb20
[  156.930396][ T8856]  ? __import_iovec+0x1f2/0x6d0
[  156.931772][ T8856]  ? __pfx_raw_sendmsg+0x10/0x10
[  156.933166][ T8856]  inet_sendmsg+0x119/0x140
[  156.934421][ T8856]  ____sys_sendmsg+0x907/0xb40
[  156.935791][ T8856]  ? __pfx_____sys_sendmsg+0x10/0x10
[  156.937309][ T8856]  ? get_compat_msghdr+0x11b/0x170
[  156.938770][ T8856]  ___sys_sendmsg+0x135/0x1e0
[  156.940267][ T8856]  ? __pfx____sys_sendmsg+0x10/0x10
[  156.942350][ T8856]  ? trace_lock_acquire+0x14e/0x1f0
[  156.943927][ T8856]  __sys_sendmmsg+0x2fa/0x420
[  156.945245][ T8856]  ? __pfx___sys_sendmmsg+0x10/0x10
[  156.946731][ T8856]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  156.948407][ T8856]  ? fput+0x67/0x440
[  156.949507][ T8856]  ? ksys_write+0x1ba/0x250
[  156.951062][ T8856]  ? __pfx_ksys_write+0x10/0x10
[  156.952452][ T8856]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  156.954056][ T8856]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  156.955911][ T8856]  __do_fast_syscall_32+0x73/0x120
[  156.957421][ T8856]  do_fast_syscall_32+0x32/0x80
[  156.958813][ T8856]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  156.960919][ T8856] RIP: 0023:0xf7fc3579
[  156.962527][ T8856] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  156.967943][ T8856] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  156.970367][ T8856] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001180
[  156.972633][ T8856] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  156.974695][ T8856] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  156.976884][ T8856] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  156.979077][ T8856] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  156.981833][ T8856]  </TASK>
[  156.982987][    C2] vkms_vblank_simulate: vblank timer overrun
[  157.421405][ T5956] Bluetooth: hci4: command tx timeout
[  157.634696][ T8847] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  158.313895][ T8907] team0: No ports can be present during mode change
[  158.631228][ T6009] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  158.632450][   T57] usb 5-1: USB disconnect, device number 8
[  158.791242][ T6009] usb 9-1: Using ep0 maxpacket: 16
[  158.795266][ T6009] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.798442][ T6009] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.801696][ T6009] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  158.806076][ T6009] usb 9-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  158.808817][ T5951] Bluetooth: hci0: unexpected cc 0x042d length: 63 > 7
[  158.809482][ T6009] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.811284][ T6009] usb 9-1: config 0 descriptor??
[  158.990866][ T8950] netlink: 64 bytes leftover after parsing attributes in process `syz.0.756'.
[  159.253332][ T6009] shield 0003:0955:7214.000C: unknown main item tag 0x0
[  159.255410][ T6009] shield 0003:0955:7214.000C: unknown main item tag 0x0
[  159.257459][ T6009] shield 0003:0955:7214.000C: unknown main item tag 0x0
[  159.259519][ T6009] shield 0003:0955:7214.000C: unknown main item tag 0x0
[  159.261716][ T6009] shield 0003:0955:7214.000C: unknown main item tag 0x0
[  159.266616][ T6009] input: HID 0955:7214 Haptics as /devices/virtual/input/input13
[  159.303009][ T6009] shield 0003:0955:7214.000C: Registered Thunderstrike controller
[  159.305397][ T6009] shield 0003:0955:7214.000C: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.4-1/input0
[  159.435629][ T6009] shield 0003:0955:7214.000C: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  159.436340][  T832] usb 9-1: USB disconnect, device number 11
[  159.438998][ T6009] shield 0003:0955:7214.000C: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  159.445377][ T6009] shield 0003:0955:7214.000C: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  159.448605][ T6009] shield 0003:0955:7214.000C: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  159.481518][ T5951] Bluetooth: hci4: command tx timeout
[  159.685359][ T8962] netlink: 288 bytes leftover after parsing attributes in process `syz.6.761'.
[  159.727378][ T5951] Bluetooth: hci0: unexpected cc 0x042d length: 63 > 7
[  160.062322][ T8980] FAULT_INJECTION: forcing a failure.
[  160.062322][ T8980] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  160.066204][ T8980] CPU: 2 UID: 0 PID: 8980 Comm: syz.4.767 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  160.069577][ T8980] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.073891][ T8980] Call Trace:
[  160.075128][ T8980]  <TASK>
[  160.075997][ T8980]  dump_stack_lvl+0x16c/0x1f0
[  160.077417][ T8980]  should_fail_ex+0x497/0x5b0
[  160.078799][ T8980]  _copy_to_user+0x32/0xd0
[  160.080245][ T8980]  simple_read_from_buffer+0xd0/0x160
[  160.081708][ T8980]  proc_fail_nth_read+0x198/0x270
[  160.083408][ T8980]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  160.085058][ T8980]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  160.086680][ T8980]  vfs_read+0x1df/0xbe0
[  160.087883][ T8980]  ? __fget_files+0x1fc/0x3a0
[  160.089266][ T8980]  ? __pfx___mutex_lock+0x10/0x10
[  160.090744][ T8980]  ? __pfx_vfs_read+0x10/0x10
[  160.092372][ T8980]  ? __fget_files+0x206/0x3a0
[  160.093737][ T8980]  ksys_read+0x12b/0x250
[  160.094975][ T8980]  ? __pfx_ksys_read+0x10/0x10
[  160.096379][ T8980]  __do_fast_syscall_32+0x73/0x120
[  160.097893][ T8980]  do_fast_syscall_32+0x32/0x80
[  160.099404][ T8980]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  160.101229][ T8980] RIP: 0023:0xf70fe579
[  160.102372][ T8980] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  160.107944][ T8980] RSP: 002b:00000000f50f0590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  160.110290][ T8980] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50f0620
[  160.112409][ T8980] RDX: 000000000000000f RSI: 00000000f7433ff4 RDI: 0000000000000000
[  160.114575][ T8980] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  160.116759][ T8980] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  160.118853][ T8980] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  160.120978][ T8980]  </TASK>
[  160.122069][    C2] vkms_vblank_simulate: vblank timer overrun
[  160.287505][ T8987] overlayfs: failed to resolve './file1': -2
[  160.466245][ T5952] hid-generic 0000:0000:0000.000D: item fetching failed at offset 0/1
[  160.471287][ T5952] hid-generic 0000:0000:0000.000D: probe with driver hid-generic failed with error -22
[  160.507582][ T8985] lo speed is unknown, defaulting to 1000
[  160.519847][ T8985] lo speed is unknown, defaulting to 1000
[  160.527614][ T8985] lo speed is unknown, defaulting to 1000
[  160.568152][ T8991] »»»»»»: renamed from lo (while UP)
[  160.693990][ T5951] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  160.697477][ T5951] Bluetooth: hci0: Injecting HCI hardware error event
[  160.701318][ T5305] Bluetooth: hci0: hardware error 0x00
[  160.795235][ T8985] infiniband s
z1: set active
[  160.796929][ T8985] infiniband s
z1: added »»»»»»
[  160.900247][ T8995] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  160.913883][ T8985] RDS/IB: s
z1: added
[  160.917673][ T8985] smc: adding ib device s
z1 with port count 1
[  160.919852][ T8995] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  160.920421][ T8985] smc:    ib device s
z1 port 1 has pnetid 
[  160.926610][ T8995] bond0 (unregistering): Released all slaves
[  160.942665][ T8030] »»»»»» speed is unknown, defaulting to 1000
[  160.959068][ T8985] »»»»»» speed is unknown, defaulting to 1000
[  160.973023][ T8030] »»»»»» speed is unknown, defaulting to 1000
[  161.036462][ T5951] Bluetooth: hci4: unexpected cc 0x042d length: 63 > 7
[  161.039065][ T5951] Bluetooth: hci4: unexpected event for opcode 0x042d
[  161.051416][ T8985] »»»»»» speed is unknown, defaulting to 1000
[  161.154357][ T8985] »»»»»» speed is unknown, defaulting to 1000
[  161.233454][ T8985] »»»»»» speed is unknown, defaulting to 1000
[  161.274291][ T8985] »»»»»» speed is unknown, defaulting to 1000
[  161.319817][ T8985] »»»»»» speed is unknown, defaulting to 1000
[  161.428016][  T832] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[  161.509959][ T9016] syz.4.776: attempt to access beyond end of device
[  161.509959][ T9016] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  161.513821][ T9016] FAT-fs (nbd4): unable to read boot sector
[  161.571544][  T832] usb 11-1: Using ep0 maxpacket: 16
[  161.576111][  T832] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  161.580436][  T832] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  161.584126][  T832] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  161.588918][  T832] usb 11-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  161.593689][  T832] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.598216][  T832] usb 11-1: config 0 descriptor??
[  161.821250][ T5952] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  161.973455][ T5952] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  161.976546][ T5952] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 7727, setting to 1024
[  161.979690][ T5952] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  161.982771][ T5952] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  161.985909][ T5952] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.990585][ T9018] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  161.997208][ T5952] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  162.010959][  T832] shield 0003:0955:7214.000E: unknown main item tag 0x0
[  162.013166][  T832] shield 0003:0955:7214.000E: unknown main item tag 0x0
[  162.015196][  T832] shield 0003:0955:7214.000E: unknown main item tag 0x0
[  162.017286][  T832] shield 0003:0955:7214.000E: unknown main item tag 0x0
[  162.019393][  T832] shield 0003:0955:7214.000E: unknown main item tag 0x0
[  162.026481][  T832] input: HID 0955:7214 Haptics as /devices/virtual/input/input14
[  162.052347][  T832] shield 0003:0955:7214.000E: Registered Thunderstrike controller
[  162.057345][  T832] shield 0003:0955:7214.000E: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.6-1/input0
[  162.212586][ T1016] shield 0003:0955:7214.000E: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  162.212689][ T5952] usb 11-1: USB disconnect, device number 2
[  162.215735][ T1016] shield 0003:0955:7214.000E: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  162.215758][ T1016] shield 0003:0955:7214.000E: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  162.224504][ T1016] shield 0003:0955:7214.000E: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  162.761459][ T5305] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  162.848307][ T9026] Cannot find map_set index 0 as target
[  162.919795][ T5305] Bluetooth: hci4: unexpected cc 0x042d length: 63 > 7
[  162.926137][ T5305] Bluetooth: hci4: unexpected event for opcode 0x042d
[  163.143776][ T9038] netlink: 72 bytes leftover after parsing attributes in process `syz.0.783'.
[  163.837545][ T9053] netlink: 24 bytes leftover after parsing attributes in process `syz.5.787'.
[  163.849841][ T9053] netdevsim netdevsim5 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  163.861231][ T9053] netdevsim netdevsim5 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  163.882266][ T9053] netdevsim netdevsim5 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  163.890447][ T9053] netdevsim netdevsim5 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  164.067593][ T9062] FAULT_INJECTION: forcing a failure.
[  164.067593][ T9062] name failslab, interval 1, probability 0, space 0, times 0
[  164.071427][ T9062] CPU: 3 UID: 0 PID: 9062 Comm: syz.6.789 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  164.074496][ T9062] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  164.077624][ T9062] Call Trace:
[  164.078611][ T9062]  <TASK>
[  164.079483][ T9062]  dump_stack_lvl+0x16c/0x1f0
[  164.080869][ T9062]  should_fail_ex+0x497/0x5b0
[  164.082279][ T9062]  ? fs_reclaim_acquire+0xae/0x150
[  164.083767][ T9062]  should_failslab+0xc2/0x120
[  164.085149][ T9062]  __kmalloc_node_noprof+0xd1/0x520
[  164.086674][ T9062]  ? crypto_alloc_tfmmem.isra.0+0x38/0x110
[  164.088380][ T9062]  ? __pfx_crypto_alg_extsize+0x10/0x10
[  164.090007][ T9062]  crypto_alloc_tfmmem.isra.0+0x38/0x110
[  164.091637][ T9062]  crypto_create_tfm_node+0x83/0x320
[  164.093187][ T9062]  crypto_alloc_tfm_node+0x102/0x260
[  164.094750][ T9062]  sctp_inet_listen+0x882/0xb00
[  164.096186][ T9062]  ? __pfx_sctp_inet_listen+0x10/0x10
[  164.097752][ T9062]  ? __pfx_aa_sk_perm+0x10/0x10
[  164.099190][ T9062]  __sys_listen_socket+0x114/0x160
[  164.100699][ T9062]  __sys_listen+0xa3/0x110
[  164.101958][ T9062]  __ia32_sys_listen+0x53/0x80
[  164.103324][ T9062]  __do_fast_syscall_32+0x73/0x120
[  164.104781][ T9062]  do_fast_syscall_32+0x32/0x80
[  164.106177][ T9062]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  164.107980][ T9062] RIP: 0023:0xf7fc3579
[  164.109131][ T9062] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  164.114349][ T9062] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 000000000000016b
[  164.116650][ T9062] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001
[  164.118850][ T9062] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  164.121073][ T9062] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  164.123263][ T9062] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  164.125488][ T9062] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  164.127703][ T9062]  </TASK>
[  164.129151][ T9062] sctp: failed to load transform for md5: -12
[  164.165332][ T5305] Bluetooth: hci4: unexpected cc 0x042d length: 63 > 7
[  164.167405][ T5305] Bluetooth: hci4: unexpected event for opcode 0x042d
[  164.400861][ T9072] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  164.477707][    T9] usb 9-1: USB disconnect, device number 12
[  164.586762][ T5305] Bluetooth: hci4: unexpected cc 0x042d length: 63 > 7
[  164.588835][ T5305] Bluetooth: hci4: unexpected event for opcode 0x042d
[  164.598723][ T9085] netlink: 'syz.4.799': attribute type 12 has an invalid length.
[  164.871253][ T1016] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[  165.021490][ T1016] usb 11-1: Using ep0 maxpacket: 32
[  165.026300][ T1016] usb 11-1: config index 0 descriptor too short (expected 29220, got 36)
[  165.029645][ T1016] usb 11-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  165.036232][ T1016] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 81
[  165.050588][ T1016] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  165.070637][ T1016] usb 11-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  165.086949][ T5305] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  165.090619][ T5305] Bluetooth: hci4: Injecting HCI hardware error event
[  165.098413][ T1016] usb 11-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  165.121349][ T1016] usb 11-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  165.127457][ T1016] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.134018][ T1016] usb 11-1: config 0 descriptor??
[  165.348451][ T1016] usblp 11-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  165.570720][ T9128] FAULT_INJECTION: forcing a failure.
[  165.570720][ T9128] name failslab, interval 1, probability 0, space 0, times 0
[  165.575200][ T9128] CPU: 2 UID: 0 PID: 9128 Comm: syz.5.807 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  165.578232][ T9128] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.581321][ T9128] Call Trace:
[  165.582493][ T9128]  <TASK>
[  165.583471][ T9128]  dump_stack_lvl+0x16c/0x1f0
[  165.584870][ T9128]  should_fail_ex+0x497/0x5b0
[  165.586228][ T9128]  ? fs_reclaim_acquire+0xae/0x150
[  165.587722][ T9128]  should_failslab+0xc2/0x120
[  165.589279][ T9128]  __kmalloc_cache_noprof+0x68/0x420
[  165.590850][ T9128]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  165.592826][ T9128]  ? lockdep_hardirqs_on+0x7c/0x110
[  165.594580][ T9128]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  165.596394][ T9128]  __request_module+0x2c6/0x6c0
[  165.597798][ T9128]  ? rtnl_newlink+0x133c/0x1d70
[  165.599202][ T9128]  ? __pfx___request_module+0x10/0x10
[  165.600756][ T9128]  ? find_held_lock+0x2d/0x110
[  165.602319][ T9128]  ? lock_acquire+0x2f/0xb0
[  165.603740][ T9128]  ? rtnl_link_ops_get+0x35/0x2c0
[  165.605197][ T9128]  rtnl_newlink+0x133c/0x1d70
[  165.606769][ T9128]  ? hlock_class+0x4e/0x130
[  165.608575][ T9128]  ? __lock_acquire+0xcc5/0x3c40
[  165.610509][ T9128]  ? __pfx_rtnl_newlink+0x10/0x10
[  165.612543][ T9128]  ? __pfx___lock_acquire+0x10/0x10
[  165.614643][ T9128]  ? kmem_cache_free+0x152/0x4c0
[  165.616634][ T9128]  ? aa_get_newest_label+0x376/0x680
[  165.618734][ T9128]  ? find_held_lock+0x2d/0x110
[  165.620609][ T9128]  ? find_held_lock+0x2d/0x110
[  165.622124][ T9128]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  165.623824][ T9128]  ? __pfx_lock_release+0x10/0x10
[  165.625281][ T9128]  ? trace_lock_acquire+0x14e/0x1f0
[  165.626801][ T9128]  ? __pfx_rtnl_newlink+0x10/0x10
[  165.628269][ T9128]  rtnetlink_rcv_msg+0x95b/0xea0
[  165.629709][ T9128]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  165.631272][ T9128]  ? __pfx___dev_queue_xmit+0x10/0x10
[  165.633272][ T9128]  netlink_rcv_skb+0x165/0x410
[  165.635209][ T9128]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  165.636929][ T9128]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  165.638544][ T9128]  ? netlink_deliver_tap+0x1ae/0xca0
[  165.640084][ T9128]  netlink_unicast+0x53c/0x7f0
[  165.641477][ T9128]  ? __pfx_netlink_unicast+0x10/0x10
[  165.643512][ T9128]  ? __phys_addr_symbol+0x30/0x80
[  165.645166][ T9128]  ? __check_object_size+0x488/0x710
[  165.646714][ T9128]  netlink_sendmsg+0x8b8/0xd70
[  165.648226][ T9128]  ? __pfx_netlink_sendmsg+0x10/0x10
[  165.649817][ T9128]  ____sys_sendmsg+0x9ae/0xb40
[  165.651187][ T9128]  ? __pfx_____sys_sendmsg+0x10/0x10
[  165.653176][ T9128]  ? get_compat_msghdr+0x11b/0x170
[  165.653953][ T9133] netlink: 24 bytes leftover after parsing attributes in process `syz.6.802'.
[  165.655170][ T9128]  ___sys_sendmsg+0x135/0x1e0
[  165.659090][ T9128]  ? __pfx____sys_sendmsg+0x10/0x10
[  165.660613][ T9128]  ? __pfx_lock_release+0x10/0x10
[  165.662232][ T9128]  ? trace_lock_acquire+0x14e/0x1f0
[  165.664328][ T9128]  ? __fget_files+0x206/0x3a0
[  165.666093][ T9128]  __sys_sendmsg+0x16e/0x220
[  165.667876][ T9128]  ? __pfx___sys_sendmsg+0x10/0x10
[  165.669826][ T9128]  __do_fast_syscall_32+0x73/0x120
[  165.671740][ T9128]  do_fast_syscall_32+0x32/0x80
[  165.673555][ T9128]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  165.675334][ T9128] RIP: 0023:0xf7ff4579
[  165.676587][ T9128] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  165.682314][ T9128] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  165.685587][ T9128] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  165.688685][ T9128] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  165.691684][ T9128] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  165.694746][ T9128] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  165.697808][ T9128] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  165.700917][ T9128]  </TASK>
[  165.702236][    C2] vkms_vblank_simulate: vblank timer overrun
[  165.712923][ T9134] blktrace: Concurrent blktraces are not allowed on loop3
[  165.726923][    C1] usblp0: nonzero read bulk status received: -71
[  165.727060][ T1016] usb 11-1: USB disconnect, device number 3
[  165.730515][ T9092] usblp0: error -71 reading from printer
[  165.742975][ T1016] usblp0: removed
[  165.797408][ T9141] binder: 9140:9141 ioctl c018620c 200001c0 returned -1
[  165.803717][ T9141] can0: slcan on ptm0.
[  165.961736][ T9140] can0 (unregistered): slcan off ptm0.
[  166.159232][ T9153] kAFS: unable to lookup cell 'sy>7 †ŸO-z1'
[  166.393855][ T9156] netlink: 12 bytes leftover after parsing attributes in process `syz.6.816'.
[  166.539340][ T9158] bridge_slave_0: left allmulticast mode
[  166.541038][ T9158] bridge_slave_0: left promiscuous mode
[  166.542879][ T9158] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.546475][ T9158] bridge_slave_1: left allmulticast mode
[  166.548197][ T9158] bridge_slave_1: left promiscuous mode
[  166.549921][ T9158] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.564205][ T9158] team0: Port device team_slave_0 removed
[  166.573026][ T9158] team0: Port device team_slave_1 removed
[  166.575170][ T9158] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  166.577328][ T9158] batman_adv: batadv0: Removing interface: batadv_slave_0
[  166.582318][ T9158] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  166.584482][ T9158] batman_adv: batadv0: Removing interface: batadv_slave_1
[  166.614119][ T9158] team0: Mode changed to "random"
[  166.619642][ T9158] vlan0: entered promiscuous mode
[  166.628520][ T9158] team0: Port device vlan0 added
[  166.632973][ T9158] tipc: Started in network mode
[  166.634633][ T9158] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  166.637120][ T9158] tipc: Enabled bearer <eth:team0>, priority 0
[  167.251189][ T9175] »»»»»» speed is unknown, defaulting to 1000
[  167.672052][ T9192] FAULT_INJECTION: forcing a failure.
[  167.672052][ T9192] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.675872][ T9192] CPU: 1 UID: 0 PID: 9192 Comm: syz.0.826 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  167.678938][ T9192] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.682046][ T9192] Call Trace:
[  167.683031][ T9192]  <TASK>
[  167.683905][ T9192]  dump_stack_lvl+0x16c/0x1f0
[  167.685302][ T9192]  should_fail_ex+0x497/0x5b0
[  167.686687][ T9192]  _copy_to_user+0x32/0xd0
[  167.688006][ T9192]  simple_read_from_buffer+0xd0/0x160
[  167.689559][ T9192]  proc_fail_nth_read+0x198/0x270
[  167.691028][ T9192]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  167.692812][ T9192]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  167.694424][ T9192]  vfs_read+0x1df/0xbe0
[  167.695652][ T9192]  ? __fget_files+0x1fc/0x3a0
[  167.697044][ T9192]  ? __pfx___mutex_lock+0x10/0x10
[  167.698515][ T9192]  ? __pfx_vfs_read+0x10/0x10
[  167.699947][ T9192]  ? __fget_files+0x206/0x3a0
[  167.701379][ T9192]  ksys_read+0x12b/0x250
[  167.702634][ T9192]  ? __pfx_ksys_read+0x10/0x10
[  167.704049][ T9192]  __do_fast_syscall_32+0x73/0x120
[  167.705544][ T9192]  do_fast_syscall_32+0x32/0x80
[  167.706988][ T9192]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.708854][ T9192] RIP: 0023:0xf7fc0579
[  167.710052][ T9192] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.715659][ T9192] RSP: 002b:00000000f50f5590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  167.718099][ T9192] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f50f5620
[  167.720386][ T9192] RDX: 000000000000000f RSI: 00000000f7453ff4 RDI: 0000000000000000
[  167.722671][ T9192] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  167.724959][ T9192] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  167.727262][ T9192] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.729574][ T9192]  </TASK>
[  167.755994][ T9196] overlay: Unknown parameter 'defcontext'
[  167.762853][   T35] tipc: Node number set to 11578026
[  168.054234][ T5305] Bluetooth: hci4: unexpected cc 0x042d length: 63 > 7
[  168.056429][ T5305] Bluetooth: hci4: unexpected event for opcode 0x042d
[  169.823168][ T9258] netlink: 8 bytes leftover after parsing attributes in process `syz.5.848'.
[  169.827962][ T9258] netlink: 32 bytes leftover after parsing attributes in process `syz.5.848'.
[  169.913254][ T9263] netlink: 4 bytes leftover after parsing attributes in process `syz.5.851'.
[  170.074110][ T9277] PKCS8: Unsupported PKCS#8 version
[  170.120129][ T9277] »»»»»» speed is unknown, defaulting to 1000
[  170.232362][ T9288] kAFS: unable to lookup cell 'sy>7 †ŸO-z1'
[  171.373312][ T9291] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  171.460072][ T9313] netlink: 8 bytes leftover after parsing attributes in process `syz.5.866'.
[  171.615258][   T70] Bluetooth: hci5: Frame reassembly failed (-84)
[  171.944000][ T9325] can0: slcan on ttyS3.
[  171.960998][ T5958] Bluetooth: hci6: sending frame failed (-49)
[  171.963756][ T5951] Bluetooth: hci6: Opcode 0x1003 failed: -49
[  171.968392][ T9325] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  171.975799][ T9325] netlink: 60 bytes leftover after parsing attributes in process `syz.0.870'.
[  172.133138][ T5951] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  172.136288][ T5951] Bluetooth: hci4: Injecting HCI hardware error event
[  172.279403][ T9316] Process accounting resumed
[  172.362574][ T9340] netlink: 28 bytes leftover after parsing attributes in process `syz.4.873'.
[  173.163702][    C3] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  173.225036][ T9363] overlayfs: missing 'lowerdir'
[  173.263803][ T9365] netlink: 1264 bytes leftover after parsing attributes in process `syz.0.882'.
[  173.278369][ T9365] program syz.0.882 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.335604][    T9] 
[  173.336384][    T9] ======================================================
[  173.338424][    T9] WARNING: possible circular locking dependency detected
[  173.340386][    T9] 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0 Not tainted
[  173.342945][    T9] ------------------------------------------------------
[  173.345860][    T9] kworker/0:1/9 is trying to acquire lock:
[  173.347475][    T9] ffff8880217c00e0 (&q->q_usage_counter(queue)#51){++++}-{0:0}, at: blk_mq_alloc_request+0x59b/0x950
[  173.351382][    T9] 
[  173.351382][    T9] but task is already holding lock:
[  173.354109][    T9] ffff8880217c06f8 (&q->limits_lock){+.+.}-{4:4}, at: sd_revalidate_disk.isra.0+0x52c/0xa8d0
[  173.357868][    T9] 
[  173.357868][    T9] which lock already depends on the new lock.
[  173.357868][    T9] 
[  173.360740][    T9] 
[  173.360740][    T9] the existing dependency chain (in reverse order) is:
[  173.363138][    T9] 
[  173.363138][    T9] -> #5 (&q->limits_lock){+.+.}-{4:4}:
[  173.365176][    T9]        __mutex_lock+0x19b/0xa60
[  173.366542][    T9]        __nbd_set_size+0x2c0/0x730
[  173.367940][    T9]        nbd_start_device+0x8fd/0xd70
[  173.369507][    T9]        nbd_ioctl+0x21a/0xfd0
[  173.371263][    T9]        compat_blkdev_ioctl+0x2f7/0x750
[  173.373418][    T9]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  173.375664][    T9]        __do_fast_syscall_32+0x73/0x120
[  173.377269][    T9]        do_fast_syscall_32+0x32/0x80
[  173.378756][    T9]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.380747][    T9] 
[  173.380747][    T9] -> #4 (&q->q_usage_counter(io)#49){++++}-{0:0}:
[  173.383173][    T9]        blk_mq_submit_bio+0x1fb6/0x24c0
[  173.384700][    T9]        __submit_bio+0x384/0x540
[  173.386106][    T9]        submit_bio_noacct_nocheck+0x698/0xd70
[  173.387793][    T9]        submit_bio_noacct+0x93a/0x1e20
[  173.389291][    T9]        block_read_full_folio+0x812/0xa50
[  173.391038][    T9]        filemap_read_folio+0xc6/0x2a0
[  173.393008][    T9]        filemap_get_pages+0x155f/0x1be0
[  173.395101][    T9]        filemap_read+0x3ca/0xd70
[  173.396992][    T9]        blkdev_read_iter+0x187/0x480
[  173.399038][    T9]        vfs_read+0x87f/0xbe0
[  173.400372][    T9]        ksys_read+0x12b/0x250
[  173.401743][    T9]        do_syscall_64+0xcd/0x250
[  173.403106][    T9]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.404918][    T9] 
[  173.404918][    T9] -> #3 (mapping.invalidate_lock#2){.+.+}-{4:4}:
[  173.407355][    T9]        down_read+0x9a/0x330
[  173.408716][    T9]        filemap_fault+0x2e0/0x2820
[  173.410139][    T9]        __do_fault+0x10a/0x490
[  173.411564][    T9]        do_pte_missing+0xebd/0x3e00
[  173.413176][    T9]        __handle_mm_fault+0x103c/0x2a40
[  173.414723][    T9]        handle_mm_fault+0x3fa/0xaa0
[  173.416234][    T9]        do_user_addr_fault+0x7a3/0x13f0
[  173.417790][    T9]        exc_page_fault+0x5c/0xc0
[  173.419194][    T9]        asm_exc_page_fault+0x26/0x30
[  173.420666][    T9]        _copy_from_user+0x95/0xd0
[  173.422106][    T9]        get_user_ifreq+0x190/0x250
[  173.423584][    T9]        sock_do_ioctl+0x16c/0x280
[  173.425051][    T9]        compat_sock_ioctl+0x318/0x7e0
[  173.426605][    T9]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  173.428281][    T9]        __do_fast_syscall_32+0x73/0x120
[  173.429790][    T9]        do_fast_syscall_32+0x32/0x80
[  173.431241][    T9]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.433230][    T9] 
[  173.433230][    T9] -> #2 (&mm->mmap_lock){++++}-{4:4}:
[  173.435434][    T9]        __might_fault+0x11b/0x190
[  173.436900][    T9]        _copy_from_user+0x29/0xd0
[  173.438323][    T9]        compat_blk_trace_setup+0xc9/0x200
[  173.439955][    T9]        blk_trace_ioctl+0x24a/0x290
[  173.441416][    T9]        compat_blkdev_ioctl+0x13c/0x750
[  173.442942][    T9]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  173.444806][    T9]        __do_fast_syscall_32+0x73/0x120
[  173.446662][    T9]        do_fast_syscall_32+0x32/0x80
[  173.448450][    T9]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.450718][    T9] 
[  173.450718][    T9] -> #1 (&q->debugfs_mutex){+.+.}-{4:4}:
[  173.453285][    T9]        __mutex_lock+0x19b/0xa60
[  173.454749][    T9]        blk_mq_init_sched+0x42b/0x640
[  173.456611][    T9]        elevator_init_mq+0x2cd/0x420
[  173.458223][    T9]        add_disk_fwnode+0x113/0x1300
[  173.459737][    T9]        sd_probe+0xa66/0xfa0
[  173.461055][    T9]        really_probe+0x23e/0xa90
[  173.462438][    T9]        __driver_probe_device+0x1de/0x440
[  173.464040][    T9]        driver_probe_device+0x4c/0x1b0
[  173.465666][    T9]        __device_attach_driver+0x1df/0x310
[  173.467621][    T9]        bus_for_each_drv+0x157/0x1e0
[  173.469075][    T9]        __device_attach_async_helper+0x1d3/0x290
[  173.470817][    T9]        async_run_entry_fn+0x9c/0x530
[  173.472350][    T9]        process_one_work+0x958/0x1b30
[  173.473891][    T9]        worker_thread+0x6c8/0xf00
[  173.475268][    T9]        kthread+0x2c1/0x3a0
[  173.476646][    T9]        ret_from_fork+0x45/0x80
[  173.478002][    T9]        ret_from_fork_asm+0x1a/0x30
[  173.479455][    T9] 
[  173.479455][    T9] -> #0 (&q->q_usage_counter(queue)#51){++++}-{0:0}:
[  173.481845][    T9]        __lock_acquire+0x249e/0x3c40
[  173.483323][    T9]        lock_acquire.part.0+0x11b/0x380
[  173.484871][    T9]        blk_queue_enter+0x50f/0x640
[  173.486343][    T9]        blk_mq_alloc_request+0x59b/0x950
[  173.488359][    T9]        scsi_execute_cmd+0x1f1/0xff0
[  173.490410][    T9]        read_capacity_16+0x21a/0xe20
[  173.492479][    T9]        sd_revalidate_disk.isra.0+0x1a06/0xa8d0
[  173.494847][    T9]        scsi_rescan_device+0x243/0x340
[  173.496509][    T9]        ata_scsi_dev_rescan+0x1cb/0x470
[  173.498134][    T9]        process_one_work+0x958/0x1b30
[  173.499612][    T9]        worker_thread+0x6c8/0xf00
[  173.501004][    T9]        kthread+0x2c1/0x3a0
[  173.502275][    T9]        ret_from_fork+0x45/0x80
[  173.503619][    T9]        ret_from_fork_asm+0x1a/0x30
[  173.505101][    T9] 
[  173.505101][    T9] other info that might help us debug this:
[  173.505101][    T9] 
[  173.508030][    T9] Chain exists of:
[  173.508030][    T9]   &q->q_usage_counter(queue)#51 --> &q->q_usage_counter(io)#49 --> &q->limits_lock
[  173.508030][    T9] 
[  173.512372][    T9]  Possible unsafe locking scenario:
[  173.512372][    T9] 
[  173.514507][    T9]        CPU0                    CPU1
[  173.516056][    T9]        ----                    ----
[  173.517611][    T9]   lock(&q->limits_lock);
[  173.518953][    T9]                                lock(&q->q_usage_counter(io)#49);
[  173.521194][    T9]                                lock(&q->limits_lock);
[  173.523161][    T9]   rlock(&q->q_usage_counter(queue)#51);
[  173.524796][    T9] 
[  173.524796][    T9]  *** DEADLOCK ***
[  173.524796][    T9] 
[  173.527088][    T9] 5 locks held by kworker/0:1/9:
[  173.528511][    T9]  #0: ffff88801ac88948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12cd/0x1b30
[  173.532151][    T9]  #1: ffffc900001b7d80 ((work_completion)(&(&ap->scsi_rescan_task)->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30
[  173.537044][    T9]  #2: ffff888020e84358 (&ap->scsi_scan_mutex){+.+.}-{4:4}, at: ata_scsi_dev_rescan+0x3e/0x470
[  173.540509][    T9]  #3: ffff888021162378 (&dev->mutex){....}-{4:4}, at: scsi_rescan_device+0x27/0x340
[  173.543226][    T9]  #4: ffff8880217c06f8 (&q->limits_lock){+.+.}-{4:4}, at: sd_revalidate_disk.isra.0+0x52c/0xa8d0
[  173.546247][    T9] 
[  173.546247][    T9] stack backtrace:
[  173.547936][    T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:1 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  173.550903][    T9] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.553943][    T9] Workqueue: events ata_scsi_dev_rescan
[  173.555541][    T9] Call Trace:
[  173.556524][    T9]  <TASK>
[  173.557374][    T9]  dump_stack_lvl+0x116/0x1f0
[  173.558721][    T9]  print_circular_bug+0x41c/0x610
[  173.560180][    T9]  check_noncircular+0x31a/0x400
[  173.561636][    T9]  ? __pfx_check_noncircular+0x10/0x10
[  173.563185][    T9]  ? __pfx___schedule+0x10/0x10
[  173.564578][    T9]  ? __pfx_try_to_wake_up+0x10/0x10
[  173.566065][    T9]  ? lockdep_lock+0xc6/0x200
[  173.567402][    T9]  ? __pfx_lockdep_lock+0x10/0x10
[  173.568851][    T9]  __lock_acquire+0x249e/0x3c40
[  173.570243][    T9]  ? __pfx___lock_acquire+0x10/0x10
[  173.571740][    T9]  lock_acquire.part.0+0x11b/0x380
[  173.573618][    T9]  ? blk_mq_alloc_request+0x59b/0x950
[  173.575775][    T9]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  173.578026][    T9]  ? rcu_is_watching+0x12/0xc0
[  173.579863][    T9]  ? trace_lock_acquire+0x14e/0x1f0
[  173.581362][    T9]  ? blk_mq_alloc_request+0x59b/0x950
[  173.582891][    T9]  ? lock_acquire+0x2f/0xb0
[  173.584199][    T9]  ? blk_mq_alloc_request+0x59b/0x950
[  173.585727][    T9]  blk_queue_enter+0x50f/0x640
[  173.587108][    T9]  ? blk_mq_alloc_request+0x59b/0x950
[  173.588674][    T9]  ? __pfx_blk_queue_enter+0x10/0x10
[  173.590170][    T9]  ? save_trace+0x42/0xa10
[  173.591362][    T9]  ? add_lock_to_list+0x17d/0x390
[  173.592726][    T9]  blk_mq_alloc_request+0x59b/0x950
[  173.594086][    T9]  ? __pfx_blk_mq_alloc_request+0x10/0x10
[  173.595691][    T9]  ? __pfx___lock_acquire+0x10/0x10
[  173.597117][    T9]  ? find_held_lock+0x2d/0x110
[  173.598462][    T9]  scsi_execute_cmd+0x1f1/0xff0
[  173.599849][    T9]  ? lock_acquire.part.0+0x11b/0x380
[  173.601357][    T9]  ? __pfx_scsi_execute_cmd+0x10/0x10
[  173.602832][    T9]  ? sd_revalidate_disk.isra.0+0x52c/0xa8d0
[  173.604510][    T9]  ? rcu_is_watching+0x12/0xc0
[  173.605878][    T9]  read_capacity_16+0x21a/0xe20
[  173.607271][    T9]  ? __pfx_read_capacity_16+0x10/0x10
[  173.608802][    T9]  ? __pfx___mutex_lock+0x10/0x10
[  173.610237][    T9]  ? __pfx_scsi_execute_cmd+0x10/0x10
[  173.611767][    T9]  sd_revalidate_disk.isra.0+0x1a06/0xa8d0
[  173.613439][    T9]  ? find_held_lock+0x2d/0x110
[  173.614812][    T9]  ? mark_held_locks+0x9f/0xe0
[  173.616212][    T9]  ? __pfx_sd_revalidate_disk.isra.0+0x10/0x10
[  173.617968][    T9]  ? kasan_save_stack+0x42/0x60
[  173.619357][    T9]  ? kasan_save_stack+0x33/0x60
[  173.620791][    T9]  ? kasan_save_track+0x14/0x30
[  173.622176][    T9]  ? kasan_save_free_info+0x3b/0x60
[  173.623656][    T9]  ? __kasan_slab_free+0x51/0x70
[  173.625071][    T9]  ? kfree+0x14f/0x4b0
[  173.626288][    T9]  ? scsi_attach_vpd+0x4dc/0x580
[  173.627720][    T9]  ? scsi_rescan_device+0xf5/0x340
[  173.629258][    T9]  ? ata_scsi_dev_rescan+0x1cb/0x470
[  173.631205][    T9]  ? process_one_work+0x958/0x1b30
[  173.632797][    T9]  ? worker_thread+0x6c8/0xf00
[  173.634160][    T9]  ? hlock_class+0x4e/0x130
[  173.635470][    T9]  ? mark_lock+0xb5/0xc60
[  173.636925][    T9]  ? mark_held_locks+0x9f/0xe0
[  173.638298][    T9]  ? kasan_quarantine_put+0x10a/0x240
[  173.639818][    T9]  ? lockdep_hardirqs_on+0x7c/0x110
[  173.641304][    T9]  ? kfree+0x14f/0x4b0
[  173.642470][    T9]  ? lockdep_hardirqs_on+0x7c/0x110
[  173.643956][    T9]  ? scsi_attach_vpd+0x4dc/0x580
[  173.645373][    T9]  ? scsi_attach_vpd+0x4dc/0x580
[  173.646838][    T9]  ? __pfx_sd_rescan+0x10/0x10
[  173.648285][    T9]  scsi_rescan_device+0x243/0x340
[  173.649736][    T9]  ata_scsi_dev_rescan+0x1cb/0x470
[  173.651202][    T9]  process_one_work+0x958/0x1b30
[  173.652663][    T9]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  173.654324][    T9]  ? __pfx_process_one_work+0x10/0x10
[  173.655952][    T9]  ? rcu_is_watching+0x12/0xc0
[  173.657343][    T9]  ? assign_work+0x1a0/0x250
[  173.658670][    T9]  worker_thread+0x6c8/0xf00
[  173.660020][    T9]  ? __pfx_worker_thread+0x10/0x10
[  173.661505][    T9]  kthread+0x2c1/0x3a0
[  173.662684][    T9]  ? _raw_spin_unlock_irq+0x23/0x50
[  173.664189][    T9]  ? __pfx_kthread+0x10/0x10
[  173.665526][    T9]  ret_from_fork+0x45/0x80
[  173.666831][    T9]  ? __pfx_kthread+0x10/0x10
[  173.668175][    T9]  ret_from_fork_asm+0x1a/0x30
[  173.669605][    T9]  </TASK>
[  173.670951][ T5305] Bluetooth: hci5: Entering manufacturer mode failed (-110)

VM DIAGNOSIS:
04:51:17  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85145da5 RDI=ffffffff9a66a200 RBP=ffffffff9a66a1c0 RSP=ffffc900001b6a60
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36
R12=0000000000000000 R13=0000000000000065 R14=ffffffff85145d40 R15=0000000000000000
RIP=ffffffff85145dcf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002000cffc CR3=0000000074f50000 CR4=00352ef0
DR0=0000000000000007 DR1=000000000000000b DR2=0000000000000002 DR3=0000000000000010 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5502e9faa879b7c1 301ce5a10e971ba8
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0db29b3efd151ba7 d4dd77af1fb4ec26
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1afb9a1abcf3fe8b db0d0ab3ad4447b1
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0126bf282feefe22 589c8b8a5c660a17
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000006880
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0080010000800100 14313b7e00800100
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006a0000006a 0000006a00800100
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 142f7d800000006a 00800100142d908e
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006a1434b858 143334ce0000006a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b314b16d859724c5 73efea26884d6ce2
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cc443477f668d2cd b445d979b43e02bd
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000001 RCX=1ffff9200087eebe RDX=dffffc0000000000
RSI=ffffffff81fb8d44 RDI=ffff888029fa3908 RBP=ffffc900043f75f0 RSP=ffffc900043f7538
R8 =ffffc900043f75dc R9 =ffffffff90bbd5c2 R10=ffffc900043f75a8 R11=000000000000fb8c
R12=ffffc900043f75f8 R13=ffffc900043f75a8 R14=ffffc900043f75dd R15=ffff888029fa2440
RIP=ffffffff8148f02a RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020032000 CR3=0000000078a64000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000011800000000 0000000500000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88802b446700 RCX=ffffffff818d54cc RDX=ffff888025e12440
RSI=ffffffff818d54a6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc9002725f9c8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=00000000000a201e
R12=ffffed1005688ce1 R13=0000000000000001 R14=ffff88802b446708 R15=ffff88802b63ff80
RIP=ffffffff818d54a8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005646673e18e8 CR3=000000004c054000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=eb5832efeb5832ef eb5832efeb5832ef eb5832efeb5832ef eb5832efeb5832ef eb5832efeb5832ef eb5832efeb5832ef eb5832efeb5832ef eb5832efeb5832ef
ZMM22=bc991766bc991766 bc991766bc991766 bc991766bc991766 bc991766bc991766 bc991766bc991766 bc991766bc991766 bc991766bc991766 bc991766bc991766
ZMM23=95b1669195b16691 95b1669195b16691 95b1669195b16691 95b1669195b16691 95b1669195b16691 95b1669195b16691 95b1669195b16691 95b1669195b16691
ZMM24=8f5ac7e38f5ac7e3 8f5ac7e38f5ac7e3 8f5ac7e38f5ac7e3 8f5ac7e38f5ac7e3 8f5ac7e38f5ac7e3 8f5ac7e38f5ac7e3 8f5ac7e38f5ac7e3 8f5ac7e38f5ac7e3
ZMM25=e9678bebe9678beb e9678bebe9678beb e9678bebe9678beb e9678bebe9678beb e9678bebe9678beb e9678bebe9678beb e9678bebe9678beb e9678bebe9678beb
ZMM26=cc89e19ccc89e19c cc89e19ccc89e19c cc89e19ccc89e19c cc89e19ccc89e19c cc89e19ccc89e19c cc89e19ccc89e19c cc89e19ccc89e19c cc89e19ccc89e19c
ZMM27=9412658394126583 9412658394126583 9412658394126583 9412658394126583 9412658394126583 9412658394126583 9412658394126583 9412658394126583
ZMM28=000000300000002f 0000002e0000002d 0000002c0000002b 0000002a00000029 0000002800000027 0000002600000025 0000002400000023 0000002200000021
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=3e0700003e070000 3e0700003e070000 3e0700003e070000 3e0700003e070000 3e0700003e070000 3e0700003e070000 3e0700003e070000 3e0700003e070000
info registers vcpu 3

CPU#3
RAX=000000000025394c RBX=0000000000000003 RCX=ffffffff8b1a8889 RDX=ffffed10056e6fee
RSI=ffffffff8bb17240 RDI=ffffffff81703079 RBP=ffffed1003a5a488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=ffff88802b63fb10
R12=0000000000000003 R13=ffff88801d2d2440 R14=ffffffff901cf6d0 R15=0000000000000000
RIP=ffffffff8b1a9c6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3de951 CR3=0000000074f50000 CR4=00352ef0
DR0=0000000000000007 DR1=000000000000000b DR2=0000000000000002 DR3=0000000000000010 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000