last executing test programs:

4m4.205471897s ago: executing program 32 (id=4644):
socket(0xa, 0x2, 0x0)
socket(0x10, 0x803, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r2}, 0x1e)
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r1], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff], 0x1f00})

3m36.721254951s ago: executing program 33 (id=4896):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x0, 0xc, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0xe}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000003c0)={r0, 0x0, &(0x7f0000000380)=""/53}, 0x20)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x800)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0xfffd}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000019b00)=@newtfilter={0x3c, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r6, {0x5, 0xffe0}, {}, {0x7, 0xf}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0xb}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x2008c014)
r7 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r8)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_PROBE_CLIENT(r8, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="01002cbd7000fcdbdf255400000008000300", @ANYRES32=r10, @ANYBLOB="2d153d31783aaff9a8913b27e9387ec4aaa2a93f9158e0b184afcb1067d67493bb9703658673bece4a0d3d5a567f934a64af5ff038ff3e5738b06789311959078de7bf6af43d71f6f9011542ec5b5cf9f68496399d402bf3f504a19fb661fb3fa041e5e7cf6ae7372987770c05d1c91291c1ab7f0bdc562949913827415977b58cc4487cab2ad95d5cd630f9d7a56b748d95ab10f14cc6254f33691a803172fe4f53bd04382f8e743619d07ff5b3a9e242d1618b23228c61a791762a03caef7398064976da6a918cc79df2427287ff96f5d716e97a098344e087128ac5aac4eb5e144c45"], 0x7}, 0x1, 0x0, 0x0, 0x40004}, 0x40900)
ioctl$VIDIOC_S_INPUT(r7, 0xc0045627, &(0x7f0000000100)=0x3)
ioctl$VIDIOC_ENUM_DV_TIMINGS(r7, 0xc0945662, &(0x7f0000000500)={0x1, 0x0, '\x00', {0x0, @bt={0xfffffff1, 0x8, 0x0, 0x0, 0x9ef0, 0x6, 0x280000, 0x3, 0x0, 0x5, 0xd, 0x9, 0x93f, 0x57, 0x4, 0x34, {0x4, 0xe2a4}, 0xca, 0x8}}})
r11 = syz_usb_connect(0x3, 0x54, &(0x7f0000000040)={{0x12, 0x1, 0x110, 0xf, 0x26, 0xb6, 0x8, 0x83a, 0x7511, 0x9ce7, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x42, 0x1, 0x80, 0x1, 0x70, 0x7f, [{{0x9, 0x4, 0xae, 0xae, 0x5, 0x50, 0x82, 0x23, 0x7, [], [{{0x9, 0x5, 0x80, 0x10, 0x1ff, 0x1, 0x8, 0x9, [@generic={0x3, 0x30, '1'}]}}, {{0x9, 0x5, 0x4, 0x10, 0x20, 0x9, 0xc0, 0x78}}, {{0x9, 0x5, 0xe, 0xc, 0x200, 0x7, 0x7, 0xf}}, {{0x9, 0x5, 0x0, 0x3, 0x40, 0x40, 0xf}}, {{0x9, 0x5, 0x1, 0x1, 0x40, 0x5, 0x3, 0x46}}]}}]}}]}}, 0x0)
syz_usb_ep_read(r11, 0xe, 0x0, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r12 = dup(r2)
write$FUSE_BMAP(r12, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r12, &(0x7f0000000740)=ANY=[@ANYBLOB="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"/280], 0xb0)
write$FUSE_NOTIFY_RETRIEVE(r12, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r12])
r13 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x10000, 0x0)
ioctl$SOUND_MIXER_READ_VOLUME(r13, 0x80044d10, &(0x7f0000000180))
chdir(&(0x7f0000001100)='./file0\x00')
utimensat(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0x0)

3m32.652184191s ago: executing program 34 (id=4921):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r2}, 0x10)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000440)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x2f, 0x0, @dev={0xfe, 0x80, '\x00', 0xa}, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0xc3}}}}}}}, 0x0)
r3 = socket$l2tp(0x2, 0x2, 0x73)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x200000, 0x0)
ioctl$TUNSETFILTEREBPF(r5, 0x800454e1, &(0x7f00000003c0))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={<r6=>0xffffffffffffffff})
close_range(r6, 0xffffffffffffffff, 0x2)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40980, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r7, 0x400455c8, 0x8)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000040)=0x3)
r8 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x5883, 0x100, 0x0, 0x3}, &(0x7f0000000340), &(0x7f0000000280))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmmsg$unix(r9, &(0x7f0000001f40)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22040881}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)=[@rights={{0x14, 0x1, 0x1, [r8]}}], 0x18, 0x4000}}], 0x2, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
ioctl$TCSETSW(r7, 0x5403, &(0x7f0000000080)={0x563, 0x9, 0x401, 0x6, 0x10, "ab4fd1f211a0c0d9f598259a4d7b2ad69c2d90"})
dup3(r4, r6, 0x0)
getsockopt$inet_buf(r3, 0x0, 0x20, &(0x7f00000004c0)=""/250, &(0x7f0000000000)=0xfa)

3m31.083247308s ago: executing program 35 (id=5075):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000002000f000000050030000000000005002f000000000008000300", @ANYRES32=r2], 0x2c}, 0x1, 0x0, 0x0, 0x81}, 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x4) (async, rerun: 64)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000)='gadgetfs\x00', 0xc94, 0x0) (rerun: 64)

3m15.269419428s ago: executing program 1 (id=5330):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x4, 0x42000)
r1 = geteuid()
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000801, r1, &(0x7f0000000040)={0x10000, 0x100000000, 0x7, 0x8, 0x3, 0x1000, 0x9, 0x1000, 0x6})
r2 = accept$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @multicast2}, &(0x7f0000000100)=0x10)
getsockopt$sock_buf(r2, 0x1, 0x37, &(0x7f0000000140)=""/254, &(0x7f0000000240)=0xfe)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f0000000280)=0x11, 0x4)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x74, 0x0, 0x420, 0x70bd27, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x6}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_SERVICE={0x18, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@empty}]}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80000000}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}]}, 0x74}}, 0x800)
socket$nl_route(0x10, 0x3, 0x0)
mount$binder(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480), 0x50800, &(0x7f00000004c0)={[{@max={'max', 0x3d, 0x3}}, {@max={'max', 0x3d, 0x4}}, {@stats}, {@max={'max', 0x3d, 0x4}}, {@stats}, {@stats}, {@stats}, {@stats}], [{@pcr={'pcr', 0x3d, 0x12}}, {@permit_directio}]})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000580)={{0x1, 0x1, 0x18, <r5=>r4, {r1, <r6=>0xee01}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000005c0)={{0x1, 0x1, 0x18, <r7=>r4, {r1, r6}}, './file1\x00'})
ioctl$sock_inet_SIOCGIFADDR(r3, 0x8915, &(0x7f0000000600)={'nr0\x00', {0x2, 0x0, @local}})
mount$cgroup2(0x0, &(0x7f0000000640)='./file1\x00', &(0x7f0000000680), 0x0, &(0x7f00000006c0)={[{}, {}], [{@fsname}]})
syz_emit_vhci(&(0x7f0000000700)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x1000}, "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"}, 0x1004)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f0000001740), 0x4)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000001880)={@fallback=r3, 0xd, 0x0, 0x7, &(0x7f0000001780)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xa, 0x0, &(0x7f00000017c0)=[0x0, 0x0, 0x0], &(0x7f0000001800)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001840)=[0x0], <r8=>0x0}, 0x40)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001900)='./cgroup.net/syz1\x00', 0x200002, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000018c0)={@cgroup=r9, r5, 0x24, 0x0, r4, @void, @value=r5, @void, @void, r8}, 0x20)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000001940)=r4, 0x4)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r2, 0x80047210, &(0x7f0000001980))
preadv(r5, &(0x7f0000001bc0)=[{&(0x7f00000019c0)=""/70, 0x46}, {&(0x7f0000001a40)=""/174, 0xae}, {&(0x7f0000001b00)=""/7, 0x7}, {&(0x7f0000001b40)=""/93, 0x5d}], 0x4, 0x101, 0x3)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001c00)='./cgroup/syz1\x00', 0x200002, 0x0)
r10 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001c40), 0xe23bf9339b2397ab, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x80112, r10, 0xde46f000)
r11 = syz_open_dev$vim2m(&(0x7f0000001c80), 0x80000000, 0x2)
sendfile(r11, r7, &(0x7f0000001cc0)=0x9, 0x6)
ioctl$SNDRV_PCM_IOCTL_HW_FREE(0xffffffffffffffff, 0x4112, 0x0)
mount$9p_tcp(&(0x7f0000001d00), &(0x7f0000001d40)='./file0\x00', &(0x7f0000001d80), 0x2800005, &(0x7f0000001dc0)={'trans=tcp,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@cache_fscache}, {@nodevmap}, {@access_client}, {@noextend}, {@loose}, {@version_u}, {@nodevmap}, {@afid={'afid', 0x3d, 0x2}}, {@fscache}, {@afid={'afid', 0x3d, 0x3}}], [{@defcontext={'defcontext', 0x3d, 'user_u'}}]}})

3m15.184461134s ago: executing program 1 (id=5331):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x7fff, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/246, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001180))
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x7, 0x0, 0xfffffffffffffffe, 0x8947]})

3m15.18413817s ago: executing program 1 (id=5332):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x101301)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_GET_NESTED_STATE(r3, 0xc080aebe, &(0x7f0000000640)={{0x0, 0x0, 0x80, {0x1000, 0x10000, 0x1}}, "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", "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"})
ioctl$USBDEVFS_ALLOC_STREAMS(r0, 0x8008551c, &(0x7f0000000000)={0xd616, 0x1, [{0x1, 0x1}]})
mkdir(0x0, 0x0)

3m15.004417379s ago: executing program 1 (id=5333):
r0 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x3a)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x44004000)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000003c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x94, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_EXPRESSIONS={0x54, 0x4, 0x0, 0x1, [{0x50, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x40, 0x2, 0x0, 0x1, [@NFTA_TARGET_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TARGET_INFO={0x2c, 0x3, "7339f2f10455afb9fdd672bad09dfb78c7699c74e891a0c700"/40}, @NFTA_TARGET_NAME={0x8, 0x1, 'TEE\x00'}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x8917}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xbc}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
sendmmsg$inet6(r1, &(0x7f0000000800)=[{{&(0x7f0000000280)={0xa, 0x0, 0x0, @loopback={0x8d}, 0x4000000}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="8000102e75", 0x5}, {&(0x7f0000000000)="b33461", 0x3}], 0x2, &(0x7f00000002c0)=ANY=[], 0x2}}], 0x1, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0xffff001b})

3m14.86455353s ago: executing program 1 (id=5334):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x80100, 0x0)
creat(0x0, 0x10)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4, 0x1)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x6200)

3m14.574754573s ago: executing program 1 (id=5337):
mknod$loop(0x0, 0x10, 0x0)
socket$kcm(0x21, 0x5, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_PORT_SPLIT(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0], 0xa4}, 0x1, 0x0, 0x0, 0xc0}, 0x80)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x4000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
openat$ubi_ctrl(0xffffffffffffff9c, 0x0, 0x8400, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f00000001c0), 0x12)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@bridge_delneigh={0x1c, 0x1d, 0xf07, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x40, 0x52}}, 0x1c}}, 0x0)
sync()

3m12.973357116s ago: executing program 6 (id=5361):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f00000000c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000006c0)=""/83, 0x53}}, 0x120)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000240), r1)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000280)={0x4c, r2, 0x815, 0x70bd2d, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x80}, {0x6, 0x11, 0xf}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4048000}, 0x4000002)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

3m12.850733676s ago: executing program 6 (id=5363):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'rose0\x00', 0x112})
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000380)='/dev/bsg/2:0:0:0\x00', 0x100, 0x0)
ioctl$BSG_IO(r1, 0x2285, &(0x7f0000000640)={0x51, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xad, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4a, 0x0, &(0x7f0000000080)=""/74, 0x5b72, 0x30, 0x0, 0x1})
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/oops_count', 0x0, 0x0)
readv(r2, &(0x7f0000000380)=[{&(0x7f0000000240)=""/237, 0xed}], 0x1)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'rose0\x00', <r4=>0x0})
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x45240, 0x0)
write$tun(r6, &(0x7f0000000140)={@void, @val={0x0, 0x3, 0x2, 0xc, 0x8000, 0x85}, @arp=@generic={0x7, 0x1a, 0x6, 0x1e, 0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}, "", @broadcast, "1b"}}, 0x1f)
setsockopt$IP_VS_SO_SET_ZERO(r5, 0x0, 0x48f, &(0x7f0000004ec0)={0x1, @empty, 0x4e22, 0x2, 'wlc\x00', 0x11, 0xfffff800, 0x2e}, 0x2c)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000240)={0x0, 0xfeff, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r4], 0x20}}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="7a0af8ff75256320bfa100000000000007010000f8ffffffb702000005000000bf130000000000008500000006000000b700000000000000950000ff00000000b2595285faa6ead0169191d54f8196217fc563e2fc91f6da4dad4fdc2eb1b5986fc44bc25fb591cf77b9dfb379a3f611dbc2a364916f098dab10b1a297cf528666d1ddd73f30f2382f6cda4bfdd45be583823c0f092248a57d48621f3c1c65ee19ee875daf45006a4c4ea5e15b2f9618d547244a22000000000800db583620ce7243d1aebdb638d91dbef6619358399aa9c2acd068c03efefd8bc77edf2d34b12cd48a1b20fb7dd843267e0331759f4ec6b5b0af58e604f494eff289026d5045ef08000000000000007718a09f4886afc26abba34635d0e8b598a51bc742135a6e1d33fe226c944bc76be40d435aa8b5202db761014b1b999a12df6bee431a6681000000263b6233e1c0fe30e384c3cb07b74a72291a1a2b523dd81b6651b1ee48e999bb004823ebcd8c65743f31f84b263ab9b3426692d01ad194f302d7a658e9e54687d3c56d7bedb6b2f25ddb8c640ab321a402058c9221b6870814cf4ee23ddb79fff5eb156e0a000000000000f2bd1d4a178d86d6935eb8b75bc4eb680d10e8b6a54c6c8674caf63ff76622939a20d4aadf85db40179c2cf83ee07e30a279d8f9f3bc282deb43a03409f8e6972f3f720d045923702cede0f3e91411f3f1b16f065624f280a7dcce8db910f93c49b9e0b6dd7356aa79d5fabb5c0d0da6d719d7e0efb2bb713d18242cd5df6ca53307a4cdd9030a46c190e317c8de5e5c3933fd5d5bf38f6b9fc39fc829dcfe4af8ac5fbb7314a7a433e0182767d1376eda2b20"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r8, 0x2000d00, 0xe, 0x55, &(0x7f0000000140)="a06ad876d56a0064d082778c3938", &(0x7f0000000380)=""/85, 0x0, 0x4000000}, 0x50)
setsockopt$inet6_udp_int(r5, 0x11, 0x65, &(0x7f0000000200)=0x9b, 0x4)

3m12.694398725s ago: executing program 6 (id=5364):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x1, 0xc, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000003680)={{0x0, 0x0, 0x80, {0x6000}}, "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", "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"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f0000000140)="0f01c30fc7390f01cbb9080b00000f320fc72d1454d4980fc7682bc4c2999aaddd8bceb38fe8eca2a80100000037c4e14ddee2660f38810b", 0x38}], 0x1, 0x43, 0x0, 0x0)
syz_open_dev$cec(0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 2)

3m12.324296322s ago: executing program 6 (id=5368):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
r3 = fsopen(&(0x7f0000000140)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000680), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
writev(r0, 0x0, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18)
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r4, 0x0, 0xc0)
getdents64(r4, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0xf}, {0x1, [{@any, 0x40, 0x7, 0x8, "dc3f11", 0xa410}]}}}, 0x12)
r5 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)={0x88, 0x2, 0x6, 0x205, 0x0, 0x0, {0x7, 0x0, 0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x54, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x4}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e20}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x4}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e20}, @IPSET_ATTR_SIZE={0x8, 0x17, 0x1, 0x0, 0x2}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x1f}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x5}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x1}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x33}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x9}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}]}, 0x88}}, 0x48884)
r6 = fsmount(r3, 0x0, 0x80)
r7 = openat$cgroup(r6, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0)
syz_clone3(&(0x7f0000000340)={0x201800000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0, 0x0, {r7}}, 0x58)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000b40)={0x7c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x41, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac=@broadcast}, 0x0, @random=0x7, 0x1, @void, @void, @void, @val={0x4, 0x6, {0xf0, 0x2, 0x7f, 0xa706}}, @val={0x6, 0x2, 0x6}, @void, @val={0x25, 0x3, {0x1, 0x8c, 0x8}}, @void, @void, @void, @val={0x72, 0x6}, @void, @void}}, @NL80211_ATTR_PROBE_RESP={0x4}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20004090}, 0x0)

3m12.134300809s ago: executing program 6 (id=5369):
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000b80)={&(0x7f0000000000)=ANY=[@ANYRESOCT=r0], &(0x7f0000001fc0)=""/4124, 0x3f, 0x101c, 0x1}, 0x28)
write$sysctl(r0, &(0x7f0000000580)='1\x00', 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000100001005d790000000000000500000a60000000060a0b0400000000000000000200000234000480300001800b00010074617267657400002000028008000240000000010800030002b511120c0001004e465155455545000900010073797a30000000000900020073797a320000000014000000110001"], 0x88}}, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000400)={0x0, 0x0, <r3=>0x0}, &(0x7f0000000440)=0xc)
fchown(r2, 0xee01, r3)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/custom1\x00', 0x2, 0x0)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETISPACE(r5, 0x8010500d, &(0x7f00000001c0))
r6 = mmap$binder(&(0x7f0000145000/0x2000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x3)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000003c0)='./binderfs2/custom0\x00', 0x800, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4048840)
r7 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$sequencer(r7, 0x0, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000440)={&(0x7f0000000040), &(0x7f00000000c0)=""/255, &(0x7f00000001c0), &(0x7f0000000380), 0x6}, 0x38)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB='H\x00\x00', @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0xcc, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x58a5a960}, {0x6, 0x11, 0x3193}, {0x8, 0x15, 0x9}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x101}, {0x6, 0x11, 0x5}, {0x8, 0x15, 0x4}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x8}, {0x6, 0x11, 0x7fff}, {0x8, 0x15, 0x9}}]}, 0xcc}, 0x1, 0x0, 0x0, 0x4004050}, 0x4000000)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000340)={0x80, 0x0, &(0x7f00000001c0)=[@free_buffer={0x40086303, r6}, @release, @acquire_done, @transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x12, 0x0, 0x0, 0x50, 0x18, &(0x7f00000000c0)={@flat=@weak_binder={0x77622a85, 0x1301, 0x3}, @fda={0x66646185, 0x5, 0x1, 0xf}, @flat=@weak_binder={0x77622a85, 0xb, 0x2}}, &(0x7f0000000180)={0x0, 0x18, 0x38}}, 0x400}, @dead_binder_done], 0xf3, 0x0, &(0x7f0000000240)="415a355e5d24f1fd327745749db24804a9d6012ae2aab3cae59a7be1670e333ff58877c70542abc4af6c9e2e5192d33df7a0f97d43740d87255aabb0c4ae6cfd0f331dfc8e3e8636d962fba5aebe9888722fcf6a503bedb0eb04fc23c45eaf8067679312f2837913546b86c955fbef9f364be7e1bde343f5199e70316fe027fadc5b49cf9d11b73a3fdc70e57f8123f6052eaaff9b0cb4cf1c4b6fb0e09db20a518494ce8cafdfccc8d5c267ae4bcaa711dd1f411efde70507523385b88d50d8a11584c135e47ec0cd632ef8421bd8e890a966ca67b21f8b23289bb1e8efa079bdd4f7d6dc18cd3b6a0f8aa985988bd8a1ab1b"})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD64(0xffffffffffffffff, 0x400454a4, &(0x7f0000000380)=0x1)
signalfd4(0xffffffffffffffff, &(0x7f0000000500), 0x8, 0x0)
listen(0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0, 0x0)

3m11.708252133s ago: executing program 6 (id=5371):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000080)={'wg1\x00', @random="758414aa7f22"})
recvmsg(r1, &(0x7f0000002080)={0x0, 0x0, 0x0}, 0x10020)
setsockopt$sock_int(r1, 0x1, 0x2a, &(0x7f0000000100)=0x7, 0x4)
sendmmsg$inet(r0, &(0x7f0000000280)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20000014)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg=0x7}, 0x94)
close(r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000024000000080000000b"], 0x48)
listen(r5, 0x9)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r6}, &(0x7f0000000340), &(0x7f0000000380)=r4}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000780)=ANY=[@ANYRES32=r8, @ANYRES32=r7, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r8}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20)
r9 = socket$caif_seqpacket(0x25, 0x5, 0x1)
setsockopt(r9, 0x7fffffff, 0x0, &(0x7f0000000180)="d6952f6f46b66e67c4d6bfb2be678ba821857692bcb0d0ece6e87d193b052614656a37471de75381a75495178cf20d4beb6fb0e120774664ebc8bfa05bf2f2cf577eff8e38a5f43ecd5189951536a22901da7237031689565e05b29e4f490052a4bcb79219a353618282d916cb78a7720a39561966f8353500688d5dcc4222b1136acb0b9d3a28d897ee0bfab4c3c23fe3903d2ee9985d3b7e57e27ad2d053954a526728b350054e06f96468b8f50bc02a47e5e429dd211d79612a2c147e2d30005c328ee5259eeaf7fe83af726bb049bd1f347f1d798187edf53af883072218a54a4e76ca", 0xe5)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt(r10, 0xeb, 0x10, &(0x7f0000000140)=""/29, &(0x7f0000000400)=0x1d)

3m11.631800821s ago: executing program 36 (id=5371):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000080)={'wg1\x00', @random="758414aa7f22"})
recvmsg(r1, &(0x7f0000002080)={0x0, 0x0, 0x0}, 0x10020)
setsockopt$sock_int(r1, 0x1, 0x2a, &(0x7f0000000100)=0x7, 0x4)
sendmmsg$inet(r0, &(0x7f0000000280)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20000014)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg=0x7}, 0x94)
close(r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000024000000080000000b"], 0x48)
listen(r5, 0x9)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r6}, &(0x7f0000000340), &(0x7f0000000380)=r4}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000780)=ANY=[@ANYRES32=r8, @ANYRES32=r7, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r8}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20)
r9 = socket$caif_seqpacket(0x25, 0x5, 0x1)
setsockopt(r9, 0x7fffffff, 0x0, &(0x7f0000000180)="d6952f6f46b66e67c4d6bfb2be678ba821857692bcb0d0ece6e87d193b052614656a37471de75381a75495178cf20d4beb6fb0e120774664ebc8bfa05bf2f2cf577eff8e38a5f43ecd5189951536a22901da7237031689565e05b29e4f490052a4bcb79219a353618282d916cb78a7720a39561966f8353500688d5dcc4222b1136acb0b9d3a28d897ee0bfab4c3c23fe3903d2ee9985d3b7e57e27ad2d053954a526728b350054e06f96468b8f50bc02a47e5e429dd211d79612a2c147e2d30005c328ee5259eeaf7fe83af726bb049bd1f347f1d798187edf53af883072218a54a4e76ca", 0xe5)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt(r10, 0xeb, 0x10, &(0x7f0000000140)=""/29, &(0x7f0000000400)=0x1d)

2m59.586123878s ago: executing program 37 (id=5337):
mknod$loop(0x0, 0x10, 0x0)
socket$kcm(0x21, 0x5, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_PORT_SPLIT(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYRES8=r0, @ANYRESHEX=r0], 0xa4}, 0x1, 0x0, 0x0, 0xc0}, 0x80)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x4000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
openat$ubi_ctrl(0xffffffffffffff9c, 0x0, 0x8400, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f00000001c0), 0x12)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@bridge_delneigh={0x1c, 0x1d, 0xf07, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x40, 0x52}}, 0x1c}}, 0x0)
sync()

2m37.662453263s ago: executing program 3 (id=5802):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
socket$inet6(0xa, 0x80003, 0x6)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f00000000c0)={0x10002, 0x1, 0x1})
r3 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000140)={0x50, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)

2m37.104054722s ago: executing program 7 (id=5806):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
write(r0, &(0x7f0000000740)="0960d1a06c8f7aaf38eab7b0bce66dadb959b549b79a0e3dc6bc98c8f4eb7c3f24c11f1fd12f4b9b5b39757db5db322dfe417d0d3a85fe8a5b0a1c510cf32df3c030536369e2b2b07f8b80e82f24dbb2f5a4242e077c3c24006658a07566e6be32c67819258413cb0ae0d3b75733a4ca69e935876ffa0100ade8b7e1a7cf82c37d960498fd0d8a68e653b5b22884570c609b531884ff", 0x96)

2m37.033985506s ago: executing program 7 (id=5807):
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x800)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0xf80)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$int_in(r1, 0x5452, &(0x7f0000000280)=0x8000000000000001)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt(r2, 0x1, 0x9, 0x0, &(0x7f0000000100))
listen(r1, 0x1e)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
shutdown(r3, 0x1)
read(r0, &(0x7f0000000700)=""/247, 0xf7)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
r5 = socket$unix(0x1, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000580)="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", 0x13c}], 0x2}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000400)="14", 0x2, 0x0, 0x4}, 0x50)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8b18, &(0x7f0000000000)={'wlan1\x00'})
sendmmsg$inet6(r4, &(0x7f0000000080)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, 0xffffffff}, 0x1c, &(0x7f0000000080)}}], 0x1, 0x4004110)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000440)={'#! ', './file0', [], 0xa, "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"}, 0x138)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
listxattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000480), 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
read$dsp(r6, &(0x7f0000000940)=""/262, 0x106)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x0, 0x2})

2m36.984081955s ago: executing program 7 (id=5808):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000001c0)={0x9}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@ipv6_getaddrlabel={0x38, 0x4a, 0x4, 0x0, 0x0, {}, [@IFAL_LABEL={0x8}, @IFAL_ADDRESS={0x14, 0x1, @loopback}]}, 0x38}}, 0x0) (async)
fsync(0xffffffffffffffff)
r1 = socket$netlink(0x10, 0x3, 0x0) (async)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@newlink={0x58, 0x10, 0xffffff1f, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x8000}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_SPORT={0x6, 0x10, 0x4e20}, @IFLA_GRE_FLOWINFO={0x8, 0xc, 0xd}, @IFLA_GRE_IKEY={0x8, 0x4, 0x100}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x4048800}, 0xc850) (async)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="6c00000010001fff010000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000440012800b00010067656e6576650000340002800500090000000000050009000100000005000a000000000005000300f90000000500040040000000050004000800000008000a00", @ANYBLOB="b5"], 0x6c}}, 0x0)

2m36.844057401s ago: executing program 7 (id=5809):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0xc00, &(0x7f0000000080)={[{@quota}, {@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x37]}}]})
chdir(&(0x7f0000000240)='./file0\x00')
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x1eb2fe, 0x20)
fallocate(r0, 0x0, 0x0, 0x1001f0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xab80, 0xb4)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040fe304013d04"], 0x7)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000000c0), 0x6, 0x101000)
r3 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0xe2001, 0x100, 0x46}, 0x18)
r4 = syz_create_resource$binfmt(&(0x7f0000000440)='./file0\x00')
execveat$binfmt(r3, r4, &(0x7f00000004c0)={[&(0x7f0000000480)='\'&\x00']}, &(0x7f0000000740)={[&(0x7f0000000500)='!)!)(\x00', &(0x7f0000000540)='cgroup.procs\x00', &(0x7f0000000580)='^\x00', &(0x7f00000005c0)='cgroup.procs\x00', &(0x7f0000000600)='\x00', &(0x7f0000000640)='vlan1\x00', &(0x7f0000000680)='task\x00', &(0x7f00000006c0)='^(:(-(.*#*\'-\x16+\x00', &(0x7f0000000700)='}(\'\':[-{)[-\x00']}, 0x800)
r5 = inotify_init1(0x0)
r6 = syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
fcntl$setown(r5, 0x8, r6)
fcntl$getownex(r5, 0x10, &(0x7f0000000040))
write$cgroup_pid(r2, &(0x7f00000001c0), 0x12)
unshare(0x6a040000)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)=<r7=>0x0)
r8 = syz_open_procfs(r7, &(0x7f0000000200)='task\x00')
getdents64(r8, &(0x7f0000000340)=""/70, 0x46)
getdents(r8, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, &(0x7f0000000200)=@raw={'raw\x00', 0x9, 0x3, 0x1d8, 0x90, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x140, 0xffffffff, 0xffffffff, 0x140, 0xffffffff, 0x3, &(0x7f0000000080), {[{{@ip={@dev={0xac, 0x14, 0x14, 0x44}, @rand_addr=0x64010102, 0xffffffff, 0xffffffff, 'veth0_macvtap\x00', 'vlan1\x00', {0xad9a89bc0211bcf4}, {0xff}, 0x1, 0x2, 0x1}, 0x0, 0x70, 0x90}, @unspec=@TRACE={0x20}}, {{@ip={@multicast1, @multicast1, 0x22d20a3c4c81a1af, 0xff000000, 'veth1_vlan\x00', 'veth0_to_bond\x00', {0x80}, {}, 0x5e, 0x2, 0x2}, 0x0, 0x70, 0xb0}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x5, 0xb, 0xffffffff, 0x6, 0x80, 0xd58, 0x72c5ec0e, 0x10001]}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x238)

2m36.721529663s ago: executing program 7 (id=5813):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg(r0, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x0)
sendmsg$IPSET_CMD_LIST(r0, 0x0, 0x80)

2m36.110623231s ago: executing program 7 (id=5820):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) (async)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x24, 0x7, 0x6, 0x801, 0x0, 0x0, {0x3}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x810}, 0x44854) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r4=>0x0}) (async, rerun: 32)
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x20000, 0x0) (rerun: 32)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x1}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x4) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000004c0)={0x200, <r8=>0x0}, 0x8) (async, rerun: 64)
r9 = openat$mice(0xffffffffffffff9c, &(0x7f0000000500), 0x400000) (rerun: 64)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x7, '\x00', r4, 0xffffffffffffffff, 0x1, 0x3}, 0x50) (async, rerun: 32)
r11 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x2, '\x00', r4, 0xffffffffffffffff, 0x1, 0x3, 0x4}, 0x50) (rerun: 32)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@bloom_filter={0x1e, 0x7, 0x9, 0x1ff, 0x40, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x0, 0x2}, 0x50)
r13 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
r14 = bpf$MAP_CREATE(0x0, &(0x7f0000000980)=@base={0x1, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r13, 0x2, 0x1}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000300)={r14, 0x0, 0x0, 0x4}, 0x20) (async)
r15 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x40, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x4}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1f, 0x20, &(0x7f0000000300)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xaec5}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@ldst={0x2, 0x1, 0x4, 0x3, 0x0, 0xfffffffffffffff8, 0xffffffffffffffec}, @map_val={0x18, 0xa, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x8}, @jmp={0x5, 0x0, 0x8, 0x0, 0x4, 0x4, 0xffffffffffffffff}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xf}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000400)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0x64, '\x00', r4, @fallback=0x2b, 0xffffffffffffffff, 0x8, &(0x7f0000000440)={0x2, 0x3}, 0x8, 0x10, &(0x7f0000000480)={0x0, 0xb, 0x7, 0xd3}, 0x10, r8, r9, 0x5, &(0x7f0000000740)=[r10, r11, r12, r14, r15], &(0x7f0000000780)=[{0x4, 0x5, 0xa, 0x4}, {0x3, 0x5, 0x8, 0x1}, {0x1, 0x1, 0x2, 0x9}, {0x3, 0x2, 0x6, 0x3}, {0x3, 0x4, 0xc, 0xc}], 0x10, 0x6}, 0x94) (async)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="3800000055002f03020000000000000007000000", @ANYRES32=r4, @ANYBLOB="200001"], 0x38}}, 0x0) (async)
r16 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r16, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3, 0x9}, 0x20) (async)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) (async)
setsockopt$inet6_int(r16, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
sendmmsg(r16, &(0x7f0000001500)=[{{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x108}}], 0x1, 0xc040) (async, rerun: 64)
connect$inet(r1, &(0x7f00000000c0)={0x2, 0x4e23, @local}, 0x10) (async, rerun: 64)
sendmsg$nl_xfrm(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f0000000000)=@delsa={0x28, 0x12, 0x1, 0x0, 0x25dfdbff, {@in=@local, 0x0, 0xa, 0x6c}}, 0x28}}, 0x0) (async)
r17 = syz_open_dev$video4linux(&(0x7f0000000040), 0x955a, 0x0)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r17, 0xc0305615, &(0x7f0000000080)={0x0, {0x4, 0x200}})

2m35.979109227s ago: executing program 38 (id=5820):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) (async)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x24, 0x7, 0x6, 0x801, 0x0, 0x0, {0x3}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x810}, 0x44854) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r4=>0x0}) (async, rerun: 32)
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x20000, 0x0) (rerun: 32)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x1}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x4) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000004c0)={0x200, <r8=>0x0}, 0x8) (async, rerun: 64)
r9 = openat$mice(0xffffffffffffff9c, &(0x7f0000000500), 0x400000) (rerun: 64)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x7, '\x00', r4, 0xffffffffffffffff, 0x1, 0x3}, 0x50) (async, rerun: 32)
r11 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x2, '\x00', r4, 0xffffffffffffffff, 0x1, 0x3, 0x4}, 0x50) (rerun: 32)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@bloom_filter={0x1e, 0x7, 0x9, 0x1ff, 0x40, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x0, 0x2}, 0x50)
r13 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
r14 = bpf$MAP_CREATE(0x0, &(0x7f0000000980)=@base={0x1, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r13, 0x2, 0x1}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000300)={r14, 0x0, 0x0, 0x4}, 0x20) (async)
r15 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x40, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x4}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1f, 0x20, &(0x7f0000000300)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xaec5}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@ldst={0x2, 0x1, 0x4, 0x3, 0x0, 0xfffffffffffffff8, 0xffffffffffffffec}, @map_val={0x18, 0xa, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x8}, @jmp={0x5, 0x0, 0x8, 0x0, 0x4, 0x4, 0xffffffffffffffff}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xf}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000400)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0x64, '\x00', r4, @fallback=0x2b, 0xffffffffffffffff, 0x8, &(0x7f0000000440)={0x2, 0x3}, 0x8, 0x10, &(0x7f0000000480)={0x0, 0xb, 0x7, 0xd3}, 0x10, r8, r9, 0x5, &(0x7f0000000740)=[r10, r11, r12, r14, r15], &(0x7f0000000780)=[{0x4, 0x5, 0xa, 0x4}, {0x3, 0x5, 0x8, 0x1}, {0x1, 0x1, 0x2, 0x9}, {0x3, 0x2, 0x6, 0x3}, {0x3, 0x4, 0xc, 0xc}], 0x10, 0x6}, 0x94) (async)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="3800000055002f03020000000000000007000000", @ANYRES32=r4, @ANYBLOB="200001"], 0x38}}, 0x0) (async)
r16 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r16, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3, 0x9}, 0x20) (async)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) (async)
setsockopt$inet6_int(r16, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
sendmmsg(r16, &(0x7f0000001500)=[{{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x108}}], 0x1, 0xc040) (async, rerun: 64)
connect$inet(r1, &(0x7f00000000c0)={0x2, 0x4e23, @local}, 0x10) (async, rerun: 64)
sendmsg$nl_xfrm(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f0000000000)=@delsa={0x28, 0x12, 0x1, 0x0, 0x25dfdbff, {@in=@local, 0x0, 0xa, 0x6c}}, 0x28}}, 0x0) (async)
r17 = syz_open_dev$video4linux(&(0x7f0000000040), 0x955a, 0x0)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r17, 0xc0305615, &(0x7f0000000080)={0x0, {0x4, 0x200}})

2m35.804350494s ago: executing program 3 (id=5823):
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x430102, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
listen(r2, 0x3)
accept4(r2, 0x0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)={0x94, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000ffdbdf25010000001c000180060001000200000008000300ac1414bb080006002b"], 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cffb93b201}, 0x10)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)={0x14, 0x2, 0x1, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x20044804}, 0x40040)
r5 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi1\x00', 0x2180, 0x0)
r6 = syz_open_dev$swradio(&(0x7f0000000040), 0x1, 0x2)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$VIDIOC_G_FREQUENCY(r6, 0xc02c5638, &(0x7f0000000000)={0x200, 0x2, 0x7fff})
ioctl$COMEDI_INSN(r5, 0x8028640c, &(0x7f0000000000)={0xc000003, 0x0, &(0x7f0000000240), 0x2, 0x4})

2m34.974397768s ago: executing program 3 (id=5829):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x80100, 0x0)
creat(0x0, 0x10)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4, 0x1)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0xffd3000000000000)

2m34.75410412s ago: executing program 3 (id=5830):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800610001"], 0x48)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x101})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0xdb8d}, &(0x7f0000c57000), 0x0)
ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000000180)={&(0x7f0000ffd000/0x1000)=nil, 0x1000})
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f00000001c0)={r0, &(0x7f0000000b00), 0x0}, 0x20)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800610001"], 0x48) (async)
userfaultfd(0x801) (async)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x101}) (async)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3}) (async)
syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0xdb8d}, &(0x7f0000c57000), 0x0) (async)
ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000000180)={&(0x7f0000ffd000/0x1000)=nil, 0x1000}) (async)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f00000001c0)={r0, &(0x7f0000000b00), 0x0}, 0x20) (async)

2m34.601777575s ago: executing program 3 (id=5835):
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x18040, 0x100)
getdents64(r0, 0x0, 0x0)
ioctl$BLKGETDISKSEQ(r0, 0x80081280, &(0x7f0000000000)) (async)
ioctl$BLKGETDISKSEQ(r0, 0x80081280, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x45, '\x00', 0x0, @sk_msg}, 0x94) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x45, '\x00', 0x0, @sk_msg}, 0x94)
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000024000000080000000b"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r3}, &(0x7f0000000340), &(0x7f0000000380)=r2}, 0x20) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r3}, &(0x7f0000000340), &(0x7f0000000380)=r2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xca, &(0x7f0000000900)=""/202, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x800}, 0x94) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xca, &(0x7f0000000900)=""/202, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x800}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48) (async)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000780)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x800)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f0000000080)={0x8})
fstat(r7, &(0x7f0000000300))
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000140)={0x9, 0x3, 0x1, 'queue1\x00'}) (async)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000140)={0x9, 0x3, 0x1, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r6, 0xc08c5336, &(0x7f0000000080)={0x7, 0x9f, 0x0, 'queue1\x00', 0x4})
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r8, @ANYBLOB="0000000002000000b70500000800000085000000c200000095"], &(0x7f0000000500)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x9}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r8, @ANYBLOB="0000000002000000b70500000800000085000000c200000095"], &(0x7f0000000500)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x9}, 0x94)
r9 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000440)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x74, 0xffff, 0xb18, 0x2, 0x7, 0x3, "233abfb232b9f1a94a49d2e87116156bd2c20c043974f307cf7d8d0e4f66726734d21d26dd7f7449d3fb5cb89649def3d36a79ce782eae30716a968fb5bf8db2f77350543e439619cf5983c6c81f966745149f05a9cff6c14cc44f46d888b7bb29be0d516b340841fe079644621dee272c70a0e4"}}, 0x18c)
ioctl$VIDIOC_S_FMT(r9, 0xc0d05605, &(0x7f0000000600)={0xd, @vbi={0x8, 0x8000000, 0xffffffff, 0x42303159, [0x2, 0x8000], [0x2, 0xffff5bdb], 0x2}})
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r10, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00'}) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r10, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00'})
r11 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r11)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f00000002c0)={'wlan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f00000002c0)={'wlan1\x00'})
socket$nl_generic(0x10, 0x3, 0x10)

2m34.496094888s ago: executing program 3 (id=5836):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0x9e, &(0x7f00000000c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x68, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x1a, 0x4, 0x104, 0x0, 0x0, {[@md5sig={0x13, 0x12, "5a213255fc14f131de9a65cf2bec6042"}, @exp_smc={0xfe, 0x6}, @exp_fastopen={0xfe, 0x13, 0xf989, "3cca39fd810b37fec0a178de23ac97"}, @fastopen={0x22, 0x12, "2864064811009748a452859b6abf7349"}, @mptcp=@add_addr={0x1e, 0xb, 0x0, 0xb, 0xc3, @broadcast, 0x3, "ca"}, @nop, @mptcp=@generic={0x5, 0x4, "123d"}, @generic={0x5, 0x4, "e8e7"}]}}}}}}}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0x1ffffffffffffed8, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x3c, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f0000000040)={'bond0\x00', 0x102e})
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000040)=0x4, 0x12)

2m21.430895959s ago: executing program 0 (id=5990):
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/mnt\x00') (async)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000007000)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000240)="834f51d073a9df23990a0bc35ba03d2d383fce35b484f9e9ea28d13342e0260cda1a7af0d4e3c8fdbc5d7201a04a53e2603ad34e8c025a614f145fdf6add9be89f2b8a4f303c1b006c6dc7be041315dcd4692dede7682f6e7b056cf39318ad37bd33d3ba1cc09a7d80a7701cddd08e080b429a31969d59", 0x77}], 0x1}}], 0x1, 0x4004000) (async)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c030000160001000000000000000000fc010000000000000000000000000000fe88000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000006c"], 0x34c}}, 0x0) (async)
r2 = socket$netlink(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r2, 0x10e, 0x8, &(0x7f0000000740)=0x7ccc64fa, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000007c0), r2) (async)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x2000000)

2m21.430641577s ago: executing program 0 (id=5991):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@newsa={0x158, 0x10, 0x1, 0x0, 0x0, {{@in6=@remote, @in6=@private2}, {@in=@remote, 0x0, 0x32}, @in6=@loopback, {0x0, 0x0, 0x0, 0x1, 0xfffffffffffffffe}, {0x0, 0x1}, {0x0, 0x400}, 0x0, 0x4, 0xa, 0x3, 0x0, 0x90}, [@algo_crypt={0x4c, 0x2, {{'ecb(cipher_null)\x00'}, 0x20, "19c503cd"}}, @replay_esn_val={0x1c, 0x17, {0x501c87fb5741b023, 0x0, 0x0, 0x0, 0x0, 0x10001}}]}, 0x158}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
ioctl$sock_TIOCINQ(r3, 0x541b, &(0x7f0000000040))
r4 = socket(0x10, 0x803, 0x0)
sendmsg$NFT_MSG_GETCHAIN(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
getsockname$packet(r4, &(0x7f0000000280)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="3c0000001000370400000000ffdbdf2500000000", @ANYRES32=r5, @ANYBLOB="83450500010000001c0012800b00010067656e65766500000c00028005000d0002"], 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f00000000c0)={0x2, 0x4e24, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000580)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @dev={0xac, 0x14, 0x14, 0x2e}, @local}}}], 0x20}}], 0x1, 0x4000084)
socket$inet6(0xa, 0x2, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@newsa={0x158, 0x10, 0x1, 0x0, 0x0, {{@in6=@remote, @in6=@private2}, {@in=@remote, 0x0, 0x32}, @in6=@loopback, {0x0, 0x0, 0x0, 0x1, 0xfffffffffffffffe}, {0x0, 0x1}, {0x0, 0x400}, 0x0, 0x4, 0xa, 0x3, 0x0, 0x90}, [@algo_crypt={0x4c, 0x2, {{'ecb(cipher_null)\x00'}, 0x20, "19c503cd"}}, @replay_esn_val={0x1c, 0x17, {0x501c87fb5741b023, 0x0, 0x0, 0x0, 0x0, 0x10001}}]}, 0x158}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) (async)
ioctl$sock_TIOCINQ(r3, 0x541b, &(0x7f0000000040)) (async)
socket(0x10, 0x803, 0x0) (async)
sendmsg$NFT_MSG_GETCHAIN(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x40040}, 0x0) (async)
getsockname$packet(r4, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14) (async)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="3c0000001000370400000000ffdbdf2500000000", @ANYRES32=r5, @ANYBLOB="83450500010000001c0012800b00010067656e65766500000c00028005000d0002"], 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f00000000c0)={0x2, 0x4e24, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000580)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @dev={0xac, 0x14, 0x14, 0x2e}, @local}}}], 0x20}}], 0x1, 0x4000084) (async)

2m21.343677212s ago: executing program 0 (id=5993):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x33, 0x1, 0x70bd2b, 0x25dbdbfe, {0x4}, [@typed={0x8, 0x4, 0x0, 0x0, @u32=0x2}, @typed={0x8, 0x5, 0x0, 0x0, @uid}]}, 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x4000000)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r1, &(0x7f0000000800)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x9, @loopback, 0x5}, 0x1c, &(0x7f0000000480)=[{&(0x7f0000000300)="e2", 0x1}], 0x1}}], 0x1, 0x14)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f0000000080)={0x11, 0x1, 0xc, 0x8001, @vifc_lcl_ifindex, @empty}, 0x10)
shutdown(r1, 0x1)
sendmmsg(r1, &(0x7f000000a9c0)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x0, 0xeb9, @private0, 0x4, 0x1}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000240)="2a84c4ddd3", 0x5}], 0x1}}], 0x1, 0x4000000)

2m21.293896949s ago: executing program 0 (id=5995):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg(r0, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x0)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)

2m21.193841627s ago: executing program 0 (id=5996):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fchown(r2, 0x0, 0xee01)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000})
openat(0xffffffffffffff9c, &(0x7f0000001740)='.\x00', 0x515001, 0x408)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket(0x10, 0x803, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r6, 0x10e, 0x2, 0x0, 0x0)
getsockname$packet(r6, 0x0, &(0x7f0000000200))
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f00000000c0)=<r8=>0x0)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="010026bd7000fcdbdf250200000008000100", @ANYRES32=r8], 0x1c}}, 0x0)
write$nci(r4, &(0x7f00000004c0)=ANY=[@ANYBLOB="fb51afad6ff7ee86bcee8ded379f95a811d8a8"], 0x13)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16, @ANYBLOB="05000000000000edffff0e0000000a000300", @ANYRES32=r9], 0x64}, 0x1, 0x0, 0x0, 0x40040}, 0x24040090)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20000040)
socket$inet_icmp(0x2, 0x2, 0x1)
r10 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000580)=[@in={0x2, 0x4e21, @local}], 0x10)
sendmsg$inet_sctp(r10, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x1)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r10, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x1, 0x30}, 0xc)
r11 = dup(r10)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r11, 0x84, 0x22, &(0x7f0000000040)={0x8, 0x2, 0x9fb, 0x2}, 0x10)

2m21.102546182s ago: executing program 0 (id=5997):
r0 = socket(0x10, 0x803, 0x0) (async)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000040)={0x31, 0x1, 0x2, "1c13ebdaf2f20d55806b26b1d750185fd75a206da058e85b2197edb1439b1cc2", 0x32314d48})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000003e000701feffffff00000000017c0000040042801400018006000600800a000006001700980a0000040002"], 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc800)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff}) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) (async)
close(0xffffffffffffffff)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x3) (async)
r5 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x1, 0x300}, &(0x7f00000006c0)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) (async)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1}) (async)
syz_emit_ethernet(0x4e, &(0x7f0000000800)={@random="61fe71b72b5f", @link_local={0x17, 0x80, 0xc2, 0x2, 0x9, 0x3}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "001958", 0x18, 0x3a, 0xff, @dev={0xfe, 0x80, '\x00', 0x18}, @mcast2, {[], @ndisc_na={0x88, 0x0, 0x0, 0x49, '\x00', @private0={0xfc, 0x0, '\x00', 0x1}}}}}}}, 0x0)
rt_sigaction(0x17, &(0x7f0000000080)={0x0, 0x98000004, 0x0, {[0xffffffffffffffff]}}, 0x0, 0x8, &(0x7f0000000200))
io_uring_enter(r5, 0x847ba, 0x0, 0xe, 0x0, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000500)={'lo\x00'}) (async)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x4e20, 0x9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}, 0x1c) (async)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x8854}, 0x0)

2m19.401647259s ago: executing program 39 (id=5836):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0x9e, &(0x7f00000000c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x68, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x1a, 0x4, 0x104, 0x0, 0x0, {[@md5sig={0x13, 0x12, "5a213255fc14f131de9a65cf2bec6042"}, @exp_smc={0xfe, 0x6}, @exp_fastopen={0xfe, 0x13, 0xf989, "3cca39fd810b37fec0a178de23ac97"}, @fastopen={0x22, 0x12, "2864064811009748a452859b6abf7349"}, @mptcp=@add_addr={0x1e, 0xb, 0x0, 0xb, 0xc3, @broadcast, 0x3, "ca"}, @nop, @mptcp=@generic={0x5, 0x4, "123d"}, @generic={0x5, 0x4, "e8e7"}]}}}}}}}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0x1ffffffffffffed8, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x3c, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f0000000040)={'bond0\x00', 0x102e})
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000040)=0x4, 0x12)

2m6.117426767s ago: executing program 40 (id=5997):
r0 = socket(0x10, 0x803, 0x0) (async)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000040)={0x31, 0x1, 0x2, "1c13ebdaf2f20d55806b26b1d750185fd75a206da058e85b2197edb1439b1cc2", 0x32314d48})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000003e000701feffffff00000000017c0000040042801400018006000600800a000006001700980a0000040002"], 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc800)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff}) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) (async)
close(0xffffffffffffffff)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x3) (async)
r5 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x1, 0x300}, &(0x7f00000006c0)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) (async)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1}) (async)
syz_emit_ethernet(0x4e, &(0x7f0000000800)={@random="61fe71b72b5f", @link_local={0x17, 0x80, 0xc2, 0x2, 0x9, 0x3}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "001958", 0x18, 0x3a, 0xff, @dev={0xfe, 0x80, '\x00', 0x18}, @mcast2, {[], @ndisc_na={0x88, 0x0, 0x0, 0x49, '\x00', @private0={0xfc, 0x0, '\x00', 0x1}}}}}}}, 0x0)
rt_sigaction(0x17, &(0x7f0000000080)={0x0, 0x98000004, 0x0, {[0xffffffffffffffff]}}, 0x0, 0x8, &(0x7f0000000200))
io_uring_enter(r5, 0x847ba, 0x0, 0xe, 0x0, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000500)={'lo\x00'}) (async)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x4e20, 0x9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}, 0x1c) (async)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[], 0x40}, 0x1, 0x0, 0x0, 0x8854}, 0x0)

47.123378409s ago: executing program 2 (id=6998):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f00000004c0)="a9", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000003080)=[{&(0x7f0000002fc0)="ec", 0x1}], 0x1}}], 0x2, 0x1)

47.123159834s ago: executing program 2 (id=6999):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
read$FUSE(0xffffffffffffffff, &(0x7f0000006380)={0x2020}, 0x2020)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(r0, 0x44, &(0x7f0000000280)=0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000"], 0x18)
unshare(0x64000600)
unshare(0x400)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

46.235850781s ago: executing program 2 (id=7000):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$netlink(0x10, 0x3, 0xf)
r6 = socket$netlink(0x10, 0x3, 0xf)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r6, 0x10e, 0x4, &(0x7f0000000080)=0x100, 0x4)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$NFT_BATCH(r5, &(0x7f00000074c0)={0x0, 0x0, &(0x7f0000007480)={&(0x7f0000001000)=ANY=[@ANYBLOB="14000000100001"], 0x50}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket(0x11, 0x3, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})

45.02159732s ago: executing program 2 (id=7021):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
munlockall()
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@handle={0x73682a85, 0x10a, 0x3}, @flat=@weak_binder={0x77622a85, 0xa, 0x3}, @flat=@weak_handle={0x77682a85, 0x100a, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})

44.959046785s ago: executing program 2 (id=7024):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x8000, 0x102)

44.941410939s ago: executing program 2 (id=7025):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f00000004c0)="3ce2de4d8d", 0x5, 0x805, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000003100)=""/4099, 0x1003}], 0x1}, 0x100}], 0x1, 0x10022, 0x0)

29.560849787s ago: executing program 41 (id=7025):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f00000004c0)="3ce2de4d8d", 0x5, 0x805, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000003100)=""/4099, 0x1003}], 0x1}, 0x100}], 0x1, 0x10022, 0x0)

1.27248049s ago: executing program 4 (id=7716):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vxcan1\x00', <r0=>0x0})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b6d1a1b116c56656000000012fe000000000000", @ANYRES32=0x1, @ANYBLOB="0400"/20, @ANYRES32=r0, @ANYRES32, @ANYBLOB="03000000040000000500"/28], 0x50)
r1 = socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000140)={0x2, <r2=>0x0}, 0x8)
r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000009c0)=ANY=[@ANYRESHEX=r2], &(0x7f00000005c0)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x4, '\x00', r0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r2}, 0x94)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r6 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
write$cgroup_int(r6, &(0x7f0000000540), 0xfffffdd8)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r7, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000bada906c8efe8edb08000300", @ANYRES32=r8], 0x30}}, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001740)='cpuset.effective_mems\x00', 0x275a, 0x0)
fcntl$lock(r9, 0x6, &(0x7f0000000000)={0x0, 0x1, 0x2, 0xa})
setsockopt$inet6_MCAST_JOIN_GROUP(r9, 0x29, 0x2a, &(0x7f0000000180)={0x5, {{0xa, 0x4e21, 0x3a, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}}}, 0x88)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100), 0x200000, 0x0)
ioctl$PPPIOCGIDLE32(r9, 0x8008743f, &(0x7f0000000240))
sendmsg$nl_route(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000640)=ANY=[@ANYBLOB="0800100001000000fcffffff000000000000", @ANYRES32=0x0, @ANYBLOB="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"/569, @ANYRES32=r3, @ANYBLOB], 0x40}}, 0x0)
r10 = socket$igmp(0x2, 0x3, 0x2)
ioctl$SIOCGETSGCNT_IN6(r10, 0x89e1, &(0x7f0000000200)={@empty, @private1={0xfc, 0x1, '\x00', 0x1}})
sendmsg$nl_xfrm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0xb8}}, 0x0)
openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r11 = dup(r3)
getsockopt$inet6_IPV6_XFRM_POLICY(r9, 0x29, 0x23, &(0x7f0000000440)={{{@in6=@empty, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}}, {{@in6=@mcast1}, 0x0, @in6=@private0}}, &(0x7f00000003c0)=0xe8)
quotactl_fd$Q_QUOTAOFF(r11, 0xffffffff80000302, r12, 0x0)

908.982865ms ago: executing program 4 (id=7719):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={0x90, 0x0, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x0]}, @NL80211_ATTR_FRAME={0x6c, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x9}, @device_b, @device_a, @initial, {0xf, 0x5}}, 0xffffffffffffffff, @default, 0x1000, @val={0x0, 0x6, @default_ibss_ssid}, @void, @val={0x3, 0x1, 0x2c}, @void, @val={0x6, 0x2, 0x1ff}, @val={0x5, 0x3, {0x5, 0x97, 0x5}}, @void, @val={0x2a, 0x1, {0x0, 0x0, 0x1}}, @void, @val={0x2d, 0x1a, {0x400, 0x2, 0x5, 0x0, {0x2, 0xb7b, 0x0, 0x347, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x100, 0x1}}, @void, @val={0x71, 0x7, {0x69, 0x0, 0x1, 0x0, 0x1, 0x7, 0x20}}, @val={0x76, 0x6, {0x3, 0x0, 0x2f, 0x6}}}}]}, 0x90}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

783.738417ms ago: executing program 4 (id=7721):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000b40)={&(0x7f0000000080)={0x2, 0x4e19, @multicast1=0xe0000002}, 0x10, 0x0, 0x0, &(0x7f0000000100)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x40}, @loopback}}}], 0x20, 0xffff0000}, 0x0)

783.444546ms ago: executing program 4 (id=7723):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000240)={@val={0x2f3a, 0x800}, @val={0x0, 0x3, 0x3, 0x1}, @ipv4=@tcp={{0x5, 0x4, 0x2, 0x2, 0xfa1, 0x68, 0x0, 0x5, 0x6, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast}, {{0x4e20, 0x4e21, 0x41424344, 0x41424344, 0x1, 0x0, 0x8, 0x40, 0x141a, 0x0, 0x15f1, {[@mptcp=@syn={0x1e, 0xc, 0x2, 0x1, 0x9, 0x4}]}}, {"b898f48a5203aec1c20360cd2ef7d58da55b659aa6992f305f3fb5d188f517abf96e559cce7d2282a54862bc80a51035e81c9f2d030a6cd6e7c83ed735fe91a467f79be2c7d85f7529eff6f03e92199b12eae0ad8d098f78165de6ccd711c6be47076c700a8a74e5b91a9355bb250b70cc5af2c4219f1cf2fa23910722a02956f3612fc9f024e77b9d745b22dacc05c41e125d6487e6ffd4ca8db7a1f2befb5708d551a43ad989dc418b24f8fefc9febd72b8504db532be5759ec8a0e4e48662c5f29dd566101c64946a9c9b8e12fd22f56093a80f345a106dc2b95ccb043f0131602e6ef13caddcc9fcfa2e40ab3b603ff5881f4fba3c8bbfffd05510a5952a6335b6e02fe85927bd050bfc265b2afd2735345a9380f5af87e6a3d2479fc06afc9252d7d28710570837daa46d2b942be5433f46ca6cc0efe65e5b874fede589d6026c20e28749a857eb0b9bd9157a247cde360572592da40909d903ef6c4c10cc06f59b45d0e0991bc820bfef700ca4e2b6aad5c32d2a8a807e9333e0eddec1c0ed393deb690e1b827db9f5da75dbc32874e5fcc5c76c05c0ec2fb1e8d5918cd09023865e9008cca311ed9672237bcf925fa09ae410683726998bf0ef51937e764e55a09e009429c8eeae288eda500541b7a33d29d492493084ba2c0a89dc61126d3fae08440bb57473adfdeadb98bdada889ebc36ae25649e5b7187e0d2dd011b39e037f3cad6e0e2161ab344173e125545945b1debe71f24213f581df639d486bf77ccc6da56997708b76eb6cbde470ad004fbfb84e8d1495a2d7bb544f282dad56316b50472015c74847e3209ef4a6edbff327ec99dd0288214d9329f433bc71698808201bf0a769d608fac5faf16c32a09c34750040d9d19aa8b4071c051338527952e5afcfd2e33a14d9f123c6dd5f1a3c47583ff6e3c154eff46c1942bbc357add5253d96f5b6dc6e440271a377b03db190ed081e2989dec4a839e1c2d7fecfaa2459f62151b9ef4716fbc15fd86812763fbaf38e4d5af6d0c8b830436770819361104f30bd8ba795f9104dfb7370d1c6940819d6432b159fbbe633a093ff4dc3c44c4623e16eddb6151ef904fc96b87957ab22230dd6c2458fbaa438d3c222c055ce4253db8fdda2077f0159fddc1306b0277d122c51cc577b2b6dee459f1bf28c6d94178a0fc3e382f6b58e1db6cda5eca7dc0720e61d59ec794a02295ccdeedc811457e30e8548a8be271c69f0cbfd08fdcfa281ec3b1ea7bb2ff784be0a732344cc0978b37507d448330149537f1de512d4952e2d6a8901be7bf9c8497ffdc3910096e2ef5c2d056f909621f1c8c90702c9469fcfb9ccda91123da96c4c8381718624e74948ce35b4ddc47982d392d84fe377a0e4edcf34f4bc814d12a5fee04ed6750b074fd046a47c59b84c6d465bce16101ced3d8f6b8a9d1d8b96f730569dd4bce831c188c236b5c600349932d42d846dbd6d5ecd07a89c6f535237567aebd4eb12bbfe5120e0c0e5f077005394e71772d796bbe82be4e014c63c8a1c4bbbddf186d94eb73313e91a97ce8ade5c6ec3defd412842f1afc7c642bbb94ce29a16ea298291519a5f5a6f5782a17fcd9af20699f70307270c5b6f88606c986aae6766130d63278b64a09fa4850ec92b72d2e19f1b8a305c237061af9f85ea6d2d33ea5c77754eaaa0b221e7883da6e95d6f031f033df057faa24c078a7ad1e922f371b076d7b492d5837f6f4a0980f882b160f581f2fdd551baf1fdccfb2677871eb55bdaf8c6c158bb9ae0684fec562045ba365ff7443c60e7381d0ffa426b98640bc6f95b8191dc2e14cec948871d5fbbfe46c6f669c1a4f98dc4cfdebe8bca4fd627acb475c9c80875d766c976116e7a2245088cc70a51242756710a6164e417d4fe7f2bb4f878df548598021f246492211d9c780a9d66b47c19e4924f2ba392a54ddbf73d61eab4c45dfa3510f705bd23c0ecc7210b3f982e328142f74e10edce9677990b862965594b9c671dc0e7c193b7df65de53f953e53ec0789a36c0895cf063ff0d2711b28e177d457192493454d07ad162c8f4a2db7db5761928fdb45311a44be6af7e170b3dd38783ceb9c5745deb957f6fc1cc073d7abe2cc5c58c29136b89c745085304457ce9e1394b1c4de3c664fa843c5183e45f65137e57b627a9938dfcb3cdf60829e5d8014534df04da80c53613a419d8811a4cc9f8a483a3488f942b1e9f69730f9861b70d6e42efbb147ce969854a56877c64a9c5e7e3852994d8d36b86aadc74c3b765307af433c23b0e963f95966beb7cc859bcf9217a52df243a41532cb4b0b316677db0104f12aca9fee6fd5908169451b0fcccf0cfdfbf3de802cc2488a532d5d7de6582c5645160c5ef673d2c95d5b8b2d99ed9486c069798f13c14eab4c99fd509fa9f879d18a5f0bdefd8f44ad0c9280ca9335ed661cb6cc22264f95e1f3443b41a044e4a15ab73f20bed9f6caa6bf231351fd882c11320e40f61718d4c43e99f98a72b459e9ce6eab66903a4ca67560e6c3579c558140e9a035d380b21064f70ed5ad62be784e4f75619fe92a4b6c22438a5907bb234570b962389228a9a454caa0579253a8d697dd890663f0bbed83e2c249dcab4db3d4124202abed769bbc90aa21ae521d9153352bec7eb6e0623fe9486bb2c1dbda0726daa64343304e6b878f768404848e5df3be0f1838f71a232cc8737fbc62172c7ee73306edf0b621e76ef35d76c86473926f47bfaaf943abcf63a81449006583ecfbbc3c498f5dd176bbff6e4e51134ffa5b92dcf4719cb789c9fec63955607da72b335ef7fe1c12dc9cdf44a9e83d7ab5a51977ba1168354a1e89bc5e420329c5864393bd3c72cd9f2c9d7b8e79f661a37f4a03105e77aaa28f4978f44abc4f89c458080e93cfaa043c105f396badc033d12dbed823a2e4d24406c7b77cd33630e6257d21a27857beaad037c1031a319d79e6103e1b7600ad9d418e5af02d372d0ddd5e328edf7245b7907632eae607992a8048a24721e8ce32a5be8adc4704c58de99613bf254d0448c452b7e81fdfd8b3c1b3ff8d573678448aef089e5477e1174bc424c77b08bf81144faadd289d04a02fc19cab03ff2cee402693fb215c4b4b12afcbc532646eed43aa6408df1b2d738e611d5082053882b5a69e0e6ae967c89ebb2980c933c04337acac94130de8e1e99acb3878685a4d0e3f7c95179f4e8d6674ced26a91099da84fa0ff485a0cab23b35de4f8091a22e22a969d1daf17549b092b0353468b3d0918f514a1248a3d4a19767bf037cff673771fa22c6ee4952728a8126eac03e50aece013d0c59bb9bc230c48f3115b37a482bae47ca56f8b10419f78195ec89dbd381a04a7ffb645ad53f60783d4997d7cab42591735ad56d565d33325715e2fc29ed8c64869485fd6e14136f4a5f66681668b519c749a790b6417a853ef04015aeeefc48bd85aa351186f728b5f1b0183c03d2168d52dbed1ce13aa3c673458dabeed746d513593b6c561a79f399b498396fd94473aa2acea127591eeeff8f691dddf95288e06203c1e779ba7f5b2b7764e8aad4a44e547d5470193acfbfac984bdda75d8b35eb2258abdcf47ee7df549d499204d19c0b89a91f1aef847f375b5cf1f0829d538d14361327073c0edb6605810f330c401270c8eb35eb97aed751feb21211a51a9031ed386fa1598618a38ae9a1c86ae64c84727b1864f64b4da71a7a3195c2757fed49945d63458d89cf5c536bdd441f3f265fc9d61a554087a9b2b83660c0c17e15d9d1d40065ba244453fb08b4ea027e3301ea254513633704ca1a496c7ad2227ca99cf07c58b1c11deb9216e940e2e1243d75b4a6882e84581cc727bcfea0d20d39cb545830a99da07659b347922df1f29ca7496e493826fac4b8f1d641fee7460e99fccd8672473e59a6c240d09a541e460e5f2945776c707212bb33a5ee5051961f21592d9ea3ae018b8fbc2140e6151f14ff033a6dbb1afbddd684b6a9d5f29b7f273b430dab91c53cd89e191adc78c7ce20bb4340425531cfc23f119a5eab1d7c73bc703b7fba48c8038c068df1f77eda5e18b2f2609d9d99de2768349987ba51cb98f698797051844c0c8637bf2f7ffac991ccf95e1b5eae9d7d25e7f3e0bdc788d99754a8be1baddafc4f0914f1a05bf8bec1a40bd2135539150da59d4163c67a575bc6dd7f2f786114c372842795601e8569e28c949e8bdc96e5a43cb6639dedf1ef1f054e0d42589a16d30e296b6dfdac6e13a6c68e03bd39dc172b6007b01793ceafa13c6379d2b820e98e9e87891e3bbdc688f62c56ef80c67ad066a53e36141af58fa9734429498580dc6d32d1c2e8cc722b4f9dd9d165d07b7b536c398df39dee06f48ad422492fe1777619f49e153ad276c86fbf8f607e7b1e9d6040889f166eb8a73ddba4668d6618b31c36b6427b1cd3cb97ef268ec1f1b049a35bceddff9147fde7309db0c474be42a6d54150172df4d5614106ea5f134cf543a70105a0a75f649d6de1a9bd3858bcccf3b220886ea6a7702dbe7f17e03a022a0ffc5145da4895bcb41da3fc5a2a10bc7b2a70a3a86ef8fa600d24894260cdbbf3c36313f3b1e9e8096921b625cb9c7f3ab8423277c9b80743a2185c95e9e7fb3f6d63669257fac197b7a73c5a4a2c4a2df52af705b46b56ade64c8a4265373a770676ec7fe3738843402f63a79f0ddb59e4bf439e4eac709a0127e9588e1538872af3916a12a1a850206392c16e17fab5a7d72bc3e9caad7bab64481728861016c124888210d06e31005ffbd39a65abbf69ce1683de2bb9f90e4955deb7afd23e90e3e11fcbd55627ab48cea806cf5da35e094bbaab42dbbdb454599a6659c2ce10845dc2beba123ae01f043c8c13c463634546e3fc913360adf2441ce3753840af235b0828ee6f74bac40d08d7b8dd8828af44a577e52e9adc86d895e1e561881320091c18bf7c466c945c4872dfc884858f5d710e0f9786878e09a906896308135097da35e465e140f22171878a42f3fe2f0872656b4ffbacc54dd99baef3c58450f1d585e3e3b8c1a9bf0f6afb9858fd6f58791382ff65d926d49f5e02abc84bd4df49ed5beec83517fbf782f983353398063831a1a4668afd7bbe2275c712497686ccff4c447f34cb4dd6b5af0f2e517fea11783d265db2c6dacb393fa3e2d484c3a62c516fe24294ca324bea8095265d560c6f68ae278c7bc34afb7309eb96fbf851af3616fd07e335d010804e60e44a57d38a2d79a19a5f9b22daec534d0379b3fe8a3a6cd8c63b585dcf00abef832b402fd3c0dd95037bb5be517b14ac6627408ba35f15cc4aa0fa96d888baa2d82b4efdf27a018330cca8a83eb587ca8a2536bdd5ab7d783044c76166d27c15299cbe3d82a612236157d25c73b19a3f454309500822206d9ea91f77ea58291d3527f85fcd7f44f1dd4bec1fdd26ee5bbc11620a62fc8c6887904b9f3bde3c640b7e4ba801f49f90e191ade5df7d39f0999a2b5e32f3385c0ec657c6ea6da3bc3d417b3b3856f92bcbbf0eb30ef02715a53dfece840180678d156e79"}}}}, 0xfaf)

728.890939ms ago: executing program 9 (id=7727):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000005c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DISASSOCIATE(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000700)={0x30, r1, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x34}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x30}, 0x1, 0x0, 0x0, 0x40420d5}, 0x80)

596.967047ms ago: executing program 9 (id=7728):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, 0x0)

594.142539ms ago: executing program 9 (id=7731):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x66, &(0x7f00000003c0)=ANY=[@ANYBLOB="e33110495bfdaaaaaaaaaa0086dd60cb653e00303bff"], 0x0)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x1, &(0x7f0000000000)=0x5, 0x4)

521.150842ms ago: executing program 4 (id=7732):
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000300)={0x57, 0x0, 0x8, {0x0, 0x1}, {0x74, 0x2}, @rumble={0x1, 0x8}})
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="4000000010003b15000000000000000000004888", @ANYRES32=0x0, @ANYBLOB="d530d995212cf95a2000128008000100687372001400028008000200", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES64], 0x40}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="662700000000000024001280090001007866726d0000000014000280040003"], 0x44}}, 0x0)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCGPKT(r2, 0x80045438, &(0x7f0000000080))
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
ioctl$EVIOCSMASK(r3, 0x40104593, &(0x7f0000000000)={0x0, 0x0, 0x0})
write$char_usb(r3, &(0x7f0000000040)="e2", 0xff0f)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x6b142, 0x0)
syz_io_uring_setup(0x2fa, &(0x7f0000000100)={0x0, 0x83b5, 0x8, 0x0, 0x2bb, 0x0, r4}, 0x0, 0x0)
r5 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r5, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r5, 0x40946400, &(0x7f00000000c0)={'aio_iiro_16\x00', [0x4f27, 0x5, 0x10000, 0x30, 0x66, 0xffffffac, 0x0, 0x8000, 0xa, 0x104, 0xffffffff, 0x7, 0xd, 0x1, 0x2, 0xb6a, 0x5, 0x1a449, 0xfff, 0x400, 0x2086, 0x24, 0x0, 0x20001e5c, 0x7fff, 0x8002, 0x43c, 0x1, 0x6, 0x0, 0x1000000]})

519.544342ms ago: executing program 9 (id=7733):
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

518.800556ms ago: executing program 9 (id=7735):
r0 = socket$kcm(0xa, 0x2, 0x0)
socket(0x2, 0x80805, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, 0x0, 0x0)
sendmsg$sock(r0, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev, 0xe0000000}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)

451.014788ms ago: executing program 4 (id=7737):
r0 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x80000)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(0xffffffffffffffff, 0x1, &(0x7f0000000180)={0x2, r0}, 0x0)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0xf)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000340))
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r2}, 0x94)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r5, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r5, 0x0)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r6, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x20, 0x140d, 0x0, 0x70bd2d, 0x25dfdbff, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_RES_MRN={0x8}]}, 0x20}, 0x1, 0x0, 0x0, 0x40008c0}, 0x24048000)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r7, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
r8 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r8, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000040)={r8, r4})
sendmsg$kcm(r1, &(0x7f0000002080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000001c0)="1a477f4dc80d625646082d3c8101e557fa7d6a514e99bf04c90c6ed45dabc1e8e60751be7f76e7e7fddece975dd781b9f67c2fa8244d603d1438783b47b2966404ad68fa536b3e638a4d7b84fd5e9c1de9f8b7a105d3c544069ebe89b14581392c6c40988f4aa2f423501dae0824506d93bd3c087138b6c25d0685cd4e61860ea8ce28b1fda993e2319f0249e627b7cb9345afaf6c24d828cba71605ac18f7ed10819cfb3ab42301b3bb1682fbc1d93e3fcab100"/190, 0xbe}, {&(0x7f0000000280)="846a395c7099232e15f34a8351b44ad22f0cf1f5a3e843ec727342fad50da77859080d3d32", 0x25}], 0x2}, 0x0)
r9 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r9, &(0x7f0000000640)={0x28, 0x0, 0x2710, @my=0x0}, 0x10)
close_range(r9, 0xffffffffffffffff, 0x0)
close(r1)

449.539069ms ago: executing program 9 (id=7744):
syz_usb_connect$hid(0x4, 0x36, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)={0x44, 0x2, 0x6, 0x3, 0x0, 0x0, {0xd}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r1 = socket$netlink(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x38, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x10, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x10048047}, 0x4000050)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

218.580874ms ago: executing program 5 (id=7741):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r2, @ANYBLOB="08002600940900000800b70099"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={0x90, r3, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x0]}, @NL80211_ATTR_FRAME={0x6c, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x9}, @device_b, @device_a, @initial, {0xf, 0x5}}, 0xffffffffffffffff, @default, 0x1000, @val={0x0, 0x6, @default_ibss_ssid}, @void, @val={0x3, 0x1, 0x2c}, @void, @val={0x6, 0x2, 0x1ff}, @val={0x5, 0x3, {0x5, 0x97, 0x5}}, @void, @val={0x2a, 0x1, {0x0, 0x0, 0x1}}, @void, @val={0x2d, 0x1a, {0x400, 0x2, 0x5, 0x0, {0x2, 0xb7b, 0x0, 0x347, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x100, 0x1}}, @void, @val={0x71, 0x7, {0x69, 0x0, 0x1, 0x0, 0x1, 0x7, 0x20}}, @val={0x76, 0x6, {0x3, 0x0, 0x2f, 0x6}}}}]}, 0x90}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

207.865863ms ago: executing program 5 (id=7742):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, 0x0)

150.528682ms ago: executing program 8 (id=7743):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
syz_emit_ethernet(0x66, &(0x7f00000003c0)=ANY=[@ANYBLOB="e33110495bfdaaaaaaaaaa0086dd60cb653e00303bff"], 0x0)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x1, &(0x7f0000000000)=0x5, 0x4)

150.072973ms ago: executing program 5 (id=7745):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'rose0\x00', 0x112})
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'rose0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0xfeff, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100000000000000000000000200", @ANYRES32=r2], 0x20}}, 0x0)

149.235973ms ago: executing program 8 (id=7746):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'macsec0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
ioctl$VIDIOC_QBUF(r4, 0xc058ff0b, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x41, 0x0, {}, {0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "8000"}, 0x2, 0x2, {}, 0x20803})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000a00)=ANY=[@ANYBLOB="54000000100003052bbd7000249d020000000000", @ANYRES32=0x0, @ANYBLOB="1544010001800000240012800b0001006d616373656300001400028005000c0001000000080005000400000008000500", @ANYRES32=r1], 0x54}, 0x1, 0x0, 0x0, 0x2040}, 0x800)

72.029467ms ago: executing program 8 (id=7747):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISASSOCIATE(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000700)={0x30, r1, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x34}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x30}, 0x1, 0x0, 0x0, 0x40420d5}, 0x80)

71.902077ms ago: executing program 5 (id=7748):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
sendmsg$inet(r0, &(0x7f0000000b40)={&(0x7f0000000080)={0x2, 0x4e19, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000100)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x40}, @loopback}}}], 0x20}, 0x1)

71.641765ms ago: executing program 8 (id=7749):
r0 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0)
sendmsg$sock(r0, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0xe0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)

9.536964ms ago: executing program 5 (id=7750):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)

9.29648ms ago: executing program 8 (id=7751):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r2, @ANYBLOB="08002600940900000800b70099"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={0x90, r3, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x0]}, @NL80211_ATTR_FRAME={0x6c, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x9}, @device_b, @device_a, @initial, {0xf, 0x5}}, 0xffffffffffffffff, @default, 0x1000, @val={0x0, 0x6, @default_ibss_ssid}, @void, @val={0x3, 0x1, 0x2c}, @void, @val={0x6, 0x2, 0x1ff}, @val={0x5, 0x3, {0x5, 0x97, 0x5}}, @void, @val={0x2a, 0x1, {0x0, 0x0, 0x1}}, @void, @val={0x2d, 0x1a, {0x400, 0x2, 0x5, 0x0, {0x2, 0xb7b, 0x0, 0x347, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x100, 0x1}}, @void, @val={0x71, 0x7, {0x69, 0x0, 0x1, 0x0, 0x1, 0x7, 0x20}}, @val={0x76, 0x6, {0x3, 0x0, 0x2f, 0x6}}}}]}, 0x90}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

9.133816ms ago: executing program 5 (id=7752):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000240)={@val={0x2f3a, 0x800}, @val={0x0, 0x3, 0x3, 0x1}, @ipv4=@tcp={{0x5, 0x4, 0x2, 0x2, 0xfb1, 0x68, 0x0, 0x5, 0x6, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast}, {{0x4e20, 0x4e21, 0x41424344, 0x41424344, 0x1, 0x0, 0x8, 0x40, 0x141a, 0x0, 0x15f1, {[@mptcp=@syn={0x1e, 0xc, 0x2, 0x1, 0x9, 0x4}]}}, {"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"}}}}, 0xfbf)

0s ago: executing program 8 (id=7753):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000000f8c0000000c0a01080000000000000000010000000900020073797a3200000000600003805c000080080003400000000250000b80200001800a00010071756f7461000000100002800c0001400000000000000000140001800c000100636f756e74657200000000000000058011e70000666c6f775f6f66666c6f6164000000000900010073797a30"], 0x110}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002600)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x48, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x38, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0xe, 0x1, 'statistic\x00'}, @NFTA_MATCH_INFO={0x1c, 0x3, "4cb4fc4ba7906e8f58c2052fade1bc2c62cdeb7521cf85ee"}, @NFTA_MATCH_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0xa0}}, 0x0)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x4, &(0x7f0000000080)=@raw=[@map_idx={0x18, 0xb, 0x5, 0x0, 0x3}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0xff}], &(0x7f0000000240)='GPL\x00', 0x80, 0x6c, &(0x7f0000000300)=""/108, 0x41100, 0x6, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=[0x1, 0x1], 0x0, 0x10, 0x1}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'ipvlan1\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={r2, r3, 0x25, 0x26, @void}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000000f8c0000000c0a01080000000000000000010000000900020073797a3200000000600003805c000080080003400000000250000b80200001800a00010071756f7461000000100002800c0001400000000000000000140001800c000100636f756e74657200000000000000058011e70000666c6f775f6f66666c6f6164000000000900010073797a30"], 0x110}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002600)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x48, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x38, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0xe, 0x1, 'statistic\x00'}, @NFTA_MATCH_INFO={0x1c, 0x3, "4cb4fc4ba7906e8f58c2052fade1bc2c62cdeb7521cf85ee"}, @NFTA_MATCH_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0xa0}}, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x4, &(0x7f0000000080)=@raw=[@map_idx={0x18, 0xb, 0x5, 0x0, 0x3}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0xff}], &(0x7f0000000240)='GPL\x00', 0x80, 0x6c, &(0x7f0000000300)=""/108, 0x41100, 0x6, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=[0x1, 0x1], 0x0, 0x10, 0x1}, 0x94) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'ipvlan1\x00'}) (async)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={r2, r3, 0x25, 0x26, @void}, 0x10) (async)

kernel console output (not intermixed with test programs):

]  ? ip_skb_dst_mtu+0x5b6/0xc70
[  649.550956][  T875]  ? __pfx_ip_skb_dst_mtu+0x10/0x10
[  649.550968][  T875]  ? __pfx_ip_finish_output+0x10/0x10
[  649.550985][  T875]  __ip_finish_output.part.0+0x1b4/0x350
[  649.551001][  T875]  ip_output+0x35e/0xa10
[  649.551016][  T875]  ip_send_skb+0x437/0x590
[  649.551031][  T875]  udp_send_skb+0x71d/0x15b0
[  649.551049][  T875]  udp_sendmsg+0x1813/0x2870
[  649.551065][  T875]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  649.551080][  T875]  ? __pfx_udp_sendmsg+0x10/0x10
[  649.551095][  T875]  ? __lock_acquire+0xb97/0x1ce0
[  649.551119][  T875]  ? reacquire_held_locks+0xcd/0x1f0
[  649.551136][  T875]  ? release_sock+0x21/0x220
[  649.551151][  T875]  ? find_held_lock+0x2b/0x80
[  649.551168][  T875]  ? inet_autobind+0x145/0x1a0
[  649.551182][  T875]  ? __local_bh_enable_ip+0xa4/0x120
[  649.551197][  T875]  ? inet_autobind+0x14a/0x1a0
[  649.551212][  T875]  ? __pfx_udp_sendmsg+0x10/0x10
[  649.551227][  T875]  inet_sendmsg+0x105/0x140
[  649.551244][  T875]  ____sys_sendmsg+0x973/0xc70
[  649.551261][  T875]  ? __pfx_____sys_sendmsg+0x10/0x10
[  649.551283][  T875]  ___sys_sendmsg+0x134/0x1d0
[  649.551297][  T875]  ? __pfx____sys_sendmsg+0x10/0x10
[  649.551327][  T875]  __sys_sendmsg+0x16d/0x220
[  649.551340][  T875]  ? __pfx___sys_sendmsg+0x10/0x10
[  649.551361][  T875]  do_syscall_64+0xcd/0x4c0
[  649.551376][  T875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  649.551388][  T875] RIP: 0033:0x7f38b5f8ebe9
[  649.551398][  T875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  649.551409][  T875] RSP: 002b:00007f38b6ddb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  649.551420][  T875] RAX: ffffffffffffffda RBX: 00007f38b61b5fa0 RCX: 00007f38b5f8ebe9
[  649.551427][  T875] RDX: 0000000000000000 RSI: 0000200000000b40 RDI: 0000000000000003
[  649.551434][  T875] RBP: 00007f38b6ddb090 R08: 0000000000000000 R09: 0000000000000000
[  649.551440][  T875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  649.551447][  T875] R13: 00007f38b61b6038 R14: 00007f38b61b5fa0 R15: 00007ffd34d4a9e8
[  649.551461][  T875]  </TASK>
[  649.604552][T32071] veth0_vlan: entered promiscuous mode
[  649.658057][T32071] veth1_vlan: entered promiscuous mode
[  649.671949][T32071] veth0_macvtap: entered promiscuous mode
[  649.675866][T32071] veth1_macvtap: entered promiscuous mode
[  649.687397][T32071] batman_adv: batadv0: Interface activated: batadv_slave_0
[  649.696879][T32071] batman_adv: batadv0: Interface activated: batadv_slave_1
[  649.707882][T24302] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  649.711659][T24302] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  649.716458][T24302] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  649.723032][T24302] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  649.780311][T24296] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  649.782978][T24296] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  649.798442][T24296] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  649.801889][T24296] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  649.837251][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  649.863170][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  649.905054][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  649.975637][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  650.075618][   T34] usb 9-1: new low-speed USB device number 11 using dummy_hcd
[  650.226858][ T5331] Bluetooth: hci0: command tx timeout
[  650.230319][   T34] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  650.233606][   T34] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  650.240989][   T34] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  650.250615][   T34] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  650.255135][   T34] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  650.266229][   T34] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  650.269315][   T34] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  650.273767][   T34] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  650.278658][   T34] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  650.283300][   T34] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  650.298078][   T34] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  650.301186][   T34] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  650.305351][   T34] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  650.308859][   T34] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  650.312267][   T34] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  650.322698][   T34] usb 9-1: string descriptor 0 read error: -22
[  650.324696][   T34] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  650.328048][   T34] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  650.336889][ T5983] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  650.339442][   T34] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  650.342508][ T5983] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  650.347606][ T5983] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  650.351832][ T5983] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  650.354516][ T5983] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  650.379566][  T927] lo speed is unknown, defaulting to 1000
[  650.492268][  T927] chnl_net:caif_netlink_parms(): no params data found
[  650.581487][  T927] bridge0: port 1(bridge_slave_0) entered blocking state
[  650.583775][  T927] bridge0: port 1(bridge_slave_0) entered disabled state
[  650.588467][  T927] bridge_slave_0: entered allmulticast mode
[  650.590957][ T1292] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  650.591219][  T927] bridge_slave_0: entered promiscuous mode
[  650.593255][ T1292] FAULT_INJECTION: forcing a failure.
[  650.593255][ T1292] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  650.600164][ T1292] CPU: 3 UID: 0 PID: 1292 Comm: syz.8.7304 Not tainted syzkaller #0 PREEMPT(full) 
[  650.600180][ T1292] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  650.600187][ T1292] Call Trace:
[  650.600191][ T1292]  <TASK>
[  650.600195][ T1292]  dump_stack_lvl+0x16c/0x1f0
[  650.600212][ T1292]  should_fail_ex+0x512/0x640
[  650.600228][ T1292]  _copy_from_user+0x2e/0xd0
[  650.600244][ T1292]  kstrtouint_from_user+0xd6/0x1d0
[  650.600255][ T1292]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  650.600265][ T1292]  ? __lock_acquire+0xb97/0x1ce0
[  650.600272][  T927] bridge0: port 2(bridge_slave_1) entered blocking state
[  650.600290][ T1292]  proc_fail_nth_write+0x83/0x220
[  650.600305][ T1292]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  650.600321][ T1292]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  650.600334][ T1292]  vfs_write+0x29d/0x11d0
[  650.600378][ T1292]  ? __pfx___mutex_lock+0x10/0x10
[  650.600404][ T1292]  ? __pfx_vfs_write+0x10/0x10
[  650.600419][ T1292]  ? __fget_files+0x20e/0x3c0
[  650.600447][ T1292]  ksys_write+0x12a/0x250
[  650.600461][ T1292]  ? __pfx_ksys_write+0x10/0x10
[  650.600476][ T1292]  do_syscall_64+0xcd/0x4c0
[  650.600491][ T1292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  650.600503][ T1292] RIP: 0033:0x7f09d798d69f
[  650.600512][ T1292] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  650.600524][ T1292] RSP: 002b:00007f09d8817030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  650.600535][ T1292] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f09d798d69f
[  650.600542][ T1292] RDX: 0000000000000001 RSI: 00007f09d88170a0 RDI: 0000000000000004
[  650.600549][ T1292] RBP: 00007f09d8817090 R08: 0000000000000000 R09: 0000000000000000
[  650.600555][ T1292] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  650.600562][ T1292] R13: 00007f09d7bb6038 R14: 00007f09d7bb5fa0 R15: 00007ffe9a767848
[  650.600577][ T1292]  </TASK>
[  650.665932][  T927] bridge0: port 2(bridge_slave_1) entered disabled state
[  650.669585][  T927] bridge_slave_1: entered allmulticast mode
[  650.673750][  T927] bridge_slave_1: entered promiscuous mode
[  650.727727][  T927] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  650.732664][  T927] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  650.781989][  T927] team0: Port device team_slave_0 added
[  650.790370][  T927] team0: Port device team_slave_1 added
[  650.835484][  T927] batman_adv: batadv0: Adding interface: batadv_slave_0
[  650.837654][  T927] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  650.848013][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  650.851515][  T927] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  650.858047][  T927] batman_adv: batadv0: Adding interface: batadv_slave_1
[  650.860036][  T927] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  650.860965][ T1675] netlink: 280 bytes leftover after parsing attributes in process `syz.5.7308'.
[  650.867641][  T927] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  650.917154][  T927] hsr_slave_0: entered promiscuous mode
[  650.919962][  T927] hsr_slave_1: entered promiscuous mode
[  650.949129][ T1821] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  651.146878][ T2020] FAULT_INJECTION: forcing a failure.
[  651.146878][ T2020] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  651.150922][ T2020] CPU: 2 UID: 0 PID: 2020 Comm: syz.8.7314 Not tainted syzkaller #0 PREEMPT(full) 
[  651.150938][ T2020] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  651.150946][ T2020] Call Trace:
[  651.150951][ T2020]  <TASK>
[  651.150956][ T2020]  dump_stack_lvl+0x16c/0x1f0
[  651.150972][ T2020]  should_fail_ex+0x512/0x640
[  651.150988][ T2020]  _copy_from_iter+0x29f/0x1720
[  651.151005][ T2020]  ? __alloc_skb+0x200/0x380
[  651.151017][ T2020]  ? __pfx__copy_from_iter+0x10/0x10
[  651.151031][ T2020]  ? selinux_socket_getpeersec_dgram+0x1a4/0x370
[  651.151046][ T2020]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  651.151067][ T2020]  netlink_sendmsg+0x829/0xdd0
[  651.151083][ T2020]  ? __pfx_netlink_sendmsg+0x10/0x10
[  651.151101][ T2020]  ____sys_sendmsg+0xa98/0xc70
[  651.151118][ T2020]  ? copy_msghdr_from_user+0x10a/0x160
[  651.151130][ T2020]  ? __pfx_____sys_sendmsg+0x10/0x10
[  651.151151][ T2020]  ___sys_sendmsg+0x134/0x1d0
[  651.151165][ T2020]  ? __pfx____sys_sendmsg+0x10/0x10
[  651.151193][ T2020]  __sys_sendmsg+0x16d/0x220
[  651.151205][ T2020]  ? __pfx___sys_sendmsg+0x10/0x10
[  651.151225][ T2020]  do_syscall_64+0xcd/0x4c0
[  651.151239][ T2020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  651.151251][ T2020] RIP: 0033:0x7f09d798ebe9
[  651.151260][ T2020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  651.151272][ T2020] RSP: 002b:00007f09d8817038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  651.151284][ T2020] RAX: ffffffffffffffda RBX: 00007f09d7bb5fa0 RCX: 00007f09d798ebe9
[  651.151291][ T2020] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000004
[  651.151298][ T2020] RBP: 00007f09d8817090 R08: 0000000000000000 R09: 0000000000000000
[  651.151304][ T2020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  651.151311][ T2020] R13: 00007f09d7bb6038 R14: 00007f09d7bb5fa0 R15: 00007ffe9a767848
[  651.151325][ T2020]  </TASK>
[  651.507105][  T927] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  651.512019][  T927] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  651.518164][  T927] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  651.523937][  T927] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  651.567173][  T927] 8021q: adding VLAN 0 to HW filter on device bond0
[  651.579939][  T927] 8021q: adding VLAN 0 to HW filter on device team0
[  651.587212][T22331] bridge0: port 1(bridge_slave_0) entered blocking state
[  651.589662][T22331] bridge0: port 1(bridge_slave_0) entered forwarding state
[  651.602788][T22331] bridge0: port 2(bridge_slave_1) entered blocking state
[  651.605105][T22331] bridge0: port 2(bridge_slave_1) entered forwarding state
[  651.714766][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  651.730106][  T927] 8021q: adding VLAN 0 to HW filter on device batadv0
[  651.731458][ T2070] FAULT_INJECTION: forcing a failure.
[  651.731458][ T2070] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  651.737415][ T2070] CPU: 2 UID: 0 PID: 2070 Comm: syz.5.7320 Not tainted syzkaller #0 PREEMPT(full) 
[  651.737430][ T2070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  651.737437][ T2070] Call Trace:
[  651.737442][ T2070]  <TASK>
[  651.737446][ T2070]  dump_stack_lvl+0x16c/0x1f0
[  651.737463][ T2070]  should_fail_ex+0x512/0x640
[  651.737479][ T2070]  _copy_from_user+0x2e/0xd0
[  651.737507][ T2070]  move_addr_to_kernel+0x65/0x170
[  651.737526][ T2070]  __copy_msghdr+0x386/0x470
[  651.737538][ T2070]  copy_msghdr_from_user+0xc1/0x160
[  651.737550][ T2070]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  651.737569][ T2070]  ___sys_sendmsg+0xfe/0x1d0
[  651.737582][ T2070]  ? __pfx____sys_sendmsg+0x10/0x10
[  651.737611][ T2070]  __sys_sendmsg+0x16d/0x220
[  651.737623][ T2070]  ? __pfx___sys_sendmsg+0x10/0x10
[  651.737644][ T2070]  do_syscall_64+0xcd/0x4c0
[  651.737658][ T2070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  651.737672][ T2070] RIP: 0033:0x7f448878ebe9
[  651.737682][ T2070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  651.737694][ T2070] RSP: 002b:00007f44895eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  651.737705][ T2070] RAX: ffffffffffffffda RBX: 00007f44889b5fa0 RCX: 00007f448878ebe9
[  651.737712][ T2070] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  651.737718][ T2070] RBP: 00007f44895eb090 R08: 0000000000000000 R09: 0000000000000000
[  651.737725][ T2070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  651.737731][ T2070] R13: 00007f44889b6038 R14: 00007f44889b5fa0 R15: 00007ffe328bfec8
[  651.737745][ T2070]  </TASK>
[  651.811615][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  651.836558][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  651.876840][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  651.880368][  T927] veth0_vlan: entered promiscuous mode
[  651.885808][  T927] veth1_vlan: entered promiscuous mode
[  651.903099][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  651.903157][  T927] veth0_macvtap: entered promiscuous mode
[  651.919316][  T927] veth1_macvtap: entered promiscuous mode
[  651.928848][  T927] batman_adv: batadv0: Interface activated: batadv_slave_0
[  651.934704][  T927] batman_adv: batadv0: Interface activated: batadv_slave_1
[  651.940839][   T46] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  651.943624][   T46] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  651.950227][   T46] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  651.953091][   T46] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  651.968089][ T2099] syzkaller1: entered promiscuous mode
[  651.969901][ T2099] syzkaller1: entered allmulticast mode
[  651.993597][ T2104] netlink: 280 bytes leftover after parsing attributes in process `syz.5.7327'.
[  652.033212][T22331] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  652.039210][T22331] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  652.058354][T24302] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  652.061104][T24302] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  652.068855][ T2119] openvswitch: netlink: Message has 24 unknown bytes.
[  652.189485][ T2132] netlink: 20 bytes leftover after parsing attributes in process `syz.8.7333'.
[  652.263699][   T40] audit: type=1326 audit(1756423645.438:289833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2131 comm="syz.8.7333" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f09d798ebe9 code=0x0
[  652.305966][ T5983] Bluetooth: hci0: command tx timeout
[  652.385423][ T5983] Bluetooth: hci3: command tx timeout
[  652.837785][   T53] usb 9-1: USB disconnect, device number 11
[  653.019154][ T2184] netlink: 32 bytes leftover after parsing attributes in process `syz.5.7346'.
[  653.078290][ T2195] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  653.117965][ T2199] vlan3: entered promiscuous mode
[  653.119699][ T2199] vlan3: entered allmulticast mode
[  653.121431][ T2199] hsr_slave_1: entered allmulticast mode
[  653.281636][ T2227] syzkaller1: entered promiscuous mode
[  653.283417][ T2227] syzkaller1: entered allmulticast mode
[  653.293220][ T2231] FAULT_INJECTION: forcing a failure.
[  653.293220][ T2231] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  653.298286][ T2231] CPU: 0 UID: 0 PID: 2231 Comm: syz.8.7362 Not tainted syzkaller #0 PREEMPT(full) 
[  653.298303][ T2231] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  653.298309][ T2231] Call Trace:
[  653.298313][ T2231]  <TASK>
[  653.298318][ T2231]  dump_stack_lvl+0x16c/0x1f0
[  653.298334][ T2231]  should_fail_ex+0x512/0x640
[  653.298350][ T2231]  _copy_to_user+0x32/0xd0
[  653.298365][ T2231]  simple_read_from_buffer+0xcb/0x170
[  653.298379][ T2231]  proc_fail_nth_read+0x197/0x240
[  653.298393][ T2231]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  653.298407][ T2231]  ? rw_verify_area+0xcf/0x6c0
[  653.298425][ T2231]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  653.298437][ T2231]  vfs_read+0x1e4/0xcf0
[  653.298450][ T2231]  ? __pfx___mutex_lock+0x10/0x10
[  653.298463][ T2231]  ? __pfx_vfs_read+0x10/0x10
[  653.298478][ T2231]  ? __fget_files+0x20e/0x3c0
[  653.298495][ T2231]  ksys_read+0x12a/0x250
[  653.298506][ T2231]  ? __pfx_ksys_read+0x10/0x10
[  653.298522][ T2231]  do_syscall_64+0xcd/0x4c0
[  653.298536][ T2231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.298547][ T2231] RIP: 0033:0x7f09d798d5fc
[  653.298557][ T2231] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  653.298569][ T2231] RSP: 002b:00007f09d8817030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  653.298585][ T2231] RAX: ffffffffffffffda RBX: 00007f09d7bb5fa0 RCX: 00007f09d798d5fc
[  653.298595][ T2231] RDX: 000000000000000f RSI: 00007f09d88170a0 RDI: 0000000000000003
[  653.298611][ T2231] RBP: 00007f09d8817090 R08: 0000000000000000 R09: 0000000000000000
[  653.298620][ T2231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  653.298631][ T2231] R13: 00007f09d7bb6038 R14: 00007f09d7bb5fa0 R15: 00007ffe9a767848
[  653.298656][ T2231]  </TASK>
[  653.361708][    C0] vkms_vblank_simulate: vblank timer overrun
[  653.384873][ T2239] FAULT_INJECTION: forcing a failure.
[  653.384873][ T2239] name failslab, interval 1, probability 0, space 0, times 0
[  653.389152][ T2239] CPU: 3 UID: 0 PID: 2239 Comm: syz.8.7363 Not tainted syzkaller #0 PREEMPT(full) 
[  653.389167][ T2239] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  653.389174][ T2239] Call Trace:
[  653.389178][ T2239]  <TASK>
[  653.389182][ T2239]  dump_stack_lvl+0x16c/0x1f0
[  653.389199][ T2239]  should_fail_ex+0x512/0x640
[  653.389212][ T2239]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  653.389226][ T2239]  should_failslab+0xc2/0x120
[  653.389239][ T2239]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  653.389251][ T2239]  ? __alloc_skb+0x2b2/0x380
[  653.389264][ T2239]  __alloc_skb+0x2b2/0x380
[  653.389275][ T2239]  ? __pfx___alloc_skb+0x10/0x10
[  653.389286][ T2239]  ? find_held_lock+0x2b/0x80
[  653.389301][ T2239]  ? is_bpf_text_address+0x8a/0x1a0
[  653.389314][ T2239]  ? bpf_ksym_find+0x127/0x1c0
[  653.389329][ T2239]  alloc_skb_with_frags+0xe0/0x860
[  653.389346][ T2239]  sock_alloc_send_pskb+0x7fb/0x990
[  653.389362][ T2239]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  653.389393][ T2239]  ? __lock_acquire+0x62e/0x1ce0
[  653.389413][ T2239]  __ip_append_data+0x2149/0x41c0
[  653.389430][ T2239]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  653.389442][ T2239]  ? find_held_lock+0x2b/0x80
[  653.389456][ T2239]  ? ip_dst_mtu_maybe_forward.constprop.0+0x30a/0x6e0
[  653.389475][ T2239]  ? ip_dst_mtu_maybe_forward.constprop.0+0x314/0x6e0
[  653.389492][ T2239]  ? __pfx___ip_append_data+0x10/0x10
[  653.389505][ T2239]  ? dst_alloc+0xc0/0x1a0
[  653.389518][ T2239]  ip_make_skb+0x27f/0x300
[  653.389534][ T2239]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  653.389554][ T2239]  ? __pfx_ip_make_skb+0x10/0x10
[  653.389567][ T2239]  ? ip_route_output_key_hash+0x16b/0x2e0
[  653.389592][ T2239]  ? udp_sendmsg+0x17d7/0x2870
[  653.389605][ T2239]  udp_sendmsg+0x17d7/0x2870
[  653.389621][ T2239]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  653.389636][ T2239]  ? __pfx_udp_sendmsg+0x10/0x10
[  653.389649][ T2239]  ? tomoyo_supervisor+0xb0c/0x13b0
[  653.389661][ T2239]  ? vsnprintf+0x318/0x1160
[  653.389675][ T2239]  ? __pfx_vsnprintf+0x10/0x10
[  653.389691][ T2239]  ? __lock_acquire+0xb97/0x1ce0
[  653.389708][ T2239]  ? look_up_lock_class+0x6b/0x150
[  653.389727][ T2239]  udpv6_sendmsg+0x128f/0x2d20
[  653.389747][ T2239]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  653.389764][ T2239]  ? __lock_acquire+0xb97/0x1ce0
[  653.389786][ T2239]  ? reacquire_held_locks+0xcd/0x1f0
[  653.389809][ T2239]  ? rcu_is_watching+0x12/0xc0
[  653.389824][ T2239]  ? __local_bh_enable_ip+0xa4/0x120
[  653.389839][ T2239]  ? lockdep_hardirqs_on+0x7c/0x110
[  653.389850][ T2239]  ? inet_autobind+0x145/0x1a0
[  653.389864][ T2239]  ? __local_bh_enable_ip+0xa4/0x120
[  653.389878][ T2239]  ? inet_autobind+0x14a/0x1a0
[  653.389892][ T2239]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  653.389907][ T2239]  ? inet6_sendmsg+0x105/0x140
[  653.389921][ T2239]  inet6_sendmsg+0x105/0x140
[  653.389936][ T2239]  ____sys_sendmsg+0x705/0xc70
[  653.389953][ T2239]  ? __pfx_____sys_sendmsg+0x10/0x10
[  653.389974][ T2239]  ___sys_sendmsg+0x134/0x1d0
[  653.389987][ T2239]  ? __pfx____sys_sendmsg+0x10/0x10
[  653.390015][ T2239]  __sys_sendmsg+0x16d/0x220
[  653.390027][ T2239]  ? __pfx___sys_sendmsg+0x10/0x10
[  653.390047][ T2239]  do_syscall_64+0xcd/0x4c0
[  653.390061][ T2239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.390073][ T2239] RIP: 0033:0x7f09d798ebe9
[  653.390082][ T2239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  653.390093][ T2239] RSP: 002b:00007f09d8817038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  653.390104][ T2239] RAX: ffffffffffffffda RBX: 00007f09d7bb5fa0 RCX: 00007f09d798ebe9
[  653.390111][ T2239] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  653.390118][ T2239] RBP: 00007f09d8817090 R08: 0000000000000000 R09: 0000000000000000
[  653.390124][ T2239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  653.390131][ T2239] R13: 00007f09d7bb6038 R14: 00007f09d7bb5fa0 R15: 00007ffe9a767848
[  653.390145][ T2239]  </TASK>
[  653.559133][ T2243] netlink: 16 bytes leftover after parsing attributes in process `syz.9.7365'.
[  653.625773][   T40] audit: type=1400 audit(1756423646.798:289834): avc:  denied  { ioctl } for  pid=2259 comm="syz.8.7371" path="socket:[129809]" dev="sockfs" ino=129809 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  653.665318][   T53] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  653.681865][ T2269] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  653.694986][ T2269] cramfs: wrong magic
[  653.724770][ T2271] syzkaller1: entered promiscuous mode
[  653.726570][ T2271] syzkaller1: entered allmulticast mode
[  653.816879][   T53] usb 10-1: config index 0 descriptor too short (expected 39, got 27)
[  653.819467][   T53] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  653.822542][   T53] usb 10-1: config 0 interface 0 has no altsetting 0
[  653.827315][   T53] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  653.830244][   T53] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  653.832805][   T53] usb 10-1: Product: syz
[  653.834136][   T53] usb 10-1: Manufacturer: syz
[  653.836246][   T53] usb 10-1: SerialNumber: syz
[  653.839390][   T53] usb 10-1: config 0 descriptor??
[  653.842250][   T53] hub 10-1:0.0: bad descriptor, ignoring hub
[  653.844141][   T53] hub 10-1:0.0: probe with driver hub failed with error -5
[  653.848603][   T53] usb 10-1: selecting invalid altsetting 0
[  653.919553][ T2313] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  653.922261][ T2313] overlayfs: missing 'lowerdir'
[  653.924746][ T2312] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  653.929222][ T2312] overlayfs: missing 'lowerdir'
[  654.001678][ T2323] pim6reg1: entered promiscuous mode
[  654.003542][ T2323] pim6reg1: entered allmulticast mode
[  654.010460][ T2323] tmpfs: Unknown parameter 'usrquota/tun'
[  654.016221][ T2325] syzkaller1: entered promiscuous mode
[  654.018403][ T2325] syzkaller1: entered allmulticast mode
[  654.156459][ T6201] usb 10-1: USB disconnect, device number 2
[  654.254939][ T2219] loop2: detected capacity change from 0 to 7
[  654.257339][ T2356] FAULT_INJECTION: forcing a failure.
[  654.257339][ T2356] name failslab, interval 1, probability 0, space 0, times 0
[  654.261273][ T2356] CPU: 0 UID: 0 PID: 2356 Comm: syz.8.7393 Not tainted syzkaller #0 PREEMPT(full) 
[  654.261290][ T2356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  654.261297][ T2356] Call Trace:
[  654.261302][ T2356]  <TASK>
[  654.261307][ T2356]  dump_stack_lvl+0x16c/0x1f0
[  654.261324][ T2356]  should_fail_ex+0x512/0x640
[  654.261339][ T2356]  should_failslab+0xc2/0x120
[  654.261354][ T2356]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  654.261366][ T2356]  ? ip_vs_ct_in_get+0x9de/0xd80
[  654.261384][ T2356]  ? ip_vs_conn_new+0xad/0x2030
[  654.261403][ T2356]  ip_vs_conn_new+0xad/0x2030
[  654.261422][ T2356]  ? rcu_is_watching+0x12/0xc0
[  654.261437][ T2356]  ? kasan_save_stack+0x33/0x60
[  654.261448][ T2356]  ? ip_vs_check_template+0x140/0x7f0
[  654.261468][ T2356]  ip_vs_sched_persist+0x9c1/0x1320
[  654.261484][ T2356]  ? __pfx_ip_vs_sched_persist+0x10/0x10
[  654.261498][ T2356]  ? __pfx_ip_vs_conn_in_get_proto+0x10/0x10
[  654.261518][ T2356]  ? __ip_vs_conn_in_get+0x69c/0xbf0
[  654.261543][ T2356]  ? ip_vs_schedule+0xb9b/0xf10
[  654.261554][ T2356]  ip_vs_schedule+0xb9b/0xf10
[  654.261567][ T2356]  ? find_held_lock+0x2b/0x80
[  654.261581][ T2356]  ? __pfx_ip_vs_schedule+0x10/0x10
[  654.261592][ T2356]  ? ip_vs_conn_out_get+0x67f/0xb20
[  654.261611][ T2356]  ? ip_vs_conn_in_get+0x85/0x1b0
[  654.261627][ T2356]  ? ip_vs_service_find+0x19d/0x1020
[  654.261642][ T2356]  ? list_set_head+0x25e/0x6a0
[  654.261659][ T2356]  ? __pfx_ip_vs_conn_fill_param_proto+0x10/0x10
[  654.261676][ T2356]  ? __pfx_ip_vs_conn_out_get+0x10/0x10
[  654.261695][ T2356]  udp_conn_schedule+0x3e8/0x750
[  654.261714][ T2356]  ? __pfx_udp_conn_schedule+0x10/0x10
[  654.261729][ T2356]  ? __pfx_ip_vs_conn_in_get_proto+0x10/0x10
[  654.261746][ T2356]  ? __pfx_ip_vs_conn_out_get_proto+0x10/0x10
[  654.261770][ T2356]  ip_vs_in_hook+0xe04/0x27a0
[  654.261784][ T2356]  ? __pfx_ip_vs_in_hook+0x10/0x10
[  654.261795][ T2356]  ? __pfx_ip_vs_out_hook+0x10/0x10
[  654.261811][ T2356]  ? __lock_acquire+0x62e/0x1ce0
[  654.261836][ T2356]  ? __pfx_ip_vs_in_hook+0x10/0x10
[  654.261847][ T2356]  nf_hook_slow+0xbe/0x200
[  654.261862][ T2356]  nf_hook+0x370/0x680
[  654.261875][ T2356]  ? __pfx_dst_output+0x10/0x10
[  654.261889][ T2356]  ? __pfx_nf_hook+0x10/0x10
[  654.261903][ T2356]  ? __pfx_dst_output+0x10/0x10
[  654.261917][ T2356]  ? do_csum+0x26f/0x2d0
[  654.261935][ T2356]  __ip_local_out+0x33a/0x7c0
[  654.261948][ T2356]  ? __pfx_dst_output+0x10/0x10
[  654.261963][ T2356]  ip_send_skb+0x4e/0x590
[  654.261979][ T2356]  udp_send_skb+0x71d/0x15b0
[  654.261998][ T2356]  udp_sendmsg+0x1813/0x2870
[  654.262013][ T2356]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  654.262028][ T2356]  ? __pfx_udp_sendmsg+0x10/0x10
[  654.262041][ T2356]  ? tomoyo_supervisor+0xb0c/0x13b0
[  654.262053][ T2356]  ? vsnprintf+0x318/0x1160
[  654.262067][ T2356]  ? __pfx_vsnprintf+0x10/0x10
[  654.262084][ T2356]  ? __lock_acquire+0xb97/0x1ce0
[  654.262100][ T2356]  ? look_up_lock_class+0x6b/0x150
[  654.262119][ T2356]  udpv6_sendmsg+0x128f/0x2d20
[  654.262140][ T2356]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  654.262157][ T2356]  ? __lock_acquire+0xb97/0x1ce0
[  654.262180][ T2356]  ? reacquire_held_locks+0xcd/0x1f0
[  654.262203][ T2356]  ? rcu_is_watching+0x12/0xc0
[  654.262216][ T2356]  ? __local_bh_enable_ip+0xa4/0x120
[  654.262232][ T2356]  ? lockdep_hardirqs_on+0x7c/0x110
[  654.262243][ T2356]  ? inet_autobind+0x145/0x1a0
[  654.262257][ T2356]  ? __local_bh_enable_ip+0xa4/0x120
[  654.262271][ T2356]  ? inet_autobind+0x14a/0x1a0
[  654.262285][ T2356]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  654.262301][ T2356]  ? inet6_sendmsg+0x105/0x140
[  654.262314][ T2356]  inet6_sendmsg+0x105/0x140
[  654.262330][ T2356]  ____sys_sendmsg+0x705/0xc70
[  654.262336][ T2219] Dev loop2: unable to read RDB block 7
[  654.262348][ T2356]  ? __pfx_____sys_sendmsg+0x10/0x10
[  654.262369][ T2356]  ___sys_sendmsg+0x134/0x1d0
[  654.262383][ T2356]  ? __pfx____sys_sendmsg+0x10/0x10
[  654.262412][ T2356]  __sys_sendmsg+0x16d/0x220
[  654.262424][ T2356]  ? __pfx___sys_sendmsg+0x10/0x10
[  654.262445][ T2356]  do_syscall_64+0xcd/0x4c0
[  654.262459][ T2356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  654.262470][ T2356] RIP: 0033:0x7f09d798ebe9
[  654.262480][ T2356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  654.262491][ T2356] RSP: 002b:00007f09d8817038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  654.262502][ T2356] RAX: ffffffffffffffda RBX: 00007f09d7bb5fa0 RCX: 00007f09d798ebe9
[  654.262509][ T2356] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  654.262515][ T2356] RBP: 00007f09d8817090 R08: 0000000000000000 R09: 0000000000000000
[  654.262522][ T2356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  654.262532][ T2356] R13: 00007f09d7bb6038 R14: 00007f09d7bb5fa0 R15: 00007ffe9a767848
[  654.262546][ T2356]  </TASK>
[  654.262552][ T2356] IPVS: ip_vs_conn_new(): no memory
[  654.266586][ T2219]  loop2: AHDI p1 p2 p3
[  654.416508][ T2219] loop2: partition table partially beyond EOD, truncated
[  654.419722][ T2219] loop2: p3 start 335544320 is beyond EOD, truncated
[  654.465712][ T5983] Bluetooth: hci3: command tx timeout
[  654.566459][ T2368] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  654.985668][ T2376] kvm: user requested TSC rate below hardware speed
[  654.988944][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  655.004023][T19081] IPVS: starting estimator thread 0...
[  655.033443][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  655.115686][ T2382] IPVS: using max 42 ests per chain, 100800 per kthread
[  655.265500][T19081] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  655.415484][T19081] usb 10-1: Using ep0 maxpacket: 16
[  655.419477][T19081] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  655.427466][T19081] usb 10-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  655.431272][T19081] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  655.434642][T19081] usb 10-1: Product: syz
[  655.436644][T19081] usb 10-1: Manufacturer: syz
[  655.438644][T19081] usb 10-1: SerialNumber: syz
[  655.443849][T19081] usb 10-1: config 0 descriptor??
[  655.449692][T19081] em28xx 10-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  655.453573][T19081] em28xx 10-1:0.0: DVB interface 0 found: bulk
[  655.717484][T19081] em28xx 10-1:0.0: unknown em28xx chip ID (0)
[  655.781452][T19081] em28xx 10-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  655.785733][T19081] em28xx 10-1:0.0: board has no eeprom
[  655.845698][T19081] em28xx 10-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  655.849109][T19081] em28xx 10-1:0.0: dvb set to bulk mode.
[  655.856127][T19081] usb 10-1: USB disconnect, device number 3
[  655.858758][T19081] em28xx 10-1:0.0: Disconnecting em28xx
[  655.862854][   T34] em28xx 10-1:0.0: Binding DVB extension
[  655.888785][   T34] em28xx 10-1:0.0: Registering input extension
[  655.891836][T19081] em28xx 10-1:0.0: Closing input extension
[  655.914300][T19081] em28xx 10-1:0.0: Freeing device
[  655.959645][ T2422] netlink: 'syz.4.7403': attribute type 2 has an invalid length.
[  656.097126][ T2432] comedi: No check for data length of config insn id 32768 is implemented
[  656.100503][ T2432] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  656.104323][ T2432] comedi: Assuming n=15 is correct
[  656.315135][ T2452] syzkaller1: entered promiscuous mode
[  656.317100][ T2452] syzkaller1: entered allmulticast mode
[  656.382566][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  656.402400][ T2466] ÿÿÿÿ: renamed from bridge_slave_0 (while UP)
[  656.406092][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  656.408983][ T2469] FAULT_INJECTION: forcing a failure.
[  656.408983][ T2469] name failslab, interval 1, probability 0, space 0, times 0
[  656.414261][ T2469] CPU: 0 UID: 0 PID: 2469 Comm: syz.4.7420 Not tainted syzkaller #0 PREEMPT(full) 
[  656.414276][ T2469] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  656.414282][ T2469] Call Trace:
[  656.414287][ T2469]  <TASK>
[  656.414292][ T2469]  dump_stack_lvl+0x16c/0x1f0
[  656.414308][ T2469]  should_fail_ex+0x512/0x640
[  656.414324][ T2469]  should_failslab+0xc2/0x120
[  656.414352][ T2469]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  656.414365][ T2469]  ? dst_alloc+0x99/0x1a0
[  656.414377][ T2469]  dst_alloc+0x99/0x1a0
[  656.414389][ T2469]  rt_dst_alloc+0x35/0x3a0
[  656.414404][ T2469]  ip_route_output_key_hash_rcu+0x880/0x28c0
[  656.414426][ T2469]  ip_route_output_key_hash+0x137/0x2e0
[  656.414444][ T2469]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  656.414461][ T2469]  ? do_syscall_64+0xcd/0x4c0
[  656.414473][ T2469]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.414489][ T2469]  ? __lock_acquire+0xb97/0x1ce0
[  656.414509][ T2469]  ip_route_output_flow+0x27/0x150
[  656.414527][ T2469]  do_output_route4+0x10e/0x1d0
[  656.414545][ T2469]  ? __pfx_do_output_route4+0x10/0x10
[  656.414564][ T2469]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  656.414584][ T2469]  __ip_vs_get_out_rt+0x1148/0x1f20
[  656.414603][ T2469]  ? ip_vs_conn_in_get+0x85/0x1b0
[  656.414620][ T2469]  ? ip_vs_service_find+0x19d/0x1020
[  656.414635][ T2469]  ? list_set_head+0x25e/0x6a0
[  656.414652][ T2469]  ? __pfx___ip_vs_get_out_rt+0x10/0x10
[  656.414669][ T2469]  ? __pfx_ip_vs_conn_fill_param_proto+0x10/0x10
[  656.414685][ T2469]  ? __pfx_ip_vs_conn_out_get+0x10/0x10
[  656.414706][ T2469]  ip_vs_nat_xmit+0x204/0xce0
[  656.414719][ T2469]  ? __pfx_ip_vs_nat_xmit+0x10/0x10
[  656.414730][ T2469]  ? ip_vs_in_hook+0x16f7/0x27a0
[  656.414742][ T2469]  ? __local_bh_enable_ip+0xa4/0x120
[  656.414757][ T2469]  ? __pfx_ip_vs_nat_xmit+0x10/0x10
[  656.414767][ T2469]  ip_vs_in_hook+0xa51/0x27a0
[  656.414781][ T2469]  ? __pfx_ip_vs_in_hook+0x10/0x10
[  656.414792][ T2469]  ? __pfx_ip_vs_out_hook+0x10/0x10
[  656.414807][ T2469]  ? __lock_acquire+0x62e/0x1ce0
[  656.414835][ T2469]  ? __pfx_ip_vs_in_hook+0x10/0x10
[  656.414846][ T2469]  nf_hook_slow+0xbe/0x200
[  656.414860][ T2469]  nf_hook+0x370/0x680
[  656.414873][ T2469]  ? __pfx_dst_output+0x10/0x10
[  656.414886][ T2469]  ? __pfx_nf_hook+0x10/0x10
[  656.414901][ T2469]  ? __pfx_dst_output+0x10/0x10
[  656.414914][ T2469]  ? do_csum+0x26f/0x2d0
[  656.414931][ T2469]  __ip_local_out+0x33a/0x7c0
[  656.414945][ T2469]  ? __pfx_dst_output+0x10/0x10
[  656.414959][ T2469]  ip_send_skb+0x4e/0x590
[  656.414975][ T2469]  udp_send_skb+0x71d/0x15b0
[  656.414992][ T2469]  udp_sendmsg+0x1813/0x2870
[  656.415008][ T2469]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  656.415023][ T2469]  ? __pfx_udp_sendmsg+0x10/0x10
[  656.415036][ T2469]  ? tomoyo_supervisor+0xb0c/0x13b0
[  656.415048][ T2469]  ? vsnprintf+0x318/0x1160
[  656.415062][ T2469]  ? __pfx_vsnprintf+0x10/0x10
[  656.415079][ T2469]  ? __lock_acquire+0xb97/0x1ce0
[  656.415095][ T2469]  ? look_up_lock_class+0x6b/0x150
[  656.415114][ T2469]  udpv6_sendmsg+0x128f/0x2d20
[  656.415134][ T2469]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  656.415151][ T2469]  ? __lock_acquire+0xb97/0x1ce0
[  656.415174][ T2469]  ? reacquire_held_locks+0xcd/0x1f0
[  656.415196][ T2469]  ? rcu_is_watching+0x12/0xc0
[  656.415210][ T2469]  ? __local_bh_enable_ip+0xa4/0x120
[  656.415224][ T2469]  ? lockdep_hardirqs_on+0x7c/0x110
[  656.415235][ T2469]  ? inet_autobind+0x145/0x1a0
[  656.415250][ T2469]  ? __local_bh_enable_ip+0xa4/0x120
[  656.415264][ T2469]  ? inet_autobind+0x14a/0x1a0
[  656.415278][ T2469]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  656.415293][ T2469]  ? inet6_sendmsg+0x105/0x140
[  656.415307][ T2469]  inet6_sendmsg+0x105/0x140
[  656.415322][ T2469]  ____sys_sendmsg+0x705/0xc70
[  656.415340][ T2469]  ? __pfx_____sys_sendmsg+0x10/0x10
[  656.415362][ T2469]  ___sys_sendmsg+0x134/0x1d0
[  656.415375][ T2469]  ? __pfx____sys_sendmsg+0x10/0x10
[  656.415404][ T2469]  __sys_sendmsg+0x16d/0x220
[  656.415416][ T2469]  ? __pfx___sys_sendmsg+0x10/0x10
[  656.415437][ T2469]  do_syscall_64+0xcd/0x4c0
[  656.415450][ T2469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.415462][ T2469] RIP: 0033:0x7f38b5f8ebe9
[  656.415472][ T2469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  656.415483][ T2469] RSP: 002b:00007f38b6ddb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  656.415494][ T2469] RAX: ffffffffffffffda RBX: 00007f38b61b5fa0 RCX: 00007f38b5f8ebe9
[  656.415502][ T2469] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  656.415508][ T2469] RBP: 00007f38b6ddb090 R08: 0000000000000000 R09: 0000000000000000
[  656.415515][ T2469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  656.415522][ T2469] R13: 00007f38b61b6038 R14: 00007f38b61b5fa0 R15: 00007ffd34d4a9e8
[  656.415535][ T2469]  </TASK>
[  656.549396][ T5983] Bluetooth: hci3: command tx timeout
[  656.553144][    C0] vkms_vblank_simulate: vblank timer overrun
[  656.740908][ T2550] syzkaller1: entered promiscuous mode
[  656.742697][ T2550] syzkaller1: entered allmulticast mode
[  656.891328][ T2568] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[  656.922225][ T2572] netlink: 28 bytes leftover after parsing attributes in process `syz.8.7435'.
[  656.964841][ T2576] comedi: No check for data length of config insn id 32768 is implemented
[  656.968961][ T2576] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  656.972781][ T2576] comedi: Assuming n=15 is correct
[  657.025540][ T2585] syzkaller1: entered promiscuous mode
[  657.027859][ T2585] syzkaller1: entered allmulticast mode
[  657.161279][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  657.230198][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  657.235482][   T40] audit: type=1400 audit(1756423650.398:289835): avc:  denied  { mount } for  pid=2617 comm="syz.4.7448" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  657.235700][ T2618] overlay: ./file0 is not a directory
[  657.296266][ T2604] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  657.297051][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  657.302641][ T2613] netlink: 32 bytes leftover after parsing attributes in process `syz.9.7445'.
[  657.416436][ T5331] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  657.431403][ T5331] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  657.450400][ T5331] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  657.452248][ T2652] syzkaller1: entered promiscuous mode
[  657.455399][ T2652] syzkaller1: entered allmulticast mode
[  657.457824][ T5331] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  657.461389][ T5331] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  657.477748][T30774] udevd[30774]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  657.497261][ T2661] FAULT_INJECTION: forcing a failure.
[  657.497261][ T2661] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  657.503014][ T2661] CPU: 2 UID: 0 PID: 2661 Comm: syz.9.7456 Not tainted syzkaller #0 PREEMPT(full) 
[  657.503038][ T2661] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  657.503051][ T2661] Call Trace:
[  657.503058][ T2661]  <TASK>
[  657.503065][ T2661]  dump_stack_lvl+0x16c/0x1f0
[  657.503091][ T2661]  should_fail_ex+0x512/0x640
[  657.503116][ T2661]  should_fail_alloc_page+0xe7/0x130
[  657.503139][ T2661]  prepare_alloc_pages+0x3c2/0x610
[  657.503169][ T2661]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  657.503189][ T2661]  ? __call_rcu_common.constprop.0+0x3f0/0xa10
[  657.503211][ T2661]  ? lockdep_hardirqs_on+0x7c/0x110
[  657.503232][ T2661]  ? css_rstat_updated+0x1c2/0x510
[  657.503257][ T2661]  ? __pfx_css_rstat_updated+0x10/0x10
[  657.503281][ T2661]  ? rcu_is_watching+0x12/0xc0
[  657.503304][ T2661]  ? trace_sched_exit_tp+0xd1/0x120
[  657.503327][ T2661]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  657.503346][ T2661]  ? rcu_is_watching+0x12/0xc0
[  657.503368][ T2661]  ? mod_memcg_lruvec_state+0x389/0x5f0
[  657.503395][ T2661]  ? __mod_zone_page_state+0xcc/0x1a0
[  657.503424][ T2661]  ? lru_gen_update_size+0x543/0xe10
[  657.503455][ T2661]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  657.503477][ T2661]  ? policy_nodemask+0xea/0x4e0
[  657.503500][ T2661]  alloc_pages_mpol+0x1fb/0x550
[  657.503522][ T2661]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  657.503541][ T2661]  ? _raw_spin_unlock_irq+0x2e/0x50
[  657.503557][ T2661]  ? find_held_lock+0x2b/0x80
[  657.503584][ T2661]  folio_alloc_mpol_noprof+0x36/0x2f0
[  657.503610][ T2661]  alloc_migration_target_by_mpol+0x246/0x500
[  657.503636][ T2661]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  657.503662][ T2661]  ? __pfx___might_resched+0x10/0x10
[  657.503686][ T2661]  ? __pfx_queue_folios_pte_range+0x10/0x10
[  657.503713][ T2661]  migrate_pages_batch+0x39f/0x3bd0
[  657.503742][ T2661]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  657.503777][ T2661]  ? __pfx_migrate_pages_batch+0x10/0x10
[  657.503814][ T2661]  ? __pfx_walk_pgd_range+0x10/0x10
[  657.503837][ T2661]  migrate_pages_sync+0x12d/0x8a0
[  657.503861][ T2661]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  657.503891][ T2661]  ? queue_pages_test_walk+0x279/0x410
[  657.503914][ T2661]  ? __pfx_migrate_pages_sync+0x10/0x10
[  657.503938][ T2661]  ? walk_page_test+0x9b/0x180
[  657.503965][ T2661]  migrate_pages+0x1b67/0x23b0
[  657.503991][ T2661]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  657.504024][ T2661]  ? __pfx_migrate_pages+0x10/0x10
[  657.504048][ T2661]  ? mas_next_slot+0x12d3/0x21b0
[  657.504070][ T2661]  ? find_held_lock+0x2b/0x80
[  657.504098][ T2661]  ? up_write+0x1b2/0x520
[  657.504119][ T2661]  do_mbind+0x6f0/0xf30
[  657.504151][ T2661]  ? __pfx_do_mbind+0x10/0x10
[  657.504173][ T2661]  ? find_held_lock+0x2b/0x80
[  657.504194][ T2661]  ? ksys_write+0x190/0x250
[  657.504224][ T2661]  ? __pfx_get_nodes+0x10/0x10
[  657.504244][ T2661]  ? __fget_files+0x20e/0x3c0
[  657.504269][ T2661]  kernel_mbind+0x1e3/0x1f0
[  657.504316][ T2661]  ? __pfx_kernel_mbind+0x10/0x10
[  657.504347][ T2661]  do_syscall_64+0xcd/0x4c0
[  657.504370][ T2661]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  657.504389][ T2661] RIP: 0033:0x7faa41b8ebe9
[  657.504405][ T2661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  657.504423][ T2661] RSP: 002b:00007faa42962038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  657.504441][ T2661] RAX: ffffffffffffffda RBX: 00007faa41db5fa0 RCX: 00007faa41b8ebe9
[  657.504454][ T2661] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  657.504464][ T2661] RBP: 00007faa42962090 R08: 0000000000000000 R09: 0000000000000002
[  657.504476][ T2661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  657.504486][ T2661] R13: 00007faa41db6038 R14: 00007faa41db5fa0 R15: 00007ffe18a4ede8
[  657.504509][ T2661]  </TASK>
[  657.510922][ T2662] overlayfs: overlapping lowerdir path
[  657.533416][ T2640] lo speed is unknown, defaulting to 1000
[  657.565122][   T40] audit: type=1400 audit(1756423650.738:289836): avc:  denied  { execute_no_trans } for  pid=2660 comm="syz.4.7457" path=2F6D656D66643AA39F6EB4645204693502ACCEE1889D5B4038D7CE1F2039497F151D933DB5E75C274CE6D28EBC294A7454447181CF81BAE531F520C8103EC95C85174CBFCF91DF4DF3025E542A202864656C6574656429 dev="hugetlbfs" ino=133172 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  657.584848][   T56] Bluetooth: hci1: Frame reassembly failed (-84)
[  657.610695][   T40] audit: type=1400 audit(1756423650.788:289837): avc:  denied  { create } for  pid=2682 comm="syz.9.7460" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  657.651511][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  657.657969][   T40] audit: type=1326 audit(1756423650.808:289838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2682 comm="syz.9.7460" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faa41b8ebe9 code=0x0
[  657.681523][   T40] audit: type=1400 audit(1756423650.858:289839): avc:  denied  { mounton } for  pid=2682 comm="syz.9.7460" path="/proc/81/task/82/net/dev_snmp6" dev="proc" ino=4026533927 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=dir permissive=1
[  657.691674][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  657.692859][ T2710] netlink: 'syz.5.7462': attribute type 10 has an invalid length.
[  657.698193][ T2711] netlink: 'syz.5.7462': attribute type 10 has an invalid length.
[  657.703938][ T2710] bridge0: port 2(bridge_slave_1) entered disabled state
[  657.706410][ T2710] bridge0: port 1(bridge_slave_0) entered disabled state
[  657.711663][ T2710] bridge0: port 2(bridge_slave_1) entered blocking state
[  657.713998][ T2710] bridge0: port 2(bridge_slave_1) entered forwarding state
[  657.716467][ T2710] bridge0: port 1(bridge_slave_0) entered blocking state
[  657.718677][ T2710] bridge0: port 1(bridge_slave_0) entered forwarding state
[  657.723675][ T2710] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  657.726523][ T2711] bridge0: port 2(bridge_slave_1) entered disabled state
[  657.728948][ T2711] bridge0: port 1(bridge_slave_0) entered disabled state
[  657.807233][ T2640] chnl_net:caif_netlink_parms(): no params data found
[  657.918655][ T2640] bridge0: port 1(bridge_slave_0) entered blocking state
[  657.921089][ T2640] bridge0: port 1(bridge_slave_0) entered disabled state
[  657.924140][ T2640] bridge_slave_0: entered allmulticast mode
[  657.930017][ T2640] bridge_slave_0: entered promiscuous mode
[  657.999170][ T2640] bridge0: port 2(bridge_slave_1) entered blocking state
[  658.001465][ T2640] bridge0: port 2(bridge_slave_1) entered disabled state
[  658.003868][ T2640] bridge_slave_1: entered allmulticast mode
[  658.007149][ T2640] bridge_slave_1: entered promiscuous mode
[  658.076125][ T2640] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  658.083068][ T2640] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  658.153567][ T2640] team0: Port device team_slave_0 added
[  658.157760][ T2640] team0: Port device team_slave_1 added
[  658.199485][ T2640] batman_adv: batadv0: Adding interface: batadv_slave_0
[  658.201709][ T2640] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  658.210790][ T2640] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  658.215012][ T2640] batman_adv: batadv0: Adding interface: batadv_slave_1
[  658.218083][ T2640] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  658.225821][ T2640] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  658.278846][ T2640] hsr_slave_0: entered promiscuous mode
[  658.281297][ T2640] hsr_slave_1: entered promiscuous mode
[  658.283319][ T2640] debugfs: 'hsr0' already exists in 'hsr'
[  658.285043][ T2640] Cannot create hsr debugfs directory
[  658.308992][ T3592] comedi: No check for data length of config insn id 32768 is implemented
[  658.311701][ T3592] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  658.316660][ T3592] comedi: Assuming n=15 is correct
[  658.422423][ T3788] syzkaller1: entered promiscuous mode
[  658.424726][ T3788] syzkaller1: entered allmulticast mode
[  658.451794][ T2640] netdevsim netdevsim8 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.521324][ T2640] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.589342][ T3812] IPVS: sed: FWM 3 0x00000003 - no destination available
[  658.621986][ T2640] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.625398][ T5983] Bluetooth: hci3: command tx timeout
[  658.671983][ T2640] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  658.830705][ T2640] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  658.837243][ T2640] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  658.843173][ T2640] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  658.849222][ T2640] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  658.894809][ T2640] 8021q: adding VLAN 0 to HW filter on device bond0
[  658.904499][ T2640] 8021q: adding VLAN 0 to HW filter on device team0
[  658.909969][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  658.912770][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  658.918778][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  658.921158][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  659.026458][ T2640] 8021q: adding VLAN 0 to HW filter on device batadv0
[  659.168716][ T2640] veth0_vlan: entered promiscuous mode
[  659.173524][ T2640] veth1_vlan: entered promiscuous mode
[  659.187976][ T2640] veth0_macvtap: entered promiscuous mode
[  659.192360][ T2640] veth1_macvtap: entered promiscuous mode
[  659.202163][ T2640] batman_adv: batadv0: Interface activated: batadv_slave_0
[  659.208966][ T2640] batman_adv: batadv0: Interface activated: batadv_slave_1
[  659.216255][T24302] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  659.219467][T24302] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  659.225853][T24302] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  659.228748][T24302] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  659.276673][T24302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  659.279619][T24302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  659.301332][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  659.303779][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  659.369159][ T3884] syzkaller1: entered promiscuous mode
[  659.371212][ T3884] syzkaller1: entered allmulticast mode
[  659.492955][ T3901] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  659.499924][ T3901] cramfs: wrong magic
[  659.541955][ T3904] FAULT_INJECTION: forcing a failure.
[  659.541955][ T3904] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  659.546318][ T3904] CPU: 0 UID: 0 PID: 3904 Comm: syz.9.7484 Not tainted syzkaller #0 PREEMPT(full) 
[  659.546334][ T3904] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  659.546340][ T3904] Call Trace:
[  659.546344][ T3904]  <TASK>
[  659.546349][ T3904]  dump_stack_lvl+0x16c/0x1f0
[  659.546365][ T3904]  should_fail_ex+0x512/0x640
[  659.546380][ T3904]  should_fail_alloc_page+0xe7/0x130
[  659.546395][ T3904]  prepare_alloc_pages+0x3c2/0x610
[  659.546413][ T3904]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  659.546425][ T3904]  ? __pfx_page_vma_mapped_walk+0x10/0x10
[  659.546440][ T3904]  ? folio_remove_rmap_ptes+0x138/0x970
[  659.546460][ T3904]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  659.546480][ T3904]  ? __up_read+0x1f8/0x750
[  659.546492][ T3904]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  659.546506][ T3904]  ? policy_nodemask+0xea/0x4e0
[  659.546520][ T3904]  alloc_pages_mpol+0x1fb/0x550
[  659.546539][ T3904]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  659.546551][ T3904]  ? rmap_walk_anon+0x503/0x710
[  659.546570][ T3904]  folio_alloc_mpol_noprof+0x36/0x2f0
[  659.546585][ T3904]  alloc_migration_target_by_mpol+0x246/0x500
[  659.546602][ T3904]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  659.546618][ T3904]  ? __pfx_invalid_migration_vma+0x10/0x10
[  659.546633][ T3904]  ? __pfx___might_resched+0x10/0x10
[  659.546647][ T3904]  ? folio_get_anon_vma+0xdd/0x760
[  659.546659][ T3904]  migrate_pages_batch+0x39f/0x3bd0
[  659.546675][ T3904]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  659.546696][ T3904]  ? __pfx_migrate_pages_batch+0x10/0x10
[  659.546714][ T3904]  ? __pfx_walk_pgd_range+0x10/0x10
[  659.546727][ T3904]  migrate_pages_sync+0x12d/0x8a0
[  659.546742][ T3904]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  659.546761][ T3904]  ? queue_pages_test_walk+0x279/0x410
[  659.546774][ T3904]  ? __pfx_migrate_pages_sync+0x10/0x10
[  659.546790][ T3904]  ? walk_page_test+0x9b/0x180
[  659.546806][ T3904]  migrate_pages+0x1b67/0x23b0
[  659.546822][ T3904]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  659.546841][ T3904]  ? __pfx_migrate_pages+0x10/0x10
[  659.546856][ T3904]  ? mas_next_slot+0x12d3/0x21b0
[  659.546870][ T3904]  ? find_held_lock+0x2b/0x80
[  659.546887][ T3904]  ? up_write+0x1b2/0x520
[  659.546900][ T3904]  do_mbind+0x6f0/0xf30
[  659.546919][ T3904]  ? __pfx_do_mbind+0x10/0x10
[  659.546933][ T3904]  ? find_held_lock+0x2b/0x80
[  659.546946][ T3904]  ? ksys_write+0x190/0x250
[  659.546964][ T3904]  ? __pfx_get_nodes+0x10/0x10
[  659.546976][ T3904]  ? __fget_files+0x20e/0x3c0
[  659.546992][ T3904]  kernel_mbind+0x1e3/0x1f0
[  659.547008][ T3904]  ? __pfx_kernel_mbind+0x10/0x10
[  659.547027][ T3904]  do_syscall_64+0xcd/0x4c0
[  659.547041][ T3904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  659.547053][ T3904] RIP: 0033:0x7faa41b8ebe9
[  659.547062][ T3904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  659.547073][ T3904] RSP: 002b:00007faa42962038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  659.547085][ T3904] RAX: ffffffffffffffda RBX: 00007faa41db5fa0 RCX: 00007faa41b8ebe9
[  659.547092][ T3904] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  659.547099][ T3904] RBP: 00007faa42962090 R08: 0000000000000000 R09: 0000000000000002
[  659.547106][ T3904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  659.547112][ T3904] R13: 00007faa41db6038 R14: 00007faa41db5fa0 R15: 00007ffe18a4ede8
[  659.547126][ T3904]  </TASK>
[  659.586202][ T5983] Bluetooth: hci1: command 0x1003 tx timeout
[  659.586231][ T5978] Bluetooth: hci4: command tx timeout
[  659.586347][    C0] vkms_vblank_simulate: vblank timer overrun
[  659.587001][ T5331] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  659.698139][   T40] audit: type=1400 audit(1756423652.878:289840): avc:  denied  { append } for  pid=3917 comm="syz.5.7488" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  660.018388][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  660.026834][ T3977] FAULT_INJECTION: forcing a failure.
[  660.026834][ T3977] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  660.032506][ T3977] CPU: 2 UID: 0 PID: 3977 Comm: syz.5.7505 Not tainted syzkaller #0 PREEMPT(full) 
[  660.032531][ T3977] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  660.032541][ T3977] Call Trace:
[  660.032548][ T3977]  <TASK>
[  660.032554][ T3977]  dump_stack_lvl+0x16c/0x1f0
[  660.032577][ T3977]  should_fail_ex+0x512/0x640
[  660.032601][ T3977]  should_fail_alloc_page+0xe7/0x130
[  660.032622][ T3977]  prepare_alloc_pages+0x3c2/0x610
[  660.032646][ T3977]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  660.032664][ T3977]  ? __pfx_page_vma_mapped_walk+0x10/0x10
[  660.032687][ T3977]  ? folio_remove_rmap_ptes+0x138/0x970
[  660.032717][ T3977]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  660.032754][ T3977]  ? __up_read+0x1f8/0x750
[  660.032771][ T3977]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  660.032796][ T3977]  ? policy_nodemask+0xea/0x4e0
[  660.032817][ T3977]  alloc_pages_mpol+0x1fb/0x550
[  660.032843][ T3977]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  660.032861][ T3977]  ? rmap_walk_anon+0x503/0x710
[  660.032889][ T3977]  folio_alloc_mpol_noprof+0x36/0x2f0
[  660.032912][ T3977]  alloc_migration_target_by_mpol+0x246/0x500
[  660.032935][ T3977]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  660.032957][ T3977]  ? __pfx_invalid_migration_vma+0x10/0x10
[  660.032978][ T3977]  ? __pfx___might_resched+0x10/0x10
[  660.032997][ T3977]  ? folio_get_anon_vma+0xdd/0x760
[  660.033015][ T3977]  migrate_pages_batch+0x39f/0x3bd0
[  660.033039][ T3977]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  660.033072][ T3977]  ? __pfx_migrate_pages_batch+0x10/0x10
[  660.033097][ T3977]  ? __pfx_walk_pgd_range+0x10/0x10
[  660.033116][ T3977]  migrate_pages_sync+0x12d/0x8a0
[  660.033140][ T3977]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  660.033167][ T3977]  ? queue_pages_test_walk+0x279/0x410
[  660.033187][ T3977]  ? __pfx_migrate_pages_sync+0x10/0x10
[  660.033209][ T3977]  ? walk_page_test+0x9b/0x180
[  660.033236][ T3977]  migrate_pages+0x1b67/0x23b0
[  660.033260][ T3977]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  660.033309][ T3977]  ? __pfx_migrate_pages+0x10/0x10
[  660.033334][ T3977]  ? mas_next_slot+0x12d3/0x21b0
[  660.033355][ T3977]  ? find_held_lock+0x2b/0x80
[  660.033380][ T3977]  ? up_write+0x1b2/0x520
[  660.033399][ T3977]  do_mbind+0x6f0/0xf30
[  660.033429][ T3977]  ? __pfx_do_mbind+0x10/0x10
[  660.033448][ T3977]  ? find_held_lock+0x2b/0x80
[  660.033468][ T3977]  ? ksys_write+0x190/0x250
[  660.033496][ T3977]  ? __pfx_get_nodes+0x10/0x10
[  660.033514][ T3977]  ? __fget_files+0x20e/0x3c0
[  660.033555][ T3977]  kernel_mbind+0x1e3/0x1f0
[  660.033579][ T3977]  ? __pfx_kernel_mbind+0x10/0x10
[  660.033609][ T3977]  do_syscall_64+0xcd/0x4c0
[  660.033630][ T3977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  660.033648][ T3977] RIP: 0033:0x7f448878ebe9
[  660.033662][ T3977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  660.033679][ T3977] RSP: 002b:00007f44895eb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  660.033696][ T3977] RAX: ffffffffffffffda RBX: 00007f44889b5fa0 RCX: 00007f448878ebe9
[  660.033706][ T3977] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  660.033717][ T3977] RBP: 00007f44895eb090 R08: 0000000000000000 R09: 0000000000000002
[  660.033727][ T3977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  660.033736][ T3977] R13: 00007f44889b6038 R14: 00007f44889b5fa0 R15: 00007ffe328bfec8
[  660.033764][ T3977]  </TASK>
[  660.185944][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  660.569662][T22331] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  660.573664][T22331] bond0 (unregistering): Released all slaves
[  660.582130][T22331] bond1 (unregistering): Released all slaves
[  660.589815][T22331] bond2 (unregistering): Released all slaves
[  660.597414][T22331] bond3 (unregistering): Released all slaves
[  660.644157][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  660.700072][T22331] tipc: Disabling bearer <udp:s>
[  660.702529][T22331] tipc: Left network mode
[  660.785631][ T4011] comedi: No check for data length of config insn id 32768 is implemented
[  660.789101][ T4011] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  660.792892][ T4011] comedi: Assuming n=15 is correct
[  660.793414][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  660.797495][   T40] audit: type=1400 audit(1756423653.978:289841): avc:  denied  { write } for  pid=4010 comm="syz.4.7513" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  660.862307][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  660.875042][ T4029] comedi comedi0: comedi_config --init_data is deprecated
[  660.961577][T22331] hsr_slave_0: left promiscuous mode
[  660.973741][T22331] hsr_slave_1: left promiscuous mode
[  660.978327][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  661.059770][T22331] veth1_macvtap: left promiscuous mode
[  661.061875][T22331] veth0_macvtap: left promiscuous mode
[  661.064112][T22331] veth1_vlan: left promiscuous mode
[  661.067197][T22331] veth0_vlan: left promiscuous mode
[  661.119376][T22331] pimreg3 (unregistering): left allmulticast mode
[  661.360081][ T4063] FAULT_INJECTION: forcing a failure.
[  661.360081][ T4063] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  661.364264][ T4063] CPU: 1 UID: 0 PID: 4063 Comm: syz.9.7527 Not tainted syzkaller #0 PREEMPT(full) 
[  661.364280][ T4063] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  661.364287][ T4063] Call Trace:
[  661.364292][ T4063]  <TASK>
[  661.364297][ T4063]  dump_stack_lvl+0x16c/0x1f0
[  661.364315][ T4063]  should_fail_ex+0x512/0x640
[  661.364333][ T4063]  should_fail_alloc_page+0xe7/0x130
[  661.364348][ T4063]  prepare_alloc_pages+0x3c2/0x610
[  661.364366][ T4063]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  661.364385][ T4063]  ? do_raw_spin_lock+0x12c/0x2b0
[  661.364398][ T4063]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  661.364419][ T4063]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  661.364434][ T4063]  ? policy_nodemask+0xea/0x4e0
[  661.364448][ T4063]  alloc_pages_mpol+0x1fb/0x550
[  661.364468][ T4063]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  661.364482][ T4063]  ? _raw_spin_unlock+0x28/0x50
[  661.364492][ T4063]  ? __free_frozen_pages+0x8ec/0x10f0
[  661.364510][ T4063]  folio_alloc_mpol_noprof+0x36/0x2f0
[  661.364527][ T4063]  alloc_migration_target_by_mpol+0x246/0x500
[  661.364544][ T4063]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  661.364559][ T4063]  ? __pfx_invalid_migration_vma+0x10/0x10
[  661.364574][ T4063]  ? __pfx___might_resched+0x10/0x10
[  661.364589][ T4063]  ? folio_unlock+0x7d/0xd0
[  661.364607][ T4063]  migrate_pages_batch+0x39f/0x3bd0
[  661.364623][ T4063]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  661.364645][ T4063]  ? __pfx_migrate_pages_batch+0x10/0x10
[  661.364664][ T4063]  ? __pfx_walk_pgd_range+0x10/0x10
[  661.364677][ T4063]  migrate_pages_sync+0x12d/0x8a0
[  661.364693][ T4063]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  661.364711][ T4063]  ? queue_pages_test_walk+0x279/0x410
[  661.364725][ T4063]  ? __pfx_migrate_pages_sync+0x10/0x10
[  661.364741][ T4063]  ? walk_page_test+0x9b/0x180
[  661.364757][ T4063]  migrate_pages+0x1b67/0x23b0
[  661.364773][ T4063]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  661.364794][ T4063]  ? __pfx_migrate_pages+0x10/0x10
[  661.364808][ T4063]  ? mas_next_slot+0x12d3/0x21b0
[  661.364822][ T4063]  ? find_held_lock+0x2b/0x80
[  661.364840][ T4063]  ? up_write+0x1b2/0x520
[  661.364852][ T4063]  do_mbind+0x6f0/0xf30
[  661.364871][ T4063]  ? __pfx_do_mbind+0x10/0x10
[  661.364885][ T4063]  ? find_held_lock+0x2b/0x80
[  661.364899][ T4063]  ? ksys_write+0x190/0x250
[  661.364917][ T4063]  ? __pfx_get_nodes+0x10/0x10
[  661.364929][ T4063]  ? __fget_files+0x20e/0x3c0
[  661.364945][ T4063]  kernel_mbind+0x1e3/0x1f0
[  661.364961][ T4063]  ? __pfx_kernel_mbind+0x10/0x10
[  661.364981][ T4063]  do_syscall_64+0xcd/0x4c0
[  661.364995][ T4063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.365007][ T4063] RIP: 0033:0x7faa41b8ebe9
[  661.365018][ T4063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  661.365029][ T4063] RSP: 002b:00007faa42962038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  661.365040][ T4063] RAX: ffffffffffffffda RBX: 00007faa41db5fa0 RCX: 00007faa41b8ebe9
[  661.365048][ T4063] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  661.365055][ T4063] RBP: 00007faa42962090 R08: 0000000000000000 R09: 0000000000000002
[  661.365062][ T4063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  661.365069][ T4063] R13: 00007faa41db6038 R14: 00007faa41db5fa0 R15: 00007ffe18a4ede8
[  661.365083][ T4063]  </TASK>
[  661.564852][ T4070] FAULT_INJECTION: forcing a failure.
[  661.564852][ T4070] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  661.569638][ T4070] CPU: 2 UID: 0 PID: 4070 Comm: syz.8.7530 Not tainted syzkaller #0 PREEMPT(full) 
[  661.569655][ T4070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  661.569662][ T4070] Call Trace:
[  661.569667][ T4070]  <TASK>
[  661.569672][ T4070]  dump_stack_lvl+0x16c/0x1f0
[  661.569689][ T4070]  should_fail_ex+0x512/0x640
[  661.569705][ T4070]  _copy_from_user+0x2e/0xd0
[  661.569720][ T4070]  copy_msghdr_from_user+0x98/0x160
[  661.569733][ T4070]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  661.569752][ T4070]  ___sys_sendmsg+0xfe/0x1d0
[  661.569765][ T4070]  ? __pfx____sys_sendmsg+0x10/0x10
[  661.569794][ T4070]  __sys_sendmsg+0x16d/0x220
[  661.569806][ T4070]  ? __pfx___sys_sendmsg+0x10/0x10
[  661.569827][ T4070]  do_syscall_64+0xcd/0x4c0
[  661.569842][ T4070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.569855][ T4070] RIP: 0033:0x7f140758ebe9
[  661.569864][ T4070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  661.569876][ T4070] RSP: 002b:00007f14083bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  661.569887][ T4070] RAX: ffffffffffffffda RBX: 00007f14077b5fa0 RCX: 00007f140758ebe9
[  661.569894][ T4070] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  661.569901][ T4070] RBP: 00007f14083bf090 R08: 0000000000000000 R09: 0000000000000000
[  661.569908][ T4070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  661.569914][ T4070] R13: 00007f14077b6038 R14: 00007f14077b5fa0 R15: 00007fff37574618
[  661.569928][ T4070]  </TASK>
[  661.665645][ T5331] Bluetooth: hci4: command tx timeout
[  662.857985][ T4039] geneve2: entered promiscuous mode
[  662.859758][ T4039] geneve2: entered allmulticast mode
[  662.866408][ T6830] netdevsim netdevsim5 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  662.874549][ T6830] netdevsim netdevsim5 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  662.893000][ T6830] netdevsim netdevsim5 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  662.898109][ T4088] overlayfs: overlapping lowerdir path
[  662.904674][ T6830] netdevsim netdevsim5 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  662.908001][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  662.918738][ T4095] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  662.920455][ T4093] syzkaller1: entered promiscuous mode
[  662.923695][ T4093] syzkaller1: entered allmulticast mode
[  663.012773][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  663.027256][ T4121] comedi: No check for data length of config insn id 32768 is implemented
[  663.030030][ T4121] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  663.032939][ T4121] comedi: Assuming n=15 is correct
[  663.051947][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  663.064961][ T4133] syzkaller1: entered promiscuous mode
[  663.068662][ T4133] syzkaller1: entered allmulticast mode
[  663.240679][ T4152] program syz.8.7548 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  663.256100][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  663.260211][ T4154] netlink: 132 bytes leftover after parsing attributes in process `syz.4.7546'.
[  663.273131][ T4156] syzkaller1: entered promiscuous mode
[  663.275527][ T4156] syzkaller1: entered allmulticast mode
[  663.304285][ T4148] netlink: 32 bytes leftover after parsing attributes in process `syz.4.7546'.
[  663.373559][T22331] IPVS: stop unused estimator thread 0...
[  663.394511][ T4180] netlink: 212408 bytes leftover after parsing attributes in process `syz.8.7554'.
[  663.398864][   T40] audit: type=1400 audit(1756423656.578:289842): avc:  denied  { write } for  pid=4177 comm="syz.8.7554" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  663.432370][ T4189] FAULT_INJECTION: forcing a failure.
[  663.432370][ T4189] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  663.436617][ T4189] CPU: 2 UID: 0 PID: 4189 Comm: syz.8.7555 Not tainted syzkaller #0 PREEMPT(full) 
[  663.436634][ T4189] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  663.436641][ T4189] Call Trace:
[  663.436645][ T4189]  <TASK>
[  663.436649][ T4189]  dump_stack_lvl+0x16c/0x1f0
[  663.436665][ T4189]  should_fail_ex+0x512/0x640
[  663.436680][ T4189]  should_fail_alloc_page+0xe7/0x130
[  663.436695][ T4189]  prepare_alloc_pages+0x3c2/0x610
[  663.436717][ T4189]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  663.436735][ T4189]  ? do_raw_spin_lock+0x12c/0x2b0
[  663.436748][ T4189]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  663.436767][ T4189]  ? __page_table_check_zero+0x33c/0x5d0
[  663.436781][ T4189]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  663.436796][ T4189]  ? policy_nodemask+0xea/0x4e0
[  663.436810][ T4189]  alloc_pages_mpol+0x1fb/0x550
[  663.436823][ T4189]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  663.436837][ T4189]  ? _raw_spin_unlock+0x28/0x50
[  663.436847][ T4189]  ? __free_frozen_pages+0x8ec/0x10f0
[  663.436865][ T4189]  folio_alloc_mpol_noprof+0x36/0x2f0
[  663.436882][ T4189]  alloc_migration_target_by_mpol+0x246/0x500
[  663.436898][ T4189]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  663.436914][ T4189]  ? __pfx_invalid_migration_vma+0x10/0x10
[  663.436928][ T4189]  ? __pfx___might_resched+0x10/0x10
[  663.436943][ T4189]  ? folio_unlock+0x7d/0xd0
[  663.436961][ T4189]  migrate_pages_batch+0x39f/0x3bd0
[  663.436978][ T4189]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  663.436999][ T4189]  ? __pfx_migrate_pages_batch+0x10/0x10
[  663.437017][ T4189]  ? __pfx_walk_pgd_range+0x10/0x10
[  663.437030][ T4189]  migrate_pages_sync+0x12d/0x8a0
[  663.437045][ T4189]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  663.437064][ T4189]  ? queue_pages_test_walk+0x279/0x410
[  663.437078][ T4189]  ? __pfx_migrate_pages_sync+0x10/0x10
[  663.437093][ T4189]  ? walk_page_test+0x9b/0x180
[  663.437109][ T4189]  migrate_pages+0x1b67/0x23b0
[  663.437125][ T4189]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  663.437145][ T4189]  ? __pfx_migrate_pages+0x10/0x10
[  663.437160][ T4189]  ? mas_next_slot+0x12d3/0x21b0
[  663.437174][ T4189]  ? find_held_lock+0x2b/0x80
[  663.437191][ T4189]  ? up_write+0x1b2/0x520
[  663.437203][ T4189]  do_mbind+0x6f0/0xf30
[  663.437222][ T4189]  ? __pfx_do_mbind+0x10/0x10
[  663.437236][ T4189]  ? find_held_lock+0x2b/0x80
[  663.437250][ T4189]  ? ksys_write+0x190/0x250
[  663.437267][ T4189]  ? __pfx_get_nodes+0x10/0x10
[  663.437278][ T4189]  ? __fget_files+0x20e/0x3c0
[  663.437294][ T4189]  kernel_mbind+0x1e3/0x1f0
[  663.437310][ T4189]  ? __pfx_kernel_mbind+0x10/0x10
[  663.437326][ T4189]  ? fdget+0x187/0x210
[  663.437340][ T4189]  do_syscall_64+0xcd/0x4c0
[  663.437354][ T4189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  663.437366][ T4189] RIP: 0033:0x7f140758ebe9
[  663.437375][ T4189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  663.437386][ T4189] RSP: 002b:00007f14083bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  663.437397][ T4189] RAX: ffffffffffffffda RBX: 00007f14077b5fa0 RCX: 00007f140758ebe9
[  663.437405][ T4189] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  663.437412][ T4189] RBP: 00007f14083bf090 R08: 0000000000000000 R09: 0000000000000002
[  663.437418][ T4189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  663.437425][ T4189] R13: 00007f14077b6038 R14: 00007f14077b5fa0 R15: 00007fff37574618
[  663.437439][ T4189]  </TASK>
[  663.451535][ T4194] FAULT_INJECTION: forcing a failure.
[  663.451535][ T4194] name failslab, interval 1, probability 0, space 0, times 0
[  663.558129][ T4194] CPU: 1 UID: 0 PID: 4194 Comm: syz.5.7556 Not tainted syzkaller #0 PREEMPT(full) 
[  663.558146][ T4194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  663.558152][ T4194] Call Trace:
[  663.558156][ T4194]  <TASK>
[  663.558161][ T4194]  dump_stack_lvl+0x16c/0x1f0
[  663.558190][ T4194]  should_fail_ex+0x512/0x640
[  663.558203][ T4194]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  663.558218][ T4194]  should_failslab+0xc2/0x120
[  663.558231][ T4194]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  663.558243][ T4194]  ? __alloc_skb+0x2b2/0x380
[  663.558261][ T4194]  __alloc_skb+0x2b2/0x380
[  663.558276][ T4194]  ? __pfx___alloc_skb+0x10/0x10
[  663.558293][ T4194]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  663.558309][ T4194]  netlink_alloc_large_skb+0x69/0x130
[  663.558323][ T4194]  netlink_sendmsg+0x6a1/0xdd0
[  663.558339][ T4194]  ? __pfx_netlink_sendmsg+0x10/0x10
[  663.558357][ T4194]  ____sys_sendmsg+0xa98/0xc70
[  663.558373][ T4194]  ? copy_msghdr_from_user+0x10a/0x160
[  663.558386][ T4194]  ? __pfx_____sys_sendmsg+0x10/0x10
[  663.558407][ T4194]  ___sys_sendmsg+0x134/0x1d0
[  663.558420][ T4194]  ? __pfx____sys_sendmsg+0x10/0x10
[  663.558450][ T4194]  __sys_sendmsg+0x16d/0x220
[  663.558462][ T4194]  ? __pfx___sys_sendmsg+0x10/0x10
[  663.558483][ T4194]  do_syscall_64+0xcd/0x4c0
[  663.558497][ T4194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  663.558509][ T4194] RIP: 0033:0x7f448878ebe9
[  663.558518][ T4194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  663.558530][ T4194] RSP: 002b:00007f44895eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  663.558541][ T4194] RAX: ffffffffffffffda RBX: 00007f44889b5fa0 RCX: 00007f448878ebe9
[  663.558548][ T4194] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  663.558555][ T4194] RBP: 00007f44895eb090 R08: 0000000000000000 R09: 0000000000000000
[  663.558561][ T4194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  663.558568][ T4194] R13: 00007f44889b6038 R14: 00007f44889b5fa0 R15: 00007ffe328bfec8
[  663.558586][ T4194]  </TASK>
[  663.704314][ T4206] bond4 (unregistering): Released all slaves
[  663.745329][ T5331] Bluetooth: hci4: command tx timeout
[  663.780322][ T4208] binder: BINDER_SET_CONTEXT_MGR already set
[  663.782328][ T4208] binder: 4205:4208 ioctl 4018620d 2000000000c0 returned -16
[  663.786781][   T40] audit: type=1400 audit(1756423656.958:289843): avc:  denied  { bind } for  pid=4205 comm="syz.4.7560" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  663.787616][ T4208] binder: 4205:4208 unknown command 0
[  663.793047][   T40] audit: type=1400 audit(1756423656.968:289844): avc:  denied  { name_bind } for  pid=4205 comm="syz.4.7560" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  663.794599][ T4208] binder: 4205:4208 ioctl c0306201 200000000080 returned -22
[  663.797330][ T4281] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7560'.
[  663.802853][   T40] audit: type=1400 audit(1756423656.968:289845): avc:  denied  { node_bind } for  pid=4205 comm="syz.4.7560" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  663.829665][ T4292] syzkaller1: entered promiscuous mode
[  663.831579][ T4292] syzkaller1: entered allmulticast mode
[  664.007586][ T4328] comedi: No check for data length of config insn id 32768 is implemented
[  664.012434][ T4328] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  664.016857][ T4328] comedi: Assuming n=15 is correct
[  664.019408][ T4327] ubi31: attaching mtd0
[  664.023861][ T4327] ubi31: scanning is finished
[  664.168675][ T4327] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  664.171253][ T4327] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  664.174937][ T4327] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  664.178144][ T4327] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  664.180640][ T4327] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  664.182857][ T4327] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  664.186815][ T4327] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 1869435330
[  664.190196][ T4327] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  664.193658][ T4334] ubi31: background thread "ubi_bgt31d" started, PID 4334
[  664.528483][ T4344] PKCS7: Unknown OID: [4] 5.25.43204.122
[  664.530532][ T4344] PKCS7: Only support pkcs7_signedData type
[  664.610153][ T4351] syzkaller1: entered promiscuous mode
[  664.612385][ T4351] syzkaller1: entered allmulticast mode
[  664.801695][ T4363] netlink: 'syz.5.7583': attribute type 6 has an invalid length.
[  664.811153][ T4363] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.7583'.
[  664.815412][ T4361] FAULT_INJECTION: forcing a failure.
[  664.815412][ T4361] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  664.816874][ T4363] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  664.819611][ T4361] CPU: 0 UID: 0 PID: 4361 Comm: syz.4.7582 Not tainted syzkaller #0 PREEMPT(full) 
[  664.819626][ T4361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  664.819633][ T4361] Call Trace:
[  664.819638][ T4361]  <TASK>
[  664.819643][ T4361]  dump_stack_lvl+0x16c/0x1f0
[  664.819660][ T4361]  should_fail_ex+0x512/0x640
[  664.819675][ T4361]  should_fail_alloc_page+0xe7/0x130
[  664.819694][ T4361]  prepare_alloc_pages+0x3c2/0x610
[  664.819712][ T4361]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  664.819730][ T4361]  ? do_raw_spin_lock+0x12c/0x2b0
[  664.819743][ T4361]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  664.819764][ T4361]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  664.819779][ T4361]  ? policy_nodemask+0xea/0x4e0
[  664.819793][ T4361]  alloc_pages_mpol+0x1fb/0x550
[  664.819807][ T4361]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  664.819820][ T4361]  ? _raw_spin_unlock+0x28/0x50
[  664.819831][ T4361]  ? __free_frozen_pages+0x8ec/0x10f0
[  664.819849][ T4361]  folio_alloc_mpol_noprof+0x36/0x2f0
[  664.819865][ T4361]  alloc_migration_target_by_mpol+0x246/0x500
[  664.819882][ T4361]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  664.819897][ T4361]  ? __pfx_invalid_migration_vma+0x10/0x10
[  664.819912][ T4361]  ? __pfx___might_resched+0x10/0x10
[  664.819927][ T4361]  ? folio_unlock+0x7d/0xd0
[  664.819946][ T4361]  migrate_pages_batch+0x39f/0x3bd0
[  664.819962][ T4361]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  664.819984][ T4361]  ? __pfx_migrate_pages_batch+0x10/0x10
[  664.820001][ T4361]  ? __pfx_walk_pgd_range+0x10/0x10
[  664.820015][ T4361]  migrate_pages_sync+0x12d/0x8a0
[  664.820031][ T4361]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  664.820050][ T4361]  ? queue_pages_test_walk+0x279/0x410
[  664.820064][ T4361]  ? __pfx_migrate_pages_sync+0x10/0x10
[  664.820079][ T4361]  ? walk_page_test+0x9b/0x180
[  664.820095][ T4361]  migrate_pages+0x1b67/0x23b0
[  664.820111][ T4361]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  664.820131][ T4361]  ? __pfx_migrate_pages+0x10/0x10
[  664.820146][ T4361]  ? mas_next_slot+0x12d3/0x21b0
[  664.820160][ T4361]  ? find_held_lock+0x2b/0x80
[  664.820178][ T4361]  ? up_write+0x1b2/0x520
[  664.820190][ T4361]  do_mbind+0x6f0/0xf30
[  664.820209][ T4361]  ? __pfx_do_mbind+0x10/0x10
[  664.820239][ T4361]  ? find_held_lock+0x2b/0x80
[  664.820253][ T4361]  ? ksys_write+0x190/0x250
[  664.820271][ T4361]  ? __pfx_get_nodes+0x10/0x10
[  664.820283][ T4361]  ? __fget_files+0x20e/0x3c0
[  664.820298][ T4361]  kernel_mbind+0x1e3/0x1f0
[  664.820314][ T4361]  ? __pfx_kernel_mbind+0x10/0x10
[  664.820333][ T4361]  do_syscall_64+0xcd/0x4c0
[  664.820348][ T4361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  664.820359][ T4361] RIP: 0033:0x7f38b5f8ebe9
[  664.820369][ T4361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  664.820381][ T4361] RSP: 002b:00007f38b6ddb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  664.820392][ T4361] RAX: ffffffffffffffda RBX: 00007f38b61b5fa0 RCX: 00007f38b5f8ebe9
[  664.820400][ T4361] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  664.820407][ T4361] RBP: 00007f38b6ddb090 R08: 0000000000000000 R09: 0000000000000002
[  664.820413][ T4361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  664.820420][ T4361] R13: 00007f38b61b6038 R14: 00007f38b61b5fa0 R15: 00007ffd34d4a9e8
[  664.820433][ T4361]  </TASK>
[  664.879537][ T4370] program syz.5.7583 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  664.881589][ T4363] bond0: (slave lo): Error: Device can not be enslaved while up
[  664.883329][ T4370] ata1.00: invalid transfer count 0
[  664.948372][    C0] vkms_vblank_simulate: vblank timer overrun
[  665.000812][ T4377] syzkaller1: entered promiscuous mode
[  665.002606][ T4377] syzkaller1: entered allmulticast mode
[  665.154780][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  665.197874][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  665.230987][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  665.255722][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  665.373098][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  665.436103][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  665.519249][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  665.572702][ T4417] syzkaller1: entered promiscuous mode
[  665.574535][ T4417] syzkaller1: entered allmulticast mode
[  665.582764][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  665.694221][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  665.738635][T30414] udevd[30414]: symlink '../../loop5' '/dev/disk/by-diskseq/75.tmp-b7:5' failed: Read-only file system
[  665.825331][ T5331] Bluetooth: hci4: command tx timeout
[  665.940157][ T4447] IPVS: sed: FWM 3 0x00000003 - no destination available
[  665.960985][ T4451] syzkaller1: entered promiscuous mode
[  665.962785][ T4451] syzkaller1: entered allmulticast mode
[  665.988088][ T4456] comedi: No check for data length of config insn id 32768 is implemented
[  665.991120][ T4456] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  665.993962][ T4456] comedi: Assuming n=15 is correct
[  666.078876][ T4464] FAULT_INJECTION: forcing a failure.
[  666.078876][ T4464] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  666.078969][ T4466] FAULT_INJECTION: forcing a failure.
[  666.078969][ T4466] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  666.083348][ T4464] CPU: 0 UID: 0 PID: 4464 Comm: syz.8.7611 Not tainted syzkaller #0 PREEMPT(full) 
[  666.083364][ T4464] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  666.083371][ T4464] Call Trace:
[  666.083376][ T4464]  <TASK>
[  666.083381][ T4464]  dump_stack_lvl+0x16c/0x1f0
[  666.083402][ T4464]  should_fail_ex+0x512/0x640
[  666.083417][ T4464]  should_fail_alloc_page+0xe7/0x130
[  666.083433][ T4464]  prepare_alloc_pages+0x3c2/0x610
[  666.083450][ T4464]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  666.083467][ T4464]  ? do_raw_spin_lock+0x12c/0x2b0
[  666.083481][ T4464]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  666.083500][ T4464]  ? __page_table_check_zero+0x33c/0x5d0
[  666.083513][ T4464]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  666.083527][ T4464]  ? policy_nodemask+0xea/0x4e0
[  666.083542][ T4464]  alloc_pages_mpol+0x1fb/0x550
[  666.083555][ T4464]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  666.083569][ T4464]  ? _raw_spin_unlock+0x28/0x50
[  666.083579][ T4464]  ? __free_frozen_pages+0x8ec/0x10f0
[  666.083597][ T4464]  folio_alloc_mpol_noprof+0x36/0x2f0
[  666.083613][ T4464]  alloc_migration_target_by_mpol+0x246/0x500
[  666.083630][ T4464]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  666.083645][ T4464]  ? __pfx_invalid_migration_vma+0x10/0x10
[  666.083660][ T4464]  ? __pfx___might_resched+0x10/0x10
[  666.083674][ T4464]  ? folio_unlock+0x7d/0xd0
[  666.083692][ T4464]  migrate_pages_batch+0x39f/0x3bd0
[  666.083709][ T4464]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  666.083730][ T4464]  ? __pfx_migrate_pages_batch+0x10/0x10
[  666.083748][ T4464]  ? __pfx_walk_pgd_range+0x10/0x10
[  666.083761][ T4464]  migrate_pages_sync+0x12d/0x8a0
[  666.083777][ T4464]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  666.083796][ T4464]  ? queue_pages_test_walk+0x279/0x410
[  666.083817][ T4464]  ? __pfx_migrate_pages_sync+0x10/0x10
[  666.083841][ T4464]  ? walk_page_test+0x9b/0x180
[  666.083867][ T4464]  migrate_pages+0x1b67/0x23b0
[  666.083893][ T4464]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  666.083923][ T4464]  ? __pfx_migrate_pages+0x10/0x10
[  666.083946][ T4464]  ? mas_next_slot+0x12d3/0x21b0
[  666.083967][ T4464]  ? find_held_lock+0x2b/0x80
[  666.083989][ T4464]  ? up_write+0x1b2/0x520
[  666.084001][ T4464]  do_mbind+0x6f0/0xf30
[  666.084020][ T4464]  ? __pfx_do_mbind+0x10/0x10
[  666.084035][ T4464]  ? find_held_lock+0x2b/0x80
[  666.084048][ T4464]  ? ksys_write+0x190/0x250
[  666.084066][ T4464]  ? __pfx_get_nodes+0x10/0x10
[  666.084077][ T4464]  ? __fget_files+0x20e/0x3c0
[  666.084092][ T4464]  kernel_mbind+0x1e3/0x1f0
[  666.084109][ T4464]  ? __pfx_kernel_mbind+0x10/0x10
[  666.084128][ T4464]  do_syscall_64+0xcd/0x4c0
[  666.084141][ T4464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  666.084153][ T4464] RIP: 0033:0x7f140758ebe9
[  666.084164][ T4464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  666.084175][ T4464] RSP: 002b:00007f14083bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  666.084186][ T4464] RAX: ffffffffffffffda RBX: 00007f14077b5fa0 RCX: 00007f140758ebe9
[  666.084193][ T4464] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  666.084222][ T4464] RBP: 00007f14083bf090 R08: 0000000000000000 R09: 0000000000000002
[  666.084231][ T4464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  666.084238][ T4464] R13: 00007f14077b6038 R14: 00007f14077b5fa0 R15: 00007fff37574618
[  666.084252][ T4464]  </TASK>
[  666.206768][ T4466] CPU: 3 UID: 0 PID: 4466 Comm: syz.5.7612 Not tainted syzkaller #0 PREEMPT(full) 
[  666.206784][ T4466] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  666.206791][ T4466] Call Trace:
[  666.206795][ T4466]  <TASK>
[  666.206799][ T4466]  dump_stack_lvl+0x16c/0x1f0
[  666.206815][ T4466]  should_fail_ex+0x512/0x640
[  666.206831][ T4466]  _copy_from_iter+0x29f/0x1720
[  666.206847][ T4466]  ? __alloc_skb+0x200/0x380
[  666.206859][ T4466]  ? __pfx__copy_from_iter+0x10/0x10
[  666.206875][ T4466]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  666.206892][ T4466]  netlink_sendmsg+0x829/0xdd0
[  666.206908][ T4466]  ? __pfx_netlink_sendmsg+0x10/0x10
[  666.206926][ T4466]  ____sys_sendmsg+0xa98/0xc70
[  666.206942][ T4466]  ? copy_msghdr_from_user+0x10a/0x160
[  666.206954][ T4466]  ? __pfx_____sys_sendmsg+0x10/0x10
[  666.206975][ T4466]  ___sys_sendmsg+0x134/0x1d0
[  666.206988][ T4466]  ? __pfx____sys_sendmsg+0x10/0x10
[  666.207016][ T4466]  __sys_sendmsg+0x16d/0x220
[  666.207029][ T4466]  ? __pfx___sys_sendmsg+0x10/0x10
[  666.207049][ T4466]  do_syscall_64+0xcd/0x4c0
[  666.207063][ T4466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  666.207075][ T4466] RIP: 0033:0x7f448878ebe9
[  666.207084][ T4466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  666.207095][ T4466] RSP: 002b:00007f44895eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  666.207106][ T4466] RAX: ffffffffffffffda RBX: 00007f44889b5fa0 RCX: 00007f448878ebe9
[  666.207114][ T4466] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  666.207120][ T4466] RBP: 00007f44895eb090 R08: 0000000000000000 R09: 0000000000000000
[  666.207127][ T4466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  666.207133][ T4466] R13: 00007f44889b6038 R14: 00007f44889b5fa0 R15: 00007ffe328bfec8
[  666.207147][ T4466]  </TASK>
[  666.364368][ T4476] netlink: 'syz.8.7616': attribute type 32 has an invalid length.
[  666.369848][ T4476] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7616'.
[  666.375834][ T4476] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  666.442742][ T4527] syzkaller1: entered promiscuous mode
[  666.444523][ T4527] syzkaller1: entered allmulticast mode
[  666.696365][ T4556] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7630'.
[  666.781006][ T4560] IPVS: sed: FWM 3 0x00000003 - no destination available
[  666.810957][ T4562] comedi: No check for data length of config insn id 32768 is implemented
[  666.813851][ T4562] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  666.817948][ T4562] comedi: Assuming n=15 is correct
[  666.852327][ T4566] bond0: option mode: unable to set because the bond device has slaves
[  666.897884][ T4568] netlink: 4 bytes leftover after parsing attributes in process `syz.9.7634'.
[  667.368660][ T4571] syzkaller1: entered promiscuous mode
[  667.371130][ T4571] syzkaller1: entered allmulticast mode
[  667.420929][ T4579] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7637'.
[  667.471035][ T4584] FAULT_INJECTION: forcing a failure.
[  667.471035][ T4584] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  667.475175][ T4584] CPU: 0 UID: 0 PID: 4584 Comm: syz.5.7639 Not tainted syzkaller #0 PREEMPT(full) 
[  667.475192][ T4584] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  667.475199][ T4584] Call Trace:
[  667.475204][ T4584]  <TASK>
[  667.475209][ T4584]  dump_stack_lvl+0x16c/0x1f0
[  667.475226][ T4584]  should_fail_ex+0x512/0x640
[  667.475241][ T4584]  _copy_from_user+0x2e/0xd0
[  667.475257][ T4584]  copy_msghdr_from_user+0x98/0x160
[  667.475270][ T4584]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  667.475300][ T4584]  ___sys_sendmsg+0xfe/0x1d0
[  667.475315][ T4584]  ? __pfx____sys_sendmsg+0x10/0x10
[  667.475344][ T4584]  __sys_sendmsg+0x16d/0x220
[  667.475356][ T4584]  ? __pfx___sys_sendmsg+0x10/0x10
[  667.475377][ T4584]  do_syscall_64+0xcd/0x4c0
[  667.475395][ T4584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.475407][ T4584] RIP: 0033:0x7f448878ebe9
[  667.475417][ T4584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  667.475428][ T4584] RSP: 002b:00007f44895eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  667.475439][ T4584] RAX: ffffffffffffffda RBX: 00007f44889b5fa0 RCX: 00007f448878ebe9
[  667.475446][ T4584] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  667.475453][ T4584] RBP: 00007f44895eb090 R08: 0000000000000000 R09: 0000000000000000
[  667.475459][ T4584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  667.475466][ T4584] R13: 00007f44889b6038 R14: 00007f44889b5fa0 R15: 00007ffe328bfec8
[  667.475480][ T4584]  </TASK>
[  667.512483][ T4592] bond0: option mode: unable to set because the bond device has slaves
[  667.514960][    C0] vkms_vblank_simulate: vblank timer overrun
[  667.571549][ T4594] FAULT_INJECTION: forcing a failure.
[  667.571549][ T4594] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  667.577447][ T4594] CPU: 1 UID: 0 PID: 4594 Comm: syz.4.7644 Not tainted syzkaller #0 PREEMPT(full) 
[  667.577470][ T4594] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  667.577479][ T4594] Call Trace:
[  667.577484][ T4594]  <TASK>
[  667.577493][ T4594]  dump_stack_lvl+0x16c/0x1f0
[  667.577517][ T4594]  should_fail_ex+0x512/0x640
[  667.577543][ T4594]  should_fail_alloc_page+0xe7/0x130
[  667.577567][ T4594]  prepare_alloc_pages+0x3c2/0x610
[  667.577594][ T4594]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  667.577623][ T4594]  ? do_raw_spin_lock+0x12c/0x2b0
[  667.577646][ T4594]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  667.577678][ T4594]  ? __page_table_check_zero+0x33c/0x5d0
[  667.577703][ T4594]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  667.577726][ T4594]  ? policy_nodemask+0xea/0x4e0
[  667.577747][ T4594]  alloc_pages_mpol+0x1fb/0x550
[  667.577769][ T4594]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  667.577790][ T4594]  ? _raw_spin_unlock+0x28/0x50
[  667.577808][ T4594]  ? __free_frozen_pages+0x8ec/0x10f0
[  667.577837][ T4594]  folio_alloc_mpol_noprof+0x36/0x2f0
[  667.577863][ T4594]  alloc_migration_target_by_mpol+0x246/0x500
[  667.577891][ T4594]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  667.577913][ T4594]  ? __pfx_invalid_migration_vma+0x10/0x10
[  667.577935][ T4594]  ? __pfx___might_resched+0x10/0x10
[  667.577959][ T4594]  ? folio_unlock+0x7d/0xd0
[  667.577989][ T4594]  migrate_pages_batch+0x39f/0x3bd0
[  667.578016][ T4594]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  667.578052][ T4594]  ? __pfx_migrate_pages_batch+0x10/0x10
[  667.578082][ T4594]  ? __pfx_walk_pgd_range+0x10/0x10
[  667.578105][ T4594]  migrate_pages_sync+0x12d/0x8a0
[  667.578131][ T4594]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  667.578162][ T4594]  ? queue_pages_test_walk+0x279/0x410
[  667.578183][ T4594]  ? __pfx_migrate_pages_sync+0x10/0x10
[  667.578204][ T4594]  ? walk_page_test+0x9b/0x180
[  667.578233][ T4594]  migrate_pages+0x1b67/0x23b0
[  667.578259][ T4594]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  667.578291][ T4594]  ? __pfx_migrate_pages+0x10/0x10
[  667.578315][ T4594]  ? mas_next_slot+0x12d3/0x21b0
[  667.578338][ T4594]  ? find_held_lock+0x2b/0x80
[  667.578365][ T4594]  ? up_write+0x1b2/0x520
[  667.578394][ T4594]  do_mbind+0x6f0/0xf30
[  667.578441][ T4594]  ? __pfx_do_mbind+0x10/0x10
[  667.578464][ T4594]  ? find_held_lock+0x2b/0x80
[  667.578486][ T4594]  ? ksys_write+0x190/0x250
[  667.578517][ T4594]  ? __pfx_get_nodes+0x10/0x10
[  667.578535][ T4594]  ? __fget_files+0x20e/0x3c0
[  667.578557][ T4594]  kernel_mbind+0x1e3/0x1f0
[  667.578584][ T4594]  ? __pfx_kernel_mbind+0x10/0x10
[  667.578616][ T4594]  do_syscall_64+0xcd/0x4c0
[  667.578638][ T4594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.578658][ T4594] RIP: 0033:0x7f38b5f8ebe9
[  667.578674][ T4594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  667.578692][ T4594] RSP: 002b:00007f38b6ddb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  667.578711][ T4594] RAX: ffffffffffffffda RBX: 00007f38b61b5fa0 RCX: 00007f38b5f8ebe9
[  667.578723][ T4594] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  667.578735][ T4594] RBP: 00007f38b6ddb090 R08: 0000000000000000 R09: 0000000000000002
[  667.578746][ T4594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  667.578757][ T4594] R13: 00007f38b61b6038 R14: 00007f38b61b5fa0 R15: 00007ffd34d4a9e8
[  667.578781][ T4594]  </TASK>
[  667.906446][ T4623] FAULT_INJECTION: forcing a failure.
[  667.906446][ T4623] name failslab, interval 1, probability 0, space 0, times 0
[  667.910327][ T4623] CPU: 3 UID: 0 PID: 4623 Comm: syz.8.7649 Not tainted syzkaller #0 PREEMPT(full) 
[  667.910343][ T4623] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  667.910350][ T4623] Call Trace:
[  667.910355][ T4623]  <TASK>
[  667.910360][ T4623]  dump_stack_lvl+0x16c/0x1f0
[  667.910376][ T4623]  should_fail_ex+0x512/0x640
[  667.910392][ T4623]  should_failslab+0xc2/0x120
[  667.910406][ T4623]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  667.910418][ T4623]  ? skb_clone+0x190/0x3f0
[  667.910433][ T4623]  skb_clone+0x190/0x3f0
[  667.910445][ T4623]  netlink_deliver_tap+0xabd/0xd30
[  667.910461][ T4623]  netlink_unicast+0x64c/0x870
[  667.910476][ T4623]  ? __pfx_netlink_unicast+0x10/0x10
[  667.910490][ T4623]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  667.910507][ T4623]  netlink_sendmsg+0x8d1/0xdd0
[  667.910522][ T4623]  ? __pfx_netlink_sendmsg+0x10/0x10
[  667.910541][ T4623]  ____sys_sendmsg+0xa98/0xc70
[  667.910557][ T4623]  ? copy_msghdr_from_user+0x10a/0x160
[  667.910569][ T4623]  ? __pfx_____sys_sendmsg+0x10/0x10
[  667.910590][ T4623]  ___sys_sendmsg+0x134/0x1d0
[  667.910603][ T4623]  ? __pfx____sys_sendmsg+0x10/0x10
[  667.910632][ T4623]  __sys_sendmsg+0x16d/0x220
[  667.910644][ T4623]  ? __pfx___sys_sendmsg+0x10/0x10
[  667.910665][ T4623]  do_syscall_64+0xcd/0x4c0
[  667.910683][ T4623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.910696][ T4623] RIP: 0033:0x7f140758ebe9
[  667.910705][ T4623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  667.910717][ T4623] RSP: 002b:00007f14083bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  667.910728][ T4623] RAX: ffffffffffffffda RBX: 00007f14077b5fa0 RCX: 00007f140758ebe9
[  667.910735][ T4623] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  667.910741][ T4623] RBP: 00007f14083bf090 R08: 0000000000000000 R09: 0000000000000000
[  667.910748][ T4623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  667.910755][ T4623] R13: 00007f14077b6038 R14: 00007f14077b5fa0 R15: 00007fff37574618
[  667.910769][ T4623]  </TASK>
[  668.021822][ T4626] syzkaller1: entered promiscuous mode
[  668.023716][ T4626] syzkaller1: entered allmulticast mode
[  668.026330][   T54] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  668.178184][   T54] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  668.185144][   T54] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  668.187675][   T54] usb 9-1: Product: syz
[  668.189026][   T54] usb 9-1: Manufacturer: syz
[  668.190438][   T54] usb 9-1: SerialNumber: syz
[  668.199353][   T54] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  668.236738][   T40] audit: type=1400 audit(1756423661.418:289846): avc:  denied  { read } for  pid=4645 comm="syz.9.7656" path="socket:[135610]" dev="sockfs" ino=135610 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  668.258152][   T54] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  668.545814][ T4670] bridge1: entered promiscuous mode
[  668.547449][ T4670] bridge1: entered allmulticast mode
[  668.554227][ T4676] syzkaller1: entered promiscuous mode
[  668.557244][ T4676] syzkaller1: entered allmulticast mode
[  668.776523][ T4696] erspan1: entered promiscuous mode
[  668.816133][ T4597] Set syz1 is full, maxelem 65536 reached
[  668.975320][ T6201] usb 13-1: new high-speed USB device number 15 using dummy_hcd
[  669.135495][ T6201] usb 13-1: Using ep0 maxpacket: 32
[  669.139271][ T6201] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  669.142679][ T6201] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  669.146240][ T6201] usb 13-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  669.152753][ T6201] usb 13-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  669.155893][ T6201] usb 13-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  669.158749][ T6201] usb 13-1: Product: syz
[  669.160106][ T6201] usb 13-1: Manufacturer: syz
[  669.161593][ T6201] usb 13-1: SerialNumber: syz
[  669.165540][ T4689] raw-gadget.1 gadget.8: fail, usb_ep_enable returned -22
[  669.171401][ T6201] input: appletouch as /devices/platform/dummy_hcd.8/usb13/13-1/13-1:1.0/input/input36
[  669.265491][   T54] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive
[  669.268082][   T54] ath9k_htc: Failed to initialize the device
[  669.292949][   T54] usb 9-1: ath9k_htc: USB layer deinitialized
[  669.372670][ T4712] comedi: No check for data length of config insn id 32768 is implemented
[  669.375722][ T4712] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  669.378562][ T4712] comedi: Assuming n=15 is correct
[  669.434517][ T6038] usb 13-1: USB disconnect, device number 15
[  669.447533][ T6038] appletouch 13-1:1.0: input: appletouch disconnected
[  669.459373][ T4725] syzkaller0: entered promiscuous mode
[  669.461457][ T4725] syzkaller0: entered allmulticast mode
[  669.464358][ T4725] binder: 4722:4725 ioctl c0306201 2000000004c0 returned -22
[  669.468518][ T4725] loop2: detected capacity change from 0 to 7
[  669.471479][ T4725] Dev loop2: unable to read RDB block 7
[  669.475745][ T4725]  loop2: unable to read partition table
[  669.478040][ T4725] loop2: partition table beyond EOD, truncated
[  669.480469][ T4725] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  669.598945][ T4740] IPVS: sed: FWM 3 0x00000003 - no destination available
[  669.643213][ T4742] syzkaller1: entered promiscuous mode
[  669.645995][ T4742] syzkaller1: entered allmulticast mode
[  669.843206][ T4752] IPVS: sed: FWM 3 0x00000003 - no destination available
[  669.970069][ T4759] FAULT_INJECTION: forcing a failure.
[  669.970069][ T4759] name failslab, interval 1, probability 0, space 0, times 0
[  669.973853][ T4759] CPU: 3 UID: 0 PID: 4759 Comm: syz.5.7688 Not tainted syzkaller #0 PREEMPT(full) 
[  669.973868][ T4759] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  669.973875][ T4759] Call Trace:
[  669.973880][ T4759]  <TASK>
[  669.973884][ T4759]  dump_stack_lvl+0x16c/0x1f0
[  669.973901][ T4759]  should_fail_ex+0x512/0x640
[  669.973914][ T4759]  ? __kmalloc_noprof+0xbf/0x510
[  669.973927][ T4759]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  669.973944][ T4759]  should_failslab+0xc2/0x120
[  669.973957][ T4759]  __kmalloc_noprof+0xd2/0x510
[  669.973971][ T4759]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  669.973990][ T4759]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  669.974006][ T4759]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  669.974027][ T4759]  ? bpf_lsm_capable+0x9/0x10
[  669.974043][ T4759]  ? security_capable+0x7e/0x260
[  669.974058][ T4759]  ? ns_capable+0xd7/0x110
[  669.974073][ T4759]  genl_rcv_msg+0x55c/0x800
[  669.974090][ T4759]  ? __pfx_genl_rcv_msg+0x10/0x10
[  669.974105][ T4759]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  669.974122][ T4759]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[  669.974137][ T4759]  ? __pfx_nl80211_post_doit+0x10/0x10
[  669.974155][ T4759]  netlink_rcv_skb+0x155/0x420
[  669.974168][ T4759]  ? __pfx_genl_rcv_msg+0x10/0x10
[  669.974184][ T4759]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  669.974202][ T4759]  ? netlink_deliver_tap+0x1ae/0xd30
[  669.974217][ T4759]  genl_rcv+0x28/0x40
[  669.974230][ T4759]  netlink_unicast+0x5aa/0x870
[  669.974245][ T4759]  ? __pfx_netlink_unicast+0x10/0x10
[  669.974258][ T4759]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  669.974276][ T4759]  netlink_sendmsg+0x8d1/0xdd0
[  669.974291][ T4759]  ? __pfx_netlink_sendmsg+0x10/0x10
[  669.974310][ T4759]  ____sys_sendmsg+0xa98/0xc70
[  669.974326][ T4759]  ? copy_msghdr_from_user+0x10a/0x160
[  669.974338][ T4759]  ? __pfx_____sys_sendmsg+0x10/0x10
[  669.974364][ T4759]  ___sys_sendmsg+0x134/0x1d0
[  669.974377][ T4759]  ? __pfx____sys_sendmsg+0x10/0x10
[  669.974419][ T4759]  __sys_sendmsg+0x16d/0x220
[  669.974432][ T4759]  ? __pfx___sys_sendmsg+0x10/0x10
[  669.974453][ T4759]  do_syscall_64+0xcd/0x4c0
[  669.974467][ T4759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  669.974479][ T4759] RIP: 0033:0x7f448878ebe9
[  669.974488][ T4759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  669.974499][ T4759] RSP: 002b:00007f44895eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  669.974510][ T4759] RAX: ffffffffffffffda RBX: 00007f44889b5fa0 RCX: 00007f448878ebe9
[  669.974517][ T4759] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  669.974524][ T4759] RBP: 00007f44895eb090 R08: 0000000000000000 R09: 0000000000000000
[  669.974531][ T4759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  669.974537][ T4759] R13: 00007f44889b6038 R14: 00007f44889b5fa0 R15: 00007ffe328bfec8
[  669.974551][ T4759]  </TASK>
[  670.088147][ T4762] FAULT_INJECTION: forcing a failure.
[  670.088147][ T4762] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  670.092282][ T4762] CPU: 3 UID: 0 PID: 4762 Comm: syz.5.7681 Not tainted syzkaller #0 PREEMPT(full) 
[  670.092298][ T4762] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  670.092306][ T4762] Call Trace:
[  670.092310][ T4762]  <TASK>
[  670.092315][ T4762]  dump_stack_lvl+0x16c/0x1f0
[  670.092331][ T4762]  should_fail_ex+0x512/0x640
[  670.092347][ T4762]  _copy_from_user+0x2e/0xd0
[  670.092369][ T4762]  move_addr_to_kernel+0x65/0x170
[  670.092387][ T4762]  __copy_msghdr+0x386/0x470
[  670.092399][ T4762]  copy_msghdr_from_user+0xc1/0x160
[  670.092411][ T4762]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  670.092430][ T4762]  ___sys_sendmsg+0xfe/0x1d0
[  670.092442][ T4762]  ? __pfx____sys_sendmsg+0x10/0x10
[  670.092471][ T4762]  __sys_sendmsg+0x16d/0x220
[  670.092483][ T4762]  ? __pfx___sys_sendmsg+0x10/0x10
[  670.092504][ T4762]  do_syscall_64+0xcd/0x4c0
[  670.092518][ T4762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  670.092530][ T4762] RIP: 0033:0x7f448878ebe9
[  670.092539][ T4762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  670.092550][ T4762] RSP: 002b:00007f44895eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  670.092561][ T4762] RAX: ffffffffffffffda RBX: 00007f44889b5fa0 RCX: 00007f448878ebe9
[  670.092569][ T4762] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  670.092575][ T4762] RBP: 00007f44895eb090 R08: 0000000000000000 R09: 0000000000000000
[  670.092582][ T4762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  670.092589][ T4762] R13: 00007f44889b6038 R14: 00007f44889b5fa0 R15: 00007ffe328bfec8
[  670.092603][ T4762]  </TASK>
[  670.813101][ T6038] usb 9-1: USB disconnect, device number 12
[  670.855059][ T4772] FAULT_INJECTION: forcing a failure.
[  670.855059][ T4772] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  670.859855][ T4772] CPU: 1 UID: 0 PID: 4772 Comm: syz.9.7683 Not tainted syzkaller #0 PREEMPT(full) 
[  670.859881][ T4772] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  670.859892][ T4772] Call Trace:
[  670.859898][ T4772]  <TASK>
[  670.859906][ T4772]  dump_stack_lvl+0x16c/0x1f0
[  670.859931][ T4772]  should_fail_ex+0x512/0x640
[  670.859956][ T4772]  should_fail_alloc_page+0xe7/0x130
[  670.859979][ T4772]  prepare_alloc_pages+0x3c2/0x610
[  670.860007][ T4772]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  670.860036][ T4772]  ? do_raw_spin_lock+0x12c/0x2b0
[  670.860058][ T4772]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  670.860092][ T4772]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  670.860115][ T4772]  ? policy_nodemask+0xea/0x4e0
[  670.860138][ T4772]  alloc_pages_mpol+0x1fb/0x550
[  670.860182][ T4772]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  670.860205][ T4772]  ? _raw_spin_unlock+0x28/0x50
[  670.860222][ T4772]  ? __free_frozen_pages+0x8ec/0x10f0
[  670.860250][ T4772]  folio_alloc_mpol_noprof+0x36/0x2f0
[  670.860276][ T4772]  alloc_migration_target_by_mpol+0x246/0x500
[  670.860301][ T4772]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  670.860324][ T4772]  ? __pfx_invalid_migration_vma+0x10/0x10
[  670.860345][ T4772]  ? __pfx___might_resched+0x10/0x10
[  670.860365][ T4772]  ? folio_unlock+0x7d/0xd0
[  670.860393][ T4772]  migrate_pages_batch+0x39f/0x3bd0
[  670.860418][ T4772]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  670.860452][ T4772]  ? __pfx_migrate_pages_batch+0x10/0x10
[  670.860480][ T4772]  ? __pfx_walk_pgd_range+0x10/0x10
[  670.860501][ T4772]  migrate_pages_sync+0x12d/0x8a0
[  670.860526][ T4772]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  670.860555][ T4772]  ? queue_pages_test_walk+0x279/0x410
[  670.860577][ T4772]  ? __pfx_migrate_pages_sync+0x10/0x10
[  670.860607][ T4772]  ? walk_page_test+0x9b/0x180
[  670.860634][ T4772]  migrate_pages+0x1b67/0x23b0
[  670.860660][ T4772]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  670.860692][ T4772]  ? __pfx_migrate_pages+0x10/0x10
[  670.860716][ T4772]  ? mas_next_slot+0x12d3/0x21b0
[  670.860738][ T4772]  ? find_held_lock+0x2b/0x80
[  670.860767][ T4772]  ? up_write+0x1b2/0x520
[  670.860786][ T4772]  do_mbind+0x6f0/0xf30
[  670.860817][ T4772]  ? __pfx_do_mbind+0x10/0x10
[  670.860838][ T4772]  ? find_held_lock+0x2b/0x80
[  670.860860][ T4772]  ? ksys_write+0x190/0x250
[  670.860889][ T4772]  ? __pfx_get_nodes+0x10/0x10
[  670.860908][ T4772]  ? __fget_files+0x20e/0x3c0
[  670.860933][ T4772]  kernel_mbind+0x1e3/0x1f0
[  670.860958][ T4772]  ? __pfx_kernel_mbind+0x10/0x10
[  670.860988][ T4772]  do_syscall_64+0xcd/0x4c0
[  670.861010][ T4772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  670.861029][ T4772] RIP: 0033:0x7faa41b8ebe9
[  670.861044][ T4772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  670.861060][ T4772] RSP: 002b:00007faa42962038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  670.861079][ T4772] RAX: ffffffffffffffda RBX: 00007faa41db5fa0 RCX: 00007faa41b8ebe9
[  670.861092][ T4772] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  670.861102][ T4772] RBP: 00007faa42962090 R08: 0000000000000000 R09: 0000000000000002
[  670.861112][ T4772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  670.861123][ T4772] R13: 00007faa41db6038 R14: 00007faa41db5fa0 R15: 00007ffe18a4ede8
[  670.861147][ T4772]  </TASK>
[  670.893780][ T4774] syzkaller1: entered promiscuous mode
[  670.940639][ T4757] Set syz1 is full, maxelem 65536 reached
[  670.941782][ T4774] syzkaller1: entered allmulticast mode
[  670.997317][ T4784] pimreg: entered allmulticast mode
[  671.039993][ T4791] input: syz0 as /devices/virtual/input/input37
[  671.106640][ T4779] pimreg: left allmulticast mode
[  671.250756][ T4842] netlink: 4 bytes leftover after parsing attributes in process `syz.9.7695'.
[  671.321498][ T4849] IPVS: sed: FWM 3 0x00000003 - no destination available
[  671.383716][ T4842] team0 (unregistering): Port device team_slave_0 removed
[  671.393501][ T4842] team0 (unregistering): Port device team_slave_1 removed
[  671.412650][ T4847] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[  671.459235][ T4890] syzkaller1: entered promiscuous mode
[  671.461001][ T4890] syzkaller1: entered allmulticast mode
[  671.602019][ T4921] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  671.608483][ T4921] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7705'.
[  671.669258][ T4934] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7709'.
[  671.672377][ T4934] netlink: 56 bytes leftover after parsing attributes in process `syz.4.7709'.
[  671.677460][ T4934] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7709'.
[  671.677806][ T4927] ip6gretap0: entered promiscuous mode
[  671.734857][ T5005] Set syz1 is full, maxelem 65536 reached
[  671.759508][ T5007] syzkaller1: entered promiscuous mode
[  671.761548][ T5007] syzkaller1: entered allmulticast mode
[  671.845966][ T5015] FAULT_INJECTION: forcing a failure.
[  671.845966][ T5015] name failslab, interval 1, probability 0, space 0, times 0
[  671.850980][ T5015] CPU: 3 UID: 0 PID: 5015 Comm: syz.4.7714 Not tainted syzkaller #0 PREEMPT(full) 
[  671.850996][ T5015] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  671.851003][ T5015] Call Trace:
[  671.851008][ T5015]  <TASK>
[  671.851013][ T5015]  dump_stack_lvl+0x16c/0x1f0
[  671.851034][ T5015]  should_fail_ex+0x512/0x640
[  671.851051][ T5015]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  671.851069][ T5015]  should_failslab+0xc2/0x120
[  671.851087][ T5015]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  671.851104][ T5015]  ? __alloc_skb+0x2b2/0x380
[  671.851117][ T5015]  __alloc_skb+0x2b2/0x380
[  671.851128][ T5015]  ? __pfx___alloc_skb+0x10/0x10
[  671.851138][ T5015]  ? genl_rcv_msg+0x530/0x800
[  671.851153][ T5015]  ? genl_rcv_msg+0x4bb/0x800
[  671.851171][ T5015]  netlink_ack+0x15d/0xb80
[  671.851188][ T5015]  netlink_rcv_skb+0x332/0x420
[  671.851202][ T5015]  ? __pfx_genl_rcv_msg+0x10/0x10
[  671.851217][ T5015]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  671.851236][ T5015]  ? netlink_deliver_tap+0x1ae/0xd30
[  671.851251][ T5015]  genl_rcv+0x28/0x40
[  671.851264][ T5015]  netlink_unicast+0x5aa/0x870
[  671.851279][ T5015]  ? __pfx_netlink_unicast+0x10/0x10
[  671.851293][ T5015]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  671.851310][ T5015]  netlink_sendmsg+0x8d1/0xdd0
[  671.851326][ T5015]  ? __pfx_netlink_sendmsg+0x10/0x10
[  671.851344][ T5015]  ____sys_sendmsg+0xa98/0xc70
[  671.851360][ T5015]  ? copy_msghdr_from_user+0x10a/0x160
[  671.851372][ T5015]  ? __pfx_____sys_sendmsg+0x10/0x10
[  671.851394][ T5015]  ___sys_sendmsg+0x134/0x1d0
[  671.851411][ T5015]  ? __pfx____sys_sendmsg+0x10/0x10
[  671.851440][ T5015]  __sys_sendmsg+0x16d/0x220
[  671.851453][ T5015]  ? __pfx___sys_sendmsg+0x10/0x10
[  671.851474][ T5015]  do_syscall_64+0xcd/0x4c0
[  671.851488][ T5015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  671.851499][ T5015] RIP: 0033:0x7f38b5f8ebe9
[  671.851509][ T5015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  671.851520][ T5015] RSP: 002b:00007f38b6ddb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  671.851531][ T5015] RAX: ffffffffffffffda RBX: 00007f38b61b5fa0 RCX: 00007f38b5f8ebe9
[  671.851538][ T5015] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  671.851545][ T5015] RBP: 00007f38b6ddb090 R08: 0000000000000000 R09: 0000000000000000
[  671.851551][ T5015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  671.851558][ T5015] R13: 00007f38b61b6038 R14: 00007f38b61b5fa0 R15: 00007ffd34d4a9e8
[  671.851572][ T5015]  </TASK>
[  671.949957][ T5022] FAULT_INJECTION: forcing a failure.
[  671.949957][ T5022] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  671.954184][ T5022] CPU: 2 UID: 0 PID: 5022 Comm: syz.5.7715 Not tainted syzkaller #0 PREEMPT(full) 
[  671.954200][ T5022] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  671.954208][ T5022] Call Trace:
[  671.954213][ T5022]  <TASK>
[  671.954218][ T5022]  dump_stack_lvl+0x16c/0x1f0
[  671.954235][ T5022]  should_fail_ex+0x512/0x640
[  671.954250][ T5022]  _copy_from_user+0x2e/0xd0
[  671.954266][ T5022]  ____sys_sendmsg+0x607/0xc70
[  671.954284][ T5022]  ? __pfx_____sys_sendmsg+0x10/0x10
[  671.954305][ T5022]  ___sys_sendmsg+0x134/0x1d0
[  671.954319][ T5022]  ? __pfx____sys_sendmsg+0x10/0x10
[  671.954348][ T5022]  __sys_sendmsg+0x16d/0x220
[  671.954360][ T5022]  ? __pfx___sys_sendmsg+0x10/0x10
[  671.954381][ T5022]  do_syscall_64+0xcd/0x4c0
[  671.954395][ T5022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  671.954407][ T5022] RIP: 0033:0x7f448878ebe9
[  671.954417][ T5022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  671.954428][ T5022] RSP: 002b:00007f44895eb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  671.954439][ T5022] RAX: ffffffffffffffda RBX: 00007f44889b5fa0 RCX: 00007f448878ebe9
[  671.954447][ T5022] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  671.954454][ T5022] RBP: 00007f44895eb090 R08: 0000000000000000 R09: 0000000000000000
[  671.954461][ T5022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  671.954467][ T5022] R13: 00007f44889b6038 R14: 00007f44889b5fa0 R15: 00007ffe328bfec8
[  671.954481][ T5022]  </TASK>
[  672.128002][ T5020] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7716'.
[  672.372613][ T5048] FAULT_INJECTION: forcing a failure.
[  672.372613][ T5048] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  672.373133][ T5047] syzkaller1: entered promiscuous mode
[  672.377866][ T5048] CPU: 1 UID: 0 PID: 5048 Comm: syz.8.7724 Not tainted syzkaller #0 PREEMPT(full) 
[  672.377893][ T5048] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  672.377904][ T5048] Call Trace:
[  672.377911][ T5048]  <TASK>
[  672.377919][ T5048]  dump_stack_lvl+0x16c/0x1f0
[  672.377945][ T5048]  should_fail_ex+0x512/0x640
[  672.377969][ T5048]  should_fail_alloc_page+0xe7/0x130
[  672.377993][ T5048]  prepare_alloc_pages+0x3c2/0x610
[  672.378021][ T5048]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  672.378052][ T5048]  ? do_raw_spin_lock+0x12c/0x2b0
[  672.378075][ T5048]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  672.378112][ T5048]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  672.378135][ T5048]  ? policy_nodemask+0xea/0x4e0
[  672.378155][ T5048]  alloc_pages_mpol+0x1fb/0x550
[  672.378176][ T5048]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  672.378198][ T5048]  ? _raw_spin_unlock+0x28/0x50
[  672.378213][ T5048]  ? __free_frozen_pages+0x8ec/0x10f0
[  672.378243][ T5048]  folio_alloc_mpol_noprof+0x36/0x2f0
[  672.378270][ T5048]  alloc_migration_target_by_mpol+0x246/0x500
[  672.378298][ T5048]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  672.378323][ T5048]  ? __pfx_invalid_migration_vma+0x10/0x10
[  672.378346][ T5048]  ? __pfx___might_resched+0x10/0x10
[  672.378366][ T5048]  ? folio_unlock+0x7d/0xd0
[  672.378395][ T5048]  migrate_pages_batch+0x39f/0x3bd0
[  672.378430][ T5048]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  672.378465][ T5048]  ? __pfx_migrate_pages_batch+0x10/0x10
[  672.378494][ T5048]  ? __pfx_walk_pgd_range+0x10/0x10
[  672.378517][ T5048]  migrate_pages_sync+0x12d/0x8a0
[  672.378544][ T5048]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  672.378575][ T5048]  ? queue_pages_test_walk+0x279/0x410
[  672.378598][ T5048]  ? __pfx_migrate_pages_sync+0x10/0x10
[  672.378624][ T5048]  ? walk_page_test+0x9b/0x180
[  672.378650][ T5048]  migrate_pages+0x1b67/0x23b0
[  672.378676][ T5048]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  672.378708][ T5048]  ? __pfx_migrate_pages+0x10/0x10
[  672.378731][ T5048]  ? mas_next_slot+0x12d3/0x21b0
[  672.378754][ T5048]  ? find_held_lock+0x2b/0x80
[  672.378783][ T5048]  ? up_write+0x1b2/0x520
[  672.378803][ T5048]  do_mbind+0x6f0/0xf30
[  672.378833][ T5048]  ? __pfx_do_mbind+0x10/0x10
[  672.378854][ T5048]  ? find_held_lock+0x2b/0x80
[  672.378877][ T5048]  ? ksys_write+0x190/0x250
[  672.378909][ T5048]  ? __pfx_get_nodes+0x10/0x10
[  672.378929][ T5048]  ? __fget_files+0x20e/0x3c0
[  672.378955][ T5048]  kernel_mbind+0x1e3/0x1f0
[  672.378982][ T5048]  ? __pfx_kernel_mbind+0x10/0x10
[  672.379014][ T5048]  do_syscall_64+0xcd/0x4c0
[  672.379039][ T5048]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  672.379058][ T5048] RIP: 0033:0x7f140758ebe9
[  672.379074][ T5048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  672.379092][ T5048] RSP: 002b:00007f14083bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  672.379108][ T5048] RAX: ffffffffffffffda RBX: 00007f14077b5fa0 RCX: 00007f140758ebe9
[  672.379120][ T5048] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  672.379131][ T5048] RBP: 00007f14083bf090 R08: 0000000000000000 R09: 0000000000000002
[  672.379141][ T5048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  672.379151][ T5048] R13: 00007f14077b6038 R14: 00007f14077b5fa0 R15: 00007fff37574618
[  672.379175][ T5048]  </TASK>
[  672.506315][ T5047] syzkaller1: entered allmulticast mode
[  672.548100][ T5063] Set syz1 is full, maxelem 65536 reached
[  672.620101][ T5071] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7732'.
[  672.828937][ T5097] syzkaller1: entered promiscuous mode
[  672.831358][ T5097] syzkaller1: entered allmulticast mode
[  672.932955][    C0] Unknown status report in ack skb
[  673.029210][ T5115] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7746'.
[  673.138968][    C1] Unknown status report in ack skb
[  673.178807][ T5129] syzkaller1: entered promiscuous mode
[  673.181832][ T5129] syzkaller1: entered allmulticast mode
[  673.184785][ T5132] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7753'.
[  673.185340][ T6105] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  673.188682][ T5132] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7753'.
[  673.190949][ T6105] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  673.199477][    C2] ------------[ cut here ]------------
[  673.201763][    C2] workqueue: cannot queue hci_cmd_timeout on wq hci0
[  673.203824][    C2] WARNING: CPU: 2 PID: 5089 at kernel/workqueue.c:2255 __queue_work+0xd03/0x1160
[  673.206578][    C2] Modules linked in:
[  673.208181][    C2] CPU: 2 UID: 0 PID: 5089 Comm: syz.9.7744 Not tainted syzkaller #0 PREEMPT(full) 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  673.208308][   T40] audit: type=1400 audit(1756423666.388:289847): avc:  denied  { write } for  pid=5945 comm="syz-executor" path="pipe:[5853]" dev="pipefs" ino=5853 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  673.212630][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  673.212661][    C2] RIP: 0010:__queue_work+0xd03/0x1160
[  673.212678][    C2] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 4b 04 00 00 48 8b 75 18 4c 89 fa 48 c7 c7 a0 00 ac 8b e8 be 1e f7 ff 90 <0f> 0b 90 90 e9 2f f7 ff ff e8 ef 78 38 00 90 0f 0b 90 e9 b4 f5 ff
[  673.212690][    C2] RSP: 0018:ffffc90000648c00 EFLAGS: 00010082
[  673.233139][    C2] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a3358
[  673.235557][    C2] RDX: ffff888022b02440 RSI: ffffffff817a3365 RDI: 0000000000000001
[  673.237912][    C2] RBP: ffff888039bd8970 R08: 0000000000000001 R09: 0000000000000000
[  673.240287][    C2] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff920000c9192
[  673.242651][    C2] R13: 0000000000000101 R14: ffffffff81832460 R15: ffff88805a3ec978
[  673.245038][    C2] FS:  00007faa429626c0(0000) GS:ffff8880d68b9000(0000) knlGS:0000000000000000
[  673.247801][    C2] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  673.249834][    C2] CR2: 0000200000000b40 CR3: 000000003800b000 CR4: 0000000000352ef0
[  673.252269][    C2] Call Trace:
[  673.253306][    C2]  <IRQ>
[  673.254209][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  673.256114][    C2]  call_timer_fn+0x197/0x620
[  673.257553][    C2]  ? __pfx_call_timer_fn+0x10/0x10
[  673.259111][    C2]  ? __run_timers+0x559/0x960
[  673.260531][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  673.262293][    C2]  __run_timers+0x569/0x960
[  673.263709][    C2]  ? __pfx___run_timers+0x10/0x10
[  673.265253][    C2]  run_timer_base+0x114/0x190
[  673.266714][    C2]  ? __pfx_run_timer_base+0x10/0x10
[  673.268334][    C2]  run_timer_softirq+0x1a/0x40
[  673.269805][    C2]  handle_softirqs+0x216/0x8e0
[  673.271266][    C2]  ? __pfx_handle_softirqs+0x10/0x10
[  673.272923][    C2]  ? irqtime_account_irq+0x18d/0x2e0
[  673.274521][    C2]  ? hash_ip4_resize+0x1153/0x1ad0
[  673.276127][    C2]  do_softirq+0xb2/0xf0
[  673.277452][    C2]  </IRQ>
[  673.278362][    C2]  <TASK>
[  673.279274][    C2]  __local_bh_enable_ip+0x100/0x120
[  673.280882][    C2]  ? hash_ip4_resize+0x1153/0x1ad0
[  673.282503][    C2]  hash_ip4_resize+0x1168/0x1ad0
[  673.284024][    C2]  ? __pfx_hash_ip4_resize+0x10/0x10
[  673.285716][    C2]  call_ad.constprop.0+0x36d/0x940
[  673.287666][    C2]  ? __pfx_hash_ip4_resize+0x10/0x10
[  673.289836][    C2]  ? __pfx_call_ad.constprop.0+0x10/0x10
[  673.292199][    C2]  ? __pfx___nla_validate_parse+0x10/0x10
[  673.294562][    C2]  ? __nla_parse+0x40/0x60
[  673.296448][    C2]  ip_set_ad.constprop.0.isra.0+0x3ce/0x870
[  673.298873][    C2]  ? __pfx_ip_set_ad.constprop.0.isra.0+0x10/0x10
[  673.301533][    C2]  ? rcu_sync_enter+0x51/0x350
[  673.303561][    C2]  ? find_held_lock+0x2b/0x80
[  673.305545][    C2]  nfnetlink_rcv_msg+0x9fc/0x1200
[  673.307647][    C2]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  673.309943][    C2]  ? __lock_acquire+0x62e/0x1ce0
[  673.311627][    C2]  ? avc_has_perm_noaudit+0x149/0x3b0
[  673.313317][    C2]  netlink_rcv_skb+0x155/0x420
[  673.314819][    C2]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  673.316536][    C2]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  673.318628][    C2]  ? ns_capable+0xd7/0x110
[  673.320331][    C2]  nfnetlink_rcv+0x1b3/0x430
[  673.321795][    C2]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  673.323422][    C2]  ? netlink_deliver_tap+0x1ae/0xd30
[  673.325101][    C2]  netlink_unicast+0x5aa/0x870
[  673.326910][    C2]  ? __pfx_netlink_unicast+0x10/0x10
[  673.329139][    C2]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  673.331369][    C2]  netlink_sendmsg+0x8d1/0xdd0
[  673.333196][    C2]  ? __pfx_netlink_sendmsg+0x10/0x10
[  673.335475][    C2]  ____sys_sendmsg+0xa98/0xc70
[  673.337342][    C2]  ? copy_msghdr_from_user+0x10a/0x160
[  673.339606][    C2]  ? __pfx_____sys_sendmsg+0x10/0x10
[  673.341752][    C2]  ? __pfx_futex_wake_mark+0x10/0x10
[  673.343629][    C2]  ___sys_sendmsg+0x134/0x1d0
[  673.345415][    C2]  ? __pfx____sys_sendmsg+0x10/0x10
[  673.347723][    C2]  __sys_sendmsg+0x16d/0x220
[  673.349772][    C2]  ? __pfx___sys_sendmsg+0x10/0x10
[  673.351973][    C2]  ? __x64_sys_futex+0x1e0/0x4c0
[  673.354065][    C2]  do_syscall_64+0xcd/0x4c0
[  673.356018][    C2]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  673.358361][    C2] RIP: 0033:0x7faa41b8ebe9
[  673.360304][    C2] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  673.368059][    C2] RSP: 002b:00007faa42962038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  673.370698][    C2] RAX: ffffffffffffffda RBX: 00007faa41db5fa0 RCX: 00007faa41b8ebe9
[  673.373129][    C2] RDX: 00000000240008c4 RSI: 0000200000000000 RDI: 0000000000000005
[  673.375502][    C2] RBP: 00007faa41c11e19 R08: 0000000000000000 R09: 0000000000000000
[  673.377873][    C2] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  673.380303][    C2] R13: 00007faa41db6038 R14: 00007faa41db5fa0 R15: 00007ffe18a4ede8
[  673.382821][    C2]  </TASK>
[  673.383832][    C2] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  673.386109][    C2] CPU: 2 UID: 0 PID: 5089 Comm: syz.9.7744 Not tainted syzkaller #0 PREEMPT(full) 
[  673.388825][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  673.392070][    C2] Call Trace:
[  673.393101][    C2]  <IRQ>
[  673.394021][    C2]  dump_stack_lvl+0x3d/0x1f0
[  673.395506][    C2]  vpanic+0x6e8/0x7a0
[  673.396804][    C2]  ? __pfx_vpanic+0x10/0x10
[  673.398250][    C2]  ? __queue_work+0xd03/0x1160
[  673.399758][    C2]  panic+0xca/0xd0
[  673.400966][    C2]  ? __pfx_panic+0x10/0x10
[  673.402418][    C2]  ? check_panic_on_warn+0x1f/0xb0
[  673.404022][    C2]  check_panic_on_warn+0xab/0xb0
[  673.405637][    C2]  __warn+0xf6/0x3c0
[  673.406889][    C2]  ? __pfx_vprintk_emit+0x10/0x10
[  673.408477][    C2]  ? __queue_work+0xd03/0x1160
[  673.410001][    C2]  report_bug+0x3c3/0x580
[  673.411331][    C2]  ? __queue_work+0xd03/0x1160
[  673.412814][    C2]  handle_bug+0x184/0x210
[  673.414187][    C2]  exc_invalid_op+0x17/0x50
[  673.415638][    C2]  asm_exc_invalid_op+0x1a/0x20
[  673.417129][    C2] RIP: 0010:__queue_work+0xd03/0x1160
[  673.418773][    C2] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 4b 04 00 00 48 8b 75 18 4c 89 fa 48 c7 c7 a0 00 ac 8b e8 be 1e f7 ff 90 <0f> 0b 90 90 e9 2f f7 ff ff e8 ef 78 38 00 90 0f 0b 90 e9 b4 f5 ff
[  673.424569][    C2] RSP: 0018:ffffc90000648c00 EFLAGS: 00010082
[  673.426857][    C2] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a3358
[  673.429618][    C2] RDX: ffff888022b02440 RSI: ffffffff817a3365 RDI: 0000000000000001
[  673.432227][    C2] RBP: ffff888039bd8970 R08: 0000000000000001 R09: 0000000000000000
[  673.435238][    C2] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff920000c9192
[  673.438477][    C2] R13: 0000000000000101 R14: ffffffff81832460 R15: ffff88805a3ec978
[  673.441810][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  673.444266][    C2]  ? __warn_printk+0x198/0x350
[  673.446247][    C2]  ? __warn_printk+0x1a5/0x350
[  673.448300][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  673.450755][    C2]  call_timer_fn+0x197/0x620
[  673.452728][    C2]  ? __pfx_call_timer_fn+0x10/0x10
[  673.454865][    C2]  ? __run_timers+0x559/0x960
[  673.456889][    C2]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  673.459265][    C2]  __run_timers+0x569/0x960
[  673.461181][    C2]  ? __pfx___run_timers+0x10/0x10
[  673.462869][    C2]  run_timer_base+0x114/0x190
[  673.464321][    C2]  ? __pfx_run_timer_base+0x10/0x10
[  673.465947][    C2]  run_timer_softirq+0x1a/0x40
[  673.467425][    C2]  handle_softirqs+0x216/0x8e0
[  673.468947][    C2]  ? __pfx_handle_softirqs+0x10/0x10
[  673.470573][    C2]  ? irqtime_account_irq+0x18d/0x2e0
[  673.472213][    C2]  ? hash_ip4_resize+0x1153/0x1ad0
[  673.473786][    C2]  do_softirq+0xb2/0xf0
[  673.475098][    C2]  </IRQ>
[  673.476249][    C2]  <TASK>
[  673.477495][    C2]  __local_bh_enable_ip+0x100/0x120
[  673.479626][    C2]  ? hash_ip4_resize+0x1153/0x1ad0
[  673.481772][    C2]  hash_ip4_resize+0x1168/0x1ad0
[  673.483923][    C2]  ? __pfx_hash_ip4_resize+0x10/0x10
[  673.486168][    C2]  call_ad.constprop.0+0x36d/0x940
[  673.488355][    C2]  ? __pfx_hash_ip4_resize+0x10/0x10
[  673.490613][    C2]  ? __pfx_call_ad.constprop.0+0x10/0x10
[  673.493059][    C2]  ? __pfx___nla_validate_parse+0x10/0x10
[  673.495474][    C2]  ? __nla_parse+0x40/0x60
[  673.497391][    C2]  ip_set_ad.constprop.0.isra.0+0x3ce/0x870
[  673.499931][    C2]  ? __pfx_ip_set_ad.constprop.0.isra.0+0x10/0x10
[  673.502683][    C2]  ? rcu_sync_enter+0x51/0x350
[  673.504756][    C2]  ? find_held_lock+0x2b/0x80
[  673.506752][    C2]  nfnetlink_rcv_msg+0x9fc/0x1200
[  673.508942][    C2]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  673.511236][    C2]  ? __lock_acquire+0x62e/0x1ce0
[  673.513343][    C2]  ? avc_has_perm_noaudit+0x149/0x3b0
[  673.515548][    C2]  netlink_rcv_skb+0x155/0x420
[  673.517538][    C2]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  673.519851][    C2]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  673.521739][    C2]  ? ns_capable+0xd7/0x110
[  673.523137][    C2]  nfnetlink_rcv+0x1b3/0x430
[  673.524634][    C2]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  673.526287][    C2]  ? netlink_deliver_tap+0x1ae/0xd30
[  673.528009][    C2]  netlink_unicast+0x5aa/0x870
[  673.529538][    C2]  ? __pfx_netlink_unicast+0x10/0x10
[  673.531283][    C2]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  673.533525][    C2]  netlink_sendmsg+0x8d1/0xdd0
[  673.535022][    C2]  ? __pfx_netlink_sendmsg+0x10/0x10
[  673.536908][    C2]  ____sys_sendmsg+0xa98/0xc70
[  673.538351][    C2]  ? copy_msghdr_from_user+0x10a/0x160
[  673.539967][    C2]  ? __pfx_____sys_sendmsg+0x10/0x10
[  673.541539][    C2]  ? __pfx_futex_wake_mark+0x10/0x10
[  673.543254][    C2]  ___sys_sendmsg+0x134/0x1d0
[  673.545165][    C2]  ? __pfx____sys_sendmsg+0x10/0x10
[  673.547256][    C2]  __sys_sendmsg+0x16d/0x220
[  673.549203][    C2]  ? __pfx___sys_sendmsg+0x10/0x10
[  673.550902][    C2]  ? __x64_sys_futex+0x1e0/0x4c0
[  673.552427][    C2]  do_syscall_64+0xcd/0x4c0
[  673.553792][    C2]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  673.555615][    C2] RIP: 0033:0x7faa41b8ebe9
[  673.556928][    C2] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  673.562496][    C2] RSP: 002b:00007faa42962038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  673.564909][    C2] RAX: ffffffffffffffda RBX: 00007faa41db5fa0 RCX: 00007faa41b8ebe9
[  673.567498][    C2] RDX: 00000000240008c4 RSI: 0000200000000000 RDI: 0000000000000005
[  673.569866][    C2] RBP: 00007faa41c11e19 R08: 0000000000000000 R09: 0000000000000000
[  673.572235][    C2] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  673.574673][    C2] R13: 00007faa41db6038 R14: 00007faa41db5fa0 R15: 00007ffe18a4ede8
[  673.577699][    C2]  </TASK>
[  673.579719][    C2] Kernel Offset: disabled
[  673.581324][    C2] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:19:14  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080000001 RBX=00000000000000f1 RCX=ffffffff819acda2 RDX=ffff88801fa90000
RSI=ffffffff819acd90 RDI=0000000000000001 RBP=0000000000000001 RSP=ffffc9000078fb90
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=1ffff920000f1f75 R13=0000000000000200 R14=ffff888022b02440 R15=ffffc9000078fc60
RIP=ffffffff81bb8c3b RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d66b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000001000 CR3=0000000033b23000 CR4=00352ef0
DR0=0000000000000000 DR1=00000000e24df2d6 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000010000000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000003000000012 0004000000080024 0000000000280034
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001e51 0000001800000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00080010030fffff ffffffff04000302 0000017500000000 0000000100000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 84000ad403380400 0ad0030e02000ac8 030204000ac4030a 04000ac00300317a
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 797301ffffffffff fffffff5080ab003 0404000aac031204 000aa80300048400
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0aa4030002000aa2 030002000aa00300 08000a9803000800 0a9003088204000a
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8c030c02000a8a03 1202000a88030188 08000a80030a8004 0980030980042003
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0210b88084000af6 030010b08084000a f6030401e0808084 000af4031804000a
ZMM25=42271efe42271efe 42271efe42271efe 42271efe42271efe 42271efe42271efe 42271efe42271efe 42271efe42271efe 42271efe42271efe 42271efe42271efe
ZMM26=aad843b5aad843b5 aad843b5aad843b5 aad843b5aad843b5 aad843b5aad843b5 aad843b5aad843b5 aad843b5aad843b5 aad843b5aad843b5 aad843b5aad843b5
ZMM27=66348a7966348a79 66348a7966348a79 66348a7966348a79 66348a7966348a79 66348a7966348a79 66348a7966348a79 66348a7966348a79 66348a7966348a79
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=1f2300001f230000 1f2300001f230000 1f2300001f230000 1f2300001f230000 1f2300001f230000 1f2300001f230000 1f2300001f230000 1f2300001f230000
info registers vcpu 1

CPU#1
RAX=0000000000f74581 RBX=0000000000000001 RCX=ffffffff8b93bc29 RDX=0000000000000000
RSI=ffffffff8de50328 RDI=ffffffff8c162900 RBP=ffffed1003bd2488 RSP=ffffc90000177df8
R8 =0000000000000001 R9 =ffffed100d4a6655 R10=ffff88806a5332ab R11=0000000000000000
R12=0000000000000001 R13=ffff88801de92440 R14=ffffffff90ab4c90 R15=0000000000000000
RIP=ffffffff8b93a78f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d67b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffcaf6e7bb0 CR3=0000000033b23000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000044402 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbc379876c3 00007fbc379876c3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcaf6e9db0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556d92ed5c 000055556d92ec50
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556d92e814 000055556d92e810
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556d938105 000055556d937f90
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556d937694 000055556d937690
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 616e676973206e77 6f6e6b6e75000a29 7325203a6425206f 6e7272652820000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 444b424c56054b52 4a4b4e4b50000a0c 5600051f4100054a 4b5757400d05000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 04050f800404a4e6 0800010000020806 06013bea00000000 0000000000000030
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e616c7701ffffff ffffffffffdf080f 8003200800061000 2010000602719a01
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 04050f800404a4e6 0800010000020806 06013bea00000000 0000000000000030
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1080040780030780 0408a00300080008 90030fffffffffff ff04088003080fa0
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100002800401 000002080606015d 9a0380080002e003 00100002d0030010
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000007a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85643cf5 RDI=ffffffff9b1110a0 RBP=ffffffff9b111060 RSP=ffffc90000648570
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000007a R14=ffffffff9b111060 R15=ffffffff85643c90
RIP=ffffffff85643d1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007faa429626c0 ffffffff 00c00000
GS =0000 ffff8880d68b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000000b40 CR3=000000003800b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd34d4aef6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd34d4aef6 00007ffd34d4aefc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f38b6012e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f38b6012e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f38b6012e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f38b6012e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f38b6012ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f38b6012fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323d0d085978a70d d5fa427372ec43e8 a3f5f10c2fd24ab4 51834af3152e2399
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 398145b189be9e06 44c5d305a1b7f8e9 1d9c5efd847b0004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0e86614ecd85065d c2b63871083cbd93 6d502408ae1d5023 f4a24a8f98406c2c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000b1ca3f3ed9 c1fb8216bbb30123 b43afb9c8110edf7
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 18ac0516a7cb28d8 246cafaf4593cbb7 27e649029f31e293 a9fdb128cea80e86
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 614ecd85065dc2b6 3871083cbd936d50 2408ae1d5023f4a2 4a8f98406c2c3981
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 45b189be9e0644c5 d305a1b7f8e91d9c 5efd847b4d8a633e 6b53fa68ad046496
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=57b3a045e690f5b2 RBX=ffff88802c72c880 RCX=ffffffff81c3721f RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff8df43922 RBP=ffffffff8b60abd4 RSP=ffffc9000629fa78
R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff90ab4c97 R11=0000000000000000
R12=ffffffff8b60adb0 R13=ffff88802b314100 R14=ffff888027010d80 R15=0000000000000000
RIP=ffffffff8b93c4d0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00002000000000c0 CR3=0000000043783000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff375749a0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff37574b26
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff37574b26 00007fff37574b2c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407612e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407612e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407612e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407612e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407612ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1407612fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000