last executing test programs:

1m50.007565683s ago: executing program 0 (id=197):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$AUDIT_GET(r1, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x20008840)
r3 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000040))
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000004700)={'team0\x00', <r4=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000002c0)=ANY=[@ANYBLOB="a4000000", @ANYRES16=r3, @ANYBLOB="050427bd7000fcdbdf250100000008000100", @ANYRES32=r4, @ANYBLOB="8800028040000100240001006d6f6465000000000000000000000000000000000200000000000000000000000500030005000000100004006c6f616462616c616e63650044000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000110004006163746976656261636b7570"], 0xa4}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)

1m50.006798012s ago: executing program 0 (id=198):
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
fdatasync(r0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f0000000180)={0x7f, 0x0, 0x0, &(0x7f0000000000)=[0x0, 0x0], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0]})
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000001000110f00000000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="04010000000000003000128009000100766c616e00000000200002800c0002001b0000001d00000006000100000000000600050088a8000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x60}}, 0x0)
openat$fb1(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0) (async)
fdatasync(r0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f0000000180)={0x7f, 0x0, 0x0, &(0x7f0000000000)=[0x0, 0x0], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0]}) (async)
socket(0x1, 0x803, 0x0) (async)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) (async)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000001000110f00000000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="04010000000000003000128009000100766c616e00000000200002800c0002001b0000001d00000006000100000000000600050088a8000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x60}}, 0x0) (async)

1m49.861453677s ago: executing program 0 (id=203):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x24, 0x0, 0x300, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x6b4}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x4048005)
sendmsg$NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r2, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r4}, @void}}}, 0x28}, 0x1, 0x6c00}, 0x0)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f000000c000/0x18000)=nil, &(0x7f00000014c0)=[@text64={0x40, &(0x7f0000000b80)="267600410f01b00000000066b88e000f00d066420f3a14ced736430f0164b107b805000000b906dede00000001c1f30f01330f015b75f3b80c000000000000000f23d80f21f83580000000f2406fc44279185abb", 0x54}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

1m49.731200503s ago: executing program 0 (id=207):
r0 = open(&(0x7f0000000000)='./file0\x00', 0xc0900, 0x38)
mount(&(0x7f00000004c0)=@sr0, &(0x7f0000000500)='./file0\x00', 0x0, 0x1000, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
lseek(r1, 0x3c10, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
link(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000200)={0x28, 0x3, 0x8, 0x101, 0x0, 0x0, {0x5}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0xffffffffffffffff}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x48a91bda}]}]}, 0x28}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f00000007c0)=@delqdisc={0x1f8, 0x25, 0x10, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xfff1, 0x5}, {0x9, 0xe}, {0x9, 0x3}}, [@qdisc_kind_options=@q_mq={0x7}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x4759}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x400}, @TCA_STAB={0x7c, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x5, 0x0, 0x8, 0x0, 0x2, 0x40, 0x80000000, 0x5}}, {0xe, 0x2, [0x1, 0xb05, 0x7, 0xffff, 0x4]}}, {{0x1c, 0x1, {0xfc, 0xa, 0x1, 0x101, 0x1, 0x0, 0x4, 0x1}}, {0x6, 0x2, [0x4]}}, {{0x1c, 0x1, {0x6, 0x2, 0x6, 0xe, 0x2, 0x9, 0x7, 0x4}}, {0xc, 0x2, [0xb, 0x0, 0x3, 0x5]}}]}, @TCA_STAB={0x84, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x4, 0x8, 0x10, 0x0, 0x1, 0xae, 0xbd, 0x1}}, {0x6, 0x2, [0xa]}}, {{0x1c, 0x1, {0x0, 0x4, 0x3, 0x0, 0x0, 0x9, 0x8, 0x7}}, {0x12, 0x2, [0x7, 0x406, 0xfff, 0x401, 0x100, 0x3ff8, 0x9]}}, {{0x1c, 0x1, {0x6, 0x0, 0x1ff, 0xfffffffa, 0x2, 0x400, 0x3, 0x5}}, {0xe, 0x2, [0xcf, 0x5, 0xfff6, 0xc, 0x5]}}]}, @TCA_STAB={0x58, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0x9, 0x3, 0x6, 0x2, 0x10001, 0x74, 0x5}}, {0xe, 0x2, [0x2f, 0xd, 0x3ff, 0xb19f, 0x40]}}, {{0x1c, 0x1, {0x60, 0x0, 0x5, 0xb500, 0x1, 0x7, 0x0, 0x3}}, {0xa, 0x2, [0x81, 0x1, 0x9]}}]}, @TCA_RATE={0x6, 0x5, {0x6, 0xce}}, @TCA_RATE={0x6, 0x5, {0x6, 0xe}}, @TCA_STAB={0x34, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x2, 0x7, 0xfff7, 0x5, 0x0, 0x9, 0x5, 0x7}}, {0x12, 0x2, [0x0, 0x1, 0x0, 0x5, 0x3, 0x7, 0xca]}}]}, @qdisc_kind_options=@q_rr={{0x7}, {0x18, 0x2, {0x1, "2c18206ddf661066d47762d37b03a2c7"}}}]}, 0x1f8}, 0x1, 0x0, 0x0, 0x10}, 0x80)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r4, 0x3ba0, &(0x7f0000000400)={0x48, 0x5, 0x0, 0x0, 0xffffffffffffffff, 0x1})
mount$fuse(0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000002100), 0x400, &(0x7f0000000c80)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',default_permissions,\x00'])
execveat(r0, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), &(0x7f0000000c00)={[&(0x7f0000000480)='/dev/iommu\x00', &(0x7f00000009c0)='\x00', &(0x7f0000000a00)='\x00', &(0x7f0000000a40)='rootmode', &(0x7f0000000a80)='{[,!\x00', &(0x7f0000000ac0)='(.:/*\x00', &(0x7f0000000b00)='#[\x0f.\x00', &(0x7f0000000b40)='rootmode', &(0x7f0000000b80)='\\(\x00', &(0x7f0000000bc0)='/%&}]\xc9-\x00']}, 0x400)
ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000580)={0x1, 0x0, @pic={0x3f, 0x5, 0x3, 0x8, 0x5, 0x8, 0x9, 0x2, 0x1, 0x3, 0x6, 0x6, 0xff, 0x8, 0x4, 0x2}})

1m49.658815643s ago: executing program 0 (id=208):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r2, 0x10e, 0xc, &(0x7f0000000040)=0x8, 0x4)
sendmsg$nl_route(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="28000000120001ff83bd9ee7e1ee070000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00', @ANYRES32=r1], 0x28}}, 0x802)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000001, 0x13, r0, 0xedaa7000)

1m49.65704111s ago: executing program 0 (id=210):
r0 = gettid()
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x7, 0x4, @tid=r0}, &(0x7f0000044000))
r1 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x101000)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91da1af1ea89de2b7fb0a0102000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x6, 0x7f]}})
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000480)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xd, 0x8, &(0x7f0000000140)=@framed={{0x18, 0x9}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x90}}]}, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000000)={{{@in6, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@initdev}, 0x0, @in6=@mcast2}}, &(0x7f0000000100)=0xe8)
ioctl$DRM_IOCTL_GET_CLIENT(r2, 0xc0286405, &(0x7f0000000140)={0xc2, 0xe7f, {r0}, {r4}, 0x4, 0x1})
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
timer_settime(0x0, 0xe54aef35e9c2845d, &(0x7f000006b000)={{0x77359400}, {0x0, 0x9}}, 0x0)
syz_emit_ethernet(0x3b6, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0)

1m34.628244687s ago: executing program 32 (id=210):
r0 = gettid()
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x7, 0x4, @tid=r0}, &(0x7f0000044000))
r1 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x101000)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91da1af1ea89de2b7fb0a0102000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x6, 0x7f]}})
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000480)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xd, 0x8, &(0x7f0000000140)=@framed={{0x18, 0x9}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x90}}]}, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000000)={{{@in6, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@initdev}, 0x0, @in6=@mcast2}}, &(0x7f0000000100)=0xe8)
ioctl$DRM_IOCTL_GET_CLIENT(r2, 0xc0286405, &(0x7f0000000140)={0xc2, 0xe7f, {r0}, {r4}, 0x4, 0x1})
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
timer_settime(0x0, 0xe54aef35e9c2845d, &(0x7f000006b000)={{0x77359400}, {0x0, 0x9}}, 0x0)
syz_emit_ethernet(0x3b6, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0)

1m30.954570405s ago: executing program 3 (id=489):
r0 = syz_open_dev$dri(0x0, 0x1ff, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x40100001, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f0000000300)={r2, <r3=>0x0, <r4=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000580)={&(0x7f0000000380)=[0x0], 0x1, r3, r4, 0x3, 0x240, 0xffffffff, 0x801, {0xac7c, 0x1, 0x3, 0x69, 0xf4b, 0x1, 0x2, 0x5, 0x412f, 0xe154, 0x1000, 0x5, 0x21, 0x7fff, "fe0300003413000000000000000caa000000090000000000000004b427180010"}})

1m30.871018605s ago: executing program 3 (id=490):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x800040, &(0x7f0000000200)=ANY=[@ANYBLOB="7472616e733d76697274696f2c6e6f78617474722c756e616d653d5e2c6e6f657874656e642c64656275671d3078303030303030303030303030303030362c6163636573733d757365722c63616368653d6c6f6f73652c6163636573733d757365722c76657273696f6e3d3970323030302e4c"])
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x141040, 0x42)
mount(&(0x7f0000000000)=@sr0, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000300)='qnx6\x00', 0x100088f, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r0, 0x10001, 0x0)

1m30.818535967s ago: executing program 3 (id=492):
r0 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$SCSI_IOCTL_DOORUNLOCK(r0, 0x5381)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
fgetxattr(r1, &(0x7f0000000240)=@known='com.apple.system.Security\x00', &(0x7f0000000380)=""/103, 0x67)
r2 = syz_open_dev$midi(&(0x7f0000000200), 0x20000000bb, 0x202c00)
writev(r2, &(0x7f0000000640)=[{&(0x7f0000000780)="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", 0xff0}, {&(0x7f0000001780)="40f68b310a15dc6d31a73735425255a352", 0x11}], 0x2)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095", @ANYRESOCT=0x0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x50, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), r1)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r7}]}, 0x44}, 0x1, 0x0, 0x0, 0x600}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x409, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r10, 0x800, 0x1}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0xc, 0x5, 0x0, 0x1, [@IFLA_BRPORT_PROXYARP={0x5, 0xa, 0x1}]}}}]}, 0x44}}, 0x0)
getsockopt$PNPIPE_IFINDEX(r1, 0x113, 0x2, &(0x7f0000000480)=<r11=>0x0, &(0x7f00000004c0)=0x4)
sendmsg$ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80200000}, 0xc, &(0x7f0000000500)={&(0x7f00000017c0)={0x108, r4, 0x20, 0x70bd29, 0x25dfdbfe, {}, [@HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x40}, 0x0)
write$tun(r1, &(0x7f0000000c00)={@void, @void, @mpls={[{0xffff, 0x0, 0x1}, {0x26, 0x0, 0x1}], @ipv6=@generic={0x9, 0x6, "8be56b", 0x0, 0x62, 0x1, @ipv4={'\x00', '\xff\xff', @multicast1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)
getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @remote, <r12=>0x0}, &(0x7f0000000180)=0xc)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r3, r12, 0x30, 0x10, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000011000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r13 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x4, &(0x7f00000002c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x4}, [@func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}]}, &(0x7f00000001c0)='syzkaller\x00', 0xe, 0x0, 0x0, 0x41000, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000440)={0x1, 0xa, 0x67, 0x5}, 0x10, 0x0, 0x0, 0x4, &(0x7f00000004c0)=[0xffffffffffffffff], &(0x7f0000000500)=[{0x3, 0x1, 0x2, 0x1}, {0x3, 0x2, 0x10, 0xa}, {0x4, 0x3, 0xd, 0x4}, {0x2, 0x2, 0x10, 0x9}], 0x10, 0x748a3c0f, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000180)='objagg_obj_parent_unassign\x00', r13, 0x0, 0x8}, 0x18)
syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)
r14 = syz_open_procfs(0x0, 0x0)
fchdir(r14)
syz_usb_disconnect(0xffffffffffffffff)

1m29.979651524s ago: executing program 3 (id=497):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x6, 0x105000)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000001c0)={<r1=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000200)) (async)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000200)={<r2=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000240)={<r3=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000280)={<r4=>0x0})
r5 = syz_open_dev$dri(&(0x7f0000000000), 0x2, 0x2000)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r5, 0xc00864bf, &(0x7f0000000200)={<r6=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_QUERY(r5, 0xc01864cb, &(0x7f0000000100)={&(0x7f0000000040)=[r6], &(0x7f0000000080), 0x1, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000002c0)={<r7=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_SIGNAL(r0, 0xc01064c5, &(0x7f0000000340)={&(0x7f0000000300)=[r1, r2, r3, r4, r6, r7, 0x0, 0x0], 0x8})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) (async)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r9 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r9, 0x6, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000680), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) (async)
mount$9p_virtio(&(0x7f0000000680), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00') (async)
chdir(&(0x7f0000000100)='./file0\x00')
r10 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x1ff)
close(r10)
r11 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r11, 0x29, 0x3a, &(0x7f00000000c0)=0x2, 0x4)
fcntl$dupfd(r11, 0x406, r9)
r12 = fsmount(r9, 0x0, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r11, 0x29, 0x2a, &(0x7f0000000100)={0x7, {{0xa, 0x4e22, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x32f4}}}, 0x88) (async)
setsockopt$inet6_MCAST_JOIN_GROUP(r11, 0x29, 0x2a, &(0x7f0000000100)={0x7, {{0xa, 0x4e22, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x32f4}}}, 0x88)
prlimit64(0x0, 0x7, &(0x7f00000000c0), 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={r8, r12, 0x0, 0x0, @void}, 0x10) (async)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={r8, r12, 0x0, 0x0, @void}, 0x10)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bdb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='&\x00') (async)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bdb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='&\x00')
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

1m29.891359031s ago: executing program 3 (id=500):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000000)="f7790066baa00066b86b42b8010000000f01c1f9ba4282b805000000b9000000000f01c166ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000001c0088c64059c6405921820f47a753fd", 0xfffffffffffffe84}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000980)=[@text32={0x20, 0x0}], 0x1, 0x79, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

1m29.364543202s ago: executing program 3 (id=522):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000001"], 0x38}}, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000500)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x0, 0x1, 0x406}}}, 0x7)
r2 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000002c0)={'veth1_to_batadv\x00', &(0x7f0000000000)=@ethtool_cmd={0x4c, 0xb, 0x76e, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x3f}})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000ffb000/0x3000)=nil, 0x3000}, 0x1})
r3 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_QBUF(r3, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "8000"}, 0x0, 0x2, {}, 0x20800})

1m29.287638835s ago: executing program 33 (id=522):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000001"], 0x38}}, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000500)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x0, 0x1, 0x406}}}, 0x7)
r2 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000002c0)={'veth1_to_batadv\x00', &(0x7f0000000000)=@ethtool_cmd={0x4c, 0xb, 0x76e, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x3f}})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000ffb000/0x3000)=nil, 0x3000}, 0x1})
r3 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_QBUF(r3, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "8000"}, 0x0, 0x2, {}, 0x20800})

53.179483208s ago: executing program 4 (id=1204):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @ipv4={'\x00', '\xff\xff', @loopback}, 0x3}, 0x1c)
setsockopt$inet6_tcp_int(r2, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000000200001"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4008854)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha1\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$bind(&(0x7f0000000100)='\x00', &(0x7f0000000600)='./file0/file1/../file0\x00', &(0x7f0000000580), 0x41000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000240), 0x0, 0x0)
r5 = landlock_create_ruleset(&(0x7f00000002c0), 0x18, 0x0)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
landlock_restrict_self(r5, 0x0)
mount$tmpfs(0x0, &(0x7f0000000300)='./file0/file1\x00', &(0x7f0000000340), 0x0, 0x0)
umount2(&(0x7f0000000140)='./file0/file0\x00', 0x0)
move_mount(0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file0\x00', 0xffffffffffffff9c, &(0x7f0000000400)='./file0/file0\x00', 0x0)
mount$bind(&(0x7f0000000440)='./file0/file1\x00', &(0x7f0000000480)='./file0/file1\x00', &(0x7f00000004c0), 0x21, 0x0)
pivot_root(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='./file0/file0\x00')
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYRES16=r1, @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf253b0000000c009900060000006c000000400033000014ee0008021100000108021100000015721069b835240024116d0a000001002d1a0080180200000000000000040009000000000000030b0100000f"], 0x60}, 0x1, 0x0, 0x0, 0x840}, 0x90)
r6 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace(0x4211, r6)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha20-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f00000005c0)="4d0008fbffffffffffffff3dcd2a6a370501375a008c4bbdae14b7227bc444847085ca", 0x15)

53.110972829s ago: executing program 4 (id=1205):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0xffffffff, 0x0, 0x7, "ff00"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x13)
syz_emit_ethernet(0x2a, &(0x7f0000000040)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}, @void, {@arp={0x806, @generic={0x304, 0x6005, 0x6, 0x4, 0x3, @broadcast, "ab7309fd", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x41}, "785321db"}}}}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r3, &(0x7f0000000300)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
close_range(r2, 0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x4, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0xf, &(0x7f0000000000)=0x20, 0x4)
setsockopt$sock_attach_bpf(r5, 0x1, 0x34, &(0x7f00000000c0)=r4, 0x4)
listen(r5, 0x0)
close(r5)
setsockopt(0xffffffffffffffff, 0x84, 0x81, 0x0, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000000000008000008000b0000000800030003806a40610e9da0ff9d400fd75f3da2b72b480be8f925670e640fe5060a8f7a70850f11e3e8d3f59b53b879ecd0b544fc8a10d968f78c5509365fccaf979db2b3ecef87d4f5368f67ee8439bb63edefc22f78d5582ff8bca6db6c9b85e4b11fc9db03e0092388421d23c8be9140b2b49ac29f8a91cffec1c1425a742286c7f9fd8b0738293dee3cc0342747861ddcba08e55bcc211e1cf1b61a571721bb8d61fc67d9c798527154d6a277ecf32060abad29fc82f73cb2647d2960633e64b35fdaac77c16fde32880d7b50f6a4608a1817348e2209ff41244ac6c166c73c72da6ba833084abab739aa5d920c11", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x0)
ioctl$sock_SIOCBRDELBR(r6, 0x89a2, &(0x7f0000000000)='bridge0\x00')
syz_emit_ethernet(0x2a, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0))
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000200)={0xfffe, 0x80, 0xe000, 0x20b3, 0x17, "792b0000fcff00"})
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000140)=0x4)
getsockopt$EBT_SO_GET_ENTRIES(r5, 0x0, 0x81, &(0x7f0000000280)={'broute\x00', 0x0, 0x4, 0xac, [0x2, 0x4, 0x2, 0x2, 0x1, 0x5], 0x2, &(0x7f0000000240)=[{}, {}], &(0x7f0000000680)=""/172}, &(0x7f00000004c0)=0x78)

52.860392962s ago: executing program 4 (id=1206):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000280), 0x8, &(0x7f0000000080)={[{@mode={'mode', 0x3d, 0x8000000000000000}}]})

52.859970408s ago: executing program 4 (id=1207):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88) (async)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001300)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {0x0, 0xb1}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{0x60}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590) (async)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001300)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {0x0, 0xb1}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{0x60}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010400000000000000000100000008000240000000020900010073797a300000000014000000110001"], 0x50}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000009006000000000000000000000a44000000090a050600000000000000000100000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001405000d404600000014000000110001"], 0x6c}}, 0x0)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000000a0a0101"], 0x14}}, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x80)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000004c0)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) (async)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000004c0)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r2 = open(&(0x7f0000000040)='./bus\x00', 0x400, 0x43)
socket$nl_route(0x10, 0x3, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3) (async)
ptrace(0x10, r3)
ptrace$pokeuser(0x6, r3, 0x358, 0xffffffff8dcfbd00)
mknodat$loop(r2, &(0x7f00000002c0)='./file1\x00', 0x2000, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r2, 0x4018aee3, &(0x7f0000000140)=@attr_set_pmu={0x0, 0x1, 0x1, &(0x7f0000000100)=0x4})

52.771015849s ago: executing program 4 (id=1208):
r0 = fanotify_init(0x0, 0x0)
fsopen(&(0x7f0000000100)='udf\x00', 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xa, 0x4}, 0x20)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="010000000000000000000900000030000380"], 0x44}}, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x1}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
write$binfmt_elf64(r0, &(0x7f00000006c0)=ANY=[@ANYBLOB="7f454c4622"], 0x18)

52.607242178s ago: executing program 4 (id=1209):
fsopen(0x0, 0x0)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
lchown(&(0x7f0000000300)='./file0\x00', 0x0, 0x0)
r4 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40088a01, &(0x7f0000000000)=0x8000)
r5 = socket(0x10, 0x803, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000040))
read$FUSE(r0, &(0x7f0000003440)={0x2020}, 0x2020)

52.584552361s ago: executing program 34 (id=1209):
fsopen(0x0, 0x0)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
lchown(&(0x7f0000000300)='./file0\x00', 0x0, 0x0)
r4 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40088a01, &(0x7f0000000000)=0x8000)
r5 = socket(0x10, 0x803, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000040))
read$FUSE(r0, &(0x7f0000003440)={0x2020}, 0x2020)

39.590825847s ago: executing program 1 (id=1451):
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x13, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006c000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000003900000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x64, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

39.590586693s ago: executing program 1 (id=1452):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="1400000016000b63d25a80648c2594f911240685", 0x14}], 0x1}, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x336, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='cdg\x00', 0x4)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0xfffffd9d)
sendfile(r2, r3, 0x0, 0x8000002b)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)={0x1b, 0x0, 0x0, 0x2040000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0xc0145401, &(0x7f0000000100)={0x2, 0x1, 0x0, 0x0, 0xfffffff7})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="4000000010004b0400000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000200012800b0001006272696467650000100002800c00210080000000c8"], 0x40}, 0x1, 0x0, 0x0, 0x34041043}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000540)=ANY=[], 0x50}}, 0x4008840)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x19, &(0x7f0000000140)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x8c5b}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @exit, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6f2a8502}, @initr0={0x18, 0x0, 0x0, 0x0, 0x2585, 0x0, 0x0, 0x0, 0x4}, @cb_func={0x18, 0x0, 0x4, 0x0, 0x2}, @cb_func={0x18, 0x4, 0x4, 0x0, 0xfffffffffffffffb}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}}}, &(0x7f00000002c0)='syzkaller\x00', 0x4, 0xee, &(0x7f0000000300)=""/238, 0x40f00, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000000440)={0x1, 0xa, 0x8003, 0x7}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000480)=[r1, r4, r4], &(0x7f00000004c0)=[{0x4, 0x2, 0x5, 0x8da946701c6dd89}, {0x1, 0x2, 0xb, 0x1}, {0x2, 0x4, 0xb, 0x9}], 0x10, 0x10001, @void, @value}, 0x94)
r7 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_TRY_FMT(r7, 0xc0d05640, &(0x7f00000000c0)={0xa, @pix={0x0, 0x0, 0x34565348, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}})
r8 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
fremovexattr(r8, &(0x7f0000000100)=@known='security.selinux\x00')
r9 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r10=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r9, &(0x7f0000000180)={0x7, 0x8, 0xfa00, {r10, 0x8000}}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000700)=0xffffffffffffffff, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000000c0)='btrfs_space_reservation\x00', r6, 0x0, 0x518}, 0x18)
r11 = openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.pending_reads\x00', 0x8040, 0x2)
ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x1)

39.298865505s ago: executing program 1 (id=1455):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x38e340, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340), &(0x7f0000000340), 0x2931890e, r2}, 0x33)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x8, 0x0, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x10, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$fuseblk(&(0x7f0000002440), &(0x7f0000002480)='./file0\x00', &(0x7f0000000140), 0x4000, &(0x7f0000002240)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x2000}})
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1200"], 0x48)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x9, 0x7, 0x1, 0x4, 0x2, 0x1, 0x1, 0xfe, 0x9, 0x0, 0x0, 0x2, 0x7, 0xff, 0xd, 0x5}})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x0, 0x180, 0x100, 0x0, 0xf1, 0x9, 0x8000000000000, 0x5, 0x0, 0x6, 0x0, 0x0, 0x0, 0xbd9], 0x1, 0x3c4210})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x3, 0x0, 0x0)
r8 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r9, &(0x7f0000000740)={0x1f, @none}, 0x8)
listen(r9, 0x0)
accept4(r9, 0x0, 0x0, 0x80800)
syz_kvm_setup_cpu$x86(r6, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000980)=[@text64={0x40, &(0x7f0000000080)="b9800000c00f3235002000000f30c7442400e1000000c744240205000000ff2c24430f01d1c48379dfc00cc744240000000080c7442402ac000000c7442406000000000f01142466b82e008ec8470f0966b847000f00d0b989010000b8aae50000ba000000000f30134f00", 0x6b}], 0x1, 0x5a, 0x0, 0x51)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

38.239616332s ago: executing program 1 (id=1462):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000280)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0) (async)
setpgid(r0, 0x0)
setpgid(0x0, r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="0a00000000100000fd03000001"], 0x48)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000001c0)=@generic={&(0x7f00000000c0)='./file0/file0\x00', r1}, 0x18) (async)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000001c0)=@generic={&(0x7f00000000c0)='./file0/file0\x00', r1}, 0x18)
r2 = creat(&(0x7f0000000700)='./file0\x00', 0x8)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x8a00)
r4 = socket(0x2, 0x3, 0xff)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
r5 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$F2FS_IOC_GET_PIN_FILE(r6, 0x8004f50e, 0x0)
ioctl$SIOCX25SFACILITIES(r6, 0x89e3, &(0x7f0000000540)={0x71, 0x7, 0x8, 0x5, 0x8000})
ioctl$CDROMVOLCTRL(r5, 0x80081270, &(0x7f0000000000)={0xb, 0x2, 0x2, 0x9}) (async)
ioctl$CDROMVOLCTRL(r5, 0x80081270, &(0x7f0000000000)={0xb, 0x2, 0x2, 0x9})
lsetxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000200), &(0x7f0000000240), 0x2, 0x2) (async)
lsetxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000200), &(0x7f0000000240), 0x2, 0x2)
connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1, {r1}}, './file0\x00'})
sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[], 0x18}}, 0x4020) (async)
sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[], 0x18}}, 0x4020)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r3, 0xc0f85403, &(0x7f0000000780)={{0xffffffffffffffff, 0x2, 0x3, 0x3, 0x401}, 0x6, 0x0, 'id1\x00', 'timer1\x00', 0x0, 0x9, 0x100000000000416, 0x100000001, 0x2}) (async)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r3, 0xc0f85403, &(0x7f0000000780)={{0xffffffffffffffff, 0x2, 0x3, 0x3, 0x401}, 0x6, 0x0, 'id1\x00', 'timer1\x00', 0x0, 0x9, 0x100000000000416, 0x100000001, 0x2})

38.065744739s ago: executing program 1 (id=1469):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x49920d862a92153b, 0x3, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2084}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_USE_CARRIER={0x5, 0x6, 0x1}]}}}]}, 0x3c}}, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)={0x80, 0x44, 0x7}, 0x18)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000580)={'wlan1\x00', <r4=>0x0})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000001040)=ANY=[@ANYBLOB="8401000010001307000000003d000000fe880000000000000000000000000101fe8000000000000000000000000000bb4000"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x184}, 0x1, 0x0, 0x0, 0x20000015}, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r7 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r5, &(0x7f0000000240)=ANY=[@ANYBLOB="034886dd010000000000140000006000000001002f00fe88a43de1a400000000000000007d01ff020000000000000000000000000001000088be"], 0xfdef)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)=ANY=[@ANYBLOB="28ae1d23", @ANYRES16=r1, @ANYBLOB="010028bd7000fddbdf253800000008000300", @ANYRES32=r4, @ANYBLOB='\f\x00X\x00T\x00\x00\x00\x00\x00\x00\x00'], 0x28}, 0x1, 0x0, 0x0, 0x40800}, 0x8000)

37.590496086s ago: executing program 1 (id=1480):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f0000000000)=ANY=[@ANYBLOB="00020201"], 0x18)
setresuid(0x0, 0xee00, 0x0)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000480), 0x4)
recvmmsg(r0, &(0x7f0000002900)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000400)=""/79, 0x4f}], 0x1, &(0x7f0000000740)=""/210, 0xd2}, 0x3}], 0x1, 0x0, 0x0)
sendmsg$tipc(r0, &(0x7f0000000200)={&(0x7f0000000c00)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x4}}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000380)='[', 0x101d0}], 0x1}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@newtaction={0x44, 0x30, 0x10b, 0x0, 0x0, {}, [{0x30, 0x1, [@m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4, 0x21}, {0x4}, {0xc}, {0xc}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x44800}, 0x0)
splice(r0, &(0x7f0000000080)=0x376, r0, &(0x7f00000000c0)=0x9, 0xa, 0x2)
socket(0x1e, 0x4, 0x0) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f0000000000)=ANY=[@ANYBLOB="00020201"], 0x18) (async)
setresuid(0x0, 0xee00, 0x0) (async)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff) (async)
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000480), 0x4) (async)
recvmmsg(r0, &(0x7f0000002900)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000400)=""/79, 0x4f}], 0x1, &(0x7f0000000740)=""/210, 0xd2}, 0x3}], 0x1, 0x0, 0x0) (async)
sendmsg$tipc(r0, &(0x7f0000000200)={&(0x7f0000000c00)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x4}}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000380)='[', 0x101d0}], 0x1}, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@newtaction={0x44, 0x30, 0x10b, 0x0, 0x0, {}, [{0x30, 0x1, [@m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4, 0x21}, {0x4}, {0xc}, {0xc}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x44800}, 0x0) (async)
splice(r0, &(0x7f0000000080)=0x376, r0, &(0x7f00000000c0)=0x9, 0xa, 0x2) (async)

37.512057763s ago: executing program 35 (id=1480):
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f0000000000)=ANY=[@ANYBLOB="00020201"], 0x18)
setresuid(0x0, 0xee00, 0x0)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000480), 0x4)
recvmmsg(r0, &(0x7f0000002900)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000400)=""/79, 0x4f}], 0x1, &(0x7f0000000740)=""/210, 0xd2}, 0x3}], 0x1, 0x0, 0x0)
sendmsg$tipc(r0, &(0x7f0000000200)={&(0x7f0000000c00)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x4}}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000380)='[', 0x101d0}], 0x1}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@newtaction={0x44, 0x30, 0x10b, 0x0, 0x0, {}, [{0x30, 0x1, [@m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4, 0x21}, {0x4}, {0xc}, {0xc}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x44800}, 0x0)
splice(r0, &(0x7f0000000080)=0x376, r0, &(0x7f00000000c0)=0x9, 0xa, 0x2)
socket(0x1e, 0x4, 0x0) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f0000000000)=ANY=[@ANYBLOB="00020201"], 0x18) (async)
setresuid(0x0, 0xee00, 0x0) (async)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff) (async)
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000480), 0x4) (async)
recvmmsg(r0, &(0x7f0000002900)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000400)=""/79, 0x4f}], 0x1, &(0x7f0000000740)=""/210, 0xd2}, 0x3}], 0x1, 0x0, 0x0) (async)
sendmsg$tipc(r0, &(0x7f0000000200)={&(0x7f0000000c00)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x4}}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000380)='[', 0x101d0}], 0x1}, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@newtaction={0x44, 0x30, 0x10b, 0x0, 0x0, {}, [{0x30, 0x1, [@m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4, 0x21}, {0x4}, {0xc}, {0xc}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x44800}, 0x0) (async)
splice(r0, &(0x7f0000000080)=0x376, r0, &(0x7f00000000c0)=0x9, 0xa, 0x2) (async)

2.746892116s ago: executing program 6 (id=1991):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="450a000000ff03ffc311a400100100001800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_ifreq(r0, 0x1c, &(0x7f0000000100)={'caif0\x00', @ifru_flags=0x8000})
syz_io_uring_setup(0x5ced, &(0x7f00000009c0)={0x0, 0xea58, 0x400, 0x0, 0x85}, &(0x7f00000002c0)=<r1=>0x0, &(0x7f00000003c0))
syz_io_uring_submit(r1, 0x0, &(0x7f0000000a40)=@IORING_OP_NOP={0x0, 0x20})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffa)
r4 = add_key$keyring(&(0x7f0000000240), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, r3)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@ipv4_newrule={0x1c, 0x20, 0x301, 0x70bd26, 0x0, {0x2, 0x0, 0x0, 0xa6, 0x0, 0x0, 0x0, 0x0, 0x10008}}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140), r6)
sendmsg$NLBL_CALIPSO_C_ADD(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x24, r7, 0x1, 0x70bd29, 0xa5dfdbfd, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x24000801}, 0x4040054)
add_key(&(0x7f0000000440)='asymmetric\x00', 0x0, &(0x7f0000000000)="30800201", 0x1001, r4)
add_key(&(0x7f0000000480)='rxrpc_s\x00', &(0x7f00000004c0)={'syz', 0x2}, 0x0, 0x0, r3)
socket(0x1f, 0x800, 0x3)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x58)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r8, 0x117, 0x6, 0x0, 0x5)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000a80)=ANY=[@ANYBLOB="6405000065df6cab0ed07aecfe8a96330ea87c0db5b3a8feae347ca1aedb547c16957764ce23b9b728ceb58f50fd4ca4837b95ba0eb8e5f58a1d48ff176cf09b2192a8e3483ac1822310fc25c05bf678920e4ed9e95f928916fe81d84db55acd56bf4ee857ced5ea9e4b97300aa9ab49f93d3061f5ec74f7354db000826e898c8eb8850a8ae3e13ce47a55e9d1dc3736", @ANYRES16=r2, @ANYBLOB="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"], 0x564}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r9, 0x0, 0xc, &(0x7f00000000c0)="e0", 0x1)
getsockopt$inet_opts(r9, 0x0, 0x9, &(0x7f0000000000)=""/19, &(0x7f0000000040)=0x13)
r10 = socket$igmp(0x2, 0x3, 0x2)
sendmsg$inet(r10, &(0x7f0000000380)={&(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="14000000000000000000000034"], 0x18}, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)

2.649310044s ago: executing program 6 (id=1992):
r0 = inotify_init1(0x800)
inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0xc0000484)
r1 = syz_open_dev$vbi(&(0x7f00000000c0), 0x3, 0x2)
ioctl$VIDIOC_G_STD(r1, 0x80085617, &(0x7f0000000000))

2.648999022s ago: executing program 6 (id=1993):
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000}) (async)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000})
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_buf(r1, 0x6, 0x1f, 0x0, 0x0)
setsockopt$sock_int(r1, 0x1, 0x1, &(0x7f0000000300)=0x101, 0x4)
r2 = syz_open_dev$usbfs(&(0x7f0000002000), 0xd, 0x20041)
ioctl$USBDEVFS_REAPURB(r2, 0x4008550c, &(0x7f0000000040))
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000000)={0x80, 0x0, 0x0, 0x0, 0x2}, 0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8) (async)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x3, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0xc}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f00000000c0)={0x5, 0xffffffff, 0x1, 0xa, 0x1, 0x0}) (async)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f00000000c0)={0x5, 0xffffffff, 0x1, 0xa, 0x1, 0x0})

2.489862656s ago: executing program 6 (id=1996):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000000)="0f4c30b800038ed8f30f230ebaf80c66b8dc4ad18066efbafc0cb80100efb800028ec86767650f00954626000066b91502000066b8172bffff66baffffffff0f30f083a5640000640f64430e66b9b70000400f32", 0x54}], 0x1, 0x18, &(0x7f00000000c0)=[@dstype0={0x6, 0xb}], 0x1)
ioctl$KVM_CAP_X86_NOTIFY_VMEXIT(r0, 0x4068aea3, &(0x7f0000000100)={0xdb, 0x0, 0x2})
r1 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000240)={0x0, &(0x7f0000000180)=[@uexit={0x0, 0x18, 0x9}, @uexit={0x0, 0x18, 0x3}, @code={0x1, 0x72, {"48b87c000000000000000f23c80f21f8350800e0000f23f843a6f3400f09c744240000000000c7442402dcb20000c7442406000000000f011c24470f9b542ee6e700c744240062000000c74424020f000000ff2c243e430f300f237bc4c1fc5a3e"}}, @uexit={0x0, 0x18}], 0xba})
ioctl$KVM_NMI(r1, 0xae9a)
fallocate(r1, 0x10, 0xfff, 0xedce)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000280), r2)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r2)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r2, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4010d880}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x14, r3, 0x300, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x1000)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r4, 0x4008941a, &(0x7f0000000440)=0x2)
r5 = userfaultfd(0x0)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000480)={0xaa, 0x40})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000004c0), 0x440000, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x8914, &(0x7f0000000500)={'ip_vti0\x00', 0x400})
socket$inet_mptcp(0x2, 0x1, 0x106)
pipe2(&(0x7f0000000540)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x4080)
ioctl$KVM_NMI(r1, 0xae9a)
r9 = syz_open_dev$vcsn(&(0x7f0000000580), 0x6c, 0x400000)
ioctl$KVM_IRQFD(r8, 0x4020ae76, &(0x7f00000005c0)={r8, 0x79af, 0x1, r9})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000600))
r10 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000640), 0x4c00, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r7, 0xc06864a1, &(0x7f00000006c0)={&(0x7f0000000680)=[0x0], 0x1, 0x0, <r11=>0x0})
ioctl$DRM_IOCTL_MODE_ADDFB(r10, 0xc01c64ae, &(0x7f0000000740)={r11, 0x3, 0x1ff, 0x2, 0x10001, 0x7, 0x30})
r12 = syz_genetlink_get_family_id$tipc2(&(0x7f00000007c0), r6)
sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f00000008c0)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x44, r12, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x5}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x22000000}, 0x8850)

2.489456682s ago: executing program 6 (id=1997):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000900)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb01001800000000000000200000002000000002000000000000000100000d020000000000000000000000000000000000000e"], 0x0, 0x3a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYRESDEC=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='W', 0x1, 0x7ffffffe)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
connect$tipc(0xffffffffffffffff, &(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x2, {0x40, 0x1}}, 0x10)
bind$bt_hci(r4, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r4, &(0x7f0000000000), 0xd)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000000)={0x3, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x6, @ipv4={'\x00', '\xff\xff', @local}}}}, 0x108)
getsockopt$inet6_buf(r5, 0x29, 0x30, &(0x7f0000000000)=""/40, &(0x7f0000001000)=0xf9)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x234000, 0x1000, 0x0, 0x4}, 0x20)

2.40031851s ago: executing program 6 (id=1998):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x11, 0x800000003, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x62, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3, 0x0, 0xc7f}, 0x18)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000600)={'team0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000001700)=@newqdisc={0x38, 0x24, 0xf0b, 0x80000000, 0x0, {0x0, 0x0, 0x12, r4, {}, {0xffff, 0xffff}, {0x0, 0x6}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x8, 0x5}}}]}, 0x38}}, 0x44040)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r1)
r5 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xffffff02, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020022003505d25a806f8c6394f90235fc60040011000a7401002a3582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000000)={'wg1\x00'})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r6=>r0, {0x4}}, './file0\x00'})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000080)=0xf)
syz_usb_connect$hid(0x2, 0x36, 0x0, 0x0)
ioctl$TCFLSH(r7, 0x400455c8, 0x1)
ioctl$TIOCVHANGUP(r7, 0x5437, 0x0)
r8 = fanotify_init(0x8, 0x2)
fanotify_mark(r8, 0x2, 0x28, r6, &(0x7f0000000140)='./file0\x00')
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r9, 0x8b1a, &(0x7f0000000040))
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f0000000100)={0xfffffff7, 0x4, 0x2, 0x0, 0xf6})
setsockopt$RXRPC_SECURITY_KEY(r6, 0x110, 0x1, &(0x7f0000000080)='ethtool\x00', 0x8)
r10 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r10, &(0x7f0000000cc0)={'syz0\x00', {}, 0x0, [0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x3, 0xe, 0x721a2d63, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x7, 0x0, 0x0, 0x0, 0x10000], [0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0xfffffffe, 0x0, 0x3, 0xfffffffe, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x8000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x8, 0xc7, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffc]}, 0x45c)
ioctl$UI_DEV_SETUP(r10, 0x5501, 0x0)
ioctl$UI_GET_SYSNAME(r10, 0x8040552c, &(0x7f0000000140))
openat$nmem0(0xffffffffffffff9c, &(0x7f0000000180), 0x40400, 0x0)

1.940105282s ago: executing program 7 (id=2007):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000980)=[@text64={0x40, &(0x7f0000000080)="b9800000c00f3235002000000f30c7442400e1000000c744240205000000ff2c24430f01d1c48379dfc00cc744240000000080c7442402ac000000c7442406000000000f01142466b82e008ec8470f0966b847000f00d0b989010000b8aae50000ba000000000f30134f00", 0x6b}], 0x1, 0x5a, 0x0, 0x51)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 48)

1.649078038s ago: executing program 7 (id=2012):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r2, {0x2, 0x1, @dev={0xac, 0x14, 0x14, 0x8}}, 0x2}}, 0x2e)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x994, @remote, 0x8}, 0x1c)
gettid()
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {}, 0x2, 0x4}}, 0x26)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r4=>0x0})
r5 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='tracefs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x20020, &(0x7f0000000500)={[{@gid}]})
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
write$binfmt_script(r5, &(0x7f0000000240)={'#! ', './file0', [{0x20, '$[!-}'}], 0xa, "4b13875e23c3264dc2441410b17242c846311e1e957ca3517862484f15c52d3d93461f7f56fda9798ae9a5f1cebaf540906bbbd99aafc84434f5ef53b03cccb968d7ec6994fd48d252cc15dae9a922d018ce0807b8431da10cb0ee159dc5c28f7330506844ac1e050bf6485a1d19df71bcaa32cdd466494e5efc997416c4f41e8d0ada2844d417dca9be51bb593144fa2daf96a1e28dc8fb15db045b1ed0aaaccee53fb29f29b32fc6af42f742fc0de5e791d9775ed7d60073dde16f46f8408b1816e8e46f64266489dc7a9c74a0da915c4d7e1ef9"}, 0xe6)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000040)='t\xa3D)\xcb(/\x00\xd9\xf8x\xf2\x9dw$\xaeF\x03\x91\xbe\x13r\xcc\xd7\xec&\x9f\xd4U\x1e$\x93\x938\xaa\x1e\x92\x9fk\xef\xe1\xfe\x11\x89\xf1\x8fX\x8c\xb0l\xda\xd0\xc1#\x89\x97g\xe1\xd2\xdd\xa3lzM:\x17\x06\x1d<\xb2\x8e\xb2\xa1J(\\Q\xef\xfa\xff\xff\xff\xff\xff\xff\xffs\xa6\x98q\xba\x02\xbe\xd0\xa5D\x13]Uo\x84\x00')
r6 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x2c, 0x1, 0x9, &(0x7f0000000040))
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c0000001300fe9e00000000000000000700000065a1300bfd3dfe6b81743436b83cd2f7ef27ed0dae804aa0348044dbc5d025ca77a6a80d", @ANYRES32=r4, @ANYBLOB="00000000000000000c001a800500058004000580"], 0x2c}}, 0x0)
chdir(&(0x7f0000000180)='./file0\x00')

1.560212597s ago: executing program 7 (id=2015):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-ssse3\x00'}, 0x58)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040)={0x8000001, 0x7}, 0x8)
close(r1)
r2 = accept4(r0, 0x0, 0x0, 0x0)
mknod(&(0x7f0000001b40)='./file0\x00', 0x400, 0xffffffff)
mount$nfs(0x0, &(0x7f0000001c40)='./file0\x00', &(0x7f0000001c80), 0x0, &(0x7f0000001cc0)={[{'lock'}]})
sendmsg$nl_route_sched_retired(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=@newchain={0xd04, 0x64, 0x200, 0x70bd2c, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x3, 0x5}, {0x3, 0x6}, {0xffe4, 0xfff2}}, [@f_rsvp={{0x9}, {0xcd4, 0x2, [@TCA_RSVP_ACT={0xbc, 0x6, [@m_skbmod={0xb8, 0x10, 0x0, 0x0, {{0xb}, {0x10, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa}]}, {0x7f, 0x6, "a379fc349814a544749677ff76d4654c1d177d9e700e121988765f834650521674a0b68521c9cc9dee100c5c41bfa39d57eead70ba6709fc85f20e123f6a4d9b44f9518d921d7e2ef5257f8eb04657192ee49b736df9ea972d5e7d5fe33c588cafffd8d7f4b6b98bdcf7f4da9cdafe394d871e5ae454a23514158e"}, {0xc, 0x7, {0x0, 0x85abbd9211dea501}}, {0xc, 0x8, {0x2, 0x2}}}}]}, @TCA_RSVP_POLICE={0x408, 0x5, [@TCA_POLICE_RATE={0x404, 0x2, [0xfffff313, 0xfffffeff, 0x0, 0xff, 0x4, 0x7, 0x7f, 0x7, 0x7fffffff, 0x3, 0x5, 0x8, 0xba, 0xe6b5, 0x8, 0x5, 0x6, 0x0, 0x6, 0x0, 0x2, 0x4f74, 0x0, 0x9, 0x3, 0x0, 0x7, 0x971, 0x7b3e, 0x1, 0x4, 0x7, 0x1, 0x9, 0x9, 0x100, 0x1, 0x7ea, 0x401, 0x6, 0x1, 0x6, 0x7, 0x100, 0x6a6a, 0x10000, 0x100, 0xf, 0x6, 0x4, 0x2, 0x100, 0x0, 0x5, 0x9, 0xf, 0x3, 0x0, 0x4, 0x4, 0xd3, 0x400, 0x80000001, 0x4, 0x264, 0x4, 0x1, 0x9, 0x3, 0xb1a9, 0x6, 0x3, 0x1, 0x4, 0x6, 0x3, 0x2, 0x3, 0xc19, 0x4aa7, 0x101, 0x3, 0x0, 0xfff, 0xa, 0x5, 0xff, 0x9, 0xfffffffd, 0x7, 0xffffffff, 0x1, 0x9, 0x8000, 0x2, 0x5, 0x6, 0xd4e, 0x10, 0xba4, 0x5, 0xce0d, 0x3, 0x3, 0xff, 0x2, 0x401, 0xfffff000, 0x4, 0x0, 0x8, 0x4, 0x8, 0x401, 0x800, 0x7, 0x7, 0x5, 0x1, 0x3, 0x2, 0x6, 0x4, 0x0, 0x0, 0x7ff, 0x3, 0x2, 0x4, 0x6, 0x9, 0x8722, 0x200, 0xb99, 0x8, 0x3, 0x40, 0x200, 0x4, 0x1, 0x77, 0x6, 0x7, 0x7, 0x10001, 0x7, 0x1, 0x5, 0xc8, 0xfb, 0x7, 0x9, 0x60, 0x9b, 0x5, 0x1, 0xc, 0x94, 0x300, 0x1, 0x2, 0x4, 0x4, 0x4, 0xfffffffe, 0xb, 0xb, 0x80000000, 0x1, 0x7, 0x5, 0x4, 0x3, 0x12, 0x1ff, 0x8, 0xffff0001, 0x5, 0x0, 0xa, 0x2, 0x41, 0x9, 0x7, 0x8, 0xff, 0x61, 0x2, 0x7fff, 0xe, 0x1, 0xa, 0x0, 0x0, 0x79, 0x49, 0x4000, 0xffff, 0x8000, 0x8, 0x5, 0x1, 0x8, 0x100, 0x9, 0x8, 0x1, 0x4, 0x7b, 0x2, 0x2, 0x400, 0x5, 0x78c, 0x1, 0x15ae476c, 0x4, 0x5, 0x5, 0x1, 0x2, 0x0, 0x8000, 0x6, 0x9, 0x9, 0x7fffffff, 0x2, 0x7, 0x8bdd, 0x3, 0x0, 0x8, 0x0, 0x6, 0x9, 0xc84, 0x3, 0x2, 0x0, 0x9, 0x2, 0x3ff, 0x17, 0x6, 0x8, 0x9, 0x0, 0xffff8001, 0x4, 0x9, 0x0, 0x1, 0x9, 0xfffffff6, 0x4]}]}, @TCA_RSVP_POLICE={0x80c, 0x5, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x4, 0x1000, 0x3, 0x2c8, 0x3, 0x17efd98b, 0x7, 0x0, 0x8001, 0x81, 0x1, 0x9, 0x9, 0x80000000, 0x7, 0x2, 0x400, 0x10001, 0x2, 0x9, 0xe, 0x0, 0xc, 0x1, 0x100, 0x8, 0x9, 0x0, 0x1, 0x6, 0x2, 0x5, 0x7, 0xbffe, 0x8c1a, 0x3ff, 0x5, 0x9, 0x7, 0x9, 0xd5, 0x9, 0x7, 0x7fffffff, 0x7, 0x0, 0x9, 0x66f, 0x2, 0x7b61dc15, 0x0, 0x4, 0xfffff001, 0x7, 0x4, 0x4, 0x2, 0x40, 0x6, 0x8, 0x1, 0x1, 0x200, 0xfffffffc, 0x7fffffff, 0x4, 0xf, 0x200, 0x5, 0x1, 0x1143, 0x2, 0x0, 0xc89c, 0x9, 0x3, 0x9, 0x5, 0x6, 0x81, 0x80000000, 0x200, 0x4, 0x4, 0xc66b, 0x0, 0x1, 0x0, 0x1, 0x3, 0x80000000, 0x8, 0x3, 0x2, 0x61f, 0x1554c, 0x1, 0xfffffffc, 0xb, 0x0, 0x9, 0x7fffffff, 0x1, 0x3, 0x7, 0xfffffffd, 0xec6, 0x9, 0x7, 0x4, 0x1ff, 0x7, 0x5, 0x7ff, 0x0, 0x6, 0x6, 0x733, 0xe, 0x9, 0x3, 0x0, 0x2d, 0x2, 0x2, 0x4, 0x7fffffff, 0x7ff, 0xffffffd8, 0x6, 0x6, 0xb, 0x1, 0x8, 0x3, 0x6, 0x401, 0x8, 0x6, 0x1, 0x40, 0x80000001, 0x1, 0x8, 0x1000, 0x3, 0xce79, 0x1, 0x9, 0x8, 0x80000001, 0x3, 0x0, 0xc78, 0x5b, 0x0, 0x2, 0x401, 0x8, 0xf81, 0xfff, 0xfff, 0x4c20, 0x8, 0xb, 0x3, 0x0, 0x8, 0x1, 0x5000000, 0xf, 0x3, 0x8aa, 0xffff0000, 0x39, 0x68, 0xc, 0x5, 0x8000, 0x6d, 0x401, 0x81, 0xdb36, 0x3, 0x5, 0x0, 0x9, 0x8, 0x4, 0x3, 0x1000, 0x7, 0xd45, 0xffffffff, 0x8, 0x81, 0x50, 0x0, 0x3, 0x9, 0x5, 0xfb1, 0x400, 0xb, 0x0, 0x81, 0x400, 0x6, 0x7, 0xfda6, 0x1, 0x3bc81af, 0x5, 0x657, 0xfff, 0x7ff, 0x3, 0xa533, 0xbd, 0x8, 0x27ca, 0x0, 0x1, 0x7c, 0x6, 0x0, 0xc4, 0x0, 0x8, 0xfff, 0x0, 0x80000000, 0xfffffff9, 0x80000001, 0x7fff, 0x8, 0xb5, 0x4, 0xf5e, 0x6, 0x7fffffff, 0x4abb, 0x44, 0x3ff, 0xb, 0x547, 0x10000, 0x3, 0xe42, 0x7fffffff, 0x7, 0xa, 0x1, 0x1, 0x0, 0xfffffffc]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0xfff, 0x0, 0x5, 0xffff, 0xf, 0xfff, 0x7, 0xf547, 0x7, 0x7fff, 0x26, 0x0, 0x9, 0x8, 0x8, 0x3, 0x10, 0x8, 0x6, 0xa, 0x0, 0x80000000, 0x6dc, 0x7, 0x0, 0x5, 0xde61, 0x3ff, 0x3, 0x0, 0xaa5, 0x0, 0x9, 0xfff, 0xf58c, 0x7, 0x5, 0x5, 0xe1c6, 0x100, 0x7, 0xfffffff9, 0x4, 0x2, 0x5, 0x1, 0x6, 0x1, 0x7, 0x9, 0x4, 0xc566, 0x6, 0x1, 0x2, 0x9, 0x9, 0x400000, 0x0, 0x4, 0xfffffff7, 0x0, 0x5, 0xa51, 0x59, 0x7e2991e7, 0x8, 0xa, 0x7, 0x2, 0xf, 0x200, 0x9, 0x10, 0x8, 0x8, 0x0, 0x7, 0xd3ec, 0x10, 0x3, 0x8, 0xdc, 0x2, 0x80, 0xfffffff9, 0xeb6d, 0x2, 0x2, 0x2c664e46, 0xfffffc00, 0x0, 0xe, 0xb, 0x7fff, 0x400, 0x7c, 0x4, 0xc, 0x0, 0x594, 0x26ce, 0x40, 0x5, 0x3, 0x1, 0xa, 0x6, 0x80000000, 0x1, 0x80000001, 0x6, 0xffff, 0x2, 0x1ff, 0x80, 0x10000, 0x5, 0x9, 0x17c40000, 0xfffffff3, 0x0, 0xf, 0x0, 0x100, 0xe, 0x2, 0x5, 0x21, 0xff, 0x4, 0x8, 0x5, 0x6, 0x3, 0xa, 0x800, 0x835d, 0xa, 0x5, 0x7, 0xf, 0x7, 0x4, 0xff, 0x101, 0x5, 0x2, 0xcf91, 0xfff, 0xfffffffe, 0x4, 0xffffff83, 0x10, 0x8, 0xfffffffe, 0x3, 0x7fffffff, 0x0, 0x7, 0x9, 0x7, 0x1, 0x3df, 0x32, 0x5, 0x8001, 0x4, 0x2, 0x8, 0x3, 0xd1, 0xfc0, 0x5, 0xf, 0x4, 0x1ff, 0x4, 0x0, 0x7, 0x7, 0x86b8, 0x10, 0x1000, 0x0, 0x4a2c, 0x6, 0x3, 0xff, 0x1, 0x4, 0x79, 0x80000001, 0x9, 0x7fffffff, 0x1, 0x7ff, 0x4, 0x8, 0x7, 0x4, 0x2, 0x5bd, 0x1a2, 0x6, 0x2, 0x9, 0x2, 0xff, 0x554b, 0x3f, 0x800007ff, 0x32020926, 0xa10a, 0x80000001, 0x1, 0x6, 0x10000, 0x3, 0x4, 0x200, 0x9, 0x9f, 0x133d, 0x1000, 0x6, 0xa, 0x8, 0x6d99765f, 0x40, 0x7, 0x3, 0x10b, 0x6, 0x8001, 0x7aa5, 0x0, 0x4, 0x2, 0x8, 0x4, 0x4, 0xca, 0x2, 0x8000, 0x6, 0x80, 0x40, 0x7ff, 0xde9, 0x4, 0x8, 0x2a, 0x198c, 0x8, 0xffffff80]}]}]}}]}, 0xd04}}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r3, 0x400, 0x1)
fcntl$getflags(r3, 0x401)
ioctl$SIOCSIFHWADDR(r3, 0x8924, &(0x7f0000000080)={'dummy0\x00', @random="de1267df1c0c"})

1.169895624s ago: executing program 5 (id=2020):
r0 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x101400, 0x4, 0x28}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x16000000, 0x3}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x16000000, 0x3}}, './file0\x00'})
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
fsync(r0)
mount$cgroup2(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000140)={[{@memory_recursiveprot}, {@subsystem='devices'}, {@memory_recursiveprot}, {@pids_localevents}, {}, {}, {@memory_recursiveprot}, {}, {@favordynmods}], [{@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@uid_eq}, {@subj_user={'subj_user', 0x3d, ')'}}, {@hash}]})
renameat(r0, &(0x7f0000000240)='./file0\x00', r0, &(0x7f0000000280)='./file0\x00')
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x8040ae9f, &(0x7f00000002c0)=@arm64)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300) (async)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$DRM_IOCTL_MARK_BUFS(r1, 0x40206417, &(0x7f0000000300)={0x8, 0x7fb9, 0x1, 0xc795, 0xa, 0x242f}) (async)
ioctl$DRM_IOCTL_MARK_BUFS(r1, 0x40206417, &(0x7f0000000300)={0x8, 0x7fb9, 0x1, 0xc795, 0xa, 0x242f})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r4 = eventfd(0x80)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000340)={0x3, r4}) (async)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000340)={0x3, r4})
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000380), &(0x7f00000003c0)=0x30) (async)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000380), &(0x7f00000003c0)=0x30)
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r3, 0x8983, &(0x7f0000000400)={0x0, 'wlan0\x00', {0x4}, 0xf8f9})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000440)) (async)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000440))
syz_emit_ethernet(0x56, &(0x7f0000000480)={@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x11}, @void, {@canfd={0xd, {{0x4, 0x1, 0x1, 0x1}, 0x39, 0x2, 0x0, 0x0, "e516ab094f057a2a23eb543c15898009c44517fe0b70e8e4dcda9a3978f3fb4f8d0de32742b4fe4fd9fd382dda22ceb2ee92ec827e12ece229f02295084570d9"}}}}, 0x0) (async)
syz_emit_ethernet(0x56, &(0x7f0000000480)={@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x11}, @void, {@canfd={0xd, {{0x4, 0x1, 0x1, 0x1}, 0x39, 0x2, 0x0, 0x0, "e516ab094f057a2a23eb543c15898009c44517fe0b70e8e4dcda9a3978f3fb4f8d0de32742b4fe4fd9fd382dda22ceb2ee92ec827e12ece229f02295084570d9"}}}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000500)={{0x1, 0x1, 0x18, r2, {0x9}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r5=>r2, {0x9}}, './file0\x00'})
ioctl$SIOCPNDELRESOURCE(r0, 0x89ef, &(0x7f0000000540)=0xf)
symlinkat(&(0x7f0000000580)='./file1\x00', r1, &(0x7f00000005c0)='./file0\x00')
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000600)={0x0, 'veth1_to_team\x00', {0x2}, 0x6}) (async)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000600)={0x0, 'veth1_to_team\x00', {0x2}, 0x6})
write$eventfd(r4, &(0x7f0000000640)=0xb, 0x8)
read$eventfd(r5, &(0x7f0000000680), 0x8)
openat$dir(0xffffffffffffff9c, &(0x7f00000006c0)='./file1\x00', 0x24100, 0xe0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000700)={0x0, <r6=>0x0})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000007c0)={r6, r5, 0x0, 0x7, &(0x7f0000000780)='devices'}, 0x30)
kcmp$KCMP_EPOLL_TFD(r6, r6, 0x7, r1, &(0x7f0000000800)={r0, 0xffffffffffffffff, 0xf})
fanotify_mark(r5, 0x10, 0x1802, r0, &(0x7f0000000840)='./file0\x00')
ioctl$SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000000880)={'geneve1\x00', @multicast})

1.168790621s ago: executing program 5 (id=2021):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000980)=[@text64={0x40, &(0x7f0000000080)="b9800000c00f3235002000000f30c7442400e1000000c744240205000000ff2c24430f01d1c48379dfc00cc744240000000080c7442402ac000000c7442406000000000f01142466b82e008ec8470f0966b847000f00d0b989010000b8aae50000ba000000000f30134f00", 0x6b}], 0x1, 0x5a, 0x0, 0x51)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 49)

1.060184289s ago: executing program 2 (id=2022):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0xa, 0x0, 0x0)
ioctl$KVM_GET_MP_STATE(r2, 0x8004ae98, &(0x7f0000000080))
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x81, 0x13add9662c1f1cb6)
ioctl$SNDRV_CTL_IOCTL_PVERSION(r3, 0x80045500, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)

879.582388ms ago: executing program 2 (id=2023):
r0 = syz_open_dev$vim2m(&(0x7f0000000140), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x100, 0x2, 0x2}) (async)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405668, &(0x7f0000000100)={0x0, 0x1, 0x2})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', &(0x7f0000000380)={'syztnl0\x00', 0x0, 0x2f, 0x0, 0x0, 0x0, 0x52, @empty, @mcast1, 0x0, 0x8000, 0x101}})
r2 = socket$isdn_base(0x22, 0x3, 0x0)
sendto(r2, &(0x7f0000000180)="be3e7d812a7d26f4fe055dbfb1a8af88c7760c02712b63bcb7f889a9a5c8d9731f78216169f6727012026184845afdea7ba0f4dc1223214e4dceaefe3a8b338e6d5cc4d447852c02f547afe46f2d8c645bef3430a202b58878c94f935aea4d1ec6379874adf27f9f0ba383478b1574b8f227177beec0ba11f397094d3343860b1280f089c76435bc3d1b719291d95c12382c0e52", 0x94, 0x4, &(0x7f0000000040)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x41}}}, 0x80) (async)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000100)={'syztnl0\x00', 0x0})

879.34434ms ago: executing program 5 (id=2024):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='comm\x00')
getdents64(r0, &(0x7f0000000100)=""/187, 0xbb) (async, rerun: 64)
faccessat2(r0, &(0x7f0000000040)='\x00', 0x1, 0x1300) (rerun: 64)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fchdir(r1)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') (async, rerun: 64)
ioctl$VIDIOC_G_CTRL(r0, 0xc008561b, &(0x7f00000001c0)={0x8001, 0x800}) (async, rerun: 64)
openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x10440, 0x0) (async, rerun: 32)
mount(&(0x7f0000000000), &(0x7f0000000080)='./cgroup\x00', 0x0, 0x1001, 0x0) (rerun: 32)

799.940011ms ago: executing program 2 (id=2025):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$cont(0x20, r0, 0x0, 0x0)

799.396206ms ago: executing program 5 (id=2026):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000002640)={0x0, 0x2}, 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[], 0x44}}, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000980)=[@text64={0x40, &(0x7f0000000080)="b9800000c00f3235002000000f30c7442400e1000000c744240205000000ff2c24430f01d1c48379dfc00cc744240000000080c7442402ac000000c7442406000000000f01142466b82e008ec8470f0966b847000f00d0b989010000b8aae50000ba000000000f30134f00", 0x6b}], 0x1, 0x5a, 0x0, 0x51)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket$kcm(0x29, 0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r6 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x8d, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r6, 0xc4c85512, &(0x7f00000007c0)={{0x2, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000000, 0x7, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x426, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18000000, 0x2, 0x0, 0x0, 0x0, 0x7, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x20000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x8, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x1, 0x0, 0x0, 0x4000000, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffff1085, 0x0, 0x4, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x1]})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)

699.918324ms ago: executing program 7 (id=2027):
openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x121040, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000700000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r0}, 0x5c)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r1 = io_uring_setup(0x191a, &(0x7f0000000000)={0x0, 0x761, 0x10, 0x1, 0x11cb})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f00000002c0)={@private1, @private0, @dev={0xfe, 0x80, '\x00', 0x37}, 0x0, 0xb, 0x0, 0x100, 0x4, 0x0, r4})
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f00000002c0)={@mcast2, @empty, @private0, 0x0, 0x6, 0x0, 0x0, 0x6, 0x150042, r4})
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x15)

597.641349ms ago: executing program 5 (id=2028):
ioctl$SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045017, &(0x7f0000000000))
r0 = syz_open_dev$sndpcmc(&(0x7f0000000040), 0x100, 0x400800)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r0, 0xc0984124, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
r1 = syz_io_uring_setup(0x39f9, &(0x7f0000000140)={0x0, 0xb022, 0x10, 0x3, 0x103}, &(0x7f00000001c0), &(0x7f0000000200))
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000280)={0x4e, 0x0, &(0x7f0000000240)=[r0]}, 0x1)
ioctl$VIDIOC_G_STD(r0, 0x80085617, &(0x7f00000002c0))
r2 = io_uring_setup(0x4551, &(0x7f0000000300)={0x0, 0x73e1, 0x80, 0x2, 0x2a, 0x0, r1})
io_uring_enter(r2, 0x2a6c, 0x19de, 0x1, &(0x7f0000000380)={[0x5]}, 0x8)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$IP_SET_OP_GET_BYINDEX(r3, 0x1, 0x53, &(0x7f00000003c0)={0x7, 0x7, 0x2}, &(0x7f0000000400)=0x28)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000440), 0xc48140, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000000480)={{0x1, 0x1, 0x18, r1, {0x400}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r4, 0xc018937e, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r5=>r4, {0x1}}, './file0\x00'})
r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000500), 0x10d002, 0x0)
r7 = dup3(r6, r4, 0x80000)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000580)={'vxcan0\x00', <r8=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)=@ipv6_deladdr={0x3c, 0x15, 0x300, 0x70bd2d, 0x25dfdbfb, {0xa, 0x38, 0x40, 0xff, r8}, [@IFA_RT_PRIORITY={0x8, 0x9, 0x5ac}, @IFA_RT_PRIORITY={0x8, 0x9, 0x1000}, @IFA_ADDRESS={0x14, 0x1, @private0}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8}, 0x44084)
r9 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000680), 0x40100, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r9, 0x80049363, &(0x7f00000006c0))
openat(0xffffffffffffffff, &(0x7f0000000700)='./file0\x00', 0x581080, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000740), r10)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl802154(&(0x7f00000007c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r11, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x20, r12, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x24008000)
ioctl$SNDRV_PCM_IOCTL_STATUS32(r7, 0x806c4120, &(0x7f00000008c0))
sendmsg$IPVS_CMD_GET_DAEMON(r7, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x1c, 0x0, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8015)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x14, 0x7, 0x1, 0x101, 0x70bd25, 0x25dfdbfd, {0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x20004006}, 0x5)
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r11, &(0x7f0000000c80)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000c40)={&(0x7f0000000bc0)={0x68, 0x0, 0x300, 0x70bd2d, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa3}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x9}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa3}]}, 0x68}, 0x1, 0x0, 0x0, 0x20000041}, 0x40)

597.194809ms ago: executing program 5 (id=2029):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r2 = eventfd2(0xe, 0x80000)
read$eventfd(r2, &(0x7f0000000000), 0x8)
syz_usb_disconnect(0xffffffffffffffff)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000480)=@generic={&(0x7f0000000440)='./file0\x00', 0x0, 0x8}, 0x18)
r3 = creat(&(0x7f00000002c0)='./file0\x00', 0x6)
write$tun(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="7875c0af9fb31ac59e"], 0x8)
r4 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000500)={0x2, r2})
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r4, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x30, 0x1, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r7, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="2903fcffffff00000000160000000c00060001"], 0x20}, 0x1, 0x0, 0x0, 0x10000874}, 0x8004)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x9, 0x1010, r4, 0xa59b2000)
syz_open_procfs$namespace(r0, &(0x7f0000000140)='ns/net\x00')
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000100)={<r8=>0x0, @broadcast, @broadcast}, &(0x7f0000000240)=0xc)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_ext={0x1c, 0x12, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000001000000000000007000000b7080000000000007b8af8ff00000000b7080000040000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="000000000000000085100000040000009c6b0000fcffffff9500"/48], &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x4, '\x00', r8, 0x0, r1, 0x8, &(0x7f0000000280)={0x1, 0x3}, 0x8, 0x10, &(0x7f00000002c0)={0x2, 0x1, 0x51}, 0x10, 0x2d420, r1, 0x6, 0x0, &(0x7f0000000300)=[{0x4, 0x4, 0x2, 0x2}, {0x1, 0x20000000, 0x4, 0x7}, {0x3, 0x5, 0x3, 0x7}, {0x2, 0x2, 0x2, 0x7}, {0x0, 0x1, 0x1, 0x5}, {0x0, 0x3, 0x5, 0xc}], 0x10, 0xd811, @void, @value}, 0x94)

540.047458ms ago: executing program 7 (id=2030):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000001080)=0x8)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f00000004c0)={r3, 0x40}, &(0x7f0000000500)=0x8)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000a00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x9}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x48040)

539.812207ms ago: executing program 7 (id=2031):
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={0x0, 0x5, 0x32}, 0x18)
mknodat$loop(r0, &(0x7f0000000100)='./file0\x00', 0x2, 0x0)
openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/fs/binfmt_misc/syz2\x00', 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000340)={<r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'wg2\x00'})
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000140)=0x15)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f00000002c0)=0x7e)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0xff)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x7e)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f0000006840)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000004200)={0x50, 0x0, r4, {0x7, 0x2b, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x2, 0x0)
dup2(r3, r5)

237.337021ms ago: executing program 2 (id=2032):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b000000b900000001400100030000d0", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000040), &(0x7f0000000440)=""/183}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000340)={r0, &(0x7f0000000040)}, 0x20)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) (async)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000300)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="36003300d0000000080211000001080284b1000050505050505000"], 0x54}}, 0x0)
sendmsg$NL80211_CMD_DEL_KEY(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, r2, 0x300, 0x70bd28, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x2, 0x2a}}}}, [@NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x81}, 0x20008000) (async)
sendmsg$NL80211_CMD_DEL_KEY(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, r2, 0x300, 0x70bd28, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x2, 0x2a}}}}, [@NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x81}, 0x20008000)

236.644136ms ago: executing program 2 (id=2033):
openat$userio(0xffffffffffffff9c, &(0x7f0000000180), 0x200000, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac1414000a01", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='\\'], 0x0)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="48000000100005040000000000000000", @ANYBLOB="ebffffffffffffff280012800b00010065"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x11, 0x4, &(0x7f0000000000)=@framed={{}, [@generic={0xd7, 0xa, 0x0, 0x0, 0x40}]}, &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000480)={[{@nr_blocks={'nr_blocks', 0x3d, [0x38]}}]})
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000000)={@local, @random="97c4864ef7a3", @void, {@ipv4={0x800, @generic={{0x9, 0x4, 0x0, 0x0, 0x24, 0x64, 0x0, 0x0, 0xc84cf8fe4733a687, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0xc}, {[@ssrr={0x89, 0x7, 0xef, [@multicast1=0xe000006a]}, @cipso={0x86, 0x6}]}}}}}}, 0x0)
sendmsg$inet(r6, &(0x7f0000000080)={0x0, 0x8000000, &(0x7f0000000680)=[{&(0x7f0000000000)="5c00000015006b05c84e21000ab16d6e230675f802000000440002005817d30461bc24eeb556a705251e6182149a36c23d3b48dfd8cdbf9367b098fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
sendmsg$kcm(r6, &(0x7f0000000500)={&(0x7f00000000c0)=@in6={0xa, 0x4e22, 0x0, @mcast2, 0x10001}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000140)="b7995abd69c8e2f3eac2409877894fc702297825182c683e564c5b75f4ee636be053873078fb6475eeaffcee1094e37cf9adf6d31248165d7f08e4dfc013048063622e3b6bd971cca60dc8f2382ceefadcb53af88608e945ad63652c825a18", 0x5f}, {&(0x7f00000001c0)="1d55a219500ca283f3c7a956cba893cf1cca4c2e38dc4eb5f7a245bda9a81a4c7916eb28125b8c3471fa17c57726f7c00e48b858f4ce9055c3298b3169f3eeb96d6d54c9d027643be3ff8adc9ae66eb3560a9197f4981c91874ecfb896f75c4ca8bb4a8038e708f5312ac6250db6b503e2b5b2ca7270c5bf776c099d8d1cb4bdc1d797c4ab03d2728379ff4fade4f67adb0c4a90b381c94058ca83b8ddba1d3c212996485493c61d7876888d014651245dc2536efc81c3ba53b5bdef730f9a7cf667cf45136953e4a62abac001dd23e0e19d07658fd30733dc4dceb4ef58d8", 0xdf}, {&(0x7f00000002c0)="0fe9e3bd639d47aadbf66db45dfdc27f8cf6c805872c0e74f8fc44ff9fea4acb1717118828bfb3152a1c7dbc2cda2c77b62edcc1369a123d2d2126f017e278f91278c2cf", 0x44}, {&(0x7f0000000340)="5803bc96fb07f44bafc30368fb5020b3a81db54d4259361968ffeda1c799507c550c719eef6d9775245d20ffae08493430e1926c126afd7acda47d537c50ec8ebc29fa66481172d230195da9195bd60ccfe3481449a25eb187", 0x59}], 0x4, &(0x7f0000000400)=[{0xd0, 0x118, 0x7, "66bac9d608e8b00d02daca01753bf1fac618f34aff4941159dff617cff2cd642222d4ea08bd7d04c942b31c26aabccc20cc864adc513ff403942a1e96be954fe88388ea123c90e49c30f2b6021e6771b97b90ab2f07cefbbb79f2178a0dc8c24a1188b4fda244d0a116e0768ff55254db8bb2c486fe9b3c7c8c485fe47c44629170f62f77f5567d48435a8048d885e10b30ba4721ba4ca71328822d1109e1f9e0eb68a4228d542d7d4501a6c083cfa5d3530b78835cf0e081813ecd50cb0"}], 0xd0}, 0x1)

0s ago: executing program 2 (id=2034):
r0 = socket(0x2, 0x80805, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000240)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x2, 0x100, 0x0, 0x0, {[@sack_perm={0x4, 0x2}]}}}}}}}}, 0x0)
mkdirat(r3, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x18)
renameat2(r3, &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r2, &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2)
unlink(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00')
io_setup(0x222, &(0x7f0000000180)=<r4=>0x0)
io_submit(r4, 0x47f, &(0x7f0000000680)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x2, r1, &(0x7f0000000a00)="1c73de19da4e24a4be5c3011d88efffbb251589a5bef61f451a747474f315938cc426a841b78d07b04cc6f2d276323ea48a6fd1c0ba66f5055239df5a21b234315694fd58fe32aeaa543e5fe08ccdf3e689caa8cedec8010f8bb8c59eaa1ecbf0f6f66afde88c010b3138095b6a0116af9c9011f03cc24e087286f2553198568c0aea639920383723c52ce2839b5dcb5ecf2eb92eeb24271354e1719e92347b792d0402fb04bbbf78fbebbf4b4832385561e1010dd612da55e8f738b13288b548d333c1d174ade527cafb3fc6576c16cd2e71f68286e28d5d8a17ef63d253bc56ce36b8d4aef6c0a34d8b9463ce4535f9c1700a5bf7b0f217ae63d3d377ddbcf7d4dd2f3f8f08de60c87b1e07487cae176e2f76ea307fa1693d84328c7f751d6d997555964813b103ea44b6e2e8bcc09609c25e5d1e0f174c44dfed19aa2fc6e6a60c589909709ff6b1a8e3c7462427d11469f81fa4d9a69ee39b8f3824889f3ee0c5838a22832193d9f42bfcff8f1990746da71c109c82f51aaffbc9b33b03fe4993f4bfb59461c5a2e13514072283677447793cfe1e7bf5b48416b80a7e18e22cb13e0370f7bb9bf952c4c5355dbb8fe0d912f88d743c536db4b306075c2dcd59d602e75bb159f71e4f11192631fc338203c136c9efc5f05bf94d2fee1a6ad20f2c7e834e5be49ebedde2d9735f46eb08c6537d24f3f06589a4597f2d9378f", 0x200, 0x200}])
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000011c0)=[@in={0x2, 0x4e23, @private=0xa010100}]}, &(0x7f0000000180)=0x10)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000001180))

0s ago: executing program 2 (id=2035):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x18, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000300000000000000a138000095"], 0x0, 0x1, 0x0, 0x0, 0x41100, 0x14, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffff8, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2, 0x31}, 0x48)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="2a0000007000fcd77a13ce7db9627596d6e63aae44c1b62b0e0001000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x24040090}, 0xc0)

kernel console output (not intermixed with test programs):

? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  141.975727][T11693]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  141.975744][T11693]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  141.975758][T11693]  ? __pfx_kvm_mmu_load+0x10/0x10
[  141.975775][T11693]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  141.975787][T11693]  ? kvm_check_and_inject_events+0x71c/0x1310
[  141.975807][T11693]  vcpu_run+0x3446/0x5390
[  141.975820][T11693]  ? kvm_mmu_post_init_vm+0x269/0x370
[  141.975839][T11693]  ? __lock_acquire+0xaa4/0x1ba0
[  141.975861][T11693]  ? __pfx_vcpu_run+0x10/0x10
[  141.975879][T11693]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  141.975894][T11693]  ? __local_bh_enable_ip+0xa4/0x120
[  141.975912][T11693]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  141.975928][T11693]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  141.975948][T11693]  kvm_vcpu_ioctl+0x5e9/0x1680
[  141.975967][T11693]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  141.976007][T11693]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  141.976027][T11693]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  141.976051][T11693]  ? hook_file_ioctl_common+0x145/0x410
[  141.976067][T11693]  ? selinux_file_ioctl+0x180/0x270
[  141.976084][T11693]  ? selinux_file_ioctl+0xb4/0x270
[  141.976102][T11693]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  141.976119][T11693]  __x64_sys_ioctl+0x193/0x200
[  141.976136][T11693]  do_syscall_64+0xcd/0x260
[  141.976154][T11693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.976170][T11693] RIP: 0033:0x7f479398e969
[  141.976180][T11693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.976190][T11693] RSP: 002b:00007f479471f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.976201][T11693] RAX: ffffffffffffffda RBX: 00007f4793bb5fa0 RCX: 00007f479398e969
[  141.976208][T11693] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  141.976214][T11693] RBP: 00007f479471f090 R08: 0000000000000000 R09: 0000000000000000
[  141.976220][T11693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  141.976227][T11693] R13: 0000000000000000 R14: 00007f4793bb5fa0 R15: 00007ffdc2beb198
[  141.976240][T11693]  </TASK>
[  142.088386][    C3] vkms_vblank_simulate: vblank timer overrun
[  142.241652][T11711] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1676'.
[  142.247844][T11711] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1676'.
[  142.274845][   T40] audit: type=1400 audit(1747392263.474:1186): avc:  denied  { listen } for  pid=11712 comm="syz.2.1677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  142.327789][T11716] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1678'.
[  142.395740][T11720] validate_nla: 2 callbacks suppressed
[  142.395755][T11720] netlink: 'syz.5.1679': attribute type 3 has an invalid length.
[  142.400928][T11720] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1679'.
[  142.568392][T11735] FAULT_INJECTION: forcing a failure.
[  142.568392][T11735] name failslab, interval 1, probability 0, space 0, times 0
[  142.571606][T11738] netlink: 'syz.5.1684': attribute type 10 has an invalid length.
[  142.572522][T11735] CPU: 3 UID: 0 PID: 11735 Comm: syz.2.1683 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  142.572538][T11735] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  142.572545][T11735] Call Trace:
[  142.572549][T11735]  <TASK>
[  142.572554][T11735]  dump_stack_lvl+0x16c/0x1f0
[  142.572575][T11735]  should_fail_ex+0x512/0x640
[  142.572591][T11735]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  142.572604][T11735]  should_failslab+0xc2/0x120
[  142.572617][T11735]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  142.572627][T11735]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  142.572639][T11735]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  142.572656][T11735]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  142.572669][T11735]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  142.572685][T11735]  mmu_topup_memory_caches+0x25/0x170
[  142.572704][T11735]  kvm_mmu_load+0xd9/0x22a0
[  142.572721][T11735]  ? kvm_apic_has_interrupt+0xb5/0x190
[  142.572738][T11735]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  142.572753][T11735]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  142.572770][T11735]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  142.572784][T11735]  ? __pfx_kvm_mmu_load+0x10/0x10
[  142.572800][T11735]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  142.572813][T11735]  ? kvm_check_and_inject_events+0x71c/0x1310
[  142.572833][T11735]  vcpu_run+0x3446/0x5390
[  142.572847][T11735]  ? kvm_mmu_post_init_vm+0x269/0x370
[  142.572866][T11735]  ? __lock_acquire+0xaa4/0x1ba0
[  142.572887][T11735]  ? __pfx_vcpu_run+0x10/0x10
[  142.572905][T11735]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  142.572921][T11735]  ? __local_bh_enable_ip+0xa4/0x120
[  142.572939][T11735]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  142.572955][T11735]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  142.572976][T11735]  kvm_vcpu_ioctl+0x5e9/0x1680
[  142.572996][T11735]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  142.573029][T11735]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  142.573055][T11735]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  142.573078][T11735]  ? hook_file_ioctl_common+0x145/0x410
[  142.573094][T11735]  ? selinux_file_ioctl+0x180/0x270
[  142.573111][T11735]  ? selinux_file_ioctl+0xb4/0x270
[  142.573129][T11735]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  142.573146][T11735]  __x64_sys_ioctl+0x193/0x200
[  142.573163][T11735]  do_syscall_64+0xcd/0x260
[  142.573180][T11735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.573191][T11735] RIP: 0033:0x7fd2dd18e969
[  142.573201][T11735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.573211][T11735] RSP: 002b:00007fd2ddf55038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  142.573226][T11735] RAX: ffffffffffffffda RBX: 00007fd2dd3b5fa0 RCX: 00007fd2dd18e969
[  142.573232][T11735] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  142.573239][T11735] RBP: 00007fd2ddf55090 R08: 0000000000000000 R09: 0000000000000000
[  142.573245][T11735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  142.573251][T11735] R13: 0000000000000000 R14: 00007fd2dd3b5fa0 R15: 00007ffc29f1f808
[  142.573265][T11735]  </TASK>
[  142.681025][T11738] lo: entered promiscuous mode
[  142.689254][T11738] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  142.697017][T11738] 8021q: adding VLAN 0 to HW filter on device bond0
[  142.902637][T11750] netlink: 'syz.2.1688': attribute type 7 has an invalid length.
[  142.908045][T11752] Bluetooth: hci0: unsupported parameter 65518
[  142.910027][T11752] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  142.955805][   T40] audit: type=1326 audit(1747392264.164:1187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11754 comm="syz.2.1690" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd2dd18e969 code=0x0
[  142.980191][T11758] 9pnet: Could not find request transport: unixeap/system
[  143.265465][ T6117] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  143.339061][T11780] FAULT_INJECTION: forcing a failure.
[  143.339061][T11780] name failslab, interval 1, probability 0, space 0, times 0
[  143.343188][T11780] CPU: 1 UID: 0 PID: 11780 Comm: syz.5.1696 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  143.343203][T11780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.343210][T11780] Call Trace:
[  143.343214][T11780]  <TASK>
[  143.343219][T11780]  dump_stack_lvl+0x16c/0x1f0
[  143.343239][T11780]  should_fail_ex+0x512/0x640
[  143.343255][T11780]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  143.343268][T11780]  should_failslab+0xc2/0x120
[  143.343281][T11780]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  143.343291][T11780]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  143.343303][T11780]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  143.343320][T11780]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  143.343333][T11780]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  143.343349][T11780]  mmu_topup_memory_caches+0x25/0x170
[  143.343368][T11780]  kvm_mmu_load+0xd9/0x22a0
[  143.343391][T11780]  ? kvm_apic_has_interrupt+0xb5/0x190
[  143.343411][T11780]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  143.343439][T11780]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  143.343458][T11780]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  143.343473][T11780]  ? __pfx_kvm_mmu_load+0x10/0x10
[  143.343489][T11780]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  143.343501][T11780]  ? kvm_check_and_inject_events+0x71c/0x1310
[  143.343521][T11780]  vcpu_run+0x3446/0x5390
[  143.343535][T11780]  ? kvm_mmu_post_init_vm+0x269/0x370
[  143.343554][T11780]  ? __lock_acquire+0xaa4/0x1ba0
[  143.343576][T11780]  ? __pfx_vcpu_run+0x10/0x10
[  143.343594][T11780]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  143.343610][T11780]  ? __local_bh_enable_ip+0xa4/0x120
[  143.343628][T11780]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  143.343644][T11780]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  143.343665][T11780]  kvm_vcpu_ioctl+0x5e9/0x1680
[  143.343684][T11780]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  143.343705][T11780]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  143.343727][T11780]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  143.343751][T11780]  ? hook_file_ioctl_common+0x145/0x410
[  143.343767][T11780]  ? selinux_file_ioctl+0x180/0x270
[  143.343784][T11780]  ? selinux_file_ioctl+0xb4/0x270
[  143.343802][T11780]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  143.343819][T11780]  __x64_sys_ioctl+0x193/0x200
[  143.343836][T11780]  do_syscall_64+0xcd/0x260
[  143.343854][T11780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.343866][T11780] RIP: 0033:0x7fd2dc78e969
[  143.343877][T11780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.343888][T11780] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  143.343899][T11780] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  143.343906][T11780] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  143.343912][T11780] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  143.343918][T11780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  143.343925][T11780] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  143.343939][T11780]  </TASK>
[  143.426730][ T6117] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  143.450225][ T6117] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  143.454332][ T6117] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  143.458260][ T6117] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.464609][T11765] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  143.471794][ T6117] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  143.675312][ T8213] usb 7-1: USB disconnect, device number 11
[  143.856522][T11806] __nla_validate_parse: 6 callbacks suppressed
[  143.856539][T11806] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1706'.
[  143.861229][T11807] netlink: 44 bytes leftover after parsing attributes in process `syz.7.1704'.
[  143.868017][T11807] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1704'.
[  143.872855][T11806] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1706'.
[  143.936316][T11815] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1690'.
[  143.939977][T11815] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  143.963423][T11818] xt_hashlimit: size too large, truncated to 1048576
[  144.106746][T11832] FAULT_INJECTION: forcing a failure.
[  144.106746][T11832] name failslab, interval 1, probability 0, space 0, times 0
[  144.111195][T11832] CPU: 0 UID: 0 PID: 11832 Comm: syz.5.1709 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  144.111213][T11832] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.111220][T11832] Call Trace:
[  144.111224][T11832]  <TASK>
[  144.111228][T11832]  dump_stack_lvl+0x16c/0x1f0
[  144.111249][T11832]  should_fail_ex+0x512/0x640
[  144.111265][T11832]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  144.111279][T11832]  should_failslab+0xc2/0x120
[  144.111292][T11832]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  144.111301][T11832]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  144.111313][T11832]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  144.111330][T11832]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  144.111344][T11832]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  144.111360][T11832]  mmu_topup_memory_caches+0x25/0x170
[  144.111379][T11832]  kvm_mmu_load+0xd9/0x22a0
[  144.111396][T11832]  ? kvm_apic_has_interrupt+0xb5/0x190
[  144.111410][T11832]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  144.111425][T11832]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  144.111441][T11832]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  144.111461][T11832]  ? __pfx_kvm_mmu_load+0x10/0x10
[  144.111477][T11832]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  144.111490][T11832]  ? kvm_check_and_inject_events+0x71c/0x1310
[  144.111509][T11832]  vcpu_run+0x3446/0x5390
[  144.111524][T11832]  ? kvm_mmu_post_init_vm+0x269/0x370
[  144.111543][T11832]  ? __lock_acquire+0xaa4/0x1ba0
[  144.111564][T11832]  ? __pfx_vcpu_run+0x10/0x10
[  144.111583][T11832]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  144.111598][T11832]  ? __local_bh_enable_ip+0xa4/0x120
[  144.111616][T11832]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  144.111631][T11832]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  144.111652][T11832]  kvm_vcpu_ioctl+0x5e9/0x1680
[  144.111671][T11832]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  144.111692][T11832]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  144.111713][T11832]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  144.111736][T11832]  ? hook_file_ioctl_common+0x145/0x410
[  144.111753][T11832]  ? selinux_file_ioctl+0x180/0x270
[  144.111770][T11832]  ? selinux_file_ioctl+0xb4/0x270
[  144.111788][T11832]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  144.111806][T11832]  __x64_sys_ioctl+0x193/0x200
[  144.111823][T11832]  do_syscall_64+0xcd/0x260
[  144.111841][T11832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.111853][T11832] RIP: 0033:0x7fd2dc78e969
[  144.111862][T11832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.111873][T11832] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.111884][T11832] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  144.111890][T11832] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  144.111897][T11832] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  144.111903][T11832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  144.111909][T11832] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  144.111923][T11832]  </TASK>
[  144.411475][T11839] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1711'.
[  144.574479][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  144.574495][   T40] audit: type=1400 audit(1747392265.774:1192): avc:  denied  { remount } for  pid=11841 comm="syz.5.1712" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  144.705354][T11855] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on
[  144.801993][   T40] audit: type=1400 audit(1747392266.004:1193): avc:  denied  { load_policy } for  pid=11862 comm="syz.7.1717" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  144.802825][T11863] SELinux:  policydb string length 14080 does not match expected length 8
[  144.814194][T11863] SELinux: failed to load policy
[  144.878752][T11866] FAULT_INJECTION: forcing a failure.
[  144.878752][T11866] name failslab, interval 1, probability 0, space 0, times 0
[  144.886127][T11866] CPU: 3 UID: 0 PID: 11866 Comm: syz.6.1718 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  144.886153][T11866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.886163][T11866] Call Trace:
[  144.886176][T11866]  <TASK>
[  144.886184][T11866]  dump_stack_lvl+0x16c/0x1f0
[  144.886213][T11866]  should_fail_ex+0x512/0x640
[  144.886238][T11866]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  144.886258][T11866]  should_failslab+0xc2/0x120
[  144.886278][T11866]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  144.886294][T11866]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  144.886311][T11866]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  144.886335][T11866]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  144.886358][T11866]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  144.886384][T11866]  mmu_topup_memory_caches+0x25/0x170
[  144.886411][T11866]  kvm_mmu_load+0xd9/0x22a0
[  144.886437][T11866]  ? kvm_apic_has_interrupt+0xb5/0x190
[  144.886457][T11866]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  144.886479][T11866]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  144.886504][T11866]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  144.886526][T11866]  ? __pfx_kvm_mmu_load+0x10/0x10
[  144.886550][T11866]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  144.886569][T11866]  ? kvm_check_and_inject_events+0x71c/0x1310
[  144.886600][T11866]  vcpu_run+0x3446/0x5390
[  144.886622][T11866]  ? kvm_mmu_post_init_vm+0x269/0x370
[  144.886650][T11866]  ? __lock_acquire+0xaa4/0x1ba0
[  144.886686][T11866]  ? __pfx_vcpu_run+0x10/0x10
[  144.886714][T11866]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  144.886736][T11866]  ? __local_bh_enable_ip+0xa4/0x120
[  144.886764][T11866]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  144.886787][T11866]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  144.886820][T11866]  kvm_vcpu_ioctl+0x5e9/0x1680
[  144.886849][T11866]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  144.886882][T11866]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  144.886935][T11866]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  144.886972][T11866]  ? hook_file_ioctl_common+0x145/0x410
[  144.886998][T11866]  ? selinux_file_ioctl+0x180/0x270
[  144.887023][T11866]  ? selinux_file_ioctl+0xb4/0x270
[  144.887050][T11866]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  144.887077][T11866]  __x64_sys_ioctl+0x193/0x200
[  144.887103][T11866]  do_syscall_64+0xcd/0x260
[  144.887131][T11866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.887151][T11866] RIP: 0033:0x7f5c2478e969
[  144.887164][T11866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.887199][T11866] RSP: 002b:00007f5c25688038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.887217][T11866] RAX: ffffffffffffffda RBX: 00007f5c249b5fa0 RCX: 00007f5c2478e969
[  144.887227][T11866] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  144.887237][T11866] RBP: 00007f5c25688090 R08: 0000000000000000 R09: 0000000000000000
[  144.887246][T11866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  144.887256][T11866] R13: 0000000000000000 R14: 00007f5c249b5fa0 R15: 00007fff2cf44a98
[  144.887277][T11866]  </TASK>
[  145.005249][    C3] vkms_vblank_simulate: vblank timer overrun
[  145.047139][T11869] openvswitch: netlink: Geneve option length err (len 256, max 255).
[  145.051474][T11869] xt_l2tp: v2 doesn't support IP mode
[  145.099616][T11872] netlink: 'syz.7.1720': attribute type 10 has an invalid length.
[  145.189946][T11879] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1724'.
[  145.193704][T11879] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1724'.
[  145.199481][T11879] netlink: 'syz.7.1724': attribute type 11 has an invalid length.
[  145.266490][T11887] netlink: 80 bytes leftover after parsing attributes in process `syz.6.1726'.
[  145.345105][T11896] fuseblk: Bad value for 'rootmode'
[  145.608414][T11906] FAULT_INJECTION: forcing a failure.
[  145.608414][T11906] name failslab, interval 1, probability 0, space 0, times 0
[  145.612578][T11906] CPU: 0 UID: 0 PID: 11906 Comm: syz.5.1731 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  145.612601][T11906] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  145.612612][T11906] Call Trace:
[  145.612628][T11906]  <TASK>
[  145.612635][T11906]  dump_stack_lvl+0x16c/0x1f0
[  145.612666][T11906]  should_fail_ex+0x512/0x640
[  145.612686][T11906]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  145.612700][T11906]  should_failslab+0xc2/0x120
[  145.612713][T11906]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  145.612724][T11906]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  145.612736][T11906]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  145.612755][T11906]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  145.612774][T11906]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  145.612796][T11906]  mmu_topup_memory_caches+0x25/0x170
[  145.612821][T11906]  kvm_mmu_load+0xd9/0x22a0
[  145.612838][T11906]  ? kvm_apic_has_interrupt+0xb5/0x190
[  145.612852][T11906]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  145.612866][T11906]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  145.612883][T11906]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  145.612898][T11906]  ? __pfx_kvm_mmu_load+0x10/0x10
[  145.612914][T11906]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  145.612926][T11906]  ? kvm_check_and_inject_events+0x71c/0x1310
[  145.612946][T11906]  vcpu_run+0x3446/0x5390
[  145.612960][T11906]  ? kvm_mmu_post_init_vm+0x269/0x370
[  145.612978][T11906]  ? __lock_acquire+0xaa4/0x1ba0
[  145.613000][T11906]  ? __pfx_vcpu_run+0x10/0x10
[  145.613018][T11906]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  145.613033][T11906]  ? __local_bh_enable_ip+0xa4/0x120
[  145.613050][T11906]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  145.613066][T11906]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  145.613087][T11906]  kvm_vcpu_ioctl+0x5e9/0x1680
[  145.613105][T11906]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  145.613126][T11906]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  145.613146][T11906]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  145.613169][T11906]  ? hook_file_ioctl_common+0x145/0x410
[  145.613185][T11906]  ? selinux_file_ioctl+0x180/0x270
[  145.613202][T11906]  ? selinux_file_ioctl+0xb4/0x270
[  145.613221][T11906]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  145.613238][T11906]  __x64_sys_ioctl+0x193/0x200
[  145.613254][T11906]  do_syscall_64+0xcd/0x260
[  145.613272][T11906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.613283][T11906] RIP: 0033:0x7fd2dc78e969
[  145.613293][T11906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.613304][T11906] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  145.613315][T11906] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  145.613322][T11906] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  145.613328][T11906] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  145.613335][T11906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  145.613341][T11906] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  145.613355][T11906]  </TASK>
[  145.881660][T11910] ieee802154 phy0 wpan0: encryption failed: -22
[  145.943261][ T5941] block nbd0: Receive control failed (result -32)
[  145.985523][T11912] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  146.107875][   T40] audit: type=1400 audit(1747392267.314:1194): avc:  denied  { recv } for  pid=15 comm="ksoftirqd/0" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=53090 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  146.132900][   T40] audit: type=1400 audit(1747392267.314:1195): avc:  denied  { recv } for  pid=15 comm="ksoftirqd/0" saddr=127.0.0.1 src=53090 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  146.227532][T11933] overlayfs: failed to resolve './file0': -2
[  146.265751][T11935] FAULT_INJECTION: forcing a failure.
[  146.265751][T11935] name failslab, interval 1, probability 0, space 0, times 0
[  146.269883][T11935] CPU: 0 UID: 0 PID: 11935 Comm: syz.7.1740 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  146.269898][T11935] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.269905][T11935] Call Trace:
[  146.269909][T11935]  <TASK>
[  146.269914][T11935]  dump_stack_lvl+0x16c/0x1f0
[  146.269936][T11935]  should_fail_ex+0x512/0x640
[  146.269951][T11935]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  146.269965][T11935]  should_failslab+0xc2/0x120
[  146.269977][T11935]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  146.269988][T11935]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  146.269999][T11935]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  146.270017][T11935]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  146.270031][T11935]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  146.270046][T11935]  mmu_topup_memory_caches+0x25/0x170
[  146.270065][T11935]  kvm_mmu_load+0xd9/0x22a0
[  146.270082][T11935]  ? kvm_apic_has_interrupt+0xb5/0x190
[  146.270096][T11935]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  146.270111][T11935]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  146.270128][T11935]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  146.270143][T11935]  ? __pfx_kvm_mmu_load+0x10/0x10
[  146.270159][T11935]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  146.270175][T11935]  ? kvm_check_and_inject_events+0x71c/0x1310
[  146.270195][T11935]  vcpu_run+0x3446/0x5390
[  146.270209][T11935]  ? kvm_mmu_post_init_vm+0x269/0x370
[  146.270228][T11935]  ? __lock_acquire+0xaa4/0x1ba0
[  146.270250][T11935]  ? __pfx_vcpu_run+0x10/0x10
[  146.270268][T11935]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  146.270284][T11935]  ? __local_bh_enable_ip+0xa4/0x120
[  146.270302][T11935]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  146.270318][T11935]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  146.270339][T11935]  kvm_vcpu_ioctl+0x5e9/0x1680
[  146.270358][T11935]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  146.270379][T11935]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  146.270399][T11935]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  146.270425][T11935]  ? hook_file_ioctl_common+0x145/0x410
[  146.270442][T11935]  ? selinux_file_ioctl+0x180/0x270
[  146.270459][T11935]  ? selinux_file_ioctl+0xb4/0x270
[  146.270478][T11935]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  146.270495][T11935]  __x64_sys_ioctl+0x193/0x200
[  146.270517][T11935]  do_syscall_64+0xcd/0x260
[  146.270545][T11935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.270564][T11935] RIP: 0033:0x7f479398e969
[  146.270578][T11935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.270595][T11935] RSP: 002b:00007f47917f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  146.270613][T11935] RAX: ffffffffffffffda RBX: 00007f4793bb6080 RCX: 00007f479398e969
[  146.270624][T11935] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  146.270632][T11935] RBP: 00007f47917f6090 R08: 0000000000000000 R09: 0000000000000000
[  146.270638][T11935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  146.270644][T11935] R13: 0000000000000001 R14: 00007f4793bb6080 R15: 00007ffdc2beb198
[  146.270659][T11935]  </TASK>
[  146.387511][T11933] sit0: entered promiscuous mode
[  146.395667][T11933] netlink: 'syz.5.1741': attribute type 1 has an invalid length.
[  146.398506][T11933] netlink: 1 bytes leftover after parsing attributes in process `syz.5.1741'.
[  146.438220][   T40] audit: type=1400 audit(1747392267.644:1196): avc:  denied  { accept } for  pid=11943 comm="syz.6.1743" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  146.782006][T11982] FAULT_INJECTION: forcing a failure.
[  146.782006][T11982] name failslab, interval 1, probability 0, space 0, times 0
[  146.786081][T11982] CPU: 2 UID: 0 PID: 11982 Comm: syz.5.1755 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  146.786097][T11982] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.786103][T11982] Call Trace:
[  146.786108][T11982]  <TASK>
[  146.786112][T11982]  dump_stack_lvl+0x16c/0x1f0
[  146.786132][T11982]  should_fail_ex+0x512/0x640
[  146.786148][T11982]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  146.786162][T11982]  should_failslab+0xc2/0x120
[  146.786174][T11982]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  146.786184][T11982]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  146.786196][T11982]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  146.786216][T11982]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  146.786230][T11982]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  146.786246][T11982]  mmu_topup_memory_caches+0x25/0x170
[  146.786264][T11982]  kvm_mmu_load+0xd9/0x22a0
[  146.786282][T11982]  ? kvm_apic_has_interrupt+0xb5/0x190
[  146.786296][T11982]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  146.786310][T11982]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  146.786328][T11982]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  146.786343][T11982]  ? __pfx_kvm_mmu_load+0x10/0x10
[  146.786359][T11982]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  146.786372][T11982]  ? kvm_check_and_inject_events+0x71c/0x1310
[  146.786392][T11982]  vcpu_run+0x3446/0x5390
[  146.786406][T11982]  ? kvm_mmu_post_init_vm+0x269/0x370
[  146.786425][T11982]  ? __lock_acquire+0xaa4/0x1ba0
[  146.786446][T11982]  ? __pfx_vcpu_run+0x10/0x10
[  146.786465][T11982]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  146.786480][T11982]  ? __local_bh_enable_ip+0xa4/0x120
[  146.786498][T11982]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  146.786514][T11982]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  146.786534][T11982]  kvm_vcpu_ioctl+0x5e9/0x1680
[  146.786553][T11982]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  146.786574][T11982]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  146.786594][T11982]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  146.786618][T11982]  ? hook_file_ioctl_common+0x145/0x410
[  146.786634][T11982]  ? selinux_file_ioctl+0x180/0x270
[  146.786652][T11982]  ? selinux_file_ioctl+0xb4/0x270
[  146.786670][T11982]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  146.786688][T11982]  __x64_sys_ioctl+0x193/0x200
[  146.786705][T11982]  do_syscall_64+0xcd/0x260
[  146.786723][T11982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.786734][T11982] RIP: 0033:0x7fd2dc78e969
[  146.786744][T11982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.786754][T11982] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  146.786765][T11982] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  146.786772][T11982] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  146.786778][T11982] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  146.786785][T11982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  146.786791][T11982] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  146.786805][T11982]  </TASK>
[  147.948694][   T40] audit: type=1400 audit(1747392269.154:1197): avc:  denied  { egress } for  pid=33 comm="ksoftirqd/3" saddr=fe80::1b daddr=ff02::2 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[  147.958101][   T40] audit: type=1400 audit(1747392269.154:1198): avc:  denied  { sendto } for  pid=33 comm="ksoftirqd/3" saddr=fe80::1b daddr=ff02::2 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[  156.298511][T11988] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1757'.
[  156.301452][T11988] openvswitch: netlink: Unknown nsh attribute 0
[  156.303411][T11988] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  156.320033][T11996] openvswitch: netlink: VXLAN extension message has 1 unknown bytes.
[  156.351533][T12010] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1764'.
[  156.354407][T12010] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1764'.
[  156.357487][T12010] netlink: 'syz.2.1764': attribute type 15 has an invalid length.
[  156.408285][T12016] 9pnet: Could not find request transport: virtyo
[  156.409694][T12014] FAULT_INJECTION: forcing a failure.
[  156.409694][T12014] name failslab, interval 1, probability 0, space 0, times 0
[  156.414462][T12014] CPU: 0 UID: 0 PID: 12014 Comm: syz.5.1765 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  156.414477][T12014] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.414484][T12014] Call Trace:
[  156.414488][T12014]  <TASK>
[  156.414492][T12014]  dump_stack_lvl+0x16c/0x1f0
[  156.414512][T12014]  should_fail_ex+0x512/0x640
[  156.414529][T12014]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  156.414542][T12014]  should_failslab+0xc2/0x120
[  156.414555][T12014]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  156.414565][T12014]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  156.414576][T12014]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  156.414593][T12014]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  156.414606][T12014]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  156.414622][T12014]  mmu_topup_memory_caches+0x25/0x170
[  156.414640][T12014]  kvm_mmu_load+0xd9/0x22a0
[  156.414657][T12014]  ? kvm_apic_has_interrupt+0xb5/0x190
[  156.414671][T12014]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  156.414685][T12014]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  156.414702][T12014]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  156.414730][T12014]  ? __pfx_kvm_mmu_load+0x10/0x10
[  156.414747][T12014]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  156.414771][T12014]  ? kvm_check_and_inject_events+0x71c/0x1310
[  156.414792][T12014]  vcpu_run+0x3446/0x5390
[  156.414806][T12014]  ? kvm_mmu_post_init_vm+0x269/0x370
[  156.414825][T12014]  ? __lock_acquire+0xaa4/0x1ba0
[  156.414846][T12014]  ? __pfx_vcpu_run+0x10/0x10
[  156.414864][T12014]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  156.414879][T12014]  ? __local_bh_enable_ip+0xa4/0x120
[  156.414897][T12014]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  156.414913][T12014]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  156.414933][T12014]  kvm_vcpu_ioctl+0x5e9/0x1680
[  156.414952][T12014]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  156.414972][T12014]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  156.414992][T12014]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  156.415016][T12014]  ? hook_file_ioctl_common+0x145/0x410
[  156.415032][T12014]  ? selinux_file_ioctl+0x180/0x270
[  156.415053][T12014]  ? selinux_file_ioctl+0xb4/0x270
[  156.415071][T12014]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  156.415088][T12014]  __x64_sys_ioctl+0x193/0x200
[  156.415105][T12014]  do_syscall_64+0xcd/0x260
[  156.415123][T12014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.415134][T12014] RIP: 0033:0x7fd2dc78e969
[  156.415143][T12014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.415154][T12014] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  156.415164][T12014] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  156.415171][T12014] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  156.415178][T12014] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  156.415184][T12014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  156.415191][T12014] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  156.415205][T12014]  </TASK>
[  156.548222][   T40] audit: type=1400 audit(1747392277.754:1199): avc:  denied  { connect } for  pid=12028 comm="syz.2.1768" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  156.584501][T12036] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  156.648260][   T40] audit: type=1400 audit(1747392277.854:1200): avc:  denied  { ioctl } for  pid=12045 comm="syz.7.1774" path="socket:[45835]" dev="sockfs" ino=45835 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  156.656531][   T40] audit: type=1400 audit(1747392277.854:1201): avc:  denied  { write } for  pid=12045 comm="syz.7.1774" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  156.667269][T12044] cdrom: dropping to single frame dma
[  156.743628][T12065] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1780'.
[  156.743659][T12066] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1780'.
[  156.853259][T12079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1786'.
[  156.854866][T12077] FAULT_INJECTION: forcing a failure.
[  156.854866][T12077] name failslab, interval 1, probability 0, space 0, times 0
[  156.857376][T12079] netlink: 'syz.2.1786': attribute type 1 has an invalid length.
[  156.860468][T12077] CPU: 2 UID: 0 PID: 12077 Comm: syz.6.1785 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  156.860491][T12077] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.860517][T12077] Call Trace:
[  156.860524][T12077]  <TASK>
[  156.860531][T12077]  dump_stack_lvl+0x16c/0x1f0
[  156.860558][T12077]  should_fail_ex+0x512/0x640
[  156.860580][T12077]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  156.860601][T12077]  should_failslab+0xc2/0x120
[  156.860619][T12077]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  156.860634][T12077]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  156.860651][T12077]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  156.860672][T12077]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  156.860694][T12077]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  156.860717][T12077]  mmu_topup_memory_caches+0x25/0x170
[  156.860741][T12077]  kvm_mmu_load+0xd9/0x22a0
[  156.860765][T12077]  ? kvm_apic_has_interrupt+0xb5/0x190
[  156.860785][T12077]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  156.860807][T12077]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  156.860830][T12077]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  156.860851][T12077]  ? __pfx_kvm_mmu_load+0x10/0x10
[  156.860874][T12077]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  156.860893][T12077]  ? kvm_check_and_inject_events+0x71c/0x1310
[  156.860925][T12077]  vcpu_run+0x3446/0x5390
[  156.860949][T12077]  ? __lock_acquire+0xaa4/0x1ba0
[  156.860981][T12077]  ? __pfx_vcpu_run+0x10/0x10
[  156.861008][T12077]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  156.861029][T12077]  ? __local_bh_enable_ip+0xa4/0x120
[  156.861055][T12077]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  156.861078][T12077]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  156.861112][T12077]  kvm_vcpu_ioctl+0x5e9/0x1680
[  156.861138][T12077]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  156.861169][T12077]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  156.861198][T12077]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  156.861233][T12077]  ? hook_file_ioctl_common+0x145/0x410
[  156.861257][T12077]  ? selinux_file_ioctl+0x180/0x270
[  156.861281][T12077]  ? selinux_file_ioctl+0xb4/0x270
[  156.861307][T12077]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  156.861332][T12077]  __x64_sys_ioctl+0x193/0x200
[  156.861362][T12077]  do_syscall_64+0xcd/0x260
[  156.861389][T12077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.861406][T12077] RIP: 0033:0x7f5c2478e969
[  156.861419][T12077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.861434][T12077] RSP: 002b:00007f5c25688038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  156.861449][T12077] RAX: ffffffffffffffda RBX: 00007f5c249b5fa0 RCX: 00007f5c2478e969
[  156.861459][T12077] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  156.861469][T12077] RBP: 00007f5c25688090 R08: 0000000000000000 R09: 0000000000000000
[  156.861478][T12077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  156.861487][T12077] R13: 0000000000000000 R14: 00007f5c249b5fa0 R15: 00007fff2cf44a98
[  156.861510][T12077]  </TASK>
[  156.959065][T12079] netlink: 144 bytes leftover after parsing attributes in process `syz.2.1786'.
[  157.064956][T12100] new mount options do not match the existing superblock, will be ignored
[  157.070995][T12100] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[  157.090391][T12102] sctp: [Deprecated]: syz.5.1795 (pid 12102) Use of int in max_burst socket option.
[  157.090391][T12102] Use struct sctp_assoc_value instead
[  157.098982][   T40] audit: type=1400 audit(1747392278.304:1202): avc:  denied  { bind } for  pid=12103 comm="syz.2.1796" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  157.107289][   T40] audit: type=1400 audit(1747392278.304:1203): avc:  denied  { listen } for  pid=12103 comm="syz.2.1796" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  157.157683][T12110] syz_tun: entered allmulticast mode
[  157.176932][T12103] syz_tun: left allmulticast mode
[  157.236110][T12125] Cannot find set identified by id 0 to match
[  157.241937][   T40] audit: type=1400 audit(1747392278.444:1204): avc:  denied  { ioctl } for  pid=12124 comm="syz.2.1803" path="socket:[46811]" dev="sockfs" ino=46811 ioctlcmd=0x8903 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  157.253067][T12116] block nbd6: shutting down sockets
[  157.256047][T12122] FAULT_INJECTION: forcing a failure.
[  157.256047][T12122] name failslab, interval 1, probability 0, space 0, times 0
[  157.260408][T12122] CPU: 0 UID: 0 PID: 12122 Comm: syz.5.1800 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  157.260423][T12122] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  157.260430][T12122] Call Trace:
[  157.260434][T12122]  <TASK>
[  157.260439][T12122]  dump_stack_lvl+0x16c/0x1f0
[  157.260459][T12122]  should_fail_ex+0x512/0x640
[  157.260475][T12122]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  157.260488][T12122]  should_failslab+0xc2/0x120
[  157.260501][T12122]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  157.260511][T12122]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  157.260523][T12122]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  157.260539][T12122]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  157.260552][T12122]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  157.260568][T12122]  mmu_topup_memory_caches+0x25/0x170
[  157.260586][T12122]  kvm_mmu_load+0xd9/0x22a0
[  157.260603][T12122]  ? kvm_apic_has_interrupt+0xb5/0x190
[  157.260616][T12122]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  157.260631][T12122]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  157.260648][T12122]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  157.260662][T12122]  ? __pfx_kvm_mmu_load+0x10/0x10
[  157.260678][T12122]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  157.260691][T12122]  ? kvm_check_and_inject_events+0x71c/0x1310
[  157.260710][T12122]  vcpu_run+0x3446/0x5390
[  157.260724][T12122]  ? kvm_mmu_post_init_vm+0x269/0x370
[  157.260743][T12122]  ? __lock_acquire+0xaa4/0x1ba0
[  157.260765][T12122]  ? __pfx_vcpu_run+0x10/0x10
[  157.260784][T12122]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  157.260799][T12122]  ? __local_bh_enable_ip+0xa4/0x120
[  157.260817][T12122]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  157.260833][T12122]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  157.260854][T12122]  kvm_vcpu_ioctl+0x5e9/0x1680
[  157.260872][T12122]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  157.260893][T12122]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  157.260913][T12122]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  157.260937][T12122]  ? hook_file_ioctl_common+0x145/0x410
[  157.260952][T12122]  ? selinux_file_ioctl+0x180/0x270
[  157.260970][T12122]  ? selinux_file_ioctl+0xb4/0x270
[  157.260988][T12122]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  157.261005][T12122]  __x64_sys_ioctl+0x193/0x200
[  157.261023][T12122]  do_syscall_64+0xcd/0x260
[  157.261041][T12122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.261052][T12122] RIP: 0033:0x7fd2dc78e969
[  157.261062][T12122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.261077][T12122] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  157.261088][T12122] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  157.261094][T12122] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  157.261101][T12122] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  157.261107][T12122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  157.261113][T12122] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  157.261127][T12122]  </TASK>
[  157.406663][T12128] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  157.411011][T12128] batadv_slave_0: entered promiscuous mode
[  157.427226][T12130] program syz.2.1805 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  157.430806][T12130] ata1.00: non-matching transfer count (32/0)
[  157.462734][T12133] batadv_slave_1: entered promiscuous mode
[  157.466836][T12133] batadv_slave_1: left promiscuous mode
[  157.469327][T12133] No buffer was provided with the request
[  157.472336][T12133] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  157.589764][   T40] audit: type=1400 audit(1747392278.794:1205): avc:  denied  { ioctl } for  pid=12142 comm="syz.5.1811" path="socket:[49157]" dev="sockfs" ino=49157 ioctlcmd=0x890c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  157.601285][T12145] IPVS: length: 184 != 24
[  157.749920][T12156] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  157.792382][T12158] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  157.796449][T12158] x_tables: ip6_tables: TCPOPTSTRIP.0 target: invalid size 32 (kernel) != (user) 22
[  157.943334][T12167] FAULT_INJECTION: forcing a failure.
[  157.943334][T12167] name failslab, interval 1, probability 0, space 0, times 0
[  157.947510][T12167] CPU: 1 UID: 0 PID: 12167 Comm: syz.5.1818 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  157.947526][T12167] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  157.947533][T12167] Call Trace:
[  157.947537][T12167]  <TASK>
[  157.947542][T12167]  dump_stack_lvl+0x16c/0x1f0
[  157.947562][T12167]  should_fail_ex+0x512/0x640
[  157.947578][T12167]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  157.947592][T12167]  should_failslab+0xc2/0x120
[  157.947605][T12167]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  157.947615][T12167]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  157.947627][T12167]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  157.947644][T12167]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  157.947657][T12167]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  157.947673][T12167]  mmu_topup_memory_caches+0x25/0x170
[  157.947692][T12167]  kvm_mmu_load+0xd9/0x22a0
[  157.947709][T12167]  ? kvm_apic_has_interrupt+0xb5/0x190
[  157.947723][T12167]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  157.947738][T12167]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  157.947755][T12167]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  157.947769][T12167]  ? __pfx_kvm_mmu_load+0x10/0x10
[  157.947786][T12167]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  157.947799][T12167]  ? kvm_check_and_inject_events+0x71c/0x1310
[  157.947818][T12167]  vcpu_run+0x3446/0x5390
[  157.947850][T12167]  ? kvm_mmu_post_init_vm+0x269/0x370
[  157.947870][T12167]  ? __lock_acquire+0xaa4/0x1ba0
[  157.947892][T12167]  ? __pfx_vcpu_run+0x10/0x10
[  157.947910][T12167]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  157.947926][T12167]  ? __local_bh_enable_ip+0xa4/0x120
[  157.947945][T12167]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  157.947961][T12167]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  157.947982][T12167]  kvm_vcpu_ioctl+0x5e9/0x1680
[  157.948001][T12167]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  157.948022][T12167]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  157.948042][T12167]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  157.948066][T12167]  ? hook_file_ioctl_common+0x145/0x410
[  157.948082][T12167]  ? selinux_file_ioctl+0x180/0x270
[  157.948104][T12167]  ? selinux_file_ioctl+0xb4/0x270
[  157.948123][T12167]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  157.948140][T12167]  __x64_sys_ioctl+0x193/0x200
[  157.948158][T12167]  do_syscall_64+0xcd/0x260
[  157.948176][T12167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.948187][T12167] RIP: 0033:0x7fd2dc78e969
[  157.948197][T12167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.948208][T12167] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  157.948219][T12167] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  157.948226][T12167] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  157.948233][T12167] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  157.948239][T12167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  157.948245][T12167] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  157.948259][T12167]  </TASK>
[  158.005230][T12170] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1819'.
[  158.027652][T12173] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1820'.
[  158.084403][T12170] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1819'.
[  158.195966][T12185] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  158.198091][T12185] VFS: Can't find a romfs filesystem on dev nullb0.
[  158.198091][T12185] 
[  158.255215][T12198] No source specified
[  158.386088][T12218] FAULT_INJECTION: forcing a failure.
[  158.386088][T12218] name failslab, interval 1, probability 0, space 0, times 0
[  158.390013][T12218] CPU: 0 UID: 0 PID: 12218 Comm: syz.2.1831 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  158.390032][T12218] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  158.390039][T12218] Call Trace:
[  158.390043][T12218]  <TASK>
[  158.390048][T12218]  dump_stack_lvl+0x16c/0x1f0
[  158.390067][T12218]  should_fail_ex+0x512/0x640
[  158.390084][T12218]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  158.390097][T12218]  should_failslab+0xc2/0x120
[  158.390110][T12218]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  158.390120][T12218]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  158.390132][T12218]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  158.390148][T12218]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  158.390162][T12218]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  158.390177][T12218]  mmu_topup_memory_caches+0x25/0x170
[  158.390195][T12218]  kvm_mmu_load+0xd9/0x22a0
[  158.390212][T12218]  ? kvm_apic_has_interrupt+0xb5/0x190
[  158.390226][T12218]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  158.390241][T12218]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  158.390258][T12218]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  158.390273][T12218]  ? __pfx_kvm_mmu_load+0x10/0x10
[  158.390289][T12218]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  158.390301][T12218]  ? kvm_check_and_inject_events+0x71c/0x1310
[  158.390320][T12218]  vcpu_run+0x3446/0x5390
[  158.390337][T12218]  ? __lock_acquire+0xaa4/0x1ba0
[  158.390359][T12218]  ? __pfx_vcpu_run+0x10/0x10
[  158.390377][T12218]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  158.390392][T12218]  ? __local_bh_enable_ip+0xa4/0x120
[  158.390410][T12218]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  158.390426][T12218]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  158.390446][T12218]  kvm_vcpu_ioctl+0x5e9/0x1680
[  158.390465][T12218]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  158.390486][T12218]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  158.390506][T12218]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  158.390529][T12218]  ? hook_file_ioctl_common+0x145/0x410
[  158.390544][T12218]  ? selinux_file_ioctl+0x180/0x270
[  158.390561][T12218]  ? selinux_file_ioctl+0xb4/0x270
[  158.390580][T12218]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  158.390597][T12218]  __x64_sys_ioctl+0x193/0x200
[  158.390613][T12218]  do_syscall_64+0xcd/0x260
[  158.390631][T12218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.390642][T12218] RIP: 0033:0x7fd2dd18e969
[  158.390651][T12218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.390661][T12218] RSP: 002b:00007fd2ddf34038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  158.390671][T12218] RAX: ffffffffffffffda RBX: 00007fd2dd3b6080 RCX: 00007fd2dd18e969
[  158.390678][T12218] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  158.390684][T12218] RBP: 00007fd2ddf34090 R08: 0000000000000000 R09: 0000000000000000
[  158.390691][T12218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  158.390697][T12218] R13: 0000000000000001 R14: 00007fd2dd3b6080 R15: 00007ffc29f1f808
[  158.390710][T12218]  </TASK>
[  158.404978][T12220] netlink: 'syz.5.1834': attribute type 1 has an invalid length.
[  158.449280][   T40] audit: type=1400 audit(1747392279.654:1206): avc:  denied  { setopt } for  pid=12217 comm="syz.5.1834" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  158.462010][T12220] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  158.510072][T12229] support for the xor transformation has been removed.
[  158.550618][   T58] IPVS: starting estimator thread 0...
[  158.551914][T12236] netlink: 'syz.6.1839': attribute type 2 has an invalid length.
[  158.634913][T12237] IPVS: using max 43 ests per chain, 103200 per kthread
[  158.661230][T12236] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3
[  158.680647][T12257] block nbd7: NBD_DISCONNECT
[  158.682839][T12257] block nbd7: Disconnected due to user request.
[  158.689010][T12257] block nbd7: shutting down sockets
[  158.695979][T12261] FAULT_INJECTION: forcing a failure.
[  158.695979][T12261] name failslab, interval 1, probability 0, space 0, times 0
[  158.699911][T12261] CPU: 0 UID: 0 PID: 12261 Comm: syz.2.1848 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  158.699927][T12261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  158.699934][T12261] Call Trace:
[  158.699938][T12261]  <TASK>
[  158.699942][T12261]  dump_stack_lvl+0x16c/0x1f0
[  158.699962][T12261]  should_fail_ex+0x512/0x640
[  158.699979][T12261]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  158.699992][T12261]  should_failslab+0xc2/0x120
[  158.700007][T12261]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  158.700017][T12261]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  158.700029][T12261]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  158.700046][T12261]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  158.700059][T12261]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  158.700075][T12261]  mmu_topup_memory_caches+0x25/0x170
[  158.700107][T12261]  kvm_mmu_load+0xd9/0x22a0
[  158.700124][T12261]  ? kvm_apic_has_interrupt+0xb5/0x190
[  158.700138][T12261]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  158.700153][T12261]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  158.700170][T12261]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  158.700184][T12261]  ? __pfx_kvm_mmu_load+0x10/0x10
[  158.700201][T12261]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  158.700213][T12261]  ? kvm_check_and_inject_events+0x71c/0x1310
[  158.700233][T12261]  vcpu_run+0x3446/0x5390
[  158.700247][T12261]  ? kvm_mmu_post_init_vm+0x269/0x370
[  158.700270][T12261]  ? __lock_acquire+0xaa4/0x1ba0
[  158.700292][T12261]  ? __pfx_vcpu_run+0x10/0x10
[  158.700310][T12261]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  158.700325][T12261]  ? __local_bh_enable_ip+0xa4/0x120
[  158.700343][T12261]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  158.700359][T12261]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  158.700380][T12261]  kvm_vcpu_ioctl+0x5e9/0x1680
[  158.700399][T12261]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  158.700420][T12261]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  158.700440][T12261]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  158.700463][T12261]  ? hook_file_ioctl_common+0x145/0x410
[  158.700480][T12261]  ? selinux_file_ioctl+0x180/0x270
[  158.700497][T12261]  ? selinux_file_ioctl+0xb4/0x270
[  158.700515][T12261]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  158.700533][T12261]  __x64_sys_ioctl+0x193/0x200
[  158.700550][T12261]  do_syscall_64+0xcd/0x260
[  158.700568][T12261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.700579][T12261] RIP: 0033:0x7fd2dd18e969
[  158.700589][T12261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.700599][T12261] RSP: 002b:00007fd2ddf55038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  158.700610][T12261] RAX: ffffffffffffffda RBX: 00007fd2dd3b5fa0 RCX: 00007fd2dd18e969
[  158.700617][T12261] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  158.700624][T12261] RBP: 00007fd2ddf55090 R08: 0000000000000000 R09: 0000000000000000
[  158.700630][T12261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  158.700636][T12261] R13: 0000000000000000 R14: 00007fd2dd3b5fa0 R15: 00007ffc29f1f808
[  158.700650][T12261]  </TASK>
[  158.730498][T12271] ieee802154 phy0 wpan0: encryption failed: -22
[  158.823183][T12257] block nbd7: Unsupported socket: shutdown callout must be supported.
[  158.910110][   T40] audit: type=1400 audit(1747392280.114:1207): avc:  denied  { accept } for  pid=12280 comm="syz.2.1855" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  158.936436][   T58] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[  158.981475][   T40] audit: type=1400 audit(1747392280.184:1208): avc:  denied  { read } for  pid=12292 comm="syz.2.1859" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  159.065137][   T58] usb 11-1: device descriptor read/64, error -71
[  159.083193][T12301] FAULT_INJECTION: forcing a failure.
[  159.083193][T12301] name failslab, interval 1, probability 0, space 0, times 0
[  159.087680][T12301] CPU: 1 UID: 0 PID: 12301 Comm: syz.5.1863 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  159.087695][T12301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  159.087702][T12301] Call Trace:
[  159.087705][T12301]  <TASK>
[  159.087710][T12301]  dump_stack_lvl+0x16c/0x1f0
[  159.087742][T12301]  should_fail_ex+0x512/0x640
[  159.087761][T12301]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  159.087775][T12301]  should_failslab+0xc2/0x120
[  159.087787][T12301]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  159.087797][T12301]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  159.087809][T12301]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  159.087845][T12301]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  159.087859][T12301]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  159.087875][T12301]  mmu_topup_memory_caches+0x25/0x170
[  159.087893][T12301]  kvm_mmu_load+0xd9/0x22a0
[  159.087910][T12301]  ? kvm_apic_has_interrupt+0xb5/0x190
[  159.087924][T12301]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  159.087939][T12301]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  159.087956][T12301]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  159.087971][T12301]  ? __pfx_kvm_mmu_load+0x10/0x10
[  159.087987][T12301]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  159.087999][T12301]  ? kvm_check_and_inject_events+0x71c/0x1310
[  159.088019][T12301]  vcpu_run+0x3446/0x5390
[  159.088033][T12301]  ? kvm_mmu_post_init_vm+0x269/0x370
[  159.088052][T12301]  ? __lock_acquire+0xaa4/0x1ba0
[  159.088073][T12301]  ? __pfx_vcpu_run+0x10/0x10
[  159.088096][T12301]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  159.088112][T12301]  ? __local_bh_enable_ip+0xa4/0x120
[  159.088132][T12301]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  159.088152][T12301]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  159.088173][T12301]  kvm_vcpu_ioctl+0x5e9/0x1680
[  159.088191][T12301]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  159.088212][T12301]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  159.088232][T12301]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  159.088255][T12301]  ? hook_file_ioctl_common+0x145/0x410
[  159.088271][T12301]  ? selinux_file_ioctl+0x180/0x270
[  159.088288][T12301]  ? selinux_file_ioctl+0xb4/0x270
[  159.088307][T12301]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  159.088324][T12301]  __x64_sys_ioctl+0x193/0x200
[  159.088341][T12301]  do_syscall_64+0xcd/0x260
[  159.088359][T12301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.088370][T12301] RIP: 0033:0x7fd2dc78e969
[  159.088380][T12301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.088390][T12301] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  159.088401][T12301] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  159.088408][T12301] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  159.088414][T12301] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  159.088420][T12301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  159.088426][T12301] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  159.088440][T12301]  </TASK>
[  159.181767][T12306] overlay: filesystem on ./bus not supported
[  159.345045][   T58] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  159.474837][   T58] usb 11-1: device descriptor read/64, error -71
[  159.585114][   T58] usb usb11-port1: attempt power cycle
[  159.767931][T12323] fuse: Unknown parameter '�F����^�SϽ��Ǭ�j��y����k_s1M��K�]��"��D#�A�O#h�M`�@�H���5+�`��8�
[  159.767931][T12323] �dk�'
[  159.806924][T12329] xt_hashlimit: size too large, truncated to 1048576
[  159.832302][T12332] netlink: 'syz.5.1872': attribute type 1 has an invalid length.
[  159.916231][T12334] FAULT_INJECTION: forcing a failure.
[  159.916231][T12334] name failslab, interval 1, probability 0, space 0, times 0
[  159.921036][T12334] CPU: 0 UID: 0 PID: 12334 Comm: syz.5.1873 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  159.921052][T12334] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  159.921059][T12334] Call Trace:
[  159.921063][T12334]  <TASK>
[  159.921067][T12334]  dump_stack_lvl+0x16c/0x1f0
[  159.921087][T12334]  should_fail_ex+0x512/0x640
[  159.921104][T12334]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  159.921117][T12334]  should_failslab+0xc2/0x120
[  159.921130][T12334]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  159.921139][T12334]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  159.921151][T12334]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  159.921167][T12334]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  159.921181][T12334]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  159.921197][T12334]  mmu_topup_memory_caches+0x25/0x170
[  159.921215][T12334]  kvm_mmu_load+0xd9/0x22a0
[  159.921232][T12334]  ? kvm_apic_has_interrupt+0xb5/0x190
[  159.921246][T12334]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  159.921261][T12334]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  159.921278][T12334]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  159.921293][T12334]  ? __pfx_kvm_mmu_load+0x10/0x10
[  159.921309][T12334]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  159.921322][T12334]  ? kvm_check_and_inject_events+0x71c/0x1310
[  159.921341][T12334]  vcpu_run+0x3446/0x5390
[  159.921363][T12334]  ? __lock_acquire+0xaa4/0x1ba0
[  159.921385][T12334]  ? __pfx_vcpu_run+0x10/0x10
[  159.921403][T12334]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  159.921419][T12334]  ? __local_bh_enable_ip+0xa4/0x120
[  159.921438][T12334]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  159.921454][T12334]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  159.921474][T12334]  kvm_vcpu_ioctl+0x5e9/0x1680
[  159.921493][T12334]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  159.921514][T12334]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  159.921534][T12334]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  159.921558][T12334]  ? hook_file_ioctl_common+0x145/0x410
[  159.921574][T12334]  ? selinux_file_ioctl+0x180/0x270
[  159.921591][T12334]  ? selinux_file_ioctl+0xb4/0x270
[  159.921609][T12334]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  159.921627][T12334]  __x64_sys_ioctl+0x193/0x200
[  159.921644][T12334]  do_syscall_64+0xcd/0x260
[  159.921662][T12334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.921673][T12334] RIP: 0033:0x7fd2dc78e969
[  159.921682][T12334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.921693][T12334] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  159.921703][T12334] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  159.921710][T12334] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  159.921717][T12334] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  159.921723][T12334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  159.921729][T12334] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  159.921743][T12334]  </TASK>
[  159.924823][   T58] usb 11-1: new high-speed USB device number 5 using dummy_hcd
[  160.065776][   T58] usb 11-1: device descriptor read/8, error -71
[  160.307990][   T58] usb 11-1: new high-speed USB device number 6 using dummy_hcd
[  160.325304][   T58] usb 11-1: device descriptor read/8, error -71
[  160.439072][   T58] usb usb11-port1: unable to enumerate USB device
[  160.441526][T12372] netlink: 'syz.5.1883': attribute type 1 has an invalid length.
[  160.476228][T12372] 8021q: adding VLAN 0 to HW filter on device bond5
[  160.489896][T12373] dummy0: entered promiscuous mode
[  160.497128][T12376] FAULT_INJECTION: forcing a failure.
[  160.497128][T12376] name failslab, interval 1, probability 0, space 0, times 0
[  160.497620][T12373] bond5: (slave dummy0): making interface the new active one
[  160.501169][T12376] CPU: 3 UID: 0 PID: 12376 Comm: syz.2.1884 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  160.501186][T12376] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.501193][T12376] Call Trace:
[  160.501198][T12376]  <TASK>
[  160.501203][T12376]  dump_stack_lvl+0x16c/0x1f0
[  160.501224][T12376]  should_fail_ex+0x512/0x640
[  160.501240][T12376]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  160.501253][T12376]  should_failslab+0xc2/0x120
[  160.501266][T12376]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  160.501276][T12376]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  160.501288][T12376]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  160.501305][T12376]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  160.501318][T12376]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  160.501334][T12376]  mmu_topup_memory_caches+0x25/0x170
[  160.501352][T12376]  kvm_mmu_load+0xd9/0x22a0
[  160.501369][T12376]  ? kvm_apic_has_interrupt+0xb5/0x190
[  160.501383][T12376]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  160.501397][T12376]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  160.501414][T12376]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  160.501429][T12376]  ? __pfx_kvm_mmu_load+0x10/0x10
[  160.501445][T12376]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  160.501457][T12376]  ? kvm_check_and_inject_events+0x71c/0x1310
[  160.501477][T12376]  vcpu_run+0x3446/0x5390
[  160.501491][T12376]  ? kvm_mmu_post_init_vm+0x269/0x370
[  160.501510][T12376]  ? __lock_acquire+0xaa4/0x1ba0
[  160.501532][T12376]  ? __pfx_vcpu_run+0x10/0x10
[  160.501550][T12376]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  160.501565][T12376]  ? __local_bh_enable_ip+0xa4/0x120
[  160.501583][T12376]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  160.501598][T12376]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  160.501619][T12376]  kvm_vcpu_ioctl+0x5e9/0x1680
[  160.501637][T12376]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  160.501658][T12376]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  160.501678][T12376]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  160.501704][T12376]  ? hook_file_ioctl_common+0x145/0x410
[  160.501721][T12376]  ? selinux_file_ioctl+0x180/0x270
[  160.501738][T12376]  ? selinux_file_ioctl+0xb4/0x270
[  160.501756][T12376]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  160.501776][T12376]  __x64_sys_ioctl+0x193/0x200
[  160.501793][T12376]  do_syscall_64+0xcd/0x260
[  160.501811][T12376]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.501825][T12376] RIP: 0033:0x7fd2dd18e969
[  160.501834][T12376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.501845][T12376] RSP: 002b:00007fd2ddf55038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  160.501855][T12376] RAX: ffffffffffffffda RBX: 00007fd2dd3b5fa0 RCX: 00007fd2dd18e969
[  160.501862][T12376] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  160.501868][T12376] RBP: 00007fd2ddf55090 R08: 0000000000000000 R09: 0000000000000000
[  160.501875][T12376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  160.501881][T12376] R13: 0000000000000000 R14: 00007fd2dd3b5fa0 R15: 00007ffc29f1f808
[  160.501895][T12376]  </TASK>
[  160.604973][T12373] bond5: (slave dummy0): Enslaving as an active interface with an up link
[  160.685376][T12384] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  160.717105][ T6916] bond5: (slave dummy0): link status definitely down, disabling slave
[  160.722892][ T6916] bond5: now running without any active interface!
[  160.747018][T12394] netlink: 'syz.5.1890': attribute type 10 has an invalid length.
[  160.852744][T12414] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  160.859995][T12414] cramfs: wrong magic
[  160.878447][T12411] FAULT_INJECTION: forcing a failure.
[  160.878447][T12411] name failslab, interval 1, probability 0, space 0, times 0
[  160.883243][T12411] CPU: 2 UID: 0 PID: 12411 Comm: syz.2.1896 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  160.883259][T12411] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.883265][T12411] Call Trace:
[  160.883269][T12411]  <TASK>
[  160.883274][T12411]  dump_stack_lvl+0x16c/0x1f0
[  160.883295][T12411]  should_fail_ex+0x512/0x640
[  160.883310][T12411]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  160.883328][T12411]  should_failslab+0xc2/0x120
[  160.883342][T12411]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  160.883352][T12411]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  160.883375][T12411]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  160.883394][T12411]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  160.883408][T12411]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  160.883424][T12411]  mmu_topup_memory_caches+0x25/0x170
[  160.883442][T12411]  kvm_mmu_load+0xd9/0x22a0
[  160.883459][T12411]  ? kvm_apic_has_interrupt+0xb5/0x190
[  160.883473][T12411]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  160.883487][T12411]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  160.883504][T12411]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  160.883519][T12411]  ? __pfx_kvm_mmu_load+0x10/0x10
[  160.883535][T12411]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  160.883547][T12411]  ? kvm_check_and_inject_events+0x71c/0x1310
[  160.883567][T12411]  vcpu_run+0x3446/0x5390
[  160.883581][T12411]  ? kvm_mmu_post_init_vm+0x269/0x370
[  160.883600][T12411]  ? __lock_acquire+0xaa4/0x1ba0
[  160.883621][T12411]  ? __pfx_vcpu_run+0x10/0x10
[  160.883639][T12411]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  160.883655][T12411]  ? __local_bh_enable_ip+0xa4/0x120
[  160.883672][T12411]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  160.883688][T12411]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  160.883709][T12411]  kvm_vcpu_ioctl+0x5e9/0x1680
[  160.883727][T12411]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  160.883748][T12411]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  160.883768][T12411]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  160.883791][T12411]  ? hook_file_ioctl_common+0x145/0x410
[  160.883825][T12411]  ? selinux_file_ioctl+0x180/0x270
[  160.883843][T12411]  ? selinux_file_ioctl+0xb4/0x270
[  160.883861][T12411]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  160.883878][T12411]  __x64_sys_ioctl+0x193/0x200
[  160.883896][T12411]  do_syscall_64+0xcd/0x260
[  160.883914][T12411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.883925][T12411] RIP: 0033:0x7fd2dd18e969
[  160.883934][T12411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.883946][T12411] RSP: 002b:00007fd2ddf55038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  160.883956][T12411] RAX: ffffffffffffffda RBX: 00007fd2dd3b5fa0 RCX: 00007fd2dd18e969
[  160.883963][T12411] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  160.883969][T12411] RBP: 00007fd2ddf55090 R08: 0000000000000000 R09: 0000000000000000
[  160.883975][T12411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  160.883982][T12411] R13: 0000000000000000 R14: 00007fd2dd3b5fa0 R15: 00007ffc29f1f808
[  160.883996][T12411]  </TASK>
[  160.981614][    C2] vkms_vblank_simulate: vblank timer overrun
[  161.166841][T12434] NILFS (nbd2): device size too small
[  161.173928][T12434] tmpfs: Bad value for 'mpol'
[  161.339871][T12453] __nla_validate_parse: 11 callbacks suppressed
[  161.339883][T12453] netlink: 700 bytes leftover after parsing attributes in process `syz.7.1909'.
[  161.381856][T12455] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1910'.
[  161.386701][T12455] netlink: 'syz.7.1910': attribute type 19 has an invalid length.
[  161.389201][T12455] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1910'.
[  161.393578][T12455] random: crng reseeded on system resumption
[  161.754029][T12457] FAULT_INJECTION: forcing a failure.
[  161.754029][T12457] name failslab, interval 1, probability 0, space 0, times 0
[  161.758848][T12459] syz.5.1912: attempt to access beyond end of device
[  161.758848][T12459] nbd5: rw=2048, sector=0, nr_sectors = 8 limit=0
[  161.760100][T12457] CPU: 2 UID: 0 PID: 12457 Comm: syz.6.1911 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  161.760124][T12457] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.760135][T12457] Call Trace:
[  161.760140][T12457]  <TASK>
[  161.760146][T12457]  dump_stack_lvl+0x16c/0x1f0
[  161.760176][T12457]  should_fail_ex+0x512/0x640
[  161.760201][T12457]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  161.760223][T12457]  should_failslab+0xc2/0x120
[  161.760243][T12457]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  161.760266][T12457]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  161.760284][T12457]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  161.760309][T12457]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  161.760332][T12457]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  161.760358][T12457]  mmu_topup_memory_caches+0x25/0x170
[  161.760387][T12457]  kvm_mmu_load+0xd9/0x22a0
[  161.760414][T12457]  ? kvm_apic_has_interrupt+0xb5/0x190
[  161.760436][T12457]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  161.760458][T12457]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  161.760485][T12457]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  161.760507][T12457]  ? __pfx_kvm_mmu_load+0x10/0x10
[  161.760531][T12457]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  161.760552][T12457]  ? kvm_check_and_inject_events+0x71c/0x1310
[  161.760582][T12457]  vcpu_run+0x3446/0x5390
[  161.760605][T12457]  ? kvm_mmu_post_init_vm+0x269/0x370
[  161.760635][T12457]  ? __lock_acquire+0xaa4/0x1ba0
[  161.760669][T12457]  ? __pfx_vcpu_run+0x10/0x10
[  161.760699][T12457]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  161.760722][T12457]  ? __local_bh_enable_ip+0xa4/0x120
[  161.760750][T12457]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  161.760775][T12457]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  161.760810][T12457]  kvm_vcpu_ioctl+0x5e9/0x1680
[  161.760839][T12457]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  161.760872][T12457]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  161.760903][T12457]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  161.760939][T12457]  ? hook_file_ioctl_common+0x145/0x410
[  161.760966][T12457]  ? selinux_file_ioctl+0x180/0x270
[  161.760992][T12457]  ? selinux_file_ioctl+0xb4/0x270
[  161.761020][T12457]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  161.761046][T12457]  __x64_sys_ioctl+0x193/0x200
[  161.761072][T12457]  do_syscall_64+0xcd/0x260
[  161.761101][T12457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.761118][T12457] RIP: 0033:0x7f5c2478e969
[  161.761133][T12457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.761150][T12457] RSP: 002b:00007f5c25688038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  161.761166][T12457] RAX: ffffffffffffffda RBX: 00007f5c249b5fa0 RCX: 00007f5c2478e969
[  161.761178][T12457] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  161.761188][T12457] RBP: 00007f5c25688090 R08: 0000000000000000 R09: 0000000000000000
[  161.761197][T12457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  161.761208][T12457] R13: 0000000000000000 R14: 00007f5c249b5fa0 R15: 00007fff2cf44a98
[  161.761232][T12457]  </TASK>
[  161.809650][T12461] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1912'.
[  161.810612][T12459] SQUASHFS error: Failed to read block 0x0: -5
[  161.880868][T12459] unable to read squashfs_super_block
[  161.962068][T12466] xt_hashlimit: size too large, truncated to 1048576
[  162.056262][T12472] input input33: cannot allocate more than FF_MAX_EFFECTS effects
[  162.065856][T12477] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1917'.
[  162.068836][T12477] netlink: 60 bytes leftover after parsing attributes in process `syz.7.1917'.
[  162.084980][T12484] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1919'.
[  162.087776][T12484] nbd: nbd0 already in use
[  162.128904][T12488] FAULT_INJECTION: forcing a failure.
[  162.128904][T12488] name failslab, interval 1, probability 0, space 0, times 0
[  162.132905][T12488] CPU: 0 UID: 0 PID: 12488 Comm: syz.7.1921 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  162.132921][T12488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.132929][T12488] Call Trace:
[  162.132933][T12488]  <TASK>
[  162.132937][T12488]  dump_stack_lvl+0x16c/0x1f0
[  162.132958][T12488]  should_fail_ex+0x512/0x640
[  162.132974][T12488]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  162.132987][T12488]  should_failslab+0xc2/0x120
[  162.132999][T12488]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  162.133009][T12488]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  162.133021][T12488]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  162.133038][T12488]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  162.133055][T12488]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  162.133071][T12488]  mmu_topup_memory_caches+0x25/0x170
[  162.133090][T12488]  kvm_mmu_load+0xd9/0x22a0
[  162.133107][T12488]  ? kvm_apic_has_interrupt+0xb5/0x190
[  162.133121][T12488]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  162.133136][T12488]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  162.133153][T12488]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  162.133168][T12488]  ? __pfx_kvm_mmu_load+0x10/0x10
[  162.133184][T12488]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  162.133196][T12488]  ? kvm_check_and_inject_events+0x71c/0x1310
[  162.133215][T12488]  vcpu_run+0x3446/0x5390
[  162.133229][T12488]  ? kvm_mmu_post_init_vm+0x269/0x370
[  162.133248][T12488]  ? __lock_acquire+0xaa4/0x1ba0
[  162.133269][T12488]  ? __pfx_vcpu_run+0x10/0x10
[  162.133287][T12488]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  162.133303][T12488]  ? __local_bh_enable_ip+0xa4/0x120
[  162.133320][T12488]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  162.133336][T12488]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  162.133357][T12488]  kvm_vcpu_ioctl+0x5e9/0x1680
[  162.133375][T12488]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.133396][T12488]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  162.133416][T12488]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  162.133439][T12488]  ? hook_file_ioctl_common+0x145/0x410
[  162.133455][T12488]  ? selinux_file_ioctl+0x180/0x270
[  162.133472][T12488]  ? selinux_file_ioctl+0xb4/0x270
[  162.133491][T12488]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.133508][T12488]  __x64_sys_ioctl+0x193/0x200
[  162.133525][T12488]  do_syscall_64+0xcd/0x260
[  162.133543][T12488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.133554][T12488] RIP: 0033:0x7f479398e969
[  162.133564][T12488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.133575][T12488] RSP: 002b:00007f479471f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  162.133585][T12488] RAX: ffffffffffffffda RBX: 00007f4793bb5fa0 RCX: 00007f479398e969
[  162.133592][T12488] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  162.133598][T12488] RBP: 00007f479471f090 R08: 0000000000000000 R09: 0000000000000000
[  162.133605][T12488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.133611][T12488] R13: 0000000000000000 R14: 00007f4793bb5fa0 R15: 00007ffdc2beb198
[  162.133625][T12488]  </TASK>
[  162.155682][T12494] openvswitch: netlink: Unknown VXLAN extension attribute 0
[  162.208477][T12487] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1920'.
[  162.247993][T12487] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1920'.
[  162.326083][T12510] netlink: 'syz.6.1929': attribute type 10 has an invalid length.
[  162.329176][T12510] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.340467][T12510] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.342772][T12510] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.348783][T12510] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  162.355844][   T12] bond0: (slave bridge0): interface is now down
[  162.358842][   T12] bond0: now running without any active interface!
[  162.388214][T12521] syz.7.1931: attempt to access beyond end of device
[  162.388214][T12521] nbd7: rw=0, sector=64, nr_sectors = 1 limit=0
[  162.393419][T12521] syz.7.1931: attempt to access beyond end of device
[  162.393419][T12521] nbd7: rw=0, sector=256, nr_sectors = 1 limit=0
[  162.398986][T12521] UDF-fs: error (device nbd7): udf_read_tagged: read failed, block=256, location=256
[  162.402791][T12521] syz.7.1931: attempt to access beyond end of device
[  162.402791][T12521] nbd7: rw=0, sector=512, nr_sectors = 1 limit=0
[  162.409290][T12521] UDF-fs: error (device nbd7): udf_read_tagged: read failed, block=512, location=512
[  162.413798][T12521] syz.7.1931: attempt to access beyond end of device
[  162.413798][T12521] nbd7: rw=0, sector=64, nr_sectors = 2 limit=0
[  162.420094][T12521] syz.7.1931: attempt to access beyond end of device
[  162.420094][T12521] nbd7: rw=0, sector=512, nr_sectors = 2 limit=0
[  162.424634][T12521] UDF-fs: error (device nbd7): udf_read_tagged: read failed, block=256, location=256
[  162.427771][T12521] syz.7.1931: attempt to access beyond end of device
[  162.427771][T12521] nbd7: rw=0, sector=1024, nr_sectors = 2 limit=0
[  162.431899][T12521] UDF-fs: error (device nbd7): udf_read_tagged: read failed, block=512, location=512
[  162.435310][T12521] syz.7.1931: attempt to access beyond end of device
[  162.435310][T12521] nbd7: rw=0, sector=64, nr_sectors = 4 limit=0
[  162.439342][T12521] syz.7.1931: attempt to access beyond end of device
[  162.439342][T12521] nbd7: rw=0, sector=1024, nr_sectors = 4 limit=0
[  162.443340][T12521] UDF-fs: error (device nbd7): udf_read_tagged: read failed, block=256, location=256
[  162.446706][T12521] syz.7.1931: attempt to access beyond end of device
[  162.446706][T12521] nbd7: rw=0, sector=2048, nr_sectors = 4 limit=0
[  162.450707][T12521] UDF-fs: error (device nbd7): udf_read_tagged: read failed, block=512, location=512
[  162.453930][T12521] UDF-fs: error (device nbd7): udf_read_tagged: read failed, block=256, location=256
[  162.457074][T12521] UDF-fs: error (device nbd7): udf_read_tagged: read failed, block=512, location=512
[  162.460013][T12521] UDF-fs: warning (device nbd7): udf_fill_super: No partition found (1)
[  162.500979][T12525] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1933'.
[  162.535514][ T5978] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  162.662706][T12546] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12546 comm=syz.7.1937
[  162.665096][ T5978] usb 10-1: device descriptor read/64, error -71
[  162.748773][T12550] FAULT_INJECTION: forcing a failure.
[  162.748773][T12550] name failslab, interval 1, probability 0, space 0, times 0
[  162.752697][T12550] CPU: 3 UID: 0 PID: 12550 Comm: syz.7.1938 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  162.752712][T12550] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.752719][T12550] Call Trace:
[  162.752724][T12550]  <TASK>
[  162.752728][T12550]  dump_stack_lvl+0x16c/0x1f0
[  162.752748][T12550]  should_fail_ex+0x512/0x640
[  162.752765][T12550]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  162.752778][T12550]  should_failslab+0xc2/0x120
[  162.752791][T12550]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  162.752801][T12550]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  162.752813][T12550]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  162.752829][T12550]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  162.752843][T12550]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  162.752858][T12550]  mmu_topup_memory_caches+0x25/0x170
[  162.752877][T12550]  kvm_mmu_load+0xd9/0x22a0
[  162.752894][T12550]  ? kvm_apic_has_interrupt+0xb5/0x190
[  162.752908][T12550]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  162.752922][T12550]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  162.752939][T12550]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  162.752954][T12550]  ? __pfx_kvm_mmu_load+0x10/0x10
[  162.752970][T12550]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  162.752982][T12550]  ? kvm_check_and_inject_events+0x71c/0x1310
[  162.753001][T12550]  vcpu_run+0x3446/0x5390
[  162.753015][T12550]  ? kvm_mmu_post_init_vm+0x269/0x370
[  162.753034][T12550]  ? __lock_acquire+0xaa4/0x1ba0
[  162.753055][T12550]  ? __pfx_vcpu_run+0x10/0x10
[  162.753077][T12550]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  162.753093][T12550]  ? __local_bh_enable_ip+0xa4/0x120
[  162.753111][T12550]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  162.753126][T12550]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  162.753147][T12550]  kvm_vcpu_ioctl+0x5e9/0x1680
[  162.753165][T12550]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.753186][T12550]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  162.753208][T12550]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  162.753232][T12550]  ? hook_file_ioctl_common+0x145/0x410
[  162.753248][T12550]  ? selinux_file_ioctl+0x180/0x270
[  162.753265][T12550]  ? selinux_file_ioctl+0xb4/0x270
[  162.753284][T12550]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.753301][T12550]  __x64_sys_ioctl+0x193/0x200
[  162.753318][T12550]  do_syscall_64+0xcd/0x260
[  162.753340][T12550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.753351][T12550] RIP: 0033:0x7f479398e969
[  162.753361][T12550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.753373][T12550] RSP: 002b:00007f479471f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  162.753383][T12550] RAX: ffffffffffffffda RBX: 00007f4793bb5fa0 RCX: 00007f479398e969
[  162.753391][T12550] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  162.753397][T12550] RBP: 00007f479471f090 R08: 0000000000000000 R09: 0000000000000000
[  162.753403][T12550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.753410][T12550] R13: 0000000000000000 R14: 00007f4793bb5fa0 R15: 00007ffdc2beb198
[  162.753424][T12550]  </TASK>
[  162.905038][ T5978] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  163.006982][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  163.006998][   T40] audit: type=1326 audit(1747392284.214:1218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12566 comm="syz.7.1939" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f479398e969 code=0x0
[  163.035347][ T5978] usb 10-1: device descriptor read/64, error -71
[  163.145325][ T5978] usb usb10-port1: attempt power cycle
[  163.173264][T12578] netlink: 'syz.2.1940': attribute type 11 has an invalid length.
[  163.420356][T12607] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12607 comm=syz.2.1945
[  163.484811][ T5978] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[  163.505274][ T5978] usb 10-1: device descriptor read/8, error -71
[  163.550793][T12614] FAULT_INJECTION: forcing a failure.
[  163.550793][T12614] name failslab, interval 1, probability 0, space 0, times 0
[  163.554858][T12614] CPU: 0 UID: 0 PID: 12614 Comm: syz.6.1947 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  163.554873][T12614] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.554880][T12614] Call Trace:
[  163.554884][T12614]  <TASK>
[  163.554888][T12614]  dump_stack_lvl+0x16c/0x1f0
[  163.554908][T12614]  should_fail_ex+0x512/0x640
[  163.554923][T12614]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  163.554937][T12614]  should_failslab+0xc2/0x120
[  163.554949][T12614]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  163.554959][T12614]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  163.554970][T12614]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  163.554987][T12614]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  163.555000][T12614]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  163.555016][T12614]  mmu_topup_memory_caches+0x25/0x170
[  163.555038][T12614]  kvm_mmu_load+0xd9/0x22a0
[  163.555055][T12614]  ? kvm_apic_has_interrupt+0xb5/0x190
[  163.555069][T12614]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  163.555083][T12614]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  163.555100][T12614]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  163.555115][T12614]  ? __pfx_kvm_mmu_load+0x10/0x10
[  163.555131][T12614]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  163.555143][T12614]  ? kvm_check_and_inject_events+0x71c/0x1310
[  163.555163][T12614]  vcpu_run+0x3446/0x5390
[  163.555177][T12614]  ? kvm_mmu_post_init_vm+0x269/0x370
[  163.555196][T12614]  ? __lock_acquire+0xaa4/0x1ba0
[  163.555217][T12614]  ? __pfx_vcpu_run+0x10/0x10
[  163.555236][T12614]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  163.555251][T12614]  ? __local_bh_enable_ip+0xa4/0x120
[  163.555269][T12614]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  163.555286][T12614]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  163.555307][T12614]  kvm_vcpu_ioctl+0x5e9/0x1680
[  163.555325][T12614]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  163.555346][T12614]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  163.555367][T12614]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  163.555391][T12614]  ? hook_file_ioctl_common+0x145/0x410
[  163.555406][T12614]  ? selinux_file_ioctl+0x180/0x270
[  163.555423][T12614]  ? selinux_file_ioctl+0xb4/0x270
[  163.555442][T12614]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  163.555464][T12614]  __x64_sys_ioctl+0x193/0x200
[  163.555485][T12614]  do_syscall_64+0xcd/0x260
[  163.555510][T12614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.555522][T12614] RIP: 0033:0x7f5c2478e969
[  163.555531][T12614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.555542][T12614] RSP: 002b:00007f5c25688038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  163.555552][T12614] RAX: ffffffffffffffda RBX: 00007f5c249b5fa0 RCX: 00007f5c2478e969
[  163.555559][T12614] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  163.555565][T12614] RBP: 00007f5c25688090 R08: 0000000000000000 R09: 0000000000000000
[  163.555571][T12614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  163.555577][T12614] R13: 0000000000000000 R14: 00007f5c249b5fa0 R15: 00007fff2cf44a98
[  163.555591][T12614]  </TASK>
[  163.744913][ T5978] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  163.775648][ T5978] usb 10-1: device descriptor read/8, error -71
[  163.776321][   T40] audit: type=1400 audit(1747392284.984:1219): avc:  denied  { create } for  pid=12617 comm="syz.6.1948" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  163.881516][T12622] vxfs: WRONG superblock magic 00000000 at 1
[  163.884168][T12622] vxfs: WRONG superblock magic 00000000 at 8
[  163.886239][T12622] vxfs: can't find superblock.
[  163.894960][ T5978] usb usb10-port1: unable to enumerate USB device
[  163.908172][   T40] audit: type=1400 audit(1747392285.114:1220): avc:  denied  { map } for  pid=12623 comm="syz.6.1950" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=758 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  163.935814][T12621] block nbd7: shutting down sockets
[  163.965386][T12626] libceph: resolve '4' (ret=-3): failed
[  163.967471][T12628] libceph: resolve '4' (ret=-3): failed
[  164.244834][ T5978] usb 11-1: new low-speed USB device number 7 using dummy_hcd
[  164.406149][ T5978] usb 11-1: config 0 has an invalid interface number: 1 but max is 0
[  164.408772][ T5978] usb 11-1: config 0 has no interface number 0
[  164.410741][ T5978] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  164.414305][ T5978] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  164.417893][ T5978] usb 11-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  164.420758][ T5978] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.424847][ T5978] usb 11-1: config 0 descriptor??
[  164.430094][ T5978] iowarrior 11-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  164.585830][T12641] FAULT_INJECTION: forcing a failure.
[  164.585830][T12641] name failslab, interval 1, probability 0, space 0, times 0
[  164.590062][T12641] CPU: 0 UID: 0 PID: 12641 Comm: syz.7.1956 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  164.590078][T12641] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  164.590084][T12641] Call Trace:
[  164.590089][T12641]  <TASK>
[  164.590093][T12641]  dump_stack_lvl+0x16c/0x1f0
[  164.590114][T12641]  should_fail_ex+0x512/0x640
[  164.590130][T12641]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  164.590144][T12641]  should_failslab+0xc2/0x120
[  164.590157][T12641]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  164.590167][T12641]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  164.590178][T12641]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  164.590195][T12641]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  164.590208][T12641]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  164.590224][T12641]  mmu_topup_memory_caches+0x25/0x170
[  164.590242][T12641]  kvm_mmu_load+0xd9/0x22a0
[  164.590259][T12641]  ? kvm_apic_has_interrupt+0xb5/0x190
[  164.590273][T12641]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  164.590288][T12641]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  164.590305][T12641]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  164.590319][T12641]  ? __pfx_kvm_mmu_load+0x10/0x10
[  164.590335][T12641]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  164.590348][T12641]  ? kvm_check_and_inject_events+0x71c/0x1310
[  164.590367][T12641]  vcpu_run+0x3446/0x5390
[  164.590382][T12641]  ? kvm_mmu_post_init_vm+0x269/0x370
[  164.590400][T12641]  ? __lock_acquire+0xaa4/0x1ba0
[  164.590422][T12641]  ? __pfx_vcpu_run+0x10/0x10
[  164.590441][T12641]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  164.590457][T12641]  ? __local_bh_enable_ip+0xa4/0x120
[  164.590474][T12641]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  164.590490][T12641]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  164.590511][T12641]  kvm_vcpu_ioctl+0x5e9/0x1680
[  164.590529][T12641]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  164.590550][T12641]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  164.590571][T12641]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  164.590594][T12641]  ? hook_file_ioctl_common+0x145/0x410
[  164.590610][T12641]  ? selinux_file_ioctl+0x180/0x270
[  164.590627][T12641]  ? selinux_file_ioctl+0xb4/0x270
[  164.590645][T12641]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  164.590662][T12641]  __x64_sys_ioctl+0x193/0x200
[  164.590680][T12641]  do_syscall_64+0xcd/0x260
[  164.590698][T12641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.590709][T12641] RIP: 0033:0x7f479398e969
[  164.590718][T12641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.590729][T12641] RSP: 002b:00007f479471f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  164.590739][T12641] RAX: ffffffffffffffda RBX: 00007f4793bb5fa0 RCX: 00007f479398e969
[  164.590746][T12641] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  164.590753][T12641] RBP: 00007f479471f090 R08: 0000000000000000 R09: 0000000000000000
[  164.590759][T12641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  164.590766][T12641] R13: 0000000000000000 R14: 00007f4793bb5fa0 R15: 00007ffdc2beb198
[  164.590779][T12641]  </TASK>
[  164.629405][T12630] iowarrior 11-1:0.1: Error -90 while submitting URB
[  164.687051][ T5995] usb 11-1: USB disconnect, device number 7
[  164.781927][T12645] dlm: non-version read from control device 8224
[  164.888360][T12649] sctp: [Deprecated]: syz.7.1959 (pid 12649) Use of int in maxseg socket option.
[  164.888360][T12649] Use struct sctp_assoc_value instead
[  164.894465][   T40] audit: type=1400 audit(1747916574.091:1221): avc:  denied  { watch_reads } for  pid=12648 comm="syz.7.1959" path="/118/file0" dev="tmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  164.898627][T12652] sctp: [Deprecated]: syz.7.1959 (pid 12652) Use of int in maxseg socket option.
[  164.898627][T12652] Use struct sctp_assoc_value instead
[  164.952021][T12654] xt_CHECKSUM: unsupported CHECKSUM operation f4
[  165.047733][T12657] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  165.287736][T12664] program syz.2.1963 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  165.365527][T12675] tmpfs: Bad value for 'mpol'
[  165.367553][T12675] cgroup: subsys name conflicts with all
[  165.391970][T12673] FAULT_INJECTION: forcing a failure.
[  165.391970][T12673] name failslab, interval 1, probability 0, space 0, times 0
[  165.396580][T12673] CPU: 0 UID: 0 PID: 12673 Comm: syz.5.1965 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  165.396595][T12673] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.396602][T12673] Call Trace:
[  165.396610][T12673]  <TASK>
[  165.396615][T12673]  dump_stack_lvl+0x16c/0x1f0
[  165.396645][T12673]  should_fail_ex+0x512/0x640
[  165.396667][T12673]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  165.396686][T12673]  should_failslab+0xc2/0x120
[  165.396704][T12673]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  165.396720][T12673]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  165.396738][T12673]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  165.396763][T12673]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  165.396785][T12673]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  165.396807][T12673]  mmu_topup_memory_caches+0x25/0x170
[  165.396825][T12673]  kvm_mmu_load+0xd9/0x22a0
[  165.396843][T12673]  ? kvm_apic_has_interrupt+0xb5/0x190
[  165.396857][T12673]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  165.396871][T12673]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  165.396889][T12673]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  165.396903][T12673]  ? __pfx_kvm_mmu_load+0x10/0x10
[  165.396919][T12673]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  165.396932][T12673]  ? kvm_check_and_inject_events+0x71c/0x1310
[  165.396952][T12673]  vcpu_run+0x3446/0x5390
[  165.396966][T12673]  ? kvm_mmu_post_init_vm+0x269/0x370
[  165.396985][T12673]  ? __lock_acquire+0xaa4/0x1ba0
[  165.397008][T12673]  ? __pfx_vcpu_run+0x10/0x10
[  165.397027][T12673]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  165.397042][T12673]  ? __local_bh_enable_ip+0xa4/0x120
[  165.397060][T12673]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  165.397076][T12673]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  165.397096][T12673]  kvm_vcpu_ioctl+0x5e9/0x1680
[  165.397116][T12673]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  165.397137][T12673]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  165.397157][T12673]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  165.397181][T12673]  ? hook_file_ioctl_common+0x145/0x410
[  165.397197][T12673]  ? selinux_file_ioctl+0x180/0x270
[  165.397214][T12673]  ? selinux_file_ioctl+0xb4/0x270
[  165.397233][T12673]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  165.397255][T12673]  __x64_sys_ioctl+0x193/0x200
[  165.397272][T12673]  do_syscall_64+0xcd/0x260
[  165.397290][T12673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.397301][T12673] RIP: 0033:0x7fd2dc78e969
[  165.397310][T12673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.397321][T12673] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  165.397332][T12673] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  165.397339][T12673] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  165.397346][T12673] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  165.397352][T12673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  165.397358][T12673] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  165.397372][T12673]  </TASK>
[  165.431861][T12683] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  165.526737][T12683] bond0: (slave lo): Enslaving as an active interface with an up link
[  165.547945][ T5295] Bluetooth: hci2: command 0x0405 tx timeout
[  165.749960][T12705] vlan3: entered promiscuous mode
[  165.751651][T12705] bond0: entered promiscuous mode
[  165.753300][T12705] bond_slave_0: entered promiscuous mode
[  165.755471][T12705] bond_slave_1: entered promiscuous mode
[  165.757397][T12705] bridge0: entered promiscuous mode
[  165.894415][T12720] FAULT_INJECTION: forcing a failure.
[  165.894415][T12720] name failslab, interval 1, probability 0, space 0, times 0
[  165.900097][T12720] CPU: 0 UID: 0 PID: 12720 Comm: syz.5.1978 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  165.900113][T12720] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.900120][T12720] Call Trace:
[  165.900124][T12720]  <TASK>
[  165.900129][T12720]  dump_stack_lvl+0x16c/0x1f0
[  165.900149][T12720]  should_fail_ex+0x512/0x640
[  165.900166][T12720]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  165.900179][T12720]  should_failslab+0xc2/0x120
[  165.900191][T12720]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  165.900201][T12720]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  165.900213][T12720]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  165.900229][T12720]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  165.900247][T12720]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  165.900263][T12720]  mmu_topup_memory_caches+0x25/0x170
[  165.900281][T12720]  kvm_mmu_load+0xd9/0x22a0
[  165.900298][T12720]  ? kvm_apic_has_interrupt+0xb5/0x190
[  165.900312][T12720]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  165.900327][T12720]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  165.900343][T12720]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  165.900358][T12720]  ? __pfx_kvm_mmu_load+0x10/0x10
[  165.900374][T12720]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  165.900386][T12720]  ? kvm_check_and_inject_events+0x71c/0x1310
[  165.900406][T12720]  vcpu_run+0x3446/0x5390
[  165.900420][T12720]  ? kvm_mmu_post_init_vm+0x269/0x370
[  165.900439][T12720]  ? __lock_acquire+0xaa4/0x1ba0
[  165.900460][T12720]  ? __pfx_vcpu_run+0x10/0x10
[  165.900478][T12720]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  165.900494][T12720]  ? __local_bh_enable_ip+0xa4/0x120
[  165.900512][T12720]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  165.900528][T12720]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  165.900548][T12720]  kvm_vcpu_ioctl+0x5e9/0x1680
[  165.900566][T12720]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  165.900587][T12720]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  165.900607][T12720]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  165.900630][T12720]  ? hook_file_ioctl_common+0x145/0x410
[  165.900646][T12720]  ? selinux_file_ioctl+0x180/0x270
[  165.900663][T12720]  ? selinux_file_ioctl+0xb4/0x270
[  165.900682][T12720]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  165.900699][T12720]  __x64_sys_ioctl+0x193/0x200
[  165.900716][T12720]  do_syscall_64+0xcd/0x260
[  165.900734][T12720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.900745][T12720] RIP: 0033:0x7fd2dc78e969
[  165.900754][T12720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.900765][T12720] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  165.900775][T12720] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  165.900782][T12720] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  165.900789][T12720] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  165.900795][T12720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  165.900801][T12720] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  165.900815][T12720]  </TASK>
[  165.981977][T12732] netlink: 'syz.6.1983': attribute type 1 has an invalid length.
[  166.029519][T12732] 8021q: adding VLAN 0 to HW filter on device bond1
[  166.039230][T12732] bond1: (slave gretap1): making interface the new active one
[  166.042651][T12732] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  166.077184][T12735] netlink: 'syz.6.1984': attribute type 1 has an invalid length.
[  166.080191][T12735] nbd: couldn't find a device at index -1589009322
[  166.083586][T12735] tmpfs: Bad value for 'mpol'
[  166.128103][T12746] netlink: 'syz.6.1987': attribute type 10 has an invalid length.
[  166.136045][T12746] 8021q: adding VLAN 0 to HW filter on device batadv0
[  166.138945][T12746] batadv0: entered promiscuous mode
[  166.141009][T12746] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  166.155054][ T6916] bond0: (slave batadv0): interface is now down
[  166.157528][ T6916] bond0: now running without any active interface!
[  166.179879][T12751] netlink: 'syz.5.1988': attribute type 21 has an invalid length.
[  166.185545][ T5978] usb 7-1: new low-speed USB device number 12 using dummy_hcd
[  166.338209][ T5978] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  166.342444][ T5978] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  166.347278][ T5978] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  166.352010][ T5978] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  166.357010][ T5978] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  166.362503][ T5978] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  166.366079][ T5978] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  166.370525][ T5978] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  166.375617][ T5978] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  166.380199][ T5978] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  166.386390][ T5978] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  166.389469][ T5978] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  166.393799][ T5978] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  166.398776][ T5978] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  166.403260][ T5978] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  166.410707][ T5978] usb 7-1: string descriptor 0 read error: -22
[  166.413318][ T5978] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  166.416765][ T5978] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.428315][ T5978] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  166.454994][ T6117] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[  166.615188][ T6117] usb 10-1: Using ep0 maxpacket: 32
[  166.618200][ T6117] usb 10-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1007
[  166.621487][ T6117] usb 10-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  166.624582][ T6117] usb 10-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  166.631276][ T6117] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  166.634186][ T6117] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.637649][ T6117] usb 10-1: Product: Ч
[  166.639068][ T6117] usb 10-1: Manufacturer: ز㚱ﳩ푓폩덊賟뱊坆䞣犲ञ뮩৥테똝봮塤揽൘ᚒ㡊轜츝袵闉ⶔፊ嘁ꆎ峈皖暇깣禾폴硳쒧ࠬ퀅䜧놧ૼ聚䵄టȒ㐦禷췁놢힋㓧됱﬚⛈琠盈쟀煹虨❧챱滢뙭᮵蠳彻쿍⡯ʮ䍬ｔ눙ఀ鄁本ͬ鷝欗㹐룮㰥艮㦒㸻뱒圐끔ᖘ൫魭䓕㸺ꇨ岲聼ﴴ⫪濑瀧
[  166.649640][ T6117] usb 10-1: SerialNumber: ꭚ荕郅ꅥ妨嫾㱤겄퍇鸚뀬賤ᮢ朮⒑鴧핤躬馳쀍䋁畞㳩범瀝Ｎ伍茼의팋䝂鑸䓡꾋끬㚸놴轺材೐븉ꪢ尔⿯䊙垩霎塅륙漏妽☄괾ﵬ谖ꝁ톙턨⤸ꖕᦧ맦꼧௪엪嶩駩ꇠ瑱戏燬璄弘฼꾅㢲ᇴ服풻濸꺟₲࿝쌸㥰窜읩嶁馟腉ᅭ皷踝찯
[  166.729996][T12774] FAULT_INJECTION: forcing a failure.
[  166.729996][T12774] name failslab, interval 1, probability 0, space 0, times 0
[  166.734203][T12774] CPU: 0 UID: 0 PID: 12774 Comm: syz.2.1995 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  166.734219][T12774] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.734225][T12774] Call Trace:
[  166.734229][T12774]  <TASK>
[  166.734233][T12774]  dump_stack_lvl+0x16c/0x1f0
[  166.734253][T12774]  should_fail_ex+0x512/0x640
[  166.734269][T12774]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  166.734282][T12774]  should_failslab+0xc2/0x120
[  166.734294][T12774]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  166.734316][T12774]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  166.734329][T12774]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  166.734345][T12774]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  166.734359][T12774]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  166.734374][T12774]  mmu_topup_memory_caches+0x25/0x170
[  166.734392][T12774]  kvm_mmu_load+0xd9/0x22a0
[  166.734410][T12774]  ? kvm_apic_has_interrupt+0xb5/0x190
[  166.734424][T12774]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  166.734438][T12774]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  166.734455][T12774]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  166.734469][T12774]  ? __pfx_kvm_mmu_load+0x10/0x10
[  166.734485][T12774]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  166.734498][T12774]  ? kvm_check_and_inject_events+0x71c/0x1310
[  166.734517][T12774]  vcpu_run+0x3446/0x5390
[  166.734531][T12774]  ? kvm_mmu_post_init_vm+0x269/0x370
[  166.734550][T12774]  ? __lock_acquire+0xaa4/0x1ba0
[  166.734572][T12774]  ? __pfx_vcpu_run+0x10/0x10
[  166.734590][T12774]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  166.734606][T12774]  ? __local_bh_enable_ip+0xa4/0x120
[  166.734623][T12774]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  166.734640][T12774]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  166.734660][T12774]  kvm_vcpu_ioctl+0x5e9/0x1680
[  166.734679][T12774]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  166.734700][T12774]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  166.734720][T12774]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  166.734744][T12774]  ? hook_file_ioctl_common+0x145/0x410
[  166.734760][T12774]  ? selinux_file_ioctl+0x180/0x270
[  166.734777][T12774]  ? selinux_file_ioctl+0xb4/0x270
[  166.734796][T12774]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  166.734813][T12774]  __x64_sys_ioctl+0x193/0x200
[  166.734829][T12774]  do_syscall_64+0xcd/0x260
[  166.734847][T12774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.734858][T12774] RIP: 0033:0x7fd2dd18e969
[  166.734867][T12774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.734877][T12774] RSP: 002b:00007fd2ddf55038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  166.734888][T12774] RAX: ffffffffffffffda RBX: 00007fd2dd3b5fa0 RCX: 00007fd2dd18e969
[  166.734895][T12774] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  166.734902][T12774] RBP: 00007fd2ddf55090 R08: 0000000000000000 R09: 0000000000000000
[  166.734908][T12774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  166.734914][T12774] R13: 0000000000000000 R14: 00007fd2dd3b5fa0 R15: 00007ffc29f1f808
[  166.734928][T12774]  </TASK>
[  166.874301][ T6117] cdc_ncm 10-1:1.0: bind() failure
[  166.878323][ T6117] cdc_ncm 10-1:1.1: CDC Union missing and no IAD found
[  166.880554][ T6117] cdc_ncm 10-1:1.1: bind() failure
[  166.885729][ T6117] usb 10-1: USB disconnect, device number 17
[  166.934081][T12781] netlink: 'syz.6.1998': attribute type 1 has an invalid length.
[  166.938031][T12781] __nla_validate_parse: 9 callbacks suppressed
[  166.938045][T12781] netlink: 105116 bytes leftover after parsing attributes in process `syz.6.1998'.
[  167.021530][T12782] input: syz0 as /devices/virtual/input/input35
[  167.191643][T12799] ipvlan2: entered allmulticast mode
[  167.193365][T12799] macvlan0: entered allmulticast mode
[  167.195786][T12801] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2004'.
[  167.223654][T12804] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  167.226714][   T40] audit: type=1400 audit(1747916576.430:1222): avc:  denied  { getopt } for  pid=12803 comm="syz.2.2005" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  167.230621][T12805] sp0: Synchronizing with TNC
[  167.237306][T12805] [U] �
[  167.244541][T12804] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow
[  167.312357][T12812] FAULT_INJECTION: forcing a failure.
[  167.312357][T12812] name failslab, interval 1, probability 0, space 0, times 0
[  167.320195][T12812] CPU: 0 UID: 0 PID: 12812 Comm: syz.7.2007 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  167.320227][T12812] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.320237][T12812] Call Trace:
[  167.320243][T12812]  <TASK>
[  167.320251][T12812]  dump_stack_lvl+0x16c/0x1f0
[  167.320299][T12812]  should_fail_ex+0x512/0x640
[  167.320328][T12812]  ? __kvmalloc_node_noprof+0x122/0x600
[  167.320359][T12812]  should_failslab+0xc2/0x120
[  167.320380][T12812]  __kvmalloc_node_noprof+0x135/0x600
[  167.320406][T12812]  ? trace_kmem_cache_alloc+0x28/0xc0
[  167.320425][T12812]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  167.320435][T12812]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  167.320447][T12812]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  167.320466][T12812]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  167.320477][T12812]  __kvm_mmu_topup_memory_cache+0x450/0x600
[  167.320493][T12812]  mmu_topup_memory_caches+0xbc/0x170
[  167.320511][T12812]  kvm_mmu_load+0xd9/0x22a0
[  167.320528][T12812]  ? kvm_apic_has_interrupt+0xb5/0x190
[  167.320542][T12812]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  167.320557][T12812]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  167.320574][T12812]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  167.320588][T12812]  ? __pfx_kvm_mmu_load+0x10/0x10
[  167.320604][T12812]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  167.320616][T12812]  ? kvm_check_and_inject_events+0x71c/0x1310
[  167.320636][T12812]  vcpu_run+0x3446/0x5390
[  167.320653][T12812]  ? __lock_acquire+0xaa4/0x1ba0
[  167.320674][T12812]  ? __pfx_vcpu_run+0x10/0x10
[  167.320692][T12812]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  167.320707][T12812]  ? __local_bh_enable_ip+0xa4/0x120
[  167.320725][T12812]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  167.320741][T12812]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  167.320761][T12812]  kvm_vcpu_ioctl+0x5e9/0x1680
[  167.320792][T12812]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  167.320814][T12812]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  167.320835][T12812]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  167.320865][T12812]  ? hook_file_ioctl_common+0x145/0x410
[  167.320891][T12812]  ? selinux_file_ioctl+0x180/0x270
[  167.320916][T12812]  ? selinux_file_ioctl+0xb4/0x270
[  167.320944][T12812]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  167.320966][T12812]  __x64_sys_ioctl+0x193/0x200
[  167.320993][T12812]  do_syscall_64+0xcd/0x260
[  167.321016][T12812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.321034][T12812] RIP: 0033:0x7f479398e969
[  167.321047][T12812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.321062][T12812] RSP: 002b:00007f479471f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  167.321079][T12812] RAX: ffffffffffffffda RBX: 00007f4793bb5fa0 RCX: 00007f479398e969
[  167.321090][T12812] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  167.321099][T12812] RBP: 00007f479471f090 R08: 0000000000000000 R09: 0000000000000000
[  167.321107][T12812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  167.321115][T12812] R13: 0000000000000000 R14: 00007f4793bb5fa0 R15: 00007ffdc2beb198
[  167.321139][T12812]  </TASK>
[  167.595906][T12830] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  167.598160][T12830] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  167.602880][T12830] vhci_hcd vhci_hcd.0: Device attached
[  167.607391][T12830] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  167.610240][T12830] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  167.614321][   T40] audit: type=1400 audit(1747916576.810:1223): avc:  denied  { search } for  pid=12827 comm="syz.7.2012" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  167.614821][T12831] vhci_hcd: connection closed
[  167.621981][ T6905] vhci_hcd: stop threads
[  167.624880][ T6905] vhci_hcd: release socket
[  167.627561][ T6905] vhci_hcd: disconnect device
[  167.722944][T12844] tmpfs: Unknown parameter 'm�'
[  167.753315][   T40] audit: type=1400 audit(1747916576.950:1224): avc:  denied  { mounton } for  pid=12845 comm="syz.5.2017" path="/377/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[  167.777663][   T40] audit: type=1400 audit(1747916576.980:1225): avc:  denied  { read } for  pid=12845 comm="syz.5.2017" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  167.828932][T12847] netlink: 272 bytes leftover after parsing attributes in process `syz.5.2017'.
[  168.100238][T12858] FAULT_INJECTION: forcing a failure.
[  168.100238][T12858] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  168.105571][T12858] CPU: 2 UID: 0 PID: 12858 Comm: syz.5.2021 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  168.105587][T12858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.105594][T12858] Call Trace:
[  168.105597][T12858]  <TASK>
[  168.105602][T12858]  dump_stack_lvl+0x16c/0x1f0
[  168.105623][T12858]  should_fail_ex+0x512/0x640
[  168.105641][T12858]  should_fail_alloc_page+0xe7/0x130
[  168.105655][T12858]  prepare_alloc_pages+0x3c2/0x610
[  168.105670][T12858]  ? stack_depot_save_flags+0x28/0xa50
[  168.105687][T12858]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  168.105700][T12858]  ? kasan_save_stack+0x42/0x60
[  168.105710][T12858]  ? kasan_save_stack+0x33/0x60
[  168.105719][T12858]  ? kasan_save_track+0x14/0x30
[  168.105727][T12858]  ? __kasan_kmalloc+0xaa/0xb0
[  168.105743][T12858]  ? __kvmalloc_node_noprof+0x279/0x600
[  168.105761][T12858]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  168.105772][T12858]  ? mmu_topup_memory_caches+0xbc/0x170
[  168.105789][T12858]  ? kvm_mmu_load+0xd9/0x22a0
[  168.105804][T12858]  ? vcpu_run+0x3446/0x5390
[  168.105818][T12858]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  168.105834][T12858]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  168.105849][T12858]  ? __x64_sys_ioctl+0x193/0x200
[  168.105864][T12858]  ? do_syscall_64+0xcd/0x260
[  168.105879][T12858]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.105893][T12858]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  168.105914][T12858]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  168.105927][T12858]  ? policy_nodemask+0xea/0x4e0
[  168.105940][T12858]  alloc_pages_mpol+0x1fb/0x550
[  168.105953][T12858]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  168.105964][T12858]  ? rcu_is_watching+0x12/0xc0
[  168.105978][T12858]  ? trace_kmalloc+0x2b/0xd0
[  168.105990][T12858]  ? __kvmalloc_node_noprof+0x296/0x600
[  168.106007][T12858]  ? trace_kmem_cache_alloc+0x28/0xc0
[  168.106023][T12858]  alloc_pages_noprof+0x131/0x390
[  168.106035][T12858]  get_free_pages_noprof+0xc/0x40
[  168.106048][T12858]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  168.106064][T12858]  mmu_topup_memory_caches+0xbc/0x170
[  168.106081][T12858]  kvm_mmu_load+0xd9/0x22a0
[  168.106098][T12858]  ? kvm_apic_has_interrupt+0xb5/0x190
[  168.106112][T12858]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  168.106126][T12858]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  168.106144][T12858]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  168.106158][T12858]  ? __pfx_kvm_mmu_load+0x10/0x10
[  168.106174][T12858]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  168.106187][T12858]  ? kvm_check_and_inject_events+0x71c/0x1310
[  168.106206][T12858]  vcpu_run+0x3446/0x5390
[  168.106220][T12858]  ? kvm_mmu_post_init_vm+0x269/0x370
[  168.106239][T12858]  ? __lock_acquire+0xaa4/0x1ba0
[  168.106260][T12858]  ? __pfx_vcpu_run+0x10/0x10
[  168.106282][T12858]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  168.106298][T12858]  ? __local_bh_enable_ip+0xa4/0x120
[  168.106316][T12858]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  168.106332][T12858]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  168.106352][T12858]  kvm_vcpu_ioctl+0x5e9/0x1680
[  168.106371][T12858]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  168.106392][T12858]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  168.106412][T12858]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  168.106436][T12858]  ? hook_file_ioctl_common+0x145/0x410
[  168.106452][T12858]  ? selinux_file_ioctl+0x180/0x270
[  168.106468][T12858]  ? selinux_file_ioctl+0xb4/0x270
[  168.106487][T12858]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  168.106504][T12858]  __x64_sys_ioctl+0x193/0x200
[  168.106520][T12858]  do_syscall_64+0xcd/0x260
[  168.106538][T12858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.106549][T12858] RIP: 0033:0x7fd2dc78e969
[  168.106558][T12858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.106568][T12858] RSP: 002b:00007fd2dd677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  168.106579][T12858] RAX: ffffffffffffffda RBX: 00007fd2dc9b5fa0 RCX: 00007fd2dc78e969
[  168.106586][T12858] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  168.106592][T12858] RBP: 00007fd2dd677090 R08: 0000000000000000 R09: 0000000000000000
[  168.106599][T12858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  168.106605][T12858] R13: 0000000000000000 R14: 00007fd2dc9b5fa0 R15: 00007ffc77b15368
[  168.106619][T12858]  </TASK>
[  168.342516][   T40] audit: type=1400 audit(1747916577.540:1226): avc:  denied  { write } for  pid=12863 comm="syz.2.2023" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  168.437014][T12874] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  168.440317][T12874] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  168.515137][T12872] bond5: (slave dummy0): Releasing active interface
[  168.827134][   T58] usb 7-1: USB disconnect, device number 12
[  168.985369][ T5941] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  168.985429][ T5295] Bluetooth: hci4: command 0x1003 tx timeout
[  169.075102][T12894] netlink: 'syz.2.2033': attribute type 2 has an invalid length.
[  169.359581][T12899] BUG: unable to handle page fault for address: ffff8880d6bdf000
[  169.362060][T12899] #PF: supervisor write access in kernel mode
[  169.364491][T12899] #PF: error_code(0x0002) - not-present page
[  169.367900][T12899] PGD 1b001067 P4D 1b001067 PUD 0 
[  169.369562][T12899] Oops: Oops: 0002 [#1] SMP KASAN NOPTI
[  169.371375][T12899] CPU: 2 UID: 0 PID: 12899 Comm: syz.2.2035 Not tainted 6.15.0-rc6-syzkaller-00188-gfee3e843b309 #0 PREEMPT(full) 
[  169.375701][T12899] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.380138][T12899] RIP: 0010:bond_rr_gen_slave_id+0x1df/0x260
[  169.382092][T12899] Code: bc 24 f0 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 7a 49 8b 84 24 f0 00 00 00 bb 01 00 00 00 <65> 0f c1 18 e8 b8 af 53 fb 83 c3 01 89 d8 5b 5d 41 5c 41 5d 41 5e
[  169.388507][T12899] RSP: 0018:ffffc90003c5f650 EFLAGS: 00010246
[  169.390539][T12899] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffc90007111000
[  169.393091][T12899] RDX: 1ffff110092e69ce RSI: ffffffff86679653 RDI: ffff888049734e70
[  169.396221][T12899] RBP: ffff888049734000 R08: 0000000000000005 R09: 0000000000000001
[  169.398710][T12899] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888049734d80
[  169.401245][T12899] R13: 0000000000000000 R14: ffff888049734d80 R15: ffffc90003c5f9c0
[  169.403750][T12899] FS:  00007fd2ddf556c0(0000) GS:ffff8880d6bdf000(0000) knlGS:0000000000000000
[  169.406554][T12899] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  169.408709][T12899] CR2: ffff8880d6bdf000 CR3: 000000004bfa9000 CR4: 0000000000352ef0
[  169.411252][T12899] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  169.413904][T12899] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  169.416835][T12899] Call Trace:
[  169.417908][T12899]  <TASK>
[  169.418877][T12899]  bond_xdp_get_xmit_slave+0x2a9/0x6b0
[  169.420623][T12899]  xdp_master_redirect+0x15e/0x330
[  169.422275][T12899]  xdp_test_run_batch.constprop.0+0x18c8/0x1f10
[  169.424311][T12899]  ? __lock_acquire+0x5ca/0x1ba0
[  169.425973][T12899]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[  169.428143][T12899]  ? read_tsc+0x9/0x20
[  169.429479][T12899]  ? ktime_get+0x1a7/0x310
[  169.430925][T12899]  bpf_test_run_xdp_live+0x34d/0x500
[  169.432628][T12899]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  169.434758][T12899]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  169.436740][T12899]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  169.438605][T12899]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[  169.440514][T12899]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  169.442200][T12899]  ? 0xffffffffa0206200
[  169.443517][T12899]  ? 0xffffffffa0206200
[  169.444889][T12899]  ? 0xffffffffa0206200
[  169.446207][T12899]  bpf_prog_test_run_xdp+0x824/0x1540
[  169.447940][T12899]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  169.449821][T12899]  ? __might_fault+0xb0/0x190
[  169.451322][T12899]  ? fput+0x70/0xf0
[  169.452572][T12899]  ? __bpf_prog_get+0xa0/0x290
[  169.454201][T12899]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  169.456080][T12899]  __sys_bpf+0x1488/0x4d80
[  169.457508][T12899]  ? __pfx___sys_bpf+0x10/0x10
[  169.459253][T12899]  ? lock_vma_under_rcu+0x47d/0x970
[  169.460926][T12899]  ? lock_vma_under_rcu+0x47d/0x970
[  169.462586][T12899]  ? do_futex+0x122/0x350
[  169.464093][T12899]  ? __pfx_do_futex+0x10/0x10
[  169.465675][T12899]  ? xfd_validate_state+0x5d/0x180
[  169.467306][T12899]  ? rcu_is_watching+0x12/0xc0
[  169.468931][T12899]  __x64_sys_bpf+0x78/0xc0
[  169.470342][T12899]  ? lockdep_hardirqs_on+0x7c/0x110
[  169.472005][T12899]  do_syscall_64+0xcd/0x260
[  169.473454][T12899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.475839][T12899] RIP: 0033:0x7fd2dd18e969
[  169.477265][T12899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.483279][T12899] RSP: 002b:00007fd2ddf55038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  169.486084][T12899] RAX: ffffffffffffffda RBX: 00007fd2dd3b5fa0 RCX: 00007fd2dd18e969
[  169.488610][T12899] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  169.491112][T12899] RBP: 00007fd2dd210ab1 R08: 0000000000000000 R09: 0000000000000000
[  169.493823][T12899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  169.496433][T12899] R13: 0000000000000000 R14: 00007fd2dd3b5fa0 R15: 00007ffc29f1f808
[  169.498927][T12899]  </TASK>
[  169.499933][T12899] Modules linked in:
[  169.501184][T12899] CR2: ffff8880d6bdf000
[  169.502510][T12899] ---[ end trace 0000000000000000 ]---
[  169.504375][T12899] RIP: 0010:bond_rr_gen_slave_id+0x1df/0x260
[  169.506322][T12899] Code: bc 24 f0 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 7a 49 8b 84 24 f0 00 00 00 bb 01 00 00 00 <65> 0f c1 18 e8 b8 af 53 fb 83 c3 01 89 d8 5b 5d 41 5c 41 5d 41 5e
[  169.512333][T12899] RSP: 0018:ffffc90003c5f650 EFLAGS: 00010246
[  169.514289][T12899] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffc90007111000
[  169.516752][T12899] RDX: 1ffff110092e69ce RSI: ffffffff86679653 RDI: ffff888049734e70
[  169.519289][T12899] RBP: ffff888049734000 R08: 0000000000000005 R09: 0000000000000001
[  169.521819][T12899] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888049734d80
[  169.524685][T12899] R13: 0000000000000000 R14: ffff888049734d80 R15: ffffc90003c5f9c0
[  169.527416][T12899] FS:  00007fd2ddf556c0(0000) GS:ffff8880d6bdf000(0000) knlGS:0000000000000000
[  169.530225][T12899] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  169.532321][T12899] CR2: ffff8880d6bdf000 CR3: 000000004bfa9000 CR4: 0000000000352ef0
[  169.534827][T12899] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  169.537325][T12899] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  169.539817][T12899] Kernel panic - not syncing: Fatal exception in interrupt
[  169.542720][T12899] Kernel Offset: disabled
[  169.544258][T12899] Rebooting in 86400 seconds..

VM DIAGNOSIS:
10:44:50  Registers:
info registers vcpu 0

CPU#0
RAX=00000000000f93b4 RBX=0000000000000000 RCX=ffffffff8b6d2419 RDX=ffffed100d4865be
RSI=ffffffff8bf48a20 RDI=ffffffff8191ae41 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e10
R8 =0000000000000000 R9 =ffffed100d4865bd R10=ffff88806a432deb R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90850010 R15=0000000000000000
RIP=ffffffff8b6d0caf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d69df000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c31883c CR3=00000000206f1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555e504730
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555e51cff5 000055555e51c9f0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055555e51156a 000055555e511240
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000300000018 22081a80031a8004 2290031808002288 033008002280030c
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040880030880040a a0030008000a9003 0fffffffffffff04 0a80030108000e80
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ce137ad7fc007000 00002a42080c0301 0000040406080300 00001c0808000300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000ab00338100008 9003000000000000 01000e2bb6c144ae 3ae6d6967562b97d
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0002080606015ae0 04c0a082a008000a e0030010000ad003 0010000ac0030210
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01038010000a8004 0100000208060601 5ae004c0a082a008 000ae0030010000a
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d0030010000ac003 0210000ab0033810 0008900300000000 000001000e2bb6c1
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 44ae3ae6d6967562 b97dce137ad7fc00 700000002a42080c 0301000004040608
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030000001c080800 0300040880030880 040aa0030008000a 90030fffffffffff
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff88805f598380 RCX=ffffffff8231fd17 RDX=1ffff1100beb3078
RSI=ffffffff8231fd4e RDI=0000000000000007 RBP=ffffc9000379f438 RSP=ffffc9000379f2b8
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000001000 R11=0000000000000000
R12=1ffff920006f3e5b R13=0000000000001000 R14=00000000054a7000 R15=0000000000000000
RIP=ffffffff8231fd65 RFL=00000a06 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007fd2ddf556c0 ffffffff 00c00000
GS =0000 ffff8880d6adf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3e4bec CR3=000000006351d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dc811a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dc811a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dc811a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dc811aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dc811b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dc811c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000095 fffffffc00006b9c
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000231800000008 000002b7fffffff0 0000040700000004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000010700000000 0000a1bf00000000 fff08a7b00000004 000008b700000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854f8435 RDI=ffffffff9adf9560 RBP=ffffffff9adf9520 RSP=ffffc90003c5eee0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=727265203a465023
R12=0000000000000000 R13=000000000000006f R14=ffffffff9adf9520 R15=ffffffff854f83d0
RIP=ffffffff854f845f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fd2ddf556c0 ffffffff 00c00000
GS =0000 ffff8880d6bdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=ffff8880d6bdf000 CR3=000000004bfa9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000001000001 Opmask02=0000000002fefcfe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dd211a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dd211a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dd211a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dd211aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dd211b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dd211c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dd383488 00007fd2dd383480 00007fd2dd383478 00007fd2dd383450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2ddeed100 00007fd2dd383440 00007fd2dd383458 00007fd2dd3834a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd2dd383498 00007fd2dd383490 00007fd2dd383488 00007fd2dd383480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000003 0000000000000000 0000000000000000 00000000000000c0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000010f39c RBX=0000000000000003 RCX=ffffffff8b6d2419 RDX=ffffed100d4e65be
RSI=ffffffff8bf48a20 RDI=ffffffff8191ae41 RBP=ffffed1003b5c000 RSP=ffffc90000197df8
R8 =0000000000000000 R9 =ffffed100d4e65bd R10=ffff88806a732deb R11=0000000000000000
R12=0000000000000003 R13=ffff88801dae0000 R14=ffffffff90850010 R15=0000000000000000
RIP=ffffffff8b6d0caf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6cdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c2bcab1 CR3=0000000062946000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000400 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdc2beb520 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4793a11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4793a11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4793a11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4793a11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4793a11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4793a11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000