last executing test programs:

2m43.675664839s ago: executing program 2 (id=108):
r0 = syz_open_procfs(0x0, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
read$snddsp(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, 0x0, &(0x7f0000000180), &(0x7f00000001c0))
r4 = socket$inet(0x2b, 0x801, 0x0)
ioctl$int_in(r4, 0x5452, &(0x7f0000000280)=0x8)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0xc08e)
close(0x3)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x0)
pselect6(0x40, &(0x7f0000000480)={0x0, 0x0, 0x2, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
r5 = socket(0x10, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000004780)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_link_settings={0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x80000]}})
write$UHID_DESTROY(r0, &(0x7f0000000200), 0x4)
r6 = getpid()
rt_tgsigqueueinfo(r6, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0xfffffffa})
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x0, @dev}, 0x10, 0x0}, 0x30044041)
r7 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r7, &(0x7f0000000440)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff810540010000000058000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}, {&(0x7f0000000340)="4e7fd73100fecccad22e5bd5dc8e334ea68512ec7fbe57580d1775e3a92d50250e78d3afc0f2e86563551f5c4bf44f4ef56e7e5b45665adb1f009b524996a57fe4eeacd40dce3a412ba2fd335fd6fc636c74f96b1ea93be8b215", 0x5a}, {&(0x7f00000003c0)="2f8a93f428fc70dd37a71c671e025b7890b3caa46271d76429d905b06e706314eb4213f7967c8e2fe6dfe6484e5ec549cde015e4432706fc25b80a8d0351249be02857b8f44cd4da9beb6d5e6856a929a3987ff592d9b024c3a56bbe0378a161a9ec5274c58919e946600d", 0x6b}, {&(0x7f0000000540)="154afdca64daab300872c5ecb6d4b8262fded8f2c59e458f20adac8a6d649935e5c837b74e640358f5e3bc5d89b990528a48f6199877ab3ae7b2cbb0646a35f646aadd3f5362e1ba06a4c0787d0b3161cfdb8bd6d5d3d43dc40cbe57ce9a02b591b07dff0685ba7cb7777fe5b5e9fa440c838586edc11554e0c41abe2bc961618fbadc07bc7617938a7b8db3", 0x8c}], 0x4)

2m43.388803487s ago: executing program 2 (id=109):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000000c000000fdffffff000000000000097fdc00"/41, @ANYRES8=r0], 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
connect$inet6(r0, 0x0, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
write(r1, &(0x7f0000000040)="0f03000019002551075c0165ff0ffc02802000030004000500e1000c040007001a000200", 0x33a)
socket$nl_rdma(0x10, 0x3, 0x14)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x4, r4, 0x1})
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000180)={0x2000, 0x0, 0x4, r4, 0x5})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
r7 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
write$dsp(r7, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$SNDCTL_DSP_SYNC(r7, 0x5001, 0x0)
ioctl$SNDCTL_DSP_RESET(r7, 0x5000, 0x0)
ioctl$KVM_CAP_MAX_VCPU_ID(r3, 0x4068aea3, &(0x7f0000000200)={0x80, 0x0, 0x1})
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r9, &(0x7f0000000100)=@id={0x1e, 0x3, 0x3bc0c501a8f25a25, {0x4e23, 0x1}}, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000001c0)={'macvlan0\x00'})
unshare(0x62040200)

2m42.382640377s ago: executing program 2 (id=113):
mount(&(0x7f0000000080)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f00000001c0)='ext2\x00', 0x0, 0x0)

2m42.228170378s ago: executing program 2 (id=115):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x50, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x24, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syz_tun\x00'}]}]}]}], {0x14}}, 0x78}, 0x1, 0x0, 0x0, 0x40008000}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000a80)={@random="e33110495bfd", @dev, @val={@val={0x88a8, 0x6, 0x0, 0x1}, {0x8864, 0x4, 0x0, 0x4}}, {@ipv6={0x86dd, @udp={0x6, 0x6, "f4c121", 0x8, 0x11, 0xff, @empty, @private1, {[], {0x4e22, 0x4e24, 0x8}}}}}}, 0x0)

2m41.914942853s ago: executing program 2 (id=118):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x30, r1, 0x1, 0x0, 0x0, {0x4}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth1_to_team\x00'}]}, 0x30}}, 0x0)
mkdir(&(0x7f0000000580)='./bus\x00', 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000)='sysfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000180)='./bus\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000080)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x40, 0x0)
mount(&(0x7f0000000340)=@filename='\x00', &(0x7f0000000080)='./bus\x00', &(0x7f00000000c0)='ecryptfs\x00', 0x0, &(0x7f0000000040)='&@,,')
mount$overlay(0x0, &(0x7f0000000180)='./bus\x00', &(0x7f0000000500), 0x0, &(0x7f0000000440)={[{@lowerdir={'lowerdir', 0x3d, './bus'}, 0x3a}], [], 0x2f})
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x9, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000611201000000000095"], &(0x7f0000000600)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2m41.815200117s ago: executing program 2 (id=119):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200de7e001009058b1e20"], 0x0)
syz_clone3(&(0x7f0000000580)={0x8000000, &(0x7f0000000380)=<r1=>0xffffffffffffffff, &(0x7f00000003c0), &(0x7f0000000400), {0x25}, &(0x7f0000000440)=""/161, 0xa1, &(0x7f0000000500)=""/45, &(0x7f0000000540)=[0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff], 0x5}, 0x58)
process_madvise(r1, &(0x7f0000001a00)=[{&(0x7f0000000600)="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", 0xfb}, {&(0x7f0000000700)="d9168133d5ec9814f7e2d72b44fbc3f594f3ed30dcad85c75abea10bade26ee2b95116c9044545d414f3dffbcfc686d0e8f9a3a329038e722686751188051eef677be497a8b06bcb2db1a67ca081271ac57dc160dd948c726fd2c426b151e4ef2d3359b787", 0x65}, {&(0x7f0000000840)="0b3c7a4f8cac4260ed54fb1383d9a8a18ebc88a54bae2209d09a5bbf2b3788eb681d2f089fe3e248a01e80c661b00b039fb36b769249144d30bc846ab3aee4e1ba806146d68db754b954c365d34b176b8dd8536373189920526afa036decd9cfb9d45e3b96abf7bdf0e6fa58e5ddba6082ecc1dd00c536d634654088b4076972d34bcc96659dff7036e87d7f8fa2c53bf8ca9d739114b3388cd38b0a594d0bc00e338c3dd48c0f428422", 0xaa}, {&(0x7f0000000900)="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", 0x1000}, {&(0x7f0000001900)="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", 0xfb}, {&(0x7f0000000780)="94a5bf2700cbe179f66286ab191fdf15c3f0e4d7542308c85c6cd771c2dedcaa5932fb960f19d5d1454332f2e74dc68e8d5800c317e6b92074e90784d7a5d2405a", 0x41}], 0x6, 0x3, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mknodat$loop(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x2000, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000280)="6b5706f02a937cc8bbfe5523b28b1f0c3c36d730448a826b4e42584c0b8ba0589d3f91303818d2fb710a9dab434f80b5dc25412dd763ccefe3e12928c112921916623ccdb702514f2ad6095cf469e49eb12b5df093738951c00b5bf3c895e3f5b9919cd30c80db046d486ba6e66dbfb9c416", 0x72)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x41, 0x0)
io_setup(0x3, &(0x7f0000000180))
syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/crypto\x00', 0x0, 0x0)
lseek(r5, 0x1000000, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
bind$alg(r4, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-avx\x00'}, 0x58)
ioctl$DRM_IOCTL_MODE_GETPLANE(r3, 0xc02064b6, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000001a40)=[0x0, 0x0]})
r6 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$kcm(r6, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x34, r8, 0x1, 0x0, 0x0, {0x34}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$PPPIOCATTACH(0xffffffffffffffff, 0x4004743d, &(0x7f0000000140)=0x1)
r9 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r9, 0xc0145b0d, &(0x7f0000000040))

2m26.747570411s ago: executing program 32 (id=119):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200de7e001009058b1e20"], 0x0)
syz_clone3(&(0x7f0000000580)={0x8000000, &(0x7f0000000380)=<r1=>0xffffffffffffffff, &(0x7f00000003c0), &(0x7f0000000400), {0x25}, &(0x7f0000000440)=""/161, 0xa1, &(0x7f0000000500)=""/45, &(0x7f0000000540)=[0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff], 0x5}, 0x58)
process_madvise(r1, &(0x7f0000001a00)=[{&(0x7f0000000600)="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", 0xfb}, {&(0x7f0000000700)="d9168133d5ec9814f7e2d72b44fbc3f594f3ed30dcad85c75abea10bade26ee2b95116c9044545d414f3dffbcfc686d0e8f9a3a329038e722686751188051eef677be497a8b06bcb2db1a67ca081271ac57dc160dd948c726fd2c426b151e4ef2d3359b787", 0x65}, {&(0x7f0000000840)="0b3c7a4f8cac4260ed54fb1383d9a8a18ebc88a54bae2209d09a5bbf2b3788eb681d2f089fe3e248a01e80c661b00b039fb36b769249144d30bc846ab3aee4e1ba806146d68db754b954c365d34b176b8dd8536373189920526afa036decd9cfb9d45e3b96abf7bdf0e6fa58e5ddba6082ecc1dd00c536d634654088b4076972d34bcc96659dff7036e87d7f8fa2c53bf8ca9d739114b3388cd38b0a594d0bc00e338c3dd48c0f428422", 0xaa}, {&(0x7f0000000900)="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", 0x1000}, {&(0x7f0000001900)="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", 0xfb}, {&(0x7f0000000780)="94a5bf2700cbe179f66286ab191fdf15c3f0e4d7542308c85c6cd771c2dedcaa5932fb960f19d5d1454332f2e74dc68e8d5800c317e6b92074e90784d7a5d2405a", 0x41}], 0x6, 0x3, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mknodat$loop(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x2000, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
setsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000280)="6b5706f02a937cc8bbfe5523b28b1f0c3c36d730448a826b4e42584c0b8ba0589d3f91303818d2fb710a9dab434f80b5dc25412dd763ccefe3e12928c112921916623ccdb702514f2ad6095cf469e49eb12b5df093738951c00b5bf3c895e3f5b9919cd30c80db046d486ba6e66dbfb9c416", 0x72)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x41, 0x0)
io_setup(0x3, &(0x7f0000000180))
syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/crypto\x00', 0x0, 0x0)
lseek(r5, 0x1000000, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
bind$alg(r4, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-avx\x00'}, 0x58)
ioctl$DRM_IOCTL_MODE_GETPLANE(r3, 0xc02064b6, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000001a40)=[0x0, 0x0]})
r6 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$kcm(r6, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x34, r8, 0x1, 0x0, 0x0, {0x34}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$PPPIOCATTACH(0xffffffffffffffff, 0x4004743d, &(0x7f0000000140)=0x1)
r9 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r9, 0xc0145b0d, &(0x7f0000000040))

30.321501247s ago: executing program 0 (id=698):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_clone(0x800000, &(0x7f0000000340)="94ac0221cba736df250fb8fb2834965a0d5abda8428520ab0eb75b433d61be3506c977471f0207ddae81c9677fc207b5543a679602cdabe6371c7aea80d8d50c916d26bae2adc2cd97", 0x49, &(0x7f0000000280), 0x0, 0x0)
r2 = gettid()
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000840)={{{@in6=@empty, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@remote}, 0x0, @in=@private}}, &(0x7f0000000140)=0xfffffffffffffd28)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="740100000c0601082bbd7000", @ANYRES32=r1, @ANYBLOB="2242159777a0255fc159613641ea7cffeb25a484bf26add829342067914042995333a2633401d48008001200", @ANYRES32=r2, @ANYRES8=r3, @ANYRES32=r3, @ANYBLOB], 0x174}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, {0x9}, 0x0, 0x0, 0x0, &(0x7f0000000240)}, 0x58)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={&(0x7f0000000700)="8d11cd0e2e9020ee18f75e4323590f1fcbe7d0ec4cfa4a742f573fb2b9db4084560f7ab62bff162f3309043f77fd5b9f0ad082d292e62e4e06cfdf4e9ed81a93891ce3de8b2c4c09e13a80e304c3ada2fa58722ea4eeada51ed2d5ef3c40e981c8ead3451d4b099b6c0c240fdb4e2beac4e2413f6eb5602966da7712522ac63f8e87c4", &(0x7f0000000a00)="527c24b429ca720b8f5f828505ad7f739a747ebd1ffcb3c4ff0b24cf1fab1da0a2097c14185bdd07703f6b89dabd16d803b7c5e05afd66caa92e39e162b519e39d82427d9fe3388f6147e250a78258c463b6ec50b5144c47a30e32713db5e9d3cee9f1e68ac461aaa70ed1bed1f1d96b441c36b739634071a7db6d7dc888f68a7116231681fffed9763e678cd38bad173137349dec7b8d5910c5fab8d1de30c6597e5fb2ebc5df"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket(0x1e, 0x4, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)=@name, 0x10, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

29.148078936s ago: executing program 0 (id=704):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x21, 0x1, 0x0, "274255008a17386bcec1b5665c0084feea0be6b8a80052d063e6173b99f019e3"})
r1 = fsopen(&(0x7f0000000080)='afs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r3)
sendmsg$IEEE802154_ASSOCIATE_REQ(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="24000000e5d758ab2121a90ec927e1c161ac0e92ba1542208f1eac2d5b1677badb34ad0e9eb65f186dfe093e9a92a295c8a720c830c0471a1d5433afbf49bd26a9d771a8806e7fdd5ca2f267833f9ca396645b355ac387124d9988c1", @ANYRES16=r4, @ANYBLOB="0100000000000010000001000000050007000000000006000a0001000000"], 0x24}}, 0x0)
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000700)=ANY=[@ANYBLOB="12010000000000408c0d220000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io(r5, &(0x7f0000000740)={0x18, &(0x7f0000000980)=ANY=[@ANYBLOB="00001001000000090090"], 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f00000000c0)=""/159)

27.05531414s ago: executing program 0 (id=713):
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$sysctl(r0, &(0x7f0000000000)='1\x00', 0x2)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r2}, 0x10)
syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000000)=[<r4=>0x0], &(0x7f0000000340)=[<r5=>0x0], 0x0, 0x0, 0x1, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r3, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r5, r4], 0x2, 0x0, 0x0, <r6=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETPLANE(r6, 0xc02064b6, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

26.496153713s ago: executing program 0 (id=715):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x12, r0, 0x0)
mknodat(r0, &(0x7f0000000180)='./file0\x00', 0x0, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
write(r2, &(0x7f0000000300)='(', 0x1)
bind$netlink(r2, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbff, 0x80}, 0xc)
write$uinput_user_dev(r2, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffa}, 0x1d, [0x1, 0xc95a, 0x3, 0x3, 0x80, 0x2, 0x1, 0x7f, 0x5, 0x4d, 0xfffffff2, 0x2, 0xa, 0x3, 0xffff2d37, 0x1dd2, 0x6, 0x7, 0x0, 0x80000001, 0x4, 0x7, 0x3, 0x3c5b, 0x3, 0x24, 0xffffffff, 0x3, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x9, 0x3, 0x7fff, 0x4c74, 0x8f00, 0x642, 0x3, 0xa, 0x0, 0x71, 0x7, 0x7, 0x103, 0x3, 0x5, 0x3c, 0x8f, 0x5, 0x6, 0x3, 0x5, 0x8, 0x3, 0x0, 0x80, 0x0, 0x5, 0xfffffff7, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x12f, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf6, 0xd, 0x2bf, 0x6c9, 0x9, 0xfffffffc, 0x3, 0x0, 0x7, 0x9, 0x2f, 0xe, 0x101, 0x78, 0xea4, 0xa, 0x4, 0x4, 0x8000, 0x800009, 0x400, 0x1, 0x6, 0xfffffffd, 0xff, 0xffff, 0x9, 0x5f31, 0x0, 0x0, 0x6, 0x2, 0x9, 0x4, 0x9, 0x9, 0x9, 0x6, 0x2, 0x0, 0x1, 0x8000, 0xffff, 0x2, 0x7f, 0x9, 0x5, 0x3, 0x4, 0x1, 0x7, 0x6, 0xb, 0x48c93690, 0x2, 0xff], [0x7, 0x4, 0x0, 0x64e, 0x10001, 0x7fffffff, 0x8d2, 0x9, 0x6, 0x7fff, 0x0, 0x6, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1f0, 0x5, 0x8, 0x86, 0x8, 0x10000009, 0x3e7, 0x2, 0x2, 0x202, 0x2, 0xf, 0x8, 0x4, 0x6d01, 0x25, 0x3b, 0x3, 0x7, 0x80, 0x3, 0x4, 0x2950bfaf, 0x7, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0x54fe12d2, 0xbf, 0xb, 0x3, 0x400000, 0xfffffff9, 0x1, 0x1, 0x5, 0x1, 0x5, 0x0, 0x120000, 0x3, 0x6, 0x9, 0x5, 0x3], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x6, 0x7, 0x5, 0xfffffffe, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x7, 0x60a7, 0x6, 0x6, 0xffffffff, 0x80000000, 0x805, 0x8, 0xc8, 0xca2, 0x3, 0xffff, 0x3, 0x9, 0x100, 0x9602, 0xa, 0x2, 0x4, 0x6, 0x1, 0x10000, 0x5, 0x8, 0x2b91, 0xa1f, 0x80000000, 0x80000009, 0x1, 0x6c1b, 0x0, 0x4, 0x8, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c)
r3 = memfd_create(&(0x7f0000000880)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6\xb5\x00\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?&^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xe3\xe5\x19T\xff\x01\x00\x00\xe2\x9f\xd9\xae\xcf>/\x05V%$6\x9fU\x86\xbe\xcbx\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xb2\xae\xda\xa9\xf6\x92\xaf4\xb5|W\r0{\xdc\xa0D\x93.\xf25\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\xaa\xe6\x05\xe4\xc3\x90\x91\x98\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{a?\xd0\xe1{\x84\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\x97.A\x84\x1d\xc2\x86\x89{\xba\xe3J\xc2t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6Pr\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xba\x9d\xce\xb3%QF\x03\b\x9dh\xfd\x91\xea\xce\x06\a\xba`\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8\x83\x87+nM\x11\x1c\xb0*8\v\x1e\xcf\x03\xd3\xe8,?\x87\x84\\/y\xed\x01#?\xab\x1c\x11\x00\xc5\x8d\x82\x9c\xd6B[\xc9\x00\xf5]\x81\xf3\xfd\x06M\xbe\xf9\xba\x9em\xe9\"\x03\x933P\xa3\xcc\x9b\f\xa7\x8f\x91O\xc9\xb9\x10M\x8b\xd0\xc0\xb8L\xbd\x1c4\xb59\x988\tgC\xbc\xe0\xc5\xf4\xe0E%\xd9\xd8w\x00k\x042Y\xdc\xc5\xe59\xa95\xd1m\xd8hCuZYi\x10D\xb9\xe6\xff\x04K%yH\xe5W\xfb\x82\xac\x19,\\D\x91T\xfd\x9c\xb8\x8b\x88\xa5\xcc\x8fI\x00\xf0\xc9%\n\xa7\xd6\x0f:\xb0\xf5?\xc3\x88\x1e\xbb-\xa6\xecA\x92\xaf\xa4Xl\v\xa5\xca\v|\xe2L\xac\x80\xc7\x15\x96fh\x83\x15\xc7\xea\xd5\xe8\x89W\x11\xd7oC\xe4\x06\xa8[O\xe6\x1d=\x87\x93\x0f\x87I\xdf\xb1\xeb\x89\x11.\x01\x00\r`\x1e8\x94\xb7\xbc\xc3\xad\xf1\x92/(A=A\x8b\xa5I\xd7\xd3#\xb0\x89\x9e5\x12\xa4\x9a\va\xdf\xf4\xea\xc6\xc7\x10g\x1d\xd5\xb0\xbb\xd2\xfc]fC\x8d\x0f\xa6q\x0f\xef\x90\xfe\x94k\xf1\x98\xfa\xbbb\xb1\x00\x99\xf7\xfd\'\xae\x906\xe0\xaa\xdbtWWH\xa4L\xb5po,\xdfN\x0f8\t\xe7X_H\xd4\xe3\xb2,oj\xac\xd7\xbd\xd0\xadW\x1f<\xd0s\xa8\x1f(\x00/ \xe4]@\xf7mA\xe8\xd1\xf4:\xb3\xeb\x81\xb9\x018\x1c\x95%o\x13\xa4\xad\xd8\xf9\xd2\x95\xa8\x81\xbe\xbc\xa6\x14_o\xfb\xdaL\xcb\xda\x9a\xec\xce\xd18&\xfbG\xa1\f\xf4\xd5u\xb0xE)j\x1b\xecL\xa1\xdc\xabUiN\xdet\xc7Q\xe6\xa4\x99-\xba\x16\xe5\xba!\xbdCI#\x03\xd7\xf5\x02w\x1e0CA\xfaLB])\xaaG\xc5\'W\xdd\x14\b\xca\xbeIb3S\xd8\xce\xc3\x9e\x03~\xdd\xc1\x1d3\xb7O\x87\x87Ew\xa6\x95\x9f\xabWI\xc4]gRW\xab^\x17\xca\x9a#\x18N\".\x98\xac\xc7\x99\x7fI\xb8f,$\x15\x9bG\x86h\x04\xb8&.6SeV\x11S%#\n\x11W\x11\x95\x94\x83\xff\x81\xe9\xa0\xa5\x99\x8e\x9e\x0fV\x87\xbe\xa4\xc3\xe6\x85\x99\xeb\x1f\xdfH:]\b\xbcD\x88\xa4', 0x0)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"/306], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r4, 0x0, 0x0, 0xcc02998c179ba4b1, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x20051, r3, 0xce9e1000)

26.452818051s ago: executing program 0 (id=716):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_clone(0x800000, &(0x7f0000000340)="94ac0221cba736df250fb8fb2834965a0d5abda8428520ab0eb75b433d61be3506c977471f0207ddae81c9677fc207b5543a679602cdabe6371c7aea80d8d50c916d26bae2adc2cd97", 0x49, &(0x7f0000000280), 0x0, 0x0)
r2 = gettid()
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000840)={{{@in6=@empty, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@remote}, 0x0, @in=@private}}, &(0x7f0000000140)=0xfffffffffffffd28)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="740100000c0601082bbd7000", @ANYRES32=r1, @ANYBLOB="2242159777a0255fc159613641ea7cffeb25a484bf26add829342067914042995333a2633401d48008001200", @ANYRES32=r2, @ANYRES8=r3, @ANYRES32=r3, @ANYBLOB="3d867ab27a4e5cb4d9e744a7364136f9869ea91ab51e929b1c28836b5965e0ba908afae77945fb0991f5d2ce24c4192e"], 0x174}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, {0x9}, 0x0, 0x0, 0x0, &(0x7f0000000240)}, 0x58)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={&(0x7f0000000700)="8d11cd0e2e9020ee18f75e4323590f1fcbe7d0ec4cfa4a742f573fb2b9db4084560f7ab62bff162f3309043f77fd5b9f0ad082d292e62e4e06cfdf4e9ed81a93891ce3de8b2c4c09e13a80e304c3ada2fa58722ea4eeada51ed2d5ef3c40e981c8ead3451d4b099b6c0c240fdb4e2beac4e2413f6eb5602966da7712522ac63f8e87c4", &(0x7f0000000a00)="527c24b429ca720b8f5f828505ad7f739a747ebd1ffcb3c4ff0b24cf1fab1da0a2097c14185bdd07703f6b89dabd16d803b7c5e05afd66caa92e39e162b519e39d82427d9fe3388f6147e250a78258c463b6ec50b5144c47a30e32713db5e9d3cee9f1e68ac461aaa70ed1bed1f1d96b441c36b739634071a7db6d7dc888f68a7116231681fffed9763e678cd38bad173137349dec7b8d5910c5fab8d1de30c6597e5fb2ebc5df"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket(0x1e, 0x4, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)=@name, 0x10, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000ec0)=ANY=[@ANYBLOB="61154c00000000006113500000000000bfa00000000000001503000008004e002d3501000000000095004100000000006916000000000000bf67000000000000350605000fff07206706000005000000160302000ee60060bf590000000000000f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ff3d4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf664e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05000000c6c60bf70d742a81762bab69a000248e167253472dc89a57c10bb08395fa64810b5b40d893ea8fe01c5473d51b546cad3f1d5ab2af27546e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc8da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e88158f0200000000c8fb730a5c1bf2b2bb845129361997a75fd552bdc2300000008ac86d8a297dff0445a15f21dce4de9f29eff65aadc841848c9b562a31e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076ebae3f55c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932c9a6aa57f1ad2e99e0e67ab93716d20000009fbb0f53acbb40b4f8e2739670b31562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc401000000cc43010000207b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000f4000000000000000000000000c1eb2d91fb79ea00000000000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386ba3b543ccb5f0d7b63924f17c67b13631d22a11dc3c6939628950000000000000001c7205a6b068fff496d2da7d632bd1f61b007e1ff5f1be19637302f3b41eae50509fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b30410856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710e0254f1b11cced7bc3c8da0c44d2ebf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db88aa3c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d788535a4d3114dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fb9fb38f84d9d87b27f8a5d91217b728f13e3ee20e69e0ffb2780b1a7af137ff7b4ff010404faf0a4da65396174b4563d54b52f06c870edf0c5d744b5272b44c23488b2bdbff947c4dfa108cbb88202ee1192b81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2b517dc4a29b9b5a8ded5de8206c812439ab129ae818837ee1562078fc524a3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2a3bc87b0da23c00d9ef418cf19e7a8c4c328be0ce95798adc2dca871073f6bd61dc18402cde8b0100010000000000abc86b94f8cbde4d470667bee722a6a2af483ad0d3415ed0f9db059acaba9eaea93f811d434e00000000000000000000d154ba10a8e51489a614e69722bac30000000000000000000000000000c5dfd188ff555285b9743d3aac000583f44fc00b69151d681a2f71373f20d92c9048407c91fabecfe8b3f2d545ffffffff00000000a1cfc4336324c86f3dcb43e9a58208077e90f6ec1c7ac756f61dcc372cdd30b82507489f0bbfbd3c3f21752e81319c0161e154ceb16e00bc7f5a6962dff317f4d014786e432817064874d69a39cb0da31bcc5f81894d8a80756447322207b4007dff12eb95066cc6bc256f0a12282224d718b06ca80b57aa183dd0c3eee45891441f2b89b4c67aa9882281393954972046974f18df232cd7fca610e33f51c2d062020f403d85ff36c26e2f6bd1d82f4d3ceb3472d9a77e0057a3bfe697d9ab7585f4a1b381343d2cf857689232f4fc5135790662dc1419a374be9d7b3e5be2886d23add90d862f1a682ff11c798e338af3e5bb0f9d3952b15bf3e0c618c89d20ca1e18a031397693bf3cfbd8417e5b55e641c898c280356f2da222d5d68919d98158578dcf18efa404e508bcbbb8cfcf70086821ebdf34c9a1dff45af873df904c2bdbef81f246d26f4b40df949e12bdac18533d4e11c608cc31d60cb591c40a7b386fa1c753336d7220a35118d4919b45eff32aab684ee54c0a263c806aabac2f66cbe8d23810052f847c62c6691de14e97aa7e9dc8ecf0cd50540246d2b746e41e5b4e2c095039dfe0f71db6265f7580d098be40ef36faee5d1695830d4242a23e541e6ce9fa1998d8961ef4fe3c8e8fbb566f148c8befc229614a4b7f80d237b8abc6fc0407de31d6e5532f360d379f20f054692b47207922fe6c14eba96c9a7ae906abc1ae1ae8c4fae92883cfa1978a04bb000000000000000000000000000000884efcecca45ea4ab2ec097668456a6ff12854997f5aed737d5205ace5c0b64f87ef10784d0479cb44ca077e0c4ce6ff880e2ce3de63853a9740e9233683bfc8636bee293aeeb680b399a296e6f44c07b5fc5d9d359af007f23004a7acb6df23664ea209620b4fe0f4df81c33bd8ca2335cb4b50881937379b45a301175c3e8eb32970564ec8e25c46ee3bae079faedaad94276cfa251be8256c4c37fc84a299fa176018054e9149a1c9d20a809ce3000000000000000000000000f6fad8476470bf4bb79d2ba2c0f7147577466f4229b364d6900ad22583c0ec630ea0c6177ad88014b074d88fea473d5ef91ed786bbd3371f0dfcc5ccf4aa82927192aa94fe70a261f1899e1f2f62d50b027f7e7cac8fe3691aa323e71d5e479d466512d1df57633a9006016322978a795431c745f0502e37b8884c368a3f9d5c05a7fb5bd25d95442d09f79c5bd656dccb450cb19c6df406ffcfc414334021df3e4654f84f10070846d3b0679544"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

21.594729457s ago: executing program 0 (id=728):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0x8e, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000943000/0x2000)=nil, 0x2000, 0x13)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x80000000, 0x0)
r1 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x8562, 0x40, 0x8, 0x2}, &(0x7f0000000100), &(0x7f0000000000))
r2 = socket$rds(0x15, 0x5, 0x0)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r3, &(0x7f0000000080)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x0, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]}, 0x40)
bind$rds(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {0x0}], &(0x7f00000005c0), 0x2}, 0x20)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
bind$inet6(0xffffffffffffffff, 0x0, 0x37)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f0000000400)=[{{0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x4000000}}], 0xf00, 0x0, 0x0)
poll(&(0x7f00000000c0)=[{r4}], 0x1, 0xfffffffffffffff8)
dup2(r4, r5)

15.876177149s ago: executing program 1 (id=747):
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0200000004000000080800000c00000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000008f182f83b35cf16100", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b7080000000200007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x7}, {0x5, 0x2, 0x13, 0x2}, {0x5, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = syz_clone(0x800c000, &(0x7f0000001480)="627807434619734911420e123cb6f44fb54d82f86f3720b1d5ecd9651a9fcb2a1c358b9cd99a9da0b00953486764e0c7d13faa0d43ad3164e14aa9d4eafc2ae39ce2be18d63433b7dfc78608200e69639ab1530087488555d6d92591d54b3a4b2d398d9c826367e94ff87e48b5c84c384e4da2242cd7", 0x76, 0x0, 0x0, 0x0)
kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x109042, 0x0)
write$P9_RSTATu(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="330200007d00000005f2000000000000000000000000000000000000000000000000000000000000000000000000000000001b00046e6f6465767b65766f6f7e0539c60005000037d93a8b92"], 0x233)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$NFT_BATCH(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x94}}, 0x0)
socket$unix(0x1, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, 0x0, &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket(0x400000000010, 0x3, 0x0)
pipe2(&(0x7f0000000000)={0x0, <r7=>0x0}, 0x0)
tee(r7, r7, 0xff, 0x0)

15.154959509s ago: executing program 4 (id=748):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x8, 0x100})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000440)={0x2, 0x5, 0x4})
r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6, 0x0, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f00000001c0)={0x15, 0x1, 0x3})
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r3, 0xc00464b4, &(0x7f0000000400)={r5})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000002c0)={0x8, 0xd7, 0x8})
close_range(r0, 0xffffffffffffffff, 0x4000)

14.786969924s ago: executing program 4 (id=749):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x400000000000, 0x100000000, 0x0, 0x80, 0x1, 0x80000000002, 0x2004c8, 0x8000000, 0x0, 0x4, 0xfffffffffffffffe, 0x0, 0x9ccf, 0x10000000000000], 0x2})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYRES32=r2, @ANYRESHEX=r1, @ANYRES16=r0, @ANYBLOB="0000000000010000000000000000001700000000367630a63ac48b835ca3ee6cf315e1ab4fec96996f3bb2813ae3299502a7d9c4bed4f521f0bb495f14aa7e93f755f4b492e9a39368", @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='children\x00')
r4 = openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="340000003b0007010000000000000000047c0000ec0000000c00018006000600800a0000100002800c000b"], 0x34}}, 0xc000)
getpgid(0xffffffffffffffff)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x2)
r6 = socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'dvmrp0\x00'})
ioctl$VIDIOC_G_AUDIO(r4, 0x80345621, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, 0x0}, 0x0)
getsockopt$inet_sctp_SCTP_RTOINFO(r3, 0x84, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$kcm(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1100000004000000040000000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000089770317edb726147c94fef7fac5d4e37cf7cc0543de6cd3c23900832e696f82565ec9bbd36e4d360cd3b7ec08aea96a9d661ccd397df9d3"], 0x48)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r7, &(0x7f0000000280)={@val={0x0, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x3d}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0xb, 0x0, 0x0, 0x0, 0x17, {[@window={0xb, 0x3}, @timestamp={0x5, 0x2}, @generic={0x0, 0x2, "d58838068b91"}]}}}}}}, 0x4e)

14.650342385s ago: executing program 1 (id=750):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x1c7000, 0x0) (async)
r1 = syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x4, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x2def, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0xfffffffe, 0x0, "00769a7d8200010000001495595915303d6000"}) (rerun: 64)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCFLSH(r4, 0x540b, 0x2) (async)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c92012000e00050015050a"], 0x17) (async)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
r6 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000002080)=0x64, 0x23b) (async)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0) (async)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
r9 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
getsockopt$ax25_int(r9, 0x101, 0x2, &(0x7f0000000080), &(0x7f0000000000)=0x4) (async)
setsockopt(r8, 0x0, 0x3e, 0x0, 0x0)
bind$inet6(r8, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
r10 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000180)={'virt_wifi0\x00', &(0x7f0000000140)=@ethtool_perm_addr={0x20, 0xe, "333144b479932fa9401296f834cd"}}) (async)
sendfile(r10, r7, &(0x7f0000002080)=0x64, 0x23b) (async)
r11 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0) (async)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0) (async)
mount$bind(0x0, &(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x297880, 0x0)
r12 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r12, r11, &(0x7f0000002080)=0x64, 0x23b) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000000700)={{0x1, 0x1, 0xfffffffffffffe46, <r13=>0xffffffffffffffff, {0xfc}}, './file0\x00'}) (rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000640)='GPL\x00', 0x3, 0x1e, &(0x7f0000000680)=""/30, 0x28656d2ed8f805b9, 0x4, '\x00', 0x0, @fallback, r5, 0x8, 0x0, 0x0, 0x10, &(0x7f00000006c0)={0x3, 0x100a, 0xfffffff7, 0x7fffffff}, 0x10, 0xffffffffffffffff, r7, 0x4, &(0x7f0000000740)=[r11, r5, r13], &(0x7f0000000240)=[{0x5, 0x5, 0x10, 0x1}, {0x1, 0x4, 0xc, 0x7}, {0x3, 0x4, 0x3, 0x9}, {0x4, 0x4, 0x6, 0x8}], 0x10, 0xffffffc0, @void, @value}, 0x94)

14.501008149s ago: executing program 1 (id=751):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES8=r0], 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
connect$inet6(r0, 0x0, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
write(r1, &(0x7f0000000040), 0x0)
pselect6(0x40, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x70ee}, 0x0, &(0x7f0000000040)={0xb, 0xfffffffffffffffe}, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x4, r4, 0x1})
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000180)={0x2000, 0x0, 0x4, r4, 0x5})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
r7 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
write$dsp(r7, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$SNDCTL_DSP_SYNC(r7, 0x5001, 0x0)
ioctl$SNDCTL_DSP_RESET(r7, 0x5000, 0x0)
ioctl$KVM_CAP_MAX_VCPU_ID(r3, 0x4068aea3, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r9, &(0x7f0000000100)=@id={0x1e, 0x3, 0x3bc0c501a8f25a25, {0x4e23, 0x1}}, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000001c0)={'macvlan0\x00'})
unshare(0x62040200)

13.674993265s ago: executing program 4 (id=753):
socket(0x2c, 0x3, 0xfffffffe)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000004c0)='./bus\x00', &(0x7f0000000440), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
mknodat(r0, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
prctl$PR_SET_SPECULATION_CTRL(0x35, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r2)
sendmsg$TIPC_NL_BEARER_DISABLE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002080)={0xa80, 0x0, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x4c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x101}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6eb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}]}, @TIPC_NLA_NODE={0x3c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x2d, 0x3, "79262fbe8cad9dde979852bd14020c5629789aded145e3cc18c9dd935fb60728d4fd13d4fc6a93f7dd"}]}, @TIPC_NLA_LINK={0xa8, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xf48b}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}]}, @TIPC_NLA_NODE={0x93c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x935, 0x3, "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"}]}]}, 0xa80}, 0x1, 0x0, 0x0, 0x4000001}, 0x20040000)
signalfd4(r2, &(0x7f0000000000)={[0x5, 0x7fff]}, 0x8, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
linkat(r3, &(0x7f0000000300)='./file1\x00', r3, &(0x7f0000000400)='./file0\x00', 0x0)

13.41768221s ago: executing program 4 (id=755):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x9)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r1) (fail_nth: 6)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="070000020000000000000200000014000180060001000200000008000300ac1414aa"], 0x28}}, 0x0)

13.373222421s ago: executing program 1 (id=756):
r0 = socket$kcm(0xa, 0x5, 0x0)
r1 = socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="000000000000000000e8ffffffffffff05000000", @ANYRES32=0x1], 0x48)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x8916, &(0x7f0000000000)={r1})
socket$kcm(0xa, 0x5, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r2, 0x0, r5, 0x0, 0x8ec3, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8d}, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x5)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_REJECT(r5, &(0x7f0000000240)={0x9, 0x108, 0xfa00, {0xffffffffffffffff, 0x4, "7a8bcf", "c3d8af7dc8afb787ef9544c7039196f7dcda2cd47903b2e63d630ad98f6b724782dc7de64a5bca263d41743bd2bda793a0e5a49d2e5aa2bbf456dade2b5339adbbdc29a7748e0a71259220be21c435fabb2181fefac0d43181d61098596b52d2577438e01505a1321f7ca2eced42667a95f66b7977d6aa979c873101e96f0e3b4fd35eaa7f68b4f3ed5e05d329d7335a8b25f9c65a775ed03a0f5bce4027dd67cc87dadf4c808c095064dbde61983a1aa6238ed0b2efec91dde4153890a44a31d6b05590b35216586822785c2ff2da5c1f86f5da528950109b48f8d31a4a385179af9b97b623295a32ae0b83208c9b5a9b2405bce282b7d442e71915adfbf127"}}, 0x110)
fcntl$setpipe(r5, 0x407, 0x0)
readv(r4, &(0x7f0000000080)=[{&(0x7f00000078c0)=""/110, 0x6e}], 0x1)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000005c0)="ea", 0x1}], 0x1)
write$binfmt_elf64(r3, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000)={r1})

12.932232476s ago: executing program 4 (id=759):
r0 = syz_open_procfs(0x0, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
read$snddsp(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)}], 0x1}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$usbfs(0x0, 0x76, 0x0)
pselect6(0x40, &(0x7f0000000480)={0x0, 0x0, 0x2, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
r4 = socket(0x10, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000004780)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_link_settings={0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x80000]}})
write$UHID_DESTROY(r0, &(0x7f0000000200), 0x4)
r5 = getpid()
rt_tgsigqueueinfo(r5, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0xfffffffa})
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x0, @dev}, 0x10, 0x0}, 0x30044041)
r6 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r6, &(0x7f0000000440)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff810540010000000058000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}, {&(0x7f0000000340)="4e7fd73100fecccad22e5bd5dc8e334ea68512ec7fbe57580d1775e3a92d50250e78d3afc0f2e86563551f5c4bf44f4ef56e7e5b45665adb1f009b524996a57fe4eeacd40dce3a412ba2fd335fd6fc636c74f96b1ea93be8b215", 0x5a}, {&(0x7f00000003c0)="2f8a93f428fc70dd37a71c671e025b7890b3caa46271d76429d905b06e706314eb4213f7967c8e2fe6dfe6484e5ec549cde015e4432706fc25b80a8d0351249be02857b8f44cd4da9beb6d5e6856a929a3987ff592d9b024c3a56bbe0378a161a9ec5274c58919e946600d", 0x6b}, {&(0x7f0000000540)="154afdca64daab300872c5ecb6d4b8262fded8f2c59e458f20adac8a6d649935e5c837b74e640358f5e3bc5d89b990528a48f6199877ab3ae7b2cbb0646a35f646aadd3f5362e1ba06a4c0787d0b3161cfdb8bd6d5d3d43dc40cbe57ce9a02b591b07dff0685ba7cb7777fe5b5e9fa440c838586edc11554e0c41abe2bc961618fbadc07bc7617938a7b8db3", 0x8c}], 0x4)

12.674476868s ago: executing program 1 (id=760):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_clone(0x800000, &(0x7f0000000340)="94ac0221cba736df250fb8fb2834965a0d5abda8428520ab0eb75b433d61be3506c977471f0207ddae81c9677fc207b5543a679602cdabe6371c7aea80d8d50c916d26bae2adc2cd97", 0x49, &(0x7f0000000280), 0x0, 0x0)
r2 = gettid()
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000840)={{{@in6=@empty, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@remote}, 0x0, @in=@private}}, &(0x7f0000000140)=0xfffffffffffffd28)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="740100000c0601082bbd7000", @ANYRES32=r1, @ANYBLOB="2242159777a0255fc159613641ea7cffeb25a484bf26add829342067914042995333a2633401d48008001200", @ANYRES32=r2, @ANYRES8=r3, @ANYRES32=r3, @ANYBLOB="3d867ab27a4e5cb4d9e744a7364136f9869ea91ab51e929b1c28836b5965e0ba908afae77945fb0991f5d2ce24c4192edf0cc1087f"], 0x174}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, {0x9}, 0x0, 0x0, 0x0, &(0x7f0000000240)}, 0x58)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={&(0x7f0000000700)="8d11cd0e2e9020ee18f75e4323590f1fcbe7d0ec4cfa4a742f573fb2b9db4084560f7ab62bff162f3309043f77fd5b9f0ad082d292e62e4e06cfdf4e9ed81a93891ce3de8b2c4c09e13a80e304c3ada2fa58722ea4eeada51ed2d5ef3c40e981c8ead3451d4b099b6c0c240fdb4e2beac4e2413f6eb5602966da7712522ac63f8e87c4", &(0x7f0000000a00)="527c24b429ca720b8f5f828505ad7f739a747ebd1ffcb3c4ff0b24cf1fab1da0a2097c14185bdd07703f6b89dabd16d803b7c5e05afd66caa92e39e162b519e39d82427d9fe3388f6147e250a78258c463b6ec50b5144c47a30e32713db5e9d3cee9f1e68ac461aaa70ed1bed1f1d96b441c36b739634071a7db6d7dc888f68a7116231681fffed9763e678cd38bad173137349dec7b8d5910c5fab8d1de30c6597e5fb2ebc5df"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket(0x1e, 0x4, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)=@name, 0x10, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

11.635706112s ago: executing program 4 (id=761):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000001880)={'wg1\x00', <r3=>0x0})
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r4, 0x402, 0x8000003d)
fcntl$setsig(r4, 0xa, 0x21)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x800000080010000)
openat(r4, &(0x7f0000004400)='./bus\x00', 0x463142, 0x0)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000280)={0x40, r5, 0xa29, 0x0, 0x0, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r3}, @WGDEVICE_A_PRIVATE_KEY={0x24}]}, 0x40}}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000000100000024000300a05ca84f6c9c8e3853e2fd7a70ae0fb20fa152600cb00845174f08076f8d784308000100", @ANYRES32=r3, @ANYBLOB="7bb2b6db7eff0000006c36e847059f87c2cba4dcd51668c7494bc3085c220c00003293c559b5a1f7886e69c30663292af1cfa46b33cdd882e747286c8dceeb77f8124b2095c9e5b2367eecc30058"], 0x40}}, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r6, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$bt_BT_SECURITY(r6, 0x112, 0x4, &(0x7f0000003000)={0x2}, 0x2)
sendmsg$inet(r6, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
sendmsg$FOU_CMD_ADD(0xffffffffffffffff, 0x0, 0x40080)
socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)

11.516386993s ago: executing program 1 (id=763):
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(0xffffffffffffffff, 0x541b, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000000206051000000000000000000000000905000100070000000900020073797a300000000005000400010000000c000300686173683a69700005000500e1a92aff"], 0x44}}, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
iopl(0x3)
r3 = socket(0x840000000002, 0x3, 0x100)
r4 = syz_io_uring_setup(0x10d, &(0x7f00000003c0)={0x0, 0x469d, 0x0, 0x0, 0xfffffffc}, &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x118, &(0x7f0000000140)=0x2ce, 0x0, 0x4)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r7, 0x0, &(0x7f00000019c0)={0x0, 0x0, 0x0}, 0x0, 0x6040, 0x0, {0x1}})
io_uring_enter(r4, 0x47f9, 0x3f, 0x0, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
pwritev2(r3, &(0x7f00000000c0)=[{&(0x7f0000000040)="d0600b401f39b97bf93ecf49759e94b4519a0de2f87e5c417273a5dce55efb335b22dce602ca972f116438489fdab766171401f130eb1c9e78ec70db15755f97ca197fc3da0b85ea0d2f7bdffcc1caa5810430b5448f4ae272489f5c7ac1e4660c4f7b0446d5457181924a3d4dbfdfee93a14379adfe7c1effdacb69a945", 0x7e}], 0x1, 0xa, 0x6e6f2b53, 0x10)
r8 = syz_open_dev$usbfs(&(0x7f0000000480), 0xc, 0x141341)
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
sendmmsg$inet(r3, &(0x7f0000005240), 0x264e33, 0xff88)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/custom1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000000180)={0xc, 0x0, &(0x7f00000001c0)=[@register_looper, @acquire], 0x0, 0x0, 0x0})
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r11}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, &(0x7f0000000040)=""/247, 0x26, 0xf7, 0x1, 0x0, 0x0, @void, @value}, 0x20)

10.782530442s ago: executing program 3 (id=766):
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, 0x0)
r2 = dup3(r1, r0, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r3, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd})
write$P9_RREADDIR(r3, &(0x7f0000000140), 0xfdef)
syz_io_uring_setup(0x1afc, &(0x7f0000000740)={0x0, 0x6a34, 0x10, 0x1, 0x319}, 0x0, &(0x7f0000000680))
r4 = syz_open_dev$vbi(&(0x7f0000000a00), 0x3, 0x2)
ioctl$VIDIOC_G_SLICED_VBI_CAP(r4, 0xc0745645, &(0x7f0000000100)={0xfff7, [0x7, 0x6, 0x401, 0x4, 0x1, 0x0, 0x9, 0x8, 0x2, 0x7f, 0x4, 0xf, 0x8, 0xf1, 0xd, 0xffff, 0xfbed, 0x0, 0x50, 0x9, 0x31, 0x7fff, 0xbb, 0x7ff, 0x7, 0x5, 0x0, 0x5, 0x0, 0x3, 0x1000, 0x3, 0x81, 0x209, 0x1040, 0x9c6, 0x7, 0x200, 0x8, 0x2, 0x9, 0xe, 0x7, 0x6, 0x1, 0x35d, 0x8000, 0x100], 0x7})
syz_io_uring_setup(0x991, &(0x7f0000000080)={0x0, 0xb708, 0x0, 0x4}, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000380))
syz_io_uring_submit(r5, 0x0, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
io_uring_enter(0xffffffffffffffff, 0x381b, 0x0, 0x0, 0x0, 0x0)
ioctl$KDGETKEYCODE(r2, 0x4b4c, &(0x7f0000000000)={0x3, 0xce})
r6 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$binder(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x11, r6, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000480)={0x4c, 0x0, &(0x7f0000000580)=[@acquire, @transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000280)={0x0, <r7=>0x0}, &(0x7f00000002c0)=0xc)
r8 = getgid()
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000800)=ANY=[@ANYBLOB="66643dfe2d451b97bfd2b78c236cda077ad1e58d3c18", @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000', @ANYRESDEC=r7, @ANYBLOB=',group_id=', @ANYRESDEC=r8, @ANYBLOB=',smackfshat=\x00,d', @ANYBLOB=',\x00'])
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x4c, 0x0, &(0x7f00000004c0)=[@reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x4c, 0xfffffffffffffffc, &(0x7f0000000600)="fd026d6e8c6d7d4b8232398be4d8ab1fb3f7357c1094506013470098448866805968ba3387f5782010171d4f65cc2298be76206507000000000000008f50e600"/76})

10.576211216s ago: executing program 3 (id=767):
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000000c0)={0x0, <r0=>0x0})
r1 = syz_open_procfs(r0, &(0x7f0000000100)='net/llc/socket\x00')
preadv(r1, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000040)=""/99, 0xfffffffffffffcc0}], 0x2, 0x0, 0x0)

10.3458883s ago: executing program 3 (id=768):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r1, &(0x7f00000001c0)={0x1a, 0x0, 0x2, 0x4, 0x77, 0xa2, @remote}, 0x10)
poll(&(0x7f0000000d00)=[{r1, 0x180}], 0x1, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat$ndctl0(0xffffff9c, &(0x7f0000000140), 0x103000, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETTXFILTER(r2, 0x400454d1, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f75705f88643d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
read$FUSE(r3, &(0x7f00000077c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000004200)={0x50, 0x0, r4, {0x7, 0x1f}}, 0x50)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000540)=@ethtool_coalesce={0xf, 0x0, 0x0, 0x0, 0x634, 0x7, 0x5, 0x0, 0x0, 0x655, 0xfffffc01, 0x0, 0x71, 0x2, 0x0, 0x0, 0xffffffff, 0x0, 0x6, 0x7ff, 0x6, 0x2}})
syz_fuse_handle_req(r3, &(0x7f00000042c0)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b5300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002860714800", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(r6, 0x541b, 0x0)
faccessat2(r6, &(0x7f0000000100)='./file0\x00', 0x14a, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

9.366923389s ago: executing program 3 (id=769):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_clone(0x800000, &(0x7f0000000340)="94ac0221cba736df250fb8fb2834965a0d5abda8428520ab0eb75b433d61be3506c977471f0207ddae81c9677fc207b5543a679602cdabe6371c7aea80d8d50c916d26bae2adc2cd97", 0x49, &(0x7f0000000280), 0x0, 0x0)
r2 = gettid()
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000840)={{{@in6=@empty, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@remote}, 0x0, @in=@private}}, &(0x7f0000000140)=0xfffffffffffffd28)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="740100000c0601082bbd7000", @ANYRES32=r1, @ANYBLOB="2242159777a0255fc159613641ea7cffeb25a484bf26add829342067914042995333a2633401d48008001200", @ANYRES32=r2, @ANYRES8=r3, @ANYRES32=r3, @ANYBLOB="3d867ab27a4e5cb4d9e744a7364136f9869ea91ab51e929b1c28836b5965e0ba908afae77945fb0991f5d2ce24c4192e"], 0x174}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, {0x9}, 0x0, 0x0, 0x0, &(0x7f0000000240)}, 0x58)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={&(0x7f0000000700)="8d11cd0e2e9020ee18f75e4323590f1fcbe7d0ec4cfa4a742f573fb2b9db4084560f7ab62bff162f3309043f77fd5b9f0ad082d292e62e4e06cfdf4e9ed81a93891ce3de8b2c4c09e13a80e304c3ada2fa58722ea4eeada51ed2d5ef3c40e981c8ead3451d4b099b6c0c240fdb4e2beac4e2413f6eb5602966da7712522ac63f8e87c4", &(0x7f0000000a00)="527c24b429ca720b8f5f828505ad7f739a747ebd1ffcb3c4ff0b24cf1fab1da0a2097c14185bdd07703f6b89dabd16d803b7c5e05afd66caa92e39e162b519e39d82427d9fe3388f6147e250a78258c463b6ec50b5144c47a30e32713db5e9d3cee9f1e68ac461aaa70ed1bed1f1d96b441c36b739634071a7db6d7dc888f68a7116231681fffed9763e678cd38bad173137349dec7b8d5910c5fab8d1de30c6597e5fb2ebc5df"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket(0x1e, 0x4, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)=@name, 0x10, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

6.223464287s ago: executing program 33 (id=728):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0x8e, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000943000/0x2000)=nil, 0x2000, 0x13)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x80000000, 0x0)
r1 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x8562, 0x40, 0x8, 0x2}, &(0x7f0000000100), &(0x7f0000000000))
r2 = socket$rds(0x15, 0x5, 0x0)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r3, &(0x7f0000000080)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x0, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]}, 0x40)
bind$rds(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {0x0}], &(0x7f00000005c0), 0x2}, 0x20)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
bind$inet6(0xffffffffffffffff, 0x0, 0x37)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f0000000400)=[{{0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x4000000}}], 0xf00, 0x0, 0x0)
poll(&(0x7f00000000c0)=[{r4}], 0x1, 0xfffffffffffffff8)
dup2(r4, r5)

1.13614994s ago: executing program 3 (id=771):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000ce23a5745a2f7730447e31ce53000000180100002020702500000000082020207b1af8ff00ffffffb70200000800da8d79be79d00cd90020850000009400000018010000786c6c2500000000002020208a1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x109280, 0x0)
openat$fb0(0xffffff9c, &(0x7f0000000140), 0x44002, 0x0)
r0 = open(&(0x7f0000000140)='./bus\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
unlink(&(0x7f00000002c0)='./file0\x00')
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xaece, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000002b00)=[{{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f00000027c0)=';', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002740)=[{&(0x7f0000000140)='W', 0x1}], 0x1}}], 0x2, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000180)='veno\x00', 0x5)
shutdown(r3, 0x2)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x50323234, 0x0, 0x0, [{}, {}, {}, {}, {}, {0x0, 0x3}], 0x91, 0xf6, 0x6}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)

0s ago: executing program 3 (id=772):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_clone(0x800000, &(0x7f0000000340)="94ac0221cba736df250fb8fb2834965a0d5abda8428520ab0eb75b433d61be3506c977471f0207ddae81c9677fc207b5543a679602cdabe6371c7aea80d8d50c916d26bae2adc2cd97", 0x49, &(0x7f0000000280), 0x0, 0x0)
r2 = gettid()
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000840)={{{@in6=@empty, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@remote}, 0x0, @in=@private}}, &(0x7f0000000140)=0xfffffffffffffd28)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="740100000c0601082bbd7000", @ANYRES32=r1, @ANYBLOB="2242159777a0255fc159613641ea7cffeb25a484bf26add829342067914042995333a2633401d48008001200", @ANYRES32=r2, @ANYRES8=r3, @ANYRES32=r3, @ANYBLOB="3d867ab27a4e5cb4d9e744a7364136f9869ea91ab51e929b1c28836b5965e0ba908afae77945fb0991f5d2ce24c4192edf0cc1087f"], 0x174}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, {0x9}, 0x0, 0x0, 0x0, &(0x7f0000000240)}, 0x58)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={&(0x7f0000000700)="8d11cd0e2e9020ee18f75e4323590f1fcbe7d0ec4cfa4a742f573fb2b9db4084560f7ab62bff162f3309043f77fd5b9f0ad082d292e62e4e06cfdf4e9ed81a93891ce3de8b2c4c09e13a80e304c3ada2fa58722ea4eeada51ed2d5ef3c40e981c8ead3451d4b099b6c0c240fdb4e2beac4e2413f6eb5602966da7712522ac63f8e87c4", &(0x7f0000000a00)="527c24b429ca720b8f5f828505ad7f739a747ebd1ffcb3c4ff0b24cf1fab1da0a2097c14185bdd07703f6b89dabd16d803b7c5e05afd66caa92e39e162b519e39d82427d9fe3388f6147e250a78258c463b6ec50b5144c47a30e32713db5e9d3cee9f1e68ac461aaa70ed1bed1f1d96b441c36b739634071a7db6d7dc888f68a7116231681fffed9763e678cd38bad173137349dec7b8d5910c5fab8d1de30c6597e5fb2ebc5df"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket(0x1e, 0x4, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)=@name, 0x10, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

kernel console output (not intermixed with test programs):

00 R15: 0000000000000000
[  139.501756][ T7055]  </TASK>
[  139.519442][ T7383] netlink: 'syz.3.307': attribute type 1 has an invalid length.
[  139.562434][ T7383] 8021q: adding VLAN 0 to HW filter on device bond1
[  139.582187][ T7055] memory: usage 307200kB, limit 307200kB, failcnt 58363
[  139.589710][ T7055] memory+swap: usage 422732kB, limit 9007199254740988kB, failcnt 0
[  139.596211][ T7055] kmem: usage 8536kB, limit 9007199254740988kB, failcnt 0
[  139.598857][ T7055] Memory cgroup stats for /syz0:
[  139.599087][ T7055] cache 305557504
[  139.601890][ T7055] rss 253952
[  139.602806][ T7055] rss_huge 0
[  139.603788][ T7055] shmem 305369088
[  139.604849][ T7055] mapped_file 61440
[  139.606114][ T7055] dirty 61440
[  139.607044][ T7055] writeback 0
[  139.608156][ T7055] workingset_refault_anon 26
[  139.609513][ T7055] workingset_refault_file 40169
[  139.610826][ T7055] swap 118304768
[  139.611817][ T7055] swapcached 16384
[  139.612836][ T7055] pgpgin 397845
[  139.614091][ T7055] pgpgout 323179
[  139.615074][ T7055] pgfault 82011
[  139.616609][ T7055] pgmajfault 1605
[  139.619692][ T7055] inactive_anon 90435584
[  139.628061][ T7385] bond1: (slave ip6gretap1): making interface the new active one
[  139.638911][ T7385] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  139.645937][ T7055] active_anon 215207936
[  139.646858][ T7383] ip6gretap1: entered promiscuous mode
[  139.648950][ T7383] vlan2: entered promiscuous mode
[  139.650239][ T7383] bond1: entered promiscuous mode
[  139.651629][ T7383] vlan2: entered allmulticast mode
[  139.652946][ T7383] bond1: entered allmulticast mode
[  139.654243][ T7383] ip6gretap1: entered allmulticast mode
[  139.658569][ T7055] inactive_file 188416
[  139.663251][ T7055] active_file 0
[  139.664525][ T7055] unevictable 0
[  139.677344][ T7055] hierarchical_memory_limit 314572800
[  139.678716][ T7055] hierarchical_memsw_limit 9223372036854771712
[  139.680403][ T7055] total_cache 305557504
[  139.681496][ T7055] total_rss 253952
[  139.682492][ T7055] total_rss_huge 0
[  139.683475][ T7055] total_shmem 305369088
[  139.684566][ T7055] total_mapped_file 61440
[  139.685709][ T7055] total_dirty 61440
[  139.712331][ T7055] total_writeback 0
[  139.713468][ T7055] total_workingset_refault_anon 26
[  139.714836][ T7055] total_workingset_refault_file 40169
[  139.781218][ T7055] total_swap 118304768
[  139.782417][ T7055] total_swapcached 16384
[  139.783550][ T7055] total_pgpgin 397845
[  139.784579][ T7055] total_pgpgout 323179
[  139.785651][ T7055] total_pgfault 82011
[  139.836094][ T7055] total_pgmajfault 1605
[  139.838382][ T7055] total_inactive_anon 90435584
[  139.839675][ T7055] total_active_anon 215207936
[  139.844938][ T7055] total_inactive_file 188416
[  139.849232][ T7389] netlink: 3 bytes leftover after parsing attributes in process `syz.3.309'.
[  139.853607][ T7055] total_active_file 0
[  139.868054][ T7055] total_unevictable 0
[  139.869192][ T7055] anon_cost 0
[  139.870113][ T7055] file_cost 0
[  139.871037][ T7055] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.295,pid=7339,uid=0
[  139.891422][ T7055] Memory cgroup out of memory: Killed process 7339 (syz.0.295) total-vm:95060kB, anon-rss:572kB, file-rss:14388kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000
[  139.936092][ T5960] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  139.985861][ T7392] hpfs: Bad magic ... probably not HPFS
[  140.087253][ T5960] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  140.090577][ T5960] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  140.093695][ T5960] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  140.096624][ T5960] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  140.099939][ T5960] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  140.102280][ T5960] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.116332][ T5960] usb 9-1: config 0 descriptor??
[  140.121746][ T7387] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  140.529497][ T5960] plantronics 0003:047F:FFFF.0003: unknown main item tag 0xd
[  140.533389][ T5960] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  140.545952][ T5960] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  140.754693][ T7395] netlink: 12 bytes leftover after parsing attributes in process `syz.1.312'.
[  140.791362][ T5960] usb 9-1: USB disconnect, device number 5
[  140.855050][ T7063] syz.0.234 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  140.878735][ T7063] CPU: 3 UID: 0 PID: 7063 Comm: syz.0.234 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  140.881728][ T7063] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  140.885011][ T7063] Call Trace:
[  140.885911][ T7063]  <TASK>
[  140.886713][ T7063]  dump_stack_lvl+0x16c/0x1f0
[  140.887994][ T7063]  dump_header+0x101/0x900
[  140.889181][ T7063]  oom_kill_process+0x270/0xa60
[  140.890486][ T7063]  out_of_memory+0x351/0x1700
[  140.891860][ T7063]  ? __pfx_out_of_memory+0x10/0x10
[  140.893266][ T7063]  ? rcu_read_unlock+0x17/0x60
[  140.894565][ T7063]  ? find_held_lock+0x2d/0x110
[  140.895889][ T7063]  mem_cgroup_out_of_memory+0x207/0x270
[  140.897357][ T7063]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  140.899107][ T7063]  ? do_raw_spin_unlock+0x172/0x230
[  140.900649][ T7063]  try_charge_memcg+0x5b9/0xaf0
[  140.901960][ T7063]  ? __pfx_try_charge_memcg+0x10/0x10
[  140.903386][ T7063]  ? get_mem_cgroup_from_mm+0x7f/0x5f0
[  140.905057][ T7063]  ? get_mem_cgroup_from_mm+0x129/0x5f0
[  140.906669][ T7063]  __mem_cgroup_charge+0x9b/0x280
[  140.908042][ T7063]  shmem_alloc_and_add_folio+0x507/0xc00
[  140.909530][ T7063]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  140.911152][ T7063]  ? shmem_allowable_huge_orders+0xcd/0x3f0
[  140.912723][ T7063]  shmem_get_folio_gfp+0x689/0x1530
[  140.914103][ T7063]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  140.915606][ T7063]  shmem_write_begin+0x161/0x300
[  140.916928][ T7063]  ? __pfx_shmem_write_begin+0x10/0x10
[  140.918377][ T7063]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1270
[  140.920165][ T7063]  generic_perform_write+0x2ba/0x920
[  140.921756][ T7063]  ? __pfx_generic_perform_write+0x10/0x10
[  140.923302][ T7063]  ? __pfx_generic_write_checks+0x10/0x10
[  140.924830][ T7063]  shmem_file_write_iter+0x10e/0x140
[  140.926225][ T7063]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  140.927772][ T7063]  __kernel_write_iter+0x318/0xa80
[  140.929120][ T7063]  ? __pfx___kernel_write_iter+0x10/0x10
[  140.930584][ T7063]  ? get_dump_page+0x15c/0x220
[  140.931997][ T7063]  dump_user_range+0x389/0x8a0
[  140.933300][ T7063]  ? __pfx_dump_user_range+0x10/0x10
[  140.934715][ T7063]  ? elf_coredump_extra_notes_write+0xbe/0x430
[  140.936377][ T7063]  ? __pfx_writenote+0x10/0x10
[  140.937657][ T7063]  elf_core_dump+0x2b86/0x3db0
[  140.938936][ T7063]  ? __pfx_elf_core_dump+0x10/0x10
[  140.940297][ T7063]  ? kasan_save_stack+0x33/0x60
[  140.941602][ T7063]  ? kasan_save_track+0x14/0x30
[  140.942894][ T7063]  ? __kasan_kmalloc+0xaa/0xb0
[  140.944356][ T7063]  ? __kmalloc_node_noprof+0x211/0x440
[  140.945964][ T7063]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  140.947408][ T7063]  ? get_signal+0x237c/0x26d0
[  140.948848][ T7063]  ? arch_do_signal_or_restart+0x90/0x7e0
[  140.950358][ T7063]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  140.951951][ T7063]  ? rcu_is_watching+0x12/0xc0
[  140.953217][ T7063]  ? trace_lock_acquire+0x14a/0x1d0
[  140.954595][ T7063]  ? get_signal+0x237c/0x26d0
[  140.955879][ T7063]  ? do_coredump+0x2c42/0x4160
[  140.957166][ T7063]  do_coredump+0x2c42/0x4160
[  140.958408][ T7063]  ? __pfx_do_coredump+0x10/0x10
[  140.959733][ T7063]  ? kmem_cache_free+0x152/0x4b0
[  140.961079][ T7063]  ? irqentry_exit_to_user_mode+0x13f/0x280
[  140.962656][ T7063]  ? asm_exc_page_fault+0x26/0x30
[  140.964286][ T7063]  get_signal+0x237c/0x26d0
[  140.965590][ T7063]  ? force_sig_fault+0xad/0xf0
[  140.967023][ T7063]  ? __pfx_get_signal+0x10/0x10
[  140.968594][ T7063]  arch_do_signal_or_restart+0x90/0x7e0
[  140.970191][ T7063]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  140.971844][ T7063]  ? __bad_area_nosemaphore+0x334/0x6a0
[  140.973339][ T7063]  ? do_user_addr_fault+0x920/0x13f0
[  140.974756][ T7063]  irqentry_exit_to_user_mode+0x13f/0x280
[  140.976302][ T7063]  asm_exc_page_fault+0x26/0x30
[  140.977613][ T7063] RIP: 0023:0xf749e579
[  140.978710][ T7063] Code: Unable to access opcode bytes at 0xf749e54f.
[  140.980463][ T7063] RSP: 002b:00000000fffffed0 EFLAGS: 00010246
[  140.982063][ T7063] RAX: 0000000000000000 RBX: 0000000001000000 RCX: 00000000fffffed0
[  140.984144][ T7063] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  140.986216][ T7063] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  140.988288][ T7063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  140.990350][ T7063] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  140.992443][ T7063]  </TASK>
[  141.216467][ T7063] memory: usage 307200kB, limit 307200kB, failcnt 63407
[  141.218494][ T7063] memory+swap: usage 422728kB, limit 9007199254740988kB, failcnt 0
[  141.220630][ T7063] kmem: usage 8196kB, limit 9007199254740988kB, failcnt 0
[  141.222693][ T7063] Memory cgroup stats for /syz0:
[  141.222891][ T7063] cache 306098176
[  141.225189][ T7063] rss 57344
[  141.226224][ T7063] rss_huge 0
[  141.227240][ T7063] shmem 306003968
[  141.228314][ T7063] mapped_file 65536
[  141.229514][ T7063] dirty 65536
[  141.230441][ T7063] writeback 0
[  141.231347][ T7063] workingset_refault_anon 26
[  141.232590][ T7063] workingset_refault_file 41850
[  141.233951][ T7063] swap 118300672
[  141.234915][ T7063] swapcached 16384
[  141.235949][ T7063] pgpgin 401044
[  141.236987][ T7063] pgpgout 326293
[  141.238058][ T7063] pgfault 82259
[  141.239012][ T7063] pgmajfault 1753
[  141.240183][ T7063] inactive_anon 186175488
[  141.241371][ T7063] active_anon 119910400
[  141.242489][ T7063] inactive_file 24576
[  141.243571][ T7063] active_file 69632
[  141.244623][ T7063] unevictable 0
[  141.245670][ T7063] hierarchical_memory_limit 314572800
[  141.247217][ T7063] hierarchical_memsw_limit 9223372036854771712
[  141.248830][ T7063] total_cache 306098176
[  141.249919][ T7063] total_rss 57344
[  141.251064][ T7063] total_rss_huge 0
[  141.252068][ T7063] total_shmem 306003968
[  141.253413][ T7063] total_mapped_file 65536
[  141.254616][ T7063] total_dirty 65536
[  141.255654][ T7063] total_writeback 0
[  141.256748][ T7063] total_workingset_refault_anon 26
[  141.258089][ T7063] total_workingset_refault_file 41850
[  141.259505][ T7063] total_swap 118300672
[  141.260581][ T7063] total_swapcached 16384
[  141.261844][ T7063] total_pgpgin 401044
[  141.262905][ T7063] total_pgpgout 326293
[  141.263986][ T7063] total_pgfault 82259
[  141.265055][ T7063] total_pgmajfault 1753
[  141.266408][ T7063] total_inactive_anon 186175488
[  141.267720][ T7063] total_active_anon 119910400
[  141.268974][ T7063] total_inactive_file 24576
[  141.270178][ T7063] total_active_file 69632
[  141.271323][ T7063] total_unevictable 0
[  141.272614][ T7063] anon_cost 0
[  141.277229][ T7063] file_cost 0
[  141.278773][ T7063] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.234,pid=7064,uid=0
[  141.283035][ T7063] Memory cgroup out of memory: Killed process 7064 (syz.0.234) total-vm:45048kB, anon-rss:0kB, file-rss:1904kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[  141.605686][ T5955] syz-executor invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=2, oom_score_adj=0
[  141.647670][ T5955] CPU: 2 UID: 0 PID: 5955 Comm: syz-executor Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  141.650514][ T5955] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  141.653321][ T5955] Call Trace:
[  141.654211][ T5955]  <TASK>
[  141.655006][ T5955]  dump_stack_lvl+0x16c/0x1f0
[  141.656301][ T5955]  dump_header+0x101/0x900
[  141.657489][ T5955]  oom_kill_process+0x270/0xa60
[  141.658800][ T5955]  out_of_memory+0x351/0x1700
[  141.660070][ T5955]  ? ww_mutex_lock+0xc0/0x140
[  141.661322][ T5955]  ? __pfx_out_of_memory+0x10/0x10
[  141.662676][ T5955]  ? rcu_read_unlock+0x17/0x60
[  141.663952][ T5955]  ? find_held_lock+0x2d/0x110
[  141.665225][ T5955]  mem_cgroup_out_of_memory+0x207/0x270
[  141.666759][ T5955]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  141.668389][ T5955]  ? do_raw_spin_unlock+0x172/0x230
[  141.669784][ T5955]  try_charge_memcg+0x5b9/0xaf0
[  141.671083][ T5955]  ? __pfx_try_charge_memcg+0x10/0x10
[  141.672506][ T5955]  ? lock_acquire+0x2f/0xb0
[  141.673782][ T5955]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  141.675452][ T5955]  obj_cgroup_charge+0x179/0x4d0
[  141.676800][ T5955]  __memcg_slab_post_alloc_hook+0x1b6/0x9b0
[  141.678379][ T5955]  ? kasan_save_track+0x14/0x30
[  141.679690][ T5955]  kmem_cache_alloc_node_noprof+0x2e7/0x310
[  141.681269][ T5955]  ? copy_process+0x49c/0x6ee0
[  141.682545][ T5955]  ? _raw_spin_unlock_irq+0x23/0x50
[  141.683934][ T5955]  copy_process+0x49c/0x6ee0
[  141.685167][ T5955]  ? __pfx_copy_process+0x10/0x10
[  141.686512][ T5955]  kernel_clone+0xfd/0x960
[  141.687714][ T5955]  ? __pfx_kernel_clone+0x10/0x10
[  141.689058][ T5955]  ? find_held_lock+0x59/0x110
[  141.690324][ T5955]  __do_compat_sys_ia32_clone+0xb7/0x100
[  141.691811][ T5955]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[  141.693470][ T5955]  __do_fast_syscall_32+0x73/0x120
[  141.694827][ T5955]  do_fast_syscall_32+0x32/0x80
[  141.696128][ T5955]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  141.697784][ T5955] RIP: 0023:0xf749e579
[  141.698858][ T5955] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  141.704091][ T5955] RSP: 002b:00000000ff8fa65c EFLAGS: 00000292 ORIG_RAX: 0000000000000078
[  141.706281][ T5955] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[  141.708387][ T5955] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000568704a8
[  141.710496][ T5955] RBP: 00000000f748cff4 R08: 0000000000000000 R09: 0000000000000000
[  141.712824][ T5955] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  141.715257][ T5955] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  141.717675][ T5955]  </TASK>
[  141.845535][ T5955] memory: usage 307008kB, limit 307200kB, failcnt 65423
[  141.847599][ T5955] memory+swap: usage 422700kB, limit 9007199254740988kB, failcnt 0
[  141.849647][ T5955] kmem: usage 8140kB, limit 9007199254740988kB, failcnt 0
[  141.851449][ T5955] Memory cgroup stats for /syz0:
[  141.851612][ T5955] cache 305795072
[  141.904612][ T5955] rss 49152
[  141.905514][ T5955] rss_huge 0
[  141.906505][ T5955] shmem 304508928
[  141.907476][ T5955] mapped_file 835584
[  141.916615][ T5955] dirty 65536
[  141.917554][ T5955] writeback 0
[  141.918453][ T5955] workingset_refault_anon 26
[  141.926100][   T25] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  141.939345][ T5955] workingset_refault_file 44009
[  141.944014][ T5955] swap 118325248
[  141.944989][ T5955] swapcached 8192
[  141.963496][ T5955] pgpgin 408000
[  141.964503][ T5955] pgpgout 333292
[  141.965465][ T5955] pgfault 82756
[  141.984756][ T5955] pgmajfault 1805
[  141.986141][ T5955] inactive_anon 42242048
[  141.987376][ T5955] active_anon 261804032
[  141.988610][ T5955] inactive_file 98304
[  142.014413][ T5955] active_file 561152
[  142.015511][ T5955] unevictable 0
[  142.018507][ T5955] hierarchical_memory_limit 314572800
[  142.019953][ T5955] hierarchical_memsw_limit 9223372036854771712
[  142.036258][ T5955] total_cache 305795072
[  142.037444][ T5955] total_rss 49152
[  142.038517][ T5955] total_rss_huge 0
[  142.039674][ T5955] total_shmem 304508928
[  142.040979][ T5955] total_mapped_file 835584
[  142.042226][ T5955] total_dirty 65536
[  142.043268][ T5955] total_writeback 0
[  142.044315][ T5955] total_workingset_refault_anon 26
[  142.045687][ T5955] total_workingset_refault_file 44009
[  142.047194][ T5955] total_swap 118325248
[  142.048345][ T5955] total_swapcached 8192
[  142.049453][ T5955] total_pgpgin 408000
[  142.050524][ T5955] total_pgpgout 333292
[  142.051809][ T5955] total_pgfault 82756
[  142.052907][ T5955] total_pgmajfault 1805
[  142.054021][ T5955] total_inactive_anon 42242048
[  142.055299][ T5955] total_active_anon 261804032
[  142.056652][ T5955] total_inactive_file 98304
[  142.057861][ T5955] total_active_file 561152
[  142.059106][ T5955] total_unevictable 0
[  142.060264][ T5955] anon_cost 0
[  142.061184][ T5955] file_cost 0
[  142.062073][ T5955] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.234,pid=7041,uid=0
[  142.066360][ T5955] Memory cgroup out of memory: Killed process 7041 (syz.0.234) total-vm:45048kB, anon-rss:0kB, file-rss:1868kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[  142.084207][ T7417] random: crng reseeded on system resumption
[  142.086077][   T25] usb 8-1: Using ep0 maxpacket: 16
[  142.088616][   T25] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  142.091254][   T25] usb 8-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  142.093608][   T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.096790][   T25] usb 8-1: config 0 descriptor??
[  142.099910][   T25] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input18
[  142.408886][ T5355] bcm5974 8-1:0.0: could not read from device
[  142.412762][ T5355] bcm5974 8-1:0.0: could not read from device
[  142.416599][ T5355] bcm5974 8-1:0.0: could not read from device
[  142.422337][   T25] usb 8-1: USB disconnect, device number 12
[  142.719432][ T7428] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  143.471323][ T7068] syz.0.234 (7068) used greatest stack depth: 17792 bytes left
[  143.833100][ T7469] netlink: 84 bytes leftover after parsing attributes in process `syz.1.332'.
[  144.058975][ T7478] FAULT_INJECTION: forcing a failure.
[  144.058975][ T7478] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.063972][ T7478] CPU: 2 UID: 0 PID: 7478 Comm: syz.3.334 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  144.067694][ T7478] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.071038][ T7478] Call Trace:
[  144.071918][ T7478]  <TASK>
[  144.072680][ T7478]  dump_stack_lvl+0x16c/0x1f0
[  144.073887][ T7478]  should_fail_ex+0x497/0x5b0
[  144.075389][ T7478]  _copy_to_user+0x32/0xd0
[  144.077148][ T7478]  simple_read_from_buffer+0xd0/0x160
[  144.079265][ T7478]  proc_fail_nth_read+0x198/0x270
[  144.081229][ T7478]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  144.083420][ T7478]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  144.085799][ T7478]  vfs_read+0x1df/0xbe0
[  144.087338][ T7478]  ? __fget_files+0x23a/0x3f0
[  144.089126][ T7478]  ? fdget_pos+0x24c/0x360
[  144.090785][ T7478]  ? __pfx_lock_release+0x10/0x10
[  144.092646][ T7478]  ? trace_lock_acquire+0x14a/0x1d0
[  144.094762][ T7478]  ? __pfx_vfs_read+0x10/0x10
[  144.096729][ T7478]  ? __pfx___mutex_lock+0x10/0x10
[  144.098181][ T7478]  ? __fget_files+0x244/0x3f0
[  144.099421][ T7478]  ksys_read+0x12f/0x260
[  144.100540][ T7478]  ? __pfx_ksys_read+0x10/0x10
[  144.101795][ T7478]  __do_fast_syscall_32+0x73/0x120
[  144.103174][ T7478]  do_fast_syscall_32+0x32/0x80
[  144.104457][ T7478]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.106058][ T7478] RIP: 0023:0xf7ff4579
[  144.107102][ T7478] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  144.112314][ T7478] RSP: 002b:00000000f5776590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  144.115031][ T7478] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5776620
[  144.117999][ T7478] RDX: 000000000000000f RSI: 00000000f747cff4 RDI: 0000000000000000
[  144.120101][ T7478] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  144.122098][ T7478] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  144.124272][ T7478] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  144.126308][ T7478]  </TASK>
[  146.849333][ T5996] hid (null): global environment stack underflow
[  146.851325][ T5996] hid (null): unknown global tag 0xe
[  146.852789][ T5996] hid (null): unknown global tag 0xd
[  146.855488][ T5996] hid-generic 0542:0004:0003.0004: global environment stack underflow
[  146.860306][ T5996] hid-generic 0542:0004:0003.0004: item 0 2 1 11 parsing failed
[  146.862810][ T5996] hid-generic 0542:0004:0003.0004: probe with driver hid-generic failed with error -22
[  148.019779][ T7582] binder: 7581:7582 ioctl 40046205 0 returned -22
[  148.420854][   T39] audit: type=1804 audit(1730643143.775:15): pid=7594 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.363" name="/newroot/96/bus/bus" dev="overlay" ino=562 res=1 errno=0
[  148.504715][ T7596] overlayfs: failed to resolve './file0': -2
[  148.649457][ T7602] macvlan2: entered promiscuous mode
[  148.651244][ T7602] macvlan2: entered allmulticast mode
[  148.653360][ T7602] bond_slave_0: entered promiscuous mode
[  148.655497][ T7602] bond_slave_1: entered promiscuous mode
[  148.658009][ T7602] bond0: entered allmulticast mode
[  148.666087][ T7602] bond_slave_0: entered allmulticast mode
[  148.667700][ T7602] bond_slave_1: entered allmulticast mode
[  148.669244][ T7602] bond0: entered promiscuous mode
[  148.673595][ T7602] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  148.686574][ T7602] team0: Port device macvlan2 added
[  150.416152][   T25] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  150.566247][   T25] usb 5-1: Using ep0 maxpacket: 16
[  150.577219][   T25] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  150.579918][   T25] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  150.582127][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.585121][   T25] usb 5-1: config 0 descriptor??
[  150.598288][   T25] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input19
[  150.603539][ T7621] FAULT_INJECTION: forcing a failure.
[  150.603539][ T7621] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.620662][ T7621] CPU: 1 UID: 0 PID: 7621 Comm: syz.1.372 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  150.623220][ T7621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.626028][ T7621] Call Trace:
[  150.626941][ T7621]  <TASK>
[  150.627853][ T7621]  dump_stack_lvl+0x16c/0x1f0
[  150.629049][ T7621]  should_fail_ex+0x497/0x5b0
[  150.630210][ T7621]  _copy_from_user+0x2e/0xd0
[  150.631504][ T7621]  get_compat_msghdr+0xa8/0x170
[  150.632805][ T7621]  ? __pfx_get_compat_msghdr+0x10/0x10
[  150.634243][ T7621]  ? __pfx___lock_acquire+0x10/0x10
[  150.635645][ T7621]  ___sys_sendmsg+0x1b0/0x1e0
[  150.636904][ T7621]  ? __pfx____sys_sendmsg+0x10/0x10
[  150.638288][ T7621]  ? lock_acquire+0x2f/0xb0
[  150.639506][ T7621]  ? __fget_files+0x40/0x3f0
[  150.640741][ T7621]  ? __pfx___might_resched+0x10/0x10
[  150.642105][ T7621]  ? fdget+0x176/0x210
[  150.643131][ T7621]  __sys_sendmmsg+0x2a5/0x450
[  150.644357][ T7621]  ? __pfx___sys_sendmmsg+0x10/0x10
[  150.645724][ T7621]  ? vfs_write+0x306/0x1150
[  150.646926][ T7621]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  150.648519][ T7621]  ? fput+0x30/0x390
[  150.649596][ T7621]  ? ksys_write+0x1ad/0x260
[  150.651178][ T7621]  ? __pfx_ksys_write+0x10/0x10
[  150.652949][ T7621]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  150.654960][ T7621]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  150.657441][ T7621]  __do_fast_syscall_32+0x73/0x120
[  150.658777][ T7621]  do_fast_syscall_32+0x32/0x80
[  150.660017][ T7621]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  150.661687][ T7621] RIP: 0023:0xf7f80579
[  150.662783][ T7621] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  150.667817][ T7621] RSP: 002b:00000000f56c455c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  150.670011][ T7621] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000480
[  150.672108][ T7621] RDX: 00000000000002e9 RSI: 000000000000ffd8 RDI: 0000000000000000
[  150.674172][ T7621] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.676271][ T7621] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  150.678333][ T7621] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.680428][ T7621]  </TASK>
[  150.904986][ T5355] bcm5974 5-1:0.0: could not read from device
[  150.911318][ T5355] bcm5974 5-1:0.0: could not read from device
[  150.915229][ T5355] bcm5974 5-1:0.0: could not read from device
[  150.916963][   T25] usb 5-1: USB disconnect, device number 10
[  150.919213][ T5355] bcm5974 5-1:0.0: could not read from device
[  151.007369][ T1011] hid-generic 0005:15C2:FFF9.0005: item fetching failed at offset 0/1
[  151.010104][ T1011] hid-generic 0005:15C2:FFF9.0005: probe with driver hid-generic failed with error -22
[  152.263155][ T7660] random: crng reseeded on system resumption
[  152.374282][ T7667] FAULT_INJECTION: forcing a failure.
[  152.374282][ T7667] name failslab, interval 1, probability 0, space 0, times 0
[  152.378690][ T7667] CPU: 3 UID: 0 PID: 7667 Comm: syz.1.385 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  152.382376][ T7667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.385893][ T7667] Call Trace:
[  152.387011][ T7667]  <TASK>
[  152.388364][ T7667]  dump_stack_lvl+0x16c/0x1f0
[  152.390110][ T7667]  should_fail_ex+0x497/0x5b0
[  152.391717][ T7667]  ? fs_reclaim_acquire+0xae/0x150
[  152.393368][ T7667]  should_failslab+0xc2/0x120
[  152.394906][ T7667]  __kmalloc_cache_node_noprof+0x6e/0x360
[  152.396977][ T7667]  ? __get_vm_area_node+0xe1/0x2d0
[  152.399097][ T7667]  __get_vm_area_node+0xe1/0x2d0
[  152.400830][ T7667]  __vmalloc_node_range_noprof+0x26a/0x15a0
[  152.402773][ T7667]  ? bpf_check+0x206/0xc970
[  152.404454][ T7667]  ? __lruvec_stat_mod_folio+0xa4/0x370
[  152.406425][ T7667]  ? bpf_check+0x206/0xc970
[  152.408320][ T7667]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  152.410003][ T7667]  ? rcu_is_watching+0x12/0xc0
[  152.411246][ T7667]  ? trace_kmalloc+0x2d/0xe0
[  152.412530][ T7667]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[  152.413991][ T7667]  ? __kvmalloc_node_noprof+0x6f/0x1a0
[  152.415441][ T7667]  ? bpf_check+0x206/0xc970
[  152.416664][ T7667]  vzalloc_noprof+0x6b/0x90
[  152.417829][ T7667]  ? bpf_check+0x206/0xc970
[  152.419000][ T7667]  bpf_check+0x206/0xc970
[  152.420158][ T7667]  ? __pfx_bpf_check+0x10/0x10
[  152.421387][ T7667]  ? find_held_lock+0x2d/0x110
[  152.422757][ T7667]  ? ktime_get_with_offset+0x13a/0x240
[  152.424158][ T7667]  ? trace_lock_acquire+0x14a/0x1d0
[  152.425454][ T7667]  ? ktime_get_with_offset+0x13a/0x240
[  152.426957][ T7667]  ? timekeeping_debug_get_ns+0x3e0/0x5b0
[  152.428644][ T7667]  ? lockdep_hardirqs_on+0x7c/0x110
[  152.430071][ T7667]  ? read_tsc+0x9/0x20
[  152.431269][ T7667]  ? timekeeping_debug_get_ns+0x334/0x5b0
[  152.433114][ T7667]  ? bpf_obj_name_cpy+0x156/0x1b0
[  152.434443][ T7667]  bpf_prog_load+0xe3f/0x2670
[  152.435675][ T7667]  ? __pfx_bpf_prog_load+0x10/0x10
[  152.437009][ T7667]  ? find_held_lock+0x2d/0x110
[  152.438317][ T7667]  ? __might_fault+0x13b/0x190
[  152.439649][ T7667]  ? __might_fault+0xe3/0x190
[  152.441008][ T7667]  __sys_bpf+0x4c8c/0x5780
[  152.442459][ T7667]  ? ksys_write+0x21e/0x260
[  152.444128][ T7667]  ? __pfx___sys_bpf+0x10/0x10
[  152.445529][ T7667]  ? vfs_write+0x306/0x1150
[  152.446713][ T7667]  ? __mutex_unlock_slowpath+0x164/0x650
[  152.448167][ T7667]  ? fput+0x30/0x390
[  152.449177][ T7667]  ? ksys_write+0x1ad/0x260
[  152.450323][ T7667]  ? __pfx_ksys_write+0x10/0x10
[  152.451613][ T7667]  __ia32_sys_bpf+0x76/0xe0
[  152.452832][ T7667]  __do_fast_syscall_32+0x73/0x120
[  152.454145][ T7667]  do_fast_syscall_32+0x32/0x80
[  152.455414][ T7667]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  152.457016][ T7667] RIP: 0023:0xf7f80579
[  152.458057][ T7667] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  152.463075][ T7667] RSP: 002b:00000000f570655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  152.465897][ T7667] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000300
[  152.468047][ T7667] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  152.470049][ T7667] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  152.472163][ T7667] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  152.474270][ T7667] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.476302][ T7667]  </TASK>
[  152.478184][ T7667] syz.1.385: vmalloc error: size 360, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  152.483332][ T7667] CPU: 3 UID: 0 PID: 7667 Comm: syz.1.385 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  152.486022][ T7667] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.488920][ T7667] Call Trace:
[  152.489882][ T7667]  <TASK>
[  152.490664][ T7667]  dump_stack_lvl+0x16c/0x1f0
[  152.491909][ T7667]  warn_alloc+0x24d/0x3a0
[  152.493070][ T7667]  ? __pfx_warn_alloc+0x10/0x10
[  152.494319][ T7667]  ? rcu_is_watching+0x12/0xc0
[  152.495562][ T7667]  ? trace_kmalloc+0x2d/0xe0
[  152.496759][ T7667]  ? __kasan_kmalloc+0x8a/0xb0
[  152.497979][ T7667]  ? __get_vm_area_node+0x1bc/0x2d0
[  152.499313][ T7667]  __vmalloc_node_range_noprof+0xd27/0x15a0
[  152.500826][ T7667]  ? __lruvec_stat_mod_folio+0xa4/0x370
[  152.502447][ T7667]  ? bpf_check+0x206/0xc970
[  152.504075][ T7667]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  152.506254][ T7667]  ? rcu_is_watching+0x12/0xc0
[  152.508349][ T7667]  ? trace_kmalloc+0x2d/0xe0
[  152.510413][ T7667]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[  152.512703][ T7667]  ? __kvmalloc_node_noprof+0x6f/0x1a0
[  152.514129][ T7667]  ? bpf_check+0x206/0xc970
[  152.515333][ T7667]  vzalloc_noprof+0x6b/0x90
[  152.516630][ T7667]  ? bpf_check+0x206/0xc970
[  152.517884][ T7667]  bpf_check+0x206/0xc970
[  152.519039][ T7667]  ? __pfx_bpf_check+0x10/0x10
[  152.520460][ T7667]  ? find_held_lock+0x2d/0x110
[  152.521864][ T7667]  ? ktime_get_with_offset+0x13a/0x240
[  152.523403][ T7667]  ? trace_lock_acquire+0x14a/0x1d0
[  152.524719][ T7667]  ? ktime_get_with_offset+0x13a/0x240
[  152.526122][ T7667]  ? timekeeping_debug_get_ns+0x3e0/0x5b0
[  152.527600][ T7667]  ? lockdep_hardirqs_on+0x7c/0x110
[  152.529190][ T7667]  ? read_tsc+0x9/0x20
[  152.530266][ T7667]  ? timekeeping_debug_get_ns+0x334/0x5b0
[  152.531730][ T7667]  ? bpf_obj_name_cpy+0x156/0x1b0
[  152.533057][ T7667]  bpf_prog_load+0xe3f/0x2670
[  152.534283][ T7667]  ? __pfx_bpf_prog_load+0x10/0x10
[  152.535619][ T7667]  ? find_held_lock+0x2d/0x110
[  152.536834][ T7667]  ? __might_fault+0x13b/0x190
[  152.538060][ T7667]  ? __might_fault+0xe3/0x190
[  152.539769][ T7667]  __sys_bpf+0x4c8c/0x5780
[  152.541501][ T7667]  ? ksys_write+0x21e/0x260
[  152.543395][ T7667]  ? __pfx___sys_bpf+0x10/0x10
[  152.545054][ T7667]  ? vfs_write+0x306/0x1150
[  152.546410][ T7667]  ? __mutex_unlock_slowpath+0x164/0x650
[  152.548041][ T7667]  ? fput+0x30/0x390
[  152.549170][ T7667]  ? ksys_write+0x1ad/0x260
[  152.550348][ T7667]  ? __pfx_ksys_write+0x10/0x10
[  152.551664][ T7667]  __ia32_sys_bpf+0x76/0xe0
[  152.553095][ T7667]  __do_fast_syscall_32+0x73/0x120
[  152.554416][ T7667]  do_fast_syscall_32+0x32/0x80
[  152.555698][ T7667]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  152.557437][ T7667] RIP: 0023:0xf7f80579
[  152.558515][ T7667] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  152.564033][ T7667] RSP: 002b:00000000f570655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  152.566044][ T7667] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000300
[  152.568088][ T7667] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  152.570276][ T7667] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  152.572406][ T7667] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  152.574408][ T7667] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.576411][ T7667]  </TASK>
[  152.581437][ T7667] Mem-Info:
[  152.583014][ T7667] active_anon:2588 inactive_anon:153 isolated_anon:0
[  152.583014][ T7667]  active_file:14376 inactive_file:1284 isolated_file:0
[  152.583014][ T7667]  unevictable:768 dirty:231 writeback:0
[  152.583014][ T7667]  slab_reclaimable:6073 slab_unreclaimable:56321
[  152.583014][ T7667]  mapped:16977 shmem:843 pagetables:746
[  152.583014][ T7667]  sec_pagetables:354 bounce:0
[  152.583014][ T7667]  kernel_misc_reclaimable:0
[  152.583014][ T7667]  free:101253 free_pcp:5938 free_cma:0
[  152.595967][ T7667] Node 0 active_anon:400kB inactive_anon:128kB active_file:1340kB inactive_file:900kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:280kB dirty:52kB writeback:0kB shmem:1540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9828kB pagetables:1092kB sec_pagetables:1360kB all_unreclaimable? yes
[  152.604419][ T7667] Node 1 active_anon:9952kB inactive_anon:484kB active_file:56164kB inactive_file:4236kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:67628kB dirty:872kB writeback:0kB shmem:1832kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2552kB pagetables:1892kB sec_pagetables:56kB all_unreclaimable? no
[  152.612879][ T7667] Node 0 DMA free:2976kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:136kB local_pcp:136kB free_cma:0kB
[  152.619984][ T7667] lowmem_reserve[]: 0 273 0 0 0
[  152.621334][ T7667] Node 0 DMA32 free:24336kB boost:2048kB min:15952kB low:19428kB high:22904kB reserved_highatomic:2048KB active_anon:400kB inactive_anon:128kB active_file:1332kB inactive_file:900kB unevictable:1536kB writepending:48kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:444kB local_pcp:56kB free_cma:0kB
[  152.628943][ T7667] lowmem_reserve[]: 0 0 0 0 0
[  152.630573][ T7667] Node 1 DMA32 free:378428kB boost:4096kB min:51240kB low:63024kB high:74808kB reserved_highatomic:2048KB active_anon:9952kB inactive_anon:484kB active_file:56164kB inactive_file:4236kB unevictable:1536kB writepending:872kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:23456kB local_pcp:1000kB free_cma:0kB
[  152.638271][ T7667] lowmem_reserve[]: 0 0 0 0 0
[  152.639539][ T7667] Node 0 DMA: 142*4kB (U) 45*8kB (U) 73*16kB (U) 28*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2992kB
[  152.643192][ T7667] Node 0 DMA32: 488*4kB (UMEH) 304*8kB (UMEH) 186*16kB (UMEH) 245*32kB (UMEH) 81*64kB (UMEH) 17*128kB (UMH) 5*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 24352kB
[  152.648590][ T7667] Node 1 DMA32: 1803*4kB (UMH) 1639*8kB (UMH) 985*16kB (UMH) 878*32kB (UMH) 553*64kB (UMH) 323*128kB (UM) 168*256kB (UM) 95*512kB (UM) 36*1024kB (UM) 23*2048kB (UM) 18*4096kB (UM) = 390260kB
[  152.653704][ T7667] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  152.656221][ T7667] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  152.658717][ T7667] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  152.661443][ T7667] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  152.663825][ T7667] 16756 total pagecache pages
[  152.665010][ T7667] 253 pages in swap cache
[  152.666418][ T7667] Free swap  = 110532kB
[  152.669713][ T7667] Total swap = 124996kB
[  152.670902][ T7667] 524155 pages RAM
[  152.671882][ T7667] 0 pages HighMem/MovableOnly
[  152.673249][ T7667] 206681 pages reserved
[  152.674470][ T7667] 0 pages cma reserved
[  152.813161][ T7676] netlink: 16 bytes leftover after parsing attributes in process `syz.1.388'.
[  153.134850][ T7682] random: crng reseeded on system resumption
[  153.643458][ T7698] FAULT_INJECTION: forcing a failure.
[  153.643458][ T7698] name failslab, interval 1, probability 0, space 0, times 0
[  153.647280][ T7698] CPU: 2 UID: 0 PID: 7698 Comm: syz.4.394 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  153.650296][ T7698] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.654040][ T7698] Call Trace:
[  153.655451][ T7698]  <TASK>
[  153.656626][ T7698]  dump_stack_lvl+0x16c/0x1f0
[  153.658077][ T7698]  should_fail_ex+0x497/0x5b0
[  153.659608][ T7698]  ? fs_reclaim_acquire+0xae/0x150
[  153.661163][ T7698]  should_failslab+0xc2/0x120
[  153.662589][ T7698]  __kmalloc_noprof+0xcb/0x410
[  153.663977][ T7698]  ? __pfx_d_absolute_path+0x10/0x10
[  153.665466][ T7698]  tomoyo_encode2+0x100/0x3e0
[  153.666895][ T7698]  tomoyo_realpath_from_path+0x1a7/0x710
[  153.668594][ T7698]  tomoyo_check_open_permission+0x2a7/0x3b0
[  153.670196][ T7698]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  153.671903][ T7698]  ? __pfx___lock_acquire+0x10/0x10
[  153.673345][ T7698]  ? __pfx_hook_file_open+0x10/0x10
[  153.674708][ T7698]  ? path_get+0x61/0x80
[  153.675867][ T7698]  tomoyo_file_open+0x6b/0x90
[  153.677152][ T7698]  security_file_open+0x64c/0x9d0
[  153.678475][ T7698]  do_dentry_open+0x57c/0x1530
[  153.679798][ T7698]  vfs_open+0x82/0x3f0
[  153.680968][ T7698]  ? may_open+0x1f2/0x400
[  153.682304][ T7698]  path_openat+0x1e6a/0x2d60
[  153.684122][ T7698]  ? __pfx_path_openat+0x10/0x10
[  153.685516][ T7698]  ? __pfx___lock_acquire+0x10/0x10
[  153.687127][ T7698]  do_filp_open+0x1dc/0x430
[  153.688302][ T7698]  ? __pfx_do_filp_open+0x10/0x10
[  153.689595][ T7698]  ? find_held_lock+0x2d/0x110
[  153.690774][ T7698]  ? _raw_spin_unlock+0x28/0x50
[  153.692007][ T7698]  ? alloc_fd+0x2d7/0x6c0
[  153.693087][ T7698]  do_sys_openat2+0x17a/0x1e0
[  153.694289][ T7698]  ? __pfx_do_sys_openat2+0x10/0x10
[  153.695610][ T7698]  ? __fget_files+0x244/0x3f0
[  153.697067][ T7698]  __ia32_compat_sys_openat+0x16e/0x210
[  153.698437][ T7698]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  153.700274][ T7698]  ? ksys_write+0x1ad/0x260
[  153.701515][ T7698]  __do_fast_syscall_32+0x73/0x120
[  153.702962][ T7698]  do_fast_syscall_32+0x32/0x80
[  153.704257][ T7698]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.705955][ T7698] RIP: 0023:0xf749e579
[  153.707090][ T7698] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  153.712507][ T7698] RSP: 002b:00000000f578655c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  153.714672][ T7698] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000040
[  153.716809][ T7698] RDX: 0000000000161042 RSI: 0000000000000000 RDI: 0000000000000000
[  153.719067][ T7698] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.721315][ T7698] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  153.724067][ T7698] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.726403][ T7698]  </TASK>
[  153.730537][ T7698] ERROR: Out of memory at tomoyo_realpath_from_path.
[  154.011381][ T7707] netlink: 3 bytes leftover after parsing attributes in process `syz.1.398'.
[  155.486121][ T2294] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  155.551972][ T7738] random: crng reseeded on system resumption
[  155.646105][ T2294] usb 6-1: Using ep0 maxpacket: 16
[  155.648709][ T2294] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  155.651314][ T2294] usb 6-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  155.653676][ T2294] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.657227][ T2294] usb 6-1: config 0 descriptor??
[  155.660589][ T2294] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input20
[  155.932817][ T5355] bcm5974 6-1:0.0: could not read from device
[  155.937642][ T5355] bcm5974 6-1:0.0: could not read from device
[  155.940136][ T2294] usb 6-1: USB disconnect, device number 9
[  155.940163][ T5355] bcm5974 6-1:0.0: could not read from device
[  156.411348][ T7749] netlink: 3 bytes leftover after parsing attributes in process `syz.0.409'.
[  157.511327][ T7767] netlink: 'syz.1.414': attribute type 1 has an invalid length.
[  157.520310][ T7767] 8021q: adding VLAN 0 to HW filter on device bond1
[  157.542203][ T7767] bond1: (slave ip6gretap1): making interface the new active one
[  157.545408][ T7767] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  157.564098][ T7767] ip6gretap1: entered promiscuous mode
[  157.565452][ T7767] vlan2: entered promiscuous mode
[  157.569630][ T7767] bond1: entered promiscuous mode
[  157.570962][ T7767] vlan2: entered allmulticast mode
[  157.572166][ T7767] bond1: entered allmulticast mode
[  157.573490][ T7767] ip6gretap1: entered allmulticast mode
[  157.607691][ T7771] netlink: 12 bytes leftover after parsing attributes in process `syz.4.415'.
[  157.694354][ T7777] random: crng reseeded on system resumption
[  158.196108][   T57] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  158.366073][   T57] usb 5-1: Using ep0 maxpacket: 16
[  158.371358][   T57] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  158.374010][   T57] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  158.376612][   T57] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.393203][   T57] usb 5-1: config 0 descriptor??
[  158.399019][   T57] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input21
[  158.679562][ T5355] bcm5974 5-1:0.0: could not read from device
[  158.690397][ T5355] bcm5974 5-1:0.0: could not read from device
[  158.690553][   T57] usb 5-1: USB disconnect, device number 11
[  158.703097][ T5355] bcm5974 5-1:0.0: could not read from device
[  160.639947][ T7838] random: crng reseeded on system resumption
[  161.589047][ T7848] random: crng reseeded on system resumption
[  161.796137][   T57] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  161.946083][   T57] usb 9-1: Using ep0 maxpacket: 16
[  161.951682][   T57] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  161.954474][   T57] usb 9-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  161.961577][   T57] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.976200][   T57] usb 9-1: config 0 descriptor??
[  161.981398][   T57] input: bcm5974 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input22
[  162.263181][ T5355] bcm5974 9-1:0.0: could not read from device
[  162.270402][ T5355] bcm5974 9-1:0.0: could not read from device
[  162.271268][   T57] usb 9-1: USB disconnect, device number 6
[  162.507883][ T7859] netlink: 'syz.3.433': attribute type 1 has an invalid length.
[  162.510069][ T7859] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.433'.
[  162.512528][ T7859] netlink: 'syz.3.433': attribute type 8 has an invalid length.
[  162.520298][ T7859] netlink: 64 bytes leftover after parsing attributes in process `syz.3.433'.
[  162.755589][ T7863] netlink: 'syz.0.434': attribute type 1 has an invalid length.
[  163.711040][ T7886] autofs: Unknown parameter './file1'
[  165.690793][ T7926] autofs: Unknown parameter './file1'
[  166.949820][ T7956] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  167.566325][   T56] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  167.742116][   T56] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  167.762162][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  167.765722][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  167.769258][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[  167.773814][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  167.776701][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  167.780379][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[  167.785127][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  167.788430][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  167.791476][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[  167.795689][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  167.801457][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  167.812370][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[  167.816658][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  167.866583][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  167.869746][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[  167.873075][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  167.876932][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  167.880359][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[  167.884024][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  167.887036][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  167.890304][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[  167.894851][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  167.897963][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  167.901536][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[  167.908942][   T56] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  167.912308][   T56] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  167.914838][   T56] usb 5-1: Product: syz
[  167.917622][   T56] usb 5-1: Manufacturer: syz
[  167.919247][   T56] usb 5-1: SerialNumber: syz
[  167.932897][   T56] usb 5-1: config 0 descriptor??
[  167.946632][   T56] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0
[  168.248750][ T7978] overlayfs: missing 'workdir'
[  168.353568][ T7980] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  168.359956][ T7980] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  168.374700][ T7980] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  168.386918][ T7980] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  168.408714][    C3] usb 5-1: yurex_control_callback - control failed: -71
[  168.411174][   T56] usb 5-1: USB disconnect, device number 12
[  168.418241][   T56] yurex 5-1:0.0: USB YUREX #0 now disconnected
[  169.276197][ T8003] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  169.278316][ T8003] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  169.281883][ T8003] vhci_hcd vhci_hcd.0: Device attached
[  170.106284][ T5965] Bluetooth: hci3: command 0x0406 tx timeout
[  170.106303][ T1011] vhci_hcd: vhci_device speed not set
[  170.107865][ T5962] Bluetooth: hci2: command 0x0406 tx timeout
[  170.126148][ T5969] Bluetooth: hci1: command 0x0406 tx timeout
[  170.276109][ T1011] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[  170.400520][ T8004] vhci_hcd: connection reset by peer
[  170.406140][ T1219] vhci_hcd: stop threads
[  170.407669][ T1219] vhci_hcd: release socket
[  170.409221][ T1219] vhci_hcd: disconnect device
[  171.008380][   T39] audit: type=1326 audit(1730643166.365:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8022 comm="syz.0.475" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x0
[  171.406246][   T57] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  171.556551][   T57] usb 5-1: Using ep0 maxpacket: 8
[  171.568537][   T57] usb 5-1: config 3 has an invalid interface number: 192 but max is 1
[  171.570963][   T57] usb 5-1: config 3 has an invalid interface number: 200 but max is 1
[  171.573249][   T57] usb 5-1: config 3 contains an unexpected descriptor of type 0x2, skipping
[  171.575626][   T57] usb 5-1: config 3 has an invalid interface association descriptor of length 6, skipping
[  171.586143][   T57] usb 5-1: config 3 has no interface number 0
[  171.588001][   T57] usb 5-1: config 3 has no interface number 1
[  171.589905][   T57] usb 5-1: config 3 interface 200 altsetting 159 bulk endpoint 0xF has invalid maxpacket 1023
[  171.592791][   T57] usb 5-1: config 3 interface 200 altsetting 159 has a duplicate endpoint with address 0x8, skipping
[  171.595687][   T57] usb 5-1: config 3 interface 200 altsetting 159 has 3 endpoint descriptors, different from the interface descriptor's value: 11
[  171.599436][   T57] usb 5-1: config 3 interface 192 has no altsetting 0
[  171.601299][   T57] usb 5-1: config 3 interface 200 has no altsetting 0
[  171.607962][   T57] usb 5-1: New USB device found, idVendor=0bda, idProduct=c82e, bcdDevice=4e.39
[  171.610838][   T57] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.613111][   T57] usb 5-1: Manufacturer: ш
[  171.614631][   T57] usb 5-1: SerialNumber: syz
[  172.436228][ T5970] Bluetooth: hci2: command 0x0406 tx timeout
[  174.109778][   T57] usb 5-1: USB disconnect, device number 13
[  174.875593][ T8082] lo: entered promiscuous mode
[  175.001395][ T8080] lo: left promiscuous mode
[  175.466282][ T1011] vhci_hcd: vhci_device speed not set
[  175.651785][ T8101] random: crng reseeded on system resumption
[  175.715248][ T8099] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.718489][ T8099] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.923473][ T8132] syz.1.503 uses obsolete (PF_INET,SOCK_PACKET)
[  176.933729][ T8132] netlink: 'syz.1.503': attribute type 13 has an invalid length.
[  176.977269][ T8132] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  176.980538][ T8132] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  176.982631][ T8132] gretap1: entered promiscuous mode
[  176.984046][ T8132] gretap1: entered allmulticast mode
[  177.332975][ T8141] netlink: 8 bytes leftover after parsing attributes in process `syz.3.508'.
[  177.423126][ T8149] netlink: 8 bytes leftover after parsing attributes in process `syz.1.509'.
[  178.089794][ T8174] FAULT_INJECTION: forcing a failure.
[  178.089794][ T8174] name failslab, interval 1, probability 0, space 0, times 0
[  178.093167][ T8174] CPU: 1 UID: 0 PID: 8174 Comm: syz.4.513 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  178.095839][ T8174] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.098466][ T8174] Call Trace:
[  178.099337][ T8174]  <TASK>
[  178.100142][ T8174]  dump_stack_lvl+0x16c/0x1f0
[  178.101781][ T8174]  should_fail_ex+0x497/0x5b0
[  178.103071][ T8174]  ? fs_reclaim_acquire+0xae/0x150
[  178.104552][ T8174]  should_failslab+0xc2/0x120
[  178.105916][ T8174]  kmem_cache_alloc_node_noprof+0x71/0x310
[  178.107775][ T8174]  ? __alloc_skb+0x2b3/0x380
[  178.109032][ T8174]  __alloc_skb+0x2b3/0x380
[  178.110235][ T8174]  ? __pfx___alloc_skb+0x10/0x10
[  178.111547][ T8174]  ? kasan_save_stack+0x42/0x60
[  178.112812][ T8174]  ? kasan_save_stack+0x33/0x60
[  178.114116][ T8174]  ? kasan_save_track+0x14/0x30
[  178.115394][ T8174]  alloc_skb_with_frags+0xe4/0x850
[  178.116674][ T8174]  ? bpf_exec_tx_verdict+0xdcf/0x1200
[  178.118094][ T8174]  ? mark_lock+0xb5/0xc60
[  178.119519][ T8174]  tcp_send_rcvq+0x113/0x4e0
[  178.120729][ T8174]  ? __pfx_tcp_send_rcvq+0x10/0x10
[  178.122338][ T8174]  tcp_sendmsg_locked+0x30ca/0x3750
[  178.123897][ T8174]  ? mark_held_locks+0x9f/0xe0
[  178.125281][ T8174]  ? kasan_quarantine_put+0x10a/0x240
[  178.127022][ T8174]  ? lockdep_hardirqs_on+0x7c/0x110
[  178.128548][ T8174]  ? kfree+0x14f/0x4b0
[  178.129574][ T8174]  ? scatterwalk_copychunks+0x22c/0x560
[  178.131088][ T8174]  ? skcipher_walk_done+0x632/0xcf0
[  178.132524][ T8174]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  178.133924][ T8174]  ? skcipher_walk_done+0x458/0xcf0
[  178.135259][ T8174]  tls_push_sg+0x250/0x740
[  178.136394][ T8174]  ? __pfx_tls_push_sg+0x10/0x10
[  178.137640][ T8174]  ? __pfx___lock_acquire+0x10/0x10
[  178.139015][ T8174]  ? gup_fast_fallback+0x1db4/0x2690
[  178.140725][ T8174]  tls_tx_records+0x347/0x6e0
[  178.141924][ T8174]  tls_push_record+0x1d5d/0x3170
[  178.143221][ T8174]  ? __pfx_tls_push_record+0x10/0x10
[  178.144855][ T8174]  ? sk_psock_get+0x13f/0x470
[  178.146166][ T8174]  ? __pfx_sk_psock_get+0x10/0x10
[  178.147678][ T8174]  bpf_exec_tx_verdict+0xdcf/0x1200
[  178.149041][ T8174]  ? iov_iter_advance+0x7d/0x6c0
[  178.150333][ T8174]  ? __pfx_bpf_exec_tx_verdict+0x10/0x10
[  178.151868][ T8174]  ? sk_msg_alloc+0x706/0xad0
[  178.153075][ T8174]  tls_sw_sendmsg+0x1b59/0x23c0
[  178.154343][ T8174]  ? __fget_files+0x23a/0x3f0
[  178.155586][ T8174]  ? __pfx_tls_sw_sendmsg+0x10/0x10
[  178.156893][ T8174]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  178.158419][ T8174]  ? aa_sk_perm+0x2f5/0xb20
[  178.159667][ T8174]  ? __pfx_aa_sk_perm+0x10/0x10
[  178.161047][ T8174]  ? __pfx_tls_sw_sendmsg+0x10/0x10
[  178.162402][ T8174]  inet6_sendmsg+0x119/0x140
[  178.163624][ T8174]  __sys_sendto+0x36b/0x4d0
[  178.164819][ T8174]  ? __pfx___sys_sendto+0x10/0x10
[  178.166149][ T8174]  ? ksys_write+0x1ad/0x260
[  178.167343][ T8174]  ? __pfx_ksys_write+0x10/0x10
[  178.168804][ T8174]  __ia32_sys_sendto+0xdd/0x1b0
[  178.170182][ T8174]  ? lockdep_hardirqs_on+0x7c/0x110
[  178.171515][ T8174]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  178.173209][ T8174]  __do_fast_syscall_32+0x73/0x120
[  178.174497][ T8174]  do_fast_syscall_32+0x32/0x80
[  178.176044][ T8174]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.177741][ T8174] RIP: 0023:0xf749e579
[  178.178871][ T8174] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  178.184042][ T8174] RSP: 002b:00000000f574455c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  178.186490][ T8174] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0
[  178.188961][ T8174] RDX: 00000000fffffede RSI: 0000000000000000 RDI: 0000000000000000
[  178.190935][ T8174] RBP: 0000000003000137 R08: 0000000000000000 R09: 0000000000000000
[  178.193217][ T8174] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  178.195377][ T8174] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.197348][ T8174]  </TASK>
[  178.821710][ T8184] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.823843][ T8184] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.980934][ T8195] binder: BINDER_SET_CONTEXT_MGR already set
[  178.983331][ T8195] binder: 8192:8195 ioctl 4018620d 200002c0 returned -16
[  179.025487][ T8198] netlink: 16 bytes leftover after parsing attributes in process `syz.1.520'.
[  179.136655][ T1011] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  179.172885][ T8201] netlink: 8 bytes leftover after parsing attributes in process `syz.3.521'.
[  179.216458][   T57] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  179.296345][ T1449] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  179.430553][ T8224] usb usb1: usbfs: process 8224 (syz.3.526) did not claim interface 0 before use
[  179.456279][   T25] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  179.526215][ T1449] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  179.596253][ T1449] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  179.626286][   T25] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  179.666319][ T1449] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  179.706263][   T25] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  179.816220][ T1449] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  180.213635][ T8223] overlayfs: statfs failed on './file0'
[  180.788729][ T8261] netlink: 'syz.1.538': attribute type 10 has an invalid length.
[  180.795509][ T8261] bond0: (slave bond_slave_0): Releasing backup interface
[  180.799731][ T8261] bond_slave_0: left promiscuous mode
[  180.911765][ T8268] netlink: 16 bytes leftover after parsing attributes in process `syz.1.540'.
[  181.389296][ T8272] netlink: 4 bytes leftover after parsing attributes in process `syz.0.542'.
[  182.229554][ T8300] netlink: 'syz.3.551': attribute type 10 has an invalid length.
[  182.232977][ T8300] bond0: (slave bond_slave_0): Releasing backup interface
[  184.384050][ T8340] netlink: 188 bytes leftover after parsing attributes in process `syz.1.563'.
[  184.387178][ T8340] netlink: 'syz.1.563': attribute type 1 has an invalid length.
[  184.528934][   T39] audit: type=1326 audit(1730643179.885:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.4.565" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[  184.537831][   T39] audit: type=1326 audit(1730643179.885:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.4.565" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[  184.548494][   T39] audit: type=1326 audit(1730643179.885:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.4.565" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf749e579 code=0x7ffc0000
[  184.558626][   T39] audit: type=1326 audit(1730643179.885:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.4.565" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[  184.564365][   T39] audit: type=1326 audit(1730643179.885:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.4.565" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[  184.570480][   T39] audit: type=1326 audit(1730643179.895:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.4.565" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf749e579 code=0x7ffc0000
[  184.576413][   T39] audit: type=1326 audit(1730643179.895:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.4.565" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[  184.582871][   T39] audit: type=1326 audit(1730643179.895:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.4.565" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[  184.588959][   T39] audit: type=1326 audit(1730643179.895:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.4.565" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf749e579 code=0x7ffc0000
[  184.594940][   T39] audit: type=1326 audit(1730643179.895:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.4.565" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[  184.930483][ T8365] hsr0: entered promiscuous mode
[  184.932862][ T8365] hsr_slave_0: left promiscuous mode
[  184.935048][ T8365] hsr_slave_1: left promiscuous mode
[  184.957134][ T8365] hsr0 (unregistering): left promiscuous mode
[  188.368911][ T8428] netlink: 'syz.3.586': attribute type 10 has an invalid length.
[  188.457175][ T8431] netlink: 4 bytes leftover after parsing attributes in process `syz.1.587'.
[  188.472732][ T8431] erspan0: entered promiscuous mode
[  188.475305][ T8431] macvtap1: entered promiscuous mode
[  188.477252][ T8434] FAULT_INJECTION: forcing a failure.
[  188.477252][ T8434] name failslab, interval 1, probability 0, space 0, times 0
[  188.477296][ T8434] CPU: 0 UID: 0 PID: 8434 Comm: syz.3.588 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  188.477317][ T8434] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  188.477329][ T8434] Call Trace:
[  188.477335][ T8434]  <TASK>
[  188.477343][ T8434]  dump_stack_lvl+0x16c/0x1f0
[  188.477368][ T8434]  should_fail_ex+0x497/0x5b0
[  188.477388][ T8434]  ? fs_reclaim_acquire+0xae/0x150
[  188.477413][ T8434]  should_failslab+0xc2/0x120
[  188.477439][ T8434]  __kmalloc_node_noprof+0xd1/0x440
[  188.477523][ T8434]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  188.477555][ T8434]  ? lockdep_init_map_type+0x16d/0x7d0
[  188.477586][ T8434]  __kvmalloc_node_noprof+0xad/0x1a0
[  188.477613][ T8434]  bucket_table_alloc.isra.0+0x86/0x460
[  188.482105][ T8431] macvtap1: entered allmulticast mode
[  188.485501][ T8434]  ? __raw_spin_lock_init+0x3a/0x110
[  188.488850][ T8431] erspan0: entered allmulticast mode
[  188.489764][ T8434]  rhashtable_init_noprof+0x43b/0x7d0
[  188.489787][ T8434]  ? __init_waitqueue_head+0xca/0x150
[  188.489811][ T8434]  rhltable_init_noprof+0x20/0x60
[  188.520716][ T8434]  sta_info_init+0x27/0x160
[  188.521926][ T8434]  ieee80211_alloc_hw_nm+0x840/0x2260
[  188.523425][ T8434]  ? __local_bh_enable_ip+0xa4/0x120
[  188.525060][ T8434]  mac80211_hwsim_new_radio+0x201/0x56c0
[  188.527362][ T8434]  ? __sys_sendmsg+0x117/0x1f0
[  188.528648][ T8434]  ? __do_fast_syscall_32+0x73/0x120
[  188.530023][ T8434]  ? do_fast_syscall_32+0x32/0x80
[  188.531344][ T8434]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  188.533191][ T8434]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  188.534833][ T8434]  hwsim_new_radio_nl+0xb42/0x12b0
[  188.536336][ T8434]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  188.537977][ T8434]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  188.540138][ T8434]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  188.542366][ T8434]  genl_family_rcv_msg_doit+0x202/0x2f0
[  188.544140][ T8434]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  188.546009][ T8434]  ? bpf_lsm_capable+0x9/0x10
[  188.547343][ T8434]  ? security_capable+0x7e/0x260
[  188.548806][ T8434]  ? ns_capable+0xd7/0x110
[  188.550082][ T8434]  genl_rcv_msg+0x565/0x800
[  188.551325][ T8434]  ? __pfx_genl_rcv_msg+0x10/0x10
[  188.552665][ T8434]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  188.554150][ T8434]  netlink_rcv_skb+0x165/0x410
[  188.555469][ T8434]  ? __pfx_genl_rcv_msg+0x10/0x10
[  188.557115][ T8434]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  188.559019][ T8434]  ? down_read+0xc9/0x330
[  188.560757][ T8434]  ? __pfx_down_read+0x10/0x10
[  188.562505][ T8434]  ? netlink_deliver_tap+0x1ae/0xcf0
[  188.564712][ T8434]  genl_rcv+0x28/0x40
[  188.566430][ T8434]  netlink_unicast+0x53c/0x7f0
[  188.568439][ T8434]  ? __pfx_netlink_unicast+0x10/0x10
[  188.569974][ T8434]  ? __phys_addr_symbol+0x30/0x80
[  188.571380][ T8434]  ? __check_object_size+0x488/0x710
[  188.572824][ T8434]  netlink_sendmsg+0x8b8/0xd70
[  188.574126][ T8434]  ? __pfx_netlink_sendmsg+0x10/0x10
[  188.575618][ T8434]  ____sys_sendmsg+0x9ae/0xb40
[  188.576905][ T8434]  ? __pfx_____sys_sendmsg+0x10/0x10
[  188.578374][ T8434]  ? get_compat_msghdr+0x11b/0x170
[  188.580251][ T8434]  ? __pfx___lock_acquire+0x10/0x10
[  188.581895][ T8434]  ___sys_sendmsg+0x135/0x1e0
[  188.583978][ T8434]  ? __pfx____sys_sendmsg+0x10/0x10
[  188.586312][ T8434]  ? lock_acquire+0x2f/0xb0
[  188.588294][ T8434]  ? __fget_files+0x40/0x3f0
[  188.590153][ T8434]  ? fdget+0x176/0x210
[  188.591748][ T8434]  __sys_sendmsg+0x117/0x1f0
[  188.593712][ T8434]  ? __pfx___sys_sendmsg+0x10/0x10
[  188.595800][ T8434]  ? __fget_files+0x244/0x3f0
[  188.597649][ T8434]  __do_fast_syscall_32+0x73/0x120
[  188.599816][ T8434]  do_fast_syscall_32+0x32/0x80
[  188.602072][ T8434]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  188.604867][ T8434] RIP: 0023:0xf7ff4579
[  188.606661][ T8434] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  188.613809][ T8434] RSP: 002b:00000000f577655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  188.616780][ T8434] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080
[  188.619507][ T8434] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  188.622228][ T8434] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  188.625019][ T8434] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  188.628429][ T8434] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  188.631562][ T8434]  </TASK>
[  188.654812][ T8432] netlink: 4 bytes leftover after parsing attributes in process `syz.1.587'.
[  188.660285][ T8432] erspan0: left allmulticast mode
[  188.662249][ T8432] erspan0: left promiscuous mode
[  188.730162][ T8436] fuse: Bad value for 'group_id'
[  188.731674][ T8436] fuse: Bad value for 'group_id'
[  188.882942][ T5970] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  188.886916][ T5970] CPU: 3 UID: 0 PID: 5970 Comm: kworker/u33:7 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  188.891151][ T5970] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  188.895463][ T5970] Workqueue: hci3 hci_rx_work
[  188.897727][ T5970] Call Trace:
[  188.899136][ T5970]  <TASK>
[  188.900342][ T5970]  dump_stack_lvl+0x16c/0x1f0
[  188.902101][ T5970]  sysfs_warn_dup+0x7f/0xa0
[  188.903827][ T5970]  sysfs_create_dir_ns+0x24d/0x2b0
[  188.905732][ T5970]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  188.907804][ T5970]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  188.909945][ T5970]  ? kobject_add_internal+0x12d/0x990
[  188.912145][ T5970]  ? do_raw_spin_unlock+0x172/0x230
[  188.914744][ T5970]  kobject_add_internal+0x2c8/0x990
[  188.917562][ T5970]  kobject_add+0x16f/0x240
[  188.919425][ T5970]  ? __pfx_kobject_add+0x10/0x10
[  188.921239][ T5970]  ? class_to_subsys+0x3e/0x160
[  188.922957][ T5970]  ? do_raw_spin_unlock+0x172/0x230
[  188.924700][ T5970]  ? kobject_put+0xab/0x5a0
[  188.926390][ T5970]  device_add+0x289/0x1a70
[  188.928054][ T5970]  ? __pfx_dev_set_name+0x10/0x10
[  188.929990][ T5970]  ? __pfx_device_add+0x10/0x10
[  188.932050][ T5970]  ? mgmt_send_event_skb+0x2f2/0x460
[  188.934116][ T5970]  hci_conn_add_sysfs+0x17e/0x230
[  188.936127][ T5970]  le_conn_complete_evt+0xfc7/0x1cf0
[  188.938402][ T5970]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  188.940809][ T5970]  ? trace_contention_end+0xea/0x140
[  188.942673][ T5970]  ? __mutex_lock+0x1a6/0x9c0
[  188.944330][ T5970]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  188.946276][ T5970]  ? skb_pull_data+0x166/0x210
[  188.948019][ T5970]  hci_le_meta_evt+0x2e2/0x5d0
[  188.949797][ T5970]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  188.952526][ T5970]  hci_event_packet+0x666/0x1190
[  188.954646][ T5970]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  188.957295][ T5970]  ? __pfx_hci_event_packet+0x10/0x10
[  188.959713][ T5970]  ? mark_held_locks+0x9f/0xe0
[  188.961641][ T5970]  ? kcov_remote_start+0x3cf/0x6e0
[  188.963670][ T5970]  ? lockdep_hardirqs_on+0x7c/0x110
[  188.965636][ T5970]  hci_rx_work+0x2c6/0x16c0
[  188.967224][ T5970]  ? lock_acquire+0x2f/0xb0
[  188.968815][ T5970]  ? process_one_work+0x8bb/0x1b30
[  188.970560][ T5970]  process_one_work+0x958/0x1b30
[  188.972486][ T5970]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  188.974936][ T5970]  ? __pfx_process_one_work+0x10/0x10
[  188.977366][ T5970]  ? assign_work+0x1a0/0x250
[  188.979392][ T5970]  worker_thread+0x6c8/0xf00
[  188.981401][ T5970]  ? __kthread_parkme+0x148/0x220
[  188.983607][ T5970]  ? __pfx_worker_thread+0x10/0x10
[  188.985670][ T5970]  kthread+0x2c1/0x3a0
[  188.987653][ T5970]  ? _raw_spin_unlock_irq+0x23/0x50
[  188.989585][ T5970]  ? __pfx_kthread+0x10/0x10
[  188.991474][ T5970]  ret_from_fork+0x45/0x80
[  188.993463][ T5970]  ? __pfx_kthread+0x10/0x10
[  188.995406][ T5970]  ret_from_fork_asm+0x1a/0x30
[  188.997347][ T5970]  </TASK>
[  189.006302][ T5970] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  189.016316][ T5970] Bluetooth: hci3: failed to register connection device
[  189.605630][ T8444] random: crng reseeded on system resumption
[  190.551609][ T8451] random: crng reseeded on system resumption
[  190.966298][ T8461] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  190.968865][ T8461] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  190.975962][ T8461] vhci_hcd vhci_hcd.0: Device attached
[  191.066187][ T5970] Bluetooth: hci3: command 0x0406 tx timeout
[  191.072192][ T8468] fuse: Bad value for 'group_id'
[  191.074192][ T8468] fuse: Bad value for 'group_id'
[  191.148157][ T5996] vhci_hcd: vhci_device speed not set
[  191.206226][ T5996] usb 43-1: new full-speed USB device number 3 using vhci_hcd
[  191.718906][ T8476] random: crng reseeded on system resumption
[  192.013003][ T8462] vhci_hcd: connection reset by peer
[  192.018195][   T45] vhci_hcd: stop threads
[  192.021941][   T45] vhci_hcd: release socket
[  192.024547][   T45] vhci_hcd: disconnect device
[  192.781399][ T8484] usb usb1: usbfs: process 8484 (syz.0.604) did not claim interface 0 before use
[  192.951906][ T8492] netlink: 48 bytes leftover after parsing attributes in process `syz.4.608'.
[  193.048100][ T8498] loop7: detected capacity change from 0 to 16384
[  193.187992][ T8503] random: crng reseeded on system resumption
[  193.274850][ T8507] fuse: Bad value for 'group_id'
[  193.277591][ T8507] fuse: Bad value for 'group_id'
[  193.627979][ T1408] ieee802154 phy0 wpan0: encryption failed: -22
[  193.630731][ T1408] ieee802154 phy1 wpan1: encryption failed: -22
[  193.709065][ T8509] netlink: 277 bytes leftover after parsing attributes in process `syz.3.613'.
[  193.713112][ T8509] netlink: 277 bytes leftover after parsing attributes in process `syz.3.613'.
[  193.789117][ T8511] FAULT_INJECTION: forcing a failure.
[  193.789117][ T8511] name failslab, interval 1, probability 0, space 0, times 0
[  193.793038][ T8511] CPU: 3 UID: 0 PID: 8511 Comm: syz.3.614 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  193.795920][ T8511] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.798862][ T8511] Call Trace:
[  193.799997][ T8511]  <TASK>
[  193.801297][ T8511]  dump_stack_lvl+0x16c/0x1f0
[  193.802690][ T8511]  should_fail_ex+0x497/0x5b0
[  193.804058][ T8511]  ? fs_reclaim_acquire+0xae/0x150
[  193.805530][ T8511]  should_failslab+0xc2/0x120
[  193.806997][ T8511]  __kmalloc_noprof+0xcb/0x410
[  193.808712][ T8511]  ? rcu_is_watching+0x12/0xc0
[  193.810613][ T8511]  tomoyo_encode2+0x100/0x3e0
[  193.812098][ T8511]  tomoyo_realpath_from_path+0x1a7/0x710
[  193.813827][ T8511]  ? tomoyo_path_number_perm+0x232/0x5b0
[  193.815674][ T8511]  tomoyo_path_number_perm+0x245/0x5b0
[  193.817900][ T8511]  ? tomoyo_path_number_perm+0x232/0x5b0
[  193.820083][ T8511]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  193.823619][ T8511]  ? trace_lock_acquire+0x14a/0x1d0
[  193.825655][ T8511]  ? lock_acquire+0x2f/0xb0
[  193.827529][ T8511]  ? __fget_files+0x40/0x3f0
[  193.828977][ T8511]  ? __fget_files+0x244/0x3f0
[  193.830335][ T8511]  security_file_ioctl_compat+0x9b/0x240
[  193.831973][ T8511]  __do_compat_sys_ioctl+0x52/0x2b0
[  193.833549][ T8511]  __do_fast_syscall_32+0x73/0x120
[  193.834942][ T8511]  do_fast_syscall_32+0x32/0x80
[  193.836287][ T8511]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.838022][ T8511] RIP: 0023:0xf7ff4579
[  193.839287][ T8511] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  193.845124][ T8511] RSP: 002b:00000000f577655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  193.847308][ T8511] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004008ae90
[  193.849759][ T8511] RDX: 0000000020000200 RSI: 0000000000000000 RDI: 0000000000000000
[  193.852258][ T8511] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  193.854385][ T8511] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  193.856595][ T8511] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  193.858701][ T8511]  </TASK>
[  193.861853][ T8511] ERROR: Out of memory at tomoyo_realpath_from_path.
[  193.903430][ T8515] netlink: 12 bytes leftover after parsing attributes in process `syz.1.615'.
[  194.052266][ T8522] FAULT_INJECTION: forcing a failure.
[  194.052266][ T8522] name failslab, interval 1, probability 0, space 0, times 0
[  194.057117][ T8522] CPU: 3 UID: 0 PID: 8522 Comm: syz.1.617 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  194.060048][ T8522] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  194.063099][ T8522] Call Trace:
[  194.064031][ T8522]  <TASK>
[  194.064857][ T8522]  dump_stack_lvl+0x16c/0x1f0
[  194.066201][ T8522]  should_fail_ex+0x497/0x5b0
[  194.067564][ T8522]  ? fs_reclaim_acquire+0xae/0x150
[  194.069316][ T8522]  should_failslab+0xc2/0x120
[  194.070897][ T8522]  __kmalloc_noprof+0xcb/0x410
[  194.072631][ T8522]  ? rcu_is_watching+0x12/0xc0
[  194.074571][ T8522]  tomoyo_encode2+0x100/0x3e0
[  194.076098][ T8522]  tomoyo_realpath_from_path+0x1a7/0x710
[  194.077862][ T8522]  ? tomoyo_path_number_perm+0x232/0x5b0
[  194.079656][ T8522]  tomoyo_path_number_perm+0x245/0x5b0
[  194.081132][ T8522]  ? tomoyo_path_number_perm+0x232/0x5b0
[  194.082800][ T8522]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  194.084528][ T8522]  ? trace_lock_acquire+0x14a/0x1d0
[  194.086089][ T8522]  ? lock_acquire+0x2f/0xb0
[  194.088357][ T8522]  ? __fget_files+0x40/0x3f0
[  194.089947][ T8522]  ? __fget_files+0x244/0x3f0
[  194.091506][ T8522]  security_file_ioctl_compat+0x9b/0x240
[  194.093525][ T8522]  __do_compat_sys_ioctl+0x52/0x2b0
[  194.095653][ T8522]  __do_fast_syscall_32+0x73/0x120
[  194.097090][ T8522]  do_fast_syscall_32+0x32/0x80
[  194.098391][ T8522]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  194.100411][ T8522] RIP: 0023:0xf7f80579
[  194.101526][ T8522] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  194.106902][ T8522] RSP: 002b:00000000f570655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  194.109076][ T8522] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004008ae89
[  194.111223][ T8522] RDX: 00000000200004c0 RSI: 0000000000000000 RDI: 0000000000000000
[  194.113662][ T8522] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  194.116154][ T8522] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  194.118205][ T8522] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  194.120365][ T8522]  </TASK>
[  194.122184][ T8522] ERROR: Out of memory at tomoyo_realpath_from_path.
[  195.638286][ T8560] sch_fq: defrate 0 ignored.
[  196.035934][ T8575] kAFS: No cell specified
[  196.286172][ T1443] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  196.336611][ T5996] vhci_hcd: vhci_device speed not set
[  196.438433][ T1443] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  196.446520][ T1443] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  196.449716][ T1443] usb 6-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  196.456214][ T1443] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.462482][ T1443] usb 6-1: config 0 descriptor??
[  196.514888][ T8588] FAULT_INJECTION: forcing a failure.
[  196.514888][ T8588] name failslab, interval 1, probability 0, space 0, times 0
[  196.519627][ T8588] CPU: 1 UID: 0 PID: 8588 Comm: syz.3.634 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  196.523615][ T8588] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  196.526817][ T8588] Call Trace:
[  196.527986][ T8588]  <TASK>
[  196.528851][ T8588]  dump_stack_lvl+0x16c/0x1f0
[  196.530296][ T8588]  should_fail_ex+0x497/0x5b0
[  196.531688][ T8588]  ? lock_acquire.part.0+0x11b/0x380
[  196.533843][ T8588]  should_failslab+0xc2/0x120
[  196.535826][ T8588]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  196.538051][ T8588]  ? dst_alloc+0x99/0x1a0
[  196.539927][ T8588]  ? trace_lock_acquire+0x14a/0x1d0
[  196.541854][ T8588]  ? __pfx_ip6_dst_gc+0x10/0x10
[  196.543090][ T8588]  dst_alloc+0x99/0x1a0
[  196.544671][ T8588]  ip6_dst_alloc+0x2c/0xa0
[  196.545967][ T8588]  ip6_pol_route+0x956/0x1120
[  196.547241][ T8588]  ? __pfx_ip6_pol_route+0x10/0x10
[  196.548596][ T8588]  ? find_held_lock+0x2d/0x110
[  196.549855][ T8588]  ? __pfx___lock_acquire+0x10/0x10
[  196.551187][ T8588]  ? __pfx_ip6_pol_route_output+0x10/0x10
[  196.552778][ T8588]  fib6_rule_lookup+0x386/0x720
[  196.554064][ T8588]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  196.555524][ T8588]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  196.557014][ T8588]  ? rcu_is_watching+0x12/0xc0
[  196.558290][ T8588]  ? trace_lock_acquire+0x14a/0x1d0
[  196.559913][ T8588]  ? ip6_route_output_flags+0x45/0x640
[  196.561681][ T8588]  ? lock_acquire+0x2f/0xb0
[  196.562890][ T8588]  ? ip6_route_output_flags+0x45/0x640
[  196.564390][ T8588]  ip6_route_output_flags+0x1d0/0x640
[  196.565814][ T8588]  ip6_tnl_xmit+0x1c38/0x3a70
[  196.567075][ T8588]  ? __pfx_ip6_tnl_xmit+0x10/0x10
[  196.568481][ T8588]  ? lock_acquire.part.0+0x11b/0x380
[  196.570071][ T8588]  ? __ipv6_chk_addr_and_flags+0x331/0x790
[  196.571615][ T8588]  ? __pfx_lock_release+0x10/0x10
[  196.572935][ T8588]  ? trace_lock_acquire+0x14a/0x1d0
[  196.574294][ T8588]  __gre6_xmit+0xc2e/0x1bd0
[  196.575644][ T8588]  ? __pfx___gre6_xmit+0x10/0x10
[  196.577028][ T8588]  ? __pfx_map_id_range_down+0x10/0x10
[  196.578559][ T8588]  ip6gre_tunnel_xmit+0xc4d/0x10b0
[  196.579973][ T8588]  ? __pfx_ip6gre_tunnel_xmit+0x10/0x10
[  196.581420][ T8588]  ? __pfx_lock_release+0x10/0x10
[  196.582734][ T8588]  ? trace_lock_acquire+0x14a/0x1d0
[  196.584110][ T8588]  ? __pfx_skb_network_protocol+0x10/0x10
[  196.585589][ T8588]  ? dev_queue_xmit_nit+0x87e/0xba0
[  196.587020][ T8588]  dev_hard_start_xmit+0x143/0x790
[  196.588374][ T8588]  sch_direct_xmit+0x1ae/0xc30
[  196.589718][ T8588]  ? rcu_is_watching+0x12/0xc0
[  196.590983][ T8588]  ? __pfx_sch_direct_xmit+0x10/0x10
[  196.592361][ T8588]  ? __dev_queue_xmit+0x1148/0x4350
[  196.593729][ T8588]  ? lock_acquire+0x2f/0xb0
[  196.595015][ T8588]  ? __dev_queue_xmit+0x1148/0x4350
[  196.596540][ T8588]  __dev_queue_xmit+0x136a/0x4350
[  196.598341][ T8588]  ? __pfx_lock_release+0x10/0x10
[  196.600398][ T8588]  ? trace_lock_acquire+0x14a/0x1d0
[  196.601921][ T8588]  ? __pfx___dev_queue_xmit+0x10/0x10
[  196.603414][ T8588]  ? __might_fault+0x50/0x190
[  196.604642][ T8588]  ? _copy_from_iter+0x159/0x1400
[  196.605964][ T8588]  ? packet_parse_headers+0x71e/0xa40
[  196.607588][ T8588]  ? packet_parse_headers+0x72a/0xa40
[  196.609005][ T8588]  ? packet_parse_headers+0x1fc/0xa40
[  196.610422][ T8588]  ? __pfx_packet_parse_headers+0x10/0x10
[  196.611927][ T8588]  ? lock_acquire+0x2f/0xb0
[  196.613161][ T8588]  packet_xmit+0x23e/0x360
[  196.614345][ T8588]  packet_sendmsg+0x2681/0x54c0
[  196.615651][ T8588]  ? __pfx___might_resched+0x10/0x10
[  196.617120][ T8588]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  196.619540][ T8588]  ? aa_sk_perm+0x2f5/0xb20
[  196.620873][ T8588]  ? __pfx_packet_sendmsg+0x10/0x10
[  196.622430][ T8588]  ? __pfx_aa_sk_perm+0x10/0x10
[  196.623767][ T8588]  __sys_sendto+0x479/0x4d0
[  196.624986][ T8588]  ? __pfx___sys_sendto+0x10/0x10
[  196.626465][ T8588]  ? ksys_write+0x1ad/0x260
[  196.627748][ T8588]  ? __pfx_ksys_write+0x10/0x10
[  196.629046][ T8588]  __ia32_sys_sendto+0xdd/0x1b0
[  196.630316][ T8588]  ? lockdep_hardirqs_on+0x7c/0x110
[  196.631666][ T8588]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  196.633388][ T8588]  __do_fast_syscall_32+0x73/0x120
[  196.634735][ T8588]  do_fast_syscall_32+0x32/0x80
[  196.636140][ T8588]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  196.638011][ T8588] RIP: 0023:0xf7ff4579
[  196.639089][ T8588] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  196.644615][ T8588] RSP: 002b:00000000f577655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  196.647607][ T8588] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000140
[  196.649934][ T8588] RDX: 00000000000005b2 RSI: 0000000000000000 RDI: 00000000200000c0
[  196.652031][ T8588] RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000
[  196.654115][ T8588] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  196.656218][ T8588] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  196.658909][ T8588]  </TASK>
[  196.877996][ T1443] cm6533_jd 0003:0D8C:0022.0006: unknown main item tag 0x0
[  196.880033][ T1443] cm6533_jd 0003:0D8C:0022.0006: unknown main item tag 0x0
[  196.891723][ T1443] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0D8C:0022.0006/input/input23
[  196.906273][ T1443] cm6533_jd 0003:0D8C:0022.0006: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.1-1/input0
[  196.951423][ T8599] FAULT_INJECTION: forcing a failure.
[  196.951423][ T8599] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  196.955541][ T8599] CPU: 3 UID: 0 PID: 8599 Comm: syz.3.639 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  196.959122][ T8599] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  196.962171][ T8599] Call Trace:
[  196.963055][ T8599]  <TASK>
[  196.963851][ T8599]  dump_stack_lvl+0x16c/0x1f0
[  196.965103][ T8599]  should_fail_ex+0x497/0x5b0
[  196.966350][ T8599]  _copy_to_user+0x32/0xd0
[  196.967538][ T8599]  simple_read_from_buffer+0xd0/0x160
[  196.969240][ T8599]  proc_fail_nth_read+0x198/0x270
[  196.970644][ T8599]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  196.972929][ T8599]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  196.974571][ T8599]  vfs_read+0x1df/0xbe0
[  196.975716][ T8599]  ? __fget_files+0x23a/0x3f0
[  196.976960][ T8599]  ? fdget_pos+0x24c/0x360
[  196.978187][ T8599]  ? __pfx_lock_release+0x10/0x10
[  196.980100][ T8599]  ? trace_lock_acquire+0x14a/0x1d0
[  196.982161][ T8599]  ? __pfx_vfs_read+0x10/0x10
[  196.983952][ T8599]  ? __pfx___mutex_lock+0x10/0x10
[  196.985459][ T8599]  ? __fget_files+0x244/0x3f0
[  196.986773][ T8599]  ksys_read+0x12f/0x260
[  196.987989][ T8599]  ? __pfx_ksys_read+0x10/0x10
[  196.989798][ T8599]  __do_fast_syscall_32+0x73/0x120
[  196.991618][ T8599]  do_fast_syscall_32+0x32/0x80
[  196.992882][ T8599]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  196.994730][ T8599] RIP: 0023:0xf7ff4579
[  196.995839][ T8599] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  197.001066][ T8599] RSP: 002b:00000000f5776590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  197.003258][ T8599] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5776620
[  197.005315][ T8599] RDX: 000000000000000f RSI: 00000000f747cff4 RDI: 0000000000000000
[  197.007357][ T8599] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  197.009609][ T8599] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  197.012015][ T8599] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  197.014359][ T8599]  </TASK>
[  197.081914][ T1316] usb 6-1: USB disconnect, device number 10
[  197.355270][    C0] vkms_vblank_simulate: vblank timer overrun
[  197.426145][ T1443] usb 8-1: new low-speed USB device number 13 using dummy_hcd
[  197.576233][ T1443] usb 8-1: Invalid ep0 maxpacket: 64
[  197.618814][ T8610] netlink: 88 bytes leftover after parsing attributes in process `syz.1.644'.
[  197.726214][ T1443] usb 8-1: new low-speed USB device number 14 using dummy_hcd
[  197.886206][ T1443] usb 8-1: Invalid ep0 maxpacket: 64
[  197.888190][ T1443] usb usb8-port1: attempt power cycle
[  198.021978][ T8615] syz.1.653 (8615): attempted to duplicate a private mapping with mremap.  This is not supported.
[  198.056483][ T8615] nvme_fabrics: missing parameter 'transport=%s'
[  198.059009][ T8615] nvme_fabrics: missing parameter 'nqn=%s'
[  198.115794][ T8618] x_tables: (null)_tables: DNAT target: only valid in nat table, not syz0
[  198.129867][ T8618] netlink: 100 bytes leftover after parsing attributes in process `syz.1.646'.
[  198.132977][ T8618] netlink: 100 bytes leftover after parsing attributes in process `syz.1.646'.
[  198.236916][ T1443] usb 8-1: new low-speed USB device number 15 using dummy_hcd
[  198.256760][ T1443] usb 8-1: Invalid ep0 maxpacket: 64
[  198.349934][ T8621] nbd1: detected capacity change from 0 to 12
[  198.356627][ T6536] block nbd1: Send control failed (result -89)
[  198.359281][ T6536] block nbd1: Request send failed, requeueing
[  198.363714][ T5970] block nbd1: Receive control failed (result -32)
[  198.364629][   T70] block nbd1: Dead connection, failed to find a fallback
[  198.372182][   T70] block nbd1: shutting down sockets
[  198.374861][   T70] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.378565][   T70] Buffer I/O error on dev nbd1, logical block 0, async page read
[  198.381493][ T6536] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.384261][ T6536] Buffer I/O error on dev nbd1, logical block 0, async page read
[  198.386920][ T1443] usb 8-1: new low-speed USB device number 16 using dummy_hcd
[  198.387496][ T6536] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.392612][ T6536] Buffer I/O error on dev nbd1, logical block 0, async page read
[  198.395221][ T6536] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.397683][ T6536] Buffer I/O error on dev nbd1, logical block 0, async page read
[  198.400114][ T6536] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.402991][ T6536] Buffer I/O error on dev nbd1, logical block 0, async page read
[  198.405841][ T6536] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.408531][ T1443] usb 8-1: Invalid ep0 maxpacket: 64
[  198.411975][ T1443] usb usb8-port1: unable to enumerate USB device
[  198.414759][ T6536] Buffer I/O error on dev nbd1, logical block 0, async page read
[  198.418845][ T6536] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.421584][ T6536] Buffer I/O error on dev nbd1, logical block 0, async page read
[  198.424464][ T6536] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.427627][ T6536] Buffer I/O error on dev nbd1, logical block 0, async page read
[  198.430410][ T6536] ldm_validate_partition_table(): Disk read failed.
[  198.433420][ T6536] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.436231][ T6536] Buffer I/O error on dev nbd1, logical block 0, async page read
[  198.439612][ T6536] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.442608][ T6536] Buffer I/O error on dev nbd1, logical block 0, async page read
[  198.445515][ T6536] Dev nbd1: unable to read RDB block 0
[  198.447989][ T6536]  nbd1: unable to read partition table
[  198.449579][ T6536] nbd1: partition table beyond EOD, truncated
[  198.456205][ T6536] ldm_validate_partition_table(): Disk read failed.
[  198.459656][ T6536] Dev nbd1: unable to read RDB block 0
[  198.462115][ T6536]  nbd1: unable to read partition table
[  198.463836][ T6536] nbd1: partition table beyond EOD, truncated
[  199.346994][ T8628] FAULT_INJECTION: forcing a failure.
[  199.346994][ T8628] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  199.352355][ T8628] CPU: 3 UID: 0 PID: 8628 Comm: syz.0.648 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  199.356092][ T8628] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  199.359922][ T8628] Call Trace:
[  199.361146][ T8628]  <TASK>
[  199.362328][ T8628]  dump_stack_lvl+0x16c/0x1f0
[  199.364017][ T8628]  should_fail_ex+0x497/0x5b0
[  199.365753][ T8628]  _copy_from_user+0x2e/0xd0
[  199.367354][ T8628]  do_ip_vs_get_ctl+0x2b1/0x1110
[  199.368704][ T8628]  ? __pfx_do_ip_vs_get_ctl+0x10/0x10
[  199.370373][ T8628]  ? rcu_is_watching+0x12/0xc0
[  199.371799][ T8628]  ? trace_contention_end+0xea/0x140
[  199.373701][ T8628]  ? __mutex_unlock_slowpath+0x164/0x650
[  199.375440][ T8628]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  199.377800][ T8628]  ? find_held_lock+0x2d/0x110
[  199.379589][ T8628]  ? nf_getsockopt+0x79/0xe0
[  199.381337][ T8628]  nf_getsockopt+0x79/0xe0
[  199.382951][ T8628]  ip_getsockopt+0x18e/0x1e0
[  199.384600][ T8628]  ? __pfx_ip_getsockopt+0x10/0x10
[  199.386407][ T8628]  ? trace_contention_end+0xea/0x140
[  199.388232][ T8628]  ? __mutex_lock+0x1a6/0x9c0
[  199.389866][ T8628]  ipv6_getsockopt+0x230/0x280
[  199.391539][ T8628]  ? __pfx_ipv6_getsockopt+0x10/0x10
[  199.393495][ T8628]  tcp_getsockopt+0x9e/0x100
[  199.395376][ T8628]  smc_getsockopt+0x163/0x360
[  199.396844][ T8628]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  199.398714][ T8628]  ? __pfx_smc_getsockopt+0x10/0x10
[  199.400469][ T8628]  ? __pfx_smc_getsockopt+0x10/0x10
[  199.402024][ T8628]  do_sock_getsockopt+0x3fe/0x870
[  199.403451][ T8628]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  199.405125][ T8628]  ? __fget_files+0x244/0x3f0
[  199.406508][ T8628]  __sys_getsockopt+0x1a1/0x270
[  199.408055][ T8628]  ? __pfx___sys_getsockopt+0x10/0x10
[  199.409738][ T8628]  ? __pfx_native_tss_update_io_bitmap+0x10/0x10
[  199.411454][ T8628]  ? ksys_write+0x1ad/0x260
[  199.412643][ T8628]  ? __pfx_ksys_write+0x10/0x10
[  199.413916][ T8628]  __ia32_sys_getsockopt+0xbc/0x160
[  199.415298][ T8628]  ? lockdep_hardirqs_on+0x7c/0x110
[  199.416869][ T8628]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  199.419371][ T8628]  __do_fast_syscall_32+0x73/0x120
[  199.421677][ T8628]  do_fast_syscall_32+0x32/0x80
[  199.423769][ T8628]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  199.426475][ T8628] RIP: 0023:0xf749e579
[  199.428328][ T8628] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  199.435650][ T8628] RSP: 002b:00000000f578655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  199.439173][ T8628] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  199.442811][ T8628] RDX: 0000000000000486 RSI: 0000000020000040 RDI: 0000000020000080
[  199.445682][ T8628] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  199.448518][ T8628] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  199.451662][ T8628] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  199.454593][ T8628]  </TASK>
[  199.962686][ T8640] block nbd4: shutting down sockets
[  200.040439][ T8659] FAULT_INJECTION: forcing a failure.
[  200.040439][ T8659] name failslab, interval 1, probability 0, space 0, times 0
[  200.044547][ T8659] CPU: 2 UID: 0 PID: 8659 Comm: syz.1.660 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  200.047699][ T8659] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.050359][ T8659] Call Trace:
[  200.051231][ T8659]  <TASK>
[  200.052017][ T8659]  dump_stack_lvl+0x16c/0x1f0
[  200.053754][ T8659]  should_fail_ex+0x497/0x5b0
[  200.055630][ T8659]  ? fs_reclaim_acquire+0xae/0x150
[  200.057192][ T8659]  should_failslab+0xc2/0x120
[  200.058378][ T8659]  __kmalloc_noprof+0xcb/0x410
[  200.059612][ T8659]  tomoyo_encode2+0x100/0x3e0
[  200.060823][ T8659]  tomoyo_encode+0x2c/0x40
[  200.061963][ T8659]  tomoyo_mount_acl+0x314/0x880
[  200.063248][ T8659]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  200.064717][ T8659]  ? lockdep_hardirqs_on+0x7c/0x110
[  200.066059][ T8659]  ? trace_lock_acquire+0x14a/0x1d0
[  200.067395][ T8659]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.069042][ T8659]  ? tomoyo_mount_permission+0x146/0x410
[  200.070661][ T8659]  ? lock_acquire+0x2f/0xb0
[  200.071867][ T8659]  ? tomoyo_mount_permission+0x146/0x410
[  200.073711][ T8659]  tomoyo_mount_permission+0x16b/0x410
[  200.075637][ T8659]  ? tomoyo_mount_permission+0x146/0x410
[  200.077005][ T8659]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  200.078522][ T8659]  ? get_current_fs_domain+0x188/0x1f0
[  200.080078][ T8659]  security_sb_mount+0x9b/0x260
[  200.081378][ T8659]  path_mount+0x129/0x1f10
[  200.082661][ T8659]  ? kmem_cache_free+0x152/0x4b0
[  200.084324][ T8659]  ? __pfx_path_mount+0x10/0x10
[  200.085868][ T8659]  ? putname+0x12e/0x170
[  200.087029][ T8659]  __ia32_sys_mount+0x292/0x310
[  200.088678][ T8659]  ? __pfx___ia32_sys_mount+0x10/0x10
[  200.090154][ T8659]  __do_fast_syscall_32+0x73/0x120
[  200.091603][ T8659]  do_fast_syscall_32+0x32/0x80
[  200.093602][ T8659]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.095820][ T8659] RIP: 0023:0xf7f80579
[  200.096863][ T8659] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  200.102009][ T8659] RSP: 002b:00000000f570655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  200.104614][ T8659] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  200.106801][ T8659] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000380
[  200.109516][ T8659] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  200.111888][ T8659] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  200.114536][ T8659] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  200.117241][ T8659]  </TASK>
[  200.145905][ T8661] FAULT_INJECTION: forcing a failure.
[  200.145905][ T8661] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  200.150483][ T8661] CPU: 3 UID: 0 PID: 8661 Comm: syz.1.661 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  200.154059][ T8661] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.157661][ T8661] Call Trace:
[  200.158705][ T8661]  <TASK>
[  200.159690][ T8661]  dump_stack_lvl+0x16c/0x1f0
[  200.161272][ T8661]  should_fail_ex+0x497/0x5b0
[  200.162894][ T8661]  _copy_to_user+0x32/0xd0
[  200.164416][ T8661]  simple_read_from_buffer+0xd0/0x160
[  200.166184][ T8661]  proc_fail_nth_read+0x198/0x270
[  200.168039][ T8661]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  200.170028][ T8661]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  200.171842][ T8661]  vfs_read+0x1df/0xbe0
[  200.173304][ T8661]  ? __fget_files+0x23a/0x3f0
[  200.174945][ T8661]  ? fdget_pos+0x24c/0x360
[  200.176334][ T8661]  ? __pfx_lock_release+0x10/0x10
[  200.177751][ T8661]  ? trace_lock_acquire+0x14a/0x1d0
[  200.179547][ T8661]  ? __pfx_vfs_read+0x10/0x10
[  200.181207][ T8661]  ? __pfx___mutex_lock+0x10/0x10
[  200.182980][ T8661]  ? __fget_files+0x244/0x3f0
[  200.184559][ T8661]  ksys_read+0x12f/0x260
[  200.185758][ T8661]  ? __pfx_ksys_read+0x10/0x10
[  200.186426][ T5996] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  200.187497][ T8661]  __do_fast_syscall_32+0x73/0x120
[  200.187543][ T8661]  do_fast_syscall_32+0x32/0x80
[  200.187562][ T8661]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.187582][ T8661] RIP: 0023:0xf7f80579
[  200.187597][ T8661] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  200.187615][ T8661] RSP: 002b:00000000f5706590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  200.187634][ T8661] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5706620
[  200.187645][ T8661] RDX: 000000000000000f RSI: 00000000f740cff4 RDI: 0000000000000000
[  200.187656][ T8661] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  200.187668][ T8661] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  200.187679][ T8661] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  200.187703][ T8661]  </TASK>
[  200.252286][ T8664] netlink: 134744 bytes leftover after parsing attributes in process `syz.1.662'.
[  200.331542][ T8668] binder: 8662:8668 ioctl c018620c 20003640 returned -1
[  200.369470][ T5996] usb 9-1: device descriptor read/64, error -71
[  200.616399][ T5996] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  200.658521][ T8675] ubi0: attaching mtd0
[  200.665432][ T8675] ubi0: scanning is finished
[  200.666832][ T8675] ubi0: empty MTD device detected
[  200.746203][ T5996] usb 9-1: device descriptor read/64, error -71
[  200.814331][ T8675] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  200.820915][ T8675] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  200.826413][ T8675] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  200.843229][ T8675] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  200.850991][ T8675] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  200.860301][ T8675] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  200.876409][ T5996] usb usb9-port1: attempt power cycle
[  200.876918][ T8675] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3782768237
[  200.881149][ T8675] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  200.889794][ T8677] ubi0: background thread "ubi_bgt0d" started, PID 8677
[  201.226131][ T5996] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  201.259449][ T5996] usb 9-1: device descriptor read/8, error -71
[  201.503060][ T8688] IPVS: sync thread started: state = MASTER, mcast_ifn = vlan1, syncid = 0, id = 0
[  201.506230][ T5996] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  201.526640][ T5996] usb 9-1: device descriptor read/8, error -71
[  201.529246][ T8690] netlink: 20 bytes leftover after parsing attributes in process `syz.0.671'.
[  201.646401][ T5996] usb usb9-port1: unable to enumerate USB device
[  201.816185][   T57] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  201.956096][   T57] usb 5-1: device descriptor read/64, error -71
[  201.994175][ T8694] kAFS: No cell specified
[  202.196124][   T57] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  202.256341][ T5996] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  202.336436][   T57] usb 5-1: device descriptor read/64, error -71
[  202.407993][ T5996] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  202.412321][ T5996] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  202.416383][ T5996] usb 6-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  202.420161][ T5996] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.425014][ T5996] usb 6-1: config 0 descriptor??
[  202.446333][   T57] usb usb5-port1: attempt power cycle
[  202.786171][   T57] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  202.848267][   T57] usb 5-1: device descriptor read/8, error -71
[  202.848810][ T5996] cm6533_jd 0003:0D8C:0022.0007: unknown main item tag 0x0
[  202.852551][ T5996] cm6533_jd 0003:0D8C:0022.0007: unknown main item tag 0x0
[  202.864144][ T5996] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0D8C:0022.0007/input/input24
[  202.876326][ T5996] cm6533_jd 0003:0D8C:0022.0007: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.1-1/input0
[  203.060530][ T2294] usb 6-1: USB disconnect, device number 11
[  203.096164][   T57] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  203.118453][   T57] usb 5-1: device descriptor read/8, error -71
[  203.226572][   T57] usb usb5-port1: unable to enumerate USB device
[  203.589869][ T8723] random: crng reseeded on system resumption
[  203.658233][ T8727] mmap: syz.1.682 (8727) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  203.993127][ T8734] XFS (nullb0): Invalid superblock magic number
[  205.185188][ T8754] kAFS: No cell specified
[  205.488825][ T1011] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  205.672448][ T1011] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  205.676599][ T1011] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  205.679478][ T1011] usb 6-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  205.682150][ T1011] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.688133][ T1011] usb 6-1: config 0 descriptor??
[  206.108994][ T1011] cm6533_jd 0003:0D8C:0022.0008: unknown main item tag 0x0
[  206.112485][ T1011] cm6533_jd 0003:0D8C:0022.0008: unknown main item tag 0x0
[  206.120514][ T1011] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0D8C:0022.0008/input/input25
[  206.155936][ T1011] cm6533_jd 0003:0D8C:0022.0008: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.1-1/input0
[  206.332405][ T1011] usb 6-1: USB disconnect, device number 12
[  206.673013][ T8774] ubi: mtd0 is already attached to ubi0
[  207.494627][ T8785] netlink: 20 bytes leftover after parsing attributes in process `syz.1.697'.
[  207.497636][ T8785] netlink: 8 bytes leftover after parsing attributes in process `syz.1.697'.
[  207.501178][ T8785] FAULT_INJECTION: forcing a failure.
[  207.501178][ T8785] name failslab, interval 1, probability 0, space 0, times 0
[  207.506425][ T8785] CPU: 1 UID: 0 PID: 8785 Comm: syz.1.697 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  207.509588][ T8785] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  207.512478][ T8785] Call Trace:
[  207.513339][ T8785]  <TASK>
[  207.514102][ T8785]  dump_stack_lvl+0x16c/0x1f0
[  207.515303][ T8785]  should_fail_ex+0x497/0x5b0
[  207.516580][ T8785]  ? __pfx___lock_acquire+0x10/0x10
[  207.518022][ T8785]  should_failslab+0xc2/0x120
[  207.519328][ T8785]  kmem_cache_alloc_node_noprof+0x71/0x310
[  207.520786][ T8785]  ? __alloc_skb+0x2b3/0x380
[  207.522112][ T8785]  __alloc_skb+0x2b3/0x380
[  207.523306][ T8785]  ? __pfx___alloc_skb+0x10/0x10
[  207.524632][ T8785]  ? neigh_flush_dev+0x4e1/0x930
[  207.526289][ T8785]  ? __pfx_lock_release+0x10/0x10
[  207.528275][ T8785]  ? do_raw_write_lock+0x11d/0x3a0
[  207.530089][ T8785]  ? __pfx_do_raw_write_lock+0x10/0x10
[  207.532139][ T8785]  __neigh_notify+0x88/0x160
[  207.533813][ T8785]  neigh_flush_dev+0x4fa/0x930
[  207.535471][ T8785]  ? lock_acquire+0x2f/0xb0
[  207.536857][ T8785]  neigh_changeaddr+0x2f/0x40
[  207.539010][ T8785]  ndisc_netdev_event+0x4ef/0x560
[  207.540997][ T8785]  notifier_call_chain+0xb9/0x410
[  207.542948][ T8785]  ? __pfx_ndisc_netdev_event+0x10/0x10
[  207.544798][ T8785]  call_netdevice_notifiers_info+0xbe/0x140
[  207.546556][ T8785]  __dev_notify_flags+0x2aa/0x2e0
[  207.547951][ T8785]  ? __pfx___dev_notify_flags+0x10/0x10
[  207.549406][ T8785]  ? vprintk+0x86/0xa0
[  207.550478][ T8785]  ? _printk+0xc8/0x100
[  207.551773][ T8785]  ? __pfx__printk+0x10/0x10
[  207.553080][ T8785]  dev_change_flags+0x10c/0x160
[  207.554464][ T8785]  do_setlink+0x19dd/0x3ee0
[  207.555893][ T8785]  ? __pfx_do_setlink+0x10/0x10
[  207.557552][ T8785]  ? __pfx___nla_validate_parse+0x10/0x10
[  207.559246][ T8785]  ? __pfx__printk+0x10/0x10
[  207.560689][ T8785]  ? ___ratelimit+0x24c/0x570
[  207.561963][ T8785]  ? is_bpf_text_address+0x94/0x1a0
[  207.563510][ T8785]  ? __pfx____ratelimit+0x10/0x10
[  207.565059][ T8785]  ? __nla_parse+0x40/0x60
[  207.566238][ T8785]  ? inet6_validate_link_af+0x14b/0x460
[  207.567706][ T8785]  ? inet6_validate_link_af+0x21f/0x460
[  207.569210][ T8785]  ? __pfx_inet6_validate_link_af+0x10/0x10
[  207.570835][ T8785]  ? find_held_lock+0x2d/0x110
[  207.572117][ T8785]  ? __pfx_inet6_validate_link_af+0x10/0x10
[  207.573681][ T8785]  __rtnl_newlink+0xc3a/0x1920
[  207.574966][ T8785]  ? __pfx___rtnl_newlink+0x10/0x10
[  207.576436][ T8785]  rtnl_newlink+0x67/0xa0
[  207.577795][ T8785]  ? __pfx_rtnl_newlink+0x10/0x10
[  207.579423][ T8785]  rtnetlink_rcv_msg+0x3c7/0xea0
[  207.581266][ T8785]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  207.582839][ T8785]  ? __pfx___dev_queue_xmit+0x10/0x10
[  207.584570][ T8785]  netlink_rcv_skb+0x165/0x410
[  207.585827][ T8785]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  207.587541][ T8785]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  207.589135][ T8785]  ? netlink_deliver_tap+0x1ae/0xcf0
[  207.590545][ T8785]  netlink_unicast+0x53c/0x7f0
[  207.591809][ T8785]  ? __pfx_netlink_unicast+0x10/0x10
[  207.593199][ T8785]  ? __phys_addr_symbol+0x30/0x80
[  207.594732][ T8785]  ? __check_object_size+0x488/0x710
[  207.596127][ T8785]  netlink_sendmsg+0x8b8/0xd70
[  207.597450][ T8785]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.599105][ T8785]  ____sys_sendmsg+0x9ae/0xb40
[  207.600488][ T8785]  ? __pfx_____sys_sendmsg+0x10/0x10
[  207.602128][ T8785]  ? get_compat_msghdr+0x11b/0x170
[  207.603535][ T8785]  ? __pfx___lock_acquire+0x10/0x10
[  207.605591][ T8785]  ___sys_sendmsg+0x135/0x1e0
[  207.607221][ T8785]  ? __pfx____sys_sendmsg+0x10/0x10
[  207.608784][ T8785]  ? lock_acquire+0x2f/0xb0
[  207.610100][ T8785]  ? __fget_files+0x40/0x3f0
[  207.611851][ T8785]  ? fdget+0x176/0x210
[  207.613050][ T8785]  __sys_sendmsg+0x117/0x1f0
[  207.614428][ T8785]  ? __pfx___sys_sendmsg+0x10/0x10
[  207.616046][ T8785]  ? __fget_files+0x244/0x3f0
[  207.617391][ T8785]  __do_fast_syscall_32+0x73/0x120
[  207.618734][ T8785]  do_fast_syscall_32+0x32/0x80
[  207.620354][ T8785]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  207.622136][ T8785] RIP: 0023:0xf7f80579
[  207.623295][ T8785] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  207.629117][ T8785] RSP: 002b:00000000f570655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  207.631380][ T8785] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 0000000020000040
[  207.633442][ T8785] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  207.635696][ T8785] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  207.637807][ T8785] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  207.640411][ T8785] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  207.643258][ T8785]  </TASK>
[  207.645791][ T8785] netlink: 8 bytes leftover after parsing attributes in process `syz.1.697'.
[  208.915122][ T8810] kAFS: No cell specified
[  209.156195][ T1316] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  209.317895][ T1316] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  209.321511][ T1316] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  209.324725][ T1316] usb 5-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  209.328358][ T1316] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.337984][ T1316] usb 5-1: config 0 descriptor??
[  209.712369][ T8814] netlink: 'syz.1.706': attribute type 10 has an invalid length.
[  209.723424][ T8814] team0: Failed to send options change via netlink (err -105)
[  209.725685][ T8814] team0: Port device netdevsim0 added
[  209.732421][   T12] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  209.739989][ T8814] netlink: 'syz.1.706': attribute type 10 has an invalid length.
[  209.746733][ T1316] cm6533_jd 0003:0D8C:0022.0009: unknown main item tag 0x0
[  209.749696][ T1316] cm6533_jd 0003:0D8C:0022.0009: unknown main item tag 0x0
[  209.756474][ T1316] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:0D8C:0022.0009/input/input26
[  209.760651][ T8814] team0: Failed to send options change via netlink (err -105)
[  209.762709][ T8814] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  209.763758][ T1316] cm6533_jd 0003:0D8C:0022.0009: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.0-1/input0
[  209.765618][ T8814] team0: Port device netdevsim0 removed
[  209.774674][ T8814] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  209.777540][ T8814] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  209.854249][ T8819] tipc: Started in network mode
[  209.857417][ T8819] tipc: Node identity 1e58ce1164e2, cluster identity 4711
[  209.860432][ T8819] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  209.865301][ T8819] ªªªªªª: renamed from syzkaller0
[  209.873314][ T8819] tipc: Disabling bearer <eth:syzkaller0>
[  209.947262][    T9] usb 5-1: USB disconnect, device number 18
[  210.094775][ T8831] delete_channel: no stack
[  210.154887][ T8833] nvme_fabrics: missing parameter 'transport=%s'
[  210.157392][ T8833] nvme_fabrics: missing parameter 'nqn=%s'
[  211.027747][ T8827] delete_channel: no stack
[  211.068970][ T5970] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  211.071772][ T5970] Bluetooth: hci4: Injecting HCI hardware error event
[  211.079821][ T5970] Bluetooth: hci4: hardware error 0x00
[  211.616690][ T8849] nvme_fabrics: missing parameter 'transport=%s'
[  211.625058][ T8849] nvme_fabrics: missing parameter 'nqn=%s'
[  212.241279][    C3] vkms_vblank_simulate: vblank timer overrun
[  212.509882][   T39] kauditd_printk_skb: 16 callbacks suppressed
[  212.570297][   T39] audit: type=1326 audit(1730643207.865:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8854 comm="syz.3.717" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x0
[  212.597272][ T8861] fuse: Bad value for 'fd'
[  212.611204][    C3] vkms_vblank_simulate: vblank timer overrun
[  213.307374][ T5970] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  213.495198][    C3] vkms_vblank_simulate: vblank timer overrun
[  213.554553][    C3] vkms_vblank_simulate: vblank timer overrun
[  213.677224][ T8868] kAFS: No cell specified
[  213.926227][ T2294] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  214.127097][ T2294] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  214.145730][ T2294] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  214.150346][ T2294] usb 8-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  214.154424][ T2294] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  214.205387][ T2294] usb 8-1: config 0 descriptor??
[  214.205817][    C3] vkms_vblank_simulate: vblank timer overrun
[  214.237062][    C3] vkms_vblank_simulate: vblank timer overrun
[  214.690083][ T2294] cm6533_jd 0003:0D8C:0022.000A: unknown main item tag 0x0
[  214.693335][ T2294] cm6533_jd 0003:0D8C:0022.000A: unknown main item tag 0x0
[  214.698112][ T2294] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/0003:0D8C:0022.000A/input/input27
[  214.760742][ T2294] cm6533_jd 0003:0D8C:0022.000A: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.3-1/input0
[  214.950831][ T1011] usb 8-1: USB disconnect, device number 17
[  216.135029][    C3] vkms_vblank_simulate: vblank timer overrun
[  216.232671][    C3] vkms_vblank_simulate: vblank timer overrun
[  216.347581][   T39] audit: type=1326 audit(1730643211.625:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.3.727" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000
[  216.369249][   T39] audit: type=1326 audit(1730643211.635:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.3.727" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000
[  216.394547][   T39] audit: type=1326 audit(1730643211.635:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.3.727" exe="/syz-executor" sig=0 arch=40000003 syscall=105 compat=1 ip=0xf7ff4579 code=0x7ffc0000
[  216.430522][   T39] audit: type=1326 audit(1730643211.635:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.3.727" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000
[  216.438589][   T39] audit: type=1326 audit(1730643211.635:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.3.727" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000
[  216.455961][   T39] audit: type=1326 audit(1730643211.635:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.3.727" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7ff4579 code=0x7ffc0000
[  216.467673][   T39] audit: type=1326 audit(1730643211.635:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.3.727" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000
[  216.495872][   T39] audit: type=1326 audit(1730643211.635:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.3.727" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4579 code=0x7ffc0000
[  216.505428][   T39] audit: type=1326 audit(1730643211.635:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8888 comm="syz.3.727" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7ff4579 code=0x7ffc0000
[  216.686775][ T8893] sch_fq: defrate 0 ignored.
[  216.783352][    C3] vkms_vblank_simulate: vblank timer overrun
[  216.892477][    C3] vkms_vblank_simulate: vblank timer overrun
[  217.411157][    C3] vkms_vblank_simulate: vblank timer overrun
[  217.567102][    C3] vkms_vblank_simulate: vblank timer overrun
[  218.159871][    C3] vkms_vblank_simulate: vblank timer overrun
[  218.207104][    C3] vkms_vblank_simulate: vblank timer overrun
[  218.241424][    C3] vkms_vblank_simulate: vblank timer overrun
[  218.279233][    C3] vkms_vblank_simulate: vblank timer overrun
[  218.542378][    C3] vkms_vblank_simulate: vblank timer overrun
[  219.412789][    C3] vkms_vblank_simulate: vblank timer overrun
[  219.463152][    C3] vkms_vblank_simulate: vblank timer overrun
[  219.545562][ T8930] block device autoloading is deprecated and will be removed.
[  220.143946][ T8942] netlink: 32 bytes leftover after parsing attributes in process `syz.1.743'.
[  220.695013][    C3] vkms_vblank_simulate: vblank timer overrun
[  220.775091][    C3] vkms_vblank_simulate: vblank timer overrun
[  221.411061][    C3] vkms_vblank_simulate: vblank timer overrun
[  221.443357][    C3] vkms_vblank_simulate: vblank timer overrun
[  221.669196][    C3] vkms_vblank_simulate: vblank timer overrun
[  222.059275][    C3] vkms_vblank_simulate: vblank timer overrun
[  222.603018][    C3] vkms_vblank_simulate: vblank timer overrun
[  222.683089][    C3] vkms_vblank_simulate: vblank timer overrun
[  222.959073][    C3] vkms_vblank_simulate: vblank timer overrun
[  223.272164][ T8966] openvswitch: netlink: Actions may not be safe on all matching packets
[  223.810992][    C3] vkms_vblank_simulate: vblank timer overrun
[  223.859353][    C3] vkms_vblank_simulate: vblank timer overrun
[  224.540267][ T8991] FAULT_INJECTION: forcing a failure.
[  224.540267][ T8991] name failslab, interval 1, probability 0, space 0, times 0
[  224.552505][ T8991] CPU: 2 UID: 0 PID: 8991 Comm: syz.4.755 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  224.558180][ T8991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  224.565829][ T8991] Call Trace:
[  224.569448][ T8991]  <TASK>
[  224.571071][ T8991]  dump_stack_lvl+0x16c/0x1f0
[  224.579554][ T8991]  should_fail_ex+0x497/0x5b0
[  224.581715][ T8991]  ? fs_reclaim_acquire+0xae/0x150
[  224.584278][ T8991]  should_failslab+0xc2/0x120
[  224.586195][ T8991]  kmem_cache_alloc_node_noprof+0x71/0x310
[  224.589581][ T8991]  ? __alloc_skb+0x2b3/0x380
[  224.606465][ T8991]  __alloc_skb+0x2b3/0x380
[  224.608758][ T8991]  ? __pfx___alloc_skb+0x10/0x10
[  224.610965][ T8991]  ? tcp_send_mss+0x159/0x2c0
[  224.612831][ T8991]  mptcp_sendmsg_frag+0x4e4/0x2f80
[  224.614972][ T8991]  ? lock_acquire.part.0+0x11b/0x380
[  224.618367][ T8991]  ? __pfx_mptcp_sendmsg_frag+0x10/0x10
[  224.636040][ T8991]  __subflow_push_pending+0x39a/0xba0
[  224.638236][ T8991]  __mptcp_push_pending+0x2db/0x560
[  224.640587][ T8991]  ? __pfx___mptcp_push_pending+0x10/0x10
[  224.643767][ T8991]  ? __virt_addr_valid+0x5e/0x590
[  224.646196][ T8991]  ? const_folio_flags.constprop.0+0x56/0x150
[  224.648711][ T8991]  ? __phys_addr_symbol+0x30/0x80
[  224.650531][ T8991]  ? __check_object_size+0x488/0x710
[  224.652168][ T8991]  mptcp_sendmsg+0x1960/0x1f20
[  224.653617][ T8991]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  224.671524][ T8991]  ? __pfx_aa_sk_perm+0x10/0x10
[  224.674021][ T8991]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  224.675732][ T8991]  inet_sendmsg+0x119/0x140
[  224.677193][ T8991]  __sys_sendto+0x426/0x4d0
[  224.678633][ T8991]  ? __pfx___sys_sendto+0x10/0x10
[  224.680446][ T8991]  ? __might_fault+0x13b/0x190
[  224.682473][ T8991]  __do_compat_sys_socketcall+0x5e2/0x700
[  224.684398][ T8991]  ? __fget_files+0x244/0x3f0
[  224.686193][ T8991]  ? __pfx___do_compat_sys_socketcall+0x10/0x10
[  224.702150][ T8991]  ? fput+0x30/0x390
[  224.703963][ T8991]  __do_fast_syscall_32+0x73/0x120
[  224.705889][ T8991]  do_fast_syscall_32+0x32/0x80
[  224.707840][ T8991]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  224.710121][ T8991] RIP: 0023:0xf749e579
[  224.711788][ T8991] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  224.735157][ T8991] RSP: 002b:00000000f5785430 EFLAGS: 00000293 ORIG_RAX: 0000000000000066
[  224.739181][ T8991] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f5785444
[  224.742118][ T8991] RDX: 0000000000000000 RSI: 00000000f5785560 RDI: 00000000f748cff4
[  224.746389][ T8991] RBP: 00000000f5785560 R08: 0000000000000000 R09: 0000000000000000
[  224.754001][ T8991] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  224.771850][ T8991] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  224.773974][ T8991]  </TASK>
[  224.818450][ T8998] netlink: 40 bytes leftover after parsing attributes in process `syz.3.758'.
[  224.898269][    C3] vkms_vblank_simulate: vblank timer overrun
[  225.020271][    C3] vkms_vblank_simulate: vblank timer overrun
[  225.075120][    C3] vkms_vblank_simulate: vblank timer overrun
[  225.966990][    C3] vkms_vblank_simulate: vblank timer overrun
[  226.047114][    C3] vkms_vblank_simulate: vblank timer overrun
[  226.191146][    C3] vkms_vblank_simulate: vblank timer overrun
[  226.390984][    C3] vkms_vblank_simulate: vblank timer overrun
[  226.436360][ T9021] netlink: 'syz.3.764': attribute type 10 has an invalid length.
[  226.515917][ T9021] 8021q: adding VLAN 0 to HW filter on device batadv0
[  226.523561][ T9021] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  226.550643][ T9025] netlink: 'syz.3.764': attribute type 10 has an invalid length.
[  226.567595][ T9021] No source specified
[  226.609882][ T9025] 8021q: adding VLAN 0 to HW filter on device bond0
[  226.658882][ T9025] team0: Port device bond0 added
[  226.713572][ T9027] usb 2-1: USB disconnect, device number 2
[  226.944629][ T9016] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  226.969977][ T9016] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  227.158196][ T9016] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  227.190779][    C3] vkms_vblank_simulate: vblank timer overrun
[  227.369519][ T9016] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  227.373750][ T9016] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  227.629029][ T9016] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  227.635188][ T9016] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  227.639555][ T9016] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  227.647971][ T9016] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  227.741560][ T9047] fuse: Bad value for 'fd'
[  227.977811][    C3] vkms_vblank_simulate: vblank timer overrun
[  228.224572][    C3] vkms_vblank_simulate: vblank timer overrun
[  228.460150][    C3] vkms_vblank_simulate: vblank timer overrun
[  228.512084][ T5970] Bluetooth: hci1: command 0x0406 tx timeout
[  229.399114][ T5970] Bluetooth: hci3: command 0x0406 tx timeout
[  229.640531][    C3] vkms_vblank_simulate: vblank timer overrun
[  229.706724][ T5970] Bluetooth: hci2: command 0x0406 tx timeout
[  230.012062][    C3] vkms_vblank_simulate: vblank timer overrun
[  230.274940][    C3] vkms_vblank_simulate: vblank timer overrun
[  230.586366][ T5970] Bluetooth: hci1: command 0x0406 tx timeout
[  231.473529][ T5970] Bluetooth: hci3: command 0x0406 tx timeout
[  231.796241][ T5970] Bluetooth: hci2: command 0x0406 tx timeout
[  232.145984][   T66] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  232.197032][   T66] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  232.226723][   T66] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  232.256083][   T66] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  232.262909][   T66] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  232.285480][   T66] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  232.676950][   T66] Bluetooth: hci1: command 0x0406 tx timeout
[  232.749139][ T9055] chnl_net:caif_netlink_parms(): no params data found
[  233.305550][ T9055] bridge0: port 1(bridge_slave_0) entered blocking state
[  233.319180][ T9055] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.321610][ T9055] bridge_slave_0: entered allmulticast mode
[  233.324066][ T9055] bridge_slave_0: entered promiscuous mode
[  233.347382][ T9055] bridge0: port 2(bridge_slave_1) entered blocking state
[  233.350273][ T9055] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.353650][ T9055] bridge_slave_1: entered allmulticast mode
[  233.363941][ T9055] bridge_slave_1: entered promiscuous mode
[  233.504760][ T9055] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  233.515061][ T9055] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  233.547052][   T66] Bluetooth: hci3: command 0x0406 tx timeout
[  233.651591][ T9055] team0: Port device team_slave_0 added
[  233.660144][ T9055] team0: Port device team_slave_1 added
[  233.881394][   T66] Bluetooth: hci2: command 0x0406 tx timeout
[  233.951057][ T9055] batman_adv: batadv0: Adding interface: batadv_slave_0
[  233.953981][ T9055] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  233.983267][ T9055] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  233.993613][ T9055] batman_adv: batadv0: Adding interface: batadv_slave_1
[  234.016592][ T9055] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  234.042205][ T9055] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  234.351699][   T66] Bluetooth: hci0: command tx timeout
[  234.357240][ T9055] hsr_slave_0: entered promiscuous mode
[  234.378962][ T9055] hsr_slave_1: entered promiscuous mode
[  234.385778][ T9055] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  234.390038][ T9055] Cannot create hsr debugfs directory
[  234.889719][ T9055] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  234.907379][ T9055] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  234.994718][ T9055] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  235.061445][ T9055] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  235.252807][   T58] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.478384][   T58] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.649193][   T58] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.685577][ T9055] 8021q: adding VLAN 0 to HW filter on device bond0
[  235.722437][ T9055] 8021q: adding VLAN 0 to HW filter on device team0
[  235.805196][   T58] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.837912][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.841199][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  235.879201][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.883785][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[  236.186291][ T9055] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  236.195887][ T9055] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  236.361993][   T58] bridge_slave_1: left allmulticast mode
[  236.364291][   T58] bridge_slave_1: left promiscuous mode
[  236.371936][   T58] bridge0: port 2(bridge_slave_1) entered disabled state
[  236.412862][   T58] bridge_slave_0: left allmulticast mode
[  236.448634][   T66] Bluetooth: hci0: command tx timeout
[  236.455958][   T58] bridge_slave_0: left promiscuous mode
[  236.478673][   T58] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.408059][ T9070] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  238.363573][   T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  238.388076][   T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  238.414851][   T58] bond0 (unregistering): Released all slaves
[  238.540319][   T66] Bluetooth: hci0: command tx timeout
[  238.910187][ T9055] 8021q: adding VLAN 0 to HW filter on device batadv0
[  239.309155][   T58] IPVS: stopping master sync thread 8688 ...
[  240.262244][ T9055] veth0_vlan: entered promiscuous mode
[  240.370989][   T58] ------------[ cut here ]------------
[  240.373799][   T58] Have pending ack frames!
[  240.403576][   T58] WARNING: CPU: 1 PID: 58 at net/mac80211/main.c:1703 ieee80211_free_ack_frame+0x5a/0x60
[  240.408792][   T58] Modules linked in:
[  240.410499][   T58] CPU: 1 UID: 0 PID: 58 Comm: kworker/u32:3 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  240.419918][   T58] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  240.440934][   T58] Workqueue: netns cleanup_net
[  240.443851][   T58] RIP: 0010:ieee80211_free_ack_frame+0x5a/0x60
[  240.446369][   T58] Code: 31 ff e8 19 da 6e fe 31 c0 5b 5d c3 cc cc cc cc e8 0b 23 11 f7 c6 05 89 3a 8a 05 01 90 48 c7 c7 40 2d 9d 8c e8 67 a0 d2 f6 90 <0f> 0b 90 90 eb c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  240.452362][   T58] RSP: 0018:ffffc9000078f920 EFLAGS: 00010286
[  240.455767][   T58] RAX: 0000000000000000 RBX: ffff888022451a40 RCX: ffffffff814e24b9
[  240.462109][ T9055] veth1_vlan: entered promiscuous mode
[  240.467163][   T58] RDX: ffff88801e922440 RSI: ffffffff814e24c6 RDI: 0000000000000001
[  240.467203][   T58] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  240.467216][   T58] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  240.467228][   T58] R13: ffffffff8a7b8260 R14: 0000000080000000 R15: 0000000000000000
[  240.467240][   T58] FS:  0000000000000000(0000) GS:ffff88802b500000(0000) knlGS:0000000000000000
[  240.467271][   T58] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  240.467285][   T58] CR2: 0000556154118600 CR3: 0000000065032000 CR4: 0000000000352ef0
[  240.467298][   T58] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  240.467309][   T58] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  240.467321][   T58] Call Trace:
[  240.467328][   T58]  <TASK>
[  240.467336][   T58]  ? __warn+0xea/0x3d0
[  240.467363][   T58]  ? hlock_class+0x4e/0x130
[  240.467384][   T58]  ? ieee80211_free_ack_frame+0x5a/0x60
[  240.467405][   T58]  ? report_bug+0x3c0/0x580
[  240.467435][   T58]  ? handle_bug+0x54/0xa0
[  240.467453][   T58]  ? exc_invalid_op+0x17/0x50
[  240.467471][   T58]  ? asm_exc_invalid_op+0x1a/0x20
[  240.467496][   T58]  ? __pfx_ieee80211_free_ack_frame+0x10/0x10
[  240.467519][   T58]  ? __warn_printk+0x199/0x350
[  240.467542][   T58]  ? __warn_printk+0x1a6/0x350
[  240.467564][   T58]  ? ieee80211_free_ack_frame+0x5a/0x60
[  240.467584][   T58]  idr_for_each+0x141/0x270
[  240.467603][   T58]  ? __pfx_idr_for_each+0x10/0x10
[  240.467621][   T58]  ? kfree+0x14f/0x4b0
[  240.467641][   T58]  ? kfree+0x14f/0x4b0
[  240.467659][   T58]  ? kfree_const+0x55/0x60
[  240.467684][   T58]  ieee80211_free_hw+0xa6/0x2f0
[  240.467702][   T58]  ? kobject_put+0x210/0x5a0
[  240.467724][   T58]  mac80211_hwsim_del_radio+0x2cc/0x370
[  240.467749][   T58]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[  240.467772][   T58]  ? hwsim_exit_net+0x2f3/0x6d0
[  240.467797][   T58]  ? __local_bh_enable_ip+0xa4/0x120
[  240.467824][   T58]  hwsim_exit_net+0x33f/0x6d0
[  240.467850][   T58]  ? __pfx_hwsim_exit_net+0x10/0x10
[  240.467876][   T58]  ? ip_vs_sync_net_cleanup+0x72/0xb0
[  240.467903][   T58]  ? __ip_vs_dev_cleanup_batch+0xb1/0x290
[  240.467929][   T58]  ? __pfx_hwsim_exit_net+0x10/0x10
[  240.467954][   T58]  ops_exit_list+0xb0/0x180
[  240.467976][   T58]  cleanup_net+0x5b7/0xb40
[  240.467997][   T58]  ? __pfx_cleanup_net+0x10/0x10
[  240.468015][   T58]  ? trace_lock_acquire+0x14a/0x1d0
[  240.468036][   T58]  ? process_one_work+0x8bb/0x1b30
[  240.468063][   T58]  ? lock_acquire+0x2f/0xb0
[  240.468086][   T58]  ? process_one_work+0x8bb/0x1b30
[  240.468114][   T58]  process_one_work+0x958/0x1b30
[  240.468146][   T58]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  240.468172][   T58]  ? __pfx_process_one_work+0x10/0x10
[  240.468204][   T58]  ? assign_work+0x1a0/0x250
[  240.468230][   T58]  worker_thread+0x6c8/0xf00
[  240.468262][   T58]  ? __kthread_parkme+0x148/0x220
[  240.468283][   T58]  ? __pfx_worker_thread+0x10/0x10
[  240.468308][   T58]  kthread+0x2c1/0x3a0
[  240.468325][   T58]  ? _raw_spin_unlock_irq+0x23/0x50
[  240.468348][   T58]  ? __pfx_kthread+0x10/0x10
[  240.468368][   T58]  ret_from_fork+0x45/0x80
[  240.468384][   T58]  ? __pfx_kthread+0x10/0x10
[  240.468403][   T58]  ret_from_fork_asm+0x1a/0x30
[  240.468438][   T58]  </TASK>
[  240.468447][   T58] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  240.468457][   T58] CPU: 1 UID: 0 PID: 58 Comm: kworker/u32:3 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[  240.468477][   T58] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  240.468489][   T58] Workqueue: netns cleanup_net
[  240.468508][   T58] Call Trace:
[  240.468513][   T58]  <TASK>
[  240.468519][   T58]  dump_stack_lvl+0x3d/0x1f0
[  240.468536][   T58]  panic+0x71d/0x800
[  240.468558][   T58]  ? __pfx_panic+0x10/0x10
[  240.468579][   T58]  ? show_trace_log_lvl+0x29d/0x3d0
[  240.468602][   T58]  ? check_panic_on_warn+0x1f/0xb0
[  240.468727][   T58]  ? ieee80211_free_ack_frame+0x5a/0x60
[  240.468752][   T58]  check_panic_on_warn+0xab/0xb0
[  240.468781][   T58]  __warn+0xf6/0x3d0
[  240.468802][   T58]  ? hlock_class+0x4e/0x130
[  240.468821][   T58]  ? ieee80211_free_ack_frame+0x5a/0x60
[  240.468839][   T58]  report_bug+0x3c0/0x580
[  240.468869][   T58]  handle_bug+0x54/0xa0
[  240.468885][   T58]  exc_invalid_op+0x17/0x50
[  240.468908][   T58]  asm_exc_invalid_op+0x1a/0x20
[  240.468932][   T58] RIP: 0010:ieee80211_free_ack_frame+0x5a/0x60
[  240.468952][   T58] Code: 31 ff e8 19 da 6e fe 31 c0 5b 5d c3 cc cc cc cc e8 0b 23 11 f7 c6 05 89 3a 8a 05 01 90 48 c7 c7 40 2d 9d 8c e8 67 a0 d2 f6 90 <0f> 0b 90 90 eb c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  240.468968][   T58] RSP: 0018:ffffc9000078f920 EFLAGS: 00010286
[  240.468983][   T58] RAX: 0000000000000000 RBX: ffff888022451a40 RCX: ffffffff814e24b9
[  240.468993][   T58] RDX: ffff88801e922440 RSI: ffffffff814e24c6 RDI: 0000000000000001
[  240.469003][   T58] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  240.469012][   T58] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[  240.469022][   T58] R13: ffffffff8a7b8260 R14: 0000000080000000 R15: 0000000000000000
[  240.469036][   T58]  ? __pfx_ieee80211_free_ack_frame+0x10/0x10
[  240.469061][   T58]  ? __warn_printk+0x199/0x350
[  240.469083][   T58]  ? __warn_printk+0x1a6/0x350
[  240.469106][   T58]  idr_for_each+0x141/0x270
[  240.469165][   T58]  ? __pfx_idr_for_each+0x10/0x10
[  240.469186][   T58]  ? kfree+0x14f/0x4b0
[  240.469205][   T58]  ? kfree+0x14f/0x4b0
[  240.469221][   T58]  ? kfree_const+0x55/0x60
[  240.469244][   T58]  ieee80211_free_hw+0xa6/0x2f0
[  240.469260][   T58]  ? kobject_put+0x210/0x5a0
[  240.469283][   T58]  mac80211_hwsim_del_radio+0x2cc/0x370
[  240.469309][   T58]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[  240.469334][   T58]  ? hwsim_exit_net+0x2f3/0x6d0
[  240.469357][   T58]  ? __local_bh_enable_ip+0xa4/0x120
[  240.469380][   T58]  hwsim_exit_net+0x33f/0x6d0
[  240.469404][   T58]  ? __pfx_hwsim_exit_net+0x10/0x10
[  240.469426][   T58]  ? ip_vs_sync_net_cleanup+0x72/0xb0
[  240.469452][   T58]  ? __ip_vs_dev_cleanup_batch+0xb1/0x290
[  240.469476][   T58]  ? __pfx_hwsim_exit_net+0x10/0x10
[  240.469500][   T58]  ops_exit_list+0xb0/0x180
[  240.469520][   T58]  cleanup_net+0x5b7/0xb40
[  240.469541][   T58]  ? __pfx_cleanup_net+0x10/0x10
[  240.469561][   T58]  ? trace_lock_acquire+0x14a/0x1d0
[  240.469579][   T58]  ? process_one_work+0x8bb/0x1b30
[  240.469605][   T58]  ? lock_acquire+0x2f/0xb0
[  240.469627][   T58]  ? process_one_work+0x8bb/0x1b30
[  240.469716][   T58]  process_one_work+0x958/0x1b30
[  240.469746][   T58]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  240.469769][   T58]  ? __pfx_process_one_work+0x10/0x10
[  240.469799][   T58]  ? assign_work+0x1a0/0x250
[  240.469823][   T58]  worker_thread+0x6c8/0xf00
[  240.469853][   T58]  ? __kthread_parkme+0x148/0x220
[  240.469875][   T58]  ? __pfx_worker_thread+0x10/0x10
[  240.469898][   T58]  kthread+0x2c1/0x3a0
[  240.469924][   T58]  ? _raw_spin_unlock_irq+0x23/0x50
[  240.469949][   T58]  ? __pfx_kthread+0x10/0x10
[  240.469970][   T58]  ret_from_fork+0x45/0x80
[  240.469988][   T58]  ? __pfx_kthread+0x10/0x10
[  240.470009][   T58]  ret_from_fork_asm+0x1a/0x30
[  240.470050][   T58]  </TASK>
[  240.471898][   T58] Kernel Offset: disabled

VM DIAGNOSIS:
14:13:55  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000003 RDX=0000000000000000
RSI=ffffffff813c4d95 RDI=ffffffff8d81cb98 RBP=0000000000000003 RSP=ffffc90000007e98
R8 =ffff88807ffc0240 R9 =fffff52000eeaf71 R10=ffffc90007757b8b R11=0000000000000000
R12=0000000000000008 R13=ffffc90007757b88 R14=0000000000000094 R15=dffffc0000000000
RIP=ffffffff813c4df4 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055f7870765e0 CR3=000000004a80a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000026600000000 0000000800000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000004f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85046005 RDI=ffffffff9a6432e0 RBP=ffffffff9a6432a0 RSP=ffffc9000078f2b8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000004f R14=ffffffff85045fa0 R15=0000000000000000
RIP=ffffffff8504602f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 000fffff 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 000fffff 00000000
FS =0000 0000000000000000 000fffff 00000000
GS =0000 ffff88802b500000 000fffff 00000000
LDT=0000 0000000000000000 000fffff 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000556154118600 CR3=0000000065032000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000ff00000000 00000000ff000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=fffffbfff2d32788 RBX=fffffbfff2d32789 RCX=ffffffff8169e56b RDX=fffffbfff2d32789
RSI=0000000000000008 RDI=ffffffff96993c40 RBP=fffffbfff2d32788 RSP=ffffc900222c7390
R8 =0000000000000000 R9 =fffffbfff2d32788 R10=ffffffff96993c47 R11=0000000000000000
R12=dffffc0000000000 R13=0000000000000001 R14=0000000000000003 R15=ffff888026068000
RIP=ffffffff81edf785 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005640a0e9b000 CR3=000000004c090000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=7099f0f17099f0f1 7099f0f17099f0f1 7099f0f17099f0f1 7099f0f17099f0f1 7099f0f17099f0f1 7099f0f17099f0f1 7099f0f17099f0f1 7099f0f17099f0f1
ZMM22=17e5567517e55675 17e5567517e55675 17e5567517e55675 17e5567517e55675 17e5567517e55675 17e5567517e55675 17e5567517e55675 17e5567517e55675
ZMM23=312c18f6312c18f6 312c18f6312c18f6 312c18f6312c18f6 312c18f6312c18f6 312c18f6312c18f6 312c18f6312c18f6 312c18f6312c18f6 312c18f6312c18f6
ZMM24=bb3f76fabb3f76fa bb3f76fabb3f76fa bb3f76fabb3f76fa bb3f76fabb3f76fa bb3f76fabb3f76fa bb3f76fabb3f76fa bb3f76fabb3f76fa bb3f76fabb3f76fa
ZMM25=af491759af491759 af491759af491759 af491759af491759 af491759af491759 af491759af491759 af491759af491759 af491759af491759 af491759af491759
ZMM26=118114da118114da 118114da118114da 118114da118114da 118114da118114da 118114da118114da 118114da118114da 118114da118114da 118114da118114da
ZMM27=d9c0200ed9c0200e d9c0200ed9c0200e d9c0200ed9c0200e d9c0200ed9c0200e d9c0200ed9c0200e d9c0200ed9c0200e d9c0200ed9c0200e d9c0200ed9c0200e
ZMM28=000000300000002f 0000002e0000002d 0000002c0000002b 0000002a00000029 0000002800000027 0000002600000025 0000002400000023 0000002200000021
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=9207000092070000 9207000092070000 9207000092070000 9207000092070000 9207000092070000 9207000092070000 9207000092070000 9207000092070000
info registers vcpu 3

CPU#3
RAX=0000000000040000 RBX=0000000000000003 RCX=ffffc90006592000 RDX=0000000000040000
RSI=ffffffff813c485b RDI=0000000000000000 RBP=ffffc90007757b88 RSP=ffffc90007757840
R8 =0000000000000000 R9 =0000000000000003 R10=0000000000000003 R11=0000000000000000
R12=0000000000000003 R13=0000000000000003 R14=ffff88802b73fdc0 R15=fffff52000eeaf71
RIP=ffffffff813c485c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000556180542000 CR3=00000000235d0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000000003fff Opmask02=00000000bfffbfff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000ff00000000 00000000000000ff
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e2e2e2e2e2e2e2e 2e2e2e2e2e2e2e2e
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e2e2e2e2e2e2e2e 2e2e2e2e2e2e2e2e
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000ff00000000 00000000000000ff
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 25002f74656e2f73 73616c632f737973 2f002f74656e2f73 79732f636f72702f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0030303100000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000d0d0c0d0d0d0d 0d0d0d0f0d45514a 0043000d004e5850 5c535b5413495853
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a1 0000000000000000 376874652f74656e 2f306d6973766564
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005564d6217f23 0000000000000041 00000000316e616c
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 00005561e55f9233 73656d5f70636864
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 725f0ff2edd54661 72610fedfbfb737f 65677573f77fffff 7f7f7d7f75777965
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 0000726565666965
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 00006d5f65636864
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020