last executing test programs:

14m19.445252221s ago: executing program 1 (id=310):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = openat$sr(0xffffff9c, &(0x7f0000000000), 0xa0000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000c40)={0x50, r5, 0x1, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x2c, 0x33, @assoc_req={{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1}, {0x5}, @device_a, @device_a, @random="f673e950fbff", {0x4, 0x800}, @value=@ver_80211n={0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1}}, 0x20, 0x2, {0x0, 0x6, @default_ibss_ssid}, @void, @void}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x8, 0xcd, [0x0, 0xe]}]}, 0x50}, 0x1, 0x0, 0x0, 0x6a845ecb4f20be71}, 0x24008080)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r1, 0x0, 0x52, 0x0, &(0x7f0000000040)="344631e864c9f7d223d41159c304fc8180932e0936f11023ec2cad00c7b4216b6dac0e64e968794686942a35338de95abed2225d1a84b47ceb27401bccaacfc55880e3c3d7baef4c68a2e5d8bb05ceaa9f95", 0x0, 0x8, 0x0, 0xd3, 0x54, &(0x7f00000003c0)="0587c5531af29060c77ca4cc620513f4f9d7923c67dca94db59530fa5ae3dbf3d7dde2e7c494bede9cdf15a6069b2e762ae925459c9ac862f58579ff8d56c0608af0d900d6150edaf1bb39bb146fea70c34e4db8e13e7e3a0f52fb4ef7d502b2a2b53fd4028363336a2a191d8e27eb69a9c161527cf0426fdad365c2219c44f58134dcd0730837c83b14485b9345c647425a0aa3c2f20c3557527434a77a8a9fcf7504f11213d504450906961ccd3f51c4c8bd4b6c1ea42da6d05202a1db05e8b94d531d158c0da4c705bdb7263300f4b7bfec", &(0x7f0000000180)="ea36e876f72b2b282b028e445286e38210986e3289cff507ab09c6313047a634e2eaf5b0b6440fdaf5ebb90e52e1dbdfea11abf61e49c161f3e02fd96f8c2e455f80a2622222b52d48e0f0492dcbbb62e824e095", 0x4}, 0x4c)
getsockopt$inet_buf(r0, 0x0, 0x23, &(0x7f0000000540)=""/79, &(0x7f00000005c0)=0x4f)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
r8 = syz_open_dev$media(&(0x7f0000000000), 0x0, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(r8, 0xc01c7c02, &(0x7f0000000240)={0x80000000, &(0x7f00000000c0), &(0x7f0000000100)=[{{<r9=>0x80000000}}]})
ioctl$MEDIA_IOC_ENUM_LINKS(r8, 0xc01c7c02, &(0x7f0000000280)={r9, 0x0, &(0x7f00000002c0)})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={<r10=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r7, @ANYBLOB="01000000000000000000010000000c0005006c000000000000000c0002000000000000000000040007800c000800000000000000000008000100000000004400078008000100", @ANYRES32, @ANYBLOB="930eaed2b2458a879ff601e138000000", @ANYRES32=r10, @ANYBLOB="64800400", @ANYBLOB="08000100", @ANYBLOB="06"], 0x90}}, 0x0)

14m19.387580883s ago: executing program 1 (id=311):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) (async)
r0 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 32)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001c80)={&(0x7f0000001a00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x2}}, @struct]}}, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) (async)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r2, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e21}}, 0x24)
sendmmsg(r2, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=[{0x18, 0x110, 0x1, "f1"}], 0x18, 0xe000}, 0x5}], 0x1, 0x42094) (async)
recvmsg$can_raw(r2, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x100)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0) (async, rerun: 32)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) (rerun: 32)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0) (async)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x25}], {0x95, 0x0, 0x700}}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) (async)
r6 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0) (async)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000d00)=[{{&(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000004c0)=[{&(0x7f0000000400)="2743c45cd15e0455638244066ef4ebc7d51f1faaa73d7a26a4b00c0c3bb4ca028e69fc02a8167ed9af7457383cc081026af4fb74dd089051a7d8aa9ff73df8ed4c21268fd84d6b1d77bb261a05a0a9bc61419e93aadff86ee3c44a398ef6b206bc1c629350d89ed8bc681842a785e99b9f14fa33b22e3147d220d64fb9acba4f66a55dbf2a0cdc3a2587331ff7250fff9ff2", 0x92}, {&(0x7f0000000500)="c64bd9b5562e7aa969a7c446d216cfa8873869618ec58dedea390ec54a959e8c6e8e5f937cfbedb52d", 0x29}], 0x2, &(0x7f0000001100)=ANY=[@ANYRES16=r0, @ANYRES32, @ANYRES32=r4, @ANYRES32=r3, @ANYBLOB="180000000100000002000000", @ANYRESOCT=r6, @ANYRES32=0xee01, @ANYRES32, @ANYRES16, @ANYRES32, @ANYRES32=r3, @ANYRES32=r3, @ANYRES32, @ANYRES32=r5, @ANYBLOB="180000000100000002000000", @ANYRES32=r6, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="200000000100000001000000", @ANYRES32, @ANYRESOCT=r1, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="2c00000001000000010000", @ANYRES32, @ANYRES32, @ANYRESDEC=r0, @ANYRES32=r5, @ANYRES32, @ANYRES32=r5, @ANYRES32, @ANYBLOB="180000000100000002000000", @ANYRES32=r6, @ANYRESOCT=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000002000000", @ANYRES32=r6, @ANYRES32=0x0, @ANYRES32=0x0], 0xfc, 0x20008040}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000900)="b25de18a0d2cfcb8227d703812ffcc98f67e346ac17202f6479fd6611a510573bbc59ee9820fcff2476403594b599981771fb5f31c71", 0x36}, {&(0x7f0000000940)="a8b1dc5a0c314a56afd729a79754018dfc796de05949616a1586546676224e1bf187a90a8778afd2dd352bb7ef4c1bbc69365e1e02451aeacb0050cb08452e157a9c83183ed363be728e92dee974f993ae1542", 0x53}, {&(0x7f00000009c0)='?', 0x1}, {&(0x7f0000000a00)="b49b4038da78a7ad5f545eb060bb2b019618e9fe7448a64fddfee65436141d89dc5f5ed27fa5bdea363158b6a07e65d0823a0bec5dcf188f15dd4bca3c607257972345993b563aeb97975bf66ed65ee2b2451b2fdf72298d9aa1d83960acd47b0d0cf8672402d1b977b412da7a2d1252afe1304151ad76af0d77ef09980e02b1c1cb409e6ec363a5f0eb676fddd276bfd528cbb497f140", 0x97}, {&(0x7f0000000b80)="4d62a95cb52f38bba7196372b321a8c311243aa6ca323deb20955d0294ecff7b37c77b10f8c5282d75712f9affc8602ab4aac04c7dd3ace7ef2b2d42193fe0a7bfd6d2624723f5d3c10d858df48a94e117ce5d2fca8b0cf786461180dd52ef11538d49919613e178ddbc0ea83e366452c9fa1b4d1b858cfc41a550afe46d6d0d3dc5bd7b7bc4e59a0206703b3a40852b5ecf8d6b2008175f7890a54da61329e2c320d2cc03d7acf286a93bdb1ccb97fef7ecfd53be6ebb26fe63860cf81caf800ff99eec794108fb6dfa3e66196a923ad5e52cbf4a9dbcf20c9d28f3319f9605bdf5d81ad8e7487b9a378ce78b772108af8b406ba5e367", 0xf7}, {&(0x7f0000000ac0)="c23e45adbfb46f5e16698a97ef1c3a5a310d2b97d6aa543126291980e124d5bcaafd4ee6dd404528d5b5f29c01d9cb95f20c00835118696d79d9f282d355292d94ac0b37db60f64da13e81e7941fe9e573cd187b5932ad3291970131a504a2b354e9904ed6ee7b98467ce4bea87ef3d799b931b9acfc429ee3f969c0bb79cd", 0x7f}], 0x6, &(0x7f0000000cc0), 0x0, 0x20040042}}], 0x2, 0x44800) (async)
readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000080)=""/3, 0x3}], 0x1) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="440fdd544f9b0176aeeef844967f4cbb2a56842c683bd04fcb9b85331f3e5d78605f7e72a5dcdbd67196ca41d2aea01e4bb568a09730c70000000500674d363d207a4b9194175a14bc040ef5a5a34989b90decd8d5df4acf3b486829fadaf16d47268ec47f6e0c60c8cf5e4da2824c50185a2dc218846279", @ANYBLOB, @ANYRESDEC], 0x7c}, 0x1, 0x0, 0x0, 0x4008841}, 0x10) (async, rerun: 64)
ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x802c550a, &(0x7f0000000600)=ANY=[]) (async, rerun: 64)
tkill(r6, 0xb)

14m19.387358439s ago: executing program 1 (id=312):
r0 = openat$uinput(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_INIT(r3, &(0x7f0000001740)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x0, 0xf1}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@nodevmap}], [], 0x6b}})
ioctl$UI_SET_PHYS(r0, 0x4004556c, &(0x7f00000000c0)='syz1\x00')

14m19.307794773s ago: executing program 1 (id=313):
r0 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = socket(0x2, 0x2, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0x80002001})
epoll_pwait(r2, &(0x7f0000000080)=[{}], 0x1, 0x80000001, 0x0, 0x0)
shutdown(r1, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r4=>r0, {0x5}}, './file0/file0\x00'})
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000280)={<r5=>0xffffffffffffffff}, 0x13f, 0xa}}, 0x20)
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f00000006c0)={[{@nr_blocks={'nr_blocks', 0x3d, [0x74, 0x36]}}]})
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(0xffffffffffffffff, &(0x7f0000000380)={0x4, 0x8, 0xfa00, {r5, 0x2}}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000540)=@bpf_tracing={0x1a, 0xf, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000006000000000000000000001a2d82cd39", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f00000001c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x25ffa, r3, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000000)={0x1, 0x6ab9f07c})
llistxattr(&(0x7f00000000c0)='./cgroup/cgroup.procs\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x2081c80, 0x0)
mount$bind(0x0, &(0x7f0000000500)='./file0\x00', 0x0, 0x20000, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', r6, &(0x7f00000000c0)='./file0/file0\x00', 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), r1)
syz_emit_ethernet(0x66, &(0x7f0000000c00)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00\x00\b', 0x30, 0x3a, 0xff, @local, @mcast2, {[], @ndisc_redir={0x87, 0x0, 0x0, '\x00', @local, @mcast2={0xe}, [{0x1, 0x1, "2025b07f3c58"}]}}}}}}, 0x0)

14m19.11131096s ago: executing program 1 (id=315):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20040, 0x0)
prlimit64(0x0, 0x7, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000a10000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x12, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r3, 0x407, 0x2000000)
socket$alg(0x26, 0x5, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
pipe(&(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$inet(r7, &(0x7f0000004580)=[{{0x0, 0x0, &(0x7f0000000a80)=[{&(0x7f0000000540)="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", 0x19e}, {&(0x7f0000000ac0)="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", 0xe63}], 0x2}}, {{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)="0ad0", 0x2}], 0x1}}], 0x2, 0x40008a1)
splice(r6, 0x0, r5, 0x0, 0x10000008ebc, 0x0)
splice(r4, 0x0, r7, 0x0, 0x8000000000025a5, 0x0)
recvmmsg(r1, &(0x7f00000001c0), 0x0, 0x2, 0x0)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0x4003247, 0x0, 0x0, 0x1d0}, &(0x7f0000000280), &(0x7f0000000200))
r8 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r8, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r8, 0x3)
r9 = socket$inet_dccp(0x2, 0x6, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x8081}, 0x0)
connect$inet(r9, &(0x7f0000772000)={0x2, 0x4e25, @private=0xa010102}, 0x10)
accept4(r8, 0x0, 0x0, 0x0)

14m18.816498688s ago: executing program 1 (id=319):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r1, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB="2d000e0080000000ffffffffffff08021100000008021100070000000000000000000000640000002503000000000000080026006c09"], 0x80}}, 0x0)

14m18.679295436s ago: executing program 32 (id=319):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r1, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB="2d000e0080000000ffffffffffff08021100000008021100070000000000000000000000640000002503000000000000080026006c09"], 0x80}}, 0x0)

12m39.061851802s ago: executing program 2 (id=984):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000080), &(0x7f0000000400)='./file0\x00', &(0x7f00000004c0), 0x800000, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000280)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)

12m38.986310386s ago: executing program 2 (id=985):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00'}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0xb0380, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mount(0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}h\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=@newtaction={0x68, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x1, 0x400, 0xfffffff7}, 0x2}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x68}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$ENABLE_STATS(0x20, &(0x7f0000000000), 0x4)
syz_emit_ethernet(0x36, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000001340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0x0, {0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3f}, 'batadv_slave_1\x00'}}, 0x1e)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x80047453, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000002380)=""/4037, 0xfe1, 0x1, 0x0}, &(0x7f0000003380)=0xffffffa8)
bind$qrtr(r1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6, 0x2}}, './file0/file0\x00'})
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000000)="2e00000010008188040f46ecdb4cb9cca7480ef421000000e3bd6efb440013030e000a000d000008ba8000001201", 0x2e}], 0x1}, 0x0)

12m38.066735724s ago: executing program 2 (id=989):
setrlimit(0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
brk(0x88000000)

12m37.876396939s ago: executing program 2 (id=993):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sysinfo(&(0x7f00000001c0)=""/10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="140100001f000504000000000000000005"], 0x114}], 0x1}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x140)
mount$9p_virtio(&(0x7f0000000080), &(0x7f0000000400)='./file0\x00', &(0x7f00000004c0), 0x800000, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000280)='./file0\x00')
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
syz_pidfd_open(r1, 0x0)
r2 = socket(0x1d, 0x2, 0x6)
pselect6(0x40, &(0x7f0000000180)={0x1f, 0x0, 0x3ff, 0x0, 0x9}, 0x0, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f0000000380)={0x1d, r3, 0x1, {0x0, 0x0, 0x3}, 0xfe}, 0x18)
sendmmsg$sock(r2, &(0x7f0000000280)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r4}, 0x10)
wait4(0x0, 0x0, 0x20000000, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)

12m37.746760003s ago: executing program 2 (id=995):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
lsm_list_modules(&(0x7f0000002600)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000000)=0x38, 0x0)
r0 = syz_open_dev$I2C(0x0, 0x1, 0x40)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000002c0)={r3, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x304, 0x0, 0x2c}, 0x9c)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f00000003c0)={r3, 0x5a, "bbb1f2ee4b2196e3f9300259baa08cbd95eec69dd1714c95d7c02afe8194ad3b309bd1f3856758346225f2960fb07f04a4970f5e5e40de019d24835e4f5ecdb42a87a1bcabfe689cb3ed1812e3c215284fa8d6c2171d1ae66bee"}, &(0x7f0000000280)=0x62)
r4 = socket(0x8000000010, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x94, 0x30, 0x1, 0x0, 0x0, {}, [{0x80, 0x1, [@m_ct={0x34, 0x2, 0x0, 0x0, {{0x7}, {0xc, 0x2, 0x0, 0x1, [@TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e20}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, 0x0, 0x0)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x118, &(0x7f0000000100)={0x0, 0x2, 0x10, 0xfffffffc, 0x3a6}, &(0x7f0000000000), 0x0)
r8 = socket(0x10, 0x80003, 0x0)
sendmsg$nl_generic(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)=ANY=[@ANYRES8], 0x78}}, 0x20000000)
write(r4, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880", 0xea)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r9, 0x8953, &(0x7f0000000180)={{0x2, 0x0, @empty}, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}}, 0x0, {0x2, 0x0, @multicast1=0xe000cc02}})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff15, 0x10, &(0x7f0000000000), 0xf000000, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000580)={&(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0}], 0x1})

12m37.437112558s ago: executing program 2 (id=998):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000080), &(0x7f0000000400)='./file0\x00', &(0x7f00000004c0), 0x800000, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000280)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_serviced\x00', 0x275a, 0x0) (fail_nth: 5)

12m37.428031217s ago: executing program 33 (id=998):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000080), &(0x7f0000000400)='./file0\x00', &(0x7f00000004c0), 0x800000, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000280)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_serviced\x00', 0x275a, 0x0) (fail_nth: 5)

11m57.355095854s ago: executing program 3 (id=1293):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = openat$ocfs2_control(0xffffff9c, &(0x7f00000001c0), 0xa01, 0x0)
read$sequencer(r2, &(0x7f0000001600)=""/127, 0x7f)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfa11, 0xffffffff}, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000240)={0xc})
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_SET_IRQCHIP(r4, 0x4020aeb2, &(0x7f0000000740)={0x0, 0x12c, @pic={0x0, 0x0, 0x0, 0x0, 0x1}})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000100001000000000000080a01040000000000000000aa000008140000001b0a0104000000000000000001000002140000001100010000000000000000000700000a00"/80], 0x50}, 0x1, 0x0, 0x0, 0x1}, 0x24008000)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)=ANY=[], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r8 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_DIRTYFB(r8, 0xc01864b1, &(0x7f00000000c0)={0x0, 0x3, 0x8, 0x0, 0x0})
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x7ff9)

11m56.18629952s ago: executing program 3 (id=1299):
r0 = socket$inet(0x2, 0x3, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000002c0)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x80000180], 0x88, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000023000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00c97940"]}, 0xe0) (async)
mkdir(&(0x7f0000000000)='./file0\x00', 0x41)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x8000, 0x0) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000008095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18) (async)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r3 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r2}, 0x8)
close(r3) (async)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000005c0)={r3, r2, 0x4, r2}, 0x10) (async)
chdir(&(0x7f0000000240)='./file0\x00') (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x4}}, './bus\x00'})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r4 = socket(0x10, 0x3, 0x0) (async)
r5 = socket$packet(0x11, 0x3, 0x300) (async)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r6, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r7, {0x2, 0x0, @dev}, 0x2}}, 0x2e) (async)
close(r6) (async)
r8 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r8, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2, 0x0, 0x0, 0x2}}, 0x2e) (async)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=@newqdisc={0x64, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x34, 0x8002, [@TCA_FQ_PIE_FLOWS={0x8, 0x2, 0xbe0b}, @TCA_FQ_PIE_LIMIT={0x8}, @TCA_FQ_PIE_ECN_PROB={0x8, 0x9, 0x4a}, @TCA_FQ_PIE_BETA={0x8, 0x6, 0x1}, @TCA_FQ_PIE_FLOWS={0x8, 0x2, 0x25ec}, @TCA_FQ_PIE_DQ_RATE_ESTIMATOR={0x8, 0xc, 0x1}]}}]}, 0x64}}, 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x0, &(0x7f0000000200)={[{@dyn}, {@flock_local}]}) (async)
r10 = syz_open_procfs(0x0, &(0x7f0000000300)='mounts\x00')
preadv(r10, &(0x7f0000000080)=[{&(0x7f0000000280)=""/76, 0xff0d}], 0x1, 0x0, 0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)

11m55.94610618s ago: executing program 3 (id=1300):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = creat(&(0x7f0000000240)='./bus\x00', 0x11)
pwritev2(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
setrlimit(0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4, 0x0, 0x1}, 0xfffffffffffffeae)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
brk(0x88000000)

11m55.044223666s ago: executing program 3 (id=1306):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
lseek(r1, 0x7ff, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800001bc81a000000000000000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000101180000000009000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000e500010000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000040)={'ip6gre0\x00', &(0x7f0000000000)=@ethtool_pauseparam={0x12, 0x4, 0x424, 0x6}})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
r5 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x1000001000001, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000000)={0x980914, 0x8})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
mq_open(0x0, 0x42, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x3, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@empty, @in=@dev={0xac, 0x14, 0x14, 0x1d}, 0xffff, 0x0, 0x0, 0x8, 0x2}, {0x0, 0x4, 0x0, 0x40000400000000, 0x0, 0x40009, 0xffffffffffffffff}, {0x0, 0xfffffffffffffff7, 0x53e5, 0x7}, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}, {{@in6=@dev={0xfe, 0x80, '\x00', 0xf}, 0x0, 0x32}, 0xa, @in6=@remote, 0x1502, 0x1, 0x2, 0x0, 0x0, 0xfffffffd}}, 0xe4)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r8 = dup(r7)
write$UHID_INPUT(r8, &(0x7f0000001040)={0xfc, {"a2e3ad09edfc09f91b44090987f70e06d038e7ff7fc6e5539b0d3d0e8b089b0732306c090890e0879b0a0ac6e70a9b3361959b4b9a240d5b0af3988f7ef319520100ffe8d178708c523c921b1b5b31070d074a0936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb000000002f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d6ced5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed700129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb21fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
r9 = epoll_create1(0x0)
fcntl$dupfd(r9, 0x2, 0xffffffffffffffff)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xb635773f06ebbeea, 0x8031, r3, 0x5000)

11m53.654837154s ago: executing program 3 (id=1312):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getpeername(r0, 0x0, &(0x7f0000000000))
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
add_key(&(0x7f0000000040)='asymmetric\x00', 0x0, &(0x7f0000000300)="303e3002a0001f14000000d190c937dc6914243b0402d6dcb70ad80851956fe6727ae888746b02cee670a5882a0ad79716584e6b04b7f62edac751478af9c62f", 0x40, 0xfffffffffffffffc)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_host_features={{0x3d, 0xe}, {@any, "75b77ffbeee5c882"}}}, 0x11)
r1 = openat$nci(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
readv(r1, &(0x7f00000016c0)=[{0x0}, {&(0x7f0000000200)=""/105, 0x69}, {&(0x7f0000000440)=""/40, 0x28}, {&(0x7f0000000480)=""/86, 0x56}, {0x0}, {&(0x7f0000001640)=""/88, 0x58}], 0x6)
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000200)='./file0/bus\x00', &(0x7f00000001c0)='sysfs\x00', 0x0, 0x0)

11m52.745846098s ago: executing program 3 (id=1320):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
lseek(r1, 0x7ff, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800001bc81a000000000000000001851000000600000018000000", @ANYRES32, @ANYBLOB="0000000000000000660800000000010118000000000f000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000e500010000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000040)={'ip6gre0\x00', &(0x7f0000000000)=@ethtool_pauseparam={0x12, 0x4, 0x424, 0x6}})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
r5 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x1000001000001, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000000)={0x980914, 0x8})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
mq_open(0x0, 0x42, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x3, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@empty, @in=@dev={0xac, 0x14, 0x14, 0x1d}, 0xffff, 0x0, 0x0, 0x8, 0x2}, {0x0, 0x4, 0x0, 0x40000400000000, 0x0, 0x40009, 0xffffffffffffffff}, {0x0, 0xfffffffffffffff7, 0x53e5, 0x7}, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}, {{@in6=@dev={0xfe, 0x80, '\x00', 0xf}, 0x0, 0x32}, 0xa, @in6=@remote, 0x1502, 0x1, 0x2, 0x0, 0x0, 0xfffffffd}}, 0xe4)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r8 = dup(r7)
write$UHID_INPUT(r8, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)
r9 = epoll_create1(0x0)
fcntl$dupfd(r9, 0x2, 0xffffffffffffffff)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xb635773f06ebbeea, 0x8031, r3, 0x5000)

11m44.310409148s ago: executing program 5 (id=1371):
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
ioctl$EVIOCGPROP(0xffffffffffffffff, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCGFLAGS1(0xffffffffffffffff, 0x80047455, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x80e1}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_open_dev$cec(0x0, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r2, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_CAP_X2APIC_API(r3, 0x4068aea3, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, 0x0)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x34, r4, 0x1, 0x70bd2c, 0x4, {0x5}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x5}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}]}, 0x34}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000e000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r6 = syz_init_net_socket$ax25(0x3, 0x3, 0xc4)
recvfrom(r6, 0x0, 0x0, 0x40030043, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00'}, 0x10)
modify_ldt$write2(0x11, &(0x7f0000000080)={0x3ff, 0x0, 0x400, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1}, 0x10)

11m44.235177795s ago: executing program 5 (id=1372):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0, 0x0, 0x1}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYRES8, @ANYRES32, @ANYRES32], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f00000002c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x2b, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
landlock_create_ruleset(&(0x7f0000000180)={0x100}, 0x18, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r6 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r6, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
sendmsg$IPCTNL_MSG_EXP_DELETE(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x50, 0x2, 0x2, 0x201, 0x0, 0x0, {0xa}, [@CTA_EXPECT_TUPLE={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @broadcast}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x4000054)

11m43.330903532s ago: executing program 5 (id=1384):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r1, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB="2d000e0080000000ffffffffffff08021100000008021100000000000000040000000000640000002503000000000000080026006c09"], 0x80}}, 0x0)

11m43.256402609s ago: executing program 5 (id=1385):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f00000002c0)='./file0\x00', &(0x7f00000004c0), 0x8017, &(0x7f0000000200)={'trans=virtio,', {[{@cache_mmap}, {@version_u}]}})
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x225)
connect$unix(r0, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100))
truncate(&(0x7f0000000000)='./file0\x00', 0x80000000)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f00000002c0)='./file0\x00', &(0x7f00000004c0), 0x8017, &(0x7f0000000200)={'trans=virtio,', {[{@cache_mmap}, {@version_u}]}}) (async)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) (async)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x225) (async)
connect$unix(r0, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e23}, 0x6e) (async)
lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)) (async)
truncate(&(0x7f0000000000)='./file0\x00', 0x80000000) (async)

11m43.256093164s ago: executing program 5 (id=1386):
setrlimit(0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x700, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
brk(0x88000000)

11m42.976390799s ago: executing program 5 (id=1387):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c001c0044"], 0x150}}, 0x0)

11m42.96117955s ago: executing program 34 (id=1387):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c001c0044"], 0x150}}, 0x0)

11m37.494801158s ago: executing program 35 (id=1320):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
lseek(r1, 0x7ff, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800001bc81a000000000000000001851000000600000018000000", @ANYRES32, @ANYBLOB="0000000000000000660800000000010118000000000f000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000e500010000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000040)={'ip6gre0\x00', &(0x7f0000000000)=@ethtool_pauseparam={0x12, 0x4, 0x424, 0x6}})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
r5 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x1000001000001, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000000)={0x980914, 0x8})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
mq_open(0x0, 0x42, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x3, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@empty, @in=@dev={0xac, 0x14, 0x14, 0x1d}, 0xffff, 0x0, 0x0, 0x8, 0x2}, {0x0, 0x4, 0x0, 0x40000400000000, 0x0, 0x40009, 0xffffffffffffffff}, {0x0, 0xfffffffffffffff7, 0x53e5, 0x7}, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}, {{@in6=@dev={0xfe, 0x80, '\x00', 0xf}, 0x0, 0x32}, 0xa, @in6=@remote, 0x1502, 0x1, 0x2, 0x0, 0x0, 0xfffffffd}}, 0xe4)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r8 = dup(r7)
write$UHID_INPUT(r8, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)
r9 = epoll_create1(0x0)
fcntl$dupfd(r9, 0x2, 0xffffffffffffffff)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xb635773f06ebbeea, 0x8031, r3, 0x5000)

9m12.863703361s ago: executing program 0 (id=2553):
r0 = socket$inet6(0xa, 0x1, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$BLKZEROOUT(r1, 0x40101286, &(0x7f0000000240)={0xffffffffffffffff, 0x747})
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000180)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0xfffffffd, @empty, 0x2}, 0x1c)

9m12.802757605s ago: executing program 0 (id=2554):
syz_io_uring_setup(0x749e, &(0x7f0000000080)={0x0, 0x0, 0x10100}, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
syz_io_uring_setup(0x1005c20, &(0x7f0000000240)={0x0, 0x0, 0x13290, 0x3}, &(0x7f0000000100), &(0x7f0000000000)) (fail_nth: 32)

9m12.6643853s ago: executing program 0 (id=2555):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000f6ff9400000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f00000001c0)={0x200000000000001}, 0x8)
sendto$inet6(r2, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0x2, 0x4e24, 0x0, @local}, 0x1c)
socket$can_j1939(0x1d, 0x2, 0x7)
open(0x0, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x7, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x2f}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x0, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0xb}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8, 0x20}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {}, {}, {0x4, 0x0, 0x7}, {0x18, 0x9, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0xffffff90}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8, 0x4}, {0x6, 0x0, 0x5, 0x7}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

9m11.939809943s ago: executing program 0 (id=2563):
mkdir(&(0x7f0000000000)='./file0\x00', 0x180)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x40, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000280)='./file0\x00') (async)
chdir(&(0x7f0000000280)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
io_setup(0x202, &(0x7f0000000200)) (async)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write$qrtrtun(r2, &(0x7f0000000300)="ca", 0x1)
io_submit(r1, 0x1, &(0x7f0000000300)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r0, &(0x7f0000000080)='!k', 0x2, 0x0, 0x0, 0x0, r0}])
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f00000000c0))
syz_80211_inject_frame(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="80340700ffffffffffff08021100000187272bc59a224900ffffffffffffff7f06002280000453ec897a040600f7f00e05002503000b040f010572060303030303"], 0x404)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0x0, 0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007b88f8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYRES16=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0x0, 0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007b88f8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYRES16=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ptrace$getregset(0x4205, r4, 0x1, &(0x7f0000000080)={&(0x7f00000000c0)=""/120, 0x78}) (async)
ptrace$getregset(0x4205, r4, 0x1, &(0x7f0000000080)={&(0x7f00000000c0)=""/120, 0x78})
sendmsg$nl_generic(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)=ANY=[@ANYBLOB="1800000024000103000000000000000001008c000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000040), 0x4) (async)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000040), 0x4)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0xc, 0x40811, r2, 0x0)
syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc}) (async)
syz_io_uring_submit(r6, r7, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r7, &(0x7f00000012c0)=@IORING_OP_UNLINKAT={0x24, 0x1, 0x0, r2, 0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, {0x0, r8}})
recvmmsg(r3, &(0x7f0000004ec0)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)=""/4082, 0xff2}], 0x1}, 0x5}], 0x40000000000000d, 0x2000, 0x0)

9m11.130624491s ago: executing program 0 (id=2577):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000a80)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
mknod(&(0x7f0000000340)='./file0\x00', 0x8, 0x9)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000280)=@o_path={&(0x7f0000000240)='./file0\x00', 0x0, 0x0, r1}, 0x14)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r6 = fanotify_init(0x81, 0x0)
read$FUSE(r6, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x0, 0x0, 0x401}}}, 0x7)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r5, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x80, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x50, 0x2, [@TCA_BASIC_EMATCHES={0x4c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x40, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{}, {0x0, 0x0, 0x1}}}, @TCF_EM_META={0x2c, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc}, @TCA_EM_META_RVALUE={0x4}, @TCA_EM_META_LVALUE={0xf, 0x2, [@TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_VAR="5e12e8", @TCF_META_TYPE_VAR, @TCF_META_TYPE_INT]}]}}]}]}]}}]}, 0x80}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000a80)='kmem_cache_free\x00', r0}, 0x10) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0x10, 0x3, 0x0) (async)
mknod(&(0x7f0000000340)='./file0\x00', 0x8, 0x9) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000280)=@o_path={&(0x7f0000000240)='./file0\x00', 0x0, 0x0, r1}, 0x14) (async)
socket(0x10, 0x803, 0x0) (async)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4) (async)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (async)
fanotify_init(0x81, 0x0) (async)
read$FUSE(r6, 0x0, 0x0) (async)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x0, 0x0, 0x401}}}, 0x7) (async)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r5, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x80, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x50, 0x2, [@TCA_BASIC_EMATCHES={0x4c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x40, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{}, {0x0, 0x0, 0x1}}}, @TCF_EM_META={0x2c, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc}, @TCA_EM_META_RVALUE={0x4}, @TCA_EM_META_LVALUE={0xf, 0x2, [@TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_VAR="5e12e8", @TCF_META_TYPE_VAR, @TCF_META_TYPE_INT]}]}}]}]}]}}]}, 0x80}}, 0x0) (async)

9m10.875087705s ago: executing program 0 (id=2580):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x7, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x2f}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x0, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0xb}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8, 0x20}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {0x7, 0x1, 0xb, 0x4, 0xa, 0x20}, {}, {0x4, 0x0, 0x7}, {0x18, 0x9, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x5, 0x0, 0x0, 0x1f}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8, 0x4}, {0x6, 0x0, 0x5, 0x7}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

9m10.838380758s ago: executing program 36 (id=2580):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x7, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x2f}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x0, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0xb}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8, 0x20}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {0x7, 0x1, 0xb, 0x4, 0xa, 0x20}, {}, {0x4, 0x0, 0x7}, {0x18, 0x9, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x5, 0x0, 0x0, 0x1f}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8, 0x4}, {0x6, 0x0, 0x5, 0x7}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

12.038732253s ago: executing program 8 (id=7057):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000300), 0x2, 0x40002)
ioctl$EVIOCSKEYCODE(r0, 0x40084504, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000180)=<r2=>0x0)
clock_gettime(0x2, &(0x7f00000001c0)={<r3=>0x0, <r4=>0x0})
timer_settime(r2, 0x0, &(0x7f0000000080)={{0x77359400}, {r3, r4+60000000}}, 0x0)
mq_open(&(0x7f00000004c0)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!T\xednux\x02\xc7\x12\xec\xca7\xbc\x1fS\x1c\x05y\x91\xe5\x9aL\xa9u\b\x00\x00\x00\xa0pC\x19\x9b\vY\x186\xa4\xe7\x1eg{`\xfa\xf3n\x8fIj6f\xfb\x13-g\x19(a6\x18\xe24nz\x83w8\xff\xfb\x83\f\x9a\xda\xc5w\x8eo\x02\xa3\xc1\x83\x91\xc6\xfd\x8c\xc4s\x03\x16\xa4+\xce|^\x98K_0\x8a\xb0\xff~\x1e\xd92\xb4r\xd8\xe7', 0x40, 0x0, 0x0)
mknod(&(0x7f00000000c0)='./file0\x00', 0x4, 0xfffffffd)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newtaction={0x17c, 0x30, 0x1, 0x0, 0x0, {}, [{0x168, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x120, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0xfffffffc, 0x0, 0xffffffffffffffff}}}]}, {0xda, 0x6, "a16a4ffb95af762703ddd1894f1ec8e4fd76ef5030a3aa0d682c193884f106beb273d45fbe0940e0630584eae7d4773a9c3fe00b14bc0cc7f07d62073262f94d88871fcdf37cab0ea70fef96fcac7781f409007ddfae2fce1e91f405acf8dd16a0ff39cc49a93700fde18240ce59ac938cf921bd906b3836bc5f968a65060dc65ae1d1bca8e4ea13f8e5eb9dbca5bacaf7c61eabd2a90f4ba1b9aa7f96b75a1cfbfe5cdf9b7f41dcf873e570760aee0bdd12ac2273f6eed73d162bc31400cf96ba1d6702119afb779c7673044e80d5ff59ab15b2932b"}, {0xc}, {0xc}}}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r7, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$usbfs(0x0, 0xd, 0x800)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0x582f, 0x2}, &(0x7f0000000280)=<r10=>0x0, &(0x7f0000000200)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
ioctl$VHOST_SET_OWNER(r5, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, 0x0)
r12 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r12, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x0)

10.968320875s ago: executing program 8 (id=7065):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x10, &(0x7f0000001280), 0x4)
sendmsg$inet(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000080)="0452", 0x2}], 0x1}, 0x20000801)
recvmsg(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x40002002)
sendmsg(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000001c0)='x', 0x1}], 0x1}, 0x4)

10.839808271s ago: executing program 8 (id=7066):
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r4, r5, 0x0)
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)

9.645680509s ago: executing program 8 (id=7072):
socket$nl_route(0x10, 0x3, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x2, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0xffffffff}}}]}, {0x4}, {0xfffffffffffffcc9, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x40c0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0xffffffffffffff70, &(0x7f0000000240)=0x200000000000002)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r6 = dup(r5)
ioctl$KVM_SET_MSRS(r6, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000d004"])
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0xa50003d1)
syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r8, &(0x7f0000000040), 0xc) (fail_nth: 7)
bind$qrtr(r8, &(0x7f0000000080)={0x2a, 0x1, 0x1}, 0xc)
ioctl$sock_qrtr_TIOCOUTQ(r8, 0x5411, &(0x7f00000001c0))
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
syz_open_dev$MSR(0x0, 0x0, 0x0)

8.979224251s ago: executing program 4 (id=7077):
r0 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x144, 0x0)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x4000, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f00000004c0)={{0x1, 0xffffffffffffffff, 0x0, 0x0, 0xee00, 0x1cb, 0x38f}, 0x0, 0x0, 0xb7, 0xda, 0x4, 0x2, 0x8, 0x2, 0x101a, 0xd7df})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x10040f00)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INFO(r5, 0x0, 0x80, &(0x7f0000000000)={'filter\x00', 0x0, 0x0, 0x0, [0xffffffff, 0x3, 0xed, 0x7, 0x0, 0xfffffffe]}, &(0x7f0000000080)=0x50)
getsockopt$EBT_SO_GET_ENTRIES(r5, 0x0, 0x81, &(0x7f0000000240)={'broute\x00', 0x0, 0x0, 0x0, [0x0, 0x2, 0x0, 0x0, 0x6], 0x0, 0x0, 0x0}, &(0x7f00000002c0)=0x78)
r6 = syz_open_dev$evdev(&(0x7f00000004c0), 0x1, 0x1e9880)
ioctl$EVIOCGMTSLOTS(r6, 0x8040450a, &(0x7f0000004880)=""/137)
syz_io_uring_setup(0x24f9, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0xfffffffe}, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000ff9000/0x4000)=nil)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_LINKAT={0x27, 0x10, 0x0, 0xffffffffffffffff, &(0x7f0000000480)='./file0\x00', 0x0, 0xffffffffffffffff, 0x1400, 0x1})
write$rfkill(r1, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)
mq_getsetattr(r0, &(0x7f0000000300)={0x800, 0x0, 0x1}, 0x0)

8.016760447s ago: executing program 4 (id=7081):
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpgrp(0xffffffffffffffff)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mbind(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x4, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x2)
capset(0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
syz_fuse_handle_req(r2, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x0, 0x0)

5.904544795s ago: executing program 4 (id=7085):
socket$nl_sock_diag(0x10, 0x3, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000dc0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000001c0)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c2", 0x17)
r2 = accept4(r1, 0x0, 0x0, 0x80000)
sendmmsg$alg(r2, &(0x7f000000ff40), 0x0, 0x80)
recvmsg$can_j1939(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000880)=[{0x0}, {&(0x7f0000002380)=""/4096, 0x1000}], 0x2}, 0x12040)
unshare(0x400)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b7000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x0, 0x0, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x1, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000032680)=""/102392, 0x18ff8)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000040)={0x80000001, 0x1, 0x4})

5.597008994s ago: executing program 7 (id=7087):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000540)={0x0, 0x1, 0x0, 0x1000, &(0x7f0000fef000/0x1000)=nil})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=@gettfilter={0x3c, 0x2e, 0x10, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xfff2, 0x6}, {0xe, 0x4}, {0x4, 0x7}}, [{0x8, 0xb, 0x9}, {0x8, 0xb, 0xd}, {0x8, 0xb, 0x7}]}, 0x3c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r4, 0x1, 0x10, &(0x7f0000001280), 0x4)
sendmsg$inet(r3, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000080)="0452", 0x2}], 0x1}, 0x20000801)
recvmsg(r4, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x40002002)
sendmsg(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000001c0)='x', 0x1}], 0x1}, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$rds(0x15, 0x5, 0x0)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
socket$inet_udplite(0x2, 0x2, 0x88)

4.667890342s ago: executing program 6 (id=7089):
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'veth0_to_batadv\x00'})
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0x8, [{}, {0x10}, {}, {0xfffffffc}, {}, {0x2000, 0x6}, {0x0, 0xd6}], 0x0, 0x7, 0x8}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x28200)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r2 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
open_by_handle_at(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="18"], 0x10002)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r3=>0x0})
sendto$packet(0xffffffffffffffff, &(0x7f0000000180)="0b032200e0ff25000200475400", 0xd, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
r5 = socket$kcm(0x2, 0x3, 0x2)
recvmsg$kcm(r5, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x18000)
sendto(r1, &(0x7f0000000300)="94a6a59a8cd1ce5e7690c716085be23c3c1aeae6325fcbb7c373ff91e4b59139d58b82a88c9eb57ac770ed6bc08e4f66b4ed898132db01e37c51808281ebbbd57b1b98d009a7a0a0155497532815945aa9efe6ceabad63ab2424f5710a32495d67de5384f87f205c0846e0c7be8839e229ad9eaff8d284f3285f8a10e7754b0c8b24e475594af1050e8013aea347ba7a2c52f0a06501b635bd1b8dfddb2bcdf5ae275979a8e754524403d9ac0ed47089d674978989ba7316a354bf199ecb4320c497ae4880e6f11f1f5aba0d87c99be0b10fe9b1ed5819", 0xd7, 0x1, &(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, r5, {0x2, 0x4e20, @empty}, 0x4, 0x1, 0x4}}, 0x80)
ftruncate(r4, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100))

3.806879269s ago: executing program 6 (id=7090):
r0 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
fchown(r0, 0xee00, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
r5 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r5, 0x47f6, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6)

3.804576401s ago: executing program 7 (id=7091):
r0 = socket$nl_route(0x10, 0x3, 0x0)
rt_sigprocmask(0x0, 0x0, 0x0, 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x2, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0xffffffff}}}]}, {0x4}, {0xfffffffffffffcc9, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x40c0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r4, &(0x7f000000ba40)=[{{&(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000380), 0x0, &(0x7f0000000880)=[@rights={{0xc}}, @cred={{0x18, 0x1, 0x2, {r2}}}, @cred={{0x18, 0x1, 0x2, {r2}}}, @rights={{0x10, 0x1, 0x1, [r3]}}, @cred={{0x18, 0x1, 0x2, {r2}}}], 0x64, 0x4800}}, {{0x0, 0x0, &(0x7f0000006200)=[{&(0x7f00000041c0)="3f1c99", 0x3}, {&(0x7f0000001500)="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", 0x1000}], 0x2, &(0x7f0000000680)=[@cred={{0x18, 0x1, 0x2, {0x0, 0xee01}}}, @rights={{0xc}}, @rights={{0x10, 0x1, 0x1, [r4]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [r3, 0xffffffffffffffff, r3, r0, 0xffffffffffffffff, r1]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r3, r0, 0xffffffffffffffff]}}], 0x8c, 0x4008000}}, {{&(0x7f000000a640)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f000000b940)=[{&(0x7f000000a6c0)="36fa23a4cf5e5a024d240f5e68d54aa402c90ae89332b38958b44c3a793194ddb871e6d815aa651767a23f4ac7ff0c218dac0040c26de0a1c90e05adf3c229d5d60b6298fad6b00c055d37d1970aaca24de66bbd6d18c0ca69f20871be34a1254bd62ee3bbdb15e9e34e98ed93d1df155de16b9eec4c1f3bb0cdea7568d736c67f348ad5d022b75278d67d61a3edb4f6f67b1a78647130fc9f", 0x99}, {&(0x7f000000a780)="c2935bb97e783ad22db3ce904cca98226b01b688337ef864a17421cb41bb93684ad784214428b42706a3e9c65c8fcd7cf9d7215de9ba6826b0ed6c88326221b8a8710fb70a3030dd2213298820c58a9b57dec1f66fd9a9f83c3995cb2c97f7f7751977dbc40a280a8cb88aa91ec3812846c04ef3ec1ae2c481a7b63edb9ae6abba86fe7473f7ddbc5e80d16abae84bc120e5dd00af", 0x95}, {&(0x7f000000a840)="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", 0x1000}, {&(0x7f000000b840)="c5d9f5e685b9e5fcd0258a0ef8b13c7345767bf51c59201e26974ad7287504af43173022dfed47af8d06c67d63f98294d1b7f7039ea5400161865addc7f1cb0ab32bb1d4c9a9a0a7f86eb6f6e11b8fb7e40b6eaf0b421f77e2b7d0ed3c56fba600726755dad1cbd26c9914d91fa0ea5b1cfb0be333be16994a0dfc4d8e3489a9405e9a0be3cc4090ef5ab426a44e645b9f628593806cddab9ecc6d9475603a6143aac22cbfae8823fb775a5886346c79a4689b741bcfcf8489bd41816daf54410c8f917580f1b0696538fb3eb34abd698cf22f37d36596274e3523162884f50c5fc591f0cfa771f0f41b1740691f4ccfd7a7b2d6ba8e", 0xf6}], 0x4, &(0x7f000000b9c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1, r0, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18, 0x1, 0x2, {r2}}}, @cred={{0x18}}], 0x68, 0x40005}}], 0x3, 0x0)
sched_setaffinity(r2, 0xffffffffffffff70, &(0x7f0000000240)=0x200000000000002)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r8 = dup(r7)
ioctl$KVM_SET_MSRS(r8, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000d004"])
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0xa50003d1)
syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r10, &(0x7f0000000040), 0xc)
bind$qrtr(r10, &(0x7f0000000080)={0x2a, 0x1, 0x1}, 0xc)
ioctl$sock_qrtr_TIOCOUTQ(r10, 0x5411, &(0x7f00000001c0))
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000080)={'wlan0\x00'})

2.819557999s ago: executing program 6 (id=7092):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x8}, [@ldst={0x6, 0x3}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x10, 0x80003, 0x0)
sendmsg$nl_generic(r3, 0x0, 0x0)
r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r4, 0xc0045627, &(0x7f0000000100)=0x3)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r4, 0xc0845657, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0x8042, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x0, 0x4800)
socket$rxrpc(0x21, 0x2, 0x2)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000000)={0x2001}, 0x10)
bind$tipc(r5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000004340)={0x6, 0x4, &(0x7f00000007c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r6}, 0xc)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
accept4$tipc(r5, &(0x7f00000000c0)=@name, &(0x7f0000000140)=0x10, 0x800)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x30, r8, 0x1, 0x0, 0x100000, {{}, {}, {0x14, 0x19, {0x2, 0x1, 0x0, 0x8}}}}, 0x30}, 0x1, 0x0, 0x0, 0x4008000}, 0x9004)

2.819161235s ago: executing program 7 (id=7093):
socketpair$unix(0x1, 0x2, 0x0, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x81) (async)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000300)=0x3f) (async)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0xff) (async)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0x7e) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=@newtaction={0x128, 0x30, 0x1, 0x0, 0x0, {}, [{0x114, 0x1, [@m_mpls={0x68, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_TTL={0x5, 0x7, 0x7}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x2, 0x2, 0x3, 0x5, 0x6}, 0x4}}]}, {0x16, 0x6, "8141aeebe263e2c07c0154a1a9dd75bedee5"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_ife={0xa8, 0x14, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x63, 0x6, "b6b7f87ec389eaafefbaf7b2e5bd9300ce3aab78a7ae904bd4f73926b2fb932e2f106453cb857c3ece599b0f00ecc82dfd86677a560576ca38a8737638f52f19e2dc2df8b8d4d912e6c029b114b418415657430dc51a8925fd4230b54698f0"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x128}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid() (async)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06055c8, &(0x7f0000000380)={0x0, 0x1, {0x53, 0x7, 0x400, {0x8, 0x2}, {0x8206, 0x1c00}, @cond=[{0x9, 0x3, 0x9, 0x45be, 0xf, 0x80e2}, {0xc3d8, 0x7, 0x1, 0x3, 0x9, 0x8}]}, {0x52, 0x5b29, 0x2, {0x5, 0x3}, {0xfffc, 0x9}, @cond=[{0x7, 0x2, 0xfc01, 0x3ff, 0x3}, {0x6, 0x7, 0x7d10, 0x6, 0x3, 0x5}]}})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r1, 0x8, &(0x7f0000000280)) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0e00000004400000040000000300000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="470000000000000000100600000008000300", @ANYRES32=r5, @ANYBLOB="0800050003000000"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRESDEC=r0, @ANYBLOB="050000000004000300", @ANYRES32=r5, @ANYBLOB="30000e0080000000ffffffffffff08021100000008021100000100000000000000000000640001000006010101010101080026006c09000008000c006400000008000d0000000000"], 0x64}}, 0x0) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000640)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f00000000c0), 0x12)

2.729988226s ago: executing program 7 (id=7094):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000540)={0x0, 0x1, 0x0, 0x1000, &(0x7f0000fef000/0x1000)=nil})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=@gettfilter={0x3c, 0x2e, 0x10, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xfff2, 0x6}, {0xe, 0x4}, {0x4, 0x7}}, [{0x8, 0xb, 0x9}, {0x8, 0xb, 0xd}, {0x8, 0xb, 0x7}]}, 0x3c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r4, 0x1, 0x10, &(0x7f0000001280), 0x4)
sendmsg$inet(r3, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000080)="0452", 0x2}], 0x1}, 0x20000801)
recvmsg(r4, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x40002002)
sendmsg(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000001c0)='x', 0x1}], 0x1}, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$rds(0x15, 0x5, 0x0)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @private2}, 0x1c)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)

1.999593031s ago: executing program 4 (id=7095):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x8}, [@ldst={0x6, 0x3}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x10, 0x80003, 0x0)
sendmsg$nl_generic(r3, 0x0, 0x0)
r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r4, 0xc0045627, &(0x7f0000000100)=0x3)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r4, 0xc0845657, &(0x7f0000000580)={0x0, @bt={0xe10, 0x870, 0x1, 0x3, 0xd59f80, 0x0, 0x0, 0x19f2, 0x3, 0x3, 0x100, 0x2800, 0x80000001, 0xd1, 0x776b31e5619e343d, 0x21, {0x8, 0xffffffff}, 0xd0, 0x76}})
openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x8042, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x0, 0x4800)
socket$rxrpc(0x21, 0x2, 0x2)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000000)={0x2001}, 0x10)
bind$tipc(r5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000004340)={0x6, 0x4, &(0x7f00000007c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r6}, 0xc)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
accept4$tipc(r5, &(0x7f00000000c0)=@name, &(0x7f0000000140)=0x10, 0x800)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x30, r8, 0x1, 0x0, 0x100000, {{}, {}, {0x14, 0x19, {0x2, 0x1, 0x0, 0x8}}}}, 0x30}, 0x1, 0x0, 0x0, 0x4008000}, 0x9004)

1.867053516s ago: executing program 6 (id=7096):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x8}, [@ldst={0x6, 0x3}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x10, 0x80003, 0x0)
sendmsg$nl_generic(r3, 0x0, 0x0)
r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r4, 0xc0045627, &(0x7f0000000100)=0x3)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r4, 0xc0845657, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0x8042, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x0, 0x4800)
socket$rxrpc(0x21, 0x2, 0x2)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000000)={0x2001}, 0x10)
bind$tipc(r5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000004340)={0x6, 0x4, &(0x7f00000007c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r6}, 0xc)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
accept4$tipc(r5, &(0x7f00000000c0)=@name, &(0x7f0000000140)=0x10, 0x800)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x30, r8, 0x1, 0x0, 0x100000, {{}, {}, {0x14, 0x19, {0x2, 0x1, 0x0, 0x8}}}}, 0x30}, 0x1, 0x0, 0x0, 0x4008000}, 0x9004)

1.749740093s ago: executing program 7 (id=7097):
r0 = syz_open_dev$midi(&(0x7f00000001c0), 0xac, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0205710, &(0x7f0000000000)={0x1, 0x80000001, 0x6, 0x0, 0x8})
r1 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x11, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xfee5)
r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_SET(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000010c0)={0x3c, r5, 0x1, 0x20000000, 0x800, {}, [@ETHTOOL_A_RINGS_RX={0x8}, @ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}, @ETHTOOL_A_RINGS_RX_MINI={0x8}]}, 0x3c}}, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
ioctl$sock_TIOCOUTQ(r1, 0x5411, &(0x7f0000000180))
r6 = fsmount(r3, 0x0, 0x0)
r7 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000440)={r2, r6, 0x0, 0x0, @val=@uprobe_multi={&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=[0xb], &(0x7f00000003c0)=[0x5, 0x0, 0x4], 0x4, 0x1}}, 0x3c)
bpf$LINK_DETACH(0xf, &(0x7f0000000080)=r7, 0x4)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x7}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r8 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r8, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
connect$unix(r9, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r10, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r8, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r9, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x116, &(0x7f0000000100)={0x0, 0xffffffff}, &(0x7f0000000280)=<r11=>0x0, &(0x7f0000000300))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r11, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)

1.009678772s ago: executing program 4 (id=7098):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000540)={0x0, 0x1, 0x0, 0x1000, &(0x7f0000fef000/0x1000)=nil})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=@gettfilter={0x3c, 0x2e, 0x10, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xfff2, 0x6}, {0xe, 0x4}, {0x4, 0x7}}, [{0x8, 0xb, 0x9}, {0x8, 0xb, 0xd}, {0x8, 0xb, 0x7}]}, 0x3c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r4, 0x1, 0x10, &(0x7f0000001280), 0x4)
sendmsg$inet(r3, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000080)="0452", 0x2}], 0x1}, 0x20000801)
recvmsg(r4, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x40002002)
sendmsg(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000001c0)='x', 0x1}], 0x1}, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$rds(0x15, 0x5, 0x0)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
socket$inet_udplite(0x2, 0x2, 0x88)

994.675439ms ago: executing program 8 (id=7078):
r0 = epoll_create1(0x0)
r1 = creat(&(0x7f00000001c0)='./bus\x00', 0x4e)
r2 = creat(&(0x7f0000000400)='./bus\x00', 0x0)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
write$binfmt_elf64(r2, &(0x7f00000002c0)=ANY=[], 0x76)
lsetxattr$security_ima(&(0x7f00000002c0)='./bus\x00', &(0x7f0000000000), &(0x7f0000000140)=ANY=[@ANYBLOB="04"], 0x2, 0x0)
finit_module(r3, 0x0, 0x100000000000000)
r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = syz_io_uring_setup(0x1281, &(0x7f0000000300)={0x0, 0x1fffff, 0x0, 0x3, 0x2ad}, &(0x7f0000000180)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
close(r1)
syz_io_uring_submit(r8, r9, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r5})
io_uring_enter(r7, 0x2def, 0x4000, 0x0, 0x0, 0x0)
r10 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x1d2)
fcntl$setlease(r10, 0x400, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
close(r1)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x80060, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @val={0x3a, [0x30]}}}}]})
syz_io_uring_setup(0x17af, &(0x7f0000000380)={0x0, 0x7995, 0x13290, 0x0, 0xfffffffd}, 0x0, 0x0)
r11 = inotify_init1(0x0)
read(r11, 0x0, 0x0)
close(r11)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])

862.4734ms ago: executing program 6 (id=7099):
r0 = socket$inet(0x2, 0x2000000080002, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000002c0)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x80000180], 0x88, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00000000000000000000000000000000000000000000000000230000000000000000000000000000f9ffff00fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00c97940"]}, 0xe0)

778.878529ms ago: executing program 6 (id=7100):
r0 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
fchown(r0, 0xee00, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r5 = epoll_create1(0x0)
r6 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0xcd})
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r6, &(0x7f0000000080)={0x20000016})
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
r7 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r8=>0x0, &(0x7f0000000200)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r7, 0x47f6, 0x0, 0x0, 0x0, 0x0)

778.248508ms ago: executing program 7 (id=7101):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x1000, 0x0, 0x34324152, 0x2, 0xb, [{0xffffffff}, {0x20000}, {}, {0xe}, {0x0, 0x4}, {0x0, 0xfffffb}, {}, {0xfffffffc}]}})
socket(0x5, 0x4, 0x0)
keyctl$unlink(0x9, 0x0, 0xfffffffffffffffd)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0xfffffffffffffeff)
prlimit64(0x0, 0x2, &(0x7f0000000140)={0x3, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000300)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x2)
socket$inet6_sctp(0xa, 0x0, 0x84)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
r3 = memfd_secret(0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x104010, r1, 0x4e7ea000)
ftruncate(r3, 0x51a9497)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f000050a000/0x13000)=nil, 0x13000}, 0x1})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000480)={'wlan1\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000133700000008000300", @ANYRES32=r6, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x0)
readv(r4, &(0x7f00000002c0)=[{&(0x7f0000000400)=""/224, 0xe0}], 0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x18)
syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)

102.530926ms ago: executing program 8 (id=7102):
socket$nl_sock_diag(0x10, 0x3, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000dc0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000001c0)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c2", 0x17)
r2 = accept4(r1, 0x0, 0x0, 0x80000)
sendmmsg$alg(r2, &(0x7f000000ff40), 0x0, 0x80)
recvmsg$can_j1939(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000880)=[{0x0}, {&(0x7f0000002380)=""/4096, 0x1000}], 0x2}, 0x12040)
unshare(0x400)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b7000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300, 0x0, 0x0, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x1, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000032680)=""/102392, 0x18ff8)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000040)={0x80000001, 0x1, 0x4})

0s ago: executing program 4 (id=7103):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000300), 0x2, 0x40002)
ioctl$EVIOCSKEYCODE(r0, 0x40084504, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000180)=<r2=>0x0)
clock_gettime(0x2, &(0x7f00000001c0)={<r3=>0x0, <r4=>0x0})
timer_settime(r2, 0x0, &(0x7f0000000080)={{0x77359400}, {r3, r4+60000000}}, 0x0)
mq_open(&(0x7f00000004c0)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!T\xednux\x02\xc7\x12\xec\xca7\xbc\x1fS\x1c\x05y\x91\xe5\x9aL\xa9u\b\x00\x00\x00\xa0pC\x19\x9b\vY\x186\xa4\xe7\x1eg{`\xfa\xf3n\x8fIj6f\xfb\x13-g\x19(a6\x18\xe24nz\x83w8\xff\xfb\x83\f\x9a\xda\xc5w\x8eo\x02\xa3\xc1\x83\x91\xc6\xfd\x8c\xc4s\x03\x16\xa4+\xce|^\x98K_0\x8a\xb0\xff~\x1e\xd92\xb4r\xd8\xe7', 0x40, 0x0, 0x0)
mknod(&(0x7f00000000c0)='./file0\x00', 0x4, 0xfffffffd)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newtaction={0x17c, 0x30, 0x1, 0x0, 0x0, {}, [{0x168, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x120, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0xfffffffc, 0x0, 0xffffffffffffffff}}}]}, {0xda, 0x6, "a16a4ffb95af762703ddd1894f1ec8e4fd76ef5030a3aa0d682c193884f106beb273d45fbe0940e0630584eae7d4773a9c3fe00b14bc0cc7f07d62073262f94d88871fcdf37cab0ea70fef96fcac7781f409007ddfae2fce1e91f405acf8dd16a0ff39cc49a93700fde18240ce59ac938cf921bd906b3836bc5f968a65060dc65ae1d1bca8e4ea13f8e5eb9dbca5bacaf7c61eabd2a90f4ba1b9aa7f96b75a1cfbfe5cdf9b7f41dcf873e570760aee0bdd12ac2273f6eed73d162bc31400cf96ba1d6702119afb779c7673044e80d5ff59ab15b2932b"}, {0xc}, {0xc}}}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r7 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r7, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$usbfs(0x0, 0xd, 0x800)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0x582f, 0x2}, &(0x7f0000000280)=<r10=>0x0, &(0x7f0000000200)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
ioctl$VHOST_SET_OWNER(r5, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, 0x0)
r12 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r12, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000f00)=@newtaction={0x4c, 0x30, 0x400, 0x0, 0x0, {}, [{0x38, 0x1, [@m_tunnel_key={0x34, 0x1, 0x0, 0x0, {{0xf}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4}, 0x0)

kernel console output (not intermixed with test programs):

ath_number_perm+0x235/0x5b0
[  728.561911][T26003]  tomoyo_path_number_perm+0x248/0x5b0
[  728.561921][T26003]  ? tomoyo_path_number_perm+0x235/0x5b0
[  728.561932][T26003]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  728.561954][T26003]  ? __pfx_lock_release+0x10/0x10
[  728.561966][T26003]  ? trace_lock_acquire+0x14e/0x1f0
[  728.561977][T26003]  ? lock_acquire+0x2f/0xb0
[  728.561987][T26003]  ? __fget_files+0x40/0x3a0
[  728.562000][T26003]  ? __fget_files+0x206/0x3a0
[  728.562012][T26003]  security_file_ioctl_compat+0x9b/0x240
[  728.562025][T26003]  __do_compat_sys_ioctl+0x4e/0x2c0
[  728.562041][T26003]  __do_fast_syscall_32+0x73/0x120
[  728.562053][T26003]  do_fast_syscall_32+0x32/0x80
[  728.562062][T26003]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  728.562079][T26003] RIP: 0023:0xf7f8f579
[  728.562087][T26003] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  728.562097][T26003] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  728.562107][T26003] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0485510
[  728.562113][T26003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  728.562119][T26003] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  728.562124][T26003] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  728.562130][T26003] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  728.562141][T26003]  </TASK>
[  728.626082][T26003] ERROR: Out of memory at tomoyo_realpath_from_path.
[  729.265596][T26025] can0: slcan on pts0.
[  729.407083][T26024] can0 (unregistered): slcan off pts0.
[  729.947688][T26063] netlink: 44 bytes leftover after parsing attributes in process `syz.8.5748'.
[  731.223513][T26103] FAULT_INJECTION: forcing a failure.
[  731.223513][T26103] name failslab, interval 1, probability 0, space 0, times 0
[  731.226889][T26103] CPU: 2 UID: 0 PID: 26103 Comm: syz.6.5759 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  731.226904][T26103] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  731.226910][T26103] Call Trace:
[  731.226914][T26103]  <TASK>
[  731.226919][T26103]  dump_stack_lvl+0x16c/0x1f0
[  731.226941][T26103]  should_fail_ex+0x50a/0x650
[  731.226955][T26103]  ? fs_reclaim_acquire+0xae/0x150
[  731.226972][T26103]  should_failslab+0xc2/0x120
[  731.226986][T26103]  __kmalloc_noprof+0xce/0x4f0
[  731.226998][T26103]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  731.227011][T26103]  ? tomoyo_realpath_from_path+0xbf/0x710
[  731.227026][T26103]  tomoyo_realpath_from_path+0xbf/0x710
[  731.227040][T26103]  ? tomoyo_path_number_perm+0x235/0x5b0
[  731.227052][T26103]  tomoyo_path_number_perm+0x248/0x5b0
[  731.227062][T26103]  ? tomoyo_path_number_perm+0x235/0x5b0
[  731.227073][T26103]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  731.227095][T26103]  ? __pfx_lock_release+0x10/0x10
[  731.227107][T26103]  ? trace_lock_acquire+0x14e/0x1f0
[  731.227117][T26103]  ? lock_acquire+0x2f/0xb0
[  731.227128][T26103]  ? __fget_files+0x40/0x3a0
[  731.227140][T26103]  ? __fget_files+0x206/0x3a0
[  731.227152][T26103]  security_file_ioctl_compat+0x9b/0x240
[  731.227165][T26103]  __do_compat_sys_ioctl+0x4e/0x2c0
[  731.227182][T26103]  __do_fast_syscall_32+0x73/0x120
[  731.227193][T26103]  do_fast_syscall_32+0x32/0x80
[  731.227202][T26103]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  731.227219][T26103] RIP: 0023:0xf73fe579
[  731.227227][T26103] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  731.227237][T26103] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  731.227247][T26103] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0485510
[  731.227253][T26103] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  731.227259][T26103] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  731.227264][T26103] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  731.227270][T26103] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  731.227281][T26103]  </TASK>
[  731.227285][T26103] ERROR: Out of memory at tomoyo_realpath_from_path.
[  731.831921][ T6096] usb 9-1: new full-speed USB device number 41 using dummy_hcd
[  731.990741][ T6096] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  731.994616][ T6096] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  731.997815][ T6096] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  732.003038][ T6096] usb 9-1: config 0 descriptor??
[  732.006611][ T6096] iowarrior 9-1:0.0: no interrupt-in endpoint found
[  732.329624][T26128] netlink: 44 bytes leftover after parsing attributes in process `syz.6.5768'.
[  732.363895][T26130] FAULT_INJECTION: forcing a failure.
[  732.363895][T26130] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  732.368110][T26130] CPU: 1 UID: 0 PID: 26130 Comm: syz.6.5769 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  732.368126][T26130] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  732.368133][T26130] Call Trace:
[  732.368137][T26130]  <TASK>
[  732.368141][T26130]  dump_stack_lvl+0x16c/0x1f0
[  732.368163][T26130]  should_fail_ex+0x50a/0x650
[  732.368179][T26130]  _copy_to_user+0x32/0xd0
[  732.368195][T26130]  simple_read_from_buffer+0xd0/0x160
[  732.368213][T26130]  proc_fail_nth_read+0x198/0x270
[  732.368254][T26130]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  732.368269][T26130]  ? rw_verify_area+0xcf/0x680
[  732.368285][T26130]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  732.368299][T26130]  vfs_read+0x1df/0xbf0
[  732.368309][T26130]  ? __fget_files+0x1fc/0x3a0
[  732.368320][T26130]  ? __pfx___mutex_lock+0x10/0x10
[  732.368330][T26130]  ? __pfx_vfs_read+0x10/0x10
[  732.368342][T26130]  ? __fget_files+0x206/0x3a0
[  732.368356][T26130]  ksys_read+0x12b/0x250
[  732.368366][T26130]  ? __pfx_ksys_read+0x10/0x10
[  732.368378][T26130]  __do_fast_syscall_32+0x73/0x120
[  732.368391][T26130]  do_fast_syscall_32+0x32/0x80
[  732.368401][T26130]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  732.368418][T26130] RIP: 0023:0xf73fe579
[  732.368426][T26130] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  732.368436][T26130] RSP: 002b:00000000f5086590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  732.368447][T26130] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5086620
[  732.368453][T26130] RDX: 000000000000000f RSI: 00000000f73ecff4 RDI: 0000000000000000
[  732.368458][T26130] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  732.368464][T26130] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  732.368470][T26130] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  732.368481][T26130]  </TASK>
[  732.625607][T26138] netlink: 104 bytes leftover after parsing attributes in process `syz.8.5767'.
[  733.017324][T26146] Invalid ELF header magic: != ELF
[  734.581684][T15799] usb 9-1: USB disconnect, device number 41
[  734.589068][T26188] netlink: 'syz.8.5778': attribute type 11 has an invalid length.
[  734.621869][   T25] usb 12-1: new high-speed USB device number 30 using dummy_hcd
[  734.775950][   T25] usb 12-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  734.779668][   T25] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  734.782902][   T25] usb 12-1: Product: syz
[  734.784088][   T25] usb 12-1: Manufacturer: syz
[  734.785409][   T25] usb 12-1: SerialNumber: syz
[  734.792153][   T25] usb 12-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  734.824138][   T25] usb 12-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  735.037064][   T64] usb 12-1: USB disconnect, device number 30
[  735.511897][   T39] audit: type=1326 audit(737.334:7401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26207 comm="syz.6.5788" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  735.511992][   T39] audit: type=1326 audit(737.334:7402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26207 comm="syz.6.5788" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  735.512021][   T39] audit: type=1326 audit(737.334:7403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26207 comm="syz.6.5788" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  735.512049][   T39] audit: type=1326 audit(737.334:7404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26207 comm="syz.6.5788" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  735.512075][   T39] audit: type=1326 audit(737.334:7405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26207 comm="syz.6.5788" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  735.512100][   T39] audit: type=1326 audit(737.344:7406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26207 comm="syz.6.5788" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  735.512127][   T39] audit: type=1326 audit(737.344:7407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26207 comm="syz.6.5788" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf73fe5a7 code=0x7ffc0000
[  735.512152][   T39] audit: type=1326 audit(737.344:7408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26207 comm="syz.6.5788" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  735.512181][   T39] audit: type=1326 audit(737.344:7409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26207 comm="syz.6.5788" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  735.512208][   T39] audit: type=1326 audit(737.344:7410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26207 comm="syz.6.5788" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  735.902240][   T25] ath9k_htc 12-1:1.0: ath9k_htc: Target is unresponsive
[  735.907540][   T25] ath9k_htc: Failed to initialize the device
[  735.915736][   T64] usb 12-1: ath9k_htc: USB layer deinitialized
[  736.786094][T26227] FAULT_INJECTION: forcing a failure.
[  736.786094][T26227] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  736.790612][T26227] CPU: 3 UID: 0 PID: 26227 Comm: syz.4.5793 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  736.790627][T26227] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  736.790634][T26227] Call Trace:
[  736.790639][T26227]  <TASK>
[  736.790644][T26227]  dump_stack_lvl+0x16c/0x1f0
[  736.790665][T26227]  should_fail_ex+0x50a/0x650
[  736.790680][T26227]  _copy_to_user+0x32/0xd0
[  736.790696][T26227]  simple_read_from_buffer+0xd0/0x160
[  736.790720][T26227]  proc_fail_nth_read+0x198/0x270
[  736.790742][T26227]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  736.790764][T26227]  ? rw_verify_area+0xcf/0x680
[  736.790785][T26227]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  736.790804][T26227]  vfs_read+0x1df/0xbf0
[  736.790815][T26227]  ? __fget_files+0x1fc/0x3a0
[  736.790826][T26227]  ? __pfx___mutex_lock+0x10/0x10
[  736.790835][T26227]  ? __pfx_vfs_read+0x10/0x10
[  736.790848][T26227]  ? __fget_files+0x206/0x3a0
[  736.790861][T26227]  ksys_read+0x12b/0x250
[  736.790871][T26227]  ? __pfx_ksys_read+0x10/0x10
[  736.790884][T26227]  __do_fast_syscall_32+0x73/0x120
[  736.790895][T26227]  do_fast_syscall_32+0x32/0x80
[  736.790905][T26227]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  736.790921][T26227] RIP: 0023:0xf7f87579
[  736.790930][T26227] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  736.790940][T26227] RSP: 002b:00000000f50a6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  736.790949][T26227] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50a6620
[  736.790955][T26227] RDX: 000000000000000f RSI: 00000000f740cff4 RDI: 0000000000000000
[  736.790961][T26227] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  736.790966][T26227] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  736.790971][T26227] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  736.790982][T26227]  </TASK>
[  736.886243][T26231] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5794'.
[  736.915703][T26238] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5798'.
[  737.995352][T26263] can0: slcan on pts0.
[  738.083419][T26266] can1: slcan on pts1.
[  738.243507][T26262] can0 (unregistered): slcan off pts0.
[  738.313083][T26265] can1 (unregistered): slcan off pts1.
[  739.190703][T26309] netlink: 44 bytes leftover after parsing attributes in process `syz.7.5814'.
[  740.031390][T26337] xt_CT: No such helper "snmp"
[  740.213030][T26341] input: syz0 as /devices/virtual/input/input37
[  740.265082][T26346] netlink: 'syz.7.5825': attribute type 16 has an invalid length.
[  741.034684][T26364] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5829'.
[  741.680558][T26382] can0: slcan on pts0.
[  741.824517][T26381] can0 (unregistered): slcan off pts0.
[  742.240505][T26409] netlink: 'syz.8.5839': attribute type 10 has an invalid length.
[  742.277465][T26409] 8021q: adding VLAN 0 to HW filter on device batadv0
[  742.296446][T26409] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  744.937017][T26457] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5854'.
[  744.940249][T26457] netlink: 24 bytes leftover after parsing attributes in process `syz.8.5854'.
[  746.002919][T26496] netlink: 44 bytes leftover after parsing attributes in process `syz.8.5867'.
[  746.783186][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  746.796337][T26524] netlink: 100 bytes leftover after parsing attributes in process `syz.6.5876'.
[  747.185986][T26540] bond0: (slave batadv0): Releasing backup interface
[  747.188714][T26540] bridge_slave_0: left allmulticast mode
[  747.190422][T26540] bridge_slave_0: left promiscuous mode
[  747.192319][T26540] bridge0: port 1(bridge_slave_0) entered disabled state
[  747.195837][T26540] bridge_slave_1: left allmulticast mode
[  747.197596][T26540] bridge_slave_1: left promiscuous mode
[  747.199300][T26540] bridge0: port 2(bridge_slave_1) entered disabled state
[  747.203054][T26540] bond0: (slave bond_slave_0): Releasing backup interface
[  747.206431][T26540] bond0: (slave bond_slave_1): Releasing backup interface
[  747.219195][T26540] team0: Port device team_slave_0 removed
[  747.223649][T26540] team0: Port device team_slave_1 removed
[  747.225392][T26540] batman_adv: batadv0: Removing interface: batadv_slave_0
[  747.227975][T26540] batman_adv: batadv0: Removing interface: batadv_slave_1
[  748.006225][T26561] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  748.307170][T26565] netlink: 44 bytes leftover after parsing attributes in process `syz.7.5889'.
[  748.756717][T26575] tmpfs: Bad value for 'nr_inodes'
[  749.569435][T26602] netlink: 44 bytes leftover after parsing attributes in process `syz.7.5901'.
[  750.015672][   T39] kauditd_printk_skb: 182 callbacks suppressed
[  750.015684][   T39] audit: type=1326 audit(751.894:7593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.6.5908" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  750.023626][   T39] audit: type=1326 audit(751.894:7594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.6.5908" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  750.037945][   T39] audit: type=1326 audit(751.894:7595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.6.5908" exe="/syz-executor" sig=0 arch=40000003 syscall=301 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  750.044826][   T39] audit: type=1326 audit(751.894:7596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.6.5908" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  750.050805][   T39] audit: type=1326 audit(751.894:7597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.6.5908" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  750.080831][   T39] audit: type=1326 audit(751.894:7598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.6.5908" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  750.086916][   T39] audit: type=1326 audit(751.894:7599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.6.5908" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  750.132771][   T39] audit: type=1326 audit(751.894:7600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.6.5908" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  750.138771][   T39] audit: type=1326 audit(751.894:7601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.6.5908" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  750.160553][   T39] audit: type=1326 audit(751.894:7602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.6.5908" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  750.767771][T26630] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3013113693 (3013113693 ns) > initial count (230350673 ns). Using initial count to start timer.
[  750.920466][T26636] netlink: 44 bytes leftover after parsing attributes in process `syz.7.5912'.
[  752.578511][T26674] netlink: 60 bytes leftover after parsing attributes in process `syz.8.5922'.
[  752.581114][T26674] netlink: 60 bytes leftover after parsing attributes in process `syz.8.5922'.
[  752.605343][T26674] netlink: 60 bytes leftover after parsing attributes in process `syz.8.5922'.
[  752.608139][T26674] netlink: 60 bytes leftover after parsing attributes in process `syz.8.5922'.
[  752.662797][T26674] netlink: 60 bytes leftover after parsing attributes in process `syz.8.5922'.
[  752.667625][T26674] netlink: 60 bytes leftover after parsing attributes in process `syz.8.5922'.
[  753.265574][T26707] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  753.313353][T26710] netlink: 1268 bytes leftover after parsing attributes in process `syz.7.5936'.
[  753.316091][T26710] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  753.372132][T26715] FAULT_INJECTION: forcing a failure.
[  753.372132][T26715] name failslab, interval 1, probability 0, space 0, times 0
[  753.375584][T26715] CPU: 3 UID: 0 PID: 26715 Comm: syz.6.5935 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  753.375599][T26715] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  753.375605][T26715] Call Trace:
[  753.375609][T26715]  <TASK>
[  753.375613][T26715]  dump_stack_lvl+0x16c/0x1f0
[  753.375688][T26715]  should_fail_ex+0x50a/0x650
[  753.375726][T26715]  ? fs_reclaim_acquire+0xae/0x150
[  753.375784][T26715]  should_failslab+0xc2/0x120
[  753.375838][T26715]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  753.375851][T26715]  ? getname_flags.part.0+0x4c/0x550
[  753.375888][T26715]  getname_flags.part.0+0x4c/0x550
[  753.375902][T26715]  getname_flags+0x93/0xf0
[  753.375912][T26715]  user_path_at+0x24/0x60
[  753.375922][T26715]  __ia32_sys_mount+0x1fc/0x310
[  753.375935][T26715]  ? __pfx___ia32_sys_mount+0x10/0x10
[  753.375951][T26715]  __do_fast_syscall_32+0x73/0x120
[  753.375981][T26715]  do_fast_syscall_32+0x32/0x80
[  753.375991][T26715]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  753.376008][T26715] RIP: 0023:0xf73fe579
[  753.376016][T26715] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  753.376026][T26715] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  753.376056][T26715] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  753.376062][T26715] RDX: 0000000000000000 RSI: 00000000002a00a9 RDI: 0000000080000080
[  753.376068][T26715] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  753.376073][T26715] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  753.376079][T26715] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  753.376090][T26715]  </TASK>
[  754.074711][T26732] netlink: 32 bytes leftover after parsing attributes in process `syz.8.5943'.
[  754.079098][T26732] netlink: 'syz.8.5943': attribute type 1 has an invalid length.
[  754.273706][T26741] netlink: 56 bytes leftover after parsing attributes in process `syz.8.5946'.
[  754.593690][T26753] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  755.951094][T26803] mkiss: ax0: crc mode is auto.
[  756.195841][T26807] __nla_validate_parse: 1 callbacks suppressed
[  756.195859][T26807] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5965'.
[  756.201968][T26807] netlink: 'syz.4.5965': attribute type 2 has an invalid length.
[  756.520184][T26818] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  757.023940][   T39] kauditd_printk_skb: 36 callbacks suppressed
[  757.023952][   T39] audit: type=1326 audit(758.904:7639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26826 comm="syz.6.5972" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  757.033255][   T39] audit: type=1326 audit(758.914:7640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26826 comm="syz.6.5972" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  757.038827][   T39] audit: type=1326 audit(758.914:7641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26826 comm="syz.6.5972" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  757.045749][   T39] audit: type=1326 audit(758.914:7642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26826 comm="syz.6.5972" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  757.051711][   T39] audit: type=1326 audit(758.914:7643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26826 comm="syz.6.5972" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  757.057453][   T39] audit: type=1326 audit(758.914:7644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26826 comm="syz.6.5972" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  757.062994][   T39] audit: type=1326 audit(758.914:7645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26826 comm="syz.6.5972" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  757.068496][   T39] audit: type=1326 audit(758.914:7646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26826 comm="syz.6.5972" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  757.074182][   T39] audit: type=1326 audit(758.914:7647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26826 comm="syz.6.5972" exe="/syz-executor" sig=0 arch=40000003 syscall=230 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  757.079711][   T39] audit: type=1326 audit(758.914:7648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26826 comm="syz.6.5972" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  757.268006][T26832] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5974'.
[  757.876588][T26858] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  758.612672][T26879] FAULT_INJECTION: forcing a failure.
[  758.612672][T26879] name failslab, interval 1, probability 0, space 0, times 0
[  758.617286][T26879] CPU: 0 UID: 0 PID: 26879 Comm: syz.6.5989 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  758.617308][T26879] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  758.617319][T26879] Call Trace:
[  758.617325][T26879]  <TASK>
[  758.617332][T26879]  dump_stack_lvl+0x16c/0x1f0
[  758.617366][T26879]  should_fail_ex+0x50a/0x650
[  758.617386][T26879]  ? fs_reclaim_acquire+0xae/0x150
[  758.617415][T26879]  should_failslab+0xc2/0x120
[  758.617437][T26879]  __kmalloc_noprof+0xce/0x4f0
[  758.617456][T26879]  ? is_bpf_text_address+0x8a/0x1a0
[  758.617511][T26879]  ? tomoyo_encode2+0x100/0x3e0
[  758.617569][T26879]  tomoyo_encode2+0x100/0x3e0
[  758.617589][T26879]  ? bpf_ksym_find+0x124/0x1c0
[  758.617616][T26879]  tomoyo_encode+0x2c/0x40
[  758.617636][T26879]  tomoyo_mount_acl+0x145/0x880
[  758.617655][T26879]  ? hlock_class+0x4e/0x130
[  758.617728][T26879]  ? __lock_acquire+0x15a9/0x3c40
[  758.617752][T26879]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  758.617777][T26879]  ? __pfx___lock_acquire+0x10/0x10
[  758.617798][T26879]  ? stack_trace_save+0x95/0xd0
[  758.617859][T26879]  ? trace_lock_acquire+0x14e/0x1f0
[  758.617877][T26879]  ? tomoyo_mount_permission+0x149/0x420
[  758.617897][T26879]  ? lock_acquire+0x2f/0xb0
[  758.617916][T26879]  ? tomoyo_mount_permission+0x149/0x420
[  758.617939][T26879]  tomoyo_mount_permission+0x16e/0x420
[  758.617959][T26879]  ? tomoyo_mount_permission+0x149/0x420
[  758.617980][T26879]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  758.618038][T26879]  ? get_current_fs_domain+0x184/0x1f0
[  758.618069][T26879]  security_sb_mount+0x9b/0x260
[  758.618099][T26879]  path_mount+0x129/0x1f00
[  758.618121][T26879]  ? kmem_cache_free+0x2e2/0x4d0
[  758.618138][T26879]  ? __pfx_path_mount+0x10/0x10
[  758.618162][T26879]  ? putname+0x13c/0x180
[  758.618207][T26879]  __ia32_sys_mount+0x28d/0x310
[  758.618229][T26879]  ? __pfx___ia32_sys_mount+0x10/0x10
[  758.618263][T26879]  __do_fast_syscall_32+0x73/0x120
[  758.618282][T26879]  do_fast_syscall_32+0x32/0x80
[  758.618298][T26879]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  758.618326][T26879] RIP: 0023:0xf73fe579
[  758.618340][T26879] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  758.618356][T26879] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  758.618372][T26879] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  758.618382][T26879] RDX: 0000000000000000 RSI: 00000000002a00a9 RDI: 0000000080000080
[  758.618392][T26879] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  758.618401][T26879] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  758.618411][T26879] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  758.618433][T26879]  </TASK>
[  758.796008][T26884] netlink: 44 bytes leftover after parsing attributes in process `syz.8.5990'.
[  759.480106][T26898] tmpfs: Unknown parameter 'nr_blocs'
[  760.090670][T26908] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  760.581323][T26929] netlink: 'syz.7.6002': attribute type 12 has an invalid length.
[  760.602202][T26929] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  760.723680][T26939] can0: slcan on pts0.
[  760.830267][T26952] FAULT_INJECTION: forcing a failure.
[  760.830267][T26952] name failslab, interval 1, probability 0, space 0, times 0
[  760.834086][T26952] CPU: 0 UID: 0 PID: 26952 Comm: syz.7.6009 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  760.834106][T26952] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  760.834117][T26952] Call Trace:
[  760.834130][T26952]  <TASK>
[  760.834136][T26952]  dump_stack_lvl+0x16c/0x1f0
[  760.834188][T26952]  should_fail_ex+0x50a/0x650
[  760.834210][T26952]  ? fs_reclaim_acquire+0xae/0x150
[  760.834239][T26952]  should_failslab+0xc2/0x120
[  760.834260][T26952]  __kmalloc_noprof+0xce/0x4f0
[  760.834277][T26952]  ? __kmalloc_noprof+0x23b/0x4f0
[  760.834314][T26952]  ? is_bpf_text_address+0x8a/0x1a0
[  760.834331][T26952]  ? tomoyo_realpath_from_path+0xbf/0x710
[  760.834348][T26952]  tomoyo_realpath_from_path+0xbf/0x710
[  760.834361][T26952]  ? tomoyo_fill_path_info+0x233/0x420
[  760.834378][T26952]  tomoyo_mount_acl+0x1af/0x880
[  760.834390][T26952]  ? hlock_class+0x4e/0x130
[  760.834405][T26952]  ? __lock_acquire+0x15a9/0x3c40
[  760.834419][T26952]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  760.834432][T26952]  ? __pfx___lock_acquire+0x10/0x10
[  760.834444][T26952]  ? stack_trace_save+0x95/0xd0
[  760.834461][T26952]  ? __pfx_lock_release+0x10/0x10
[  760.834478][T26952]  ? trace_lock_acquire+0x14e/0x1f0
[  760.834488][T26952]  ? tomoyo_mount_permission+0x149/0x420
[  760.834499][T26952]  ? lock_acquire+0x2f/0xb0
[  760.834510][T26952]  ? tomoyo_mount_permission+0x149/0x420
[  760.834523][T26952]  tomoyo_mount_permission+0x16e/0x420
[  760.834534][T26952]  ? tomoyo_mount_permission+0x149/0x420
[  760.834546][T26952]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  760.834562][T26952]  ? get_current_fs_domain+0x184/0x1f0
[  760.834579][T26952]  security_sb_mount+0x9b/0x260
[  760.834596][T26952]  path_mount+0x129/0x1f00
[  760.834609][T26952]  ? kmem_cache_free+0x2e2/0x4d0
[  760.834619][T26952]  ? __pfx_path_mount+0x10/0x10
[  760.834632][T26952]  ? putname+0x13c/0x180
[  760.834647][T26952]  __ia32_sys_mount+0x28d/0x310
[  760.834659][T26952]  ? __pfx___ia32_sys_mount+0x10/0x10
[  760.834674][T26952]  __do_fast_syscall_32+0x73/0x120
[  760.834685][T26952]  do_fast_syscall_32+0x32/0x80
[  760.834694][T26952]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  760.834711][T26952] RIP: 0023:0xf744e579
[  760.834719][T26952] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  760.834729][T26952] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  760.834738][T26952] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  760.834744][T26952] RDX: 0000000000000000 RSI: 00000000002a00a9 RDI: 0000000080000080
[  760.834750][T26952] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  760.834756][T26952] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  760.834762][T26952] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  760.834773][T26952]  </TASK>
[  760.834777][T26952] ERROR: Out of memory at tomoyo_realpath_from_path.
[  761.114404][T26938] can0 (unregistered): slcan off pts0.
[  761.167469][T26973] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6011'.
[  761.235756][T26984] netlink: 44 bytes leftover after parsing attributes in process `syz.7.6013'.
[  761.593785][T26996] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  762.056410][T27008] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6019'.
[  762.124637][T27010] can0: slcan on pts0.
[  762.300728][T27019] tmpfs: Bad value for 'nr_inodes'
[  762.322937][T27009] can0 (unregistered): slcan off pts0.
[  762.802797][T27056] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  763.495892][T27067] can0: slcan on pts0.
[  763.682818][T27065] can0 (unregistered): slcan off pts0.
[  764.231864][T20566] Bluetooth: hci0: command 0x0405 tx timeout
[  764.414245][T27106] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6042'.
[  764.672534][T27113] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  764.718055][T27114] netlink: 'syz.7.6040': attribute type 10 has an invalid length.
[  764.723177][T27114] team0: Port device netdevsim0 added
[  764.919701][T27117] can0: slcan on pts0.
[  765.062286][T27116] can0 (unregistered): slcan off pts0.
[  765.651897][ T6096] usb 9-1: new high-speed USB device number 42 using dummy_hcd
[  765.801869][ T6096] usb 9-1: Using ep0 maxpacket: 8
[  765.804708][ T6096] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  765.806983][ T6096] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  765.809704][ T6096] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  765.812512][ T6096] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  765.815260][ T6096] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  765.818904][ T6096] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  765.821417][ T6096] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  766.027395][ T6096] usb 9-1: usb_control_msg returned -32
[  766.029457][ T6096] usbtmc 9-1:16.0: can't read capabilities
[  766.050714][ T5990] usb 9-1: USB disconnect, device number 42
[  766.155400][T27158] tmpfs: Unknown parameter 'nr_inp��odes'
[  766.185805][T27160] can0: slcan on pts0.
[  766.423338][T27159] can0 (unregistered): slcan off pts0.
[  766.530160][T27175] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  766.834942][ T5950] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  766.842679][ T5950] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  766.862564][ T5950] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  766.883443][ T5950] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  766.886844][ T5950] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  766.904954][ T5950] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  766.938511][T27186] lo speed is unknown, defaulting to 1000
[  766.973625][T27186] lo speed is unknown, defaulting to 1000
[  767.049591][T27186] chnl_net:caif_netlink_parms(): no params data found
[  767.112646][T27186] bridge0: port 1(bridge_slave_0) entered blocking state
[  767.114892][T27186] bridge0: port 1(bridge_slave_0) entered disabled state
[  767.116965][T27186] bridge_slave_0: entered allmulticast mode
[  767.119161][T27186] bridge_slave_0: entered promiscuous mode
[  767.121903][T27186] bridge0: port 2(bridge_slave_1) entered blocking state
[  767.124318][T27186] bridge0: port 2(bridge_slave_1) entered disabled state
[  767.126600][T27186] bridge_slave_1: entered allmulticast mode
[  767.128823][T27186] bridge_slave_1: entered promiscuous mode
[  767.158691][T27186] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  767.163180][T27186] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  767.210260][T27186] team0: Port device team_slave_0 added
[  767.216427][T27186] team0: Port device team_slave_1 added
[  767.266371][T27186] batman_adv: batadv0: Adding interface: batadv_slave_0
[  767.268355][T27186] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  767.281097][T27186] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  767.285402][T27186] batman_adv: batadv0: Adding interface: batadv_slave_1
[  767.287399][T27186] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  767.295465][T27186] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  767.324603][T27186] hsr_slave_0: entered promiscuous mode
[  767.327516][T27186] hsr_slave_1: entered promiscuous mode
[  767.329664][T27186] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  767.331907][T27186] Cannot create hsr debugfs directory
[  767.365575][T27208] FAULT_INJECTION: forcing a failure.
[  767.365575][T27208] name failslab, interval 1, probability 0, space 0, times 0
[  767.365609][T27208] CPU: 0 UID: 0 PID: 27208 Comm: syz.8.6062 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  767.365621][T27208] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  767.365628][T27208] Call Trace:
[  767.365631][T27208]  <TASK>
[  767.365635][T27208]  dump_stack_lvl+0x16c/0x1f0
[  767.365655][T27208]  should_fail_ex+0x50a/0x650
[  767.365668][T27208]  ? fs_reclaim_acquire+0xae/0x150
[  767.365686][T27208]  should_failslab+0xc2/0x120
[  767.365700][T27208]  __kmalloc_noprof+0xce/0x4f0
[  767.365711][T27208]  ? tomoyo_realpath_from_path+0x1b7/0x710
[  767.365725][T27208]  ? tomoyo_encode2+0x100/0x3e0
[  767.365739][T27208]  tomoyo_encode2+0x100/0x3e0
[  767.365752][T27208]  tomoyo_encode+0x2c/0x40
[  767.365764][T27208]  tomoyo_mount_acl+0x314/0x880
[  767.365774][T27208]  ? hlock_class+0x4e/0x130
[  767.365790][T27208]  ? __lock_acquire+0x15a9/0x3c40
[  767.365804][T27208]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  767.365818][T27208]  ? __pfx___lock_acquire+0x10/0x10
[  767.365829][T27208]  ? stack_trace_save+0x95/0xd0
[  767.365846][T27208]  ? __pfx_lock_release+0x10/0x10
[  767.365863][T27208]  ? trace_lock_acquire+0x14e/0x1f0
[  767.365873][T27208]  ? tomoyo_mount_permission+0x149/0x420
[  767.365885][T27208]  ? lock_acquire+0x2f/0xb0
[  767.365908][T27208]  ? tomoyo_mount_permission+0x149/0x420
[  767.365923][T27208]  tomoyo_mount_permission+0x16e/0x420
[  767.365933][T27208]  ? tomoyo_mount_permission+0x149/0x420
[  767.365957][T27208]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  767.365974][T27208]  ? get_current_fs_domain+0x184/0x1f0
[  767.365991][T27208]  security_sb_mount+0x9b/0x260
[  767.366008][T27208]  path_mount+0x129/0x1f00
[  767.366021][T27208]  ? kmem_cache_free+0x2e2/0x4d0
[  767.366031][T27208]  ? __pfx_path_mount+0x10/0x10
[  767.366044][T27208]  ? putname+0x13c/0x180
[  767.366060][T27208]  __ia32_sys_mount+0x28d/0x310
[  767.366071][T27208]  ? __pfx___ia32_sys_mount+0x10/0x10
[  767.366087][T27208]  __do_fast_syscall_32+0x73/0x120
[  767.366098][T27208]  do_fast_syscall_32+0x32/0x80
[  767.366126][T27208]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  767.366143][T27208] RIP: 0023:0xf7f8f579
[  767.366151][T27208] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  767.366161][T27208] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  767.366171][T27208] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  767.366177][T27208] RDX: 0000000000000000 RSI: 00000000002a00a9 RDI: 0000000080000080
[  767.366183][T27208] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  767.366189][T27208] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  767.366195][T27208] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  767.366207][T27208]  </TASK>
[  767.534771][T27212] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6063'.
[  767.730204][T27186] team0: Port device netdevsim0 removed
[  767.819211][T27186] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  767.826515][T27186] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  767.854361][T27186] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  767.858183][T27186] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  767.888768][T27186] 8021q: adding VLAN 0 to HW filter on device bond0
[  767.897740][T27186] 8021q: adding VLAN 0 to HW filter on device team0
[  767.908205][T13514] bridge0: port 1(bridge_slave_0) entered blocking state
[  767.910440][T13514] bridge0: port 1(bridge_slave_0) entered forwarding state
[  767.940355][T13514] bridge0: port 2(bridge_slave_1) entered blocking state
[  767.940456][T27223] netlink: 44 bytes leftover after parsing attributes in process `syz.6.6066'.
[  767.942649][T13514] bridge0: port 2(bridge_slave_1) entered forwarding state
[  768.048100][T27186] 8021q: adding VLAN 0 to HW filter on device batadv0
[  768.180143][T27186] veth0_vlan: entered promiscuous mode
[  768.186432][T27186] veth1_vlan: entered promiscuous mode
[  768.203033][T27186] veth0_macvtap: entered promiscuous mode
[  768.207022][T27186] veth1_macvtap: entered promiscuous mode
[  768.218365][T27186] batman_adv: batadv0: Interface activated: batadv_slave_0
[  768.226335][T27186] batman_adv: batadv0: Interface activated: batadv_slave_1
[  768.231638][T27186] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  768.234607][T27186] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  768.237220][T27186] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  768.239793][T27186] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  768.290292][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  768.309920][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  768.328445][ T1273] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  768.330764][ T1273] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  768.369398][T27238] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  768.889992][   T39] kauditd_printk_skb: 218 callbacks suppressed
[  768.890003][   T39] audit: type=1326 audit(770.774:7867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27260 comm="syz.8.6072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  768.899287][   T39] audit: type=1326 audit(770.774:7868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27260 comm="syz.8.6072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  768.910034][   T39] audit: type=1326 audit(770.784:7869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27260 comm="syz.8.6072" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  768.927832][   T39] audit: type=1326 audit(770.784:7870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27260 comm="syz.8.6072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  768.936847][   T39] audit: type=1326 audit(770.784:7871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27260 comm="syz.8.6072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  768.941954][T20566] Bluetooth: hci0: command tx timeout
[  768.946609][   T39] audit: type=1326 audit(770.784:7872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27260 comm="syz.8.6072" exe="/syz-executor" sig=0 arch=40000003 syscall=263 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  768.958639][   T39] audit: type=1326 audit(770.784:7873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27260 comm="syz.8.6072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  768.964475][   T39] audit: type=1326 audit(770.784:7874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27260 comm="syz.8.6072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  768.970217][   T39] audit: type=1326 audit(770.784:7875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27260 comm="syz.8.6072" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  768.979775][   T39] audit: type=1326 audit(770.784:7876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27260 comm="syz.8.6072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x7ffc0000
[  769.600081][T27279] rdma_rxe: rxe_newlink: failed to add lo
[  769.602594][T27279] siw: device registration error -23
[  769.604803][T27279] ������: renamed from lo (while UP)
[  769.984646][T27285] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6080'.
[  769.996798][T27285] tipc: Started in network mode
[  769.998864][T27285] tipc: Node identity , cluster identity 4711
[  770.001034][T27285] tipc: Failed to obtain node identity
[  770.003428][T27285] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  770.089205][T27285] kexec: Could not allocate control_code_buffer
[  770.326815][T27297] FAULT_INJECTION: forcing a failure.
[  770.326815][T27297] name failslab, interval 1, probability 0, space 0, times 0
[  770.330185][T27297] CPU: 2 UID: 0 PID: 27297 Comm: syz.4.6083 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  770.330199][T27297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  770.330206][T27297] Call Trace:
[  770.330210][T27297]  <TASK>
[  770.330214][T27297]  dump_stack_lvl+0x16c/0x1f0
[  770.330234][T27297]  should_fail_ex+0x50a/0x650
[  770.330248][T27297]  ? fs_reclaim_acquire+0xae/0x150
[  770.330266][T27297]  ? alloc_fs_context+0x57/0x9c0
[  770.330303][T27297]  should_failslab+0xc2/0x120
[  770.330317][T27297]  __kmalloc_cache_noprof+0x68/0x420
[  770.330330][T27297]  alloc_fs_context+0x57/0x9c0
[  770.330343][T27297]  path_mount+0xaa8/0x1f00
[  770.330356][T27297]  ? kmem_cache_free+0x2e2/0x4d0
[  770.330367][T27297]  ? __pfx_path_mount+0x10/0x10
[  770.330380][T27297]  ? putname+0x13c/0x180
[  770.330395][T27297]  __ia32_sys_mount+0x28d/0x310
[  770.330407][T27297]  ? __pfx___ia32_sys_mount+0x10/0x10
[  770.330422][T27297]  __do_fast_syscall_32+0x73/0x120
[  770.330432][T27297]  do_fast_syscall_32+0x32/0x80
[  770.330442][T27297]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  770.330459][T27297] RIP: 0023:0xf7f87579
[  770.330467][T27297] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  770.330476][T27297] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  770.330486][T27297] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  770.330492][T27297] RDX: 0000000000000000 RSI: 00000000002a00a9 RDI: 0000000080000080
[  770.330498][T27297] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  770.330503][T27297] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  770.330509][T27297] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  770.330520][T27297]  </TASK>
[  770.520448][T27303] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6085'.
[  770.554770][T27305] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6086'.
[  771.021872][T20566] Bluetooth: hci0: command tx timeout
[  771.395263][T27333] tmpfs: Unknown parameter 'nr_blcks'
[  771.579282][T27341] xt_addrtype: ipv6 BLACKHOLE matching not supported
[  773.102409][T20566] Bluetooth: hci0: command tx timeout
[  773.407856][T27377] FAULT_INJECTION: forcing a failure.
[  773.407856][T27377] name failslab, interval 1, probability 0, space 0, times 0
[  773.415004][T27377] CPU: 3 UID: 0 PID: 27377 Comm: syz.7.6108 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  773.415021][T27377] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  773.415028][T27377] Call Trace:
[  773.415031][T27377]  <TASK>
[  773.415035][T27377]  dump_stack_lvl+0x16c/0x1f0
[  773.415056][T27377]  should_fail_ex+0x50a/0x650
[  773.415070][T27377]  ? fs_reclaim_acquire+0xae/0x150
[  773.415088][T27377]  ? shmem_init_fs_context+0x45/0x2b0
[  773.415127][T27377]  should_failslab+0xc2/0x120
[  773.415141][T27377]  __kmalloc_cache_noprof+0x68/0x420
[  773.415152][T27377]  ? lock_acquire+0x2f/0xb0
[  773.415164][T27377]  ? lockref_get+0x15/0x50
[  773.415179][T27377]  shmem_init_fs_context+0x45/0x2b0
[  773.415191][T27377]  ? __pfx_shmem_init_fs_context+0x10/0x10
[  773.415203][T27377]  alloc_fs_context+0x54a/0x9c0
[  773.415216][T27377]  path_mount+0xaa8/0x1f00
[  773.415229][T27377]  ? kmem_cache_free+0x2e2/0x4d0
[  773.415240][T27377]  ? __pfx_path_mount+0x10/0x10
[  773.415253][T27377]  ? putname+0x13c/0x180
[  773.415267][T27377]  __ia32_sys_mount+0x28d/0x310
[  773.415283][T27377]  ? __pfx___ia32_sys_mount+0x10/0x10
[  773.415298][T27377]  __do_fast_syscall_32+0x73/0x120
[  773.415310][T27377]  do_fast_syscall_32+0x32/0x80
[  773.415319][T27377]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  773.415336][T27377] RIP: 0023:0xf745e579
[  773.415344][T27377] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  773.415354][T27377] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  773.415364][T27377] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  773.415370][T27377] RDX: 0000000000000000 RSI: 00000000002a00a9 RDI: 0000000080000080
[  773.415376][T27377] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  773.415382][T27377] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  773.415387][T27377] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  773.415398][T27377]  </TASK>
[  773.798124][T27391] overlay: Unknown parameter 'obj_user'
[  773.801162][T27389] overlayfs: overlapping lowerdir path
[  774.939982][T27417] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6118'.
[  774.978710][T27420] Bluetooth: MGMT ver 1.23
[  775.191863][T20566] Bluetooth: hci0: command tx timeout
[  775.662900][T27431] can0: slcan on pts0.
[  775.733141][T27430] can0 (unregistered): slcan off pts0.
[  775.873756][T27449] FAULT_INJECTION: forcing a failure.
[  775.873756][T27449] name failslab, interval 1, probability 0, space 0, times 0
[  775.877668][T27449] CPU: 3 UID: 0 PID: 27449 Comm: syz.8.6126 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  775.877684][T27449] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  775.877690][T27449] Call Trace:
[  775.877694][T27449]  <TASK>
[  775.877699][T27449]  dump_stack_lvl+0x16c/0x1f0
[  775.877720][T27449]  should_fail_ex+0x50a/0x650
[  775.877734][T27449]  ? fs_reclaim_acquire+0xae/0x150
[  775.877751][T27449]  should_failslab+0xc2/0x120
[  775.877764][T27449]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  775.877778][T27449]  ? vfs_parse_fs_string+0xc4/0x150
[  775.877792][T27449]  kmemdup_nul+0x34/0xa0
[  775.877808][T27449]  vfs_parse_fs_string+0xc4/0x150
[  775.877818][T27449]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  775.877833][T27449]  ? shmem_next_opt+0xbc/0x120
[  775.877844][T27449]  ? __pfx_shmem_next_opt+0x10/0x10
[  775.877854][T27449]  vfs_parse_monolithic_sep+0x171/0x1f0
[  775.877866][T27449]  ? __pfx_vfs_parse_monolithic_sep+0x10/0x10
[  775.877876][T27449]  ? shmem_init_fs_context+0x222/0x2b0
[  775.877888][T27449]  ? __pfx_shmem_init_fs_context+0x10/0x10
[  775.877900][T27449]  ? alloc_fs_context+0x59b/0x9c0
[  775.877912][T27449]  path_mount+0xb1c/0x1f00
[  775.877926][T27449]  ? kmem_cache_free+0x2e2/0x4d0
[  775.877936][T27449]  ? __pfx_path_mount+0x10/0x10
[  775.877949][T27449]  ? putname+0x13c/0x180
[  775.877963][T27449]  __ia32_sys_mount+0x28d/0x310
[  775.877975][T27449]  ? __pfx___ia32_sys_mount+0x10/0x10
[  775.877990][T27449]  __do_fast_syscall_32+0x73/0x120
[  775.878001][T27449]  do_fast_syscall_32+0x32/0x80
[  775.878011][T27449]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  775.878043][T27449] RIP: 0023:0xf7f8f579
[  775.878052][T27449] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  775.878062][T27449] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  775.878072][T27449] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  775.878078][T27449] RDX: 0000000000000000 RSI: 00000000002a00a9 RDI: 0000000080000080
[  775.878084][T27449] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  775.878090][T27449] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  775.878095][T27449] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  775.878106][T27449]  </TASK>
[  776.108941][T27458] overlay: Unknown parameter 'dont_measure'
[  776.831430][   T39] kauditd_printk_skb: 7 callbacks suppressed
[  776.831471][   T39] audit: type=1326 audit(2000000001.459:7884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27465 comm="syz.4.6130" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f87579 code=0x0
[  777.143115][T27477] can0: slcan on pts2.
[  777.213832][T27476] can0 (unregistered): slcan off pts2.
[  778.367968][T27528] can0: slcan on pts0.
[  778.484597][T27526] can0 (unregistered): slcan off pts0.
[  779.332912][T27559] can0: slcan on pts0.
[  779.531428][T27566] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6153'.
[  779.572630][T27557] can0 (unregistered): slcan off pts0.
[  780.824410][T27603] can0: slcan on pts1.
[  781.082682][T27602] can0 (unregistered): slcan off pts1.
[  781.478898][T27625] FAULT_INJECTION: forcing a failure.
[  781.478898][T27625] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  781.478939][T27625] CPU: 2 UID: 0 PID: 27625 Comm: syz.6.6167 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  781.478957][T27625] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  781.478988][T27625] Call Trace:
[  781.478993][T27625]  <TASK>
[  781.478996][T27625]  dump_stack_lvl+0x16c/0x1f0
[  781.479017][T27625]  should_fail_ex+0x50a/0x650
[  781.479032][T27625]  _copy_to_user+0x32/0xd0
[  781.479047][T27625]  simple_read_from_buffer+0xd0/0x160
[  781.479064][T27625]  proc_fail_nth_read+0x198/0x270
[  781.479108][T27625]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  781.479127][T27625]  ? rw_verify_area+0xcf/0x680
[  781.479148][T27625]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  781.479167][T27625]  vfs_read+0x1df/0xbf0
[  781.479181][T27625]  ? __fget_files+0x1fc/0x3a0
[  781.479198][T27625]  ? __pfx___mutex_lock+0x10/0x10
[  781.479212][T27625]  ? __pfx_vfs_read+0x10/0x10
[  781.479233][T27625]  ? __fget_files+0x206/0x3a0
[  781.479255][T27625]  ksys_read+0x12b/0x250
[  781.479269][T27625]  ? __pfx_ksys_read+0x10/0x10
[  781.479291][T27625]  __do_fast_syscall_32+0x73/0x120
[  781.479308][T27625]  do_fast_syscall_32+0x32/0x80
[  781.479322][T27625]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  781.479347][T27625] RIP: 0023:0xf73fe579
[  781.479359][T27625] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  781.479373][T27625] RSP: 002b:00000000f5086590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  781.479389][T27625] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5086620
[  781.479398][T27625] RDX: 000000000000000f RSI: 00000000f73ecff4 RDI: 0000000000000000
[  781.479406][T27625] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  781.479415][T27625] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  781.479423][T27625] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  781.479443][T27625]  </TASK>
[  781.554101][T27622] lo speed is unknown, defaulting to 1000
[  781.587327][T27622] lo speed is unknown, defaulting to 1000
[  782.526098][T27646] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6172'.
[  782.679046][T27654] can0: slcan on pts0.
[  782.852411][T27653] can0 (unregistered): slcan off pts0.
[  783.197497][T27693] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6182'.
[  783.229471][T27695] netlink: 32 bytes leftover after parsing attributes in process `syz.4.6183'.
[  783.345178][T27707] tmpfs: Unknown parameter 'nr_b:@�s���r_inodes'
[  783.368942][T27708] can0: slcan on pts0.
[  783.533415][T27705] can0 (unregistered): slcan off pts0.
[  783.571817][T27721] bridge0: port 1(syz_tun) entered blocking state
[  783.574046][T27721] bridge0: port 1(syz_tun) entered disabled state
[  783.576380][T27721] syz_tun: entered allmulticast mode
[  783.582708][T27721] syz_tun: entered promiscuous mode
[  784.701845][ T5950] Bluetooth: hci4: command 0x0406 tx timeout
[  785.616592][T27763] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  785.620732][T27763] batman_adv: batadv0: Adding interface: ip6gretap1
[  785.623086][T27763] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  785.630145][T27763] batman_adv: batadv0: Interface activated: ip6gretap1
[  785.660838][T27768] netlink: 44 bytes leftover after parsing attributes in process `syz.6.6200'.
[  785.753819][T27778] can0: slcan on pts0.
[  785.942396][T27777] can0 (unregistered): slcan off pts0.
[  786.001703][T27792] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(6)
[  786.003967][T27792] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  786.006652][T27792] vhci_hcd vhci_hcd.0: Device attached
[  786.130317][T27799] mkiss: ax0: crc mode is auto.
[  786.241884][  T833] usb 49-1: new low-speed USB device number 5 using vhci_hcd
[  786.790936][T27808] lo speed is unknown, defaulting to 1000
[  786.825742][T27808] lo speed is unknown, defaulting to 1000
[  786.883977][T27795] vhci_hcd: connection reset by peer
[  786.885849][ T1141] vhci_hcd: stop threads
[  786.887382][ T1141] vhci_hcd: release socket
[  786.889091][ T1141] vhci_hcd: disconnect device
[  788.297315][T27846] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  788.360778][T27848] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  788.563402][T27854] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  788.870618][T27865] sctp: [Deprecated]: syz.4.6224 (pid 27865) Use of struct sctp_assoc_value in delayed_ack socket option.
[  788.870618][T27865] Use struct sctp_sack_info instead
[  790.061411][T27888] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6230'.
[  790.191434][T27895] FAULT_INJECTION: forcing a failure.
[  790.191434][T27895] name failslab, interval 1, probability 0, space 0, times 0
[  790.191460][T27895] CPU: 3 UID: 0 PID: 27895 Comm: syz.8.6233 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  790.191476][T27895] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  790.191484][T27895] Call Trace:
[  790.191488][T27895]  <TASK>
[  790.191494][T27895]  dump_stack_lvl+0x16c/0x1f0
[  790.191520][T27895]  should_fail_ex+0x50a/0x650
[  790.191536][T27895]  ? fs_reclaim_acquire+0xae/0x150
[  790.191557][T27895]  should_failslab+0xc2/0x120
[  790.191574][T27895]  __kmalloc_noprof+0xce/0x4f0
[  790.191589][T27895]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  790.191605][T27895]  ? tomoyo_realpath_from_path+0xbf/0x710
[  790.191625][T27895]  tomoyo_realpath_from_path+0xbf/0x710
[  790.191642][T27895]  ? tomoyo_path_number_perm+0x235/0x5b0
[  790.191657][T27895]  tomoyo_path_number_perm+0x248/0x5b0
[  790.191669][T27895]  ? tomoyo_path_number_perm+0x235/0x5b0
[  790.191683][T27895]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  790.191713][T27895]  ? __pfx_lock_release+0x10/0x10
[  790.191726][T27895]  ? trace_lock_acquire+0x14e/0x1f0
[  790.191754][T27895]  ? lock_acquire+0x2f/0xb0
[  790.191766][T27895]  ? __fget_files+0x40/0x3a0
[  790.191783][T27895]  ? __fget_files+0x206/0x3a0
[  790.191798][T27895]  security_file_ioctl_compat+0x9b/0x240
[  790.191814][T27895]  __do_compat_sys_ioctl+0x4e/0x2c0
[  790.191836][T27895]  __do_fast_syscall_32+0x73/0x120
[  790.191850][T27895]  do_fast_syscall_32+0x32/0x80
[  790.191862][T27895]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  790.191883][T27895] RIP: 0023:0xf7f8f579
[  790.191893][T27895] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  790.191906][T27895] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  790.191919][T27895] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000541b
[  790.191931][T27895] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  790.191939][T27895] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  790.191946][T27895] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  790.191953][T27895] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  790.191969][T27895]  </TASK>
[  790.192188][T27895] ERROR: Out of memory at tomoyo_realpath_from_path.
[  790.327379][T27900] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  791.151706][T27924] tmpfs: Unknown parameter 'nr_blocks��J�[�W'
[  791.183306][   T39] audit: type=1326 audit(2000000015.819:7885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27911 comm="syz.4.6238" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x0
[  791.335533][  T833] vhci_hcd: vhci_device speed not set
[  791.401930][    T8] usb 12-1: new high-speed USB device number 31 using dummy_hcd
[  791.531857][    T8] usb 12-1: device descriptor read/64, error -71
[  791.791904][    T8] usb 12-1: new high-speed USB device number 32 using dummy_hcd
[  791.922669][    T8] usb 12-1: device descriptor read/64, error -71
[  792.042149][    T8] usb usb12-port1: attempt power cycle
[  792.107121][T27941] netlink: 44 bytes leftover after parsing attributes in process `syz.6.6247'.
[  792.391898][    T8] usb 12-1: new high-speed USB device number 33 using dummy_hcd
[  792.412338][    T8] usb 12-1: device descriptor read/8, error -71
[  792.651967][    T8] usb 12-1: new high-speed USB device number 34 using dummy_hcd
[  792.672585][    T8] usb 12-1: device descriptor read/8, error -71
[  792.792334][    T8] usb usb12-port1: unable to enumerate USB device
[  792.842064][  T833] usb 13-1: new full-speed USB device number 17 using dummy_hcd
[  792.993331][  T833] usb 13-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  792.996250][  T833] usb 13-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  792.998781][  T833] usb 13-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  793.001295][  T833] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  793.004873][  T833] usb 13-1: config 0 descriptor??
[  793.154991][T27957] can0: slcan on pts0.
[  793.303071][T27956] can0 (unregistered): slcan off pts0.
[  793.421052][   T39] audit: type=1326 audit(2000000018.049:7886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27968 comm="syz.6.6254" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x0
[  795.719474][   T30] usb 13-1: USB disconnect, device number 17
[  795.858244][T20566] block nbd8: Receive control failed (result -107)
[  795.892538][T28010] netlink: 24 bytes leftover after parsing attributes in process `syz.7.6261'.
[  795.924542][T24495] block nbd8: shutting down sockets
[  796.061086][   T39] audit: type=1326 audit(2000000020.689:7887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28015 comm="syz.8.6264" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x0
[  797.702749][T28052] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  798.296372][T28058] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  799.691325][   T39] audit: type=1326 audit(2000000024.319:7888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28075 comm="syz.7.6277" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x0
[  801.511978][T28111] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  801.949515][   T39] audit: type=1326 audit(2000000026.579:7889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28114 comm="syz.4.6286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  801.956345][   T39] audit: type=1326 audit(2000000026.579:7890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28114 comm="syz.4.6286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  801.965882][   T39] audit: type=1326 audit(2000000026.589:7891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28114 comm="syz.4.6286" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  801.971858][   T39] audit: type=1326 audit(2000000026.589:7892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28114 comm="syz.4.6286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  801.977807][   T39] audit: type=1326 audit(2000000026.589:7893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28114 comm="syz.4.6286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  801.983944][   T39] audit: type=1326 audit(2000000026.589:7894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28114 comm="syz.4.6286" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  801.990152][   T39] audit: type=1326 audit(2000000026.589:7895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28114 comm="syz.4.6286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  801.997391][   T39] audit: type=1326 audit(2000000026.589:7896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28114 comm="syz.4.6286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  802.003685][   T39] audit: type=1326 audit(2000000026.589:7897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28114 comm="syz.4.6286" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  803.838688][T28156] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6296'.
[  803.841274][T28156] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6296'.
[  803.858392][T28156] 9pnet_fd: Insufficient options for proto=fd
[  804.448628][T28170] xt_CT: No such helper "syz1"
[  804.902442][   T39] kauditd_printk_skb: 130 callbacks suppressed
[  804.902455][   T39] audit: type=1326 audit(2000000029.539:8028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28183 comm="syz.7.6303" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x0
[  805.688355][   T39] audit: type=1326 audit(2000000030.319:8029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28192 comm="syz.7.6304" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  805.710955][   T39] audit: type=1326 audit(2000000030.319:8030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28192 comm="syz.7.6304" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  805.724156][   T39] audit: type=1326 audit(2000000030.329:8031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28192 comm="syz.7.6304" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf745e579 code=0x7ffc0000
[  805.736410][   T39] audit: type=1326 audit(2000000030.329:8032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28192 comm="syz.7.6304" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  805.744723][   T39] audit: type=1326 audit(2000000030.329:8033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28192 comm="syz.7.6304" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf745e579 code=0x7ffc0000
[  805.752653][   T39] audit: type=1326 audit(2000000030.329:8034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28192 comm="syz.7.6304" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf745e5a7 code=0x7ffc0000
[  805.760736][   T39] audit: type=1326 audit(2000000030.329:8035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28192 comm="syz.7.6304" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  805.769912][   T39] audit: type=1326 audit(2000000030.339:8036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28192 comm="syz.7.6304" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf745e579 code=0x7ffc0000
[  805.778484][   T39] audit: type=1326 audit(2000000030.339:8037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28192 comm="syz.7.6304" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  807.544685][T28224] overlayfs: failed to decode file handle (len=6, type=0, flags=0, err=-22)
[  807.845092][T28242] netem: unknown loss type 0
[  807.847243][T28242] netem: change failed
[  808.224371][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  808.462392][   T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  808.772768][T28258] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  810.045284][T28279] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(4)
[  810.047955][T28279] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  810.052634][T28279] vhci_hcd vhci_hcd.0: Device attached
[  810.056359][T28280] vhci_hcd: connection closed
[  810.056590][   T45] vhci_hcd: stop threads
[  810.059235][   T45] vhci_hcd: release socket
[  810.060510][   T45] vhci_hcd: disconnect device
[  810.083081][T28283] netlink: 48 bytes leftover after parsing attributes in process `syz.4.6327'.
[  810.089422][T28283] 9p: Unknown Cache mode or invalid value fscache[�H~�Sz�Fd�N�`����*�9�&�f�Ь_y�ϫ��Y�
[  810.723804][T28313] fuse: Unknown parameter '	'
[  810.867732][T28319] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  811.369657][T28328] tmpfs: Unknown parameter 'nr_bl��O'
[  811.544519][T28340] random: crng reseeded on system resumption
[  812.404043][T28374] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  812.450246][T28363] tipc: Started in network mode
[  812.452036][T28363] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  812.452407][ T5950] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  812.454480][T28363] tipc: Enabled bearer <eth:team0>, priority 0
[  812.504474][ T5950] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  812.522095][ T5950] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  812.527364][ T5950] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  812.529569][ T5950] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  812.531869][ T5950] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  812.556336][T28371] lo speed is unknown, defaulting to 1000
[  812.589394][T28371] lo speed is unknown, defaulting to 1000
[  812.678103][T28371] chnl_net:caif_netlink_parms(): no params data found
[  812.731291][T28385] netlink: 'syz.8.6359': attribute type 1 has an invalid length.
[  812.734816][T28385] netlink: 224 bytes leftover after parsing attributes in process `syz.8.6359'.
[  812.838263][T28371] bridge0: port 1(bridge_slave_0) entered blocking state
[  812.844276][T28371] bridge0: port 1(bridge_slave_0) entered disabled state
[  812.851522][T28371] bridge_slave_0: entered allmulticast mode
[  812.861873][T28371] bridge_slave_0: entered promiscuous mode
[  812.919723][T28371] bridge0: port 2(bridge_slave_1) entered blocking state
[  812.932028][T28371] bridge0: port 2(bridge_slave_1) entered disabled state
[  812.942051][T28371] bridge_slave_1: entered allmulticast mode
[  812.944861][T28371] bridge_slave_1: entered promiscuous mode
[  812.974754][T28371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  812.978782][T28371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  813.055323][T28371] team0: Port device team_slave_0 added
[  813.058861][T28371] team0: Port device team_slave_1 added
[  813.078502][T28371] batman_adv: batadv0: Adding interface: batadv_slave_0
[  813.080442][T28371] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  813.087562][T28371] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  813.091566][T28371] batman_adv: batadv0: Adding interface: batadv_slave_1
[  813.093872][T28371] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  813.101082][T28371] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  813.137197][T28371] hsr_slave_0: entered promiscuous mode
[  813.139262][T28371] hsr_slave_1: entered promiscuous mode
[  813.141082][T28371] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  813.143317][T28371] Cannot create hsr debugfs directory
[  813.185913][T28392] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  813.190025][T28392] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  813.281286][T18524] usb 12-1: new high-speed USB device number 35 using dummy_hcd
[  813.432101][T18524] usb 12-1: Using ep0 maxpacket: 32
[  813.435924][T18524] usb 12-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  813.441602][T18524] usb 12-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  813.445172][T18524] usb 12-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  813.448355][T18524] usb 12-1: Product: syz
[  813.450040][T18524] usb 12-1: Manufacturer: syz
[  813.451999][T18524] usb 12-1: SerialNumber: syz
[  813.462054][  T833] tipc: Node number set to 11578026
[  813.465137][T18524] usb 12-1: config 0 descriptor??
[  813.468018][T28391] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  813.471286][T18524] hub 12-1:0.0: bad descriptor, ignoring hub
[  813.475632][T18524] hub 12-1:0.0: probe with driver hub failed with error -5
[  813.506970][T28371] bond0: (slave netdevsim0): Releasing backup interface
[  813.694329][T28371] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  813.698269][T28371] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  813.706139][T28371] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  813.709968][T28371] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  813.770856][T28371] 8021q: adding VLAN 0 to HW filter on device bond0
[  813.783398][T28371] 8021q: adding VLAN 0 to HW filter on device team0
[  813.789161][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  813.791303][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  813.794066][T18524] usb 12-1: USB disconnect, device number 35
[  813.808771][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[  813.810905][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[  813.934208][T28371] 8021q: adding VLAN 0 to HW filter on device batadv0
[  814.072385][T28371] veth0_vlan: entered promiscuous mode
[  814.076680][T28371] veth1_vlan: entered promiscuous mode
[  814.093578][T28371] veth0_macvtap: entered promiscuous mode
[  814.096562][T28371] veth1_macvtap: entered promiscuous mode
[  814.103341][T28371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  814.106418][T28371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.109781][T28371] batman_adv: batadv0: Interface activated: batadv_slave_0
[  814.120038][T28371] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  814.124040][T28371] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  814.131100][T28371] batman_adv: batadv0: Interface activated: batadv_slave_1
[  814.173794][T28371] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  814.176275][T28371] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  814.181864][T28371] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  814.184818][T28371] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  814.247746][T28426] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  814.249990][T13514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  814.257859][T13514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  814.266352][T13514] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  814.268626][T13514] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  814.328784][T28430] tmpfs: Unknown parameter 'nr_bl��O'
[  814.543703][T20566] Bluetooth: hci3: command tx timeout
[  815.204479][T28449] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  815.490246][T28455] fuse: Bad value for 'fd'
[  816.112458][T20531] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  816.622520][T20566] Bluetooth: hci3: command tx timeout
[  816.719758][T28499] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6383'.
[  816.948738][   T39] kauditd_printk_skb: 333 callbacks suppressed
[  816.948751][   T39] audit: type=1326 audit(2000000041.579:8371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28507 comm="syz.6.6386" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x0
[  818.702029][T20566] Bluetooth: hci3: command tx timeout
[  820.782323][T20566] Bluetooth: hci3: command tx timeout
[  826.291686][T28533] ubi31: attaching mtd0
[  826.295405][T28533] ubi31: scanning is finished
[  826.357441][T28533] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  826.359690][T28533] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  826.362330][T28533] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  826.367663][T28533] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  826.371908][T28533] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  826.373900][T28533] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  826.376200][T28533] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 2750869265
[  826.379905][T28533] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  826.383314][T28539] ubi31: background thread "ubi_bgt31d" started, PID 28539
[  826.661503][T28544] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  827.208424][T28551] fuse: Unknown parameter ''
[  827.902196][T28572] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  828.630990][T28587] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  829.662630][T28605] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6408'.
[  829.775609][T28610] can0: slcan on pts0.
[  830.002546][T28609] can0 (unregistered): slcan off pts0.
[  830.529580][T28635] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  830.643240][T28637] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  831.482565][T28644] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  831.489405][T28646] netlink: 44 bytes leftover after parsing attributes in process `syz.6.6416'.
[  831.654065][T28652] can0: slcan on pts0.
[  832.027811][T28658] fuse: Bad value for 'fd'
[  832.282160][T28651] can0 (unregistered): slcan off pts0.
[  832.580304][T28662] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  833.263573][T28714] can0: slcan on pts0.
[  833.443126][T28713] can0 (unregistered): slcan off pts0.
[  833.632471][T28734] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  833.900402][T28740] fuse: Unknown parameter 'XrpXid'
[  834.553042][T28752] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6438'.
[  834.911970][T28768] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6441'.
[  834.955988][T28771] input: syz1 as /devices/virtual/input/input40
[  834.959999][T28771] netlink: 'syz.8.6442': attribute type 39 has an invalid length.
[  835.452415][T28785] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  835.962361][T28789] can0: slcan on pts0.
[  836.145237][T28788] can0 (unregistered): slcan off pts0.
[  836.190280][T28802] netlink: 44 bytes leftover after parsing attributes in process `syz.6.6452'.
[  836.637103][T28806] fuse: Bad value for 'fd'
[  837.526804][T28847] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  837.534466][T28846] wireguard0: entered promiscuous mode
[  838.552355][T28860] 9pnet_fd: Insufficient options for proto=fd
[  839.023144][T28868] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6465'.
[  840.223069][T28889] can0: slcan on pts0.
[  840.442334][T28888] can0 (unregistered): slcan off pts0.
[  840.829825][T28915] wireguard1: entered promiscuous mode
[  840.831708][T28915] wireguard1: entered allmulticast mode
[  841.331691][T28923] 9pnet_fd: Insufficient options for proto=fd
[  841.675594][T28935] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  842.030511][T28936] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  842.541112][T28938] can0: slcan on pts0.
[  842.933599][T28937] can0 (unregistered): slcan off pts0.
[  843.135102][T28961] syzkaller0: entered promiscuous mode
[  843.138957][T28961] syzkaller0: entered allmulticast mode
[  843.598350][T28975] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  843.891945][  T833] usb 9-1: new high-speed USB device number 43 using dummy_hcd
[  844.041892][  T833] usb 9-1: Using ep0 maxpacket: 8
[  844.045564][  T833] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  844.048511][  T833] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  844.053004][  T833] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  844.057303][  T833] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  844.061448][  T833] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  844.077316][  T833] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  844.080198][  T833] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  844.084318][  T833] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  844.088526][  T833] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  844.092738][  T833] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  844.097956][  T833] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  844.100750][  T833] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  844.105382][  T833] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  844.108657][  T833] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  844.111652][  T833] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  844.119990][  T833] usb 9-1: string descriptor 0 read error: -22
[  844.122223][  T833] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  844.124521][  T833] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  844.136305][  T833] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  844.338782][  T833] usb 9-1: USB disconnect, device number 43
[  844.352151][T28977] sp0: Synchronizing with TNC
[  844.589195][T28982] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  844.845224][T28986] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  845.241072][T28988] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6489'.
[  845.615960][T28992] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  845.885230][T28999] fuse: Unknown parameter '��'
[  846.221980][ T5950] Bluetooth: hci2: command 0x0406 tx timeout
[  847.796502][T29025] blktrace: Concurrent blktraces are not allowed on sg0
[  847.800557][T29025] netlink: 84 bytes leftover after parsing attributes in process `syz.6.6498'.
[  847.910660][T29032] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  848.287269][T29036] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  849.149911][T29059] syzkaller0: entered promiscuous mode
[  849.152040][T29059] syzkaller0: entered allmulticast mode
[  850.246037][T29077] netlink: 44 bytes leftover after parsing attributes in process `syz.6.6514'.
[  850.461031][T29089] can0: slcan on pts0.
[  850.563834][T29096] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  850.674035][T29088] can0 (unregistered): slcan off pts0.
[  851.267432][T29118] netlink: 44 bytes leftover after parsing attributes in process `syz.6.6524'.
[  851.513720][T29124] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  851.847441][T29130] can0: slcan on pts0.
[  851.900199][T29135] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  851.901506][T29136] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  851.938534][ T5980] kernel write not supported for file /cpu/0/msr (pid: 5980 comm: kworker/0:3)
[  851.956038][   T39] audit: type=1804 audit(2000000076.589:8372): pid=29140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.6529" name="/newroot/114/file0" dev="tmpfs" ino=690 res=1 errno=0
[  852.063514][T29129] can0 (unregistered): slcan off pts0.
[  852.419157][T29154] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  853.361353][T29165] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  853.537747][T29171] netlink: 'syz.6.6536': attribute type 10 has an invalid length.
[  853.603053][T29171] 8021q: adding VLAN 0 to HW filter on device batadv0
[  853.689471][T29171] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  854.276183][T29183] can0: slcan on pts0.
[  854.302060][T11659] usb 13-1: new high-speed USB device number 18 using dummy_hcd
[  854.402351][T29182] can0 (unregistered): slcan off pts0.
[  854.462040][T11659] usb 13-1: Using ep0 maxpacket: 8
[  854.473265][T11659] usb 13-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  854.477099][T11659] usb 13-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  854.479828][T11659] usb 13-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  854.488209][T11659] usb 13-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  854.492279][T11659] usb 13-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  854.494989][T11659] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  855.025239][T29204] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  855.166538][T11659] usb 13-1: GET_CAPABILITIES returned 0
[  855.168229][T11659] usbtmc 13-1:16.0: can't read capabilities
[  857.103124][T15799] usb 13-1: USB disconnect, device number 18
[  857.483324][T29244] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  857.872413][T29241] lo speed is unknown, defaulting to 1000
[  858.219141][T29241] lo speed is unknown, defaulting to 1000
[  858.325831][   T39] audit: type=1326 audit(2000000082.959:8373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29248 comm="syz.6.6554" exe="/syz-executor" sig=31 arch=40000003 syscall=119 compat=1 ip=0xf7f63598 code=0x0
[  858.461329][T29262] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  859.098937][T29267] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6558'.
[  859.412576][T29276] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  859.980151][   T39] audit: type=1326 audit(2000000084.609:8374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29281 comm="syz.4.6563" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x0
[  860.048475][T29289] wireguard0: entered promiscuous mode
[  860.050085][T29289] wireguard0: entered allmulticast mode
[  861.210741][T29309] netlink: 44 bytes leftover after parsing attributes in process `syz.6.6569'.
[  861.679710][T29327] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  861.745420][T29329] input: syz0 as /devices/virtual/input/input41
[  862.441910][T29336] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  862.994792][T29340] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6579'.
[  863.132195][   T39] audit: type=1326 audit(2000000087.749:8375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29343 comm="syz.4.6581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  863.138592][   T39] audit: type=1326 audit(2000000087.749:8376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29343 comm="syz.4.6581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  863.145344][   T39] audit: type=1326 audit(2000000087.749:8377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29343 comm="syz.4.6581" exe="/syz-executor" sig=0 arch=40000003 syscall=291 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  863.161918][   T39] audit: type=1326 audit(2000000087.749:8378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29343 comm="syz.4.6581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  863.168362][   T39] audit: type=1326 audit(2000000087.749:8379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29343 comm="syz.4.6581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  863.174810][   T39] audit: type=1326 audit(2000000087.749:8380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29343 comm="syz.4.6581" exe="/syz-executor" sig=0 arch=40000003 syscall=292 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  863.180829][   T39] audit: type=1326 audit(2000000087.749:8381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29343 comm="syz.4.6581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  863.189376][   T39] audit: type=1326 audit(2000000087.749:8382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29343 comm="syz.4.6581" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  863.305864][T29347] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  863.821940][T20566] Bluetooth: hci4: command 0x0406 tx timeout
[  863.903835][ T5980] Bluetooth: hci4: Opcode 0x0c1a failed: -110
[  863.905748][ T5980] Bluetooth: hci4: Error when powering off device on rfkill (-110)
[  864.218120][T29366] netlink: 9028 bytes leftover after parsing attributes in process `syz.4.6588'.
[  866.061935][T20566] Bluetooth: hci2: command 0x0406 tx timeout
[  866.061931][ T5980] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  866.066039][ T5980] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[  868.141879][ T5980] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  868.142011][T20566] Bluetooth: hci0: command 0x0c1a tx timeout
[  868.144300][ T5980] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  869.673096][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  870.222266][T20566] Bluetooth: hci3: command 0x0c1a tx timeout
[  870.222342][ T5980] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  870.227187][ T5980] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[  870.246964][T29378] workqueue: Failed to create a rescuer kthread for wq "nfc18_nci_cmd_wq": -EINTR
[  870.321548][T29391] fuse: Invalid rootmode
[  870.369329][T29400] netem: change failed
[  870.447378][T29403] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  871.080384][T29412] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  871.817318][T29429] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  873.477350][T29460] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  875.397045][T29495] ISOFS: Unable to identify CD-ROM format.
[  875.465167][T29495] Process accounting resumed
[  876.840603][   T39] audit: type=1326 audit(2000000101.469:8383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29524 comm="syz.6.6631" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x0
[  876.930163][T29535] input: syz1 as /devices/virtual/input/input42
[  877.533088][T29552] ISOFS: Unable to identify CD-ROM format.
[  877.596366][T29552] Process accounting resumed
[  879.642857][   T39] audit: type=1326 audit(2000000104.279:8384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29590 comm="syz.7.6647" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x0
[  879.976045][T29607] can0: slcan on pts0.
[  880.123591][T29606] can0 (unregistered): slcan off pts0.
[  881.132806][   T39] audit: type=1326 audit(2000000105.769:8385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29655 comm="syz.6.6659" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x0
[  881.312432][T29666] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  883.131599][T29699] netlink: 'syz.4.6668': attribute type 3 has an invalid length.
[  884.934395][T29739] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6680'.
[  885.186445][   T39] audit: type=1326 audit(2000000109.819:8386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29746 comm="syz.4.6683" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x0
[  885.307937][T29748] input: syz0 as /devices/virtual/input/input43
[  887.080046][T29790] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  887.806441][T29808] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6698'.
[  889.059874][T29822] netlink: 'syz.4.6703': attribute type 1 has an invalid length.
[  889.062703][T29822] netlink: 224 bytes leftover after parsing attributes in process `syz.4.6703'.
[  889.204556][T29830] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  890.093186][   T39] audit: type=1326 audit(2000000114.729:8387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29853 comm="syz.7.6713" exe="/syz-executor" sig=31 arch=40000003 syscall=119 compat=1 ip=0xf745e598 code=0x0
[  890.173180][T29866] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6715'.
[  890.524935][   T39] audit: type=1326 audit(2000000115.149:8388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29883 comm="syz.8.6722" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x0
[  890.667855][T29888] input: syz0 as /devices/virtual/input/input44
[  890.967241][T29895] netlink: 44 bytes leftover after parsing attributes in process `syz.7.6725'.
[  891.496359][T29912] tipc: Enabled bearer <udp:syz1>, priority 10
[  891.539377][T29917] IPVS: set_ctl: invalid protocol: 135 127.0.0.1:20002
[  891.609822][T29923] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6736'.
[  891.712713][   T39] audit: type=1326 audit(2000000116.349:8389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29914 comm="syz.6.6733" exe="/syz-executor" sig=31 arch=40000003 syscall=119 compat=1 ip=0xf7f63598 code=0x0
[  892.942760][T29944] syzkaller1: entered promiscuous mode
[  892.944374][T29944] syzkaller1: entered allmulticast mode
[  893.059055][T29949] overlayfs: missing 'lowerdir'
[  893.064916][T29949] overlayfs: conflicting options: verity=require,redirect_dir=follow
[  893.171162][T29955] netlink: 44 bytes leftover after parsing attributes in process `syz.7.6745'.
[  893.201839][    T9] usb 9-1: new high-speed USB device number 44 using dummy_hcd
[  893.353634][    T9] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  893.356658][    T9] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  893.359515][    T9] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  893.362058][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  893.369744][T29946] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  893.373590][    T9] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  893.505355][   T39] audit: type=1326 audit(2000000118.139:8390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29958 comm="syz.8.6747" exe="/syz-executor" sig=31 arch=40000003 syscall=119 compat=1 ip=0xf7f8f598 code=0x0
[  893.713043][T15799] usb 9-1: USB disconnect, device number 44
[  894.300477][T29985] usb usb8: usbfs: process 29985 (syz.6.6753) did not claim interface 0 before use
[  894.323339][T29985] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  894.346286][T29987] can0: slcan on pts0.
[  894.423542][T29990] netlink: 'syz.6.6755': attribute type 1 has an invalid length.
[  894.446436][T29990] 8021q: adding VLAN 0 to HW filter on device bond1
[  894.502406][T29986] can0 (unregistered): slcan off pts0.
[  894.536570][T29995] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6756'.
[  894.539103][T29995] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6756'.
[  894.542417][T29990] bond1: (slave bridge1): making interface the new active one
[  894.550915][T29990] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  894.582149][T29992] bond1: (slave bridge2): Enslaving as an active interface with a down link
[  894.878711][   T39] audit: type=1326 audit(2000000119.509:8391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30007 comm="syz.6.6759" exe="/syz-executor" sig=31 arch=40000003 syscall=119 compat=1 ip=0xf7f63598 code=0x0
[  895.784089][T30042] can0: slcan on pts0.
[  896.043058][T30041] can0 (unregistered): slcan off pts0.
[  896.195460][T30050] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6765'.
[  896.263386][T30059] syz.8.6767: attempt to access beyond end of device
[  896.263386][T30059] nbd8: rw=0, sector=16, nr_sectors = 2 limit=0
[  896.824640][T30078] wireguard1: entered promiscuous mode
[  896.826368][T30078] wireguard1: entered allmulticast mode
[  897.164854][T30083] can0: slcan on pts0.
[  897.423032][T30082] can0 (unregistered): slcan off pts0.
[  897.425065][T30098] netlink: 44 bytes leftover after parsing attributes in process `syz.7.6775'.
[  897.565603][T30106] fuse: Bad value for 'rootmode'
[  897.681807][T30105] serio: Serial port ptm0
[  897.857618][T30131] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6784'.
[  898.311087][T30153] can0: slcan on pts0.
[  898.510906][   T39] audit: type=1326 audit(2000000123.139:8392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30154 comm="syz.6.6789" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x0
[  898.702893][T30142] can0 (unregistered): slcan off pts0.
[  898.839668][T30191] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6795'.
[  899.967138][T30233] netlink: 44 bytes leftover after parsing attributes in process `syz.7.6805'.
[  900.073772][T30238] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  900.292067][T20531] usb 12-1: new high-speed USB device number 36 using dummy_hcd
[  900.453718][T20531] usb 12-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  900.457879][T20531] usb 12-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  900.461415][T20531] usb 12-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  900.465018][T20531] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  900.470230][T30237] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  900.475129][T20531] usb 12-1: Quirk or no altset; falling back to MIDI 1.0
[  900.737297][    T9] usb 12-1: USB disconnect, device number 36
[  901.284449][T30266] lo speed is unknown, defaulting to 1000
[  901.376404][T30266] lo speed is unknown, defaulting to 1000
[  901.456138][T30275] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6814'.
[  903.116547][   T39] audit: type=1326 audit(2000000127.749:8393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30304 comm="syz.4.6824" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x0
[  903.675696][T20531] usb 12-1: new full-speed USB device number 37 using dummy_hcd
[  903.811930][T20531] usb 12-1: device descriptor read/64, error -71
[  904.071905][T20531] usb 12-1: new full-speed USB device number 38 using dummy_hcd
[  904.202059][T20531] usb 12-1: device descriptor read/64, error -71
[  904.327182][T20531] usb usb12-port1: attempt power cycle
[  904.663396][T20531] usb 12-1: new full-speed USB device number 39 using dummy_hcd
[  904.684107][T20531] usb 12-1: device descriptor read/8, error -71
[  904.921850][T20531] usb 12-1: new full-speed USB device number 40 using dummy_hcd
[  904.942524][T20531] usb 12-1: device descriptor read/8, error -71
[  904.961469][T30351] cifs: Unknown parameter '/dev/bus/usb/00#/00#'
[  905.052076][T20531] usb usb12-port1: unable to enumerate USB device
[  907.348815][T30399] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  908.061027][T30420] overlayfs: failed to resolve './file0': -2
[  908.073628][   T39] audit: type=1326 audit(2000000132.709:8394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30410 comm="syz.8.6849" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x0
[  908.717974][T30433] netlink: 40 bytes leftover after parsing attributes in process `syz.7.6853'.
[  909.901988][T30461] netlink: 44 bytes leftover after parsing attributes in process `syz.7.6861'.
[  910.463326][T30472] overlayfs: failed to resolve './file0': -2
[  911.327739][T30491] can0: slcan on pts0.
[  911.503135][T30501] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  911.531815][T30490] can0 (unregistered): slcan off pts0.
[  912.526470][T30535] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[  913.084732][T30547] can0: slcan on pts0.
[  913.279412][T30546] can0 (unregistered): slcan off pts0.
[  913.415164][T30568] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  913.606790][T30573] can0: slcan on pts0.
[  913.923368][T30572] can0 (unregistered): slcan off pts0.
[  914.345898][T30614] can0: slcan on pts0.
[  914.367997][   T39] audit: type=1326 audit(2000000138.999:8395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30610 comm="syz.4.6890" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x0
[  914.414591][T30627] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  914.502663][T30613] can0 (unregistered): slcan off pts0.
[  914.947625][T30647] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6895'.
[  915.241265][T30658] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  915.663549][T30666] can0: slcan on ttyS3.
[  915.751531][T30669] netlink: 20 bytes leftover after parsing attributes in process `syz.6.6899'.
[  915.754313][T30669] nbd: must specify at least one socket
[  916.544205][T30659] can0 (unregistered): slcan off ttyS3.
[  916.891410][T30699] can0: slcan on pts0.
[  917.002686][T30702] can1: slcan on pts1.
[  917.116355][T30698] can0 (unregistered): slcan off pts0.
[  917.241843][T30700] can1 (unregistered): slcan off pts1.
[  917.388878][T30735] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  918.618085][T30759] can0: slcan on pts0.
[  919.044172][T30758] can0 (unregistered): slcan off pts0.
[  919.570641][   T39] audit: type=1326 audit(2000000144.199:8396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30780 comm="syz.8.6921" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x0
[  920.057453][T30811] overlayfs: failed to resolve './file1': -2
[  920.124916][T30814] overlayfs: failed to resolve './file1': -2
[  920.855602][T30818] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6928'.
[  921.098538][T30834] can0: slcan on pts0.
[  921.262648][T30833] can0 (unregistered): slcan off pts0.
[  921.306505][T30848] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  922.116051][T30867] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  922.662455][T30871] netlink: 12 bytes leftover after parsing attributes in process `syz.7.6939'.
[  922.831090][T30876] netlink: 24 bytes leftover after parsing attributes in process `syz.7.6941'.
[  922.983652][T30887] can0: slcan on pts0.
[  923.118780][   T39] audit: type=1326 audit(2000000147.749:8397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30886 comm="syz.6.6944" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x0
[  923.192255][T30885] can0 (unregistered): slcan off pts0.
[  923.384043][T30911] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6946'.
[  923.388063][T30911] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6946'.
[  923.640781][T30918] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  923.896002][   T39] audit: type=1326 audit(2000000148.529:8398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30919 comm="syz.6.6949" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x0
[  924.216688][T30931] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  924.883634][T30945] can0: slcan on pts0.
[  925.152782][T30943] can0 (unregistered): slcan off pts0.
[  925.794099][   T39] audit: type=1326 audit(2000000150.429:8399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30958 comm="syz.8.6958" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x0
[  926.272629][   T39] audit: type=1326 audit(2000000150.909:8400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30986 comm="syz.8.6961" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x0
[  926.594038][T31008] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6966'.
[  926.628516][T31007] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  926.720668][T31011] can0: slcan on pts0.
[  926.892753][T31010] can0 (unregistered): slcan off pts0.
[  927.232427][T31026] 9pnet_fd: Insufficient options for proto=fd
[  927.236131][T31026] netlink: 28 bytes leftover after parsing attributes in process `syz.8.6970'.
[  927.278205][T31028] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !寿$���UL�vy��آ
�D��UD�w�}�z
[  927.687630][T31043] can0: slcan on pts0.
[  927.872807][T31041] can0 (unregistered): slcan off pts0.
[  928.022715][T31064] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6978'.
[  928.170469][T31072] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  928.464963][T31076] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  928.765257][T31079] Invalid source name
[  928.766475][T31079] UBIFS error (pid: 31079): cannot open "./file0", error -22
[  929.761877][ T1322] usb 9-1: new high-speed USB device number 45 using dummy_hcd
[  929.774615][T18524] libceph: connect (1)[c::]:6789 error -101
[  929.776445][T18524] libceph: mon0 (1)[c::]:6789 connect error
[  929.927805][ T1322] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  929.930291][ T1322] usb 9-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  929.933382][ T1322] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  929.936036][ T1322] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  929.940380][ T1322] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  929.950327][ T1322] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  929.961782][ T1322] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  929.964035][ T1322] usb 9-1: Product: syz
[  929.965236][ T1322] usb 9-1: Manufacturer: syz
[  929.972709][T31089] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  929.976076][ T1322] cdc_wdm 9-1:1.0: skipping garbage
[  929.977629][ T1322] cdc_wdm 9-1:1.0: skipping garbage
[  929.979814][ T1322] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  929.981539][ T1322] cdc_wdm 9-1:1.0: Unknown control protocol
[  929.998843][T31096] ceph: No mds server is up or the cluster is laggy
[  930.037576][T18524] libceph: connect (1)[c::]:6789 error -101
[  930.039385][T18524] libceph: mon0 (1)[c::]:6789 connect error
[  930.179777][T31089] tipc: New replicast peer: 255.255.255.255
[  930.184969][T31089] tipc: Enabled bearer <udp:syz2>, priority 10
[  930.189307][T31089] 9pnet_fd: Insufficient options for proto=fd
[  930.213241][   T30] usb 9-1: USB disconnect, device number 45
[  930.433090][T31108] netlink: 'syz.7.6988': attribute type 1 has an invalid length.
[  930.434967][T31112] netlink: 20 bytes leftover after parsing attributes in process `syz.7.6988'.
[  930.449617][T31108] 8021q: adding VLAN 0 to HW filter on device bond1
[  930.620089][T31119] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  931.870872][T31145] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  933.493383][T31190] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  933.757213][T31193] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  934.188859][T31194] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  934.807189][T31212] netlink: 108 bytes leftover after parsing attributes in process `syz.6.7016'.
[  935.483433][T31227] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7022'.
[  935.830614][T31236] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  935.898008][T31238] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  936.795014][T31260] netlink: 44 bytes leftover after parsing attributes in process `syz.6.7032'.
[  936.932498][T31265] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  937.965778][   T25] libceph: connect (1)[c::]:6789 error -101
[  937.967559][   T25] libceph: mon0 (1)[c::]:6789 connect error
[  938.029779][T31288] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  938.209494][T31278] ceph: No mds server is up or the cluster is laggy
[  938.343444][T31293] FAULT_INJECTION: forcing a failure.
[  938.343444][T31293] name failslab, interval 1, probability 0, space 0, times 0
[  938.347047][T31293] CPU: 0 UID: 0 PID: 31293 Comm: syz.6.7038 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  938.347062][T31293] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  938.347068][T31293] Call Trace:
[  938.347073][T31293]  <TASK>
[  938.347077][T31293]  dump_stack_lvl+0x16c/0x1f0
[  938.347151][T31293]  should_fail_ex+0x50a/0x650
[  938.347191][T31293]  should_failslab+0xc2/0x120
[  938.347248][T31293]  __kmalloc_noprof+0xce/0x4f0
[  938.347295][T31293]  ? io_cache_alloc_new+0x3f/0xd0
[  938.347308][T31293]  io_cache_alloc_new+0x3f/0xd0
[  938.347318][T31293]  io_arm_poll_handler+0x3cc/0xc60
[  938.347335][T31293]  ? __pfx_io_arm_poll_handler+0x10/0x10
[  938.347354][T31293]  ? io_read+0x32/0x70
[  938.347367][T31293]  io_queue_async+0xaa/0x420
[  938.347380][T31293]  io_submit_sqes+0x177a/0x25f0
[  938.347400][T31293]  __do_sys_io_uring_enter+0xd60/0x1670
[  938.347417][T31293]  ? __fget_files+0x206/0x3a0
[  938.347446][T31293]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  938.347461][T31293]  ? fput+0x67/0x440
[  938.347474][T31293]  ? ksys_write+0x1ba/0x250
[  938.347484][T31293]  ? __pfx_ksys_write+0x10/0x10
[  938.347497][T31293]  __do_fast_syscall_32+0x73/0x120
[  938.347541][T31293]  do_fast_syscall_32+0x32/0x80
[  938.347551][T31293]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  938.347568][T31293] RIP: 0023:0xf7f63579
[  938.347580][T31293] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  938.347590][T31293] RSP: 002b:00000000f506555c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  938.347638][T31293] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000000047f6
[  938.347644][T31293] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  938.347649][T31293] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  938.347655][T31293] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  938.347661][T31293] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  938.347672][T31293]  </TASK>
[  939.031063][T31303] 9pnet_fd: Insufficient options for proto=fd
[  939.140236][T31307] mkiss: ax0: crc mode is auto.
[  940.190169][T31326] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  941.450991][T31351] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7052'.
[  941.604743][T15799] libceph: connect (1)[c::]:6789 error -101
[  941.606553][T15799] libceph: mon0 (1)[c::]:6789 connect error
[  941.872400][T15799] libceph: connect (1)[c::]:6789 error -101
[  941.874407][T15799] libceph: mon0 (1)[c::]:6789 connect error
[  941.979651][T31353] ceph: No mds server is up or the cluster is laggy
[  942.245031][T31372] can0: slcan on pts1.
[  942.626730][T31370] can0 (unregistered): slcan off pts1.
[  942.759126][T31400] netlink: 44 bytes leftover after parsing attributes in process `syz.4.7061'.
[  942.964201][T31410] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  943.790189][T31427] block device autoloading is deprecated and will be removed.
[  943.837869][T31425] can0: slcan on pts0.
[  944.172535][T31422] can0 (unregistered): slcan off pts0.
[  944.790648][T31453] FAULT_INJECTION: forcing a failure.
[  944.790648][T31453] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  944.794417][T31453] CPU: 1 UID: 0 PID: 31453 Comm: syz.8.7072 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  944.794433][T31453] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  944.794449][T31453] Call Trace:
[  944.794454][T31453]  <TASK>
[  944.794458][T31453]  dump_stack_lvl+0x16c/0x1f0
[  944.794480][T31453]  should_fail_ex+0x50a/0x650
[  944.794495][T31453]  _copy_to_user+0x32/0xd0
[  944.794510][T31453]  simple_read_from_buffer+0xd0/0x160
[  944.794527][T31453]  proc_fail_nth_read+0x198/0x270
[  944.794573][T31453]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  944.794588][T31453]  ? rw_verify_area+0xcf/0x680
[  944.794604][T31453]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  944.794619][T31453]  vfs_read+0x1df/0xbf0
[  944.794628][T31453]  ? __fget_files+0x1fc/0x3a0
[  944.794640][T31453]  ? __pfx___mutex_lock+0x10/0x10
[  944.794650][T31453]  ? __pfx_vfs_read+0x10/0x10
[  944.794663][T31453]  ? __fget_files+0x206/0x3a0
[  944.794676][T31453]  ksys_read+0x12b/0x250
[  944.794686][T31453]  ? __pfx_ksys_read+0x10/0x10
[  944.794699][T31453]  __do_fast_syscall_32+0x73/0x120
[  944.794709][T31453]  do_fast_syscall_32+0x32/0x80
[  944.794719][T31453]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  944.794736][T31453] RIP: 0023:0xf7f8f579
[  944.794744][T31453] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  944.794754][T31453] RSP: 002b:00000000f5074590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  944.794764][T31453] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 00000000f5074620
[  944.794769][T31453] RDX: 000000000000000f RSI: 00000000f741cff4 RDI: 0000000000000000
[  944.794775][T31453] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  944.794780][T31453] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  944.794786][T31453] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  944.794801][T31453]  </TASK>
[  945.337282][ T5950] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  945.341439][T25651] syz_tun (unregistering): left allmulticast mode
[  945.343673][T25651] syz_tun (unregistering): left promiscuous mode
[  945.345450][T25651] bridge0: port 1(syz_tun) entered disabled state
[  945.358854][ T5950] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  945.375597][ T5950] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  945.389212][ T5950] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  945.394756][T31472] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[  945.396077][ T5950] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  945.399648][ T5950] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  945.513152][T20566] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  945.535125][T20566] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  945.538719][T20566] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  945.549777][T20566] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  945.554309][T20566] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  945.558962][T20566] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  945.706335][T31470] lo speed is unknown, defaulting to 1000
[  945.829092][T31470] lo speed is unknown, defaulting to 1000
[  945.911695][T31470] chnl_net:caif_netlink_parms(): no params data found
[  946.011553][T31481] can0: slcan on pts0.
[  946.106282][T31470] bridge0: port 1(bridge_slave_0) entered blocking state
[  946.108498][T31470] bridge0: port 1(bridge_slave_0) entered disabled state
[  946.110551][T31470] bridge_slave_0: entered allmulticast mode
[  946.114645][T31470] bridge_slave_0: entered promiscuous mode
[  946.388206][T31480] can0 (unregistered): slcan off pts0.
[  946.409554][T31470] bridge0: port 2(bridge_slave_1) entered blocking state
[  946.411896][T31470] bridge0: port 2(bridge_slave_1) entered disabled state
[  946.418040][T31470] bridge_slave_1: entered allmulticast mode
[  946.420836][T31470] bridge_slave_1: entered promiscuous mode
[  946.486682][T31470] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  946.490690][T31470] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  947.143157][T13495] bond0 (unregistering): Released all slaves
[  947.148057][T13495] bond1 (unregistering): Released all slaves
[  947.162849][T31470] team0: Port device team_slave_0 added
[  947.176225][T31470] team0: Port device team_slave_1 added
[  947.233232][T31470] batman_adv: batadv0: Adding interface: batadv_slave_0
[  947.235192][T31470] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  947.243128][T31470] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  947.247226][T31470] batman_adv: batadv0: Adding interface: batadv_slave_1
[  947.249165][T31470] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  947.259614][T31470] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  947.384078][T31470] hsr_slave_0: entered promiscuous mode
[  947.387060][T31470] hsr_slave_1: entered promiscuous mode
[  947.389918][T31470] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  947.401101][T31470] Cannot create hsr debugfs directory
[  947.665992][T13495] hsr_slave_0: left promiscuous mode
[  947.668415][T13495] hsr_slave_1: left promiscuous mode
[  947.683119][ T5950] Bluetooth: hci1: command tx timeout
[  949.525237][T31549] overlayfs: failed to decode file handle (len=6, type=139, flags=0, err=-22)
[  949.742151][ T5950] Bluetooth: hci1: command tx timeout
[  951.831858][ T5950] Bluetooth: hci1: command tx timeout
[  952.340684][T31470] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  952.351021][T31470] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  952.375172][T31470] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  952.380772][T31470] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  952.453856][T31470] 8021q: adding VLAN 0 to HW filter on device bond0
[  952.465441][T31470] 8021q: adding VLAN 0 to HW filter on device team0
[  952.471633][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[  952.473727][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[  952.490455][   T75] bridge0: port 2(bridge_slave_1) entered blocking state
[  952.492523][   T75] bridge0: port 2(bridge_slave_1) entered forwarding state
[  952.634065][T31470] 8021q: adding VLAN 0 to HW filter on device batadv0
[  952.763374][T31470] veth0_vlan: entered promiscuous mode
[  952.769335][T31470] veth1_vlan: entered promiscuous mode
[  952.786500][T31470] veth0_macvtap: entered promiscuous mode
[  952.791275][T31470] veth1_macvtap: entered promiscuous mode
[  952.801671][T31470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  952.805664][T31470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  952.809420][T31470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  952.814096][T31470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  952.818850][T31470] batman_adv: batadv0: Interface activated: batadv_slave_0
[  952.825310][T31470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  952.829317][T31470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  952.833538][T31470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  952.837459][T31470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  952.842322][T31470] batman_adv: batadv0: Interface activated: batadv_slave_1
[  952.848427][T31470] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  952.851957][T31470] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  952.855243][T31470] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  952.858434][T31470] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  952.920278][ T1273] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  952.927545][ T1273] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  952.955478][T13495] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  952.958347][T13495] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  953.083969][   T39] audit: type=1800 audit(2000000177.719:8401): pid=31620 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.8.7078" name="/newroot/0/bus" dev="tmpfs" ino=18 res=0 errno=0
[  953.901912][ T5950] Bluetooth: hci1: command tx timeout
[  954.115611][T31639] page: refcount:3 mapcount:1 mapping:ffff888024221dc0 index:0x50 pfn:0x77913
[  954.119638][T31639] memcg:ffff88800b4aa000
[  954.120860][T31639] aops:shmem_aops ino:d3f
[  954.122083][T31639] flags: 0x4fff7000002002d(locked|referenced|uptodate|lru|swapbacked|node=1|zone=1|lastcpupid=0x7ff)
[  954.125029][T31639] raw: 04fff7000002002d ffffea0001fb9488 ffffea0001e4c848 ffff888024221dc0
[  954.127433][T31639] raw: 0000000000000050 0000000000000000 0000000300000000 ffff88800b4aa000
[  954.129802][T31639] page dumped because: VM_BUG_ON_FOLIO(folio_mapped(folio))
[  954.131815][T31639] page_owner tracks the page as allocated
[  954.134565][T31639] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 31631, tgid 31629 (syz.7.7101), ts 953261564401, free_ts 952927064944
[  954.139624][T31639]  post_alloc_hook+0x181/0x1b0
[  954.140968][T31639]  get_page_from_freelist+0xfce/0x2f80
[  954.142474][T31639]  __alloc_frozen_pages_noprof+0x221/0x2470
[  954.144096][T31639]  alloc_pages_mpol+0x1fc/0x540
[  954.145471][T31639]  folio_alloc_mpol_noprof+0x36/0x2f0
[  954.146955][T31639]  shmem_alloc_folio+0x135/0x160
[  954.148360][T31639]  shmem_alloc_and_add_folio+0x48e/0xc10
[  954.149931][T31639]  shmem_get_folio_gfp+0x689/0x1530
[  954.151379][T31639]  shmem_fault+0x200/0xae0
[  954.152763][T31639]  __do_fault+0x10a/0x490
[  954.153969][T31639]  do_pte_missing+0xecf/0x3e10
[  954.155289][T31639]  __handle_mm_fault+0x1166/0x2c60
[  954.156708][T31639]  handle_mm_fault+0x3fa/0xaa0
[  954.158064][T31639]  __get_user_pages+0x773/0x36f0
[  954.159435][T31639]  populate_vma_page_range+0x27f/0x3a0
[  954.160945][T31639]  __mm_populate+0x1d6/0x380
[  954.162221][T31639] page last free pid 31587 tgid 31572 stack trace:
[  954.163995][T31639]  free_unref_folios+0xa7b/0x1500
[  954.165417][T31639]  folios_put_refs+0x587/0x7b0
[  954.166782][T31639]  shmem_undo_range+0x586/0x1170
[  954.168191][T31639]  shmem_evict_inode+0x3a3/0xba0
[  954.169680][T31639]  evict+0x409/0x960
[  954.170776][T31639]  iput+0x52a/0x890
[  954.171839][T31639]  dentry_unlink_inode+0x29c/0x480
[  954.173249][T31639]  __dentry_kill+0x1d0/0x600
[  954.174523][T31639]  dput.part.0+0x4b1/0x9b0
[  954.175747][T31639]  dput+0x1f/0x30
[  954.176777][T31639]  __fput+0x51c/0xb70
[  954.177913][T31639]  task_work_run+0x14e/0x250
[  954.179249][T31639]  do_exit+0xad8/0x2d70
[  954.180441][T31639]  do_group_exit+0xd3/0x2a0
[  954.181694][T31639]  get_signal+0x2576/0x2610
[  954.182953][T31639]  arch_do_signal_or_restart+0x90/0x7e0
[  954.184590][T31639] ------------[ cut here ]------------
[  954.186087][T31639] kernel BUG at mm/filemap.c:154!
[  954.187504][T31639] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  954.190561][T31639] CPU: 1 UID: 0 PID: 31639 Comm: syz.7.7101 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  954.194745][T31639] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  954.197730][T31639] RIP: 0010:filemap_unaccount_folio+0xef/0x860
[  954.199464][T31639] Code: b7 2b ca ff 4c 8d 6b 30 31 ff 89 ee e8 aa 26 ca ff 85 ed 7e 17 e8 a1 2b ca ff 48 c7 c6 a0 79 78 8b 48 89 df e8 d2 71 11 00 90 <0f> 0b e8 8a 2b ca ff 4c 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1
[  954.204814][T31639] RSP: 0018:ffffc9000c3673a0 EFLAGS: 00010093
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  954.206506][T31639] RAX: 0000000000000000 RBX: ffffea0001de44c0 RCX: ffffc9000c367248
[  954.209159][T31639] RDX: ffff8880240bc880 RSI: ffffffff81eec2fe RDI: ffff8880240bccc4
[  954.211341][T31639] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff20bfd42
[  954.213533][T31639] R10: ffffffff905fea17 R11: 0000000000000003 R12: ffff888024221dc0
[  954.215670][T31639] R13: ffffea0001de44f0 R14: 0000000000000000 R15: ffffc9000c367698
[  954.217903][T31639] FS:  0000000000000000(0000) GS:ffff88802b500000(0000) knlGS:0000000000000000
[  954.220423][T31639] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  954.222510][T31639] CR2: 00000000f50a5cc0 CR3: 000000000df80000 CR4: 0000000000352ef0
[  954.224972][T31639] DR0: 0000000000000000 DR1: 0000000000000097 DR2: 0000000000000000
[  954.227286][T31639] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  954.229871][T31639] Call Trace:
[  954.230943][T31639]  <TASK>
[  954.231780][T31639]  ? die+0x31/0x80
[  954.232840][T31639]  ? do_trap+0x232/0x430
[  954.234122][T31639]  ? filemap_unaccount_folio+0xef/0x860
[  954.235654][T31639]  ? filemap_unaccount_folio+0xef/0x860
[  954.237254][T31639]  ? do_error_trap+0xf4/0x230
[  954.238577][T31639]  ? filemap_unaccount_folio+0xef/0x860
[  954.240113][T31639]  ? handle_invalid_op+0x34/0x40
[  954.241498][T31639]  ? filemap_unaccount_folio+0xef/0x860
[  954.243030][T31639]  ? exc_invalid_op+0x2e/0x50
[  954.244354][T31639]  ? asm_exc_invalid_op+0x1a/0x20
[  954.245776][T31639]  ? filemap_unaccount_folio+0xee/0x860
[  954.247338][T31639]  ? filemap_unaccount_folio+0xef/0x860
[  954.248883][T31639]  filemap_remove_folio+0xf1/0x250
[  954.250306][T31639]  truncate_inode_folio+0x49/0x70
[  954.251699][T31639]  shmem_undo_range+0x36e/0x1170
[  954.253093][T31639]  ? __pfx_shmem_undo_range+0x10/0x10
[  954.254585][T31639]  ? __lock_acquire+0xcc5/0x3c40
[  954.255999][T31639]  ? mark_lock+0xb5/0xc60
[  954.257237][T31639]  ? __pfx___lock_acquire+0x10/0x10
[  954.258684][T31639]  ? hlock_class+0x4e/0x130
[  954.259962][T31639]  ? mark_lock+0xb5/0xc60
[  954.261187][T31639]  ? __pfx___lock_acquire+0x10/0x10
[  954.262643][T31639]  ? hlock_class+0x4e/0x130
[  954.263924][T31639]  ? percpu_counter_add_batch+0xb5/0x1e0
[  954.265492][T31639]  shmem_evict_inode+0x3a3/0xba0
[  954.266871][T31639]  ? find_held_lock+0x2d/0x110
[  954.268247][T31639]  ? __pfx_shmem_evict_inode+0x10/0x10
[  954.269791][T31639]  ? evict+0x3c8/0x960
[  954.271016][T31639]  ? __pfx_lock_release+0x10/0x10
[  954.272428][T31639]  ? lock_acquire+0x2f/0xb0
[  954.273702][T31639]  ? __pfx_shmem_evict_inode+0x10/0x10
[  954.275224][T31639]  evict+0x409/0x960
[  954.276406][T31639]  ? __pfx_evict+0x10/0x10
[  954.277734][T31639]  iput+0x52a/0x890
[  954.278820][T31639]  ? __pfx_generic_delete_inode+0x10/0x10
[  954.280448][T31639]  dentry_unlink_inode+0x29c/0x480
[  954.281866][T31639]  __dentry_kill+0x1d0/0x600
[  954.283386][T31639]  dput.part.0+0x4b1/0x9b0
[  954.284806][T31639]  dput+0x1f/0x30
[  954.285847][T31639]  __fput+0x51c/0xb70
[  954.287226][T31639]  ? _raw_spin_unlock_irq+0x23/0x50
[  954.289011][T31639]  task_work_run+0x14e/0x250
[  954.290351][T31639]  ? __pfx_task_work_run+0x10/0x10
[  954.292186][T31639]  ? do_raw_spin_unlock+0x172/0x230
[  954.293775][T31639]  do_exit+0xad8/0x2d70
[  954.294946][T31639]  ? get_signal+0x8f7/0x2610
[  954.296301][T31639]  ? __pfx_do_exit+0x10/0x10
[  954.297664][T31639]  ? do_raw_spin_lock+0x12d/0x2c0
[  954.299074][T31639]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  954.300630][T31639]  do_group_exit+0xd3/0x2a0
[  954.301902][T31639]  get_signal+0x2576/0x2610
[  954.303196][T31639]  ? __schedule+0xf4b/0x5890
[  954.304643][T31639]  ? __pfx_get_signal+0x10/0x10
[  954.306039][T31639]  ? __pfx_do_futex+0x10/0x10
[  954.307492][T31639]  arch_do_signal_or_restart+0x90/0x7e0
[  954.309067][T31639]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  954.310833][T31639]  syscall_exit_to_user_mode+0x150/0x2a0
[  954.312434][T31639]  __do_fast_syscall_32+0x80/0x120
[  954.313880][T31639]  do_fast_syscall_32+0x32/0x80
[  954.315250][T31639]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  954.317100][T31639] RIP: 0023:0xf745e579
[  954.318244][T31639] Code: Unable to access opcode bytes at 0xf745e54f.
[  954.320077][T31639] RSP: 002b:00000000f50a460c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[  954.322438][T31639] RAX: fffffffffffffe00 RBX: 00000000f74850a8 RCX: 0000000000000080
[  954.325392][T31639] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f74850ac
[  954.328367][T31639] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[  954.331422][T31639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  954.334476][T31639] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  954.337530][T31639]  </TASK>
[  954.338776][T31639] Modules linked in:
[  954.340345][T31639] ---[ end trace 0000000000000000 ]---
[  954.342453][T31639] RIP: 0010:filemap_unaccount_folio+0xef/0x860
[  954.344923][T31639] Code: b7 2b ca ff 4c 8d 6b 30 31 ff 89 ee e8 aa 26 ca ff 85 ed 7e 17 e8 a1 2b ca ff 48 c7 c6 a0 79 78 8b 48 89 df e8 d2 71 11 00 90 <0f> 0b e8 8a 2b ca ff 4c 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1
[  954.352055][T31639] RSP: 0018:ffffc9000c3673a0 EFLAGS: 00010093
[  954.354254][T31639] RAX: 0000000000000000 RBX: ffffea0001de44c0 RCX: ffffc9000c367248
[  954.356536][T31639] RDX: ffff8880240bc880 RSI: ffffffff81eec2fe RDI: ffff8880240bccc4
[  954.358853][T31639] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff20bfd42
[  954.361308][T31639] R10: ffffffff905fea17 R11: 0000000000000003 R12: ffff888024221dc0
[  954.363745][T31639] R13: ffffea0001de44f0 R14: 0000000000000000 R15: ffffc9000c367698
[  954.365978][T31639] FS:  0000000000000000(0000) GS:ffff88802b500000(0000) knlGS:0000000000000000
[  954.368480][T31639] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  954.370408][T31639] CR2: 00000000f50a5cc0 CR3: 000000000df80000 CR4: 0000000000352ef0
[  954.372586][T31639] DR0: 0000000000000000 DR1: 0000000000000097 DR2: 0000000000000000
[  954.374845][T31639] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  954.377164][T31639] Kernel panic - not syncing: Fatal exception
[  954.379457][T31639] Kernel Offset: disabled
[  954.380713][T31639] Rebooting in 86400 seconds..

VM DIAGNOSIS:
07:59:08  Registers:
info registers vcpu 0

CPU#0
RAX=0000000001dc70a4 RBX=0000000000000000 RCX=ffffffff8b46be39 RDX=ffffed1005686f86
RSI=ffffffff8bd2d660 RDI=ffffffff818ffe49 RBP=fffffbfff1bd2ee8 RSP=ffffffff8de07e20
R8 =0000000000000000 R9 =ffffed1005686f85 R10=ffff88802b437c2b R11=0000000000000001
R12=0000000000000000 R13=ffffffff8de97740 R14=ffffffff905fea10 R15=0000000000000000
RIP=ffffffff8b46d21f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008004b000 CR3=000000000df80000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000097 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff85388530 RDI=ffffffff9aad4e20 RBP=ffffffff9aad4de0 RSP=ffffc9000c366ce8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=7973203a6d6d6f43
R12=0000000000000000 R13=ffffffff9aad4e30 R14=ffffffff9aad4de0 R15=0000000000000000
RIP=ffffffff85388557 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50a5cc0 CR3=000000000df80000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000097 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 dbcb1d7471071cd1 cd792c04b24c172e
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0f27ea7d670f4a5a d6e6eebc3f3d656f
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2bc034eebf174714 7849e47dde0d2bee
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d82b1656ec386b43 b64a1faca250f408
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000017c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d462644a00000242 072fbd56d6ef8d14
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000024200000000 0000024200000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000d6ea314a 009d7c84d6da5e96
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000bde9ad6fb95a4 0000024259811dd2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 aa20e1c0a30e5475 91f10b65d012cae0
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e4620e58e353286e e8c632a2142e5508
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000001800001 RBX=ffff8880695870f0 RCX=ffffffff8192ed9c RDX=1ffff1100d2b0e1e
RSI=0000000000000008 RDI=ffff8880695870f0 RBP=ffffe8ffac474800 RSP=ffffc9000048fb60
R8 =0000000000000000 R9 =ffffed100d2b0e1e R10=ffff8880695870f7 R11=0000000000000001
R12=ffff888022e40000 R13=0000000000000001 R14=0000000000000000 R15=ffff888069587000
RIP=ffffffff8192edbe RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000056380b8df000 CR3=000000004bcd8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=3c9271703c927170 3c9271703c927170 3c9271703c927170 3c9271703c927170 3c9271703c927170 3c9271703c927170 3c9271703c927170 3c9271703c927170
ZMM22=375a9653375a9653 375a9653375a9653 375a9653375a9653 375a9653375a9653 375a9653375a9653 375a9653375a9653 375a9653375a9653 375a9653375a9653
ZMM23=d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1
ZMM24=447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52
ZMM25=32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d
ZMM26=30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf
ZMM27=770c4271770c4271 770c4271770c4271 770c4271770c4271 770c4271770c4271 770c4271770c4271 770c4271770c4271 770c4271770c4271 770c4271770c4271
ZMM28=000000400000003f 0000003e0000003d 0000003c0000003b 0000003a00000039 0000003800000037 0000003600000035 0000003400000033 0000003200000031
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=6036000060360000 6036000060360000 6036000060360000 6036000060360000 6036000060360000 6036000060360000 6036000060360000 6036000060360000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000005 RCX=0000000000000004 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000001 RBP=ffffc90004017450 RSP=ffffc900040172b0
R8 =0000000000000001 R9 =0000000000000010 R10=000000000000000c R11=0000000000000012
R12=0000000000000800 R13=ffffc90004017390 R14=ffff8880713aac99 R15=ffffc90004017458
RIP=ffffffff81b8ee90 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f656f6ded00 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000056380b8e6000 CR3=000000004bcd8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=3c9271703c927170 3c9271703c927170 3c9271703c927170 3c9271703c927170 3c9271703c927170 3c9271703c927170 3c9271703c927170 3c9271703c927170
ZMM22=375a9653375a9653 375a9653375a9653 375a9653375a9653 375a9653375a9653 375a9653375a9653 375a9653375a9653 375a9653375a9653 375a9653375a9653
ZMM23=d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1 d1cf8ba1d1cf8ba1
ZMM24=447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52 447c3e52447c3e52
ZMM25=32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d 32d6532d32d6532d
ZMM26=30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf 30c9dfaf30c9dfaf
ZMM27=770c4271770c4271 770c4271770c4271 770c4271770c4271 770c4271770c4271 770c4271770c4271 770c4271770c4271 770c4271770c4271 770c4271770c4271
ZMM28=000000400000003f 0000003e0000003d 0000003c0000003b 0000003a00000039 0000003800000037 0000003600000035 0000003400000033 0000003200000031
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=6036000060360000 6036000060360000 6036000060360000 6036000060360000 6036000060360000 6036000060360000 6036000060360000 6036000060360000