last executing test programs:

9.548586288s ago: executing program 3 (id=279):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0xa0201, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x200}}]}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0)=[0x1], 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fsopen(&(0x7f0000000080)='ext3\x00', 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f00000006c0)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}}}, 0x108)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000180)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000a00000000000000ff0200000000000000000000000000010000000099e57c05000000000000000000000000000000000000b9000000010000000000be85df1b410000000000000000000000000000000000ed4f72d3e56abb008b2e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c5a1"], 0x90)
r5 = dup(r0)
io_setup(0x19, &(0x7f00000009c0))
r6 = fsopen(&(0x7f0000000000)='msdos\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r5, &(0x7f0000000240)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local}}}, 0xfe93)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)

6.520042691s ago: executing program 2 (id=287):
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f0000000100)=0x80000)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0xd, 0x800)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0xcb75, 0x0, 0x0, 0xfffffffd}, &(0x7f0000000280)=<r3=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
timer_create(0x2, 0x0, 0x0)
ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, &(0x7f0000000300)={{0x2, 0x4e21, @private=0xa010100}, {0x6, @remote}, 0x4, {0x2, 0x4e24, @broadcast}, 'gre0\x00'})
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f00000002c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x5f, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=@delchain={0x48, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x9}, {0x10, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @mcast1}]}}]}, 0x48}}, 0x0)
timer_delete(0x0)

6.40004646s ago: executing program 3 (id=288):
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0xd, 0x800)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0xcb75, 0x0, 0x0, 0xfffffffd}, &(0x7f0000000280)=<r3=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
timer_create(0x2, 0x0, &(0x7f0000000180)=<r4=>0x0)
ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, &(0x7f0000000300)={{0x2, 0x4e21, @private=0xa010100}, {0x6, @remote}, 0x4, {0x2, 0x4e24, @broadcast}, 'gre0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f00000002c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x5f, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=@delchain={0x48, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x9}, {0x10, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @mcast1}]}}]}, 0x48}}, 0x0)
timer_delete(r4)

6.019914634s ago: executing program 1 (id=292):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000740)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f31000000170a001700000000040037000a00030001632564b758b9a64411f6bb744dc48f57", 0x39}], 0x1)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB="40000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="018000986800e2ff140012800b0001006265746164760000050000000a000100bbbbbbbbbbbb0000"], 0x40}}, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1fbffe, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$lock(r7, 0x26, &(0x7f00000031c0)={0x1, 0x0, 0x2})
r8 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r8, 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'])
fcntl$lock(r7, 0x26, &(0x7f0000000080))
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="1b0000000000000000000000fcffffff00000000693c3ca5977a2f720cbf235f9a0d54ec50ac965131bd022ac7f43e140ad5439aba11295c551a6c2765b4067a7bc3556a9ca909064076ae7e4b2127c4d2aeb46340c6a55ab7956115a125dd9f60be7b0b91a8d135fb866239b091ba5b6575773b3b603aece3c915fc39439e340df9b2e45bebee87fda8b487c09cb70c4d5b6526c3a47e4acf9b3ffd71603120b1535a0070faf85efe12c3ad2c7d1ae507f7ea38363f150ae305198d0ff2ff24bb3ffbe9304617302b81e05df32a72e6f66b554e0a11257e07b3890f5cf57c85cc61ade119f966e004713205fb2b0803f263265f56cfc67e73", @ANYRES32=r3, @ANYBLOB="0600"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="03000000050000000500"/28], 0x50)
r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r9, 0x40046f41, 0x20000502)
r10 = getpid()
process_vm_readv(r10, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r11}, 0x10)
socketpair(0x11, 0x0, 0x2, &(0x7f0000000340))
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0xe, &(0x7f00000018c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x1}, 0x8, 0x10, &(0x7f00000003c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r12, 0x2000000, 0x93, 0x0, &(0x7f0000000600)="168e43acc18169514039c5bcdb7a44ca7b73908b0e0245bb78fefed08041a1231bdb4729d55fa1e5b413df0c757252630588a43d899a24818d78c9b4b148de20b812fd893157d5046238c9c82df5a649a4781baeac4da0bf1151b932a24f43608a48841f8083e2bf008a0c7a6415d630057bde8c3589ec5aad0876bd342598daa8affb10c0bccb023f824d8e9fdc94ab245a5d", 0x0, 0xc699, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000340)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

6.019202655s ago: executing program 3 (id=294):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x4, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="070000008400000000070000000700002c000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r1, &(0x7f0000000280)={&(0x7f0000001240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x6, 0x1, 0x3, 0x0, 0x0, {0x0, 0x0, 0x1}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x4000081)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x4000, 0x12)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x28, 0x140d, 0x2, 0x70bd2a, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x4}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_RES_MRN={0x8, 0x3e, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x2000}, 0x4010)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x4001, 0xd000000, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TLS_TX(r4, 0x6, 0x1, &(0x7f0000000380)=@gcm_128={{0x304}, "0ca474864549ddec", '\x00', "6563aff3", "5ba3b7deb8fd11a3"}, 0x28)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000100), 0xfffffd9d)
sendfile(r4, r5, 0x0, 0x8000002b)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x600, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93}, [{}, {}, {0x0, 0x0, 0x0, 0x0, 0x7, 0x80000}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x10}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, {0x0, 0x0, 0x200}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x2}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {}, {}, {}, {0x10000000}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x10000}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x3}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)

5.325184106s ago: executing program 2 (id=295):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
r1 = socket$inet6(0xa, 0x80005, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, 0x0, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x4e24, 0x4ee3f8f8, @private1}, 0x1c)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket$kcm(0x2, 0x2, 0x73)
bind$inet(r5, &(0x7f00000000c0)={0x2, 0x0, @broadcast}, 0x10)
r6 = socket$kcm(0x2, 0x2, 0x73)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x10)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r4, 0x40305652, &(0x7f0000000440)={0x338, 0x3, 0x6, 0x4, 0xd6f, 0x1, 0x1})
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
r7 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r7, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r8, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r9 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r9, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r10 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYRES16=r9], 0x154}, 0x1, 0x0, 0x0, 0x20000891}, 0x20000050)
socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
writev(r10, &(0x7f0000000540), 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)
r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000100000c02000000000000000000000d0000000000005f"], 0x0, 0x34, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000000000000000000e8a37111aeb14c2308203ce2625b67dc60076f555b4f93cb4ebcccd80916d70c2201006a9cf9700cb1591a2b2a03ee"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r11, 0x8, &(0x7f00000002c0)={0xfffffffc, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

5.251755501s ago: executing program 1 (id=296):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0xa0201, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0)=[0x1], 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fsopen(&(0x7f0000000080)='ext3\x00', 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
r5 = socket$inet6(0xa, 0x3, 0x4)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f00000006c0)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}}}, 0x108)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000180)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r5, 0x29, 0x30, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000a00000000000000ff0200000000000000000000000000010000000099e57c05000000000000000000000000000000000000b9000000010000000000be85df1b410000000000000000000000000000000000ed4f72d3e56abb008b2e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c5a1"], 0x90)
r6 = dup(r0)
io_setup(0x19, &(0x7f00000009c0))
r7 = fsopen(&(0x7f0000000000)='msdos\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r6, &(0x7f0000000240)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local}}}, 0xfe93)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)

5.124741378s ago: executing program 0 (id=297):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0xa0201, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x200}}]}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0)=[0x1], 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fsopen(&(0x7f0000000080)='ext3\x00', 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f00000006c0)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}}}, 0x108)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000180)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000a00000000000000ff0200000000000000000000000000010000000099e57c05000000000000000000000000000000000000b9000000010000000000be85df1b410000000000000000000000000000000000ed4f72d3e56abb008b2e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c5a1"], 0x90)
r5 = dup(r0)
io_setup(0x19, &(0x7f00000009c0))
r6 = fsopen(&(0x7f0000000000)='msdos\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r5, &(0x7f0000000240)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local}}}, 0xfe93)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)

5.070149622s ago: executing program 3 (id=298):
r0 = socket$kcm(0x11, 0x3, 0x0)
syz_usb_connect$hid(0x6, 0x3f, &(0x7f0000000640)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x10, 0x596, 0x506, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0xe, 0x30, 0x5, [{{0x9, 0x4, 0x0, 0xa, 0x2, 0x3, 0x1, 0x1, 0xe, {0x9, 0x21, 0xe, 0xf7, 0x1, {0x22, 0x7f1}}, {{{0x9, 0x5, 0x81, 0x3, 0x38, 0x3f, 0x6, 0xc}}, [{{0x9, 0x5, 0x2, 0x3, 0x8, 0x3, 0x9, 0x5c}}]}}}]}}]}}, &(0x7f00000008c0)={0xa, &(0x7f0000000700)={0xa, 0x6, 0x110, 0x8, 0x4, 0x6, 0x50, 0x3b}, 0x45, &(0x7f0000000740)={0x5, 0xf, 0x45, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x1, 0x8, 0x10, 0x7ff}, @ssp_cap={0x24, 0x10, 0xa, 0x7, 0x6, 0x1, 0xf00f, 0x3, [0xf, 0x0, 0x0, 0x3f0f, 0xff, 0xc0]}, @wireless={0xb, 0x10, 0x1, 0x2, 0x4, 0x3, 0x4, 0x65d1, 0x5}, @ext_cap={0x7, 0x10, 0x2, 0xa, 0x8, 0x9, 0x2}]}, 0x3, [{0xc, &(0x7f00000007c0)=@string={0xc, 0x3, "1037e53dd108fc8d1db7"}}, {0xf, &(0x7f0000000800)=@string={0xf, 0x3, "dce5a816a18295e9b16f05b0fb"}}, {0x41, &(0x7f0000000840)=@string={0x41, 0x3, "3df15259979cfdcce72b0609818bfcae079f43e2ca770ee3521a61a1750efc90cae0cd1eb0d2094e9ee246d7a9ae87168afc7a55980fd17f4ad71c3a83bcc8"}}]})
sendmsg$kcm(r0, &(0x7f0000000200)={&(0x7f0000001340)=@hci={0x1f, 0x8, 0x2c}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000000)='G', 0x1}], 0x1}, 0x480c0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0), 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x10)
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r1, &(0x7f0000006300)="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", 0x2000, &(0x7f0000000680)={&(0x7f0000000500)={0x50, 0xffffffffffffffda, 0x400, {0x7, 0x28, 0x0, 0x814c26, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r1, &(0x7f0000000e00)={0x50, 0x0, r2, {0x7, 0x27, 0x0, 0x23072d}}, 0x50)
setxattr$trusted_overlay_redirect(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000240), 0x0, 0x0, 0x0)
setxattr$security_ima(&(0x7f0000000100)='./file0\x00', &(0x7f0000000380), &(0x7f00000003c0)=@ng={0x4, 0x15, "7051d0d8f672fd969895e0d024cf24"}, 0x11, 0x2)

2.036931481s ago: executing program 1 (id=299):
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000280)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4003, 0x1, 0x0, 0x8000000, @void, @value, @void, @value}, 0x50)

2.036595255s ago: executing program 1 (id=300):
ioperm(0x0, 0x7, 0x5)
syz_open_dev$radio(&(0x7f00000000c0), 0x2, 0x2)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x7)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0xff)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000003c0))
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=@framed={{}, [@printk={@lld, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x10}}, @call={0x85, 0x0, 0x0, 0xe}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x7, &(0x7f0000001d80)=0x7, 0x4)
getsockopt$inet_tcp_int(r3, 0x6, 0x7, 0x0, &(0x7f0000000180))
sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000012}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
r4 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
write$sysctl(r4, &(0x7f0000000000)='2\x00', 0x2)
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x14)
setsockopt$sock_attach_bpf(r1, 0x1, 0x12, &(0x7f0000000040), 0x4)

2.033348504s ago: executing program 2 (id=301):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x200de8, @dev={0xfe, 0x80, '\x00', 0x43}, 0xe}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e25, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c)
sendmmsg$inet6(r0, 0x0, 0x0, 0x0)

1.940032257s ago: executing program 2 (id=302):
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0xd, 0x800)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0xcb75, 0x0, 0x0, 0xfffffffd}, &(0x7f0000000280)=<r3=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
timer_create(0x2, 0x0, &(0x7f0000000180)=<r4=>0x0)
ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, &(0x7f0000000300)={{0x2, 0x4e21, @private=0xa010100}, {0x6, @remote}, 0x4, {0x2, 0x4e24, @broadcast}, 'gre0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f00000002c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x5f, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=@delchain={0x48, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x9}, {0x10, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @mcast1}]}}]}, 0x48}}, 0x0)
timer_delete(r4)

1.939430676s ago: executing program 0 (id=303):
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f0000000100)=0x80000)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0xd, 0x800)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0xcb75, 0x0, 0x0, 0xfffffffd}, &(0x7f0000000280)=<r3=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
timer_create(0x2, 0x0, &(0x7f0000000180)=<r4=>0x0)
ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f00000002c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x5f, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=@delchain={0x48, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x9}, {0x10, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @mcast1}]}}]}, 0x48}}, 0x0)
timer_delete(r4)

1.539687852s ago: executing program 3 (id=304):
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x30, r0, 0x8000000)
syz_io_uring_submit(r4, r1, &(0x7f0000000000)=@IORING_OP_LINKAT={0x27, 0x22, 0x0, r2, &(0x7f0000000240)='./file0\x00', &(0x7f00000002c0)='./file0\x00', r2, 0x1000, 0x0, {0x0, r3}})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="180000000800000000"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r5}, 0x10)
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8)
r6 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r7 = syz_io_uring_setup(0x56f0, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r8=>0x0, &(0x7f0000000180)=<r9=>0x0)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="24000000000000080012"], 0x24}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r11 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_MCAST_MSFILTER(r11, 0x29, 0x48, &(0x7f0000000040)=ANY=[@ANYRES8=r11], 0x90)
write$UHID_CREATE2(r10, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r10, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r7, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
ioctl$RTC_ALM_SET(r6, 0x40247007, &(0x7f0000000000)={0x3b, 0x4, 0x0, 0x13, 0x40004, 0x9975, 0x6, 0xa2, 0xffffffffffffffff})

1.368280386s ago: executing program 1 (id=305):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8923, &(0x7f0000000100)={'vxcan1\x00', @remote})
r1 = socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r3 = memfd_create(&(0x7f0000000540)='\x01\xfd\xae.+\xa6\x8c\x02\xea\xb6?2\x199\x94S,|x?Ue[\xbd\xe1!\x033\xbc\'#\xff\x17\x9b%\xf3[d  \x97\xf5G\x97A\xc2\xd8\xf0Uq\xe6+\xa5l\x94\v\xb6\a\x17\\\xfb\x04!\xe4\xc4\xb1\xa2\x1c\xffC;\x94Q\r\xb6}\x9c\xecC\v\xcf\xeb\xe4\x9aR\xe5,\x82\x03\x00\x19\x8d\xe8\xc6\xb9\xe4\xb4\x99\x8a\x19P\xb8\x8cx\b\x99\x04R\x05\xaf\xa2\xea5\f\xcc\x1a\x9b\x00Uf\xa5\xf7\x80Tgiz\nX\b\x91\xfd0\x8e\xb6\xa3\v#\xa1\xdf\xb4\xc0\xe6\xc4\xef\xa8i\xd8\xa2\xd2(\x98\x9bA\x8f\x13\xeb\xf4b/\xef!\x8f\xf6]-\xe9k\xb62\x89gEv\x13\xf4\xc7\xb2\xf5\\\x17\x90\xb5\xa6\xa8\xb8o\x0f\xe2 \xe7\x9c$\xd7\xf2@\xf7cdv[\t\x00\x8d\xf3\xcc1\r$\x1e\xff\xf0P\xb2\x97\xb8\xbc\xeb\x91\x87\x8b\xb5Z\xd4\'\xff\x1f\f\x016\x9dQ\xeeT\xe8\bY\x00\xb2\x06\xa6\xbel\x9b.o\xbe\x80\x9dx\xd5O\xd6h\\I\xc9\x8d\a\x1d\xc9\x0f\x82\xdbs\xc7\x83L\x9e\xa2\xd1\xb3\xac\x8d\xd8\xb4\xb4\xea\x90Q\xd8\xc7\xeb%\x8bOp\x1ab\x96\xcf\xbb\x15\xcf\xfcN\xed\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00s\xaf\xa2\x14]p+\x96\x1ei|n\xda\xee\\\xae\x96*\x82*\x14\x1f\x1d\xf8\xf8\xae\xfcH\xc4\xb3j\xe8\xcfO\xef\x0e\xafe\xb5*\x89\x18\xb2w\x96\b\x1by\xeaT\xdd\xb3g6\xbc\x85\xb2Y\xccv\x06\x00\x00\x00\xc5e\x90\xc51\x9f\v_# \b\xa5\xbcP,|\xe9\xd6s\x1f\x1f\xbe\xd3\x80\xb1\xa8 \xce|df\x903\v\x02\xea.\x03X\xb5\xe4,8\xb7\xadEI\xdcA\xa7\xcc\xd7\xf9n\x1b\x95\xf8\x11Z\xe6:\x03\xce\xfe\x02\x8ctdy~_oC\x9e\xef\xf0\xa2K\xe9;\x8e:\x01\x03C\x92\xeb\x16\x1c\xbf\xbe\xef\xccUxhg\xffY\xe6\x83\xa6z\xff\x01\x9d o_{!O\xaajU\x84 \xe9\xb59r\x9cw\x18Z\xd3\xcd\x0e\xba\\\xdb\xf0\xe1\x86\t\xaf\vi\xdc\xbf?\xf5\n\xbd^\x05\xc0\xceuC}\xa8\xc7\xad\x86\xd7\x15&\xb9]1\x05J\x96\xf0\x84\xc1\f\xa6p\x96\xb8\x02\x13pA\x19\tf\x12\x88\xc8\x9c\xc9Cn\xd4\xa4\x85G\'+\xcc\xbf\r\xa9\x10Klb\xe5:\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00G\xdf\xbb\xc0_\x99F\xf4n]\x14\xbc\xcd\xd3\x9f\x9fe\xc5\xe6\xe8Mb\xc6\x82\x82\xcc\xcaXe\xe1\xa2\xaa\x02\x86\xb8\x18\xe2C\xeb\xa9\x17&\x01&\'w\xa1t0\x80\xf0\x93\x80\x9f\x9b\xe0\x9f\xea\xb9\x9eD]#V\xda\x92\xca\xc6\xfa.\xd6\xe31\xfe\xe8\x02\xebX\xbd\nz\x01O\xd3r\xa2\xa9u\x93y\x9d\xc4K mC\x97\x1c\x91\xd7\xf3\x13)`\xfb\xbf\xd3\xcc\x8d\x0e\x1f\x80\x0f\xcag\xd5J\xd7\x99\x02B\xd9\xdb;\xbd\x05\xc8\x9a\xe9(\xb7\xd1\xce\xba\xf8\xc0\x1fPc\x8d\xfceY\xf8j9\xc4\v\xb5\x82\xbaI,\xf5\xbd\a\a\xa2\x83\x99]/@\xbc(*v%\xa1\xd9\xfb\v\xdc\xed\xa3\x93\x16\x0e\xa8\x96\x10\xfc\xae\xc6X@f\x17\xf4\xb78\xa6\n\xaa\xe5m5\x9d\x14\xd7\x91Q\xb5\x11\x88\x89i\x94,]\x91\x13\xa6~O\xcdV\xf36,\x8a\xc9P\xbd\xf6\x16\x99_\x01\x0f0/\xe1Yi\x00=nz\x1d\xbd\xb0\x85W\xeaU\xea\x03)!\xf2\xfa\x04\xecf\xad\xb5\x94\x97\xbb\xae7\xbf\vQpi\xf3x\x80\xf0\xd3B\x17\xbc\xf2H\xeej\xc4\xdd\xb31\xdc\xb3\x19\x12<\xf7\xca\x12\x86\x15kZ\xb4t\x87;\xfb\x97\xc6\xb4\xf5\xa6\x9b-|EW$\x0e\xb2\xef\xebW/\xff`)M\xe3\x99\xe5\xe2M\x8dxD\xbf!\b\xf4o-\xab\xe0\x1eN\xdb\x94x\xe9:\x92#\x80\x91\xc0\x04\xfd}\xd6\xd6\x0f4/\x13\xf2q\xbc&\xd0p\xe6\xe6\x01V\xf3Lc\xfd\"\xa5V\xce\x9b\xd9\xd3\xc2(Q+\xd0\x00\x00\x00\x00', 0x4)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xe, 0x12, r3, 0x0) (async)
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000040)={'bond_slave_0\x00', {0x2, 0x4e20, @multicast1}})
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000200)=0xa0000) (async)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000280)={@local}) (async)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r4, 0x7a8, &(0x7f0000001340)={{@local}, @my=0x0, 0x0, 0x8})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r5=>r1}, './file0\x00'})
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000680)={0x24, r7, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}]}]}, 0x24}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_ADD(r5, &(0x7f00000004c0)={&(0x7f0000000240), 0xc, &(0x7f00000002c0)={&(0x7f0000000340)={0x17c, r7, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}]}, @TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x401}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xed}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xf}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfffffffb}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}]}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}]}, @TIPC_NLA_MEDIA={0x28, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x825e}]}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x18000}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xb}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x81}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffff1108}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x81}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}]}, @TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x1, @rand_addr=' \x01\x00', 0x2}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x7, @empty, 0x8001}}}}]}, @TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x8004}, 0x15)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r4, 0x7a9, &(0x7f0000000180)={{@local}, 0x4, 0xffffffffffffffff, 0x0, 0xf6d5, 0x0, 0xb116, 0x5, 0x20000005})
close_range(r2, 0xffffffffffffffff, 0x0) (async)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}, 0x1, 0x0, 0x0, 0x2080}, 0x30044080)

1.367918904s ago: executing program 3 (id=306):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000))
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x2, 0x0, 0x106)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'lc\x00', 0x21, 0x4ba12, 0xf}, 0x2c)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
r5 = syz_usb_connect$uac1(0x2, 0xd0, &(0x7f00000002c0)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xbe, 0x3, 0x1, 0x7, 0x0, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x4d, 0xe6}, [@input_terminal={0xc, 0x24, 0x2, 0x3, 0x201, 0x2, 0x80, 0x4, 0x78, 0x4}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0x10, 0x24, 0x2, 0x2, 0xa22, 0x6, 0x3, "118dda127e6ed6"}, @format_type_i_discrete={0x10, 0x24, 0x2, 0x1, 0x16, 0x4, 0x9, 0x7, "3164bdf41e935cff"}, @format_type_i_continuous={0xa, 0x24, 0x2, 0x1, 0x7, 0x3, 0x3, 0x81, "bf2d"}, @format_type_ii_discrete={0x10, 0x24, 0x2, 0x2, 0x800, 0x5, 0xf, "6fd017cd507779"}, @format_type_i_discrete={0xe, 0x24, 0x2, 0x1, 0x53, 0x3, 0x4, 0x0, "2629354ff7e1"}]}, {{0x9, 0x5, 0x1, 0x9, 0x10, 0xb, 0x93, 0x8, {0x7, 0x25, 0x1, 0x3, 0x81, 0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0xb, 0x24, 0x2, 0x1, 0xb9, 0x3, 0x0, 0x80, "a27a", '\v'}]}, {{0x9, 0x5, 0x82, 0x9, 0x40, 0x10, 0x3, 0x7f, {0x7, 0x25, 0x1, 0x0, 0x8, 0x6}}}}}}}]}}, &(0x7f00000003c0)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x300, 0x0, 0x4, 0x7f, 0x8, 0xa8}, 0x52, &(0x7f0000000440)=ANY=[@ANYBLOB="050f52000613100bd06e148df275ef9a1f040c6b253bb3fb18100a0e50b6e8da6fec3c0d0f2336b881ac60335f59d0260b1001080200480208000803100b0a10030000002b0901000a1003020f00e4030400"], 0x1, [{0x81, &(0x7f00000004c0)=@string={0x81, 0x3, "c637d1ce9ef556a10b608c7e9a9ba0136901b048a367fa90c066055d893238020afd9080d995d237560412b758bc2dc6dc3ee3bc0fc5fe12402ca8896e06a4580e19ac3f021087ec6224e8de1a5436f19a9a813142d83c0ed6436a40db3e9be8111f91713987e065c8e37b931ae4854f75cc159a0d0f8d8f2737d5b4d68e50"}}]})
syz_usb_disconnect(r5)
socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r6, 0x0, 0x7ff}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
epoll_create1(0x0)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0)

1.159721495s ago: executing program 1 (id=307):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0xa0201, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0)=[0x1], 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fsopen(&(0x7f0000000080)='ext3\x00', 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
r5 = socket$inet6(0xa, 0x3, 0x4)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f00000006c0)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}}}, 0x108)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000180)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r5, 0x29, 0x30, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000a00000000000000ff0200000000000000000000000000010000000099e57c05000000000000000000000000000000000000b9000000010000000000be85df1b410000000000000000000000000000000000ed4f72d3e56abb008b2e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c5a1"], 0x90)
r6 = dup(r0)
io_setup(0x19, &(0x7f00000009c0))
r7 = fsopen(&(0x7f0000000000)='msdos\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r6, &(0x7f0000000240)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local}}}, 0xfe93)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)

1.078830297s ago: executing program 2 (id=308):
syz_io_uring_setup(0x236, &(0x7f00000002c0)={0x0, 0x4533, 0x10100}, 0x0, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)
recvmmsg(r0, &(0x7f00000050c0)=[{{0x0, 0x0, &(0x7f00000001c0), 0x2000000000000112}, 0x3268455f}, {{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)=""/171, 0xab}], 0x1}, 0xfffffff9}], 0x2, 0x2, 0x0)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x10000000)

999.737536ms ago: executing program 0 (id=309):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000033c0)={0x53, 0xfffffffffffffffd, 0x6, 0x6b, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000000)="a30000000000", 0x0, 0x0, 0x0, 0x0, 0x0})
dup2(r0, r0)

999.456876ms ago: executing program 0 (id=310):
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x1}], 0x1)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f0000000940)=""/188, 0xbc}], 0x1}, 0x4c2103a2)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x40102)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_open_dev$video(&(0x7f0000000000), 0x7ff, 0x0)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r5, 0xc034564b, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x80fe)
syz_emit_ethernet(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000140)={0x0, 0x0})
clock_getres(0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
preadv(0xffffffffffffffff, &(0x7f0000000240), 0x0, 0x0, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CAP_EXCEPTION_PAYLOAD(r7, 0x4068aea3, &(0x7f0000000080)={0xc9})
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
pipe2$watch_queue(&(0x7f0000000040), 0xb82e336200000000)
openat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000080)={0x640400, 0x0, 0x25}, 0x18)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=ANY=[@ANYBLOB="2000000004000000410000000000000001000000", @ANYRES32=0x1, @ANYBLOB="0000000000000000000000000000000072c10000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ffffffff0600"/28], 0x48)

589.968414ms ago: executing program 0 (id=311):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x6, 0x200)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000002e80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r2}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r4, 0x50009417, &(0x7f00000003c0)={{r0}, 0x0, 0x2, @inherit={0x58, &(0x7f00000001c0)=ANY=[@ANYBLOB="000000000000000002000000000000000100000000000000feffffffffffff00000000000000000000000000010000000f000000000000000104000000000000ff00000000000000eb0e0000000000000800000000000000"]}, @name="83c48337e94f0bd8b1f62736ca8b63dcdbeb022a111e5472230380726e3fcf8c024cc6e0f662f804fb981a6b24bddb2dbad50c0f7286f559959b07ad5ca362306c2aae36e0a53de196dfbb1da802c8f002d9a622ea1a258eabf87262ac5263918eedb06f5d118f56f80db15315c0bfde78b313dd44f7af7025555b3aab440ca184ba268af84d8db2c32e2e05b3368ea2537084402a48848dbdd5d3682edb400cde3de0b0a1bbf674e1d12a28c9cc9bbd2b289ba9bce1d45af0edf251f734d9ec2c296a817436e11cae293f8de2a958c3b9610208e75df4dd4d91b2a70f655cbacf166896230724c57651a2183207be95a3f209f18c036dc7de5b98750f589f0f0ec29ba3b93ed853177b96d0c43b176601f59ced12c6609ac73f70cc1253b922b65049cc66fb01e25ef0c2a8e79a6288b5e67c395f71c1dfdb8b7ea85a1ade2d2b2cd3af38a9f95518d052352f3fe34aa3245a91590a50178972a5c34a50bee72cd86b5eee7d7a5f46a4b94f708e13ea281cc0a39e19658b554dbdb54e75d4446350a2ae35a15474a1e8ae15d8bb9a4234f2b41ea5ab06d5bebf26ca47bc8e437255d16273de4343bc26508cac32a7e4fc0a38242b2549e6b6965e54433b5bbed0df760c688340116ebb458502016975bf27b52ed0320b0880aa3dfac3fd1b085561c5f310fa6c5a55b031317709a4b23c1ce1877d62bd6d149c2d1ca6209079b22a7df168612af40e2a46293ceeeda2511018fd09571f5caeb1157a05fe46ba39afa0be1bd01b51a1dd6f11d08e29a3521db450c4aa2e4e18e951ddadfeb2149a4d007685f94c1d65e93e92055cb589b7d17d425c61359837b944d2e9f7fa660e275c44e164e3020eb1a8704fae2c99d32f037d7c42ef9e63c616288f401b1636eefcb606971e60246fb8e27229a28e196f5f15352bfbea10a9950ab83aeb076de22895c3e28d9db47adccfcd10ad901d1877bc7d996cef3c2e89fcdf0fc436d2ac7a9536ba7c42f467e973140319d471e3bcba0417f36566c9f5f0c90fa3ee30e5b2ad7c5de4cf36afaff130519f6f78daa2f03c94882a302918600db81583ef1dcd824274d69e3e3fc4f7e842debba24ed43ad23dbb1be2017c3e5e16db19cbbb928d33ea74cd86ee3ef7245dc2001b3bb8881b10ad69e353847e772c48f8b9bab3d858e86fa59fba0284e46c935506a43f8c7af3c02b78fe5e4deba46bc44b5375368134b44c13cd89080d005dfc5cab146f0b42ffaa427e7ebbc308d0e3ea1cfc69797e254e8e256ffdc2f1c9d1fdb3275c27c876f9eca21812fc5057cebbed1f98bf2e8113ba63dec4499c858f2cc87482a014fa170f5a3e271f8cf8da698976663af8f8b293f67efa8bf3f9ec53925018af9b46d18fb11c37e9e8477c241492f25b598b954d14decdab6451d7e0e50357588333a38f5d7af6adbf9511c44a3c15ce7fd8445180b6c492b59c128e2742f8a88b5a8d359d9408324401ae9a185a3cbd134f29d627867e40c78c9a4181ea62bf3ef3f577c3e901f53f661861e12fc882886a031a1585fb881bde84159a41303a15558441cdd6a9a474e545808495a8eea4e8cf55bf289b3cd846bdd464507e8ea09163fd29488f0653bb96abfc69303f2794a188b2904e4aedac23019f6cc014a8cc3d38e0021cfb7505641efe2aad5574e5dce22a351d6eb2da0ea039307cfaf4c6b8cdfe35c7bb430394b6880c55e7831708c8b8cb8dd54c25cb096c07f3a82a965b79a91e0d3ba7092fdb504957afcdfc6a4148948f618c7760ec8429c71e56439c3ee21f9708976bbfb9097ac73ae620e71d6c2d47075a4fb22a3b06baae3b6e1473da7c95d457eb6fbe08bd78b325cd4ef41e11a80b4c18729256d25e53b178b5f3cc174f8de3b5bc80f42e67c0a40e29a427b41a5394aedff203d26b5d0ab29a2d327592b49d9fcea2e21d84a411b494c406c4bfeb832f879454be68e5aac0cad0d2fe86b117f2127966f18368036d17513b216dedc953d6d263848440ed9177f50c30077b92e665deb477c5a8844e6cf83a64e7888eca0c085d8ba4a0169f5eda417720c1da762562156fb1b0af40da86570743c81940603fcbf71797e72e5a8747738f96a63010e805d68072ce782581e8a7e1ff047807e302ac701f26c7e80c5a5b90e0b85b324e0c1de8f69f6afd001da769348d2697872d8c1bdc34fd2f425b934cd3ff34b93ca1a141b2a6ee010af1d50888ce433f010f216d13f9f75d001156fa9152c93d8624492eb7df47c6cad299c3b4dfba96a2844b87eaf3479d871f1d62d9e8a573292f18a1ea354e031ae3f7084751b02df6e4dbc610ff9ee931580ef703ec32c9a0ee917c7b34d396f157503e4e3db2349364c9b1c25bf8e5db3a3d16ad53e1b5b7012c070caaf1ab8d7a08b9235917fb0020e5b2dafe08903acfe3095b6ed44b919e05794889e5f51e02dcb3f908984b89b293fe5141123d03cfe60e9683afeb5ca8fb373e2c88b60c1896be7c42ca31af55c5ea293f0cb1058305a256046997050db001e50503aa124278c942bac7fb6b7e8817dcbd5837fc35e562ad3721dd209483739ef33cc6e70de86999f9cb3e2643954a6b480267ab29fe10af92fd1f8f4a66d13a0f6438a594a0b88709b3b6c2b0ec6785fb7c85a9ea69a25a1f9e74a01c4c856d0adb6409b46725bd299bd0ae30e9c7dc584ac2de9778cb5f33c06f35b35c8febde4e9208430119431c5fc420724de42df4eac76209a7de2104fa3228c2cb8a56d1859d0c905490aa5c33d4b8896d8a11bf451ede020cbc57c227b9de1ea48ac38f92cd96ff8ecf8c8bf6699f5006eb230953b6c71c888dcbec1b11b27b36fc02bf596379243cd4d7ea5a814fe12d3b24d0a47dc33d20115062a8a8e5271a6e6e78ab05eb6a6a8e31201171f490b151188463ddeb8a623aa4b9e02a10db2f39c71c97de8f0379ad7ced9760a818ac1b5bcd4ec40d5b9c7e10c90ab343fcc40719e36e8350520afd15279ae1213bbb86f702f8719301258171e23b01c2df98e206f0f97ca350539e2f81b726a12c3828ba6a3a1dbf9d013a25f1e2d77150719b6eca5a55b3b3a00199a372c27e57207089e23b4ea45f3d936c0c5ae6e969a105c474bbb599fccc5bbedb9a9cb77449b67d9d6e0cbc2af22e7950cf5d04d12b57c060c25f01d50a540d07f01d9eb9e4b4896178c426a4f692bcbf55965730cc8220f79f450d185ad7ca7d20af757b2df958faa4349eb73ae927b99f11837ce93ae6167b31f8cbf6436a685ea8c8cbd9f56c7708e6d4cf73c6fc066ba310fa09fadafe7a81e0c73e5c433c046adca4da807bd95a9bae75110f312bd9f409a44fea47e4845adca31a19c0dbfbba0809e6ee462695740755f560027fbe9feed23da08bfbac0bb30bca673c39dda77f4bf775a05f28f5b288b300d6515fd7ba24a0d61cf630222ba8079a34f02f081a069bdde47032057eb2c44f9497c2020de5285b80ed1be1e34517c49c1fc21c96d5d1270041fa649f039e277b5d503ab903fab6c0590278c12450af5714207e8eee9807b00a22a0f77aa16988ce7626d1fa49cf92d8f4810727be3aaf1c837609a515f9760abe024eb5f77bdbc5af4871410683cadd98b1c4f347e5465b8d589bf006faf92b34593305884d0692213cc66d559d84ff459ee5639f0052f2700bf316e62d032db4429e695509485f4eb6e513a0dc3fd43dd4c0ea49e9f98bad28d636df74baeb614798fcb46a7b6883e1e122785566f22b81de72e3278114f1b32f9f235625efd8979516466f211c63ee83af85be91383eb7f92b362fed6eb208ef6740fca46abb3e7ec82717643ea47305df0db5c152f4835789b0da772e79e43ec96b1f5d785eafe208c688a6d82185fc2fb8d817f9bd9db4f3a1cea93283f167f12bb421fb77c215c25e75a13aec92ceff8907d20a60d654977c3b0cfa90f47df26ad2b2ce2698e045bb2a4709026ce0aaaada6e32c057ff1b10b557766167bdbaf7832039ea55dcb721c13615b89129c648c65bbb8b352f3e599554f7b0bff6ab21dffefdc36b43dbf65bbfa888c73cbf990624a373c25bf8402086690ec332130cf9d7e409db8cfbd471a2999d31a5bf70c68a361c5a138e401fd2d9114cacbb18e4cd6ed800515238e02dedb701ae3999fd54a071b95fd37289ab25863f925d2f0098ecd3ec2d0b3b675ac762bbac3f5287e028c597e298e2e7f25ff9ad7debcd54db56c6fbd84ce9b35a36cd67b67c69f61a098311bbad7003c18480a1d0f4a4583740ef702668f47720090a3e1608c848ab511ea36a1c5d9366d14306996adc6e78040fdf8819e610d3cffc9dd9a54deac0ceb00adef709584a0a269942b1d2ab1b6996605a9d438c12a7b01b6ab771b8dd23b1ab792c6779d55793467fc2cef8d17e5c82afd1a8e164ca1d82ba3f7bb4b8f37eca920215a577431e916d52b91011e2a5c27752741be536b280043896d6d66f96cecfd3e01acc30f13921abba69f2be8f505f9bdb47b2f416d8b902589ce4120cbe63f0528bd39df8aa1894679d2b08e20f23b5ddbbe8f9dc6c52323a6fd5d5c193d777f435f308ef39f28cb30d7242705d9497035d507640dacff541334707d7a56dbc736ac74beafd06d9d28fe5f3a11928011d911f2472035055b3369075f7e99c5d97e1e5d211faa556046db266909c6b9134c1d20a4548e5a71f9dc16c87676838f45e3e4cb33a6645c5ab631f7d9313a580b0306b8f22c8fa89eaa5d9074b53fb6cedbf9699180d966b92b354e5c76ed8a108b4c1e9624609caa0023254b11a2b0db5dcf4bf9a7425122e83df8c5f104e2c5dae7aaffe3c182d2742d13aa4de8807cc91479d6f3bfcbcb710c1c57285f195173085c21b00697216257df4bf8eb931303e63b40c83dae25799a77d5099594c11335b65356ab19b8b409ecb3e0763d56325f7bd0f7f5f2b1154dfb14d8eace896ce903994f962523e438f9c83ebd4b7d63762c2ed96e7da0ea11f0728f7a69da1587f4c9837a0d6263056ad01ec9a8bc8b7a564046180564b23636124f4d7c5f2a8488ebe39f7dee49677fd72354d792721cbb7c234b2fbfbf4886860b451eb4e940cb469b6d03be0b5e731384083a84234b00c60176c52c02a954a2db347738cf6c9d4b020d5de16e4d1f74fe3cb6b07daf7c883cc237842a41211dcca013ce084d9929940c210d3fc33e96a5719a67767d513f1af0fc34890d83194422115197342620826acb499dac16d3f9eec6a6a6ec3cb42dece6244948100a490379b95fb5be56f4cff8f9a4a18721052affec35551edd38823c1ac6ee66043907b7fba9ad777c24715360281eaad80216fc7b5c7bfc95b40b4cc45fcd3dffb1fc71b69ca4e3a7bf0ef84be21aede6a184a31703f512a642d9e3d022f1365d0b6ca5673c29312b7379bef2c20e4f7389be80cb8fb9881804aed04502606d4920938abca9d62a687b775e64202cb2dd61d28bcb3997e0aba42896021d35700593a5d14c766a7b45cb6caa2e235227ee68a4b29585e08c47a072442917c746e63e1188d3e121f3fae2aebc139ae2c7a7915be5f7b2d3714f9de056d73f279c6fc0fd7cad7e2f6f7dcec39f9682297248590ae0fd4af0d5b709f913e68eebf89dc173ff51e2c5825114ba86e6576e8321ad09dec778abaf65a945f2d1279d677825e7f0cad3e044f2aebb54b037ea88a3e"})
r5 = syz_open_dev$sndctrl(&(0x7f0000000300), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r5, 0xc2c85513, &(0x7f0000000340)={{0x8, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe]})
fgetxattr(r3, &(0x7f0000000000)=@known='system.sockprotoname\x00', &(0x7f0000000080)=""/237, 0xed)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
ioctl$USBDEVFS_REAPURB(r0, 0x4004550c, &(0x7f0000000080))
ioctl$DVD_AUTH(0xffffffffffffffff, 0x31f, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xa, [{}, {0x10}, {}, {}, {}, {}, {0xfffffffc}, {0x400000}], 0x0, 0x4}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r7 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
eventfd(0x0)
ioctl$VHOST_SET_VRING_ADDR(r7, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f0000000380)=""/138, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r7, 0x4008af03, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="01"])

218.650089ms ago: executing program 2 (id=312):
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, &(0x7f0000000100)=0x80000)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0xd, 0x800)
syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0xcb75, 0x0, 0x0, 0xfffffffd}, &(0x7f0000000280)=<r3=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, 0x0, 0x0, 0x4)
timer_create(0x2, 0x0, &(0x7f0000000180)=<r4=>0x0)
ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, &(0x7f0000000300)={{0x2, 0x4e21, @private=0xa010100}, {0x6, @remote}, 0x4, {0x2, 0x4e24, @broadcast}, 'gre0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f00000002c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x5f, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=@delchain={0x48, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x9}, {0x10, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @mcast1}]}}]}, 0x48}}, 0x0)
timer_delete(r4)

0s ago: executing program 0 (id=313):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000740)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f31000000170a001700000000040037000a00030001632564b758b9a64411f6bb744dc48f57", 0x39}], 0x1)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB="40000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="018000986800e2ff140012800b0001006265746164760000050000000a000100bbbbbbbbbbbb0000"], 0x40}}, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1fbffe, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$lock(r7, 0x26, &(0x7f00000031c0)={0x1, 0x0, 0x2})
r8 = syz_open_dev$sg(&(0x7f0000000280), 0xffffdff4, 0x20000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r8, 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'])
fcntl$lock(r7, 0x26, &(0x7f0000000080))
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="1b0000000000000000000000fcffffff00000000693c3ca5977a2f720cbf235f9a0d54ec50ac965131bd022ac7f43e140ad5439aba11295c551a6c2765b4067a7bc3556a9ca909064076ae7e4b2127c4d2aeb46340c6a55ab7956115a125dd9f60be7b0b91a8d135fb866239b091ba5b6575773b3b603aece3c915fc39439e340df9b2e45bebee87fda8b487c09cb70c4d5b6526c3a47e4acf9b3ffd71603120b1535a0070faf85efe12c3ad2c7d1ae507f7ea38363f150ae305198d0ff2ff24bb3ffbe9304617302b81e05df32a72e6f66b554e0a11257e07b3890f5cf57c85cc61ade119f966e004713205fb2b0803f263265f56cfc67e73", @ANYRES32=r3, @ANYBLOB="0600"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="03000000050000000500"/28], 0x50)
r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r9, 0x40186f40, 0x20000502)
r10 = getpid()
process_vm_readv(r10, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r11}, 0x10)
socketpair(0x11, 0x0, 0x2, &(0x7f0000000340))
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0xe, &(0x7f00000018c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x1}, 0x8, 0x10, &(0x7f00000003c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r12, 0x2000000, 0x93, 0x0, &(0x7f0000000600)="168e43acc18169514039c5bcdb7a44ca7b73908b0e0245bb78fefed08041a1231bdb4729d55fa1e5b413df0c757252630588a43d899a24818d78c9b4b148de20b812fd893157d5046238c9c82df5a649a4781baeac4da0bf1151b932a24f43608a48841f8083e2bf008a0c7a6415d630057bde8c3589ec5aad0876bd342598daa8affb10c0bccb023f824d8e9fdc94ab245a5d", 0x0, 0xc699, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000340)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:56588' (ED25519) to the list of known hosts.
[   32.107439][ T5854] cgroup: Unknown subsys name 'net'
[   32.246120][ T5854] cgroup: Unknown subsys name 'cpuset'
[   32.249070][ T5854] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   33.106344][ T5854] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   35.772319][ T5949] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   35.775786][ T5952] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   35.777319][ T5948] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   35.777997][ T5952] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   35.781319][ T5948] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   35.782753][ T5952] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   35.783932][ T5950] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   35.785022][ T5950] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   35.785506][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   35.786426][ T5948] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   35.787629][ T5952] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   35.787645][ T5951] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   35.787808][ T5952] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   35.788384][ T5951] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   35.788581][ T5952] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   35.790311][ T5948] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   35.790370][ T5950] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   35.790483][ T5950] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   35.795958][ T5951] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   35.798293][ T5948] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   35.799994][ T5950] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   35.801188][ T5948] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   35.805199][ T5950] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   35.820985][ T5950] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   35.937495][ T5937] chnl_net:caif_netlink_parms(): no params data found
[   35.954235][ T5935] chnl_net:caif_netlink_parms(): no params data found
[   35.983005][ T5936] chnl_net:caif_netlink_parms(): no params data found
[   36.067174][ T5937] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.069171][ T5937] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.071271][ T5937] bridge_slave_0: entered allmulticast mode
[   36.073323][ T5937] bridge_slave_0: entered promiscuous mode
[   36.077410][ T5937] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.079348][ T5937] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.081244][ T5937] bridge_slave_1: entered allmulticast mode
[   36.083288][ T5937] bridge_slave_1: entered promiscuous mode
[   36.087309][ T5941] chnl_net:caif_netlink_parms(): no params data found
[   36.099824][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.101779][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.104406][ T5935] bridge_slave_0: entered allmulticast mode
[   36.106617][ T5935] bridge_slave_0: entered promiscuous mode
[   36.132679][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.134786][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.136656][ T5935] bridge_slave_1: entered allmulticast mode
[   36.138630][ T5935] bridge_slave_1: entered promiscuous mode
[   36.153430][ T5937] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.190046][ T5937] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.209814][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.212290][ T5936] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.214450][ T5936] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.216347][ T5936] bridge_slave_0: entered allmulticast mode
[   36.218329][ T5936] bridge_slave_0: entered promiscuous mode
[   36.253445][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.263641][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.265504][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.267377][ T5936] bridge_slave_1: entered allmulticast mode
[   36.269355][ T5936] bridge_slave_1: entered promiscuous mode
[   36.273019][ T5937] team0: Port device team_slave_0 added
[   36.274975][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.276884][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.278757][ T5941] bridge_slave_0: entered allmulticast mode
[   36.280790][ T5941] bridge_slave_0: entered promiscuous mode
[   36.307377][ T5937] team0: Port device team_slave_1 added
[   36.316285][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.318158][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.320066][ T5941] bridge_slave_1: entered allmulticast mode
[   36.322056][ T5941] bridge_slave_1: entered promiscuous mode
[   36.327451][ T5935] team0: Port device team_slave_0 added
[   36.337517][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.342281][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.377921][ T5935] team0: Port device team_slave_1 added
[   36.387648][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.390180][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.399269][ T5937] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.439039][ T5936] team0: Port device team_slave_0 added
[   36.441704][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.444471][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.453479][ T5937] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.458825][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.461687][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.464313][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.473445][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.480548][ T5936] team0: Port device team_slave_1 added
[   36.487812][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.490475][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.492308][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.499131][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.545198][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.547733][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.557893][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.563290][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.565911][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.575073][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.585578][ T5941] team0: Port device team_slave_0 added
[   36.611268][ T5935] hsr_slave_0: entered promiscuous mode
[   36.613860][ T5935] hsr_slave_1: entered promiscuous mode
[   36.617475][ T5941] team0: Port device team_slave_1 added
[   36.636943][ T5937] hsr_slave_0: entered promiscuous mode
[   36.639642][ T5937] hsr_slave_1: entered promiscuous mode
[   36.641929][ T5937] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   36.644725][ T5937] Cannot create hsr debugfs directory
[   36.670706][ T5936] hsr_slave_0: entered promiscuous mode
[   36.672923][ T5936] hsr_slave_1: entered promiscuous mode
[   36.674970][ T5936] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   36.677015][ T5936] Cannot create hsr debugfs directory
[   36.687824][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.690197][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.699079][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.748916][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.751234][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.760009][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.844436][ T5941] hsr_slave_0: entered promiscuous mode
[   36.846678][ T5941] hsr_slave_1: entered promiscuous mode
[   36.848821][ T5941] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   36.851294][ T5941] Cannot create hsr debugfs directory
[   36.980072][ T5937] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   36.988640][ T5937] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   36.996016][ T5937] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   37.001702][ T5937] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   37.015229][ T5936] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   37.018846][ T5936] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   37.021938][ T5936] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   37.025078][ T5936] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   37.041301][ T5935] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   37.044927][ T5935] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   37.048266][ T5935] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   37.056946][ T5935] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   37.077212][ T5941] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   37.081763][ T5941] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   37.086740][ T5941] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   37.093442][ T5941] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   37.149354][ T5937] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.154236][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.175087][ T5937] 8021q: adding VLAN 0 to HW filter on device team0
[   37.180611][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.184803][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.186782][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.190443][ T5936] 8021q: adding VLAN 0 to HW filter on device team0
[   37.196200][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.204631][ T1135] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.207020][ T1135] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.210197][ T1135] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.212566][ T1135] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.217320][ T1135] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.219681][ T1135] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.223275][ T5935] 8021q: adding VLAN 0 to HW filter on device team0
[   37.230932][ T1135] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.232809][ T1135] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.246874][   T74] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.249464][   T74] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.254659][ T5941] 8021q: adding VLAN 0 to HW filter on device team0
[   37.276944][   T74] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.278824][   T74] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.282309][   T74] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.284222][   T74] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.361522][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.371165][ T5937] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.390734][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.401612][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.413597][ T5935] veth0_vlan: entered promiscuous mode
[   37.422253][ T5935] veth1_vlan: entered promiscuous mode
[   37.434734][ T5937] veth0_vlan: entered promiscuous mode
[   37.446155][ T5937] veth1_vlan: entered promiscuous mode
[   37.450723][ T5936] veth0_vlan: entered promiscuous mode
[   37.456694][ T5936] veth1_vlan: entered promiscuous mode
[   37.469406][ T5941] veth0_vlan: entered promiscuous mode
[   37.473917][ T5935] veth0_macvtap: entered promiscuous mode
[   37.485001][ T5937] veth0_macvtap: entered promiscuous mode
[   37.487492][ T5935] veth1_macvtap: entered promiscuous mode
[   37.492151][ T5941] veth1_vlan: entered promiscuous mode
[   37.496157][ T5937] veth1_macvtap: entered promiscuous mode
[   37.502912][ T5936] veth0_macvtap: entered promiscuous mode
[   37.511761][ T5936] veth1_macvtap: entered promiscuous mode
[   37.519113][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.525295][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.528121][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.531218][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.535971][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.542225][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.545172][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.547665][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.550309][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.553348][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.555933][ T5937] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.558376][ T5937] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.560567][ T5937] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.562769][ T5937] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.566083][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.569848][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.574641][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.579396][ T5935] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.581703][ T5935] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.584409][ T5935] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.586669][ T5935] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.594611][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.597301][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.599799][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.602457][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.606275][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.613126][ T5936] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.615613][ T5936] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.618106][ T5936] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.620320][ T5936] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.626351][ T5941] veth0_macvtap: entered promiscuous mode
[   37.635734][ T5941] veth1_macvtap: entered promiscuous mode
[   37.659749][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.663010][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.665908][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.668592][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.671263][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.675603][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.679141][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.693698][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.696553][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.700168][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.703159][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.706925][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.710624][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.716037][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.726010][ T5941] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.728990][ T5941] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.731615][ T5941] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.734868][ T5941] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.744258][   T94] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.746458][   T94] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.757617][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.759736][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.770040][ T1177] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.772257][ T1177] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.779595][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.782245][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.786903][ T1177] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.789878][ T1177] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.808100][ T5937] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   37.811030][   T94] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.813052][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.817472][   T94] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.817834][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.831566][ T1177] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.833752][ T1177] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.864155][ T5947] Bluetooth: hci3: command tx timeout
[   37.865963][ T5947] Bluetooth: hci0: command tx timeout
[   37.866816][ T5950] Bluetooth: hci2: command tx timeout
[   37.873783][ T5950] Bluetooth: hci1: command tx timeout
[   37.972295][ T6011] qnx6: unable to read the first superblock
[   38.141191][ T6015] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2'.
[   38.353986][ T6017] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1'.
[   38.363904][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   38.517603][ T6018] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3'.
[   38.933870][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   38.937362][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   38.940713][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.003667][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.005818][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.375589][ T6029] qnx6: unable to read the first superblock
[   39.486331][ T6026] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7'.
[   39.516724][ T6025] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5'.
[   39.746569][ T6011] Set syz1 is full, maxelem 65536 reached
[   39.943608][ T5950] Bluetooth: hci0: command tx timeout
[   39.945041][ T5950] Bluetooth: hci3: command tx timeout
[   39.946845][ T5950] Bluetooth: hci2: command tx timeout
[   39.948341][ T5947] Bluetooth: hci1: command tx timeout
[   40.145475][ T6039] netlink: 24 bytes leftover after parsing attributes in process `syz.2.9'.
[   40.476823][ T6030] Set syz1 is full, maxelem 65536 reached
[   40.649956][ T6045] netlink: 24 bytes leftover after parsing attributes in process `syz.3.10'.
[   40.722849][ T6048] qnx6: unable to read the first superblock
[   41.136630][ T6056] netlink: 24 bytes leftover after parsing attributes in process `syz.2.12'.
[   41.410294][ T6060] sp0: Synchronizing with TNC
[   41.900926][ T6063] qnx6: unable to read the first superblock
[   42.023766][ T5947] Bluetooth: hci1: command tx timeout
[   42.025260][ T5947] Bluetooth: hci2: command tx timeout
[   42.026731][ T5950] Bluetooth: hci3: command tx timeout
[   42.028113][ T5950] Bluetooth: hci0: command tx timeout
[   42.338373][ T6048] Set syz1 is full, maxelem 65536 reached
[   42.344035][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   42.572282][ T6071] xt_CT: No such helper "pptp"
[   42.970731][ T1104] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[   42.973950][ T1104] ata1: failed to read log page 10h (errno=-5)
[   42.977397][ T1104] ata1.00: exception Emask 0x1 SAct 0x800000 SErr 0x0 action 0x0
[   42.981316][ T1104] ata1.00: irq_stat 0x40000000
[   42.983472][ T1104] ata1.00: failed command: WRITE FPDMA QUEUED
[   42.987673][ T1104] ata1.00: cmd 61/70:b8:32:04:10/00:00:00:00:00/40 tag 23 ncq dma 57344 out
[   42.987673][ T1104]          res 50/00:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   42.995383][ T1104] ata1.00: status: { DRDY }
[   43.003374][ T1104] ata1.00: configured for UDMA/100
[   43.006878][ T1104] ata1: EH complete
[   43.074633][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   43.313340][ T6080] netlink: 24 bytes leftover after parsing attributes in process `syz.0.18'.
[   43.394078][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   43.394571][ T6081] netlink: 24 bytes leftover after parsing attributes in process `syz.1.17'.
[   43.474315][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   43.753382][ T6088] qnx6: unable to read the first superblock
[   43.793453][ T6064] Set syz1 is full, maxelem 65536 reached
[   44.004507][ T6092] qnx6: unable to read the first superblock
[   44.103685][ T5947] Bluetooth: hci2: command tx timeout
[   44.105835][ T5950] Bluetooth: hci3: command tx timeout
[   44.107577][ T5950] Bluetooth: hci1: command tx timeout
[   44.109048][ T5948] Bluetooth: hci0: command tx timeout
[   44.241734][ T6092] Set syz1 is full, maxelem 65536 reached
[   44.243301][ T6093] Set syz1 is full, maxelem 65536 reached
[   44.290631][ T6096] ata1.00: invalid multi_count 1 ignored
[   44.343075][ T6097] warning: `syz.3.22' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   44.388919][ T6099] binder: 6098:6099 unknown command 0
[   44.390350][ T6099] binder: 6098:6099 ioctl c0306201 200001c0 returned -22
[   44.592920][ T6099] syz.2.23 (6099): drop_caches: 2
[   44.729489][ T6105] netlink: 24 bytes leftover after parsing attributes in process `syz.3.24'.
[   44.992333][ T6114] FAULT_INJECTION: forcing a failure.
[   44.992333][ T6114] name failslab, interval 1, probability 0, space 0, times 1
[   44.996863][ T6114] CPU: 3 UID: 0 PID: 6114 Comm: syz.1.26 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   44.999434][ T6114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   45.002064][ T6114] Call Trace:
[   45.002911][ T6114]  <TASK>
[   45.003670][ T6114]  dump_stack_lvl+0x16c/0x1f0
[   45.004940][ T6114]  should_fail_ex+0x497/0x5b0
[   45.006101][ T6114]  ? fs_reclaim_acquire+0xae/0x150
[   45.007348][ T6114]  should_failslab+0xc2/0x120
[   45.008501][ T6114]  __kmalloc_noprof+0xce/0x4f0
[   45.009661][ T6114]  ? d_absolute_path+0x137/0x1b0
[   45.010846][ T6114]  ? tomoyo_encode2+0x100/0x3e0
[   45.012005][ T6114]  tomoyo_encode2+0x100/0x3e0
[   45.013168][ T6114]  tomoyo_realpath_from_path+0x1a7/0x710
[   45.014587][ T6114]  tomoyo_path_number_perm+0x248/0x5b0
[   45.015938][ T6114]  ? tomoyo_path_number_perm+0x235/0x5b0
[   45.017355][ T6114]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   45.019220][ T6114]  ? __pfx_lock_release+0x10/0x10
[   45.020846][ T6114]  ? trace_lock_acquire+0x14e/0x1f0
[   45.022499][ T6114]  ? lock_acquire+0x2f/0xb0
[   45.023976][ T6114]  ? __fget_files+0x40/0x3a0
[   45.025446][ T6114]  ? __fget_files+0x206/0x3a0
[   45.026996][ T6114]  security_file_ioctl_compat+0x9b/0x240
[   45.028708][ T6114]  __do_compat_sys_ioctl+0x4e/0x2c0
[   45.030371][ T6114]  __do_fast_syscall_32+0x73/0x120
[   45.031674][ T6114]  do_fast_syscall_32+0x32/0x80
[   45.033174][ T6114]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   45.035130][ T6114] RIP: 0023:0xf707e579
[   45.036417][ T6114] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   45.042349][ T6114] RSP: 002b:00000000f502e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   45.044862][ T6114] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000c0bc5310
[   45.046775][ T6114] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[   45.048686][ T6114] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   45.050728][ T6114] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   45.052768][ T6114] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   45.054747][ T6114]  </TASK>
[   45.055697][ T6114] ERROR: Out of memory at tomoyo_realpath_from_path.
[   45.363262][ T6123] xt_CT: No such helper "pptp"
[   45.802861][ T6131] netlink: 24 bytes leftover after parsing attributes in process `syz.2.29'.
[   46.019140][ T6135] sp0: Synchronizing with TNC
[   46.137632][ T6142] qnx6: unable to read the first superblock
[   46.144647][ T6142] Set syz1 is full, maxelem 65536 reached
[   46.147722][ T6142] Set syz1 is full, maxelem 65536 reached
[   46.460516][ T6146] netlink: 24 bytes leftover after parsing attributes in process `syz.1.33'.
[   46.736580][ T6148] syz.3.37 uses obsolete (PF_INET,SOCK_PACKET)
[   46.780560][ T6152] qnx6: unable to read the first superblock
[   46.892344][ T6159] netlink: 'syz.0.38': attribute type 10 has an invalid length.
[   47.007805][ T6159] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   47.357844][ T6180] netlink: 'syz.3.43': attribute type 1 has an invalid length.
[   48.104457][ T1104] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[   48.106297][ T1104] ata1: failed to read log page 10h (errno=-5)
[   48.107905][ T1104] ata1.00: exception Emask 0x1 SAct 0x200000 SErr 0x0 action 0x0
[   48.109925][ T1104] ata1.00: irq_stat 0x40000000
[   48.111192][ T1104] ata1.00: failed command: WRITE FPDMA QUEUED
[   48.112852][ T1104] ata1.00: cmd 61/18:a8:aa:04:10/00:00:00:00:00/40 tag 21 ncq dma 12288 out
[   48.112852][ T1104]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   48.118035][ T1104] ata1.00: status: { DRDY }
[   48.119268][ T1104] ata1.00: error: { ABRT }
[   48.121062][ T1104] ata1.00: configured for UDMA/100
[   48.122633][ T1104] ata1: EH complete
[   48.212705][ T6218] xt_CT: No such helper "pptp"
[   48.473002][ T6222] netlink: 24 bytes leftover after parsing attributes in process `syz.2.46'.
[   48.600987][ T6220] netlink: 24 bytes leftover after parsing attributes in process `syz.3.47'.
[   48.600995][ T6213] netlink: 24 bytes leftover after parsing attributes in process `syz.0.52'.
[   48.731056][ T6227] qnx6: unable to read the first superblock
[   49.105941][ T6227] Set syz1 is full, maxelem 65536 reached
[   49.261734][ T6233] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[   49.271557][ T6233] batman_adv: batadv0: Adding interface: gretap1
[   49.274085][ T6233] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   49.281737][ T6233] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[   49.393283][ T6236] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   49.454354][ T6242] sp0: Synchronizing with TNC
[   50.647486][ T6264] netlink: 24 bytes leftover after parsing attributes in process `syz.2.58'.
[   51.358197][ T6277] netlink: 24 bytes leftover after parsing attributes in process `syz.0.61'.
[   52.161928][ T6297] sp0: Synchronizing with TNC
[   52.907946][ T6305] sp0: Synchronizing with TNC
[   53.426693][ T6317] netlink: 24 bytes leftover after parsing attributes in process `syz.3.74'.
[   54.611606][ T6329] qnx6: unable to read the first superblock
[   54.619649][ T6329] Set syz1 is full, maxelem 65536 reached
[   54.718274][ T6334] netlink: 4 bytes leftover after parsing attributes in process `syz.1.80'.
[   54.752490][ T6336] sp0: Synchronizing with TNC
[   54.983787][ T6342] FAULT_INJECTION: forcing a failure.
[   54.983787][ T6342] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   54.987611][ T6342] CPU: 3 UID: 0 PID: 6342 Comm: syz.1.82 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   54.990302][ T6342] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   54.993067][ T6342] Call Trace:
[   54.993945][ T6342]  <TASK>
[   54.994716][ T6342]  dump_stack_lvl+0x16c/0x1f0
[   54.995949][ T6342]  should_fail_ex+0x497/0x5b0
[   54.997164][ T6342]  ? fs_reclaim_acquire+0xae/0x150
[   54.998498][ T6342]  should_fail_alloc_page+0xe7/0x130
[   54.999859][ T6342]  prepare_alloc_pages.constprop.0+0x16f/0x560
[   55.001449][ T6342]  __alloc_pages_noprof+0x190/0x25b0
[   55.002818][ T6342]  ? hlock_class+0x4e/0x130
[   55.003988][ T6342]  ? __lock_acquire+0xcc5/0x3c40
[   55.005281][ T6342]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   55.006657][ T6342]  ? hlock_class+0x4e/0x130
[   55.007785][ T6342]  ? mark_lock+0xb5/0xc60
[   55.008925][ T6342]  ? hlock_class+0x4e/0x130
[   55.010117][ T6342]  ? mark_lock+0xb5/0xc60
[   55.011177][ T6342]  ? lock_acquire.part.0+0x11b/0x380
[   55.012449][ T6342]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   55.013830][ T6342]  ? policy_nodemask+0xea/0x4e0
[   55.014981][ T6342]  alloc_pages_mpol_noprof+0x2c9/0x610
[   55.016261][ T6342]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   55.017688][ T6342]  ? __lock_acquire+0xcc5/0x3c40
[   55.018889][ T6342]  ? find_held_lock+0x2d/0x110
[   55.020098][ T6342]  folio_alloc_mpol_noprof+0x36/0xd0
[   55.021484][ T6342]  vma_alloc_folio_noprof+0xee/0x1b0
[   55.022878][ T6342]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   55.024410][ T6342]  ? __pfx___lock_acquire+0x10/0x10
[   55.025766][ T6342]  do_wp_page+0x105a/0x4670
[   55.026954][ T6342]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   55.028416][ T6342]  ? __pfx_do_wp_page+0x10/0x10
[   55.029700][ T6342]  ? rcu_is_watching+0x12/0xc0
[   55.030954][ T6342]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   55.032349][ T6342]  ? lock_acquire+0x2f/0xb0
[   55.033554][ T6342]  ? __handle_mm_fault+0xdfa/0x2a40
[   55.034904][ T6342]  __handle_mm_fault+0x1ade/0x2a40
[   55.036239][ T6342]  ? __pfx___handle_mm_fault+0x10/0x10
[   55.037802][ T6342]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   55.039267][ T6342]  ? find_vma+0xc0/0x140
[   55.040372][ T6342]  ? __pfx_find_vma+0x10/0x10
[   55.041606][ T6342]  handle_mm_fault+0x3fa/0xaa0
[   55.042893][ T6342]  do_user_addr_fault+0x7a3/0x13f0
[   55.044223][ T6342]  exc_page_fault+0x5c/0xc0
[   55.045410][ T6342]  asm_exc_page_fault+0x26/0x30
[   55.046701][ T6342] RIP: 0010:_copy_to_user+0xb6/0xd0
[   55.048073][ T6342] Code: 89 ee 48 89 ef e8 4a 8b 00 fd 4d 85 ff 75 a8 e8 90 89 00 fd 89 de 4c 89 e7 e8 56 19 63 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[   55.052990][ T6342] RSP: 0018:ffffc9000dd87b30 EFLAGS: 00050297
[   55.054575][ T6342] RAX: 0000000000000001 RBX: 0000000000008000 RCX: 0000000000004b40
[   55.056606][ T6342] RDX: ffffed100dc8f000 RSI: ffff88806e4734c4 RDI: 000000002000d000
[   55.058653][ T6342] RBP: 0000000020009b40 R08: 0000000000000000 R09: ffffed100dc8f000
[   55.060686][ T6342] R10: 0000000000000003 R11: 0000000000000000 R12: ffff88806e470004
[   55.062743][ T6342] R13: 0000000020011b40 R14: 00007ffffffff000 R15: 0000000000000000
[   55.064799][ T6342]  generic_map_lookup_batch+0x70e/0xb90
[   55.066260][ T6342]  ? __pfx_generic_map_lookup_batch+0x10/0x10
[   55.067834][ T6342]  ? __fget_files+0x206/0x3a0
[   55.069083][ T6342]  ? __pfx_generic_map_lookup_batch+0x10/0x10
[   55.070672][ T6342]  bpf_map_do_batch+0x483/0x640
[   55.071945][ T6342]  __sys_bpf+0x55a2/0x57a0
[   55.073112][ T6342]  ? __pfx_lock_release+0x10/0x10
[   55.074435][ T6342]  ? __pfx___sys_bpf+0x10/0x10
[   55.075703][ T6342]  ? vfs_write+0x306/0x1150
[   55.076890][ T6342]  ? __mutex_unlock_slowpath+0x164/0x690
[   55.078363][ T6342]  ? fput+0x67/0x440
[   55.079390][ T6342]  ? ksys_write+0x1ba/0x250
[   55.080572][ T6342]  ? __pfx_ksys_write+0x10/0x10
[   55.081862][ T6342]  __ia32_sys_bpf+0x76/0xe0
[   55.083048][ T6342]  __do_fast_syscall_32+0x73/0x120
[   55.084377][ T6342]  do_fast_syscall_32+0x32/0x80
[   55.085639][ T6342]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   55.087289][ T6342] RIP: 0023:0xf707e579
[   55.088367][ T6342] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   55.093264][ T6342] RSP: 002b:00000000f504f55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   55.095417][ T6342] RAX: ffffffffffffffda RBX: 0000000000000018 RCX: 00000000200000c0
[   55.097453][ T6342] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[   55.099502][ T6342] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   55.101537][ T6342] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   55.103583][ T6342] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   55.105619][ T6342]  </TASK>
[   55.157461][ T6347] netlink: 68 bytes leftover after parsing attributes in process `syz.3.85'.
[   55.260549][ T6345] netlink: 36 bytes leftover after parsing attributes in process `syz.1.84'.
[   55.262964][ T6345] netlink: 36 bytes leftover after parsing attributes in process `syz.1.84'.
[   55.478145][ T6355] netlink: 24 bytes leftover after parsing attributes in process `syz.3.86'.
[   55.652284][ T6362] sp0: Synchronizing with TNC
[   55.891239][ T6370] netlink: 24 bytes leftover after parsing attributes in process `syz.0.87'.
[   55.917161][ T6372] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[   56.063683][ T5979] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   56.127584][ T6376] FAULT_INJECTION: forcing a failure.
[   56.127584][ T6376] name failslab, interval 1, probability 0, space 0, times 0
[   56.131941][ T6376] CPU: 3 UID: 0 PID: 6376 Comm: syz.3.94 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   56.134698][ T6376] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.137790][ T6376] Call Trace:
[   56.138662][ T6376]  <TASK>
[   56.139434][ T6376]  dump_stack_lvl+0x16c/0x1f0
[   56.140663][ T6376]  should_fail_ex+0x497/0x5b0
[   56.141901][ T6376]  ? fs_reclaim_acquire+0xae/0x150
[   56.143461][ T6376]  should_failslab+0xc2/0x120
[   56.145118][ T6376]  __kmalloc_noprof+0xce/0x4f0
[   56.146642][ T6376]  ? ima_write_template_field_data+0x48/0x1c0
[   56.148230][ T6376]  ima_write_template_field_data+0x48/0x1c0
[   56.149771][ T6376]  ? ima_eventdigest_init_common+0xd5/0x3d0
[   56.151463][ T6376]  ima_eventdigest_init_common+0x131/0x3d0
[   56.153521][ T6376]  ? __pfx_ima_eventdigest_init_common+0x10/0x10
[   56.155640][ T6376]  ? __pfx_rcu_is_watching+0x10/0x10
[   56.157049][ T6376]  ? trace_kmalloc+0x2d/0xd0
[   56.158254][ T6376]  ? __kmalloc_noprof+0x23b/0x4f0
[   56.159555][ T6376]  ? ima_alloc_init_template+0x195/0x720
[   56.160995][ T6376]  ima_alloc_init_template+0x399/0x720
[   56.162477][ T6376]  ima_store_measurement+0x1ea/0x5c0
[   56.164277][ T6376]  ? __pfx_ima_store_measurement+0x10/0x10
[   56.166307][ T6376]  ? __pfx_ima_get_hash_algo+0x10/0x10
[   56.168097][ T6376]  process_measurement+0x1bcb/0x2370
[   56.169461][ T6376]  ? kasan_save_stack+0x33/0x60
[   56.170742][ T6376]  ? __pfx_process_measurement+0x10/0x10
[   56.172204][ T6376]  ? aa_file_perm+0x4c6/0xfe0
[   56.173426][ T6376]  ? trace_lock_acquire+0x14e/0x1f0
[   56.175106][ T6376]  ? lockdep_init_map_type+0x16d/0x7d0
[   56.176989][ T6376]  ima_file_mmap+0x1b3/0x1e0
[   56.178636][ T6376]  ? __pfx_ima_file_mmap+0x10/0x10
[   56.180425][ T6376]  security_mmap_file+0x8bd/0x990
[   56.182209][ T6376]  vm_mmap_pgoff+0xdb/0x360
[   56.183827][ T6376]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[   56.185587][ T6376]  ? hugetlbfs_get_inode+0x323/0x740
[   56.187446][ T6376]  ksys_mmap_pgoff+0x1c8/0x5c0
[   56.189258][ T6376]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[   56.191155][ T6376]  __do_fast_syscall_32+0x73/0x120
[   56.192990][ T6376]  do_fast_syscall_32+0x32/0x80
[   56.194702][ T6376]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   56.196900][ T6376] RIP: 0023:0xf7f45579
[   56.198345][ T6376] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   56.204997][ T6376] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[   56.207885][ T6376] RAX: ffffffffffffffda RBX: 0000000020800000 RCX: 0000000000800000
[   56.210637][ T6376] RDX: 0000000003000004 RSI: 0000000000042032 RDI: 00000000ffffffff
[   56.213385][ T6376] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   56.216133][ T6376] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   56.218871][ T6376] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   56.221613][ T6376]  </TASK>
[   56.225267][   T39] audit: type=1804 audit(1734151367.974:2): pid=6376 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.3.94" name="anon_hugepage" dev="hugetlbfs" ino=11531 res=0 errno=0
[   56.307097][ T5979] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[   56.309345][ T5979] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   56.312640][ T5979] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   56.316041][ T5979] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   56.319066][ T5979] usb 6-1: Manufacturer: syz
[   56.338526][ T5979] usb 6-1: config 0 descriptor??
[   56.386576][ T5979] rc_core: IR keymap rc-hauppauge not found
[   56.389046][ T5979] Registered IR keymap rc-empty
[   56.393397][ T5979] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[   56.397364][ T5979] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input5
[   56.404685][ T6383] qnx6: unable to read the first superblock
[   56.411022][ T6383] Set syz1 is full, maxelem 65536 reached
[   56.611730][ T6386] ieee802154 phy0 wpan0: encryption failed: -22
[   56.880289][ T6391] Zero length message leads to an empty skb
[   56.997551][   T35] usb 6-1: USB disconnect, device number 2
[   57.200395][ T6402] Bluetooth: MGMT ver 1.23
[   57.206045][ T6402] netlink: 'syz.0.100': attribute type 4 has an invalid length.
[   57.212859][ T6402] netlink: 'syz.0.100': attribute type 4 has an invalid length.
[   58.033236][ T6418] FAULT_INJECTION: forcing a failure.
[   58.033236][ T6418] name failslab, interval 1, probability 0, space 0, times 0
[   58.036749][ T6418] CPU: 3 UID: 0 PID: 6418 Comm: syz.0.105 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   58.039478][ T6418] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.042179][ T6418] Call Trace:
[   58.043030][ T6418]  <TASK>
[   58.043882][ T6418]  dump_stack_lvl+0x16c/0x1f0
[   58.045304][ T6418]  should_fail_ex+0x497/0x5b0
[   58.046732][ T6418]  ? fs_reclaim_acquire+0xae/0x150
[   58.048252][ T6418]  should_failslab+0xc2/0x120
[   58.049578][ T6418]  __kmalloc_cache_noprof+0x68/0x420
[   58.051125][ T6418]  rtnl_newlink+0x108/0x1d70
[   58.052564][ T6418]  ? hlock_class+0x4e/0x130
[   58.053966][ T6418]  ? __lock_acquire+0xcc5/0x3c40
[   58.055465][ T6418]  ? __pfx_rtnl_newlink+0x10/0x10
[   58.056946][ T6418]  ? __pfx___lock_acquire+0x10/0x10
[   58.058504][ T6418]  ? kmem_cache_free+0x152/0x4c0
[   58.059964][ T6418]  ? aa_get_newest_label+0x376/0x680
[   58.061471][ T6418]  ? find_held_lock+0x2d/0x110
[   58.062880][ T6418]  ? find_held_lock+0x2d/0x110
[   58.064332][ T6418]  ? rtnetlink_rcv_msg+0x93a/0xea0
[   58.065968][ T6418]  ? __pfx_lock_release+0x10/0x10
[   58.067257][ T6418]  ? trace_lock_acquire+0x14e/0x1f0
[   58.068563][ T6418]  ? __pfx_rtnl_newlink+0x10/0x10
[   58.069849][ T6418]  rtnetlink_rcv_msg+0x95b/0xea0
[   58.071042][ T6418]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   58.072448][ T6418]  ? __pfx___dev_queue_xmit+0x10/0x10
[   58.073800][ T6418]  netlink_rcv_skb+0x165/0x410
[   58.075009][ T6418]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   58.076356][ T6418]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   58.077651][ T6418]  ? netlink_deliver_tap+0x1ae/0xca0
[   58.078958][ T6418]  netlink_unicast+0x53c/0x7f0
[   58.080126][ T6418]  ? __pfx_netlink_unicast+0x10/0x10
[   58.081456][ T6418]  ? __phys_addr_symbol+0x30/0x80
[   58.082824][ T6418]  ? __check_object_size+0x488/0x710
[   58.084141][ T6418]  netlink_sendmsg+0x8b8/0xd70
[   58.085331][ T6418]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.086599][ T6418]  ____sys_sendmsg+0x9ae/0xb40
[   58.087786][ T6418]  ? __pfx_____sys_sendmsg+0x10/0x10
[   58.089108][ T6418]  ? get_compat_msghdr+0x11b/0x170
[   58.090415][ T6418]  ___sys_sendmsg+0x135/0x1e0
[   58.091629][ T6418]  ? __pfx____sys_sendmsg+0x10/0x10
[   58.093130][ T6418]  ? __pfx_lock_release+0x10/0x10
[   58.094435][ T6418]  ? trace_lock_acquire+0x14e/0x1f0
[   58.095711][ T6418]  ? __fget_files+0x206/0x3a0
[   58.096882][ T6418]  __sys_sendmsg+0x16e/0x220
[   58.098074][ T6418]  ? __pfx___sys_sendmsg+0x10/0x10
[   58.099328][ T6418]  __do_fast_syscall_32+0x73/0x120
[   58.100584][ T6418]  do_fast_syscall_32+0x32/0x80
[   58.101897][ T6418]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   58.103730][ T6418] RIP: 0023:0xf711e579
[   58.104931][ T6418] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   58.110345][ T6418] RSP: 002b:00000000f511055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   58.112518][ T6418] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000300
[   58.114590][ T6418] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   58.115901][ T6419] netlink: 24 bytes leftover after parsing attributes in process `syz.3.103'.
[   58.116618][ T6418] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   58.116627][ T6418] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   58.116633][ T6418] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   58.116644][ T6418]  </TASK>
[   58.131316][ T6416] netlink: 24 bytes leftover after parsing attributes in process `syz.2.104'.
[   58.175445][ T6421] netlink: 4 bytes leftover after parsing attributes in process `syz.0.106'.
[   58.462665][ T6426] input: syz0 as /devices/virtual/input/input7
[   59.101141][ T6437] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[   59.105950][ T6437] batman_adv: batadv0: Adding interface: gretap1
[   59.107650][ T6437] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.114254][ T6437] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[   59.386733][ T6440] qnx6: unable to read the first superblock
[   59.391945][ T6440] Set syz1 is full, maxelem 65536 reached
[   59.694242][ T6447] fuse: Bad value for 'fd'
[   59.747746][ T6449] sctp: [Deprecated]: syz.3.115 (pid 6449) Use of struct sctp_assoc_value in delayed_ack socket option.
[   59.747746][ T6449] Use struct sctp_sack_info instead
[   60.060187][ T6463] netlink: 24 bytes leftover after parsing attributes in process `syz.3.117'.
[   60.432061][ T6474] FAULT_INJECTION: forcing a failure.
[   60.432061][ T6474] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   60.436945][ T6474] CPU: 2 UID: 0 PID: 6474 Comm: syz.1.121 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   60.440693][ T6474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.444563][ T6474] Call Trace:
[   60.445802][ T6474]  <TASK>
[   60.446901][ T6474]  dump_stack_lvl+0x16c/0x1f0
[   60.448638][ T6474]  should_fail_ex+0x497/0x5b0
[   60.450333][ T6474]  ? fs_reclaim_acquire+0xae/0x150
[   60.452155][ T6474]  should_fail_alloc_page+0xe7/0x130
[   60.454122][ T6474]  prepare_alloc_pages.constprop.0+0x16f/0x560
[   60.456381][ T6474]  __alloc_pages_noprof+0x190/0x25b0
[   60.458385][ T6474]  ? hlock_class+0x4e/0x130
[   60.460065][ T6474]  ? mark_lock+0xb5/0xc60
[   60.461637][ T6474]  ? __lock_acquire+0xcc5/0x3c40
[   60.463423][ T6474]  ? __pfx_mark_lock+0x10/0x10
[   60.465165][ T6474]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   60.467235][ T6474]  ? hlock_class+0x4e/0x130
[   60.468876][ T6474]  ? mark_lock+0xb5/0xc60
[   60.470473][ T6474]  ? __pfx_mark_lock+0x10/0x10
[   60.472224][ T6474]  ? hlock_class+0x4e/0x130
[   60.473985][ T6474]  ? __lock_acquire+0xcc5/0x3c40
[   60.475809][ T6474]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   60.478077][ T6474]  ? policy_nodemask+0xea/0x4e0
[   60.479942][ T6474]  alloc_pages_mpol_noprof+0x2c9/0x610
[   60.481904][ T6474]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   60.484061][ T6474]  ? __lock_acquire+0xcc5/0x3c40
[   60.485876][ T6474]  folio_alloc_mpol_noprof+0x36/0xd0
[   60.487821][ T6474]  vma_alloc_folio_noprof+0xee/0x1b0
[   60.489807][ T6474]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   60.491959][ T6474]  ? find_held_lock+0x2d/0x110
[   60.493712][ T6474]  do_pte_missing+0x2017/0x3e00
[   60.494967][ T6474]  __handle_mm_fault+0x103c/0x2a40
[   60.496337][ T6474]  ? __pfx___handle_mm_fault+0x10/0x10
[   60.497777][ T6474]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   60.499263][ T6474]  ? find_vma+0xc0/0x140
[   60.500365][ T6474]  ? __pfx_find_vma+0x10/0x10
[   60.501617][ T6474]  handle_mm_fault+0x3fa/0xaa0
[   60.502876][ T6474]  do_user_addr_fault+0x7a3/0x13f0
[   60.504223][ T6474]  exc_page_fault+0x5c/0xc0
[   60.505420][ T6474]  asm_exc_page_fault+0x26/0x30
[   60.506696][ T6474] RIP: 0010:_copy_to_user+0xb6/0xd0
[   60.508063][ T6474] Code: 89 ee 48 89 ef e8 4a 8b 00 fd 4d 85 ff 75 a8 e8 90 89 00 fd 89 de 4c 89 e7 e8 56 19 63 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[   60.513033][ T6474] RSP: 0018:ffffc90021547be8 EFLAGS: 00050246
[   60.514621][ T6474] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000000240
[   60.516680][ T6474] RDX: 0000000000000000 RSI: ffff88801efe4dc0 RDI: 0000000020005000
[   60.518721][ T6474] RBP: 0000000020004240 R08: 0000000000000000 R09: ffffed1003dfc9ff
[   60.520750][ T6474] R10: ffff88801efe4fff R11: 0000000000000000 R12: ffff88801efe4000
[   60.522859][ T6474] R13: 0000000020005240 R14: 00007ffffffff000 R15: 0000000000000000
[   60.524907][ T6474]  ? _copy_to_user+0xaa/0xd0
[   60.526143][ T6474]  pagemap_read+0x536/0x880
[   60.527421][ T6474]  ? __pfx_pagemap_read+0x10/0x10
[   60.528751][ T6474]  ? __pfx_pagemap_read+0x10/0x10
[   60.530085][ T6474]  vfs_read+0x1df/0xbe0
[   60.531172][ T6474]  ? __fget_files+0x1fc/0x3a0
[   60.532398][ T6474]  ? __pfx_lock_release+0x10/0x10
[   60.533733][ T6474]  ? __pfx_vfs_read+0x10/0x10
[   60.534962][ T6474]  ? lock_acquire+0x2f/0xb0
[   60.536169][ T6474]  ? __fget_files+0x40/0x3a0
[   60.537382][ T6474]  ? __fget_files+0x206/0x3a0
[   60.538615][ T6474]  ksys_pread64+0x170/0x1a0
[   60.539796][ T6474]  ? __pfx_ksys_pread64+0x10/0x10
[   60.541122][ T6474]  __do_fast_syscall_32+0x73/0x120
[   60.542458][ T6474]  do_fast_syscall_32+0x32/0x80
[   60.543717][ T6474]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   60.545361][ T6474] RIP: 0023:0xf707e579
[   60.546431][ T6474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   60.551404][ T6474] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 00000000000000b4
[   60.553475][ T6474] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001240
[   60.555535][ T6474] RDX: 0000000000200000 RSI: 0000000000000000 RDI: 0000000000000000
[   60.557636][ T6474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   60.559667][ T6474] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   60.561722][ T6474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   60.563779][ T6474]  </TASK>
[   60.564702][   T35] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[   60.566121][ T5947] Bluetooth: hci0: command 0x0c1a tx timeout
[   60.566567][   T35] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[   60.793964][ T5979] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   60.893449][ T6489] qnx6: unable to read the first superblock
[   61.660224][ T6507] FAULT_INJECTION: forcing a failure.
[   61.660224][ T6507] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   61.663658][ T6507] CPU: 3 UID: 0 PID: 6507 Comm: syz.0.130 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   61.666343][ T6507] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.669116][ T6507] Call Trace:
[   61.669999][ T6507]  <TASK>
[   61.670776][ T6507]  dump_stack_lvl+0x16c/0x1f0
[   61.672000][ T6507]  should_fail_ex+0x497/0x5b0
[   61.673239][ T6507]  _copy_from_user+0x2e/0xd0
[   61.674456][ T6507]  get_compat_msghdr+0xa8/0x170
[   61.675721][ T6507]  ? __pfx_get_compat_msghdr+0x10/0x10
[   61.677151][ T6507]  ___sys_sendmsg+0x1b0/0x1e0
[   61.678401][ T6507]  ? __pfx____sys_sendmsg+0x10/0x10
[   61.679758][ T6507]  ? trace_lock_acquire+0x14e/0x1f0
[   61.681116][ T6507]  __sys_sendmmsg+0x2fa/0x420
[   61.682354][ T6507]  ? __pfx___sys_sendmmsg+0x10/0x10
[   61.683702][ T6507]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   61.685237][ T6507]  ? fput+0x67/0x440
[   61.686269][ T6507]  ? ksys_write+0x1ba/0x250
[   61.687446][ T6507]  ? __pfx_ksys_write+0x10/0x10
[   61.688716][ T6507]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[   61.690167][ T6507]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   61.691853][ T6507]  __do_fast_syscall_32+0x73/0x120
[   61.693238][ T6507]  do_fast_syscall_32+0x32/0x80
[   61.694519][ T6507]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   61.696136][ T6507] RIP: 0023:0xf711e579
[   61.697193][ T6507] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   61.702107][ T6507] RSP: 002b:00000000f511055c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[   61.704311][ T6507] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020001b00
[   61.706577][ T6507] RDX: 000000000000003a RSI: 0000000000000000 RDI: 0000000000000000
[   61.708675][ T6507] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   61.710724][ T6507] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   61.712774][ T6507] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   61.714838][ T6507]  </TASK>
[   61.746116][ T6489] Set syz1 is full, maxelem 65536 reached
[   61.982791][ T6510] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   62.576603][ T6525] netlink: 24 bytes leftover after parsing attributes in process `syz.2.133'.
[   62.584588][ T5947] Bluetooth: hci2: command 0x0c1a tx timeout
[   62.589026][   T35] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[   62.590609][   T35] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[   62.732324][ T6529] xt_TCPMSS: Only works on TCP SYN packets
[   62.924214][ T6538] netlink: 24 bytes leftover after parsing attributes in process `syz.1.135'.
[   63.512465][ T6546] qnx6: unable to read the first superblock
[   63.943736][ T5947] Bluetooth: hci1: command tx timeout
[   64.342519][ T6557] FAULT_INJECTION: forcing a failure.
[   64.342519][ T6557] name failslab, interval 1, probability 0, space 0, times 0
[   64.347061][ T6557] CPU: 2 UID: 0 PID: 6557 Comm: syz.2.144 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   64.350598][ T6557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.354177][ T6557] Call Trace:
[   64.355308][ T6557]  <TASK>
[   64.356319][ T6557]  dump_stack_lvl+0x16c/0x1f0
[   64.357888][ T6557]  should_fail_ex+0x497/0x5b0
[   64.359481][ T6557]  ? fs_reclaim_acquire+0xae/0x150
[   64.361214][ T6557]  should_failslab+0xc2/0x120
[   64.362861][ T6557]  __kmalloc_cache_noprof+0x68/0x420
[   64.364649][ T6557]  ? tomoyo_find_next_domain+0x7d5/0x2070
[   64.366576][ T6557]  tomoyo_find_next_domain+0xb7e/0x2070
[   64.368345][ T6557]  ? __pfx_tomoyo_find_next_domain+0x10/0x10
[   64.370391][ T6557]  ? lock_acquire+0x2f/0xb0
[   64.371918][ T6557]  ? tomoyo_bprm_check_security+0x119/0x1d0
[   64.373931][ T6557]  tomoyo_bprm_check_security+0x12e/0x1d0
[   64.375850][ T6557]  ? tomoyo_bprm_check_security+0x119/0x1d0
[   64.377863][ T6557]  security_bprm_check+0x1b9/0x1e0
[   64.379607][ T6557]  bprm_execve+0x642/0x19b0
[   64.381164][ T6557]  ? __pfx_bprm_execve+0x10/0x10
[   64.382859][ T6557]  ? copy_strings.isra.0+0x3c0/0x450
[   64.384666][ T6557]  do_execveat_common.isra.0+0x4f1/0x630
[   64.386564][ T6557]  __ia32_compat_sys_execve+0x90/0xc0
[   64.388385][ T6557]  __do_fast_syscall_32+0x73/0x120
[   64.390128][ T6557]  do_fast_syscall_32+0x32/0x80
[   64.391774][ T6557]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   64.393924][ T6557] RIP: 0023:0xf7fb1579
[   64.395335][ T6557] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   64.401770][ T6557] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 000000000000000b
[   64.404528][ T6557] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000020000380
[   64.407131][ T6557] RDX: 0000000020000580 RSI: 0000000000000000 RDI: 0000000000000000
[   64.409673][ T6557] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   64.412141][ T6557] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   64.414667][ T6557] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   64.417175][ T6557]  </TASK>
[   64.673576][   T35] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[   64.675204][   T35] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[   65.519170][ T6588] overlayfs: conflicting options: userxattr,verity=require
[   66.365764][ T6601] overlayfs: statfs failed on './file0'
[   66.524555][ T6610] qnx6: unable to read the first superblock
[   66.529567][ T6610] Set syz1 is full, maxelem 65536 reached
[   66.673795][ T5978] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   66.743768][   T35] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[   66.743772][ T5947] Bluetooth: hci3: command 0x0c1a tx timeout
[   66.745712][   T35] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[   66.833590][ T5978] usb 5-1: Using ep0 maxpacket: 8
[   66.837217][ T5978] usb 5-1: config 0 has no interfaces?
[   66.837830][ T6621] netlink: 24 bytes leftover after parsing attributes in process `syz.1.165'.
[   66.839246][ T5978] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   66.839269][ T5978] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.855660][ T5978] usb 5-1: config 0 descriptor??
[   67.313099][ T6628] netlink: 24 bytes leftover after parsing attributes in process `syz.2.166'.
[   67.767114][ T6634] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.770073][ T6634] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   67.773484][ T6635] Driver unsupported XDP return value 0 on prog  (id 29) dev N/A, expect packet loss!
[   68.354520][ T6644] netlink: 24 bytes leftover after parsing attributes in process `syz.2.171'.
[   68.755452][ T6646] netlink: 16 bytes leftover after parsing attributes in process `syz.3.173'.
[   69.044620][ T6656] qnx6: unable to read the first superblock
[   69.049303][ T6656] Set syz1 is full, maxelem 65536 reached
[   69.405185][   T35] usb 5-1: USB disconnect, device number 2
[   69.735703][ T6667] xt_connbytes: Forcing CT accounting to be enabled
[   69.737510][ T6667] SET target dimension over the limit!
[   69.975828][ T6681] netlink: 24 bytes leftover after parsing attributes in process `syz.2.183'.
[   70.113627][ T6682] netlink: 24 bytes leftover after parsing attributes in process `syz.3.184'.
[   70.361360][ T6684] netlink: 24 bytes leftover after parsing attributes in process `syz.0.177'.
[   70.665380][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[   70.668781][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[   70.960421][ T6723] netlink: 24 bytes leftover after parsing attributes in process `syz.3.196'.
[   72.948867][ T6778] netlink: 24 bytes leftover after parsing attributes in process `syz.2.194'.
[   73.736145][ T6789] netlink: 24 bytes leftover after parsing attributes in process `syz.2.200'.
[   74.035261][ T6795] qnx6: unable to read the first superblock
[   74.047799][ T6795] Set syz1 is full, maxelem 65536 reached
[   74.457690][ T6797] FAULT_INJECTION: forcing a failure.
[   74.457690][ T6797] name failslab, interval 1, probability 0, space 0, times 0
[   74.462062][ T6797] CPU: 0 UID: 0 PID: 6797 Comm: syz.2.203 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   74.465643][ T6797] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.469218][ T6797] Call Trace:
[   74.470132][ T6797]  <TASK>
[   74.470842][ T6797]  dump_stack_lvl+0x16c/0x1f0
[   74.472017][ T6797]  should_fail_ex+0x497/0x5b0
[   74.473203][ T6797]  ? fs_reclaim_acquire+0xae/0x150
[   74.474448][ T6797]  should_failslab+0xc2/0x120
[   74.475592][ T6797]  __kmalloc_cache_noprof+0x68/0x420
[   74.476857][ T6797]  ? rcu_is_watching+0x12/0xc0
[   74.478010][ T6797]  ? trace_kmalloc+0x2d/0xd0
[   74.479150][ T6797]  ? __pfx_free_modprobe_argv+0x10/0x10
[   74.480509][ T6797]  call_usermodehelper_setup+0x9a/0x340
[   74.481843][ T6797]  __request_module+0x3d6/0x6c0
[   74.483034][ T6797]  ? sock_load_diag_module+0x110/0x150
[   74.484358][ T6797]  ? __pfx___request_module+0x10/0x10
[   74.485659][ T6797]  ? __local_bh_enable_ip+0xa4/0x120
[   74.486949][ T6797]  ? __dev_queue_xmit+0x89b/0x43e0
[   74.488209][ T6797]  ? __dev_queue_xmit+0x8bc/0x43e0
[   74.489456][ T6797]  sock_load_diag_module+0x110/0x150
[   74.490758][ T6797]  sock_diag_rcv_msg+0x5f3/0x790
[   74.491955][ T6797]  netlink_rcv_skb+0x165/0x410
[   74.493120][ T6797]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[   74.494449][ T6797]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   74.495727][ T6797]  ? netlink_deliver_tap+0x1ae/0xca0
[   74.497026][ T6797]  netlink_unicast+0x53c/0x7f0
[   74.498211][ T6797]  ? __pfx_netlink_unicast+0x10/0x10
[   74.499497][ T6797]  ? __phys_addr+0xc6/0x150
[   74.500619][ T6797]  ? __phys_addr_symbol+0x30/0x80
[   74.501836][ T6797]  ? __check_object_size+0x488/0x710
[   74.503135][ T6797]  netlink_sendmsg+0x8b8/0xd70
[   74.504296][ T6797]  ? __pfx_netlink_sendmsg+0x10/0x10
[   74.505585][ T6797]  ____sys_sendmsg+0x9ae/0xb40
[   74.506754][ T6797]  ? __pfx_____sys_sendmsg+0x10/0x10
[   74.508054][ T6797]  ? get_compat_msghdr+0x11b/0x170
[   74.509325][ T6797]  ___sys_sendmsg+0x135/0x1e0
[   74.510498][ T6797]  ? __pfx____sys_sendmsg+0x10/0x10
[   74.511778][ T6797]  ? __pfx_lock_release+0x10/0x10
[   74.513012][ T6797]  ? trace_lock_acquire+0x14e/0x1f0
[   74.514295][ T6797]  ? __fget_files+0x206/0x3a0
[   74.515457][ T6797]  __sys_sendmsg+0x16e/0x220
[   74.516597][ T6797]  ? __pfx___sys_sendmsg+0x10/0x10
[   74.517841][ T6797]  __do_fast_syscall_32+0x73/0x120
[   74.519071][ T6797]  do_fast_syscall_32+0x32/0x80
[   74.520252][ T6797]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   74.521799][ T6797] RIP: 0023:0xf7fb1579
[   74.522783][ T6797] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   74.527505][ T6797] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   74.529611][ T6797] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000540
[   74.531580][ T6797] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[   74.533496][ T6797] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   74.535509][ T6797] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   74.537508][ T6797] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   74.539510][ T6797]  </TASK>
[   74.690051][ T6801] vivid-004: disconnect
[   75.315115][   T35] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[   75.406484][ T6798] vivid-004: reconnect
[   75.472749][   T35] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   75.476402][   T35] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   75.480841][   T35] usb 6-1: New USB device found, idVendor=05a4, idProduct=8003, bcdDevice= 0.00
[   75.484430][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.491712][   T35] usb 6-1: config 0 descriptor??
[   75.496682][   T35] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[   75.506689][ T6815] netlink: 24 bytes leftover after parsing attributes in process `syz.0.208'.
[   75.698177][ T6805] binder: 6804:6805 ioctl c0306201 20000000 returned -22
[   75.698210][ T6819] binder: 6804:6819 ioctl c0306201 20000000 returned -22
[   75.705193][ T6751] usb 6-1: USB disconnect, device number 3
[   75.786632][   T58] cfg80211: failed to load regulatory.db
[   76.356668][   T39] audit: type=1326 audit(1734151388.104:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6823 comm="syz.0.210" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[   76.361973][   T39] audit: type=1326 audit(1734151388.104:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6823 comm="syz.0.210" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[   76.367594][   T39] audit: type=1326 audit(1734151388.104:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6823 comm="syz.0.210" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf711e579 code=0x7ffc0000
[   76.372937][   T39] audit: type=1326 audit(1734151388.104:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6823 comm="syz.0.210" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[   76.378674][   T39] audit: type=1326 audit(1734151388.104:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6823 comm="syz.0.210" exe="/syz-executor" sig=0 arch=40000003 syscall=279 compat=1 ip=0xf711e579 code=0x7ffc0000
[   76.384248][   T39] audit: type=1326 audit(1734151388.104:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6823 comm="syz.0.210" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[   76.389714][   T39] audit: type=1326 audit(1734151388.104:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6823 comm="syz.0.210" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf711e579 code=0x7ffc0000
[   76.395240][   T39] audit: type=1326 audit(1734151388.104:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6823 comm="syz.0.210" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[   76.401813][   T39] audit: type=1326 audit(1734151388.104:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6823 comm="syz.0.210" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[   76.495541][ T6834] netlink: 'syz.2.212': attribute type 1 has an invalid length.
[   76.497757][ T6834] netlink: 224 bytes leftover after parsing attributes in process `syz.2.212'.
[   76.620527][ T6835] team0 (unregistering): Port device team_slave_0 removed
[   76.623966][ T6835] team0 (unregistering): Port device team_slave_1 removed
[   77.123090][ T6846] netlink: 4 bytes leftover after parsing attributes in process `syz.0.216'.
[   77.725637][ T6844] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   78.055815][ T6851] sp0: Synchronizing with TNC
[   78.488325][ T6853] IPv6: NLM_F_REPLACE set, but no existing node found!
[   78.526195][ T6858] netlink: 'syz.0.228': attribute type 1 has an invalid length.
[   78.528328][ T6858] netlink: 224 bytes leftover after parsing attributes in process `syz.0.228'.
[   78.620477][ T6858] team0 (unregistering): Port device team_slave_0 removed
[   78.626414][ T6858] team0 (unregistering): Port device team_slave_1 removed
[   79.008606][ T6874] capability: warning: `syz.0.223' uses deprecated v2 capabilities in a way that may be insecure
[   79.115696][ T6880] qnx6: unable to read the first superblock
[   79.122707][ T6880] Set syz1 is full, maxelem 65536 reached
[   80.031140][ T6890] sp0: Synchronizing with TNC
[   80.901001][ T6896] netlink: 9 bytes leftover after parsing attributes in process `syz.0.231'.
[   80.904288][ T6896] 0·X: renamed from hsr0 (while UP)
[   80.915580][ T6896] 0·X: entered allmulticast mode
[   80.917646][ T6896] hsr_slave_0: entered allmulticast mode
[   80.919321][ T6896] hsr_slave_1: entered allmulticast mode
[   80.921090][ T6896] A link change request failed with some changes committed already. Interface 
c0·X may have been left with an inconsistent configuration, please check.
[   80.922456][ T6899] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   80.929762][ T6896] netlink: 4 bytes leftover after parsing attributes in process `syz.0.231'.
[   80.964987][ T6903] netlink: 9 bytes leftover after parsing attributes in process `syz.1.233'.
[   80.967310][ T6903] 0·X: renamed from hsr0 (while UP)
[   80.969553][ T6903] 0·X: entered allmulticast mode
[   80.970867][ T6903] hsr_slave_0: entered allmulticast mode
[   80.972611][ T6903] hsr_slave_1: entered allmulticast mode
[   80.977514][ T6903] A link change request failed with some changes committed already. Interface 
c0·X may have been left with an inconsistent configuration, please check.
[   80.983400][ T6903] netlink: 4 bytes leftover after parsing attributes in process `syz.1.233'.
[   81.001251][ T6905] program syz.0.231 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   81.055239][ T6907] ubi0: attaching mtd0
[   81.058882][ T6907] ubi0: scanning is finished
[   81.060123][ T6907] ubi0: empty MTD device detected
[   81.171211][ T6907] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[   81.173211][ T6907] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   81.176578][ T6907] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[   81.178390][ T6907] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[   81.180282][ T6907] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   81.182176][ T6907] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[   81.184889][ T6907] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1212697182
[   81.187456][ T6907] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   81.191658][ T6911] ubi0: background thread "ubi_bgt0d" started, PID 6911
[   82.422238][ T6932] netlink: zone id is out of range
[   82.424000][ T6932] netlink: zone id is out of range
[   82.425764][ T6932] netlink: zone id is out of range
[   82.427254][ T6932] netlink: zone id is out of range
[   82.429669][ T6932] netlink: zone id is out of range
[   82.431213][ T6932] netlink: zone id is out of range
[   82.462009][ T6934] sp0: Synchronizing with TNC
[   84.161422][ T6965] process 'syz.1.249' launched '/dev/fd/6' with NULL argv: empty string added
[   84.290682][ T6972] sp0: Synchronizing with TNC
[   84.478814][   T39] audit: type=1326 audit(1734151396.224:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6977 comm="syz.2.253" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x0
[   84.996603][ T6989] netlink: 24 bytes leftover after parsing attributes in process `syz.3.254'.
[   85.448077][ T6993] misc userio: Invalid payload size
[   85.450091][ T6993] misc userio: No port type given on /dev/userio
[   85.490613][ T6996] netlink: 4 bytes leftover after parsing attributes in process `syz.3.257'.
[   85.498057][ T6996] sp0: Synchronizing with TNC
[   85.500953][ T6995] [U] è
[   86.234194][ T7001] sp0: Synchronizing with TNC
[   86.606704][ T7019] netlink: 24 bytes leftover after parsing attributes in process `syz.2.264'.
[   87.577623][ T7027] netlink: 24 bytes leftover after parsing attributes in process `syz.0.268'.
[   87.728890][ T7035] ipt_ECN: cannot use operation on non-tcp rule
[   87.768725][ T7037] sp0: Synchronizing with TNC
[   88.592599][ T7050] netlink: 'syz.1.275': attribute type 1 has an invalid length.
[   88.594743][ T7050] netlink: 224 bytes leftover after parsing attributes in process `syz.1.275'.
[   88.597136][ T7050] FAULT_INJECTION: forcing a failure.
[   88.597136][ T7050] name failslab, interval 1, probability 0, space 0, times 0
[   88.600538][ T7050] CPU: 1 UID: 0 PID: 7050 Comm: syz.1.275 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   88.603280][ T7050] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.606067][ T7050] Call Trace:
[   88.606946][ T7050]  <TASK>
[   88.607724][ T7050]  dump_stack_lvl+0x16c/0x1f0
[   88.608978][ T7050]  should_fail_ex+0x497/0x5b0
[   88.610220][ T7050]  ? fs_reclaim_acquire+0xae/0x150
[   88.611569][ T7050]  should_failslab+0xc2/0x120
[   88.612821][ T7050]  __kmalloc_cache_node_noprof+0x6f/0x3f0
[   88.614321][ T7050]  ? init_rescuer+0x1a6/0x640
[   88.615572][ T7050]  init_rescuer+0x1a6/0x640
[   88.616782][ T7050]  ? __pfx_init_rescuer+0x10/0x10
[   88.618125][ T7050]  ? wq_adjust_max_active+0x39d/0x4a0
[   88.619544][ T7050]  __alloc_workqueue+0xc27/0x1810
[   88.620875][ T7050]  ? __sys_sendmsg+0x16e/0x220
[   88.622163][ T7050]  alloc_workqueue+0xd3/0x200
[   88.623409][ T7050]  ? __pfx_alloc_workqueue+0x10/0x10
[   88.624974][ T7050]  ieee802154_register_hw+0x10c/0xa90
[   88.626410][ T7050]  ? __pfx_ieee802154_register_hw+0x10/0x10
[   88.627987][ T7050]  hwsim_add_one+0x683/0x1370
[   88.629234][ T7050]  ? __pfx_hwsim_add_one+0x10/0x10
[   88.630597][ T7050]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[   88.632587][ T7050]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[   88.634558][ T7050]  genl_family_rcv_msg_doit+0x202/0x2f0
[   88.636006][ T7050]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   88.637601][ T7050]  ? genl_get_cmd+0x195/0x580
[   88.638841][ T7050]  ? bpf_lsm_capable+0x9/0x10
[   88.640079][ T7050]  ? security_capable+0x7e/0x260
[   88.641435][ T7050]  ? ns_capable+0xd7/0x110
[   88.642617][ T7050]  genl_rcv_msg+0x565/0x800
[   88.643829][ T7050]  ? __pfx_genl_rcv_msg+0x10/0x10
[   88.645151][ T7050]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[   88.646615][ T7050]  ? __pfx___lock_acquire+0x10/0x10
[   88.648047][ T7050]  netlink_rcv_skb+0x165/0x410
[   88.649336][ T7050]  ? __pfx_genl_rcv_msg+0x10/0x10
[   88.650674][ T7050]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   88.652073][ T7050]  ? down_read+0xc9/0x330
[   88.653211][ T7050]  ? __pfx_down_read+0x10/0x10
[   88.654484][ T7050]  ? netlink_deliver_tap+0x1ae/0xca0
[   88.655885][ T7050]  genl_rcv+0x28/0x40
[   88.656940][ T7050]  netlink_unicast+0x53c/0x7f0
[   88.658204][ T7050]  ? __pfx_netlink_unicast+0x10/0x10
[   88.659588][ T7050]  ? __phys_addr_symbol+0x30/0x80
[   88.660909][ T7050]  ? __check_object_size+0x488/0x710
[   88.662314][ T7050]  netlink_sendmsg+0x8b8/0xd70
[   88.663579][ T7050]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.664966][ T7050]  ____sys_sendmsg+0x9ae/0xb40
[   88.666228][ T7050]  ? __pfx_____sys_sendmsg+0x10/0x10
[   88.667608][ T7050]  ? get_compat_msghdr+0x11b/0x170
[   88.668966][ T7050]  ___sys_sendmsg+0x135/0x1e0
[   88.670213][ T7050]  ? __pfx____sys_sendmsg+0x10/0x10
[   88.671580][ T7050]  ? __pfx_lock_release+0x10/0x10
[   88.672901][ T7050]  ? trace_lock_acquire+0x14e/0x1f0
[   88.674278][ T7050]  ? __fget_files+0x206/0x3a0
[   88.675517][ T7050]  __sys_sendmsg+0x16e/0x220
[   88.676737][ T7050]  ? __pfx___sys_sendmsg+0x10/0x10
[   88.678152][ T7050]  __do_fast_syscall_32+0x73/0x120
[   88.679511][ T7050]  do_fast_syscall_32+0x32/0x80
[   88.680787][ T7050]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   88.682457][ T7050] RIP: 0023:0xf707e579
[   88.683497][ T7050] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   88.688454][ T7050] RSP: 002b:00000000f504f55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   88.690631][ T7050] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040
[   88.692708][ T7050] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   88.694778][ T7050] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   88.696830][ T7050] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   88.698900][ T7050] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   88.700969][ T7050]  </TASK>
[   88.702597][ T7050] workqueue: Failed to allocate a rescuer for wq "phy2"
[   88.810797][ T7047] netlink: 24 bytes leftover after parsing attributes in process `syz.3.274'.
[   89.005205][ T7057] netlink: 24 bytes leftover after parsing attributes in process `syz.0.278'.
[   89.083785][ T7063] sp0: Synchronizing with TNC
[   89.551189][ T7071] qnx6: unable to read the first superblock
[   89.931624][ T7071] net_ratelimit: 14 callbacks suppressed
[   89.931637][ T7071] Set syz1 is full, maxelem 65536 reached
[   92.363471][ T7097] sp0: Synchronizing with TNC
[   92.380108][ T7087] netlink: 24 bytes leftover after parsing attributes in process `syz.3.288'.
[   92.420290][ T7098] netlink: 24 bytes leftover after parsing attributes in process `syz.2.287'.
[   92.534169][ T7102] netlink: 9 bytes leftover after parsing attributes in process `syz.1.292'.
[   92.537357][ T7102] 1·X: renamed from 
c0·X (while UP)
[   92.540739][ T7102] A link change request failed with some changes committed already. Interface 
c1·X may have been left with an inconsistent configuration, please check.
[   92.547975][ T7102] netlink: 4 bytes leftover after parsing attributes in process `syz.1.292'.
[   92.620214][ T7108] qnx6: unable to read the first superblock
[   92.624252][ T7108] Set syz1 is full, maxelem 65536 reached
[   92.640509][ T7109] program syz.1.292 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   92.645562][ T7109] ubi0: detaching mtd0
[   92.672609][ T7109] ubi0: mtd0 is detached
[   96.536501][ T7134] sp0: Synchronizing with TNC
[   96.819465][ T7143] netlink: 24 bytes leftover after parsing attributes in process `syz.2.302'.
[   97.003777][ T7145] netlink: 24 bytes leftover after parsing attributes in process `syz.0.303'.
[   97.186968][ T7153] ªªªªª»: renamed from vxcan1 (while UP)
[   97.210051][ T5979] IPVS: starting estimator thread 0...
[   97.212785][ T7154] bond1: entered promiscuous mode
[   97.215753][ T7154] bond1: entered allmulticast mode
[   97.217435][ T7154] 8021q: adding VLAN 0 to HW filter on device bond1
[   97.270473][ T7154] bond1 (unregistering): Released all slaves
[   97.313708][ T7158] IPVS: using max 39 ests per chain, 93600 per kthread
[   97.474986][  T832] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[   97.824765][  T832] usb 8-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[   97.827257][  T832] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   97.829951][  T832] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[   97.833768][  T832] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   97.836226][  T832] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.838344][  T832] usb 8-1: Product: syz
[   97.839492][  T832] usb 8-1: Manufacturer: syz
[   97.840792][  T832] usb 8-1: SerialNumber: syz
[   98.051969][  T832] usb 8-1: 0:2 : does not exist
[   98.064089][  T832] usb 8-1: USB disconnect, device number 2
[   98.245753][ T7091] udevd[7091]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   98.453727][ T7150] tipc: Started in network mode
[   98.455828][ T7150] tipc: Node identity ac1414aa, cluster identity 4711
[   98.459000][ T7150] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[   98.461773][ T7150] tipc: Enabled bearer <udp:s>, priority 10
[   98.559336][ T7179] netlink: 9 bytes leftover after parsing attributes in process `syz.0.313'.
[   98.561725][ T7179] 1·X: renamed from 
c0·X (while UP)
[   98.565276][ T7179] A link change request failed with some changes committed already. Interface 
c1·X may have been left with an inconsistent configuration, please check.
[   98.576826][ T7179] netlink: 4 bytes leftover after parsing attributes in process `syz.0.313'.
[   98.605062][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[   98.650942][ T7182] ubi0: attaching mtd0
[   98.653800][ T7182] ubi0: scanning is finished
[   98.656313][ T7182] ------------[ cut here ]------------
[   98.657897][ T7182] notifier callback ubi_wl_reboot_notifier already registered
[   98.658017][ T7182] WARNING: CPU: 3 PID: 7182 at kernel/notifier.c:23 notifier_chain_register+0x157/0x420
[   98.662382][ T7182] Modules linked in:
[   98.663596][ T7182] CPU: 3 UID: 0 PID: 7182 Comm: syz.0.313 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   98.667743][ T7182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   98.670506][ T7182] RIP: 0010:notifier_chain_register+0x157/0x420
[   98.672176][ T7182] Code: 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 80 3c 02 00 0f 85 c2 02 00 00 49 8b 75 00 48 c7 c7 a0 0e 4c 8b e8 fa 79 f4 ff 90 <0f> 0b 90 90 bb ef ff ff ff e8 ab a2 33 00 89 d8 48 83 c4 18 5b 5d
[   98.677311][ T7182] RSP: 0018:ffffc900032cfa28 EFLAGS: 00010286
[   98.678855][ T7182] RAX: 0000000000000000 RBX: ffff88807685d8c8 RCX: ffffc900262a1000
[   98.680859][ T7182] RDX: 0000000000080000 RSI: ffffffff815a16d6 RDI: 0000000000000001
[   98.682854][ T7182] RBP: 000000007fffffff R08: 0000000000000001 R09: 0000000000000000
[   98.685014][ T7182] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000001
[   98.687008][ T7182] R13: ffff88807685d8c8 R14: ffffffff8f611d28 R15: dffffc0000000000
[   98.689076][ T7182] FS:  0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:00000000f50efb40
[   98.691343][ T7182] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[   98.693023][ T7182] CR2: 000000002ed03ffc CR3: 000000006fc68000 CR4: 0000000000352ef0
[   98.695146][ T7182] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   98.697170][ T7182] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   98.699254][ T7182] Call Trace:
[   98.700108][ T7182]  <TASK>
[   98.700869][ T7182]  ? __warn+0xea/0x3c0
[   98.701974][ T7182]  ? preempt_schedule_notrace+0x62/0xe0
[   98.703379][ T7182]  ? notifier_chain_register+0x157/0x420
[   98.705062][ T7182]  ? report_bug+0x3c0/0x580
[   98.706248][ T7182]  ? handle_bug+0x54/0xa0
[   98.707362][ T7182]  ? exc_invalid_op+0x17/0x50
[   98.708643][ T7182]  ? asm_exc_invalid_op+0x1a/0x20
[   98.709952][ T7182]  ? __warn_printk+0x1a6/0x350
[   98.711172][ T7182]  ? notifier_chain_register+0x157/0x420
[   98.712610][ T7182]  ? notifier_chain_register+0x156/0x420
[   98.714207][ T7182]  blocking_notifier_chain_register+0x76/0xd0
[   98.715823][ T7182]  ubi_wl_init+0x1018/0x17b0
[   98.716966][ T7182]  ubi_attach+0x1cdd/0x4dc0
[   98.718130][ T7182]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   98.719807][ T7182]  ? lockdep_init_map_type+0x16d/0x7d0
[   98.721207][ T7182]  ? __pfx_ubi_attach+0x10/0x10
[   98.722497][ T7182]  ? ubi_attach_mtd_dev+0x1543/0x3590
[   98.723942][ T7182]  ubi_attach_mtd_dev+0x158f/0x3590
[   98.725556][ T7182]  ? __pfx_ubi_attach_mtd_dev+0x10/0x10
[   98.727027][ T7182]  ? __pfx_get_mtd_device+0x10/0x10
[   98.728370][ T7182]  ctrl_cdev_ioctl+0x339/0x3d0
[   98.729607][ T7182]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[   98.731019][ T7182]  ? __fget_files+0x206/0x3a0
[   98.732234][ T7182]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[   98.733657][ T7182]  compat_ptr_ioctl+0x6b/0xa0
[   98.734907][ T7182]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[   98.736298][ T7182]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   98.737672][ T7182]  __do_fast_syscall_32+0x73/0x120
[   98.739053][ T7182]  do_fast_syscall_32+0x32/0x80
[   98.740299][ T7182]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   98.741917][ T7182] RIP: 0023:0xf711e579
[   98.742963][ T7182] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   98.748054][ T7182] RSP: 002b:00000000f50ef55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   98.750198][ T7182] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000040186f40
[   98.752202][ T7182] RDX: 0000000020000502 RSI: 0000000000000000 RDI: 0000000000000000
[   98.753592][    C2] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[   98.754293][ T7182] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   98.758649][ T7182] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   98.760640][ T7182] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   98.760696][ T7184] netlink: 24 bytes leftover after parsing attributes in process `syz.2.312'.
[   98.762664][ T7182]  </TASK>
[   98.762672][ T7182] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   98.762679][ T7182] CPU: 3 UID: 0 PID: 7182 Comm: syz.0.313 Not tainted 6.13.0-rc2-syzkaller-00192-g243f750a2df0 #0
[   98.762691][ T7182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   98.762697][ T7182] Call Trace:
[   98.762701][ T7182]  <TASK>
[   98.762705][ T7182]  dump_stack_lvl+0x3d/0x1f0
[   98.762720][ T7182]  panic+0x71d/0x800
[   98.762735][ T7182]  ? __pfx_panic+0x10/0x10
[   98.762749][ T7182]  ? show_trace_log_lvl+0x29d/0x3d0
[   98.762766][ T7182]  ? notifier_chain_register+0x157/0x420
[   98.762779][ T7182]  check_panic_on_warn+0xab/0xb0
[   98.762793][ T7182]  __warn+0xf6/0x3c0
[   98.762806][ T7182]  ? preempt_schedule_notrace+0x62/0xe0
[   98.762818][ T7182]  ? notifier_chain_register+0x157/0x420
[   98.762831][ T7182]  report_bug+0x3c0/0x580
[   98.762842][ T7182]  handle_bug+0x54/0xa0
[   98.762855][ T7182]  exc_invalid_op+0x17/0x50
[   98.762867][ T7182]  asm_exc_invalid_op+0x1a/0x20
[   98.762879][ T7182] RIP: 0010:notifier_chain_register+0x157/0x420
[   98.762892][ T7182] Code: 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 80 3c 02 00 0f 85 c2 02 00 00 49 8b 75 00 48 c7 c7 a0 0e 4c 8b e8 fa 79 f4 ff 90 <0f> 0b 90 90 bb ef ff ff ff e8 ab a2 33 00 89 d8 48 83 c4 18 5b 5d
[   98.762901][ T7182] RSP: 0018:ffffc900032cfa28 EFLAGS: 00010286
[   98.762910][ T7182] RAX: 0000000000000000 RBX: ffff88807685d8c8 RCX: ffffc900262a1000
[   98.762916][ T7182] RDX: 0000000000080000 RSI: ffffffff815a16d6 RDI: 0000000000000001
[   98.762922][ T7182] RBP: 000000007fffffff R08: 0000000000000001 R09: 0000000000000000
[   98.762928][ T7182] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000001
[   98.762934][ T7182] R13: ffff88807685d8c8 R14: ffffffff8f611d28 R15: dffffc0000000000
[   98.762944][ T7182]  ? __warn_printk+0x1a6/0x350
[   98.762959][ T7182]  ? notifier_chain_register+0x156/0x420
[   98.762973][ T7182]  blocking_notifier_chain_register+0x76/0xd0
[   98.762986][ T7182]  ubi_wl_init+0x1018/0x17b0
[   98.763006][ T7182]  ubi_attach+0x1cdd/0x4dc0
[   98.763026][ T7182]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   98.763038][ T7182]  ? lockdep_init_map_type+0x16d/0x7d0
[   98.763053][ T7182]  ? __pfx_ubi_attach+0x10/0x10
[   98.763069][ T7182]  ? ubi_attach_mtd_dev+0x1543/0x3590
[   98.763081][ T7182]  ubi_attach_mtd_dev+0x158f/0x3590
[   98.763095][ T7182]  ? __pfx_ubi_attach_mtd_dev+0x10/0x10
[   98.763105][ T7182]  ? __pfx_get_mtd_device+0x10/0x10
[   98.763121][ T7182]  ctrl_cdev_ioctl+0x339/0x3d0
[   98.763132][ T7182]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[   98.763144][ T7182]  ? __fget_files+0x206/0x3a0
[   98.763158][ T7182]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[   98.763169][ T7182]  compat_ptr_ioctl+0x6b/0xa0
[   98.763185][ T7182]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[   98.763199][ T7182]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   98.763215][ T7182]  __do_fast_syscall_32+0x73/0x120
[   98.763228][ T7182]  do_fast_syscall_32+0x32/0x80
[   98.763239][ T7182]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   98.763252][ T7182] RIP: 0023:0xf711e579
[   98.763260][ T7182] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   98.763269][ T7182] RSP: 002b:00000000f50ef55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   98.763279][ T7182] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000040186f40
[   98.763285][ T7182] RDX: 0000000020000502 RSI: 0000000000000000 RDI: 0000000000000000
[   98.763291][ T7182] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   98.763297][ T7182] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   98.763303][ T7182] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   98.763315][ T7182]  </TASK>
[   98.765502][ T7182] Kernel Offset: disabled

VM DIAGNOSIS:
04:43:30  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88801ac80000 RCX=ffffffff814a890a RDX=ffff88801e4b2440
RSI=ffffffff814a8918 RDI=0000000000000006 RBP=ffff88809ac80000 RSP=ffffc900006978e8
R8 =0000000000000006 R9 =ffff88801ac80000 R10=ffff88809ac80000 R11=0000000000000006
R12=0000000000000000 R13=0000000000000000 R14=ffff88801e4b2440 R15=0000000000000000
RIP=ffffffff81993e56 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe3417ec440 CR3=000000001ac80000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0008000000000000 Opmask01=0000000000080000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd37bab380 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30203a4449552033 203a555043205d32 38313754205b5d36 39353336362e3839
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30203a4449202031 202e302e43205d20 3831375420203236 31352036362e3820
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 393130302d72656c 6c616b7a79732d32 63722d302e33312e 36206465746e6961
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 393120302d696520 6c61656c000a2d23 20302d302e33302e 3620333432672d32
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff8176b5b3 RDX=dffffc0000000000
RSI=0000000000000008 RDI=ffffffff8b1c9532 RBP=000000000003da4c RSP=ffffc900032df7b0
R8 =0000000000000000 R9 =ffffed100cf46920 R10=ffff888067a34903 R11=0000000000000004
R12=0000000000000002 R13=ffff888067a34940 R14=ffff888067a342e8 R15=ffff888067a34768
RIP=ffffffff81a0e9f8 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000002ef11ffc CR3=000000006c35c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88802b63fcc0 RCX=0000000000000000 RDX=1ffff110056c7f9a
RSI=ffffffff8b4e7240 RDI=ffffffff8bb15760 RBP=0000000000000001 RSP=ffffc90003a2f318
R8 =0000000000000000 R9 =fffffbfff1bb8b60 R10=ffffffff8ddc5b03 R11=ffff88801f438450
R12=ffffffff8ddc5b00 R13=ffff88802b63fce0 R14=ffff88802b63fcd1 R15=0000000000000000
RIP=ffffffff8180cb4d RFL=00000806 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020673000 CR3=000000006fc68000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7413ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000006e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85143095 RDI=ffffffff9a665300 RBP=ffffffff9a6652c0 RSP=ffffc900032cf388
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000006
R12=0000000000000000 R13=000000000000006e R14=ffffffff85143030 R15=0000000000000000
RIP=ffffffff851430bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002ed03ffc CR3=000000006fc68000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000008000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000