last executing test programs:

10.6477076s ago: executing program 1 (id=210):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setaffinity(0x0, 0xffffffe8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
r1 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x68000, 0x0) (fail_nth: 3)

9.623521472s ago: executing program 1 (id=212):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34665c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbccbddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e712a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd13f4cec49669e443dcb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ef8dba2f23b01a9ae44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af40000000000000005f58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef07000000000000006da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405a07feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09c0e5a3bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea10d3cfb41b92ecbb422a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f74562adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b4412331d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd100fcffff007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711c6529ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a22c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29008000000000000005ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc030ea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efd936b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800001f00000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351b9332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a138d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fce43d8c53a8031e64026e0d36b6401064c49a729f11ab377f7132c5232bb80195dd5d43d29646a9378eea0761b7ed9d2172e33ed87c7413c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828b07f1dc7df9c8e5da22dfb9dacbf5529e4e994128d835f85465173ea7bbcc519a0c9798ce8b1b07567e3e07169c8c3e4da8bf725c050000000000000000000000000000000000000000004775abdf0c62728eb55a9e2849a1ce05bed60dfe4cc9fa43f9684297c02382c0a35829be7a86305792a9d2e80ca9e8fc50f31f6e0fa810303da03d8b74b42c1ebaf16bb343256405a3a07229a54de09a97b269cd29e8b2f0b0d46c51a6a93eec37f4bc6e29a8e19120ae050ab682662e9b2cc3263a4aba62b63ca9123a53c0f4bf3c4463b8144c89bf058a0af0ae9fc2b7cdfc4817703e267cddc193637d7fd97646090da37093657643daae3840c7f5c10f93524f7ae4791ec6e9d9722e5f670ccb358e051a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000480)={@cgroup=r0, r0, 0x2f, 0x4, 0x4, @void, @value=r0}, 0x20)

9.617806847s ago: executing program 0 (id=213):
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=@newlink={0x34, 0x10, 0x3, 0x0, 0x0, {0x0, 0x0, 0x0, r1, 0x28000}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x2}, 0x80)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x28, r3, 0x4c1dad3e3d6a7499, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000080}, 0x2400c000)
sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000940)={0x2fc, r3, 0x800, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x4c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}]}]}, @TIPC_NLA_NODE={0x260, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x73, 0x3, "9bd0dae32e266582fd818b727e993bfd9df548f8ec5f7af0ccbfb2b20b9c95fd52972e9ad7075fb747c4e9e1968fb0f18c63635df5ba61dc443f87720b6048bb28199426742fea934a87b07733c46d1809e14091961464d55a771e2c259f103773a5733d32f0c22936a905cab822fb"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_NODE_ID={0xb3, 0x3, "85a3c7617721c6dd6d7970635fd1500fba345a9ea02f7f2797aa654c916d126d39c67db608eee5bb526f4914647d0a4a70a9ec030eb8941bca12d1cfc907e11085b273cbafeea6318426236fb98897d98c9dd7ce65805f6d3081138a0da0d10823785e6a5d50d0bd6da295ca29d26fc911d890b48df4e76b6ff1a1b9df6b8f4230f3402d58aa5cd5c5cd8b577e2c58aae5c4eac429e902ed1414fa117c4b45f5689a33f3e2133e82dbd430aad539cc"}, @TIPC_NLA_NODE_ID={0x60, 0x3, "17d1569cdea1d36f053729dd6bc51d2efa4e335cd2604811a57304410741cb7ae94985ada229c903511df07696f8699f58c0ed2b2f192a1ba2c42c1f8d227509b75a94d2c7e4b3d113f04fe79dc28c2194ebd5b46cd6d163c9e1493e"}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "0f14242856d48059f5cf64d4355d46af445f9a3079c3c1dd38244b73af2a0c"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xffff}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_NODE_ID={0x6c, 0x3, "388e3f61cf29d3c198c477d321c7679bf7a8f95c28726dd7f9d60c3a5e80a868b959e7a1b8a87366d0e79624948cd987fcec479d4001247873103e758b44f77b7b2259afb4130004882b1ec44c2e32d7a45a18b4d64d2e450a311ae89b7819f518e47d5c4c2e9072"}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x80000000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3ff}]}]}, 0x2fc}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="5800000002010101800000000000000002000001080008c1d58abc57941889400000000208001540"], 0x58}, 0x1, 0x0, 0x0, 0x20000044}, 0x24000000)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x101142, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r6, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000773ec8f3969729e91faef0fbfdee720754a2b859140df3b5994a9a912c7c8b3874f44609007b9b9f08000000994e7fbc2779e8c461dc2a72c60a34cebcfb9eb3716f6093644ca31ff4e742d7db1da5b106eb2a8a976731e14a48d23c19b000b2351f51d88f88c3b01adc89a07e4dd8efd7b1cb948302c6e45a7ce9093b6582ce8e5121ef58cc01c25ed825742e366fc8e9fd7facdeedc22800f73e9f032c67b54561ec18f2bff9bf7764be437f4bd181f9b92bf068c7bfde", @ANYRES32, @ANYRES32=r6, @ANYRES32=0x0, @ANYRES32], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x1b, &(0x7f0000000400)=ANY=[@ANYRES32=r6, @ANYRES16=r7, @ANYBLOB="0000000000820000b702000014000000b7030000000000008500001083000000bf090000000000fb550900"/59, @ANYRES32=r7, @ANYRES64=r6, @ANYRES32=r7, @ANYRESHEX=0x0, @ANYBLOB, @ANYRES8=r7], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xed41d0969ec4053c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x8800}, 0x240400c1)
unshare(0x22020600)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40003, 0x0)
vmsplice(r9, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000680)='svcrdma_small_wrch_err\x00', r8, 0x0, 0xfffffffffffffffe}, 0x18)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00'})
bind$tipc(0xffffffffffffffff, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x1}}}, 0x10)
r10 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000fd8000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x54, 0xc, 0x0, 0x0)

9.606235184s ago: executing program 3 (id=214):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000600)={{0x1, 0x0, 0x480000, 0x0, 0x1}, 0x7})

9.468257199s ago: executing program 3 (id=215):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r0)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000006c0)={0x114, r1, 0xe701ac47a3d23ecd, 0x0, 0x2, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_DOMAIN={0xce, 0x1, 'C\xec\xf8\xa0w\x15|\xd8\xbcs\xe1\xb93\x14\xcd\xcb\xb6\xb9\xbb\x84\xe5\xbc\xdb\x7f\x9a\xf2\xea\xcc\x91:v@\xe83-\x1d\xaagQl\x7f\tKt\fc\x1f\x17]\xd5\xd0\xf0\xa8\xeb\xd2g\x92\x04\x02\v\x00od\xe6,\xd3@I\x17\xf3\xbees0\xad\xc6\xbf/*\xb6(o\x91t\x12\x93UK\xf4@n\xdc\xdc\x8a7y\x81FY\xbe\xbbc\xd2\xc3\x01\xa5\xe2V\x8c\xb3im~\xd2V\xdaG\xbdbF\xc8n\x86\xac\x9c\xfb\xda\xe2&\"\xb4:\x13\xe9\tc\x85\xb4\xcb\x17\xbfm\x846\xe7\x7fp\x9eCdb\xad;\xa2\x8fs\xbf6\xe8\xe3Xg3&\xe2 \xd6\n\x9d=~=\xe5\xdc\x90\a\xe7M\x9c<\x93/\xaf\x89\x06+\x96]\xb5+\xee\xff8^D*\xdb\xb8\xd8t\x80\xd4'}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x114}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$vbi(&(0x7f0000000300), 0x0, 0x2)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r2, 0xc0845657, &(0x7f0000000040)={0x0, @bt={0xa02, 0x63d, 0x1, 0x1, 0xd59f83, 0x19f5, 0x3f, 0x19ef, 0x3, 0x0, 0xff, 0x2800, 0x2, 0xba0, 0x18, 0x33, {0x8, 0xffffffff}, 0xd0, 0x6}})
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)
socket(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$kcm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000340)="1400000023003517d25a806f8b6394f90324fc60", 0x14}], 0x1}, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB="380000005500e5022cbd70000000000007000000", @ANYRES32=0x0, @ANYBLOB="20000180"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802)

9.41106101s ago: executing program 1 (id=216):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0xc048aeca, &(0x7f0000000080))

9.285257094s ago: executing program 4 (id=217):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x181142, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000187100"/19, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$sock_int(r3, 0x28, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="580000050000000000000000000000005dee0000000000000000000000000000464ad9ad6efb1c84669c15000d2bd4b77022b6edbe6eba98597f40da63fbe88791d27380948df1149b92a24f5ac8c9f109c99ee61e1fc74dcbdef44943bc27fff4297bac5da5495c2627612cf6606b0806335b9b80b3eba76b5bca922831c2bcfb247264e4c74891ad453068429d914e3d6a671dd62fe3ae682f79ce8d7cf3c521"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)

8.011885581s ago: executing program 4 (id=219):
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x400, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f0000000100)='./file0\x00')
rmdir(&(0x7f0000000000)='./bus\x00')
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prctl$PR_SET_PTRACER(0x59616d61, r0)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r3)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r4, 0x201, 0x400000, 0x0, {{}, {0x0, 0x400b}, {0x8, 0x11, 0x4}}}, 0x24}}, 0x0)
modify_ldt$write2(0x11, &(0x7f0000000100)={0x1d30, 0x0, 0x2000, 0x1}, 0x10)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)

7.960712074s ago: executing program 1 (id=220):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x4b)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee1, 0x8031, 0xffffffffffffffff, 0x0)
getpid()
r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r2, &(0x7f0000000000)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0xffffffff, [@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x40)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x3d0e, 0x4c1, 0x43, 0x0, 0x0)
sync_file_range(0xffffffffffffffff, 0x7ff, 0x8, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x80000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB="2c726f6f746d6f64653d305943494a481b571adb61731e2101303030303030303030303030303030303130303030302c757365325f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000004200)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x20, 0x0, 0x88}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
ppoll(&(0x7f0000000140)=[{r4}], 0x1, 0x0, 0x0, 0x0)
pwritev2(r0, &(0x7f0000000280)=[{&(0x7f0000000200)="38b8f91b23401e1ee8b4e06faedbd99634105307146ff93e40d6c90a1fce094a578a7bcccf684e8e1dbee83b2129c33b0b4c58a8aa6220c794587f4ef0e181abf54564a76e579ee9503477ca66d9", 0x4e}], 0x1, 0x3ff, 0x8000, 0x14)
close(r1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x8, 0x6, &(0x7f00000000c0)=""/6, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r5 = dup2(r2, r2)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)

7.069230644s ago: executing program 3 (id=221):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x10001]}, 0x8, 0x0)
ppoll(&(0x7f00000000c0)=[{r2, 0x10}, {r2, 0x1a084}], 0x2, 0x0, 0x0, 0x0)
r3 = getpid()
timer_create(0x2, &(0x7f0000000800)={0x0, 0x21, 0x4, @tid=r3}, &(0x7f0000000000)=<r4=>0x0)
timer_settime(r4, 0x1, &(0x7f0000000880)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
r5 = dup(r1)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f00000000c0)="0f0179b8660f38804259c4c121eec00f229f660f7f95000000000f009a0a000000660fe5e766ba200066ed66baf80cb86a342288ef66bafc0cb001ee66b897000f00d8", 0x43}], 0x1, 0x4b, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

6.94652908s ago: executing program 0 (id=222):
syz_emit_ethernet(0x42, &(0x7f0000000100)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x34, 0xfffe, 0x0, 0xfd, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x8, 0x4, 0x2, 0x0, 0x932, {[@timestamp={0x8, 0xa, 0x2, 0xb}, @sack={0x5, 0x2}]}}}}}}}, 0x0)

6.564133036s ago: executing program 2 (id=223):
r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x0, 0x0, 0x20493859, 0x7, 0x0, 0x1, 0x5, 0xfeedcafe, 0x3, 0x7}}) (fail_nth: 3)

6.527853017s ago: executing program 0 (id=224):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x80000000005, 0x100000001000087}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001300a7cc4a372eaf541d002007000000", @ANYRES32=r1, @ANYBLOB="00000000100000001c001a80", @ANYRES16], 0x44}}, 0x0)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x40, &(0x7f0000000100)=0x200, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), 0x0, 0x75, r3}, 0x38)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000380)={r3, &(0x7f0000000540)='@', &(0x7f0000000080)=@tcp, 0x2}, 0x20)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'veth1_to_bridge\x00', <r5=>0x0})
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_emit_ethernet(0x5e, &(0x7f0000000340)={@local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb763e", 0x28, 0x3a, 0xff, @dev={0xfe, 0x80, '\x00', 0x41}, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, [{0x18, 0x3, "007c4de20278ab96e88afd5c976b4c1ce4a945b1aafb"}]}}}}}}, 0x0)
ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000000540)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private1, 0x0, 0x0, 0x0, 0x480, 0x0, 0x840000, r5})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', <r7=>0x0})
r8 = socket$inet6_mptcp(0xa, 0x1, 0x106)
process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000440)=""/146, 0x92}], 0x1, 0x0)
ioctl$sock_inet6_SIOCADDRT(r8, 0x890b, &(0x7f0000000540)={@private2, @rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, r7})
syz_emit_ethernet(0x42, &(0x7f0000001540)={@local, @random="86082b9827c1", @void, {@ipv6={0x86dd, @udp={0x6, 0x6, '{&N', 0xc, 0x11, 0x0, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {[], {0x4e22, 0x4e23, 0xc, 0x0, @gue={{0x1, 0x0, 0x1, 0x6, 0x0, @void}}}}}}}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-generic)\x00'}, 0x58)

6.12035182s ago: executing program 2 (id=225):
r0 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0)
ioctl$EVIOCSKEYCODE_V2(r0, 0x80104592, &(0x7f0000000040)={0x0, 0xfc, 0x0, 0x0, "00207d2000000000201b14700c1e0ac74f000000001200000000000900"})
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x82c81, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000680)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002900)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x8, &(0x7f0000000000)={0x20000000}, 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INFO(r4, 0x0, 0x80, &(0x7f00000002c0)={'filter\x00', 0x88, 0x0, 0x0, [0x5, 0xfffffbfe, 0xffff0000, 0xae, 0x401, 0x8]}, &(0x7f0000000280)=0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r3, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="b907ef19edfff007049e0ff0888e", 0x0, 0x4000, 0x18000000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(0xffffffffffffffff, 0xc0505405, &(0x7f0000000600)={{0x1, 0x0, 0x480000, 0x0, 0x1}, 0x7})

5.713409761s ago: executing program 4 (id=226):
symlinkat(&(0x7f0000001040)='./cgroup\x00', 0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00')
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000001a40)=""/102392, 0x18ff8)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r2, 0x89e3, 0x0)
gettid()
syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000a40)=ANY=[@ANYBLOB="fc000000190001000000000000000000e0000002000000000000000000000000ac1414aa00"/48, @ANYRES32], 0xfc}}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}})
r4 = syz_open_dev$video(0x0, 0x8, 0x0)
ioctl$VIDIOC_S_SELECTION(r4, 0xc040565f, &(0x7f0000000940)={0xa, 0x0, 0x7, {0x8000, 0x1000, 0x4, 0x86c}})
r5 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000040)={0x80, 0x43}, 0x10)
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x24}}, 0x24000001)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@newlink={0x34, 0x10, 0x49920d862a92153b, 0x800, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1b400}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}}, 0x0)

5.248118308s ago: executing program 0 (id=227):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x42, 0x0, 0x0, 0x3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$cec(0x0, 0x0, 0x0)
sendmsg$NLBL_MGMT_C_ADDDEF(0xffffffffffffffff, 0x0, 0xa000000)
recvmmsg(r0, &(0x7f0000000b00)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000200)=""/37, 0x25}], 0x1, &(0x7f0000000880)=""/184, 0xb8}, 0x104}], 0x1, 0x40000003, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r3, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @loopback, 0x3}, 0x7e)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r3, 0x84, 0x4, &(0x7f00000000c0)=0xe2, 0x4)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close(0x3)

5.068262987s ago: executing program 4 (id=228):
openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000), 0x4)
syz_io_uring_setup(0x82e, 0x0, &(0x7f0000000100), &(0x7f0000000080))
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r4 = syz_open_dev$vim2m(&(0x7f0000000300), 0x8000000011d, 0x2)
ioctl$vim2m_VIDIOC_QBUF(r4, 0xc058560f, &(0x7f0000000080)=@fd={0x0, 0x1, 0x4, 0xffffff7f, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "2e1379f1"}})
r5 = socket(0x28, 0x5, 0x0)
r6 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r6, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r6, 0x4)
connect$vsock_stream(r5, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
accept4$unix(r6, 0x0, 0x0, 0x800)

4.474697866s ago: executing program 3 (id=229):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000004000040080000006100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x2, 0x80805, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shmctl$SHM_INFO(0x0, 0xe, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f90924fc60", 0x14}], 0x1, 0x0, 0x0, 0x600}, 0x0)
syz_io_uring_setup(0x10d, &(0x7f00000006c0)={0x0, 0xac24, 0x10000, 0x2}, &(0x7f0000000340), &(0x7f0000000280))

3.827858926s ago: executing program 2 (id=230):
symlinkat(&(0x7f0000001040)='./cgroup\x00', 0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00')
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000001a40)=""/102392, 0x18ff8)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SFACILITIES(r2, 0x89e3, 0x0)
gettid()
syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000a40)=ANY=[@ANYBLOB="fc000000190001000000000000000000e0000002000000000000000000000000ac1414aa00"/48, @ANYRES32], 0xfc}}, 0x0) (fail_nth: 3)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}})
r4 = syz_open_dev$video(0x0, 0x8, 0x0)
ioctl$VIDIOC_S_SELECTION(r4, 0xc040565f, &(0x7f0000000940)={0xa, 0x0, 0x7, {0x8000, 0x1000, 0x4, 0x86c}})
r5 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000040)={0x80, 0x43}, 0x10)
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x24}}, 0x24000001)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@newlink={0x34, 0x10, 0x49920d862a92153b, 0x800, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1b400}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}}, 0x0)

3.823960648s ago: executing program 1 (id=231):
r0 = socket(0x80000000000000a, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000100)=ANY=[], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/wireless\x00')
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x20000}}, {{0xa, 0x0, 0x40000, @dev={0xfe, 0x80, '\x00', 0x26}}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108)

3.668095602s ago: executing program 4 (id=232):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001340)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int]}}, 0x0, 0x2a}, 0x20) (async)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001340)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int]}}, 0x0, 0x2a}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000e7ff0000000001000000000000000007002d000000000000"], 0x50) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000e7ff0000000001000000000000000007002d000000000000"], 0x50)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000100)=0x7ff, 0x4)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000200), 0x4)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000040)={'team0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x50a10, 0x33822}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x480c1}, 0x240408d0) (async)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x50a10, 0x33822}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x480c1}, 0x240408d0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000005000000000000000200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000f10000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000850000006d000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xed41d0969ec4053c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000005000000000000000200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000f10000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000850000006d000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xed41d0969ec4053c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0x5, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xa, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000ffcebfb854b64d00000000000095000000000000009500000000000000950000000000000018400000feffffff48000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x3, 0x1b, &(0x7f00000004c0)=""/214, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x9, 0x0, 0x13, 0x10, &(0x7f0000000200), 0x10}, 0x80)
capset(&(0x7f0000000180)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
r6 = semget$private(0x0, 0x1, 0x40)
semctl$SETVAL(r6, 0x0, 0x10, 0x0)
socket$igmp(0x2, 0x3, 0x2) (async)
r7 = socket$igmp(0x2, 0x3, 0x2)
accept4(r7, &(0x7f0000000300)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, &(0x7f0000000240)=0x80, 0x80800) (async)
accept4(r7, &(0x7f0000000300)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, &(0x7f0000000240)=0x80, 0x80800)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x1b, 0x61, 0xe3, 0x8, 0x16d0, 0x10a9, 0x3052, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xff, 0x7f, 0x88, 0x0, [], [{{0x9, 0x5, 0x3, 0x2}}]}}]}}]}}, 0x0)

3.528200212s ago: executing program 0 (id=233):
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=@newlink={0x34, 0x10, 0x3, 0x0, 0x0, {0x0, 0x0, 0x0, r1, 0x28000}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x2}, 0x80)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x28, r3, 0x4c1dad3e3d6a7499, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000080}, 0x2400c000)
sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000940)={0x2fc, r3, 0x800, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x4c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}]}]}, @TIPC_NLA_NODE={0x260, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x73, 0x3, "9bd0dae32e266582fd818b727e993bfd9df548f8ec5f7af0ccbfb2b20b9c95fd52972e9ad7075fb747c4e9e1968fb0f18c63635df5ba61dc443f87720b6048bb28199426742fea934a87b07733c46d1809e14091961464d55a771e2c259f103773a5733d32f0c22936a905cab822fb"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_NODE_ID={0xb3, 0x3, "85a3c7617721c6dd6d7970635fd1500fba345a9ea02f7f2797aa654c916d126d39c67db608eee5bb526f4914647d0a4a70a9ec030eb8941bca12d1cfc907e11085b273cbafeea6318426236fb98897d98c9dd7ce65805f6d3081138a0da0d10823785e6a5d50d0bd6da295ca29d26fc911d890b48df4e76b6ff1a1b9df6b8f4230f3402d58aa5cd5c5cd8b577e2c58aae5c4eac429e902ed1414fa117c4b45f5689a33f3e2133e82dbd430aad539cc"}, @TIPC_NLA_NODE_ID={0x60, 0x3, "17d1569cdea1d36f053729dd6bc51d2efa4e335cd2604811a57304410741cb7ae94985ada229c903511df07696f8699f58c0ed2b2f192a1ba2c42c1f8d227509b75a94d2c7e4b3d113f04fe79dc28c2194ebd5b46cd6d163c9e1493e"}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "0f14242856d48059f5cf64d4355d46af445f9a3079c3c1dd38244b73af2a0c"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xffff}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_NODE_ID={0x6c, 0x3, "388e3f61cf29d3c198c477d321c7679bf7a8f95c28726dd7f9d60c3a5e80a868b959e7a1b8a87366d0e79624948cd987fcec479d4001247873103e758b44f77b7b2259afb4130004882b1ec44c2e32d7a45a18b4d64d2e450a311ae89b7819f518e47d5c4c2e9072"}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x80000000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3ff}]}]}, 0x2fc}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="5800000002010101800000000000000002000001080008c1d58abc57941889400000000208001540"], 0x58}, 0x1, 0x0, 0x0, 0x20000044}, 0x24000000)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x101142, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r6, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000773ec8f3969729e91faef0fbfdee720754a2b859140df3b5994a9a912c7c8b3874f44609007b9b9f08000000994e7fbc2779e8c461dc2a72c60a34cebcfb9eb3716f6093644ca31ff4e742d7db1da5b106eb2a8a976731e14a48d23c19b000b2351f51d88f88c3b01adc89a07e4dd8efd7b1cb948302c6e45a7ce9093b6582ce8e5121ef58cc01c25ed825742e366fc8e9fd7facdeedc22800f73e9f032c67b54561ec18f2bff9bf7764be437f4bd181f9b92bf068c7bfde", @ANYRES32, @ANYRES32=r6, @ANYRES32=0x0, @ANYRES32], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x1b, &(0x7f0000000400)=ANY=[@ANYRES32=r6, @ANYRES16=r7, @ANYBLOB="0000000000820000b702000014000000b7030000000000008500001083000000bf090000000000fb550900"/59, @ANYRES32=r7, @ANYRES64=r6, @ANYRES32=r7, @ANYRESHEX=0x0, @ANYBLOB, @ANYRES8=r7], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xed41d0969ec4053c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x8800}, 0x240400c1)
unshare(0x22020600)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40003, 0x0)
vmsplice(r9, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000680)='svcrdma_small_wrch_err\x00', r8, 0x0, 0xfffffffffffffffe}, 0x18)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00'})
r10 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000fd8000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x54, 0xc, 0x0, 0x0)

2.940000014s ago: executing program 2 (id=234):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xd}, 0x0)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, &(0x7f00000003c0)=@chain)
keyctl$link(0x8, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x66, &(0x7f0000000240)=0x23, 0x4)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
add_key$user(0x0, 0x0, &(0x7f00000000c0), 0x0, 0xfffffffffffffffd)
r1 = syz_open_dev$vim2m(&(0x7f0000000080), 0x1, 0x2)
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000240)=0x1) (fail_nth: 3)

1.891635498s ago: executing program 2 (id=235):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000340)=0x4, 0x12)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x3, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_emit_ethernet(0xae, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c20000000180c200000086dd6001012000783afffe80000000000000001a00000000000000000040000000000000000aa78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96489269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af180200010000000004002600040000000101fe906d17efe300"/168], 0x0)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, 0x0, 0x0)
ioctl$sock_bt_hci(r6, 0x400448c9, 0x0)
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000180)}], 0x1, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))

1.852693907s ago: executing program 4 (id=236):
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x8, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000280)='./file1\x00')
getpid()
quotactl_fd$Q_SETQUOTA(0xffffffffffffffff, 0xffffffff80000800, 0xee01, &(0x7f00000000c0)={0x0, 0x1, 0x2000200000a95c, 0x9, 0x4000000201, 0x80000001, 0x48cd, 0xfffffffffffffffc, 0x800000df})
mkdirat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.log\x00', 0x1812c1, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', &(0x7f0000000180), 0x6000)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xfffffffffffffff5]}, 0x8, 0x0)
readv(r0, &(0x7f00000002c0), 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @multicast2}}, 0x0, 0x0, 0x400, 0x0, 0x32}, 0x9c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
getpgid(r2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
semget$private(0x0, 0x207, 0x480)

1.763716922s ago: executing program 3 (id=237):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x80000000005, 0x100000001000087}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001300a7cc4a372eaf541d002007000000", @ANYRES32=r1, @ANYBLOB="00000000100000001c001a80", @ANYRES16], 0x44}}, 0x0)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x40, &(0x7f0000000100)=0x200, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), 0x0, 0x75, r3}, 0x38)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000380)={r3, &(0x7f0000000540)='@', &(0x7f0000000080)=@tcp, 0x2}, 0x20)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'veth1_to_bridge\x00', <r5=>0x0})
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_emit_ethernet(0x5e, &(0x7f0000000340)={@local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "cb763e", 0x28, 0x3a, 0xff, @dev={0xfe, 0x80, '\x00', 0x41}, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, [{0x18, 0x3, "007c4de20278ab96e88afd5c976b4c1ce4a945b1aafb"}]}}}}}}, 0x0)
ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000000540)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private1, 0x0, 0x0, 0x0, 0x480, 0x0, 0x840000, r5})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', <r7=>0x0})
r8 = socket$inet6_mptcp(0xa, 0x1, 0x106)
process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000440)=""/146, 0x92}], 0x1, 0x0)
ioctl$sock_inet6_SIOCADDRT(r8, 0x890b, &(0x7f0000000540)={@private2, @rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, r7})
syz_emit_ethernet(0x42, &(0x7f0000001540)={@local, @random="86082b9827c1", @void, {@ipv6={0x86dd, @udp={0x6, 0x6, '{&N', 0xc, 0x11, 0x0, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {[], {0x4e22, 0x4e23, 0xc, 0x0, @gue={{0x1, 0x0, 0x1, 0x6, 0x0, @void}}}}}}}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-generic)\x00'}, 0x58)

1.526578528s ago: executing program 0 (id=238):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0xffffffffffffff1a, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
chown(0x0, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="1400000016000b63d25a80648c25940121", 0x11}, {&(0x7f0000000280)="e26248", 0x3}], 0x2}, 0x40050)
r2 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f00000002c0)={0x42, 0xfffffffe}, 0x10)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
sendmmsg$inet(r3, &(0x7f0000006740)=[{{0x0, 0x0, 0x0}}], 0x1, 0x81)
r4 = socket$tipc(0x1e, 0x2, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x8000000000)
r7 = eventfd2(0x0, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r6, 0x4018aebd, &(0x7f00000001c0)={0x1, r7})
ioctl$KVM_HYPERV_EVENTFD(r6, 0x4018aebd, &(0x7f0000000080)={0x3})
ioctl$KVM_HYPERV_EVENTFD(r6, 0x4018aebd, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1, 0x2}, 0x10)
r8 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r8, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
bind$tipc(r4, 0x0, 0x0)
bind(r2, &(0x7f00000000c0)=@isdn={0x22, 0x7, 0xf8, 0x2, 0x4}, 0x80)
close(r4)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d83a3710520c72288db50102030109021200010000000009"], 0x0)

508.672091ms ago: executing program 2 (id=239):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)=ANY=[@ANYRESDEC=0x0], 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000140)={<r3=>0x0, @in6={{0xa, 0x4e23, 0x80, @private1={0xfc, 0x1, '\x00', 0x1}, 0x1}}, 0x800, 0x4, 0x8, 0xb43, 0xffffff81}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000200)={r3, 0x5a, "4f2288d8d678ffea4d5fae96fd981f1e52b9adb8849d6dedf195b28ceefe5c868b06559693dc925699bb1c7b12d6c79c4dd9e0a0a4b619db21ea8d314dec34d23b7c8fde081d20dc7deb440020a13b2a6fe471fdbc8874780127"}, &(0x7f00000000c0)=0x62)
r4 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x10000, @empty}, 0x1c)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r4, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000540)={&(0x7f0000000400)={0x110, r5, 0x10, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0xfffffffa, 0x23}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @key_params=[@NL80211_ATTR_KEY_DEFAULT_TYPES={0x1c, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_ATTR_KEY_SEQ={0x12, 0xa, "42c8235ea7905fe8cd9a45317f2e"}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x18, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x8, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}], @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @key_params=[@NL80211_ATTR_KEY_DEFAULT_TYPES={0x24, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x24, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}], @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x6}]}, 0x110}, 0x1, 0x0, 0x0, 0x4000}, 0xa3e10cec46c86f34)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x29, 0x40, 0x0, 0x60)
getsockopt(r1, 0xff, 0x1, 0x0, &(0x7f0000000040))
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r7, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
bind$packet(r7, &(0x7f0000000000)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @link_local}, 0x14)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xd40, 0xd2)
r12 = socket$phonet_pipe(0x23, 0x5, 0x2)
listen(r12, 0x4)
mount$9p_fd(0x0, &(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), 0x200000, &(0x7f0000000000)={'trans=fd,', {'rfdno', 0x3d, r11}, 0x2c, {'wfdno', 0x3d, r12}})
sendto$inet6(r8, &(0x7f0000000280)="02042c08ec074802010e0200c52cf7c20675e005b02f0805000000000000007c63112002faffffff3066090cb600c5471d130a66321a54e7df305f80a88161b6fd8f24286a57c3feffff", 0x4a, 0x20004001, 0x0, 0x0)

13.943694ms ago: executing program 1 (id=240):
r0 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000080), 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000001c0)=0x68bb)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000600)=ANY=[@ANYRESOCT=r1, @ANYRESOCT=r0, @ANYRESHEX, @ANYRES8=r0], 0x50)
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r5 = socket$inet6(0xa, 0x1, 0x8010000000000084)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r6, 0xc0105500, &(0x7f0000000040)={0x0, 0xe, 0x1, 0x7, 0x0, 0x7, 0x0})
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000240)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r8, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x48, r8, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x300, 0x2, 0x0, 0x0, {0xfffffffffffffffd, 0x1f51, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2}, 0x1, 0xe, 0x1f}}]}, 0x48}}, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021bc0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000900003808c000080080003400000000280000b807c000180090001006c617374000000006c000280080001400000000508000140000000090c0002", @ANYRESOCT=r3], 0x140}, 0x1, 0x0, 0x0, 0x4000804}, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r11 = syz_open_dev$cec(&(0x7f0000000200), 0x0, 0x0)
ioctl$CEC_S_MODE(r11, 0x40046109, &(0x7f00000003c0)=0x87)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e21, @empty}}, 0x0, 0x0, 0x317, 0x1, 0x34, 0x209}, 0x9c)

0s ago: executing program 3 (id=241):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
bind$packet(r0, &(0x7f0000000000)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendto$inet6(r0, &(0x7f0000000280)="02042c08ec074802010e0200c52cf7c20675e005b02f0800eb2b2ff0dac8897c6b112002faffffff3066090cb600c5471d130a66321a54e7df305f80a88161b6fd8f24286a57c3feffff", 0xfc13, 0x800, 0x0, 0x2f)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.61' (ED25519) to the list of known hosts.
[   77.093311][ T5824] cgroup: Unknown subsys name 'net'
[   77.205661][ T5824] cgroup: Unknown subsys name 'cpuset'
[   77.214455][ T5824] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   78.619186][ T5824] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   82.541685][ T5839] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   82.550269][ T5839] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   82.562670][ T5839] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   82.571071][ T5839] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   82.582394][ T5839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   82.665062][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   82.673447][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   82.681203][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   82.693020][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   82.702414][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   82.727695][ T5156] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   82.735754][ T5156] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   82.746143][ T5156] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   82.755239][ T5156] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   82.763487][ T5156] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   82.771470][ T5156] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   82.814655][ T5848] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   82.825826][   T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   82.833340][ T5848] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   82.842970][   T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   82.850424][ T5848] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   82.860593][   T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   82.892625][ T5853] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   82.904741][ T5853] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   82.915177][ T5853] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   83.316787][ T5836] chnl_net:caif_netlink_parms(): no params data found
[   83.547289][ T5847] chnl_net:caif_netlink_parms(): no params data found
[   83.645403][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.652834][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.660273][ T5836] bridge_slave_0: entered allmulticast mode
[   83.668174][ T5836] bridge_slave_0: entered promiscuous mode
[   83.743623][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.750798][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.758607][ T5836] bridge_slave_1: entered allmulticast mode
[   83.766534][ T5836] bridge_slave_1: entered promiscuous mode
[   83.799601][ T5841] chnl_net:caif_netlink_parms(): no params data found
[   83.840171][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   83.861614][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   83.926380][ T5850] chnl_net:caif_netlink_parms(): no params data found
[   83.984596][ T5844] chnl_net:caif_netlink_parms(): no params data found
[   84.014408][ T5836] team0: Port device team_slave_0 added
[   84.059674][ T5836] team0: Port device team_slave_1 added
[   84.066400][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.074962][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.084082][ T5847] bridge_slave_0: entered allmulticast mode
[   84.091085][ T5847] bridge_slave_0: entered promiscuous mode
[   84.099323][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.106703][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.114027][ T5847] bridge_slave_1: entered allmulticast mode
[   84.121012][ T5847] bridge_slave_1: entered promiscuous mode
[   84.308539][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[   84.315590][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.342614][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   84.357117][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.373801][ T5850] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.380970][ T5850] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.390380][ T5850] bridge_slave_0: entered allmulticast mode
[   84.397778][ T5850] bridge_slave_0: entered promiscuous mode
[   84.407209][ T5850] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.414457][ T5850] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.421611][ T5850] bridge_slave_1: entered allmulticast mode
[   84.428825][ T5850] bridge_slave_1: entered promiscuous mode
[   84.436029][ T5841] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.443316][ T5841] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.451117][ T5841] bridge_slave_0: entered allmulticast mode
[   84.458381][ T5841] bridge_slave_0: entered promiscuous mode
[   84.466665][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[   84.477993][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.504605][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   84.519589][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.573084][ T5841] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.580284][ T5841] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.588319][ T5841] bridge_slave_1: entered allmulticast mode
[   84.595844][ T5841] bridge_slave_1: entered promiscuous mode
[   84.633120][ T5853] Bluetooth: hci0: command tx timeout
[   84.651715][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.659695][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.669280][ T5844] bridge_slave_0: entered allmulticast mode
[   84.676814][ T5844] bridge_slave_0: entered promiscuous mode
[   84.717623][ T5841] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.746025][ T5847] team0: Port device team_slave_0 added
[   84.755457][ T5847] team0: Port device team_slave_1 added
[   84.762623][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.769777][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.779163][ T5844] bridge_slave_1: entered allmulticast mode
[   84.786504][ T5844] bridge_slave_1: entered promiscuous mode
[   84.797781][ T5850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.807008][ T5853] Bluetooth: hci1: command tx timeout
[   84.810353][ T5850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.823780][ T5841] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.839216][ T5836] hsr_slave_0: entered promiscuous mode
[   84.846246][ T5836] hsr_slave_1: entered promiscuous mode
[   84.872309][ T5853] Bluetooth: hci3: command tx timeout
[   84.952677][ T5853] Bluetooth: hci2: command tx timeout
[   84.952685][ T5156] Bluetooth: hci4: command tx timeout
[   84.995331][ T5841] team0: Port device team_slave_0 added
[   85.003905][ T5841] team0: Port device team_slave_1 added
[   85.022855][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.029950][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.059112][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.071496][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.079085][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.105477][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.119709][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.131675][ T5850] team0: Port device team_slave_0 added
[   85.165672][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.187904][ T5850] team0: Port device team_slave_1 added
[   85.246037][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.253428][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.279711][ T5841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.312801][ T5844] team0: Port device team_slave_0 added
[   85.332345][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.339416][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.366551][ T5841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.399436][ T5844] team0: Port device team_slave_1 added
[   85.424981][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.431982][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.458457][ T5850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.496574][ T5847] hsr_slave_0: entered promiscuous mode
[   85.503317][ T5847] hsr_slave_1: entered promiscuous mode
[   85.509431][ T5847] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   85.517417][ T5847] Cannot create hsr debugfs directory
[   85.539014][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.546373][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.572891][ T5850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.617332][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.624388][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.651293][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.713930][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.720891][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.748247][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.777501][ T5850] hsr_slave_0: entered promiscuous mode
[   85.784259][ T5850] hsr_slave_1: entered promiscuous mode
[   85.790968][ T5850] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   85.799072][ T5850] Cannot create hsr debugfs directory
[   85.876516][ T5841] hsr_slave_0: entered promiscuous mode
[   85.882920][ T5841] hsr_slave_1: entered promiscuous mode
[   85.888917][ T5841] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   85.897140][ T5841] Cannot create hsr debugfs directory
[   85.990692][ T5844] hsr_slave_0: entered promiscuous mode
[   85.998193][ T5844] hsr_slave_1: entered promiscuous mode
[   86.004586][ T5844] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.012736][ T5844] Cannot create hsr debugfs directory
[   86.247831][ T5836] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   86.260769][ T5836] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   86.308778][ T5836] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   86.320822][ T5836] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   86.530139][ T5847] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   86.541884][ T5847] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   86.558942][ T5847] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   86.586184][ T5847] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   86.649911][ T5850] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   86.664772][ T5850] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   86.686337][ T5850] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   86.712168][ T5853] Bluetooth: hci0: command tx timeout
[   86.725337][ T5850] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   86.797325][ T5841] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   86.804538][   T92] cfg80211: failed to load regulatory.db
[   86.837144][ T5841] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   86.847743][ T5841] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   86.864317][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.872369][ T5853] Bluetooth: hci1: command tx timeout
[   86.900517][ T5841] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   86.920606][ T5836] 8021q: adding VLAN 0 to HW filter on device team0
[   86.958428][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.965794][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.974375][ T5853] Bluetooth: hci3: command tx timeout
[   87.019182][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.026392][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.033935][ T5853] Bluetooth: hci4: command tx timeout
[   87.043507][ T5853] Bluetooth: hci2: command tx timeout
[   87.064932][ T5844] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   87.078754][ T5844] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   87.088936][ T5844] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   87.100982][ T5844] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   87.209060][ T5836] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   87.305753][ T5850] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.382310][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.409370][ T5850] 8021q: adding VLAN 0 to HW filter on device team0
[   87.461939][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.469236][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.497237][ T5847] 8021q: adding VLAN 0 to HW filter on device team0
[   87.524035][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.531225][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.551701][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.576011][ T5841] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.588336][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.595538][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.642997][  T151] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.650124][  T151] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.677399][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0
[   87.689160][ T5844] 8021q: adding VLAN 0 to HW filter on device team0
[   87.731333][ T5841] 8021q: adding VLAN 0 to HW filter on device team0
[   87.745856][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.753051][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.778313][ T5850] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   87.798427][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.805736][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.840603][  T151] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.847895][  T151] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.886744][  T151] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.894007][  T151] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.978383][ T5836] veth0_vlan: entered promiscuous mode
[   88.067339][ T5836] veth1_vlan: entered promiscuous mode
[   88.237292][ T5836] veth0_macvtap: entered promiscuous mode
[   88.266636][ T5836] veth1_macvtap: entered promiscuous mode
[   88.288196][ T5850] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.356276][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.409277][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.457659][ T5836] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.492201][ T5836] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.501044][ T5836] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.523078][ T5836] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.611232][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.684683][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.792692][ T5853] Bluetooth: hci0: command tx timeout
[   88.859548][ T4478] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.878043][ T4478] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.904890][ T5847] veth0_vlan: entered promiscuous mode
[   88.953500][ T5853] Bluetooth: hci1: command tx timeout
[   88.981518][ T5847] veth1_vlan: entered promiscuous mode
[   88.991892][  T151] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.995413][ T5844] veth0_vlan: entered promiscuous mode
[   89.009186][  T151] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.032492][ T5853] Bluetooth: hci3: command tx timeout
[   89.039780][ T5844] veth1_vlan: entered promiscuous mode
[   89.053785][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.123744][ T5853] Bluetooth: hci2: command tx timeout
[   89.123921][ T5156] Bluetooth: hci4: command tx timeout
[   89.141973][ T5836] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   89.154490][ T5850] veth0_vlan: entered promiscuous mode
[   89.206640][ T5850] veth1_vlan: entered promiscuous mode
[   89.305638][ T5841] veth0_vlan: entered promiscuous mode
[   89.337181][ T5841] veth1_vlan: entered promiscuous mode
[   89.379630][ T5841] veth0_macvtap: entered promiscuous mode
[   89.394572][ T5841] veth1_macvtap: entered promiscuous mode
[   89.413854][ T5844] veth0_macvtap: entered promiscuous mode
[   89.430323][ T5844] veth1_macvtap: entered promiscuous mode
[   89.530164][ T5850] veth0_macvtap: entered promiscuous mode
[   89.537715][ T5847] veth0_macvtap: entered promiscuous mode
[   90.009936][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.079249][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.092798][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.102324][ T5850] veth1_macvtap: entered promiscuous mode
[   90.111970][ T5847] veth1_macvtap: entered promiscuous mode
[   90.156641][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.205359][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.229262][ T5844] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.272079][ T5844] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.281034][ T5844] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.295354][ T5844] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.324843][ T5841] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.339487][ T5841] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.350260][ T5841] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.362225][ T5841] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.365552][ T5959] FAULT_INJECTION: forcing a failure.
[   90.365552][ T5959] name failslab, interval 1, probability 0, space 0, times 1
[   90.385806][ T5959] CPU: 1 UID: 0 PID: 5959 Comm: syz.0.7 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   90.385832][ T5959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   90.385850][ T5959] Call Trace:
[   90.385861][ T5959]  <TASK>
[   90.385870][ T5959]  dump_stack_lvl+0x189/0x250
[   90.385901][ T5959]  ? __pfx____ratelimit+0x10/0x10
[   90.385922][ T5959]  ? __pfx_dump_stack_lvl+0x10/0x10
[   90.385942][ T5959]  ? __pfx__printk+0x10/0x10
[   90.385968][ T5959]  ? __pfx___might_resched+0x10/0x10
[   90.385999][ T5959]  should_fail_ex+0x414/0x560
[   90.386023][ T5959]  should_failslab+0xa8/0x100
[   90.386046][ T5959]  __kmalloc_noprof+0xcb/0x4f0
[   90.386063][ T5959]  ? security_msg_msg_alloc+0x45/0x330
[   90.386091][ T5959]  security_msg_msg_alloc+0x45/0x330
[   90.386119][ T5959]  load_msg+0x2b2/0x3b0
[   90.386152][ T5959]  do_mq_timedsend+0x372/0xa90
[   90.386173][ T5959]  ? ksys_write+0x1cb/0x250
[   90.386197][ T5959]  ? __pfx_do_mq_timedsend+0x10/0x10
[   90.386222][ T5959]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   90.386260][ T5959]  __x64_sys_mq_timedsend+0x172/0x210
[   90.386283][ T5959]  ? __pfx___x64_sys_mq_timedsend+0x10/0x10
[   90.386301][ T5959]  ? rcu_is_watching+0x15/0xb0
[   90.386328][ T5959]  ? do_syscall_64+0xbe/0x3b0
[   90.386349][ T5959]  do_syscall_64+0xfa/0x3b0
[   90.386368][ T5959]  ? lockdep_hardirqs_on+0x9c/0x150
[   90.386388][ T5959]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.386406][ T5959]  ? clear_bhb_loop+0x60/0xb0
[   90.386429][ T5959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.386447][ T5959] RIP: 0033:0x7f0adeb8ebe9
[   90.386468][ T5959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.386482][ T5959] RSP: 002b:00007f0adf929038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2
[   90.386502][ T5959] RAX: ffffffffffffffda RBX: 00007f0adedb5fa0 RCX: 00007f0adeb8ebe9
[   90.386515][ T5959] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   90.386525][ T5959] RBP: 00007f0adf929090 R08: 0000000000000000 R09: 0000000000000000
[   90.386536][ T5959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.386547][ T5959] R13: 00007f0adedb6038 R14: 00007f0adedb5fa0 R15: 00007ffdb04e4048
[   90.386575][ T5959]  </TASK>
[   90.390643][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.631378][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.658412][ T5847] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.667937][ T5847] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.682056][ T5847] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.690902][ T5847] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.712925][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.812656][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.822438][ T5964] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[   90.874652][ T5156] Bluetooth: hci0: command tx timeout
[   91.033537][ T5156] Bluetooth: hci1: command tx timeout
[   91.048420][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.135324][ T5156] Bluetooth: hci3: command tx timeout
[   91.193395][ T5853] Bluetooth: hci2: command tx timeout
[   91.199518][ T5156] Bluetooth: hci4: command tx timeout
[   91.262290][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.435051][ T5850] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.447003][ T5850] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.471875][ T5850] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.492171][ T5850] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.663727][  T151] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.671597][  T151] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.808245][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.831102][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.865209][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.877111][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.157944][  T151] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.178365][  T151] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.203574][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.240163][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.426006][  T151] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.439211][  T151] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.501151][ T5974] binder: BINDER_SET_CONTEXT_MGR already set
[   92.530781][ T5974] binder: 5973:5974 ioctl 4018620d 200000004a80 returned -16
[   92.550980][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.567000][ T5976] loop6: detected capacity change from 0 to 524287999
[   92.582598][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.690568][ T5981] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   92.710516][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.737731][  T151] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.882845][  T151] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.950412][ T5984] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   93.728841][ T5981] mkiss: ax0: crc mode is auto.
[   94.445513][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   94.521804][ T5990] warning: `syz.1.12' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   94.642602][ T6004] autofs: Unknown parameter 'group_id'
[   94.712729][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   94.732928][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   94.748345][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   95.161840][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   95.402348][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   96.654367][ T6024] Zero length message leads to an empty skb
[   96.875170][ T6031] FAULT_INJECTION: forcing a failure.
[   96.875170][ T6031] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   96.888741][ T6031] CPU: 0 UID: 0 PID: 6031 Comm: syz.0.22 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[   96.888763][ T6031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   96.888773][ T6031] Call Trace:
[   96.888780][ T6031]  <TASK>
[   96.888787][ T6031]  dump_stack_lvl+0x189/0x250
[   96.888811][ T6031]  ? __pfx____ratelimit+0x10/0x10
[   96.888832][ T6031]  ? __pfx_dump_stack_lvl+0x10/0x10
[   96.888853][ T6031]  ? __pfx__printk+0x10/0x10
[   96.888869][ T6031]  ? __might_fault+0xb0/0x130
[   96.888884][ T6031]  should_fail_ex+0x414/0x560
[   96.888898][ T6031]  _copy_from_iter+0x1db/0x16f0
[   96.888913][ T6031]  ? rcu_is_watching+0x15/0xb0
[   96.888925][ T6031]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[   96.888936][ T6031]  ? __pfx__copy_from_iter+0x10/0x10
[   96.888949][ T6031]  ? __build_skb_around+0x257/0x3e0
[   96.888966][ T6031]  ? netlink_sendmsg+0x642/0xb30
[   96.888979][ T6031]  ? skb_put+0x11b/0x210
[   96.888995][ T6031]  netlink_sendmsg+0x6b2/0xb30
[   96.889014][ T6031]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.889032][ T6031]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   96.889042][ T6031]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.889056][ T6031]  __sock_sendmsg+0x21c/0x270
[   96.889070][ T6031]  sock_write_iter+0x258/0x330
[   96.889082][ T6031]  ? __pfx_sock_write_iter+0x10/0x10
[   96.889098][ T6031]  ? bpf_lsm_file_permission+0x9/0x20
[   96.889109][ T6031]  ? security_file_permission+0x75/0x290
[   96.889125][ T6031]  vfs_write+0x54b/0xa90
[   96.889137][ T6031]  ? __pfx_sock_write_iter+0x10/0x10
[   96.889148][ T6031]  ? __pfx_vfs_write+0x10/0x10
[   96.889162][ T6031]  ? __fget_files+0x2a/0x420
[   96.889178][ T6031]  ksys_write+0x145/0x250
[   96.889189][ T6031]  ? __pfx_ksys_write+0x10/0x10
[   96.889211][ T6031]  do_syscall_64+0xfa/0x3b0
[   96.889223][ T6031]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.889233][ T6031]  ? asm_sysvec_call_function_single+0x1a/0x20
[   96.889243][ T6031]  ? clear_bhb_loop+0x60/0xb0
[   96.889255][ T6031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.889264][ T6031] RIP: 0033:0x7f0adeb8ebe9
[   96.889274][ T6031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.889282][ T6031] RSP: 002b:00007f0adcdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   96.889293][ T6031] RAX: ffffffffffffffda RBX: 00007f0adedb6090 RCX: 00007f0adeb8ebe9
[   96.889300][ T6031] RDX: 000000000000001c RSI: 0000200000000040 RDI: 0000000000000005
[   96.889306][ T6031] RBP: 00007f0adcdf6090 R08: 0000000000000000 R09: 0000000000000000
[   96.889312][ T6031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.889318][ T6031] R13: 00007f0adedb6128 R14: 00007f0adedb6090 R15: 00007ffdb04e4048
[   96.889333][ T6031]  </TASK>
[   98.426700][ T6044] fuse: Unknown parameter 'ÿÿÿÿ³N[ƒÆë&‰øȬ.å”’f[+ÖÕ¥½¡?R8q'°NZPâ@²q ·s0xffffffffffffffffÿÿÿÿ18446744073709551615ÿÿÿÿ'
[   98.602658][   T92] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   98.753314][ T6049] fuse: Bad value for 'user_id'
[   98.758333][ T6049] fuse: Bad value for 'user_id'
[   98.793453][   T92] usb 3-1: Using ep0 maxpacket: 16
[   98.807714][   T92] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[   98.837216][   T92] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   98.876079][   T92] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[   98.895919][   T92] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   98.916634][   T92] usb 3-1: Product: syz
[   98.920858][   T92] usb 3-1: Manufacturer: syz
[   98.942240][   T92] usb 3-1: SerialNumber: syz
[  100.006801][   T92] usb 3-1: config 0 descriptor??
[  100.019208][   T92] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  100.028674][   T92] em28xx 3-1:0.0: Audio interface 0 found (Vendor Class)
[  100.692239][   T10] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  100.744803][   T92] em28xx 3-1:0.0: unknown em28xx chip ID (254)
[  100.876726][ T5896] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  100.904635][   T10] usb 5-1: config 0 has no interfaces?
[  100.931286][   T10] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  100.951597][   T92] em28xx 3-1:0.0: Config register raw data: 0xfffffffb
[  100.972746][   T10] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  100.981077][   T92] em28xx 3-1:0.0: AC97 chip type couldn't be determined
[  101.002280][   T92] em28xx 3-1:0.0: No AC97 audio processor
[  101.012083][   T10] usb 5-1: Manufacturer: syz
[  101.039227][   T10] usb 5-1: config 0 descriptor??
[  101.046408][ T5896] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  101.060291][   T92] usb 3-1: USB disconnect, device number 2
[  101.077362][ T5896] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.093126][   T92] em28xx 3-1:0.0: Disconnecting em28xx
[  101.137408][ T5896] usb 4-1: config 0 descriptor??
[  101.160408][   T92] em28xx 3-1:0.0: Freeing device
[  101.394232][ T5896] udl 4-1:0.0: [drm] Unrecognized vendor firmware descriptor
[  101.580174][ T5896] [drm:udl_init] *ERROR* Selecting channel failed
[  101.817158][ T6092] FAULT_INJECTION: forcing a failure.
[  101.817158][ T6092] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.841455][ T5896] [drm] Initialized udl 0.0.1 for 4-1:0.0 on minor 2
[  101.849226][ T5896] [drm] Initialized udl on minor 2
[  101.859674][ T6092] CPU: 0 UID: 0 PID: 6092 Comm: syz.1.41 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  101.859698][ T6092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  101.859709][ T6092] Call Trace:
[  101.859716][ T6092]  <TASK>
[  101.859724][ T6092]  dump_stack_lvl+0x189/0x250
[  101.859751][ T6092]  ? __pfx____ratelimit+0x10/0x10
[  101.859771][ T6092]  ? __pfx_dump_stack_lvl+0x10/0x10
[  101.859792][ T6092]  ? __pfx__printk+0x10/0x10
[  101.859830][ T6092]  should_fail_ex+0x414/0x560
[  101.859855][ T6092]  _copy_to_user+0x31/0xb0
[  101.859884][ T6092]  simple_read_from_buffer+0xe1/0x170
[  101.859910][ T6092]  proc_fail_nth_read+0x1df/0x250
[  101.859944][ T6092]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  101.859970][ T6092]  ? rw_verify_area+0x258/0x650
[  101.859998][ T6092]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  101.860023][ T6092]  vfs_read+0x200/0x980
[  101.860054][ T6092]  ? __pfx___mutex_lock+0x10/0x10
[  101.860076][ T6092]  ? __pfx_vfs_read+0x10/0x10
[  101.860103][ T6092]  ? __fget_files+0x2a/0x420
[  101.860127][ T6092]  ? __fget_files+0x3a0/0x420
[  101.860145][ T6092]  ? __fget_files+0x2a/0x420
[  101.860174][ T6092]  ksys_read+0x145/0x250
[  101.860194][ T6092]  ? __pfx_ksys_read+0x10/0x10
[  101.860209][ T6092]  ? rcu_is_watching+0x15/0xb0
[  101.860236][ T6092]  ? do_syscall_64+0xbe/0x3b0
[  101.860262][ T6092]  do_syscall_64+0xfa/0x3b0
[  101.860285][ T6092]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.860303][ T6092]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  101.860321][ T6092]  ? clear_bhb_loop+0x60/0xb0
[  101.860345][ T6092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.860363][ T6092] RIP: 0033:0x7f9dfc18d5fc
[  101.860381][ T6092] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  101.860397][ T6092] RSP: 002b:00007f9dfcf46030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  101.860420][ T6092] RAX: ffffffffffffffda RBX: 00007f9dfc3b5fa0 RCX: 00007f9dfc18d5fc
[  101.860435][ T6092] RDX: 000000000000000f RSI: 00007f9dfcf460a0 RDI: 0000000000000006
[  101.860447][ T6092] RBP: 00007f9dfcf46090 R08: 0000000000000000 R09: 000000000000000a
[  101.860458][ T6092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.860470][ T6092] R13: 00007f9dfc3b6038 R14: 00007f9dfc3b5fa0 R15: 00007ffe20e011c8
[  101.860502][ T6092]  </TASK>
[  102.095962][ T5896] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  102.104995][ T5896] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  102.126448][ T5896] usb 4-1: USB disconnect, device number 2
[  102.146034][   T92] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  102.333896][ T6097] syz.2.42: attempt to access beyond end of device
[  102.333896][ T6097] loop2: rw=0, sector=16, nr_sectors = 2 limit=0
[  102.562228][ T6099] =======================================================
[  102.562228][ T6099] WARNING: The mand mount option has been deprecated and
[  102.562228][ T6099]          and is ignored by this kernel. Remove the mand
[  102.562228][ T6099]          option from the mount to silence this warning.
[  102.562228][ T6099] =======================================================
[  102.575170][ T5896] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  102.597187][    C1] vkms_vblank_simulate: vblank timer overrun
[  102.892677][ T5896] usb 4-1: Using ep0 maxpacket: 32
[  102.905849][ T5896] usb 4-1: unable to get BOS descriptor or descriptor too short
[  102.916863][ T5896] usb 4-1: too many configurations: 230, using maximum allowed: 8
[  103.477668][ T5935] usb 5-1: USB disconnect, device number 2
[  103.662235][ T5896] usb 4-1: unable to read config index 0 descriptor/start: -61
[  103.669890][ T5896] usb 4-1: can't read configurations, error -61
[  103.843888][ T5896] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  107.977275][   T92] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  108.306043][   T92] usb 3-1: Using ep0 maxpacket: 16
[  108.333222][   T92] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  108.387811][   T92] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  108.421317][   T92] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  108.438391][   T92] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.456020][   T92] usb 3-1: Product: syz
[  108.460869][   T92] usb 3-1: Manufacturer: syz
[  108.465853][   T92] usb 3-1: SerialNumber: syz
[  108.477493][   T92] usb 3-1: config 0 descriptor??
[  108.496245][   T92] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  108.530747][   T92] em28xx 3-1:0.0: Audio interface 0 found (Vendor Class)
[  108.673482][   T92] em28xx 3-1:0.0: unknown em28xx chip ID (0)
[  108.694048][   T92] em28xx 3-1:0.0: Config register raw data: 0xfffffffb
[  108.713941][   T92] em28xx 3-1:0.0: AC97 chip type couldn't be determined
[  108.795932][ T6170] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  109.381172][   T92] em28xx 3-1:0.0: No AC97 audio processor
[  109.507917][   T92] usb 3-1: USB disconnect, device number 3
[  109.597876][   T92] em28xx 3-1:0.0: Disconnecting em28xx
[  109.616746][   T92] em28xx 3-1:0.0: Freeing device
[  109.812784][ T6174] Bluetooth: MGMT ver 1.23
[  110.997041][ T6180] netlink: 4 bytes leftover after parsing attributes in process `syz.3.63'.
[  111.232101][ T1208] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  111.446134][ T1208] usb 1-1: Using ep0 maxpacket: 16
[  111.473298][ T1208] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  111.694810][ T1208] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  111.701637][ T6188] FAULT_INJECTION: forcing a failure.
[  111.701637][ T6188] name failslab, interval 1, probability 0, space 0, times 0
[  111.743822][ T1208] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  111.762278][ T6188] CPU: 1 UID: 0 PID: 6188 Comm: syz.1.65 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  111.762306][ T6188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  111.762317][ T6188] Call Trace:
[  111.762325][ T6188]  <TASK>
[  111.762333][ T6188]  dump_stack_lvl+0x189/0x250
[  111.762360][ T6188]  ? __pfx____ratelimit+0x10/0x10
[  111.762380][ T6188]  ? __pfx_dump_stack_lvl+0x10/0x10
[  111.762402][ T6188]  ? __pfx__printk+0x10/0x10
[  111.762432][ T6188]  ? __pfx___might_resched+0x10/0x10
[  111.762459][ T6188]  should_fail_ex+0x414/0x560
[  111.762485][ T6188]  should_failslab+0xa8/0x100
[  111.762507][ T6188]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  111.762527][ T6188]  ? __alloc_skb+0x112/0x2d0
[  111.762557][ T6188]  __alloc_skb+0x112/0x2d0
[  111.762587][ T6188]  tcp_stream_alloc_skb+0x3d/0x340
[  111.762615][ T6188]  tcp_sendmsg_locked+0xf3c/0x5650
[  111.762641][ T6188]  ? __lock_acquire+0xab9/0xd20
[  111.762712][ T6188]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  111.762731][ T6188]  ? __local_bh_enable_ip+0x12d/0x1c0
[  111.762755][ T6188]  ? __local_bh_enable_ip+0x12d/0x1c0
[  111.762789][ T6188]  tcp_sendmsg+0x2f/0x50
[  111.762812][ T6188]  __sock_sendmsg+0x19c/0x270
[  111.762838][ T6188]  __sys_sendto+0x3bd/0x520
[  111.762867][ T6188]  ? __pfx___sys_sendto+0x10/0x10
[  111.762890][ T6188]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  111.762926][ T6188]  ? __fget_files+0x3a0/0x420
[  111.762959][ T6188]  ? ksys_write+0x22a/0x250
[  111.762977][ T6188]  ? __pfx_ksys_write+0x10/0x10
[  111.762992][ T6188]  ? rcu_is_watching+0x15/0xb0
[  111.763019][ T6188]  __x64_sys_sendto+0xde/0x100
[  111.763049][ T6188]  do_syscall_64+0xfa/0x3b0
[  111.763069][ T6188]  ? lockdep_hardirqs_on+0x9c/0x150
[  111.763094][ T6188]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.763110][ T6188]  ? clear_bhb_loop+0x60/0xb0
[  111.763131][ T6188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.763150][ T6188] RIP: 0033:0x7f9dfc18ebe9
[  111.763167][ T6188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.763182][ T6188] RSP: 002b:00007f9dfcf46038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  111.763201][ T6188] RAX: ffffffffffffffda RBX: 00007f9dfc3b5fa0 RCX: 00007f9dfc18ebe9
[  111.763215][ T6188] RDX: 000000000000059a RSI: 0000200000000580 RDI: 0000000000000003
[  111.763225][ T6188] RBP: 00007f9dfcf46090 R08: 0000000000000000 R09: 0000000000000000
[  111.763235][ T6188] R10: 0000000010008095 R11: 0000000000000246 R12: 0000000000000001
[  111.763245][ T6188] R13: 00007f9dfc3b6038 R14: 00007f9dfc3b5fa0 R15: 00007ffe20e011c8
[  111.763272][ T6188]  </TASK>
[  112.030087][ T1208] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.039123][ T1208] usb 1-1: Product: syz
[  112.043381][ T1208] usb 1-1: Manufacturer: syz
[  112.048221][ T1208] usb 1-1: SerialNumber: syz
[  112.064763][ T1208] usb 1-1: config 0 descriptor??
[  112.089255][ T1208] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  112.098731][ T1208] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[  112.502637][ T6192] netlink: 'syz.3.67': attribute type 4 has an invalid length.
[  112.539241][ T6192] netlink: 144 bytes leftover after parsing attributes in process `syz.3.67'.
[  112.674736][ T6200] random: crng reseeded on system resumption
[  112.687640][ T1208] em28xx 1-1:0.0: unknown em28xx chip ID (254)
[  113.095617][ T5896] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  113.264655][ T1208] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[  113.281710][ T1208] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[  113.317181][ T1208] em28xx 1-1:0.0: No AC97 audio processor
[  113.324114][ T6207] x_tables: duplicate underflow at hook 1
[  113.482147][ T5896] usb 2-1: Using ep0 maxpacket: 16
[  113.496780][ T5896] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  113.516660][ T5896] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  113.557704][ T1208] usb 1-1: USB disconnect, device number 2
[  113.564465][ T5896] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  113.573420][ T1208] em28xx 1-1:0.0: Disconnecting em28xx
[  113.597857][ T1208] em28xx 1-1:0.0: Freeing device
[  113.612370][ T5896] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.658148][ T5896] usb 2-1: Product: syz
[  113.672962][ T5896] usb 2-1: Manufacturer: syz
[  113.678455][ T5896] usb 2-1: SerialNumber: syz
[  114.070707][ T5896] usb 2-1: config 0 descriptor??
[  114.117604][ T5896] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  114.208418][ T5896] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[  114.411322][ T6216] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  114.772731][ T5896] em28xx 2-1:0.0: unknown em28xx chip ID (254)
[  114.992264][ T5896] em28xx 2-1:0.0: Config register raw data: 0xfffffffb
[  115.013266][ T5896] em28xx 2-1:0.0: AC97 chip type couldn't be determined
[  115.020269][ T5896] em28xx 2-1:0.0: No AC97 audio processor
[  115.802527][ T5896] usb 2-1: USB disconnect, device number 2
[  115.841258][ T5896] em28xx 2-1:0.0: Disconnecting em28xx
[  115.872387][ T5896] em28xx 2-1:0.0: Freeing device
[  117.555643][ T6245] 9pnet_fd: Insufficient options for proto=fd
[  117.562818][ T6245] netlink: 8 bytes leftover after parsing attributes in process `syz.1.77'.
[  118.299051][ T6252] x_tables: duplicate underflow at hook 1
[  118.404536][ T6254] syz.3.81: attempt to access beyond end of device
[  118.404536][ T6254] loop3: rw=0, sector=16, nr_sectors = 2 limit=0
[  119.113261][ T6252] vivid-007: kernel_thread() failed
[  120.619065][ T6273] netlink: 12 bytes leftover after parsing attributes in process `syz.4.89'.
[  120.644021][ T6273] netlink: 12 bytes leftover after parsing attributes in process `syz.4.89'.
[  121.629475][   T43] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  121.637883][ T6281] syz.1.86: attempt to access beyond end of device
[  121.637883][ T6281] loop1: rw=0, sector=16, nr_sectors = 2 limit=0
[  121.957811][   T43] usb 1-1: Using ep0 maxpacket: 16
[  122.016227][   T43] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  122.048611][   T43] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  122.066997][ T6287] FAULT_INJECTION: forcing a failure.
[  122.066997][ T6287] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.081066][ T6288] netlink: 348 bytes leftover after parsing attributes in process `syz.2.91'.
[  122.090894][ T6288] netlink: 16 bytes leftover after parsing attributes in process `syz.2.91'.
[  122.198613][ T6287] CPU: 1 UID: 0 PID: 6287 Comm: syz.3.92 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  122.198640][ T6287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  122.198650][ T6287] Call Trace:
[  122.198657][ T6287]  <TASK>
[  122.198665][ T6287]  dump_stack_lvl+0x189/0x250
[  122.198698][ T6287]  ? __pfx____ratelimit+0x10/0x10
[  122.198720][ T6287]  ? __pfx_dump_stack_lvl+0x10/0x10
[  122.198738][ T6287]  ? __pfx__printk+0x10/0x10
[  122.198761][ T6287]  ? __might_fault+0xb0/0x130
[  122.198790][ T6287]  should_fail_ex+0x414/0x560
[  122.198811][ T6287]  _copy_from_user+0x2d/0xb0
[  122.198834][ T6287]  ___sys_sendmsg+0x158/0x2a0
[  122.198865][ T6287]  ? __pfx____sys_sendmsg+0x10/0x10
[  122.198927][ T6287]  ? __fget_files+0x2a/0x420
[  122.198945][ T6287]  ? __fget_files+0x3a0/0x420
[  122.198975][ T6287]  __x64_sys_sendmsg+0x19b/0x260
[  122.199007][ T6287]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  122.199043][ T6287]  ? __pfx_ksys_write+0x10/0x10
[  122.199058][ T6287]  ? rcu_is_watching+0x15/0xb0
[  122.199083][ T6287]  ? do_syscall_64+0xbe/0x3b0
[  122.199118][ T6287]  do_syscall_64+0xfa/0x3b0
[  122.199137][ T6287]  ? lockdep_hardirqs_on+0x9c/0x150
[  122.199156][ T6287]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.199174][ T6287]  ? clear_bhb_loop+0x60/0xb0
[  122.199197][ T6287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.199214][ T6287] RIP: 0033:0x7fc135d8ebe9
[  122.199231][ T6287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.199247][ T6287] RSP: 002b:00007fc136b17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.199267][ T6287] RAX: ffffffffffffffda RBX: 00007fc135fb5fa0 RCX: 00007fc135d8ebe9
[  122.199280][ T6287] RDX: 0000000000000080 RSI: 0000200000000380 RDI: 0000000000000003
[  122.199291][ T6287] RBP: 00007fc136b17090 R08: 0000000000000000 R09: 0000000000000000
[  122.199302][ T6287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.199313][ T6287] R13: 00007fc135fb6038 R14: 00007fc135fb5fa0 R15: 00007ffc14de5988
[  122.199345][ T6287]  </TASK>
[  122.200522][   T43] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  122.421200][   T43] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  122.539701][   T43] usb 1-1: Product: syz
[  122.544539][   T43] usb 1-1: Manufacturer: syz
[  122.549736][   T43] usb 1-1: SerialNumber: syz
[  122.563239][   T43] usb 1-1: config 0 descriptor??
[  122.569007][   T43] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  122.569039][   T43] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[  122.683750][ T6296] netlink: 'syz.1.93': attribute type 39 has an invalid length.
[  122.752296][ T6299] x_tables: duplicate underflow at hook 1
[  124.160575][ T1208] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  124.172112][   T43] em28xx 1-1:0.0: unknown em28xx chip ID (254)
[  124.300308][   T43] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[  124.307769][   T43] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[  124.523062][   T43] em28xx 1-1:0.0: No AC97 audio processor
[  124.542082][ T1208] usb 4-1: Using ep0 maxpacket: 16
[  124.552284][ T1208] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  124.690396][   T43] usb 1-1: USB disconnect, device number 3
[  124.697700][   T43] em28xx 1-1:0.0: Disconnecting em28xx
[  124.704090][ T1208] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  124.728019][   T43] em28xx 1-1:0.0: Freeing device
[  124.736849][ T6321] random: crng reseeded on system resumption
[  124.759010][ T1208] usb 4-1: New USB device found, idVendor=0582, idProduct=87d1, bcdDevice=f8.e7
[  125.422204][ T1208] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.430354][ T1208] usb 4-1: Product: syz
[  125.445464][ T1208] usb 4-1: Manufacturer: syz
[  125.450854][ T1208] usb 4-1: SerialNumber: syz
[  125.979359][ T6331] netlink: 212360 bytes leftover after parsing attributes in process `syz.0.104'.
[  126.630345][ T1208] usb 4-1: USB disconnect, device number 5
[  126.837424][ T5991] udevd[5991]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:4.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  127.234144][ T6348] x_tables: duplicate underflow at hook 1
[  127.343458][ T6353] FAULT_INJECTION: forcing a failure.
[  127.343458][ T6353] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.398118][ T6353] CPU: 0 UID: 0 PID: 6353 Comm: syz.2.112 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  127.398146][ T6353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  127.398157][ T6353] Call Trace:
[  127.398165][ T6353]  <TASK>
[  127.398174][ T6353]  dump_stack_lvl+0x189/0x250
[  127.398202][ T6353]  ? __pfx____ratelimit+0x10/0x10
[  127.398226][ T6353]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.398257][ T6353]  ? __pfx__printk+0x10/0x10
[  127.398281][ T6353]  ? __might_fault+0xb0/0x130
[  127.398311][ T6353]  should_fail_ex+0x414/0x560
[  127.398336][ T6353]  _copy_from_user+0x2d/0xb0
[  127.398364][ T6353]  ___sys_sendmsg+0x158/0x2a0
[  127.398396][ T6353]  ? __pfx____sys_sendmsg+0x10/0x10
[  127.398462][ T6353]  ? __fget_files+0x2a/0x420
[  127.398483][ T6353]  ? __fget_files+0x3a0/0x420
[  127.398514][ T6353]  __x64_sys_sendmsg+0x19b/0x260
[  127.398546][ T6353]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  127.398585][ T6353]  ? __pfx_ksys_write+0x10/0x10
[  127.398601][ T6353]  ? rcu_is_watching+0x15/0xb0
[  127.398627][ T6353]  ? do_syscall_64+0xbe/0x3b0
[  127.398653][ T6353]  do_syscall_64+0xfa/0x3b0
[  127.398672][ T6353]  ? lockdep_hardirqs_on+0x9c/0x150
[  127.398692][ T6353]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.398711][ T6353]  ? clear_bhb_loop+0x60/0xb0
[  127.398734][ T6353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.398752][ T6353] RIP: 0033:0x7f4924b8ebe9
[  127.398769][ T6353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.398785][ T6353] RSP: 002b:00007f4925a01038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  127.398805][ T6353] RAX: ffffffffffffffda RBX: 00007f4924db5fa0 RCX: 00007f4924b8ebe9
[  127.398820][ T6353] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  127.398832][ T6353] RBP: 00007f4925a01090 R08: 0000000000000000 R09: 0000000000000000
[  127.398844][ T6353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.398856][ T6353] R13: 00007f4924db6038 R14: 00007f4924db5fa0 R15: 00007ffe0d90f218
[  127.398887][ T6353]  </TASK>
[  129.058785][ T6380] FAULT_INJECTION: forcing a failure.
[  129.058785][ T6380] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  129.108304][ T6380] CPU: 0 UID: 0 PID: 6380 Comm: syz.0.121 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  129.108334][ T6380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  129.108345][ T6380] Call Trace:
[  129.108352][ T6380]  <TASK>
[  129.108361][ T6380]  dump_stack_lvl+0x189/0x250
[  129.108388][ T6380]  ? __pfx____ratelimit+0x10/0x10
[  129.108408][ T6380]  ? __pfx_dump_stack_lvl+0x10/0x10
[  129.108426][ T6380]  ? __pfx__printk+0x10/0x10
[  129.108449][ T6380]  ? __might_fault+0xb0/0x130
[  129.108477][ T6380]  should_fail_ex+0x414/0x560
[  129.108500][ T6380]  _copy_from_user+0x2d/0xb0
[  129.108525][ T6380]  video_usercopy+0x354/0x14f0
[  129.108558][ T6380]  ? smk_tskacc+0x2fc/0x370
[  129.108586][ T6380]  ? __pfx___video_do_ioctl+0x10/0x10
[  129.108613][ T6380]  ? __pfx_video_usercopy+0x10/0x10
[  129.108636][ T6380]  ? smack_file_ioctl+0x24a/0x340
[  129.108670][ T6380]  ? __fget_files+0x2a/0x420
[  129.108690][ T6380]  ? __fget_files+0x3a0/0x420
[  129.108714][ T6380]  v4l2_ioctl+0x18a/0x1e0
[  129.108740][ T6380]  ? __pfx_v4l2_ioctl+0x10/0x10
[  129.108766][ T6380]  __se_sys_ioctl+0xfc/0x170
[  129.108795][ T6380]  do_syscall_64+0xfa/0x3b0
[  129.108815][ T6380]  ? lockdep_hardirqs_on+0x9c/0x150
[  129.108835][ T6380]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.108853][ T6380]  ? clear_bhb_loop+0x60/0xb0
[  129.108875][ T6380]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.108892][ T6380] RIP: 0033:0x7f0adeb8ebe9
[  129.108909][ T6380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.108924][ T6380] RSP: 002b:00007f0adcdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  129.108944][ T6380] RAX: ffffffffffffffda RBX: 00007f0adedb6090 RCX: 00007f0adeb8ebe9
[  129.108956][ T6380] RDX: 0000200000000100 RSI: 0000000040045612 RDI: 0000000000000003
[  129.108968][ T6380] RBP: 00007f0adcdf6090 R08: 0000000000000000 R09: 0000000000000000
[  129.108980][ T6380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.108991][ T6380] R13: 00007f0adedb6128 R14: 00007f0adedb6090 R15: 00007ffdb04e4048
[  129.109021][ T6380]  </TASK>
[  129.362526][ T6379] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  129.682823][ T6385] autofs: Unknown parameter 'group_id'
[  129.718198][ T6391] x_tables: duplicate underflow at hook 1
[  129.785835][ T6393] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  129.936154][ T6393] mmap: syz.2.125 (6393) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  131.788887][   T30] audit: type=1804 audit(1755027262.781:2): pid=6410 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.129" name="/newroot/24/file0" dev="tmpfs" ino=140 res=1 errno=0
[  132.898344][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  132.921428][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  133.558704][ T6425] netlink: 8 bytes leftover after parsing attributes in process `syz.1.135'.
[  134.618659][ T6448] random: crng reseeded on system resumption
[  135.229157][ T6459] netlink: 4 bytes leftover after parsing attributes in process `syz.1.142'.
[  137.500860][ T6474] netlink: 28 bytes leftover after parsing attributes in process `syz.1.149'.
[  137.795963][ T6475] netlink: 4 bytes leftover after parsing attributes in process `syz.0.148'.
[  138.831764][ T6483] netlink: 'syz.2.152': attribute type 39 has an invalid length.
[  138.905043][ T6484] netlink: 348 bytes leftover after parsing attributes in process `syz.2.152'.
[  138.936396][ T6484] netlink: 16 bytes leftover after parsing attributes in process `syz.2.152'.
[  139.133993][ T6486] syz.1.154 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  145.880766][ T6520] netlink: 'syz.2.161': attribute type 9 has an invalid length.
[  145.888916][ T6520] netlink: 'syz.2.161': attribute type 6 has an invalid length.
[  146.317302][ T5985] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  147.072733][ T5985] usb 3-1: too many configurations: 9, using maximum allowed: 8
[  147.103165][ T5985] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  147.116824][ T5985] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  147.128302][ T5985] usb 3-1: config 0 interface 0 has no altsetting 0
[  147.150498][ T5985] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  147.193618][ T5985] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  147.220717][ T5985] usb 3-1: config 0 interface 0 has no altsetting 0
[  147.373305][ T5985] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  147.969379][   T43] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  147.979006][ T5985] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  147.994829][ T5985] usb 3-1: config 0 interface 0 has no altsetting 0
[  148.005649][ T5985] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  148.132298][ T5985] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  148.175292][ T5985] usb 3-1: config 0 interface 0 has no altsetting 0
[  148.192502][   T43] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  148.213853][   T43] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  148.226413][ T5985] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  148.247066][ T5985] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  148.266095][   T43] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  148.278703][   T43] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.289474][ T5985] usb 3-1: config 0 interface 0 has no altsetting 0
[  148.329500][ T5985] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  148.424304][ T6527] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  148.459258][ T5985] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  148.552640][ T5985] usb 3-1: config 0 interface 0 has no altsetting 0
[  148.577652][   T43] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  148.624626][ T5985] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  148.669103][ T5985] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  148.771793][ T5985] usb 3-1: config 0 interface 0 has no altsetting 0
[  148.842510][ T5985] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  148.864439][ T5985] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  149.190191][ T5985] usb 3-1: config 0 interface 0 has no altsetting 0
[  149.412562][ T5985] usb 3-1: string descriptor 0 read error: -71
[  149.419439][ T5985] usb 3-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  149.445187][   T43] usb 1-1: USB disconnect, device number 4
[  149.481326][ T5985] usb 3-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  149.660270][ T5985] usb 3-1: config 0 descriptor??
[  149.673998][ T5985] usb 3-1: can't set config #0, error -71
[  149.743142][ T6549] random: crng reseeded on system resumption
[  149.748189][ T5985] usb 3-1: USB disconnect, device number 4
[  151.382310][ T6566] FAULT_INJECTION: forcing a failure.
[  151.382310][ T6566] name failslab, interval 1, probability 0, space 0, times 0
[  151.395372][ T6566] CPU: 0 UID: 0 PID: 6566 Comm: syz.4.176 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  151.395397][ T6566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  151.395407][ T6566] Call Trace:
[  151.395414][ T6566]  <TASK>
[  151.395419][ T6566]  dump_stack_lvl+0x189/0x250
[  151.395436][ T6566]  ? __pfx____ratelimit+0x10/0x10
[  151.395447][ T6566]  ? __pfx_dump_stack_lvl+0x10/0x10
[  151.395458][ T6566]  ? __pfx__printk+0x10/0x10
[  151.395479][ T6566]  should_fail_ex+0x414/0x560
[  151.395493][ T6566]  should_failslab+0xa8/0x100
[  151.395506][ T6566]  __kmalloc_cache_noprof+0x70/0x3d0
[  151.395523][ T6566]  ? bpf_raw_tp_link_attach+0x25f/0x6b0
[  151.395537][ T6566]  bpf_raw_tp_link_attach+0x25f/0x6b0
[  151.395551][ T6566]  ? __pfx_bpf_raw_tp_link_attach+0x10/0x10
[  151.395568][ T6566]  ? __fget_files+0x2a/0x420
[  151.395585][ T6566]  bpf_raw_tracepoint_open+0x19b/0x1f0
[  151.395603][ T6566]  __sys_bpf+0x3cd/0x860
[  151.395618][ T6566]  ? __pfx___sys_bpf+0x10/0x10
[  151.395641][ T6566]  ? irqentry_exit+0x74/0x90
[  151.395658][ T6566]  __x64_sys_bpf+0x7c/0x90
[  151.395672][ T6566]  do_syscall_64+0xfa/0x3b0
[  151.395684][ T6566]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.395693][ T6566]  ? asm_sysvec_call_function_single+0x1a/0x20
[  151.395704][ T6566]  ? clear_bhb_loop+0x60/0xb0
[  151.395716][ T6566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.395725][ T6566] RIP: 0033:0x7f293f58ebe9
[  151.395735][ T6566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.395744][ T6566] RSP: 002b:00007f293d7d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  151.395756][ T6566] RAX: ffffffffffffffda RBX: 00007f293f7b6090 RCX: 00007f293f58ebe9
[  151.395763][ T6566] RDX: 0000000000000010 RSI: 0000200000000100 RDI: 0000000000000011
[  151.395769][ T6566] RBP: 00007f293d7d5090 R08: 0000000000000000 R09: 0000000000000000
[  151.395775][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.395781][ T6566] R13: 00007f293f7b6128 R14: 00007f293f7b6090 R15: 00007ffda0a488c8
[  151.395797][ T6566]  </TASK>
[  152.242282][ T6572] netlink: 36 bytes leftover after parsing attributes in process `syz.0.175'.
[  156.111854][ T6617] FAULT_INJECTION: forcing a failure.
[  156.111854][ T6617] name failslab, interval 1, probability 0, space 0, times 0
[  156.174690][ T6617] CPU: 1 UID: 0 PID: 6617 Comm: syz.2.188 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  156.174715][ T6617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  156.174725][ T6617] Call Trace:
[  156.174732][ T6617]  <TASK>
[  156.174740][ T6617]  dump_stack_lvl+0x189/0x250
[  156.174765][ T6617]  ? __pfx____ratelimit+0x10/0x10
[  156.174785][ T6617]  ? __pfx_dump_stack_lvl+0x10/0x10
[  156.174805][ T6617]  ? __pfx__printk+0x10/0x10
[  156.174830][ T6617]  ? __pfx___might_resched+0x10/0x10
[  156.174850][ T6617]  ? fs_reclaim_acquire+0x7d/0x100
[  156.174874][ T6617]  should_fail_ex+0x414/0x560
[  156.174897][ T6617]  should_failslab+0xa8/0x100
[  156.174918][ T6617]  __kmalloc_noprof+0xcb/0x4f0
[  156.174934][ T6617]  ? sock_kmalloc+0xd6/0x160
[  156.174955][ T6617]  sock_kmalloc+0xd6/0x160
[  156.174975][ T6617]  ____sys_sendmsg+0x1b5/0x830
[  156.175009][ T6617]  ? __pfx_____sys_sendmsg+0x10/0x10
[  156.175046][ T6617]  ? import_iovec+0x74/0xa0
[  156.175082][ T6617]  ___sys_sendmsg+0x21f/0x2a0
[  156.175112][ T6617]  ? __pfx____sys_sendmsg+0x10/0x10
[  156.175176][ T6617]  ? __fget_files+0x2a/0x420
[  156.175196][ T6617]  ? __fget_files+0x3a0/0x420
[  156.175229][ T6617]  __sys_sendmmsg+0x227/0x430
[  156.175263][ T6617]  ? __pfx___sys_sendmmsg+0x10/0x10
[  156.175289][ T6617]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  156.175337][ T6617]  ? ksys_write+0x22a/0x250
[  156.175357][ T6617]  ? __pfx_ksys_write+0x10/0x10
[  156.175372][ T6617]  ? rcu_is_watching+0x15/0xb0
[  156.175398][ T6617]  __x64_sys_sendmmsg+0xa0/0xc0
[  156.175429][ T6617]  do_syscall_64+0xfa/0x3b0
[  156.175451][ T6617]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.175470][ T6617]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  156.175487][ T6617]  ? clear_bhb_loop+0x60/0xb0
[  156.175509][ T6617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.175527][ T6617] RIP: 0033:0x7f4924b8ebe9
[  156.175545][ T6617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.175561][ T6617] RSP: 002b:00007f4925a01038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  156.175581][ T6617] RAX: ffffffffffffffda RBX: 00007f4924db5fa0 RCX: 00007f4924b8ebe9
[  156.175595][ T6617] RDX: 0000000000000002 RSI: 000020000000a440 RDI: 0000000000000003
[  156.175607][ T6617] RBP: 00007f4925a01090 R08: 0000000000000000 R09: 0000000000000000
[  156.175619][ T6617] R10: 0000000008008801 R11: 0000000000000246 R12: 0000000000000001
[  156.175631][ T6617] R13: 00007f4924db6038 R14: 00007f4924db5fa0 R15: 00007ffe0d90f218
[  156.175665][ T6617]  </TASK>
[  159.425564][ T6645] FAULT_INJECTION: forcing a failure.
[  159.425564][ T6645] name failslab, interval 1, probability 0, space 0, times 0
[  159.491582][ T6645] CPU: 0 UID: 0 PID: 6645 Comm: syz.3.196 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  159.491608][ T6645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  159.491619][ T6645] Call Trace:
[  159.491627][ T6645]  <TASK>
[  159.491635][ T6645]  dump_stack_lvl+0x189/0x250
[  159.491659][ T6645]  ? __pfx____ratelimit+0x10/0x10
[  159.491678][ T6645]  ? __pfx_dump_stack_lvl+0x10/0x10
[  159.491698][ T6645]  ? __pfx__printk+0x10/0x10
[  159.491728][ T6645]  ? __pfx___might_resched+0x10/0x10
[  159.491748][ T6645]  ? fs_reclaim_acquire+0x7d/0x100
[  159.491776][ T6645]  should_fail_ex+0x414/0x560
[  159.491801][ T6645]  should_failslab+0xa8/0x100
[  159.491824][ T6645]  kmem_cache_alloc_noprof+0x73/0x3c0
[  159.491842][ T6645]  ? alloc_empty_file+0x55/0x1d0
[  159.491892][ T6645]  alloc_empty_file+0x55/0x1d0
[  159.491917][ T6645]  path_openat+0x107/0x3830
[  159.491942][ T6645]  ? arch_stack_walk+0xfc/0x150
[  159.491990][ T6645]  ? kasan_save_track+0x4f/0x80
[  159.492014][ T6645]  ? kasan_save_track+0x3e/0x80
[  159.492036][ T6645]  ? __kasan_slab_alloc+0x6c/0x80
[  159.492053][ T6645]  ? getname_flags+0xb8/0x540
[  159.492073][ T6645]  ? __pfx_path_openat+0x10/0x10
[  159.492096][ T6645]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.492134][ T6645]  do_filp_open+0x1fa/0x410
[  159.492158][ T6645]  ? __lock_acquire+0xab9/0xd20
[  159.492178][ T6645]  ? __pfx_do_filp_open+0x10/0x10
[  159.492225][ T6645]  ? _raw_spin_unlock+0x28/0x50
[  159.492252][ T6645]  ? alloc_fd+0x64c/0x6c0
[  159.492283][ T6645]  do_sys_openat2+0x121/0x1c0
[  159.492310][ T6645]  ? __pfx_do_sys_openat2+0x10/0x10
[  159.492335][ T6645]  ? ksys_write+0x22a/0x250
[  159.492355][ T6645]  ? __pfx_ksys_write+0x10/0x10
[  159.492370][ T6645]  ? rcu_is_watching+0x15/0xb0
[  159.492394][ T6645]  __x64_sys_openat+0x138/0x170
[  159.492424][ T6645]  do_syscall_64+0xfa/0x3b0
[  159.492442][ T6645]  ? lockdep_hardirqs_on+0x9c/0x150
[  159.492461][ T6645]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.492479][ T6645]  ? clear_bhb_loop+0x60/0xb0
[  159.492502][ T6645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.492519][ T6645] RIP: 0033:0x7fc135d8ebe9
[  159.492536][ T6645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.492551][ T6645] RSP: 002b:00007fc133ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  159.492570][ T6645] RAX: ffffffffffffffda RBX: 00007fc135fb6090 RCX: 00007fc135d8ebe9
[  159.492584][ T6645] RDX: 0000000000000000 RSI: 0000200000000480 RDI: ffffffffffffff9c
[  159.492598][ T6645] RBP: 00007fc133ff6090 R08: 0000000000000000 R09: 0000000000000000
[  159.492610][ T6645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.492620][ T6645] R13: 00007fc135fb6128 R14: 00007fc135fb6090 R15: 00007ffc14de5988
[  159.492650][ T6645]  </TASK>
[  159.939150][    C0] vcan0: j1939_tp_rxtimer: 0xffff888054829800: rx timeout, send abort
[  160.448603][    C0] vcan0: j1939_tp_rxtimer: 0xffff888054829800: abort rx timeout. Force session deactivation
[  160.894744][ T6657] binder: BINDER_SET_CONTEXT_MGR already set
[  160.932628][ T6657] binder: 6656:6657 ioctl 4018620d 200000004a80 returned -16
[  162.397302][ T6666] batman_adv: batadv0: Adding interface: ipvlan0
[  162.457421][ T6666] batman_adv: batadv0: The MTU of interface ipvlan0 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  162.506648][ T6666] batman_adv: batadv0: Interface activated: ipvlan0
[  164.315853][ T6701] FAULT_INJECTION: forcing a failure.
[  164.315853][ T6701] name failslab, interval 1, probability 0, space 0, times 0
[  164.328776][ T6701] CPU: 0 UID: 0 PID: 6701 Comm: syz.1.210 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  164.328799][ T6701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  164.328807][ T6701] Call Trace:
[  164.328821][ T6701]  <TASK>
[  164.328827][ T6701]  dump_stack_lvl+0x189/0x250
[  164.328843][ T6701]  ? __pfx____ratelimit+0x10/0x10
[  164.328855][ T6701]  ? __pfx_dump_stack_lvl+0x10/0x10
[  164.328866][ T6701]  ? __pfx__printk+0x10/0x10
[  164.328887][ T6701]  should_fail_ex+0x414/0x560
[  164.328901][ T6701]  should_failslab+0xa8/0x100
[  164.328914][ T6701]  kmem_cache_alloc_noprof+0x73/0x3c0
[  164.328924][ T6701]  ? dst_alloc+0x105/0x170
[  164.328933][ T6701]  ? fib_lookup+0x76/0x440
[  164.328945][ T6701]  dst_alloc+0x105/0x170
[  164.328957][ T6701]  ip_route_output_key_hash_rcu+0x1482/0x23a0
[  164.328974][ T6701]  ? ip_route_output_key_hash+0xde/0x2e0
[  164.328985][ T6701]  ip_route_output_key_hash+0x1b9/0x2e0
[  164.328996][ T6701]  ? __lock_acquire+0xab9/0xd20
[  164.329006][ T6701]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  164.329026][ T6701]  ip_route_output_flow+0x2a/0x150
[  164.329041][ T6701]  ? security_sk_classify_flow+0x70/0x180
[  164.329053][ T6701]  raw_sendmsg+0x1038/0x18b0
[  164.329063][ T6701]  ? preempt_schedule_irq+0xb5/0x150
[  164.329082][ T6701]  ? __pfx_raw_sendmsg+0x10/0x10
[  164.329110][ T6701]  ? sock_rps_record_flow+0x19/0x410
[  164.329123][ T6701]  ? inet_sendmsg+0x2f4/0x370
[  164.329136][ T6701]  __sock_sendmsg+0x19c/0x270
[  164.329150][ T6701]  ____sys_sendmsg+0x52d/0x830
[  164.329170][ T6701]  ? __pfx_____sys_sendmsg+0x10/0x10
[  164.329190][ T6701]  ? import_iovec+0x74/0xa0
[  164.329206][ T6701]  ___sys_sendmsg+0x21f/0x2a0
[  164.329223][ T6701]  ? __pfx____sys_sendmsg+0x10/0x10
[  164.329258][ T6701]  ? __fget_files+0x2a/0x420
[  164.329276][ T6701]  ? __fget_files+0x3a0/0x420
[  164.329292][ T6701]  __sys_sendmmsg+0x227/0x430
[  164.329311][ T6701]  ? __pfx___sys_sendmmsg+0x10/0x10
[  164.329332][ T6701]  ? preempt_schedule_irq+0xde/0x150
[  164.329358][ T6701]  __x64_sys_sendmmsg+0xa0/0xc0
[  164.329375][ T6701]  do_syscall_64+0xfa/0x3b0
[  164.329387][ T6701]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.329396][ T6701]  ? asm_sysvec_call_function_single+0x1a/0x20
[  164.329406][ T6701]  ? clear_bhb_loop+0x60/0xb0
[  164.329419][ T6701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.329428][ T6701] RIP: 0033:0x7f9dfc18ebe9
[  164.329439][ T6701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.329447][ T6701] RSP: 002b:00007f9dfcf25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  164.329458][ T6701] RAX: ffffffffffffffda RBX: 00007f9dfc3b6090 RCX: 00007f9dfc18ebe9
[  164.329466][ T6701] RDX: 0000000000068000 RSI: 0000200000000f40 RDI: 0000000000000004
[  164.329472][ T6701] RBP: 00007f9dfcf25090 R08: 0000000000000000 R09: 0000000000000000
[  164.329478][ T6701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  164.329484][ T6701] R13: 00007f9dfc3b6128 R14: 00007f9dfc3b6090 R15: 00007ffe20e011c8
[  164.329500][ T6701]  </TASK>
[  166.761245][ T6732] FAULT_INJECTION: forcing a failure.
[  166.761245][ T6732] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  166.871606][ T6732] CPU: 1 UID: 0 PID: 6732 Comm: syz.2.218 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  166.871633][ T6732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  166.871645][ T6732] Call Trace:
[  166.871652][ T6732]  <TASK>
[  166.871659][ T6732]  dump_stack_lvl+0x189/0x250
[  166.871684][ T6732]  ? __pfx____ratelimit+0x10/0x10
[  166.871700][ T6732]  ? __pfx_dump_stack_lvl+0x10/0x10
[  166.871718][ T6732]  ? __pfx__printk+0x10/0x10
[  166.871740][ T6732]  ? __might_fault+0xb0/0x130
[  166.871761][ T6732]  should_fail_ex+0x414/0x560
[  166.871775][ T6732]  _copy_from_user+0x2d/0xb0
[  166.871790][ T6732]  userfaultfd_ioctl+0x85e/0x4bc0
[  166.871806][ T6732]  ? kasan_save_track+0x4f/0x80
[  166.871821][ T6732]  ? kasan_save_free_info+0x46/0x50
[  166.871833][ T6732]  ? __kasan_slab_free+0x62/0x70
[  166.871841][ T6732]  ? kfree+0x18e/0x440
[  166.871855][ T6732]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  166.871865][ T6732]  ? security_file_ioctl+0xcb/0x2d0
[  166.871875][ T6732]  ? __se_sys_ioctl+0x47/0x170
[  166.871889][ T6732]  ? do_syscall_64+0xfa/0x3b0
[  166.871899][ T6732]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.871914][ T6732]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  166.871935][ T6732]  ? do_vfs_ioctl+0xf37/0x1990
[  166.871951][ T6732]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  166.871978][ T6732]  ? kasan_quarantine_put+0xdd/0x220
[  166.872010][ T6732]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  166.872028][ T6732]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  166.872047][ T6732]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[  166.872057][ T6732]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  166.872067][ T6732]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  166.872077][ T6732]  ? smack_log+0xef/0x3f0
[  166.872092][ T6732]  ? __pfx_smack_log+0x10/0x10
[  166.872106][ T6732]  ? smk_access+0x14c/0x4e0
[  166.872123][ T6732]  ? smk_tskacc+0x2fc/0x370
[  166.872139][ T6732]  ? smack_file_ioctl+0x2a9/0x340
[  166.872150][ T6732]  ? __pfx_smack_file_ioctl+0x10/0x10
[  166.872164][ T6732]  ? __fget_files+0x2a/0x420
[  166.872175][ T6732]  ? __fget_files+0x3a0/0x420
[  166.872185][ T6732]  ? __fget_files+0x2a/0x420
[  166.872198][ T6732]  ? bpf_lsm_file_ioctl+0x9/0x20
[  166.872210][ T6732]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  166.872226][ T6732]  __se_sys_ioctl+0xfc/0x170
[  166.872242][ T6732]  do_syscall_64+0xfa/0x3b0
[  166.872252][ T6732]  ? lockdep_hardirqs_on+0x9c/0x150
[  166.872263][ T6732]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.872273][ T6732]  ? clear_bhb_loop+0x60/0xb0
[  166.872291][ T6732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.872301][ T6732] RIP: 0033:0x7f4924b8ebe9
[  166.872312][ T6732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.872320][ T6732] RSP: 002b:00007f4925a01038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  166.872332][ T6732] RAX: ffffffffffffffda RBX: 00007f4924db5fa0 RCX: 00007f4924b8ebe9
[  166.872340][ T6732] RDX: 0000200000000080 RSI: 00000000c020aa08 RDI: 0000000000000003
[  166.872346][ T6732] RBP: 00007f4925a01090 R08: 0000000000000000 R09: 0000000000000000
[  166.872352][ T6732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  166.872358][ T6732] R13: 00007f4924db6038 R14: 00007f4924db5fa0 R15: 00007ffe0d90f218
[  166.872373][ T6732]  </TASK>
[  167.189769][    C1] vkms_vblank_simulate: vblank timer overrun
[  168.248466][ T6747] FAULT_INJECTION: forcing a failure.
[  168.248466][ T6747] name failslab, interval 1, probability 0, space 0, times 0
[  168.270761][ T6747] CPU: 0 UID: 0 PID: 6747 Comm: syz.2.223 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  168.270787][ T6747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  168.270798][ T6747] Call Trace:
[  168.270805][ T6747]  <TASK>
[  168.270814][ T6747]  dump_stack_lvl+0x189/0x250
[  168.270839][ T6747]  ? __pfx____ratelimit+0x10/0x10
[  168.270858][ T6747]  ? __pfx_dump_stack_lvl+0x10/0x10
[  168.270879][ T6747]  ? __pfx__printk+0x10/0x10
[  168.270906][ T6747]  ? __pfx___might_resched+0x10/0x10
[  168.270938][ T6747]  ? fs_reclaim_acquire+0x7d/0x100
[  168.270966][ T6747]  should_fail_ex+0x414/0x560
[  168.270983][ T6747]  should_failslab+0xa8/0x100
[  168.270996][ T6747]  __kmalloc_noprof+0xcb/0x4f0
[  168.271006][ T6747]  ? video_usercopy+0x18f/0x14f0
[  168.271024][ T6747]  video_usercopy+0x18f/0x14f0
[  168.271041][ T6747]  ? smk_tskacc+0x2fc/0x370
[  168.271057][ T6747]  ? __pfx___video_do_ioctl+0x10/0x10
[  168.271071][ T6747]  ? __pfx_video_usercopy+0x10/0x10
[  168.271085][ T6747]  ? smack_file_ioctl+0x2a9/0x340
[  168.271102][ T6747]  ? __fget_files+0x2a/0x420
[  168.271113][ T6747]  ? __fget_files+0x3a0/0x420
[  168.271126][ T6747]  v4l2_ioctl+0x18a/0x1e0
[  168.271149][ T6747]  ? __pfx_v4l2_ioctl+0x10/0x10
[  168.271172][ T6747]  __se_sys_ioctl+0xfc/0x170
[  168.271199][ T6747]  do_syscall_64+0xfa/0x3b0
[  168.271218][ T6747]  ? lockdep_hardirqs_on+0x9c/0x150
[  168.271236][ T6747]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.271254][ T6747]  ? clear_bhb_loop+0x60/0xb0
[  168.271277][ T6747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.271293][ T6747] RIP: 0033:0x7f4924b8ebe9
[  168.271309][ T6747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.271325][ T6747] RSP: 002b:00007f4925a01038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  168.271344][ T6747] RAX: ffffffffffffffda RBX: 00007f4924db5fa0 RCX: 00007f4924b8ebe9
[  168.271358][ T6747] RDX: 0000200000000180 RSI: 00000000c0d05605 RDI: 0000000000000003
[  168.271370][ T6747] RBP: 00007f4925a01090 R08: 0000000000000000 R09: 0000000000000000
[  168.271382][ T6747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.271393][ T6747] R13: 00007f4924db6038 R14: 00007f4924db5fa0 R15: 00007ffe0d90f218
[  168.271423][ T6747]  </TASK>
[  169.157802][ T6757] netlink: 68 bytes leftover after parsing attributes in process `syz.4.226'.
[  170.065637][ T6762] random: crng reseeded on system resumption
[  172.083365][ T6791] FAULT_INJECTION: forcing a failure.
[  172.083365][ T6791] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.096966][ T6791] CPU: 0 UID: 0 PID: 6791 Comm: syz.2.234 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  172.096991][ T6791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  172.097002][ T6791] Call Trace:
[  172.097010][ T6791]  <TASK>
[  172.097018][ T6791]  dump_stack_lvl+0x189/0x250
[  172.097044][ T6791]  ? __pfx____ratelimit+0x10/0x10
[  172.097065][ T6791]  ? __pfx_dump_stack_lvl+0x10/0x10
[  172.097085][ T6791]  ? __pfx__printk+0x10/0x10
[  172.097109][ T6791]  ? __might_fault+0xb0/0x130
[  172.097139][ T6791]  should_fail_ex+0x414/0x560
[  172.097161][ T6791]  _copy_from_user+0x2d/0xb0
[  172.097187][ T6791]  video_usercopy+0x354/0x14f0
[  172.097220][ T6791]  ? smk_tskacc+0x2fc/0x370
[  172.097247][ T6791]  ? __pfx___video_do_ioctl+0x10/0x10
[  172.097270][ T6791]  ? __pfx_video_usercopy+0x10/0x10
[  172.097293][ T6791]  ? smack_file_ioctl+0x24a/0x340
[  172.097324][ T6791]  ? __fget_files+0x2a/0x420
[  172.097342][ T6791]  ? __fget_files+0x3a0/0x420
[  172.097366][ T6791]  v4l2_ioctl+0x18a/0x1e0
[  172.097391][ T6791]  ? __pfx_v4l2_ioctl+0x10/0x10
[  172.097415][ T6791]  __se_sys_ioctl+0xfc/0x170
[  172.097442][ T6791]  do_syscall_64+0xfa/0x3b0
[  172.097462][ T6791]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.097480][ T6791]  ? asm_sysvec_call_function_single+0x1a/0x20
[  172.097499][ T6791]  ? clear_bhb_loop+0x60/0xb0
[  172.097521][ T6791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.097536][ T6791] RIP: 0033:0x7f4924b8ebe9
[  172.097551][ T6791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.097566][ T6791] RSP: 002b:00007f49259e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  172.097585][ T6791] RAX: ffffffffffffffda RBX: 00007f4924db6090 RCX: 00007f4924b8ebe9
[  172.097599][ T6791] RDX: 0000200000000240 RSI: 0000000040045612 RDI: 0000000000000004
[  172.097612][ T6791] RBP: 00007f49259e0090 R08: 0000000000000000 R09: 0000000000000000
[  172.097624][ T6791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.097634][ T6791] R13: 00007f4924db6128 R14: 00007f4924db6090 R15: 00007ffe0d90f218
[  172.097664][ T6791]  </TASK>
[  172.769017][ T6777] 8021q: adding VLAN 0 to HW filter on device bond1
[  172.788264][ T6777] team0: Failed to send options change via netlink (err -105)
[  172.797372][ T6777] team0: Port device bond1 added
[  172.829611][ T6779] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  173.104391][ T6798] overlayfs: failed to resolve './file0': -2
[  176.252090][ T5935] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  180.151976][    C0] sched: DL replenish lagged too much
[  221.336237][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  221.350615][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  224.365940][ T5156] Bluetooth: hci0: command 0x0406 tx timeout
[  224.381081][ T5156] Bluetooth: hci4: command 0x0406 tx timeout
[  224.396782][ T5156] Bluetooth: hci2: command 0x0406 tx timeout
[  225.284181][ T5156] Bluetooth: hci3: command 0x0406 tx timeout
[  225.533926][ T5156] Bluetooth: hci1: command 0x0406 tx timeout
[  255.865837][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  255.887557][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  294.741931][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  294.748928][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5935/1:b..l P6816/2:b..l P5855/1:b..l
[  294.759759][    C0] rcu: 	(detected by 0, t=10503 jiffies, g=14361, q=1311 ncpus=2)
[  294.767582][    C0] task:udevd           state:R  running task     stack:24648 pid:5855  tgid:5855  ppid:5206   task_flags:0x40014c flags:0x00004002
[  294.781896][    C0] Call Trace:
[  294.785193][    C0]  <TASK>
[  294.788162][    C0]  __schedule+0x16aa/0x4c90
[  294.792703][    C0]  ? preempt_schedule_irq+0xb5/0x150
[  294.798009][    C0]  ? __pfx___schedule+0x10/0x10
[  294.802873][    C0]  ? __lock_acquire+0xab9/0xd20
[  294.807745][    C0]  ? preempt_schedule_irq+0xaa/0x150
[  294.813038][    C0]  preempt_schedule_irq+0xb5/0x150
[  294.818169][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  294.823922][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  294.829741][    C0]  irqentry_exit+0x6f/0x90
[  294.834333][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  294.840433][    C0] RIP: 0010:unwind_next_frame+0xb37/0x2390
[  294.846257][    C0] Code: df e8 ad 57 ad 00 48 89 9c 24 88 00 00 00 49 8d 5c 24 f8 4d 8b 66 10 48 b8 00 00 00 00 00 fc ff df 48 8b 4c 24 20 0f b6 04 01 <84> c0 0f 85 85 13 00 00 41 83 3e 00 0f 95 c0 49 39 df 0f 96 c1 20
[  294.866147][    C0] RSP: 0018:ffffc90003fcf3b8 EFLAGS: 00000246
[  294.872246][    C0] RAX: 0000000000000000 RBX: ffffc90003fcf5b8 RCX: 1ffff920007f9e91
[  294.880248][    C0] RDX: ffffffff90344772 RSI: 0000000000000002 RDI: ffffffff8be1b9e0
[  294.888236][    C0] RBP: 1ffff920007f9e92 R08: 000000000000000d R09: ffffffff8172aae5
[  294.896212][    C0] R10: ffffc90003fcf4d8 R11: ffffffff81acfd40 R12: ffffc90003fd0000
[  294.904206][    C0] R13: 1ffff920007f9e93 R14: ffffc90003fcf488 R15: ffffc90003fc8000
[  294.912206][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  294.918403][    C0]  ? unwind_next_frame+0xa5/0x2390
[  294.923547][    C0]  ? unwind_next_frame+0xd4/0x2390
[  294.928675][    C0]  ? unwind_next_frame+0xa5/0x2390
[  294.933789][    C0]  ? stack_trace_save+0x9c/0xe0
[  294.938669][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  294.944850][    C0]  arch_stack_walk+0x11c/0x150
[  294.949631][    C0]  ? stack_trace_save+0x9c/0xe0
[  294.954574][    C0]  stack_trace_save+0x9c/0xe0
[  294.959272][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  294.964674][    C0]  ? __lock_acquire+0xab9/0xd20
[  294.969535][    C0]  kasan_save_track+0x3e/0x80
[  294.974279][    C0]  ? unlink_anon_vmas+0x2cc/0x670
[  294.979325][    C0]  kasan_save_free_info+0x46/0x50
[  294.984382][    C0]  __kasan_slab_free+0x62/0x70
[  294.989150][    C0]  kmem_cache_free+0x18f/0x400
[  294.993998][    C0]  ? __pfx___anon_vma_interval_tree_augment_rotate+0x10/0x10
[  295.001394][    C0]  unlink_anon_vmas+0x2cc/0x670
[  295.006274][    C0]  free_pgtables+0x7bf/0xaf0
[  295.010882][    C0]  ? __pfx_free_pgtables+0x10/0x10
[  295.016005][    C0]  ? __pfx_down_write+0x10/0x10
[  295.020878][    C0]  ? __mas_set_range+0x12f/0x3c0
[  295.025858][    C0]  exit_mmap+0x444/0xb50
[  295.030187][    C0]  ? uprobe_clear_state+0x20f/0x290
[  295.035390][    C0]  ? __pfx_exit_mmap+0x10/0x10
[  295.040198][    C0]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  295.045869][    C0]  ? __pfx_exit_aio+0x10/0x10
[  295.050587][    C0]  ? uprobe_clear_state+0x274/0x290
[  295.055794][    C0]  ? mm_update_next_owner+0xa7/0x870
[  295.061209][    C0]  __mmput+0x118/0x410
[  295.065306][    C0]  exit_mm+0x1da/0x2c0
[  295.069392][    C0]  ? __pfx_exit_mm+0x10/0x10
[  295.073985][    C0]  ? hrtimer_try_to_cancel+0x3d9/0x420
[  295.079467][    C0]  ? rcu_is_watching+0x15/0xb0
[  295.084253][    C0]  do_exit+0x648/0x22e0
[  295.088423][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  295.093801][    C0]  ? __pfx_do_exit+0x10/0x10
[  295.098421][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  295.103635][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  295.108851][    C0]  do_group_exit+0x21c/0x2d0
[  295.113455][    C0]  __x64_sys_exit_group+0x3f/0x40
[  295.118502][    C0]  x64_sys_call+0x21ba/0x21c0
[  295.123222][    C0]  do_syscall_64+0xfa/0x3b0
[  295.127740][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  295.132937][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.139023][    C0]  ? clear_bhb_loop+0x60/0xb0
[  295.143719][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.149707][    C0] RIP: 0033:0x7f7efeaf16c5
[  295.154130][    C0] RSP: 002b:00007ffff68fd3b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  295.162585][    C0] RAX: ffffffffffffffda RBX: 000055f8289d4e80 RCX: 00007f7efeaf16c5
[  295.170578][    C0] RDX: 00000000000000e7 RSI: fffffffffffffe68 RDI: 0000000000000000
[  295.178574][    C0] RBP: 000055f8289ad910 R08: 0000000000000000 R09: 0000000000000000
[  295.186582][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  295.194575][    C0] R13: 00007ffff68fd400 R14: 0000000000000000 R15: 0000000000000000
[  295.202588][    C0]  </TASK>
[  295.205654][    C0] task:syz.1.240       state:R  running task     stack:24584 pid:6816  tgid:6808  ppid:5844   task_flags:0x400040 flags:0x00004006
[  295.219248][    C0] Call Trace:
[  295.222537][    C0]  <TASK>
[  295.225487][    C0]  __schedule+0x16aa/0x4c90
[  295.230004][    C0]  ? preempt_schedule_common+0x83/0xd0
[  295.235467][    C0]  ? __pfx___schedule+0x10/0x10
[  295.240418][    C0]  ? __lock_acquire+0xab9/0xd20
[  295.245623][    C0]  ? __lock_acquire+0xab9/0xd20
[  295.250498][    C0]  ? preempt_schedule+0xae/0xc0
[  295.255357][    C0]  ? ipt_do_table+0x2a3/0x1630
[  295.260134][    C0]  preempt_schedule_common+0x83/0xd0
[  295.265444][    C0]  preempt_schedule+0xae/0xc0
[  295.270146][    C0]  ? __pfx_preempt_schedule+0x10/0x10
[  295.275627][    C0]  ? preempt_schedule_notrace_thunk+0x16/0x30
[  295.281726][    C0]  preempt_schedule_thunk+0x16/0x30
[  295.286946][    C0]  __local_bh_enable_ip+0x13e/0x1c0
[  295.292184][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  295.297916][    C0]  ipt_do_table+0x13dd/0x1630
[  295.302626][    C0]  ? ipt_do_table+0x2a3/0x1630
[  295.307434][    C0]  ? __pfx_ipt_do_table+0x10/0x10
[  295.312487][    C0]  ? nf_hook+0x9d/0x380
[  295.316657][    C0]  ? __pfx_ipt_do_table+0x10/0x10
[  295.321669][    C0]  nf_hook_slow+0xc5/0x220
[  295.326095][    C0]  nf_hook+0x217/0x380
[  295.330182][    C0]  ? nf_hook+0x9d/0x380
[  295.334348][    C0]  ? __pfx_nf_hook+0x10/0x10
[  295.338948][    C0]  ? __pfx_dst_output+0x10/0x10
[  295.343801][    C0]  ? ip_fast_csum+0x1ee/0x2b0
[  295.348502][    C0]  __ip_local_out+0x4db/0x600
[  295.353190][    C0]  ? __pfx_dst_output+0x10/0x10
[  295.358045][    C0]  ? __ip_queue_xmit+0x63/0x1b00
[  295.363024][    C0]  __ip_queue_xmit+0x10d7/0x1b00
[  295.367991][    C0]  ? __ip_queue_xmit+0x63/0x1b00
[  295.372955][    C0]  sctp_packet_transmit+0x2581/0x2bb0
[  295.378364][    C0]  sctp_packet_singleton+0x233/0x330
[  295.383661][    C0]  ? __pfx_sctp_packet_singleton+0x10/0x10
[  295.389494][    C0]  ? sctp_outq_select_transport+0x462/0x570
[  295.395406][    C0]  ? sctp_transport_burst_limited+0x19c/0x280
[  295.401504][    C0]  sctp_outq_flush+0x4f0/0x3140
[  295.406353][    C0]  ? sctp_copy_one_addr+0x93/0x360
[  295.411492][    C0]  ? sctp_tietags_populate+0x84/0x490
[  295.416870][    C0]  ? __pfx_sctp_outq_flush+0x10/0x10
[  295.422171][    C0]  ? sctp_outq_tail+0x612/0x8c0
[  295.427049][    C0]  ? sctp_outq_uncork+0x4d/0xa0
[  295.431920][    C0]  sctp_do_sm+0x195f/0x5a20
[  295.436446][    C0]  ? __pfx_sctp_packet_singleton+0x10/0x10
[  295.442283][    C0]  ? __pfx_sctp_do_sm+0x10/0x10
[  295.447194][    C0]  ? sctp_inq_pop+0xc46/0x1010
[  295.451987][    C0]  sctp_assoc_bh_rcv+0x3f2/0x630
[  295.456962][    C0]  sctp_backlog_rcv+0x167/0x3f0
[  295.461943][    C0]  ? do_raw_spin_unlock+0x122/0x240
[  295.467162][    C0]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[  295.472560][    C0]  __release_sock+0x24c/0x350
[  295.477264][    C0]  release_sock+0x5f/0x1f0
[  295.481694][    C0]  sctp_wait_for_connect+0x382/0x680
[  295.487009][    C0]  ? __pfx_sctp_wait_for_connect+0x10/0x10
[  295.492850][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  295.498939][    C0]  ? sctp_endpoint_lookup_assoc+0x7b/0x260
[  295.504791][    C0]  ? sctp_primitive_ASSOCIATE+0x95/0xc0
[  295.510383][    C0]  __sctp_connect+0xadd/0xd50
[  295.515099][    C0]  ? __pfx___sctp_connect+0x10/0x10
[  295.520408][    C0]  sctp_inet_connect+0x12e/0x1e0
[  295.525381][    C0]  __sys_connect+0x316/0x440
[  295.530000][    C0]  ? __pfx___sys_connect+0x10/0x10
[  295.535215][    C0]  ? rcu_is_watching+0x15/0xb0
[  295.539993][    C0]  __x64_sys_connect+0x7a/0x90
[  295.544867][    C0]  do_syscall_64+0xfa/0x3b0
[  295.549390][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  295.554616][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.560701][    C0]  ? clear_bhb_loop+0x60/0xb0
[  295.565387][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.571298][    C0] RIP: 0033:0x7f9dfc18ebe9
[  295.575723][    C0] RSP: 002b:00007f9dfcf25038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  295.584256][    C0] RAX: ffffffffffffffda RBX: 00007f9dfc3b6090 RCX: 00007f9dfc18ebe9
[  295.592249][    C0] RDX: 000000000000001c RSI: 0000200000000000 RDI: 0000000000000006
[  295.600241][    C0] RBP: 00007f9dfc211e19 R08: 0000000000000000 R09: 0000000000000000
[  295.608224][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  295.616304][    C0] R13: 00007f9dfc3b6128 R14: 00007f9dfc3b6090 R15: 00007ffe20e011c8
[  295.624581][    C0]  </TASK>
[  295.627645][    C0] task:kworker/0:6     state:R  running task     stack:23496 pid:5935  tgid:5935  ppid:2      task_flags:0x4208060 flags:0x00004000
[  295.641318][    C0] Workqueue: usb_hub_wq hub_event
[  295.646354][    C0] Call Trace:
[  295.649819][    C0]  <TASK>
[  295.652767][    C0]  __schedule+0x16aa/0x4c90
[  295.657311][    C0]  ? preempt_schedule_irq+0xb5/0x150
[  295.662640][    C0]  ? __pfx___schedule+0x10/0x10
[  295.667576][    C0]  ? __lock_acquire+0xab9/0xd20
[  295.672434][    C0]  ? preempt_schedule_irq+0xaa/0x150
[  295.677824][    C0]  preempt_schedule_irq+0xb5/0x150
[  295.682953][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  295.688685][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  295.694494][    C0]  irqentry_exit+0x6f/0x90
[  295.699076][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  295.705068][    C0] RIP: 0010:deref_stack_reg+0x0/0x230
[  295.710455][    C0] Code: 4c 24 18 e8 a2 3c ad 00 48 8b 4c 24 18 e9 f2 fe ff ff 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <55> 41 57 41 56 41 55 41 54 53 48 83 ec 20 48 89 54 24 18 49 89 f0
[  295.730167][    C0] RSP: 0018:ffffc90004cfefd0 EFLAGS: 00000287
[  295.736350][    C0] RAX: fffffffffffffff0 RBX: ffffffff903141da RCX: 0000000000000000
[  295.744342][    C0] RDX: ffffc90004cff0e8 RSI: ffffc90004cffd90 RDI: ffffc90004cff0a8
[  295.752338][    C0] RBP: dffffc0000000000 R08: ffffc90004cff107 R09: 0000000000000000
[  295.760321][    C0] R10: ffffc90004cff0f8 R11: fffff5200099fe21 R12: ffffc90004cffd90
[  295.768303][    C0] R13: ffffc90004cff0f8 R14: ffffc90004cff0a8 R15: 1ffffffff206283b
[  295.776317][    C0]  unwind_next_frame+0x17c4/0x2390
[  295.781450][    C0]  ? unwind_next_frame+0xa5/0x2390
[  295.786577][    C0]  ? worker_thread+0x8a0/0xda0
[  295.791368][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  295.797542][    C0]  arch_stack_walk+0x11c/0x150
[  295.802352][    C0]  ? kthread+0x70e/0x8a0
[  295.806659][    C0]  stack_trace_save+0x9c/0xe0
[  295.811362][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  295.816751][    C0]  save_stack+0xf7/0x1f0
[  295.820987][    C0]  ? __pfx_save_stack+0x10/0x10
[  295.825835][    C0]  ? __free_frozen_pages+0xc65/0xe60
[  295.831224][    C0]  ? __slab_free+0x326/0x400
[  295.835832][    C0]  ? qlist_free_all+0x97/0x140
[  295.840610][    C0]  ? kasan_quarantine_reduce+0x148/0x160
[  295.846252][    C0]  ? __kasan_slab_alloc+0x22/0x80
[  295.851290][    C0]  ? __kmalloc_noprof+0x224/0x4f0
[  295.856333][    C0]  ? usb_alloc_urb+0x46/0x150
[  295.861024][    C0]  ? usb_control_msg+0x118/0x3e0
[  295.865961][    C0]  ? hub_port_reset+0x390/0x1750
[  295.870911][    C0]  ? hub_port_init+0xfb9/0x2800
[  295.875790][    C0]  ? hub_event+0x2532/0x4a20
[  295.880415][    C0]  ? process_scheduled_works+0xade/0x17b0
[  295.886155][    C0]  ? worker_thread+0x8a0/0xda0
[  295.890943][    C0]  __reset_page_owner+0x71/0x1f0
[  295.895892][    C0]  __free_frozen_pages+0xc65/0xe60
[  295.901034][    C0]  __slab_free+0x326/0x400
[  295.905473][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  295.911826][    C0]  ? __phys_addr+0xd3/0x180
[  295.916337][    C0]  qlist_free_all+0x97/0x140
[  295.920959][    C0]  kasan_quarantine_reduce+0x148/0x160
[  295.926453][    C0]  __kasan_slab_alloc+0x22/0x80
[  295.931339][    C0]  __kmalloc_noprof+0x224/0x4f0
[  295.936194][    C0]  ? usb_alloc_urb+0x46/0x150
[  295.940893][    C0]  usb_alloc_urb+0x46/0x150
[  295.945413][    C0]  usb_control_msg+0x118/0x3e0
[  295.950226][    C0]  hub_port_reset+0x390/0x1750
[  295.955070][    C0]  hub_port_init+0xfb9/0x2800
[  295.959801][    C0]  hub_event+0x2532/0x4a20
[  295.964381][    C0]  ? __pfx_hub_event+0x10/0x10
[  295.969161][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[  295.974889][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  295.980104][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[  295.985846][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[  295.991666][    C0]  process_scheduled_works+0xade/0x17b0
[  295.997251][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  296.003356][    C0]  worker_thread+0x8a0/0xda0
[  296.007955][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  296.014296][    C0]  ? __kthread_parkme+0x7b/0x200
[  296.019271][    C0]  kthread+0x70e/0x8a0
[  296.023365][    C0]  ? __pfx_worker_thread+0x10/0x10
[  296.028487][    C0]  ? __pfx_kthread+0x10/0x10
[  296.033077][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  296.038330][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  296.043555][    C0]  ? __pfx_kthread+0x10/0x10
[  296.048163][    C0]  ret_from_fork+0x3fc/0x770
[  296.052796][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  296.058371][    C0]  ? __switch_to_asm+0x39/0x70
[  296.063420][    C0]  ? __switch_to_asm+0x33/0x70
[  296.068194][    C0]  ? __pfx_kthread+0x10/0x10
[  296.072788][    C0]  ret_from_fork_asm+0x1a/0x30
[  296.077588][    C0]  </TASK>
[  296.080620][    C0] rcu: rcu_preempt kthread starved for 5318 jiffies! g14361 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  296.092018][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  296.102005][    C0] rcu: RCU grace-period kthread stack dump:
[  296.107895][    C0] task:rcu_preempt     state:R  running task     stack:27128 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[  296.121376][    C0] Call Trace:
[  296.124725][    C0]  <TASK>
[  296.127762][    C0]  __schedule+0x16aa/0x4c90
[  296.132370][    C0]  ? schedule+0x165/0x360
[  296.136732][    C0]  ? __pfx___schedule+0x10/0x10
[  296.141616][    C0]  ? schedule+0x91/0x360
[  296.145877][    C0]  schedule+0x165/0x360
[  296.150079][    C0]  schedule_timeout+0x12b/0x270
[  296.154939][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  296.160329][    C0]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  296.166249][    C0]  ? __pfx_process_timeout+0x10/0x10
[  296.171565][    C0]  ? prepare_to_swait_event+0x341/0x380
[  296.177130][    C0]  rcu_gp_fqs_loop+0x301/0x1540
[  296.182016][    C0]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[  296.188183][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  296.193483][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  296.198697][    C0]  ? finish_swait+0xcd/0x1f0
[  296.203288][    C0]  rcu_gp_kthread+0x99/0x390
[  296.207895][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  296.213104][    C0]  ? __kthread_parkme+0x7b/0x200
[  296.218050][    C0]  ? __kthread_parkme+0x1a1/0x200
[  296.223114][    C0]  kthread+0x70e/0x8a0
[  296.227203][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  296.232500][    C0]  ? __pfx_kthread+0x10/0x10
[  296.237194][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  296.242480][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  296.247693][    C0]  ? __pfx_kthread+0x10/0x10
[  296.252305][    C0]  ret_from_fork+0x3fc/0x770
[  296.256923][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  296.262057][    C0]  ? __switch_to_asm+0x39/0x70
[  296.266845][    C0]  ? __switch_to_asm+0x33/0x70
[  296.271667][    C0]  ? __pfx_kthread+0x10/0x10
[  296.276283][    C0]  ret_from_fork_asm+0x1a/0x30
[  296.281070][    C0]  </TASK>
[  296.284105][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  296.290458][    C0] Sending NMI from CPU 0 to CPUs 1:
[  296.295687][    C1] NMI backtrace for cpu 1
[  296.295707][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  296.295725][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  296.295735][    C1] RIP: 0010:__lock_acquire+0x49c/0xd20
[  296.295756][    C1] Code: 60 00 00 74 cf eb 1c 48 c7 c7 d0 01 01 8e 48 89 de e8 e8 84 50 03 48 8b 3c 24 41 8b 46 20 eb ca 41 89 ef 65 8b 05 20 8b fe 10 <85> c0 0f 84 02 01 00 00 41 b4 03 83 bf c0 0a 00 00 00 0f 84 d7 04
[  296.295769][    C1] RSP: 0018:ffffc90000a07b28 EFLAGS: 00000086
[  296.295790][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000000ffffffff
[  296.295801][    C1] RDX: 0000000000000003 RSI: 0000000000002000 RDI: ffff88801d2f5a00
[  296.295812][    C1] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8172aae5
[  296.295822][    C1] R10: ffffc90000a07d78 R11: ffffffff81acfd40 R12: ffffffffffffffff
[  296.295834][    C1] R13: 0000000000000001 R14: ffff88801d2f6568 R15: 0000000000000000
[  296.295845][    C1] FS:  0000000000000000(0000) GS:ffff888125d57000(0000) knlGS:0000000000000000
[  296.295858][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  296.295869][    C1] CR2: 00005555774dc5c8 CR3: 0000000075d14000 CR4: 00000000003526f0
[  296.295884][    C1] Call Trace:
[  296.295890][    C1]  <IRQ>
[  296.295901][    C1]  ? unwind_next_frame+0xa5/0x2390
[  296.295919][    C1]  lock_acquire+0x120/0x360
[  296.295932][    C1]  ? unwind_next_frame+0xa5/0x2390
[  296.295952][    C1]  ? unwind_next_frame+0xa5/0x2390
[  296.295968][    C1]  ? __netif_receive_skb+0xd3/0x380
[  296.295987][    C1]  ? unwind_next_frame+0xa5/0x2390
[  296.296003][    C1]  unwind_next_frame+0xc2/0x2390
[  296.296019][    C1]  ? unwind_next_frame+0xa5/0x2390
[  296.296037][    C1]  ? unwind_next_frame+0xa5/0x2390
[  296.296053][    C1]  ? NF_HOOK+0x30c/0x3a0
[  296.296078][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  296.296099][    C1]  arch_stack_walk+0x11c/0x150
[  296.296120][    C1]  ? __netif_receive_skb+0xd3/0x380
[  296.296139][    C1]  stack_trace_save+0x9c/0xe0
[  296.296158][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  296.296177][    C1]  ? ip6_finish_output2+0x12bc/0x16a0
[  296.296203][    C1]  ? __lock_acquire+0xab9/0xd20
[  296.296217][    C1]  kasan_save_track+0x3e/0x80
[  296.296239][    C1]  ? kasan_save_track+0x3e/0x80
[  296.296261][    C1]  ? kasan_save_free_info+0x46/0x50
[  296.296279][    C1]  ? __kasan_slab_free+0x62/0x70
[  296.296293][    C1]  ? kmem_cache_free+0x18f/0x400
[  296.296308][    C1]  ? skb_release_data+0x62d/0x7c0
[  296.296330][    C1]  ? consume_skb+0x9e/0xf0
[  296.296351][    C1]  ? nft_synproxy_eval_v6+0x376/0x560
[  296.296366][    C1]  ? nft_synproxy_do_eval+0x3d7/0x570
[  296.296381][    C1]  ? nft_do_chain+0x409/0x1920
[  296.296394][    C1]  ? nft_do_chain_inet+0x25d/0x340
[  296.296408][    C1]  ? nf_hook_slow+0xc5/0x220
[  296.296428][    C1]  ? NF_HOOK+0x206/0x3a0
[  296.296449][    C1]  ? ip6_input+0x16a/0x270
[  296.296462][    C1]  ? NF_HOOK+0x30c/0x3a0
[  296.296483][    C1]  ? __netif_receive_skb+0xd3/0x380
[  296.296517][    C1]  ? skb_release_data+0x62d/0x7c0
[  296.296539][    C1]  kasan_save_free_info+0x46/0x50
[  296.296559][    C1]  __kasan_slab_free+0x62/0x70
[  296.296573][    C1]  kmem_cache_free+0x18f/0x400
[  296.296591][    C1]  skb_release_data+0x62d/0x7c0
[  296.296617][    C1]  consume_skb+0x9e/0xf0
[  296.296638][    C1]  nft_synproxy_eval_v6+0x376/0x560
[  296.296656][    C1]  ? __pfx_nft_synproxy_eval_v6+0x10/0x10
[  296.296673][    C1]  ? nf_ip_checksum+0x13c/0x510
[  296.296699][    C1]  nft_synproxy_do_eval+0x3d7/0x570
[  296.296716][    C1]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[  296.296733][    C1]  ? __local_bh_enable_ip+0x12d/0x1c0
[  296.296754][    C1]  nft_do_chain+0x409/0x1920
[  296.296770][    C1]  ? ip6t_do_table+0x1376/0x1550
[  296.296798][    C1]  ? nf_nat_inet_fn+0x924/0xba0
[  296.296815][    C1]  ? __pfx_nft_do_chain+0x10/0x10
[  296.296828][    C1]  ? ipv6_find_hdr+0xc78/0x1050
[  296.296854][    C1]  ? nf_nat_ipv6_fn+0x21d/0x2d0
[  296.296872][    C1]  ? __pfx_nf_nat_ipv6_fn+0x10/0x10
[  296.296894][    C1]  nft_do_chain_inet+0x25d/0x340
[  296.296908][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  296.296922][    C1]  ? nf_nat_ipv6_local_in+0x14f/0x650
[  296.296943][    C1]  ? __pfx_nf_nat_ipv6_local_in+0x10/0x10
[  296.296962][    C1]  ? NF_HOOK+0x9a/0x3a0
[  296.296985][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  296.297000][    C1]  nf_hook_slow+0xc5/0x220
[  296.297022][    C1]  NF_HOOK+0x206/0x3a0
[  296.297045][    C1]  ? __pfx_ip6_input_finish+0x10/0x10
[  296.297059][    C1]  ? NF_HOOK+0x9a/0x3a0
[  296.297081][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  296.297104][    C1]  ? __pfx_ip6_input_finish+0x10/0x10
[  296.297123][    C1]  ip6_input+0x16a/0x270
[  296.297136][    C1]  ? ip6_input+0x23/0x270
[  296.297151][    C1]  NF_HOOK+0x30c/0x3a0
[  296.297172][    C1]  ? skb_orphan+0xaf/0xd0
[  296.297187][    C1]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  296.297209][    C1]  ? NF_HOOK+0x9a/0x3a0
[  296.297230][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  296.297253][    C1]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  296.297280][    C1]  __netif_receive_skb+0xd3/0x380
[  296.297300][    C1]  ? process_backlog+0x2d5/0x14f0
[  296.297320][    C1]  process_backlog+0x60e/0x14f0
[  296.297346][    C1]  ? __pfx_process_backlog+0x10/0x10
[  296.297367][    C1]  ? do_raw_spin_lock+0x121/0x290
[  296.297389][    C1]  __napi_poll+0xc4/0x480
[  296.297406][    C1]  ? net_rx_action+0x46d/0xe30
[  296.297426][    C1]  net_rx_action+0x707/0xe30
[  296.297448][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  296.297477][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  296.297498][    C1]  ? rcu_is_watching+0x15/0xb0
[  296.297526][    C1]  handle_softirqs+0x283/0x870
[  296.297543][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  296.297562][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  296.297580][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  296.297602][    C1]  __irq_exit_rcu+0xca/0x1f0
[  296.297618][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  296.297638][    C1]  irq_exit_rcu+0x9/0x30
[  296.297652][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  296.297668][    C1]  </IRQ>
[  296.297674][    C1]  <TASK>
[  296.297680][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  296.297697][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  296.297713][    C1] Code: 53 de 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d d3 ad 21 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  296.297725][    C1] RSP: 0018:ffffc90000197de0 EFLAGS: 000002c2
[  296.297739][    C1] RAX: b6062e98f6c81300 RBX: ffffffff81976918 RCX: b6062e98f6c81300
[  296.297751][    C1] RDX: 0000000000000001 RSI: ffffffff8d982fba RDI: ffffffff8be1ba40
[  296.297762][    C1] RBP: ffffc90000197f20 R08: ffff8880b8732f5b R09: 1ffff110170e65eb
[  296.297774][    C1] R10: dffffc0000000000 R11: ffffed10170e65ec R12: ffffffff8fa0b3f0
[  296.297791][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff11003a5eb40
[  296.297803][    C1]  ? do_idle+0x1e8/0x510
[  296.297824][    C1]  default_idle+0x13/0x20
[  296.297842][    C1]  default_idle_call+0x74/0xb0
[  296.297860][    C1]  do_idle+0x1e8/0x510
[  296.297878][    C1]  ? __pfx_do_idle+0x10/0x10
[  296.297899][    C1]  ? do_idle+0xa/0x510
[  296.297916][    C1]  cpu_startup_entry+0x44/0x60
[  296.297933][    C1]  start_secondary+0x101/0x110
[  296.297955][    C1]  common_startup_64+0x13e/0x147
[  296.297981][    C1]  </TASK>